presmerovani na reklamni weby pri kliknuti na odkaz

[valentyne187]

ahoj,
stahnul jsem si nejaky freeware program, ale asi i s nejakou mrskou, problem pretrvava i po pouziti adwcleaneru
vyskakuji mi okna s reklamami na trading apod. kdyz kliknu na klasicky odkaz nebo i do prostoru

diky

log z RSIT:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Vojtěch at 2015-12-27 14:58:29
Microsoft Windows 8
System drive C: has 10 GB (2%) free of 459 GB
Total RAM: 3977 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:58:36, on 27. 12. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.17568)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera_crashreporter.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\GRETECH\GomPlayer\GOM.EXE
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files\trend micro\Vojtěch.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://unstopp.me/wpad.dat?5843936eda97 ... 4e82969530
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [BtTray] "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Boxoft Tools] "C:\ProgramData\Boxtools\Boxofttoolbox.exe" -autorun
O4 - Startup: VirtuaGirl2.lnk = C:\Program Files (x86)\Vg\VirtuaGirl2.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Stáhnout FDM - file://C:\Program Files (x86)\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout video FDM - file://C:\Program Files (x86)\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Stáhnout vybrané FDM - file://C:\Program Files (x86)\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Stáhnout vše FDM - file://C:\Program Files (x86)\Free Download Manager\dlall.htm
O9 - Extra button: PokerStars.eu - {07BA1DA9-F501-4796-8728-74D1B91A6CD5} - C:\Program Files (x86)\PokerStars.EU\PokerStarsUpdate.exe
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\MICROS~3\WEB2~1\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Vojtěch\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Vojtěch\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra button: CasinoAction - {1B120745-0C71-4F58-A1C4-98DC25A0F6A2} - C:\Microgaming\Casino\CasinoActionMIT\casinogame.exe (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: gDoc PDF Service (GDOCService) - Global Graphics - C:\Program Files (x86)\Global Graphics\gDocPDFServer\MWFSrv.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem7.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ScsiAccess - Unknown owner - C:\Program Files (x86)\Photodex\ProShowProducer\ScsiAccess.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Unknown owner - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WdMan Service (WdMan) - TFuns LIMITED - C:\ProgramData\nWdMn\WdMan.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13436 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\Windows\system32\atiesrxx.exe
"dwm.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
atieclxx
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\vcsFPService.exe
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
dashost.exe {44283616-2716-4393-80e1989a604febc7}
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PnkBstrB.exe
"C:\Program Files (x86)\Photodex\ProShowProducer\ScsiAccess.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-55a8f773-c812-4460-9c3c-7cb75b36f4d9 -SystemEventPortName:HostProcess-b155dfeb-22b7-4993-8f83-57fa30856669 -IoCancelEventPortName:HostProcess-ae25901f-9f77-4c40-a59e-bd0b1ca85e3b -NonStateChangingEventPortName:HostProcess-588dbf75-b308-4bd8-b218-9989f7ef3868 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:c94f6a96-a224-44ab-9a16-8f9225b56040 -DeviceGroupId:
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-560dc683-e923-4903-97d1-70032fc2eee3 -SystemEventPortName:HostProcess-83e5687d-e73c-4788-896b-403a72d1138b -IoCancelEventPortName:HostProcess-12814331-c0c7-4f19-bb71-f529b1095617 -NonStateChangingEventPortName:HostProcess-dacc24b1-7952-4b36-86ca-f50471fe6f01 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:b9d03949-8ae0-4073-ad83-db260eef2799 -DeviceGroupId:WudfDefaultDevicePool
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
taskeng.exe {167F10BF-A193-4165-B4DC-0FF34AAB2D83}
"C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe" "HP Color LaserJet CM1312 MFP Series Fax"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" /start
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\totalcmd\TOTALCMD.EXE"
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe"
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\34.0.2036.25\opera_crashreporter.exe" --ran-launcher --crash-reporter-parent-id=4528
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=gpu-process --channel="4528.0.507193158\2020946785" --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5868 --enable-proprietary-codecs-support-for-web-audio-api --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,9,29,57 --gpu-vendor-id=0x1002 --gpu-device-id=0x6841 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.982.6.0 --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5868 --enable-proprietary-codecs-support-for-web-audio-api --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5868 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4528.2.961414060\502455778" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5868 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4528.3.924234646\1587767935" /prefetch:673131151

"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-ed93a2bf-af86-4053-8373-8c0bbee7c9cb -SystemEventPortName:HostProcess-d3e69316-0bf3-4ddd-a5da-06c03dad3a83 -IoCancelEventPortName:HostProcess-aebd3549-8ca6-4c17-8fea-7269e5c6bfd1 -NonStateChangingEventPortName:HostProcess-84737762-23c9-4154-8ea7-459b6ef44d50 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:dec2403e-a8c2-45a6-b5db-4214cc9568b3 -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=ppapi --channel="4528.27.1520251598\1653312578" --ppapi-flash-args --lang=cs --device-scale-factor=1 --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5868 --enable-proprietary-codecs-support-for-web-audio-api --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5868 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4528.30.1875759179\1618863879" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5868 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4528.31.270853777\671062238" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5868 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4528.32.1736725854\1593716163" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5868 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4528.33.634217296\1698789512" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5868 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4528.34.751890948\1936908484" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5868 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4528.35.306742631\14493878" /prefetch:673131151
"C:\Program Files (x86)\GRETECH\GomPlayer\GOM.EXE" -Embedding
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5868 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4528.40.719657587\1188033691" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe51_ Global\UsGthrCtrlFltPipeMssGthrPipe51 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 564 568 576 65536 572
"C:\Users\Vojtěch\Downloads\14_ochrana\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\HPCeeScheduleForVojtěch.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForVojtěch (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-09-21 553896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-06-24 662672]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-09-21 211880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-24 565304]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
Free Download Manager - C:\Program Files (x86)\Free Download Manager\iefdm2.dll [2014-09-23 365056]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-08-23 170304]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-08-23 398656]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-08-23 441152]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-11-12 1664000]
"HP Color LaserJet CM1312 MFP Series Fax"=C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe [2009-09-22 3700736]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-12-12 7394584]
"Boxoft Tools"=C:\ProgramData\Boxtools\Boxofttoolbox.exe [2010-12-15 514048]
"AdobeBridge"= []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-05-04 56568]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-08-06 642216]
"BtTray"=C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [2012-09-19 371976]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2013-10-16 337184]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-06-26 5515496]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2013-07-18 683656]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
VirtuaGirl2.lnk - C:\Program Files (x86)\Vg\VirtuaGirl2.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-08-23 441856]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0x95000000

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"msacm.ac3filter"=ac3filter64.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-12-27 14:58:29 ----D---- C:\rsit
2015-12-22 17:28:53 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2015-12-22 17:24:08 ----D---- C:\Program Files\Adobe
2015-12-22 17:21:44 ----D---- C:\Program Files (x86)\Adobe
2015-12-22 17:18:26 ----D---- C:\Program Files\Common Files\Adobe
2015-12-22 15:01:33 ----D---- C:\ProgramData\Adobe
2015-12-21 15:11:54 ----D---- C:\Program Files (x86)\FlashDevelop
2015-12-21 14:24:52 ----D---- C:\Windows\XSxS
2015-12-18 19:39:13 ----D---- C:\AdwCleaner
2015-12-18 16:43:32 ----D---- C:\Program Files\trend micro
2015-12-14 09:38:09 ----A---- C:\Windows\system32\FNTCACHE.DAT
2015-12-11 16:25:42 ----D---- C:\ProgramData\nWdMn
2015-12-10 19:03:44 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-12-10 19:03:44 ----A---- C:\Windows\system32\TSpkg.dll
2015-12-10 19:03:39 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2015-12-10 19:03:39 ----A---- C:\Windows\system32\sspicli.dll
2015-12-10 19:03:39 ----A---- C:\Windows\system32\SHCore.dll
2015-12-10 19:03:38 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-12-10 19:03:38 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2015-12-10 19:03:38 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-12-10 19:03:38 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2015-12-10 19:03:38 ----A---- C:\Windows\system32\winlogon.exe
2015-12-10 19:03:38 ----A---- C:\Windows\system32\wdigest.dll
2015-12-10 19:03:38 ----A---- C:\Windows\system32\usercpl.dll
2015-12-10 19:03:38 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-12-10 19:03:38 ----A---- C:\Windows\system32\credssp.dll
2015-12-10 19:03:38 ----A---- C:\Windows\system32\catsrvut.dll
2015-12-10 19:03:37 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-12-10 19:03:37 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-12-10 19:03:37 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2015-12-10 19:03:37 ----A---- C:\Windows\system32\msv1_0.dll
2015-12-10 19:03:37 ----A---- C:\Windows\system32\lsm.dll
2015-12-10 19:03:37 ----A---- C:\Windows\system32\kerberos.dll
2015-12-10 19:03:37 ----A---- C:\Windows\system32\comsvcs.dll
2015-12-10 19:03:36 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-12-10 19:03:36 ----A---- C:\Windows\system32\ntdll.dll
2015-12-10 19:03:36 ----A---- C:\Windows\system32\lsasrv.dll
2015-12-10 19:03:35 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-12-10 18:56:36 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2015-12-10 18:56:36 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2015-12-10 18:56:36 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2015-12-10 18:56:36 ----A---- C:\Windows\system32\kbdgeoqw.dll
2015-12-10 18:56:36 ----A---- C:\Windows\system32\KBDAZEL.DLL
2015-12-10 18:56:36 ----A---- C:\Windows\system32\KBDAZE.DLL
2015-12-10 18:56:32 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2015-12-10 18:56:32 ----A---- C:\Windows\system32\Windows.Globalization.dll
2015-12-10 18:55:00 ----A---- C:\Windows\system32\mshtmled.dll
2015-12-10 18:54:59 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-12-10 18:54:58 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-12-10 18:54:58 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-12-10 18:54:58 ----A---- C:\Windows\system32\dxtrans.dll
2015-12-10 18:54:57 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-12-10 18:54:57 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-12-10 18:54:57 ----A---- C:\Windows\system32\urlmon.dll
2015-12-10 18:54:57 ----A---- C:\Windows\system32\msfeeds.dll
2015-12-10 18:54:56 ----A---- C:\Windows\SYSWOW64\uxtheme.dll
2015-12-10 18:54:56 ----A---- C:\Windows\SYSWOW64\UXInit.dll
2015-12-10 18:54:56 ----A---- C:\Windows\system32\uxtheme.dll
2015-12-10 18:54:56 ----A---- C:\Windows\system32\UXInit.dll
2015-12-10 18:54:55 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-12-10 18:54:55 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-12-10 18:54:55 ----A---- C:\Windows\system32\vbscript.dll
2015-12-10 18:54:55 ----A---- C:\Windows\system32\jscript.dll
2015-12-10 18:54:54 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-12-10 18:54:54 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-12-10 18:54:54 ----A---- C:\Windows\system32\jscript9.dll
2015-12-10 18:54:54 ----A---- C:\Windows\system32\iertutil.dll
2015-12-10 18:54:53 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-12-10 18:54:53 ----A---- C:\Windows\system32\inetcomm.dll
2015-12-10 18:54:52 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-12-10 18:54:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-12-10 18:54:52 ----A---- C:\Windows\system32\iedkcs32.dll
2015-12-10 18:54:51 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-12-10 18:54:51 ----A---- C:\Windows\system32\wininet.dll
2015-12-10 18:54:50 ----A---- C:\Windows\system32\ieframe.dll
2015-12-10 18:54:44 ----A---- C:\Windows\system32\mshtml.dll
2015-12-10 18:54:42 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-12-10 18:53:34 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-12-10 18:53:34 ----A---- C:\Windows\system32\authui.dll
2015-12-10 18:53:25 ----A---- C:\Windows\system32\drivers\rmcast.sys
2015-12-10 18:52:39 ----A---- C:\Windows\SYSWOW64\user32.dll
2015-12-10 18:52:39 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2015-12-10 18:52:39 ----A---- C:\Windows\system32\user32.dll
2015-12-10 18:52:39 ----A---- C:\Windows\system32\FntCache.dll
2015-12-10 18:52:39 ----A---- C:\Windows\system32\DWrite.dll
2015-12-10 18:52:38 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-12-10 18:52:38 ----A---- C:\Windows\system32\win32k.sys
2015-12-10 18:52:38 ----A---- C:\Windows\system32\GdiPlus.dll
2015-12-05 15:23:13 ----D---- C:\Program Files\Common Files\AV
2015-12-03 21:38:52 ----D---- C:\FlashInstaller

======List of files/folders modified in the last 1 month======

2015-12-27 14:57:40 ----D---- C:\Windows
2015-12-27 14:00:00 ----D---- C:\Windows\system32\sru
2015-12-27 12:37:30 ----RD---- C:\Windows\System32
2015-12-27 12:37:30 ----D---- C:\Windows\Inf
2015-12-27 12:37:30 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-12-27 12:36:56 ----D---- C:\Windows\Prefetch
2015-12-27 12:15:39 ----D---- C:\Windows\Temp
2015-12-27 11:33:09 ----D---- C:\Windows\Microsoft.NET
2015-12-27 10:13:07 ----HD---- C:\$Windows.~BT
2015-12-27 09:54:41 ----A---- C:\Windows\SYSWOW64\bscs.ini
2015-12-27 09:51:37 ----A---- C:\Windows\SYSWOW64\LOCALSERVICE.INI
2015-12-27 09:51:33 ----A---- C:\Windows\SYSWOW64\LOCALDEVICE.INI
2015-12-26 15:23:06 ----D---- C:\Users\Vojtěch\AppData\Roaming\vlc
2015-12-26 13:48:22 ----D---- C:\Windows\Tasks
2015-12-25 20:24:16 ----SHD---- C:\System Volume Information
2015-12-25 10:43:14 ----D---- C:\Windows\system32\config
2015-12-24 14:23:15 ----D---- C:\ProgramData\PDFC
2015-12-24 14:15:43 ----D---- C:\Windows\system32\catroot
2015-12-23 17:29:06 ----D---- C:\Windows\AUInstallAgent
2015-12-23 01:42:09 ----A---- C:\Windows\SYSWOW64\log.txt
2015-12-23 01:36:35 ----RD---- C:\Program Files (x86)
2015-12-22 17:35:56 ----D---- C:\Users\Vojtěch\AppData\Roaming\Adobe
2015-12-22 17:28:53 ----HD---- C:\ProgramData
2015-12-22 17:24:32 ----D---- C:\Windows\SysWOW64
2015-12-22 17:24:08 ----RD---- C:\Program Files
2015-12-22 17:22:56 ----SHD---- C:\Windows\Installer
2015-12-22 17:22:56 ----HD---- C:\Config.Msi
2015-12-22 17:22:31 ----D---- C:\Windows\WinSxS
2015-12-22 17:21:47 ----D---- C:\Program Files (x86)\Common Files
2015-12-22 17:18:26 ----D---- C:\Program Files\Common Files
2015-12-22 14:29:58 ----D---- C:\Users\Vojtěch\AppData\Roaming\uTorrent
2015-12-22 13:48:05 ----D---- C:\Windows\system32\Tasks
2015-12-22 10:25:16 ----D---- C:\Windows\system32\catroot2
2015-12-19 16:00:29 ----D---- C:\Windows\rescache
2015-12-18 17:45:14 ----D---- C:\Program Files (x86)\PokerStars.EU
2015-12-18 15:51:05 ----D---- C:\Windows\CbsTemp
2015-12-17 15:57:42 ----D---- C:\Program Files (x86)\Opera
2015-12-16 12:31:39 ----D---- C:\Windows\Minidump
2015-12-14 09:16:02 ----RSD---- C:\Windows\assembly
2015-12-13 21:34:52 ----HD---- C:\Program Files\WindowsApps
2015-12-13 21:09:01 ----D---- C:\Windows\debug
2015-12-13 20:51:49 ----D---- C:\Windows\system32\Drivers
2015-12-13 20:51:41 ----RSD---- C:\Windows\Fonts
2015-12-13 20:51:38 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-13 20:51:37 ----D---- C:\Program Files\Internet Explorer
2015-12-13 20:51:31 ----RD---- C:\Windows\ToastData
2015-12-10 19:03:07 ----D---- C:\Windows\system32\MRT
2015-12-10 18:57:18 ----A---- C:\Windows\system32\MRT.exe
2015-12-10 18:52:10 ----D---- C:\Windows\SYSWOW64\en-US
2015-12-10 18:52:10 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-12-10 18:52:10 ----D---- C:\Windows\system32\en-US
2015-12-10 18:52:10 ----D---- C:\Windows\system32\cs-CZ
2015-12-05 16:27:07 ----D---- C:\Users\Vojtěch\AppData\Roaming\Skype
2015-12-04 17:49:49 ----D---- C:\ProgramData\Skype
2015-12-03 21:38:57 ----D---- C:\Program Files (x86)\PacificPoker
2015-12-01 02:11:07 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem19.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\Windows\System32\drivers\amdkmpfd.sys [2012-07-09 35496]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-06-24 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-06-24 272248]
R0 hpdskflt;@oem7.inf,%service_desc%;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2012-08-22 31040]
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-05-04 641672]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2015-04-02 381608]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-06-24 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-06-24 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-06-26 442264]
R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2012-06-25 92536]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2015-02-28 127760]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-06-24 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-06-24 89944]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-06-24 137288]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2013-12-21 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2013-12-21 43680]
R3 Accelerometer;@oem7.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2012-08-22 43328]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-08-01 10280960]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-08-01 368640]
R3 BtAudioBusSrv;@oem15.inf,%SvcDesc%;Ralink Bluetooth Audio Bus Service; C:\Windows\System32\Drivers\BtAudioBus.sys [2012-06-15 23136]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2013-01-09 51712]
R3 BthL2caScoIfSrv;Bluetooth Profile Interface Driver Service; C:\Windows\System32\Drivers\BtL2caScoIf.sys [2012-07-19 56904]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2013-01-09 74752]
R3 btUrbFilterDrv;IVT URB Bluetooth Filter Driver Service; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [2012-10-02 48608]
R3 clwvd;@oem26.inf,%clwvd.DeviceDesc%;CyberLink Webcam Sharing Manager; C:\Windows\system32\DRIVERS\clwvd.sys [2012-08-28 40944]
R3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\Windows\system32\DRIVERS\Hamdrv.sys [2015-08-03 45680]
R3 HpqKbFiltr;@oem5.inf,%HpqKbFiltr.SvcDesc%;HpqKbFilter Driver; C:\Windows\System32\drivers\HpqKbFiltr.sys [2012-08-27 26504]
R3 IntcDAud;@oem21.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2012-08-23 9000256]
R3 JMCR;JMCR; C:\Windows\System32\drivers\jmcr.sys [2013-12-10 176880]
R3 MEIx64;@oem36.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\HECIx64.sys [2014-02-04 62784]
R3 netr28x;@oem39.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2013-12-04 2505904]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\System32\drivers\rfcomm.sys [2013-03-01 156672]
R3 rtbth;@oem37.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\Windows\System32\drivers\rtbth.sys [2013-12-02 1204424]
R3 RTL8168;@oem6.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2012-06-13 683664]
R3 SensorsServiceDriver;@sensorsservicedriver.inf,%WudfSensorsServiceDriverDisplayName%;UMDF Reflector service for SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 198656]
R3 SNP2UVC;@oem22.inf,%SERVICE_DISPLAY_NAME%;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2012-10-04 1864328]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2012-11-12 543744]
R3 SynTP;@oem34.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-10-30 549104]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2013-03-01 1175040]
S3 DAMDrv;DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [2012-11-09 64832]
S3 dg_ssudbus;@oem41.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 e1iexpress;@net1ic64.inf,%E1IExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\Windows\system32\DRIVERS\e1i63x64.sys [2012-06-02 333824]
S3 HPFXBULK;HPFXBULK; C:\Windows\system32\drivers\hpfx64bulk.sys [2007-07-16 20504]
S3 HPFXFAX;HPFXFAX; C:\Windows\system32\drivers\hpfx64fax.sys [2007-07-16 23064]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-08-23 9000256]
S3 nmwcd;@oem46.inf,%MFG% %SVC%;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;@oem50.inf,%MFG% %SVC%;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 SmbDrv;SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [2012-08-15 41272]
S3 SmbDrvI;SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [2012-08-15 43832]
S3 ssudmdm;@oem43.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-01 43008]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-05 210560]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-08-01 239616]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-06-24 343336]
R2 BlueSoleilCS;BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [2012-09-26 1612552]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2012-10-26 488824]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-08-03 2545512]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2015-05-19 99128]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2013-10-16 681760]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 hpsrv;@oem7.inf,%hpservice_desc%;HP Service; C:\Windows\system32\Hpservice.exe [2012-08-22 33600]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-12-10 732160]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2014-02-04 131032]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-02-04 165336]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-08-03 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-02-04 279000]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2013-07-18 1143432]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-10-10 75064]
R2 PnkBstrB;PnkBstrB; C:\Windows\syswow64\PnkBstrB.exe [2014-11-21 214520]
R2 ScsiAccess;ScsiAccess; C:\Program Files (x86)\Photodex\ProShowProducer\ScsiAccess.exe [2014-03-18 181312]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2012-11-12 327680]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2014-02-04 366040]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\Windows\system32\vcsFPService.exe [2013-09-12 3221392]
R3 BsHelpCS;BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [2012-09-19 146184]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-05-13 1129760]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-05-04 15496]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-10 269504]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16 50864]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-08-23 276288]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2012-11-19 477056]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-26 43616]
S3 GDOCService;gDoc PDF Service; C:\Program Files (x86)\Global Graphics\gDocPDFServer\MWFSrv.exe [2010-08-27 77824]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2012-12-10 803872]
S3 Macromedia Licensing Service;Macromedia Licensing Service; C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe [2015-03-22 68096]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2009-08-31 651776]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S4 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\Windows\System32\drivers\BthAvrcpTg.sys [2013-06-01 37632]
S4 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\Windows\System32\drivers\bthhfenum.sys [2012-07-26 51200]
S4 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\Windows\System32\drivers\BthHFHid.sys [2012-11-27 29952]

-----------------EOF-----------------

[altrok]

Krasny den Vam preju


V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Dejte logy FRST.txt a Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101
Pozn. pri druhem a dalsim spusteni FRST je pro vytvoreni logu Addition.txt nutne tuto volbu explicitne zatrhnout pred zacatkem skenu.

[valentyne187]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:27-12-2015
Ran by Vojtěch (administrator) on NH4E7QW (27-12-2015 16:49:01)
Running from C:\Users\Vojtěch\Desktop
Loaded Profiles: Vojtěch (Available Profiles: Vojtěch)
Platform: Windows 8 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
() C:\Program Files (x86)\Photodex\ProShowProducer\scsiaccess.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpAgent.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Opera Software) C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\34.0.2036.25\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
(Gretech Corp.) C:\Program Files (x86)\GRETECH\GomPlayer\GOM.EXE
(Opera Software) C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
(forum.viry.cz) C:\Users\Vojtěch\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-11-12] (IDT, Inc.)
HKLM\...\Run: [HP Color LaserJet CM1312 MFP Series Fax] => C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe [3700736 2009-09-22] (Hewlett-Packard Company)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285832 2013-05-04] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [371976 2012-09-19] (IVT Corporation)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [337184 2013-10-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-06-26] (Avast Software s.r.o.)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [683656 2013-07-18] (PDF Complete Inc)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [Boxoft Tools] => C:\ProgramData\Boxtools\Boxofttoolbox.exe [514048 2010-12-15] ()
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x95000000
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\Snow3.scr [352256 2009-06-29] (Thomas Olesch)
Lsa: [Notification Packages] DPPassFilter scecli
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-06-24] (Avast Software s.r.o.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-10-16]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\VirtuaGirl2.lnk [2015-10-06]
ShortcutTarget: VirtuaGirl2.lnk -> C:\Program Files (x86)\Vg\VirtuaGirl2.exe (No File)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

AutoConfigURL: [S-1-5-21-866173097-1738320259-1985661619-1002] => hxxp://unstopp.me/wpad.dat?5843936eda974fc69244e080d3e4a4e82969530
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{A4F71677-C072-4D8A-96CA-BDC340144CF4}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{B6DD668F-0FE8-4988-9F15-2792B0BCA99F}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-09-21] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-06-24] (Avast Software s.r.o.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-09-21] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-24] (Avast Software s.r.o.)
BHO-x32: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Program Files (x86)\Free Download Manager\iefdm2.dll [2014-09-23] (FreeDownloadManager.ORG)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\SKYPE4~1.DLL [2014-05-02] (Skype Technologies)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-10] ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-09-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-09-21] (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-10] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-02-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-02-04] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll [2011-03-09] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll [2012-10-26] (DigitalPersona, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Vojtěch\AppData\Roaming\mozilla\plugins\npPxPlay.dll [2014-03-18] ( )
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: DigitalPersona Extension - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2013-12-10] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-11]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.yoursites123.com/?type=hp&ts=144984 ... JLP3RBJLPX
CHR StartupUrls: Default -> "hxxp://www.yoursites123.com/?type=hp&ts=144984 ... JLP3RBJLPX"
CHR DefaultSearchURL: Default -> hxxp://www.yoursites123.com/web/?type=ds&ts=14 ... earchTerms}
CHR DefaultSearchKeyword: Default -> yoursites123
CHR Profile: C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Peněženka Google) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-22]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-07]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-06-24] (Avast Software s.r.o.)
R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1612552 2012-09-26] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [146184 2012-09-19] (IVT Corporation)
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [488824 2012-10-26] (DigitalPersona, Inc.)
S3 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [477056 2012-11-19] (Hewlett-Packard Company)
S3 GDOCService; C:\Program Files (x86)\Global Graphics\gDocPDFServer\MWFSrv.exe [77824 2010-08-27] (Global Graphics) [File not signed]
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [681760 2013-10-16] (Hewlett-Packard Company)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-11-06] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [139264 2007-11-06] (Hewlett-Packard Co.) [File not signed]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131032 2014-02-04] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2014-02-04] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-08-03] (LogMeIn, Inc.)
S3 Macromedia Licensing Service; C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe [68096 2015-03-22] () [File not signed]
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [File not signed]
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1143432 2013-07-18] (PDF Complete Inc)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75064 2014-10-10] ()
R2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [214520 2014-11-21] ()
R2 ScsiAccess; C:\Program Files (x86)\Photodex\ProShowProducer\ScsiAccess.exe [181312 2014-03-18] () [File not signed]
S3 ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [651776 2009-08-31] (Nokia) [File not signed]
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [327680 2012-11-12] (IDT, Inc.) [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S2 WdMan; C:\ProgramData\nWdMn\WdMan.exe [333312 2015-12-04] (TFuns LIMITED) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2015-07-06] (Microsoft Corporation)
S2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [35496 2012-07-09] (Advanced Micro Devices, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-06-24] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-06-24] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-06-24] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-06-24] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-06-24] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-06-26] (Avast Software s.r.o.)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-06-24] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-06-24] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2013-12-21] ()
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [48608 2012-10-02] (Ralink Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [64832 2012-11-09] (Hewlett-Packard Company)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
U3 Iastddtin3; no ImagePath
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-12-21] ()
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-02] (Ralink Technology, Corp.)
R3 SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-15] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [43832 2012-08-15] (Synaptics Incorporated)
R3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [1864328 2012-10-04] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381608 2015-04-02] (Duplex Secure Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-06-27] (Hewlett-Packard Development Company, L.P.)
U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-27 16:47 - 2015-12-27 16:47 - 00046415 _____ C:\Users\Vojtěch\Desktop\FRST3.txt
2015-12-27 16:46 - 2015-12-27 16:48 - 00045262 _____ C:\Users\Vojtěch\Desktop\Addition.txt
2015-12-27 16:44 - 2015-12-27 16:49 - 00021850 _____ C:\Users\Vojtěch\Desktop\FRST.txt
2015-12-27 16:43 - 2015-12-27 16:49 - 00000000 ____D C:\FRST
2015-12-27 16:43 - 2015-12-27 16:43 - 00015327 _____ C:\Users\Vojtěch\Desktop\LM.bat
2015-12-27 16:42 - 2015-12-27 16:42 - 00112640 _____ (forum.viry.cz) C:\Users\Vojtěch\Desktop\FRSTLauncher.exe
2015-12-27 16:39 - 2015-12-27 16:39 - 02370560 _____ (Farbar) C:\Users\Vojtěch\Desktop\FRST64.exe
2015-12-27 14:58 - 2015-12-27 14:58 - 00000000 ____D C:\rsit
2015-12-27 09:51 - 2015-12-27 16:10 - 00001078 _____ C:\Windows\system32dbgraw.bmp
2015-12-26 10:47 - 2015-12-26 10:57 - 171542590 _____ C:\Users\Vojtěch\Downloads\Aneta-Krejčíková---Poupata-(Striptiz).mpg
2015-12-23 01:34 - 2015-12-23 01:34 - 00000186 _____ C:\Users\Vojtěch\Downloads\dpd.txt
2015-12-22 17:35 - 2015-12-22 17:35 - 00000000 ____D C:\Users\Vojtěch\AppData\LocalLow\Adobe
2015-12-22 17:28 - 2015-12-22 17:28 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2015-12-22 17:24 - 2015-12-22 17:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
2015-12-22 17:24 - 2015-12-22 17:26 - 00000000 ____D C:\Program Files\Adobe
2015-12-22 17:21 - 2015-12-22 17:26 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-12-22 17:21 - 2015-12-22 17:21 - 00001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
2015-12-22 17:21 - 2015-12-22 17:21 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-12-22 17:21 - 2015-12-22 17:21 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-12-22 17:18 - 2015-12-22 17:26 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-12-22 15:17 - 2015-12-22 15:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\SimpleFiles
2015-12-22 15:01 - 2015-12-22 17:28 - 00000000 ____D C:\ProgramData\Adobe
2015-12-22 14:15 - 2015-12-22 14:15 - 00060755 _____ C:\Users\Vojtěch\Downloads\FC309E3BF62B1CCF1BDAE4715AC9F36C63850C83.torrent
2015-12-22 11:43 - 2015-12-22 11:43 - 00000007 _____ C:\Users\Vojtěch\Downloads\j.txt
2015-12-22 11:33 - 2015-12-22 11:33 - 03609291 _____ C:\Users\Vojtěch\Downloads\Flash12.rar
2015-12-21 15:12 - 2015-12-22 15:20 - 00000090 _____ C:\Users\Vojtěch\mm.cfg
2015-12-21 15:12 - 2015-12-21 15:55 - 00000000 ____D C:\Users\Vojtěch\AppData\Local\FlashDevelop
2015-12-21 15:12 - 2015-12-21 15:12 - 00001961 _____ C:\Users\Public\Desktop\FlashDevelop.lnk
2015-12-21 15:12 - 2015-12-21 15:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashDevelop
2015-12-21 15:11 - 2015-12-21 15:12 - 00000000 ____D C:\Program Files (x86)\FlashDevelop
2015-12-21 14:24 - 2015-12-21 14:24 - 00000000 ____D C:\Windows\XSxS
2015-12-20 19:12 - 2015-12-20 19:12 - 00000008 _____ C:\Users\Vojtěch\Downloads\u.txt
2015-12-18 19:39 - 2015-12-23 01:36 - 00000000 ____D C:\AdwCleaner
2015-12-18 16:43 - 2015-12-27 14:58 - 00000000 ____D C:\Program Files\trend micro
2015-12-16 21:00 - 2015-12-16 23:00 - 00000001 _____ C:\Windows\SysWOW64\en.html
2015-12-16 12:31 - 2015-12-16 12:31 - 00284456 _____ C:\Windows\Minidump\121615-32875-01.dmp
2015-12-15 22:37 - 2015-12-20 19:00 - 00000000 ____D C:\Users\Vojtěch\Downloads\Drive (2011)
2015-12-14 22:35 - 2015-12-14 22:35 - 00059557 _____ C:\Users\Vojtěch\Downloads\Dexter-S08E01(0000220617).srt
2015-12-14 20:12 - 2015-12-14 20:12 - 00073839 _____ C:\Users\Vojtěch\Downloads\[kat.cr]dexter.s08.season.8.720p.hdtv.x264.publichd.torrent
2015-12-14 11:50 - 2015-12-14 11:52 - 00284512 _____ C:\Windows\Minidump\121415-30515-01.dmp
2015-12-14 10:42 - 2015-12-14 10:43 - 00284424 _____ C:\Windows\Minidump\121415-37593-01.dmp
2015-12-14 09:38 - 2015-12-14 09:40 - 00285968 _____ C:\Windows\Minidump\121415-77906-01.dmp
2015-12-14 09:38 - 2015-12-14 09:38 - 00401272 _____ C:\Windows\system32\FNTCACHE.DAT
2015-12-13 13:10 - 2015-12-13 13:13 - 00000000 ____D C:\Users\Vojtěch\Downloads\Into the Wild[2007]DvDrip[Eng]-FXG
2015-12-11 16:25 - 2015-12-11 16:26 - 00000000 ____D C:\ProgramData\nWdMn
2015-12-10 19:03 - 2015-11-16 17:17 - 06970712 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-12-10 19:03 - 2015-11-16 17:10 - 01821192 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-12-10 19:03 - 2015-11-16 15:55 - 01410000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-12-10 19:03 - 2015-11-16 15:42 - 00171864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-12-10 19:03 - 2015-11-16 15:29 - 00961536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2015-12-10 19:03 - 2015-11-16 15:29 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2015-12-10 19:03 - 2015-11-16 15:29 - 00273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-12-10 19:03 - 2015-11-16 15:29 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-12-10 19:03 - 2015-11-16 15:29 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-12-10 19:03 - 2015-11-16 15:28 - 01223168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2015-12-10 19:03 - 2015-11-16 15:28 - 00668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-12-10 19:03 - 2015-11-16 15:28 - 00384512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2015-12-10 19:03 - 2015-11-16 15:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-12-10 19:03 - 2015-11-16 15:27 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-12-10 19:03 - 2015-11-16 15:26 - 01637376 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2015-12-10 19:03 - 2015-11-16 15:26 - 01282560 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-12-10 19:03 - 2015-11-16 15:26 - 01043968 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2015-12-10 19:03 - 2015-11-16 15:26 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-12-10 19:03 - 2015-11-16 15:26 - 00588800 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2015-12-10 19:03 - 2015-11-16 15:26 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2015-12-10 19:03 - 2015-11-16 15:26 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2015-12-10 19:03 - 2015-11-16 15:26 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-12-10 19:03 - 2015-11-16 15:26 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-12-10 19:03 - 2015-11-16 15:26 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-12-10 19:03 - 2015-11-16 15:26 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-12-10 19:03 - 2015-11-16 15:26 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-12-10 18:56 - 2015-10-24 06:28 - 00601088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2015-12-10 18:56 - 2015-10-24 06:24 - 00951808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2015-12-10 18:56 - 2015-10-22 20:01 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2015-12-10 18:56 - 2015-10-22 20:01 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2015-12-10 18:56 - 2015-10-22 20:01 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2015-12-10 18:56 - 2015-10-22 20:01 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2015-12-10 18:56 - 2015-10-22 20:00 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2015-12-10 18:56 - 2015-10-22 20:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2015-12-10 18:56 - 2015-10-22 14:43 - 00478280 _____ C:\Windows\SysWOW64\locale.nls
2015-12-10 18:56 - 2015-10-22 14:42 - 00478280 _____ C:\Windows\system32\locale.nls
2015-12-10 18:55 - 2015-11-07 13:45 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-12-10 18:54 - 2015-11-07 13:46 - 02238976 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-12-10 18:54 - 2015-11-07 13:46 - 01408512 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-12-10 18:54 - 2015-11-07 13:46 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2015-12-10 18:54 - 2015-11-07 13:46 - 00592384 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-12-10 18:54 - 2015-11-07 13:46 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2015-12-10 18:54 - 2015-11-07 13:45 - 19349504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-12-10 18:54 - 2015-11-07 13:45 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-12-10 18:54 - 2015-11-07 13:44 - 15423488 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-12-10 18:54 - 2015-11-07 13:44 - 03806208 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-12-10 18:54 - 2015-11-07 13:44 - 02657280 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-12-10 18:54 - 2015-11-07 13:44 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-12-10 18:54 - 2015-11-07 13:44 - 00949760 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-12-10 18:54 - 2015-11-07 13:44 - 00857600 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-12-10 18:54 - 2015-11-07 13:44 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-12-10 18:54 - 2015-11-07 13:44 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-12-10 18:54 - 2015-11-07 10:34 - 01763328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-12-10 18:54 - 2015-11-07 10:34 - 01181696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-12-10 18:54 - 2015-11-07 10:34 - 00513536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-12-10 18:54 - 2015-11-07 10:34 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2015-12-10 18:54 - 2015-11-07 10:33 - 14269440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-12-10 18:54 - 2015-11-07 10:33 - 13723136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-12-10 18:54 - 2015-11-07 10:33 - 02793984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-12-10 18:54 - 2015-11-07 10:33 - 02057216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-12-10 18:54 - 2015-11-07 10:33 - 00737280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-12-10 18:54 - 2015-11-07 10:33 - 00715776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-12-10 18:54 - 2015-11-07 10:33 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-12-10 18:54 - 2015-11-07 10:33 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-12-10 18:54 - 2015-11-07 10:33 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-12-10 18:54 - 2015-11-07 10:33 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-12-10 18:54 - 2015-11-07 06:29 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2015-12-10 18:54 - 2015-09-18 14:32 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-12-10 18:53 - 2015-11-05 10:55 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2015-12-10 18:53 - 2015-10-31 09:14 - 02038784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-12-10 18:53 - 2015-10-31 08:33 - 02308096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-12-10 18:52 - 2015-11-07 13:46 - 01341952 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-12-10 18:52 - 2015-11-07 13:44 - 01840640 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-12-10 18:52 - 2015-11-07 13:44 - 01280000 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-12-10 18:52 - 2015-11-07 10:32 - 01412608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-12-10 18:52 - 2015-11-07 08:52 - 04063232 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-12-10 18:52 - 2015-11-07 06:53 - 01126912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2015-12-10 18:52 - 2015-11-07 06:52 - 01680384 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2015-12-10 18:52 - 2015-11-07 06:46 - 01426944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2015-12-08 21:06 - 2015-12-08 21:06 - 03541948 _____ C:\Users\Vojtěch\Downloads\[CZE]-Prirucka_pro_JavaScript.pdf
2015-12-07 08:28 - 2015-12-07 08:28 - 00143108 _____ C:\Users\Vojtěch\Downloads\The-Social-Network-(2010)-1080p-BrRip-x264---1.2GB---YIFY.srt
2015-12-07 08:28 - 2015-12-07 08:28 - 00061458 _____ C:\Users\Vojtěch\Downloads\the.social.network.(2010).cze.1cd.(4026744).zip
2015-12-07 08:28 - 2015-12-07 08:28 - 00006354 _____ C:\Users\Vojtěch\Downloads\the.social.network.(4026744).nfo
2015-12-07 06:07 - 2015-12-07 06:07 - 1288615878 _____ C:\Users\Vojtěch\Downloads\The-Social-Network-(2010)-1080p-BrRip-x264---1.2GB---YIFY.mp4
2015-12-05 15:23 - 2015-12-05 15:23 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2015-12-05 15:23 - 2015-12-05 15:23 - 00000000 ____D C:\Program Files\Common Files\AV
2015-12-04 21:40 - 2015-12-04 22:48 - 00000000 ____D C:\Users\Vojtěch\Downloads\A.Bird.of.the.Air.2011.LiMiTED.DVDRip.XviD-LPD
2015-12-04 21:39 - 2015-12-04 21:39 - 00029357 _____ C:\Users\Vojtěch\Downloads\A.Bird.of.the.Air.2011.LiMiTED.DVDRip.XviD.LPD.1008985.seventorrents.com.torrent
2015-12-03 21:38 - 2015-12-04 18:15 - 00000000 ____D C:\FlashInstaller
2015-12-03 19:58 - 2015-12-03 20:50 - 921858010 _____ C:\Users\Vojtěch\Downloads\The-Captive---Uvězněná---Queen-of-the-Night-2014,-CZ-tit.avi
2015-12-01 19:57 - 2015-12-01 19:57 - 03845248 _____ (Bet365 Poker) C:\Users\Vojtěch\Downloads\SetupPoker_407fae.exe
2015-11-30 21:33 - 2015-11-30 21:33 - 00047116 _____ C:\Users\Vojtěch\Downloads\[kat.cr]x.art.sara.luvv.infinite.luvv.torrent
2015-11-30 21:33 - 2015-11-30 21:33 - 00023682 _____ C:\Users\Vojtěch\Downloads\[DC-Tracker]X-Art - Above The Air - Addison C (2015) 1080p.torrent

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-27 16:47 - 2013-11-04 09:26 - 00446976 ___SH C:\Users\Vojtěch\Desktop\Thumbs.db
2015-12-27 16:47 - 2012-07-26 06:37 - 00000000 ____D C:\Windows
2015-12-27 15:55 - 2015-01-13 19:55 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-12-27 12:45 - 2013-11-07 20:20 - 00000000 ____D C:\Users\Vojtěch\Downloads\03_serialy
2015-12-27 12:37 - 2012-11-22 05:19 - 00756994 _____ C:\Windows\system32\perfh005.dat
2015-12-27 12:37 - 2012-11-22 05:19 - 00163422 _____ C:\Windows\system32\perfc005.dat
2015-12-27 12:37 - 2012-07-26 08:28 - 01854972 _____ C:\Windows\system32\PerfStringBackup.INI
2015-12-27 12:37 - 2012-07-26 06:37 - 00000000 ____D C:\Windows\Inf
2015-12-27 10:13 - 2014-11-21 23:02 - 00000000 ___HD C:\$Windows.~BT
2015-12-27 09:54 - 2012-09-26 09:53 - 00000950 _____ C:\Windows\SysWOW64\bscs.ini
2015-12-27 09:51 - 2013-12-10 14:57 - 00003620 _____ C:\Windows\SysWOW64\LOCALSERVICE.INI
2015-12-27 09:51 - 2013-12-10 14:57 - 00000043 _____ C:\Windows\SysWOW64\LOCALDEVICE.INI
2015-12-26 15:23 - 2014-01-05 23:02 - 00000000 ____D C:\Users\Vojtěch\AppData\Roaming\vlc
2015-12-26 15:22 - 2013-10-05 22:29 - 05396480 ___SH C:\Users\Vojtěch\Downloads\Thumbs.db
2015-12-26 13:48 - 2014-05-07 18:57 - 00003174 _____ C:\Windows\System32\Tasks\HPCeeScheduleForVojtěch
2015-12-26 13:48 - 2014-05-07 18:57 - 00000356 _____ C:\Windows\Tasks\HPCeeScheduleForVojtěch.job
2015-12-26 13:48 - 2013-10-03 22:32 - 00000000 ____D C:\Users\Vojtěch
2015-12-26 01:19 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\AUInstallAgent
2015-12-24 14:23 - 2012-11-22 04:49 - 00000000 ____D C:\ProgramData\PDFC
2015-12-23 22:32 - 2014-11-24 09:52 - 00000000 ____D C:\Users\Vojtěch\Downloads\13_POKER
2015-12-23 11:07 - 2013-10-03 22:41 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-866173097-1738320259-1985661619-1002
2015-12-23 01:40 - 2013-10-16 18:34 - 00000000 ____D C:\Users\Vojtěch\AppData\Local\Adobe
2015-12-23 01:38 - 2012-07-26 08:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-23 01:36 - 2015-09-13 11:15 - 00000000 ___RD C:\Users\Vojtěch\Desktop\gorbitch
2015-12-23 01:36 - 2014-08-26 18:38 - 00000000 ____D C:\Users\Vojtěch\Desktop\Tor Browser
2015-12-23 01:36 - 2013-10-15 21:35 - 00001006 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-12-23 01:36 - 2013-10-07 18:49 - 00000000 ____D C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amnesia
2015-12-23 01:36 - 2013-10-04 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-12-23 01:36 - 2013-10-03 22:32 - 00000987 _____ C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-12-22 17:35 - 2013-10-03 22:32 - 00000000 ____D C:\Users\Vojtěch\AppData\Roaming\Adobe
2015-12-22 14:29 - 2013-10-19 21:12 - 00000000 ____D C:\Users\Vojtěch\AppData\Roaming\uTorrent
2015-12-21 09:27 - 2013-11-09 18:53 - 00000000 ____D C:\Users\Vojtěch\AppData\Local\LogMeIn Hamachi
2015-12-19 16:00 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\rescache
2015-12-18 17:46 - 2015-02-21 21:35 - 00000000 ____D C:\Users\Vojtěch\AppData\Local\PokerStars.EU
2015-12-18 17:45 - 2015-02-21 21:31 - 00000000 ____D C:\Program Files (x86)\PokerStars.EU
2015-12-18 15:51 - 2012-07-26 08:59 - 00000000 ____D C:\Windows\CbsTemp
2015-12-17 15:57 - 2013-10-15 21:35 - 00000000 ____D C:\Program Files (x86)\Opera
2015-12-16 12:31 - 2014-02-10 18:28 - 00000000 ____D C:\Windows\Minidump
2015-12-13 21:34 - 2012-07-26 09:12 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-13 20:54 - 2012-07-26 06:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-12-13 20:51 - 2012-07-26 09:12 - 00000000 ___RD C:\Windows\ToastData
2015-12-12 13:33 - 2014-12-22 17:31 - 00003842 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1381869317
2015-12-10 19:03 - 2013-10-05 00:01 - 00000000 ____D C:\Windows\system32\MRT
2015-12-10 18:57 - 2013-10-05 00:01 - 140158008 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-12-10 18:55 - 2013-10-16 18:35 - 00003802 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-12-07 20:53 - 2014-05-13 19:03 - 00000000 ____D C:\Users\Vojtěch\Downloads\0
2015-12-07 07:43 - 2015-01-16 21:15 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-12-05 22:16 - 2013-11-07 20:22 - 00000000 ____D C:\Users\Vojtěch\Downloads\06_instalacky_a_aplikace
2015-12-05 16:27 - 2015-11-17 13:32 - 00000000 ____D C:\Users\Vojtěch\AppData\Roaming\Skype
2015-12-05 14:19 - 2013-10-04 21:04 - 00003946 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-05 14:19 - 2013-10-04 21:04 - 00003710 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-04 19:08 - 2015-11-06 18:24 - 00000000 ____D C:\Users\Vojtěch\Documents\888poker
2015-12-04 17:49 - 2015-11-17 13:31 - 00000000 ____D C:\ProgramData\Skype
2015-12-03 21:38 - 2015-11-06 18:22 - 00000000 ____D C:\Program Files (x86)\PacificPoker
2015-12-02 15:02 - 2015-11-26 19:53 - 00000000 ____D C:\Users\Vojtěch\Downloads\The Exorcist_1973_DVDrip_XviD-Ekolb
2015-12-01 02:11 - 2015-11-12 13:11 - 00176096 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-12-01 02:11 - 2015-07-20 17:54 - 00826336 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-30 00:34 - 2013-11-07 20:20 - 00000000 ____D C:\Users\Vojtěch\Downloads\02_hudba
2015-11-27 18:16 - 2013-10-05 22:23 - 00000024 _____ C:\SROF.ini

==================== Files in the root of some directories =======

2015-05-26 16:20 - 2015-05-26 16:20 - 0000040 _____ () C:\Users\Vojtěch\AppData\Roaming\cdr.ini
2015-11-19 13:19 - 2015-11-19 13:19 - 0000000 _____ () C:\Users\Vojtěch\AppData\Local\{A365E46F-AAE6-4A5E-A4F0-FEF0DDD7E94B}
2015-10-16 19:24 - 2015-10-16 19:46 - 0000387 _____ () C:\ProgramData\hpzinstall.log

Some files in TEMP:
====================
C:\Users\Vojtěch\AppData\Local\Temp\Quarantine.exe
C:\Users\Vojtěch\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-12-20 09:54

==================== End of FRST.txt ============================

[valentyne187]

a jeste takova drobnost, vzdy kdyz v GOMplayeru (jiny defakto nepouzivam, sem tam VLC) spustim nejaky film, vyskoci mi neco o skriptu (viz. obrazek v priloze)

[altrok]

Odinstalujte starou a zranitelnou verzi javy. Pokud javu potrebujete, pak nainstalujte novou z java.com - pozor na adware pri jeji instalaci http://forum.viry.cz/viewtopic.php?p=1374438#p1374438 . Z hlediska bezpecnosti (exploity) je lepsi ji nemit. Aktualni je 8U66. Verze Javy, ktere v PC mate nainstalovane:

• Java 7 Update 67 (64-bit)

• Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
• ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
• znovu spustte FRST a kliknete na Fix
• po restartu bude na plose ulozen fixlog, jehoz obsah vlozte do pristi odpovedi

  Kód: Vybrat vše

  Start
  CreateRestorePoint:
  CloseProcesses:
  Folder: C:\ProgramData\nWdMn
  HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
  HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [AdobeBridge] => [X]
  HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x95000000
  Startup: C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\VirtuaGirl2.lnk [2015-10-06]
  SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  CHR HomePage: Default -> hxxp://www.yoursites123.com/?type=hp&ts ... JLP3RBJLPX
  CHR StartupUrls: Default -> "hxxp://www.yoursites123.com/?type=hp&ts=1449847473&z=922ed0131eea36f72dfdaa5gez6z1t8bdzfm5z1q4t&from=ient07021&uid=HGSTXHTS545050A7E380_TM8514ZN3RBJLP3RBJLPX"
  CHR DefaultSearchURL: Default -> hxxp://www.yoursites123.com/web/?type=d ... 3RBJLPX&q={searchTerms}
  CHR DefaultSearchKeyword: Default -> yoursites123
  U3 Iastddtin3; no ImagePath
  2015-12-27 16:47 - 2015-12-27 16:47 - 00046415 _____ C:\Users\Vojtěch\Desktop\FRST3.txt
  2015-12-27 16:46 - 2015-12-27 16:48 - 00045262 _____ C:\Users\Vojtěch\Desktop\Addition.txt
  2015-12-27 16:44 - 2015-12-27 16:49 - 00021850 _____ C:\Users\Vojtěch\Desktop\FRST.txt
  2015-12-27 16:43 - 2015-12-27 16:43 - 00015327 _____ C:\Users\Vojtěch\Desktop\LM.bat
  2015-12-27 14:58 - 2015-12-27 14:58 - 00000000 ____D C:\rsit
  2015-12-18 16:43 - 2015-12-27 14:58 - 00000000 ____D C:\Program Files\trend micro
  2015-12-22 15:17 - 2015-12-22 15:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\SimpleFiles
  FirewallRules: [{0F26B018-053C-411E-8BBC-63D06067162A}] => (Allow) C:\Program Files (x86)\simplitec\simplifast\PowerSuite.exe
  FirewallRules: [{77A5B506-26CA-4308-80A2-213A78FBE4D0}] => (Allow) C:\Program Files (x86)\simplitec\simplifast\PowerSuite.exe
  FirewallRules: [{372B8935-48DD-4518-BC9E-0B92350EAA14}] => (Allow) C:\Program Files (x86)\simplitec\simplifast\ServiceProvider.exe
  FirewallRules: [{4E32DD89-558E-4A47-83A7-F8E6A7308EB5}] => (Allow) C:\Program Files (x86)\simplitec\simplifast\ServiceProvider.exe
  FirewallRules: [{67805B65-2A3A-4E69-882F-6A4381B0EE1C}] => (Allow) C:\Program Files (x86)\SimpleFiles\SimpleFiles.exe
  FirewallRules: [{0508CD17-1985-46A3-BD42-331720A83954}] => (Allow) C:\Program Files (x86)\SimpleFiles\SimpleFiles.exe
  FirewallRules: [{A5468B71-B606-40C3-88E7-4412E2D203E2}] => (Allow) C:\Program Files (x86)\SimpleFiles\downloader.exe
  FirewallRules: [{730E1C8C-231B-4C24-9D88-5C4BCD7066FF}] => (Allow) C:\Program Files (x86)\SimpleFiles\downloader.exe
  CMD: ipconfig /flushdns
  Hosts:
  EmptyTemp:
  End

[valentyne187]

Fix result of Farbar Recovery Scan Tool (x64) Version:27-12-2015
Ran by Vojtěch (2015-12-27 20:03:40) Run:1
Running from C:\Users\Vojtěch\Desktop
Loaded Profiles: Vojtěch (Available Profiles: Vojtěch)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
Folder: C:\ProgramData\nWdMn
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x95000000
Startup: C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\VirtuaGirl2.lnk [2015-10-06]
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
CHR HomePage: Default -> hxxp://www.yoursites123.com/?type=hp&ts ... JLP3RBJLPX
CHR StartupUrls: Default -> "hxxp://www.yoursites123.com/?type=hp&ts=144984 ... JLP3RBJLPX"
CHR DefaultSearchURL: Default -> hxxp://www.yoursites123.com/web/?type=d ... 3RBJLPX&q={searchTerms}
CHR DefaultSearchKeyword: Default -> yoursites123
U3 Iastddtin3; no ImagePath
2015-12-27 16:47 - 2015-12-27 16:47 - 00046415 _____ C:\Users\Vojtěch\Desktop\FRST3.txt
2015-12-27 16:46 - 2015-12-27 16:48 - 00045262 _____ C:\Users\Vojtěch\Desktop\Addition.txt
2015-12-27 16:44 - 2015-12-27 16:49 - 00021850 _____ C:\Users\Vojtěch\Desktop\FRST.txt
2015-12-27 16:43 - 2015-12-27 16:43 - 00015327 _____ C:\Users\Vojtěch\Desktop\LM.bat
2015-12-27 14:58 - 2015-12-27 14:58 - 00000000 ____D C:\rsit
2015-12-18 16:43 - 2015-12-27 14:58 - 00000000 ____D C:\Program Files\trend micro
2015-12-22 15:17 - 2015-12-22 15:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\SimpleFiles
FirewallRules: [{0F26B018-053C-411E-8BBC-63D06067162A}] => (Allow) C:\Program Files (x86)\simplitec\simplifast\PowerSuite.exe
FirewallRules: [{77A5B506-26CA-4308-80A2-213A78FBE4D0}] => (Allow) C:\Program Files (x86)\simplitec\simplifast\PowerSuite.exe
FirewallRules: [{372B8935-48DD-4518-BC9E-0B92350EAA14}] => (Allow) C:\Program Files (x86)\simplitec\simplifast\ServiceProvider.exe
FirewallRules: [{4E32DD89-558E-4A47-83A7-F8E6A7308EB5}] => (Allow) C:\Program Files (x86)\simplitec\simplifast\ServiceProvider.exe
FirewallRules: [{67805B65-2A3A-4E69-882F-6A4381B0EE1C}] => (Allow) C:\Program Files (x86)\SimpleFiles\SimpleFiles.exe
FirewallRules: [{0508CD17-1985-46A3-BD42-331720A83954}] => (Allow) C:\Program Files (x86)\SimpleFiles\SimpleFiles.exe
FirewallRules: [{A5468B71-B606-40C3-88E7-4412E2D203E2}] => (Allow) C:\Program Files (x86)\SimpleFiles\downloader.exe
FirewallRules: [{730E1C8C-231B-4C24-9D88-5C4BCD7066FF}] => (Allow) C:\Program Files (x86)\SimpleFiles\downloader.exe
CMD: ipconfig /flushdns
Hosts:
EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.

========================= Folder: C:\ProgramData\nWdMn ========================

2015-12-11 16:26 - 2015-12-27 10:13 - 0000001 _____ () C:\ProgramData\nWdMn\aaaaconf
2015-12-11 16:25 - 2015-12-04 04:23 - 0333312 _____ (TFuns LIMITED) C:\ProgramData\nWdMn\WdMan.exe
2015-12-11 16:25 - 2015-12-11 16:25 - 0000000 ____D () C:\ProgramData\nWdMn\aaaa

====== End of Folder: ======

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SwitchBoard => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\AdobeCS6ServiceManager => value removed successfully
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value removed successfully
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoDriveTypeAutoRun => value removed successfully
C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\VirtuaGirl2.lnk => moved successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
Chrome HomePage => removed successfully
Chrome StartupUrls => removed successfully
Chrome DefaultSearchURL => removed successfully
Chrome DefaultSearchKeyword => removed successfully
Iastddtin3 => service removed successfully
C:\Users\Vojtěch\Desktop\FRST3.txt => moved successfully
"C:\Users\Vojtěch\Desktop\Addition.txt" => not found.
"C:\Users\Vojtěch\Desktop\FRST.txt" => not found.
C:\Users\Vojtěch\Desktop\LM.bat => moved successfully
C:\rsit => moved successfully
C:\Program Files\trend micro => moved successfully
C:\ProgramData\Microsoft\Windows\Start Menu\SimpleFiles => moved successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0F26B018-053C-411E-8BBC-63D06067162A} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{77A5B506-26CA-4308-80A2-213A78FBE4D0} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{372B8935-48DD-4518-BC9E-0B92350EAA14} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4E32DD89-558E-4A47-83A7-F8E6A7308EB5} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{67805B65-2A3A-4E69-882F-6A4381B0EE1C} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0508CD17-1985-46A3-BD42-331720A83954} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A5468B71-B606-40C3-88E7-4412E2D203E2} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{730E1C8C-231B-4C24-9D88-5C4BCD7066FF} => value removed successfully

========= ipconfig /flushdns =========


Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========= End of CMD: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 735.1 MB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 20:05:32 ====

[Blondarson]

Zdravím. stáhl jsem Windows 10 a zpočátku mi nešel vypínat. Takže jsem si stáhl program na vyřešení problému a výsledek je že mi zahlcují reklamy prohlížeč, pokaždé když kliknu.

Dle instrukcí zasílám potřebné a předem děkuji za jakoukoliv pomoc

[Blondarson]

chtěl jsem to sem zkopírovat ale hlásí mi to mnoho znaků a příloha txt připojit v souboru nejde

Tak to sem nahážu po půlkách jestli neva?

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:27-12-2015
Ran by uzivatel (administrator) on UZIVATE-3T5RH9M (27-12-2015 19:50:39)
Running from C:\Users\uzivatel\Downloads
Loaded Profiles: uzivatel (Available Profiles: uzivatel & Administrator & DefaultAppPool)
Platform: Windows 10 Pro Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.15731.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
() C:\Program Files (x86)\Pine Tree\bin\utilPineTree.exe
() C:\Program Files (x86)\Pine Tree\updatePineTree.exe
() C:\Program Files (x86)\Pine Tree\bin\PineTree.PurBrowse64.exe
() C:\Program Files (x86)\Pine Tree\bin\PineTree.expext.exe
() C:\Program Files (x86)\Pine Tree\bin\PineTree.BrowserAdapter.exe
() C:\Program Files (x86)\Pine Tree\bin\PineTree.BrowserAdapter64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2779024 2011-03-14] (CANON INC.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1282632 2013-07-23] (CANON INC.)
HKLM-x32\...\Run: [ApnTBMon] => C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1734544 2015-11-13] (APN)
HKLM-x32\...\Run: [gmsd_re_004010007] => [X]
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [3013712 2015-12-14] (Valve Corporation)
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2015-12-19] (Electronic Arts)
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2014-07-01] (Google Inc.)
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\Run: [GoogleChromeAutoLaunch_FA6F99A34873A093FA88EBF49A43251D] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [741704 2015-12-11] (Google Inc.)
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\uzivatel\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\uzivatel\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50749056 2015-12-08] (Skype Technologies S.A.)
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4566952 2014-06-24] (Safer-Networking Ltd.)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\uzivatel\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64\FileSyncShell64.dll [2015-12-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\uzivatel\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64\FileSyncShell64.dll [2015-12-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\uzivatel\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64\FileSyncShell64.dll [2015-12-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\uzivatel\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\FileSyncShell.dll [2015-12-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\uzivatel\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\FileSyncShell.dll [2015-12-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\uzivatel\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\FileSyncShell.dll [2015-12-13] (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{1892674f-8e87-4406-b5e3-7b4a1c8f3de9}: [DhcpNameServer] 192.168.99.251 192.168.99.243
Tcpip\..\Interfaces\{3ac208a5-0edb-4079-b53e-98b185f01385}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{a87ae84e-8b50-491f-8fdc-62cf94aa03bf}: [DhcpNameServer] 192.168.99.251 192.168.99.243

Internet Explorer:
==================
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130889328807330835&GUID=2E52DB38-611C-459A-BFF6-5A3D475378AE
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.e-snet.cz
SearchScopes: HKLM -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001 -> DefaultScope {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001 -> {13345C59-E136-45E8-938C-4FC0AF18BC1D} URL = hxxp://searchsimple-a.akamaihd.net/?affID=mt-dq&q={searchTerms}&r=609
SearchScopes: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001 -> {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\PROGRA~2\SPYWAR~1\STINTE~2.DLL => No File
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-12-22] (Google Inc.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Pine Tree 1.0.0.7 -> {198925f1-49b9-47f6-8a88-7c1fd063c99a} -> C:\Program Files (x86)\Pine Tree\PineTreebho.dll [2015-05-05] (Pine Tree)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-16] (Oracle Corporation)
BHO-x32: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\PROGRA~2\SPYWAR~1\STINTE~1.DLL => No File
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22] (Google Inc.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-16] (Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-12-22] (Google Inc.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22] (Google Inc.)
Toolbar: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-12-22] (Google Inc.)
Toolbar: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001 -> No Name - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No File
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)

FireFox:
========
FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll [2014-09-01] (EA Digital Illusions CE AB)
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2011-04-20] (CANON INC.)
FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll [2014-09-01] (EA Digital Illusions CE AB)
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-16] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-16] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Profile 1 -> search.ask.com/?gct=hp
CHR DefaultSearchURL: Profile 1 -> hxxp://www.search.ask.com/web?q={searchTerms}
CHR DefaultSearchKeyword: Profile 1 -> search.ask.com
CHR DefaultSuggestURL: Profile 1 -> hxxp://ssmsp.ask.com/query?sstype=prefix&li=ff&q={searchTerms}
CHR Profile: C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Pine Tree) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlihcdefnjnagpemfefaegdfdipiamnf [2015-10-11] [UpdateUrl: hxxp://wwwpinetreeinfoc-a.akamaihd.net/update/chrome] <==== ATTENTION
CHR Profile: C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Shopping App by Ask) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aaaaahaeginbdcckocjkhbciadcafnep [2015-12-27]
CHR Extension: (Ask Search) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aaaaahlfahldnilidgnlikdckbfehhca [2015-11-17]
CHR Extension: (Ask Search) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf [2015-11-21]
CHR Extension: (Prezentace Google) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-11]
CHR Extension: (Dokumenty Google) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-11]
CHR Extension: (Disk Google) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (YouTube) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-11]
CHR Extension: (Vyhledávání Google) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-01]
CHR Extension: (Tabulky Google) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-21]
CHR Extension: (Skype) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-12-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-11]
CHR Extension: (Gmail) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-11]
CHR HKLM\...\Chrome\Extension: [aaaaahaeginbdcckocjkhbciadcafnep] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaahaeginbdcckocjkhbciadcafnep.crx [2015-10-01]
CHR HKLM\...\Chrome\Extension: [aaaaahlfahldnilidgnlikdckbfehhca] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaahlfahldnilidgnlikdckbfehhca.crx [2015-10-01]
CHR HKLM\...\Chrome\Extension: [aaaaaiabcopkplhgaedhbloeejhhankf] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaaiabcopkplhgaedhbloeejhhankf.crx [2015-11-13]
CHR HKLM-x32\...\Chrome\Extension: [aaaaahaeginbdcckocjkhbciadcafnep] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaahaeginbdcckocjkhbciadcafnep.crx [2015-10-01]
CHR HKLM-x32\...\Chrome\Extension: [aaaaahlfahldnilidgnlikdckbfehhca] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaahlfahldnilidgnlikdckbfehhca.crx [2015-10-01]
CHR HKLM-x32\...\Chrome\Extension: [aaaaaiabcopkplhgaedhbloeejhhankf] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaaiabcopkplhgaedhbloeejhhankf.crx [2015-11-13]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [198544 2015-11-13] (APN LLC.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [138192 2011-02-07] ()
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2015-12-19] (Electronic Arts)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
R2 Update Pine Tree; C:\Program Files (x86)\Pine Tree\updatePineTree.exe [660720 2015-12-27] ()
R2 Util Pine Tree; C:\Program Files (x86)\Pine Tree\bin\utilPineTree.exe [660720 2015-12-27] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
S2 ST2012_Svc; "C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\Windows\System32\drivers\athwnx.sys [4207104 2015-10-30] (Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Advanced Micro Devices)
R2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [51496 2014-07-28] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
R1 {04f4591f-794f-4cd3-bd44-605ca9a098e2}Gw64; C:\Windows\System32\drivers\{04f4591f-794f-4cd3-bd44-605ca9a098e2}Gw64.sys [48776 2015-09-20] (StdLib)
R1 {0f8b6559-f83b-4fe1-988e-fd7ce3f6fd44}Gw64; C:\Windows\System32\drivers\{0f8b6559-f83b-4fe1-988e-fd7ce3f6fd44}Gw64.sys [48776 2015-09-11] (StdLib)
R1 {126336c7-4a78-4328-80f9-e30008142a02}Gw64; C:\Windows\System32\drivers\{126336c7-4a78-4328-80f9-e30008142a02}Gw64.sys [48776 2015-09-26] (StdLib)
R1 {17cd0eb8-7649-4b79-8f2f-e32643468fda}Gw64; C:\Windows\System32\drivers\{17cd0eb8-7649-4b79-8f2f-e32643468fda}Gw64.sys [48776 2015-11-11] (StdLib)
R1 {27134153-7909-46db-a364-f96d5c07d5e7}Gw64; C:\Windows\System32\drivers\{27134153-7909-46db-a364-f96d5c07d5e7}Gw64.sys [48776 2015-10-16] (StdLib)
R1 {2911d039-4963-4ee7-b449-26ccdcdd182e}Gw64; C:\Windows\System32\drivers\{2911d039-4963-4ee7-b449-26ccdcdd182e}Gw64.sys [48776 2015-12-10] (StdLib)
R1 {409b5616-88ab-4383-9b1b-91844015a4ae}Gw64; C:\Windows\System32\drivers\{409b5616-88ab-4383-9b1b-91844015a4ae}Gw64.sys [48776 2015-11-26] (StdLib)
R1 {40a32ddf-7a0c-4c07-9d3b-239f5a0d115d}Gw64; C:\Windows\System32\drivers\{40a32ddf-7a0c-4c07-9d3b-239f5a0d115d}Gw64.sys [48776 2015-12-23] (StdLib)
R1 {47ed07d3-68fa-4ddf-ab7f-f49b3b3825a3}Gw64; C:\Windows\System32\drivers\{47ed07d3-68fa-4ddf-ab7f-f49b3b3825a3}Gw64.sys [48776 2015-08-26] (StdLib)
R1 {499ce51b-789d-4cf4-98f8-47f5524ee5d6}Gw64; C:\Windows\System32\drivers\{499ce51b-789d-4cf4-98f8-47f5524ee5d6}Gw64.sys [48776 2015-12-13] (StdLib)
R1 {4f6a301e-2e78-4d46-a7d6-fd03ccefb66c}Gw64; C:\Windows\System32\drivers\{4f6a301e-2e78-4d46-a7d6-fd03ccefb66c}Gw64.sys [48776 2015-11-22] (StdLib)
R1 {5a687576-2779-4df9-b22f-2700edeeda7a}Gw64; C:\Windows\System32\drivers\{5a687576-2779-4df9-b22f-2700edeeda7a}Gw64.sys [48776 2015-10-25] (StdLib)
R1 {6160b90c-07fe-4175-aa9e-3e6573704de9}Gw64; C:\Windows\System32\drivers\{6160b90c-07fe-4175-aa9e-3e6573704de9}Gw64.sys [48776 2015-12-05] (StdLib)
R1 {69d0fe69-abf1-49dc-94c8-927dc0b1e701}Gw64; C:\Windows\System32\drivers\{69d0fe69-abf1-49dc-94c8-927dc0b1e701}Gw64.sys [48776 2015-11-06] (StdLib)
R1 {6a38cdc0-7a72-4785-b3ee-5db6ca7a7de5}Gw64; C:\Windows\System32\drivers\{6a38cdc0-7a72-4785-b3ee-5db6ca7a7de5}Gw64.sys [48776 2015-11-16] (StdLib)
R1 {77dbb931-8f1c-4439-b524-1250dcb8f03f}Gw64; C:\Windows\System32\drivers\{77dbb931-8f1c-4439-b524-1250dcb8f03f}Gw64.sys [48776 2015-10-28] (StdLib)
R1 {7a2924ed-67e5-4ad2-9143-610c2c792c1e}Gw64; C:\Windows\System32\drivers\{7a2924ed-67e5-4ad2-9143-610c2c792c1e}Gw64.sys [48776 2015-12-26] (StdLib)
R1 {814b70f2-89de-4982-b4fb-8ca0819c757d}Gw64; C:\Windows\System32\drivers\{814b70f2-89de-4982-b4fb-8ca0819c757d}Gw64.sys [48776 2015-10-02] (StdLib)
R1 {913a6d0f-a9c1-44ed-b0d6-773e3e22eafd}Gw64; C:\Windows\System32\drivers\{913a6d0f-a9c1-44ed-b0d6-773e3e22eafd}Gw64.sys [48776 2015-12-16] (StdLib)
R1 {95d7b1b3-fd09-476b-973a-05652f2a62d9}Gw64; C:\Windows\System32\drivers\{95d7b1b3-fd09-476b-973a-05652f2a62d9}Gw64.sys [48776 2015-10-18] (StdLib)
R1 {9ffa1362-5a89-4483-ab53-e729971bb7cf}Gw64; C:\Windows\System32\drivers\{9ffa1362-5a89-4483-ab53-e729971bb7cf}Gw64.sys [48776 2015-08-28] (StdLib)
R1 {a5b4a5b4-74b5-494b-a6fd-2cfe081bbca9}Gw64; C:\Windows\System32\drivers\{a5b4a5b4-74b5-494b-a6fd-2cfe081bbca9}Gw64.sys [48776 2015-09-14] (StdLib)
R1 {b0da6485-dd10-4f1a-8ab2-3ccb6b34e4ef}Gw64; C:\Windows\System32\drivers\{b0da6485-dd10-4f1a-8ab2-3ccb6b34e4ef}Gw64.sys [48776 2015-11-20] (StdLib)
R1 {b9973bdd-ba10-4e1a-93ec-46821cb83585}Gw64; C:\Windows\System32\drivers\{b9973bdd-ba10-4e1a-93ec-46821cb83585}Gw64.sys [48776 2015-10-23] (StdLib)
R1 {bed6a9a5-c682-4267-a965-f3e7a4ec3b06}Gw64; C:\Windows\System32\drivers\{bed6a9a5-c682-4267-a965-f3e7a4ec3b06}Gw64.sys [48776 2015-10-31] (StdLib)
R1 {c7908ed8-e375-4125-97a1-cce7ce60fe1a}Gw64; C:\Windows\System32\drivers\{c7908ed8-e375-4125-97a1-cce7ce60fe1a}Gw64.sys [48776 2015-09-01] (StdLib)
R1 {dd2c6dba-8747-4843-ba36-0ec5fda3cfaf}Gw64; C:\Windows\System32\drivers\{dd2c6dba-8747-4843-ba36-0ec5fda3cfaf}Gw64.sys [48776 2015-12-08] (StdLib)
R1 {e8417e91-8e96-4433-ba1a-b629249540f5}Gw64; C:\Windows\System32\drivers\{e8417e91-8e96-4433-ba1a-b629249540f5}Gw64.sys [48776 2015-11-15] (StdLib)
R1 {f9345fd3-b976-4de7-89b6-b3ba7c6aaf5b}Gw64; C:\Windows\System32\drivers\{f9345fd3-b976-4de7-89b6-b3ba7c6aaf5b}Gw64.sys [48776 2015-09-21] (StdLib)
R1 {fcb340ad-66dd-4ad6-b5a6-cf198aae06ea}Gw64; C:\Windows\System32\drivers\{fcb340ad-66dd-4ad6-b5a6-cf198aae06ea}Gw64.sys [48776 2015-10-09] (StdLib)
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-27 19:50 - 2015-12-27 19:51 - 00027145 _____ C:\Users\uzivatel\Downloads\FRST.txt
2015-12-27 19:48 - 2015-12-27 19:48 - 00112640 _____ (forum.viry.cz) C:\Users\uzivatel\Downloads\FRSTLauncher.exe
2015-12-27 19:48 - 2015-12-27 19:48 - 00029696 _____ C:\Users\uzivatel\AppData\Local\MSGBOX.EXE
2015-12-27 19:48 - 2015-12-27 19:48 - 00015327 _____ C:\Users\uzivatel\Desktop\LM.bat
2015-12-27 19:48 - 2015-12-27 19:48 - 00001132 _____ C:\Users\uzivatel\Desktop\FRSTLauncher – zástupce.lnk
2015-12-27 19:48 - 2015-12-27 19:48 - 00001076 _____ C:\Users\uzivatel\Desktop\FRST64 – zástupce.lnk
2015-12-27 19:47 - 2015-12-27 19:50 - 00000000 ____D C:\FRST
2015-12-27 19:46 - 2015-12-27 19:46 - 02370560 _____ (Farbar) C:\Users\uzivatel\Downloads\FRST64 (1).exe
2015-12-27 19:43 - 2015-12-27 19:47 - 02370560 _____ (Farbar) C:\Users\uzivatel\Downloads\FRST64.exe
2015-12-27 16:54 - 2009-06-10 22:00 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20151227-165438.backup
2015-12-27 16:28 - 2015-12-27 16:29 - 00017773 _____ C:\WINDOWS\wininit.ini
2015-12-27 12:46 - 2015-12-27 12:46 - 00000000 ____D C:\Program Files\Common Files\AV
2015-12-27 12:46 - 2015-07-28 17:52 - 00821920 _____ (Safer-Networking Ltd. ) C:\Users\Public\Desktop\Post Win10 Spybot-install.exe
2015-12-27 12:36 - 2015-12-27 12:36 - 00001470 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2015-12-27 12:36 - 2015-12-27 12:36 - 00001458 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2015-12-27 12:36 - 2015-12-27 12:36 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2015-12-27 12:36 - 2015-12-27 12:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2015-12-27 12:35 - 2015-12-27 16:53 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-12-27 12:35 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe
2015-12-27 12:34 - 2015-12-27 12:46 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-12-27 12:31 - 2015-12-27 12:33 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\uzivatel\Downloads\spybot-2.4.exe
2015-12-27 10:51 - 2015-12-27 10:51 - 00980520 _____ (Generic ) C:\Users\uzivatel\Downloads\adobe_flash_player.exe
2015-12-27 09:26 - 2015-12-27 09:26 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-12-27 08:42 - 2015-12-26 20:31 - 00048776 _____ (StdLib) C:\WINDOWS\system32\Drivers\{7a2924ed-67e5-4ad2-9143-610c2c792c1e}Gw64.sys
2015-12-23 19:03 - 2015-12-23 08:32 - 00048776 _____ (StdLib) C:\WINDOWS\system32\Drivers\{40a32ddf-7a0c-4c07-9d3b-239f5a0d115d}Gw64.sys
2015-12-22 16:09 - 2015-12-22 16:09 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-12-21 07:18 - 2015-12-21 07:18 - 00734293 _____ C:\Users\uzivatel\Downloads\Daně2.pdf
2015-12-21 07:16 - 2015-12-21 07:16 - 00999807 _____ C:\Users\uzivatel\Downloads\Daně1.pdf
2015-12-20 09:10 - 2015-12-20 09:10 - 00000000 ____D C:\ProgramData\ATI
2015-12-19 08:57 - 2015-12-19 08:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-12-19 08:56 - 2015-12-19 08:56 - 00000000 ____D C:\Program Files\ATI Technologies
2015-12-19 08:36 - 2015-12-07 05:48 - 02544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-12-19 08:36 - 2015-12-07 05:48 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2015-12-19 08:36 - 2015-12-07 05:48 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2015-12-19 08:36 - 2015-12-07 05:07 - 16984064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-19 08:36 - 2015-12-07 04:58 - 24601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-12-19 08:36 - 2015-12-07 04:53 - 19339264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-12-19 08:36 - 2015-12-07 04:43 - 02598400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-19 08:35 - 2015-12-07 05:57 - 00973664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-12-19 08:35 - 2015-12-07 05:55 - 01281376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 01155944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 01092456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 01065080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 01020096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00983464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00884256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00823264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00526856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00502112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00498448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00462760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00450904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00337840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-12-19 08:35 - 2015-12-07 05:47 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-12-19 08:35 - 2015-12-07 05:47 - 00898184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-12-19 08:35 - 2015-12-07 05:47 - 00716928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-12-19 08:35 - 2015-12-07 05:46 - 03671888 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-12-19 08:35 - 2015-12-07 05:46 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-12-19 08:35 - 2015-12-07 05:45 - 00264544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-19 08:35 - 2015-12-07 05:15 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-19 08:35 - 2015-12-07 05:10 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-19 08:35 - 2015-12-07 05:06 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2015-12-19 08:35 - 2015-12-07 05:03 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-12-19 08:35 - 2015-12-07 05:01 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-12-19 08:35 - 2015-12-07 05:00 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-19 08:35 - 2015-12-07 05:00 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-12-19 08:35 - 2015-12-07 04:59 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-12-19 08:35 - 2015-12-07 04:59 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-12-19 08:35 - 2015-12-07 04:59 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-12-19 08:35 - 2015-12-07 04:57 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2015-12-19 08:35 - 2015-12-07 04:56 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-12-19 08:35 - 2015-12-07 04:56 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-19 08:35 - 2015-12-07 04:51 - 01318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-19 08:35 - 2015-12-07 04:50 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-19 08:35 - 2015-12-07 04:49 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2015-12-19 08:35 - 2015-12-07 04:47 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-12-19 08:35 - 2015-12-07 04:45 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-19 08:35 - 2015-12-07 04:45 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-19 08:35 - 2015-12-07 04:45 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-19 08:35 - 2015-12-07 04:44 - 02796032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-12-19 08:35 - 2015-12-07 04:43 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-19 08:35 - 2015-12-07 04:41 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-12-19 08:35 - 2015-12-07 04:40 - 01995776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-19 08:35 - 2015-12-07 04:40 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2015-12-19 08:34 - 2015-12-07 05:49 - 00412512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2015-12-19 08:34 - 2015-12-07 05:48 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2015-12-19 08:34 - 2015-12-07 05:48 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2015-12-19 08:34 - 2015-12-07 05:47 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2015-12-19 08:34 - 2015-12-07 05:15 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-19 08:34 - 2015-12-07 05:09 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2015-12-19 08:34 - 2015-12-07 05:09 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-19 08:34 - 2015-12-07 05:09 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2015-12-19 08:34 - 2015-12-07 05:07 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2015-12-19 08:34 - 2015-12-07 05:07 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-19 08:34 - 2015-12-07 05:06 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-12-19 08:34 - 2015-12-07 05:06 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-12-19 08:34 - 2015-12-07 05:05 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-12-19 08:34 - 2015-12-07 05:05 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-19 08:34 - 2015-12-07 05:04 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2015-12-19 08:34 - 2015-12-07 05:04 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2015-12-19 08:34 - 2015-12-07 05:02 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2015-12-19 08:34 - 2015-12-07 05:02 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2015-12-19 08:34 - 2015-12-07 05:01 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundTransferHost.exe
2015-12-19 08:34 - 2015-12-07 05:00 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2015-12-19 08:34 - 2015-12-07 05:00 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-19 08:34 - 2015-12-07 04:59 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2015-12-19 08:34 - 2015-12-07 04:58 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-12-19 08:34 - 2015-12-07 04:57 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2015-12-19 08:34 - 2015-12-07 04:57 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2015-12-19 08:34 - 2015-12-07 04:55 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-12-19 08:34 - 2015-12-07 04:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-12-19 08:34 - 2015-12-07 04:54 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-12-19 08:34 - 2015-12-07 04:54 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2015-12-19 08:34 - 2015-12-07 04:53 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-12-19 08:34 - 2015-12-07 04:51 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2015-12-19 08:34 - 2015-12-07 04:48 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-12-19 08:34 - 2015-12-07 04:40 - 03593216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-12-19 08:34 - 2015-12-07 04:39 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-12-19 08:34 - 2015-12-07 04:38 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2015-12-19 08:34 - 2015-12-07 04:33 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2015-12-19 08:34 - 2015-12-07 04:32 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 47794160 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 39720944 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 30775792 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 27544560 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 25320432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 22327280 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 15725552 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 14310896 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 06686192 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 05216240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 01196032 _____ C:\WINDOWS\system32\amdocl_as64.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 01070592 _____ C:\WINDOWS\system32\amdocl_ld64.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 01004032 _____ C:\WINDOWS\SysWOW64\amdocl_as32.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 00935408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00935408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00807424 _____ C:\WINDOWS\SysWOW64\amdocl_ld32.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 00631792 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00524272 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00375792 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 00341488 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 00243696 _____ C:\WINDOWS\system32\clinfo.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 00213488 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00199664 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00198640 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00168944 _____ C:\WINDOWS\system32\atieah64.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 00165360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00152560 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 00150512 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00143344 _____ C:\WINDOWS\system32\amdhdl64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00136176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00132080 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00122352 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00111600 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00111088 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00103408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00096752 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00083952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00078320 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00078320 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00073712 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00071152 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00068080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00064496 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00060912 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00059888 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 00059376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00057840 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00052208 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00048112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00038384 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00012784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00012784 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2015-12-16 20:06 - 2015-12-16 20:06 - 09355016 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2015-12-16 20:06 - 2015-12-16 20:06 - 07683096 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2015-12-16 20:06 - 2015-12-16 20:06 - 00471320 _____ C:\WINDOWS\system32\amdmiracast.dll
2015-12-16 20:06 - 2015-12-16 20:06 - 00088000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2015-12-16 20:06 - 2015-12-16 20:06 - 00088000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2015-12-16 20:06 - 2015-12-16 20:06 - 00081160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2015-12-16 20:06 - 2015-12-16 20:06 - 00081160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2015-12-16 18:23 - 2015-12-16 08:31 - 00048776 _____ (StdLib) C:\WINDOWS\system32\Drivers\{913a6d0f-a9c1-44ed-b0d6-773e3e22eafd}Gw64.sys
2015-12-16 18:04 - 2015-12-16 18:04 - 01547264 _____ C:\Users\uzivatel\Downloads\Hehe.pps
2015-12-16 18:00 - 2015-12-16 18:00 - 05017759 _____ C:\Users\uzivatel\Downloads\Hostice.ppsx
2015-12-13 18:24 - 2015-12-13 18:27 - 02271319 _____ C:\Users\uzivatel\Downloads\video-1450025232.mp4.mp4
2015-12-13 18:13 - 2015-12-13 18:15 - 16021232 _____ C:\Users\uzivatel\Downloads\video-1450026714.mp4.mp4
2015-12-13 17:14 - 2015-12-13 07:21 - 00048776 _____ (StdLib) C:\WINDOWS\system32\Drivers\{499ce51b-789d-4cf4-98f8-47f5524ee5d6}Gw64.sys
2015-12-13 14:41 - 2015-11-24 08:35 - 22393856 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-12-13 14:40 - 2015-12-01 08:12 - 02152800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-12-13 14:40 - 2015-11-24 13:07 - 01817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-12-13 14:40 - 2015-11-24 12:06 - 01540768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-12-13 14:40 - 2015-11-24 11:26 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-12-13 14:40 - 2015-11-24 10:37 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2015-12-13 14:40 - 2015-11-24 10:26 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-12-13 14:40 - 2015-11-24 09:58 - 00604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-12-13 14:40 - 2015-11-24 09:55 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-12-13 14:40 - 2015-11-24 09:52 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-12-13 14:40 - 2015-11-24 09:49 - 01648640 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2015-12-13 14:40 - 2015-11-24 09:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-12-13 14:40 - 2015-11-24 08:59 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-12-13 14:40 - 2015-11-24 08:57 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2015-12-13 14:40 - 2015-11-24 08:29 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-12-13 14:40 - 2015-11-24 08:23 - 13381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-12-13 14:40 - 2015-11-24 08:11 - 18678272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-12-13 14:40 - 2015-11-24 08:08 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-12-13 14:40 - 2015-11-24 08:04 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-12-13 14:40 - 2015-11-22 11:47 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-12-13 14:40 - 2015-11-22 11:47 - 02653816 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-13 14:40 - 2015-11-22 11:41 - 01859448 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-12-13 14:40 - 2015-11-22 11:41 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-12-13 14:40 - 2015-11-22 11:35 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-12-13 14:40 - 2015-11-22 11:34 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2015-12-13 14:40 - 2015-11-22 11:33 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2015-12-13 14:40 - 2015-11-22 11:33 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-13 14:40 - 2015-11-22 11:33 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-13 14:40 - 2015-11-22 11:30 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-12-13 14:40 - 2015-11-22 11:30 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-12-13 14:40 - 2015-11-22 11:26 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-12-13 14:40 - 2015-11-22 11:25 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll
2015-12-13 14:40 - 2015-11-22 11:24 - 02772584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2015-12-13 14:40 - 2015-11-22 11:20 - 00795840 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-12-13 14:40 - 2015-11-22 11:19 - 00440160 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-12-13 14:40 - 2015-11-22 11:14 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2015-12-13 14:40 - 2015-11-22 10:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-13 14:40 - 2015-11-22 10:54 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-13 14:40 - 2015-11-22 10:54 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2015-12-13 14:40 - 2015-11-22 10:50 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll
2015-12-13 14:40 - 2015-11-22 10:49 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2015-12-13 14:40 - 2015-11-22 10:45 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-12-13 14:40 - 2015-11-22 10:45 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-12-13 14:40 - 2015-11-22 10:43 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-12-13 14:40 - 2015-11-22 10:43 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-12-13 14:40 - 2015-11-22 10:42 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-12-13 14:40 - 2015-11-22 10:42 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll
2015-12-13 14:40 - 2015-11-22 10:41 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2015-12-13 14:40 - 2015-11-22 10:39 - 02126848 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-12-13 14:40 - 2015-11-22 10:39 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-12-13 14:40 - 2015-11-22 10:39 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-12-13 14:40 - 2015-11-22 10:39 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-12-13 14:40 - 2015-11-22 10:39 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-12-13 14:40 - 2015-11-22 10:38 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-12-13 14:40 - 2015-11-22 10:38 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-12-13 14:40 - 2015-11-22 10:38 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-12-13 14:40 - 2015-11-22 10:38 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2015-12-13 14:40 - 2015-11-22 10:38 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll
2015-12-13 14:40 - 2015-11-22 10:37 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2015-12-13 14:40 - 2015-11-22 10:37 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-13 14:40 - 2015-11-22 10:37 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-12-13 14:40 - 2015-11-22 10:36 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-13 14:40 - 2015-11-22 10:34 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2015-12-13 14:40 - 2015-11-22 10:34 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2015-12-13 14:40 - 2015-11-22 10:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2015-12-13 14:40 - 2015-11-22 10:32 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-12-13 14:40 - 2015-11-22 10:31 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-12-13 14:40 - 2015-11-22 10:31 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-12-13 14:40 - 2015-11-22 10:28 - 01734656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-12-13 14:40 - 2015-11-22 10:28 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-12-13 14:40 - 2015-11-22 10:28 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-12-13 14:40 - 2015-11-22 10:28 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-12-13 14:40 - 2015-11-22 10:28 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-12-13 14:40 - 2015-11-22 10:28 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-12-13 14:40 - 2015-11-22 10:27 - 03993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-13 14:40 - 2015-11-22 10:27 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-12-13 14:40 - 2015-11-22 10:27 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2015-12-13 14:40 - 2015-11-22 10:27 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2015-12-13 14:40 - 2015-11-22 10:26 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-12-13 14:40 - 2015-11-22 10:26 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-12-13 14:40 - 2015-11-22 10:26 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2015-12-13 14:40 - 2015-11-22 10:26 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-12-13 14:40 - 2015-11-22 10:25 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-12-13 14:40 - 2015-11-22 10:24 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-12-13 14:40 - 2015-11-22 10:24 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-12-13 14:40 - 2015-11-22 10:20 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2015-12-13 14:40 - 2015-11-22 10:18 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-12-13 14:40 - 2015-11-22 10:18 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-12-13 14:40 - 2015-11-22 10:18 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2015-12-13 14:40 - 2015-11-22 10:17 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-12-13 14:40 - 2015-11-22 10:17 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-12-13 14:40 - 2015-11-22 10:11 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-12-13 14:40 - 2015-11-21 07:21 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-12-13 14:40 - 2015-11-21 07:02 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-12-13 14:40 - 2015-11-21 06:29 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2015-12-13 14:40 - 2015-11-21 06:07 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2015-12-13 14:40 - 2015-11-13 07:51 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-12-13 14:40 - 2015-11-13 07:51 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-12-13 14:40 - 2015-11-13 07:51 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2015-12-13 14:40 - 2015-11-13 07:43 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-12-13 14:40 - 2015-11-13 07:43 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-12-13 14:40 - 2015-11-13 07:43 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2015-12-13 14:40 - 2015-11-13 07:43 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-12-13 14:40 - 2015-11-13 07:43 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2015-12-13 14:40 - 2015-11-13 07:42 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-12-13 14:40 - 2015-11-13 07:42 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-12-13 14:40 - 2015-11-13 07:41 - 22572632 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-12-13 14:40 - 2015-11-13 07:33 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2015-12-13 14:40 - 2015-11-13 07:33 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-12-13 14:40 - 2015-11-13 07:33 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-12-13 14:40 - 2015-11-13 07:32 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2015-12-13 14:40 - 2015-11-13 07:21 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2015-12-13 14:40 - 2015-11-13 07:21 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-12-13 14:40 - 2015-11-13 07:21 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-12-13 14:40 - 2015-11-13 07:21 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2015-12-13 14:40 - 2015-11-13 07:21 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-12-13 14:40 - 2015-11-13 07:21 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2015-12-13 14:40 - 2015-11-13 07:18 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-12-13 14:40 - 2015-11-13 07:09 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2015-12-13 14:40 - 2015-11-13 06:58 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-12-13 14:40 - 2015-11-13 06:58 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-12-13 14:40 - 2015-11-13 06:57 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2015-12-13 14:40 - 2015-11-13 06:55 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-12-13 14:40 - 2015-11-13 06:53 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2015-12-13 14:40 - 2015-11-13 06:50 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-12-13 14:40 - 2015-11-13 06:49 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-12-13 14:40 - 2015-11-13 06:39 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-12-13 14:40 - 2015-11-13 06:29 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-12-13 14:40 - 2015-11-13 06:27 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2015-12-13 14:40 - 2015-11-13 06:19 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-12-13 14:40 - 2015-11-05 13:05 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-12-13 14:40 - 2015-11-05 11:40 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-12-13 14:40 - 2015-11-05 11:25 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-12-13 14:40 - 2015-11-05 10:41 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-12-13 14:40 - 2015-11-05 10:13 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-12-13 14:40 - 2015-11-05 10:10 - 00803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-12-13 14:40 - 2015-11-05 09:18 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-12-13 14:40 - 2015-11-05 09:15 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-12-13 14:39 - 2015-11-24 11:01 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2015-12-13 14:39 - 2015-11-24 10:54 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2015-12-13 14:39 - 2015-11-24 10:53 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-12-13 14:39 - 2015-11-24 10:45 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll
2015-12-13 14:39 - 2015-11-24 10:19 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-12-13 14:39 - 2015-11-24 10:12 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2015-12-13 14:39 - 2015-11-24 09:54 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2015-12-13 14:39 - 2015-11-24 09:14 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2015-12-13 14:39 - 2015-11-22 11:00 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2015-12-13 14:39 - 2015-11-22 11:00 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2015-12-13 14:39 - 2015-11-22 10:57 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-13 14:39 - 2015-11-22 10:57 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-13 14:39 - 2015-11-22 10:57 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-13 14:39 - 2015-11-22 10:57 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-13 14:39 - 2015-11-22 10:56 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-13 14:39 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2015-12-13 14:39 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-13 14:39 - 2015-11-22 10:56 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll
2015-12-13 14:39 - 2015-11-22 10:55 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-13 14:39 - 2015-11-22 10:54 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-13 14:39 - 2015-11-22 10:54 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2015-12-13 14:39 - 2015-11-22 10:54 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll
2015-12-13 14:39 - 2015-11-22 10:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-12-13 14:39 - 2015-11-22 10:54 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2015-12-13 14:39 - 2015-11-22 10:54 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2015-12-13 14:39 - 2015-11-22 10:54 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-13 14:39 - 2015-11-22 10:52 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2015-12-13 14:39 - 2015-11-22 10:52 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-13 14:39 - 2015-11-22 10:52 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2015-12-13 14:39 - 2015-11-22 10:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-13 14:39 - 2015-11-22 10:51 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-12-13 14:39 - 2015-11-22 10:51 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-13 14:39 - 2015-11-22 10:51 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2015-12-13 14:39 - 2015-11-22 10:51 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2015-12-13 14:39 - 2015-11-22 10:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2015-12-13 14:39 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2015-12-13 14:39 - 2015-11-22 10:49 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll
2015-12-13 14:39 - 2015-11-22 10:48 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2015-12-13 14:39 - 2015-11-22 10:46 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-13 14:39 - 2015-11-22 10:45 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-12-13 14:39 - 2015-11-22 10:45 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll
2015-12-13 14:39 - 2015-11-22 10:45 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2015-12-13 14:39 - 2015-11-22 10:45 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-12-13 14:39 - 2015-11-22 10:45 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll
2015-12-13 14:39 - 2015-11-22 10:45 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2015-12-13 14:39 - 2015-11-22 10:45 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2015-12-13 14:39 - 2015-11-22 10:44 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2015-12-13 14:39 - 2015-11-22 10:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2015-12-13 14:39 - 2015-11-22 10:43 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-12-13 14:39 - 2015-11-22 10:43 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll
2015-12-13 14:39 - 2015-11-22 10:42 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-12-13 14:39 - 2015-11-22 10:42 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2015-12-13 14:39 - 2015-11-22 10:42 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2015-12-13 14:39 - 2015-11-22 10:41 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-12-13 14:39 - 2015-11-22 10:40 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-12-13 14:39 - 2015-11-22 10:40 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-12-13 14:39 - 2015-11-22 10:40 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2015-12-13 14:39 - 2015-11-22 10:40 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
2015-12-13 14:39 - 2015-11-22 10:39 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2015-12-13 14:39 - 2015-11-22 10:39 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2015-12-13 14:39 - 2015-11-22 10:39 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2015-12-13 14:39 - 2015-11-22 10:39 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2015-12-13 14:39 - 2015-11-22 10:39 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2015-12-13 14:39 - 2015-11-22 10:39 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2015-12-13 14:39 - 2015-11-22 10:34 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-13 14:39 - 2015-11-22 10:34 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-12-13 14:39 - 2015-11-22 10:34 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-13 14:39 - 2015-11-22 10:34 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-13 14:39 - 2015-11-22 10:33 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll
2015-12-13 14:39 - 2015-11-22 10:31 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-12-13 14:39 - 2015-11-22 10:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2015-12-13 14:39 - 2015-11-22 10:28 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2015-12-13 14:39 - 2015-11-22 10:28 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2015-12-13 14:39 - 2015-11-22 10:28 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2015-12-13 14:39 - 2015-11-22 10:27 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2015-12-13 14:39 - 2015-11-22 10:27 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-12-13 14:39 - 2015-11-22 10:25 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-12-13 14:39 - 2015-11-22 10:24 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2015-12-13 14:39 - 2015-11-22 10:24 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2015-12-13 14:39 - 2015-11-22 10:23 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-12-13 14:39 - 2015-11-21 06:44 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-12-13 14:39 - 2015-11-13 07:55 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2015-12-13 14:39 - 2015-11-13 07:42 - 00408128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2015-12-13 14:39 - 2015-11-13 07:07 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-12-13 14:39 - 2015-11-13 07:06 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-12-13 14:39 - 2015-11-13 07:05 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-12-13 14:39 - 2015-11-13 07:05 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-12-13 14:39 - 2015-11-13 07:05 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-12-13 14:39 - 2015-11-13 07:05 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2015-12-13 14:39 - 2015-11-13 07:04 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-12-13 14:39 - 2015-11-13 07:04 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2015-12-13 14:39 - 2015-11-13 07:04 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-12-13 14:39 - 2015-11-13 07:03 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-12-13 14:39 - 2015-11-13 07:00 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2015-12-13 14:39 - 2015-11-13 06:59 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2015-12-13 14:39 - 2015-11-13 06:56 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-12-13 14:39 - 2015-11-13 06:54 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-12-13 14:39 - 2015-11-13 06:40 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2015-12-13 14:39 - 2015-11-13 06:40 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll
2015-12-13 14:39 - 2015-11-13 06:34 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2015-12-13 14:39 - 2015-11-13 06:33 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-12-13 14:39 - 2015-11-13 06:30 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-12-13 14:39 - 2015-11-13 06:30 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-12-13 14:39 - 2015-11-13 06:23 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-12-13 14:39 - 2015-11-05 11:08 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2015-12-13 14:39 - 2015-11-05 11:08 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2015-12-13 14:39 - 2015-11-05 11:04 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-12-13 14:39 - 2015-11-05 11:00 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2015-12-13 14:39 - 2015-11-05 10:44 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-12-13 14:39 - 2015-11-05 10:03 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2015-12-13 14:39 - 2015-11-05 10:02 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2015-12-13 14:39 - 2015-11-05 09:59 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-12-13 14:39 - 2015-11-05 09:55 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2015-12-13 14:39 - 2015-11-05 09:42 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-12-13 12:20 - 2015-12-13 12:20 - 00000000 ____D C:\Users\uzivatel\AppData\Local\ActiveSync
2015-12-13 12:17 - 2015-12-13 12:17 - 00000020 ___SH C:\Users\uzivatel\ntuser.ini
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Šablony
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Poslední
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Okolní síť
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Dokumenty
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Data aplikací
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2015-12-13 11:55 - 2015-12-23 18:59 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-12-13 11:46 - 2015-12-13 11:46 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-12-13 11:46 - 2015-12-13 11:46 - 00000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs
2015-12-13 11:46 - 2015-12-13 11:46 - 00000000 ____D C:\Users\Default\AppData\Roaming\ATI
2015-12-13 11:46 - 2015-12-13 11:46 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-12-13 11:46 - 2015-12-13 11:46 - 00000000 ____D C:\Users\Default\AppData\Local\ATI
2015-12-13 11:46 - 2015-12-13 11:46 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs
2015-12-13 11:46 - 2015-12-13 11:46 - 00000000 ____D C:\Users\Default User\AppData\Roaming\ATI
2015-12-13 11:46 - 2015-12-13 11:46 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-12-13 11:46 - 2015-12-13 11:46 - 00000000 ____D C:\Users\Default User\AppData\Local\ATI
2015-12-13 11:42 - 2015-12-13 11:42 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-12-13 11:41 - 2015-12-13 11:47 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2015-12-13 11:39 - 2015-12-23 00:07 - 00000000 ____D C:\Users\uzivatel
2015-12-13 11:39 - 2015-12-13 11:51 - 00000000 ____D C:\Users\DefaultAppPool
2015-12-13 11:39 - 2015-12-13 11:51 - 00000000 ____D C:\Users\Administrator
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Šablony
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Soubory cookie
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Poslední
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Okolní tiskárny
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Okolní síť
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Nabídka Start
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Dokumenty
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Documents\Obrázky
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Documents\Hudba
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Documents\Filmy
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Data aplikací
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\AppData\Local\Data aplikací
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Šablony
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Soubory cookie
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Poslední
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Okolní tiskárny
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Okolní síť
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Nabídka Start
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Dokumenty
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Obrázky
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Hudba
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Filmy
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Data aplikací
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Data aplikací
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Šablony
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Soubory cookie
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Poslední
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Okolní tiskárny
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Okolní síť
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Nabídka Start
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Dokumenty
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Documents\Obrázky
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Documents\Hudba
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Documents\Filmy
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Data aplikací
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Data aplikací
2015-12-13 11:38 - 2015-12-22 16:10 - 02039646 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-13 11:38 - 2015-12-13 11:38 - 01949904 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-12-13 11:35 - 2015-12-19 08:56 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2015-12-13 11:35 - 2015-12-13 11:42 - 00000000 ____D C:\ProgramData\Package Cache
2015-12-13 11:35 - 2015-12-13 11:35 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2015-12-13 11:35 - 2015-12-13 11:35 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2015-12-13 11:34 - 2015-12-13 11:35 - 00000000 ____D C:\Program Files\AMD
2015-12-13 11:34 - 2015-10-30 08:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-12-13 11:31 - 2015-12-23 18:59 - 00345528 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-13 11:30 - 2015-12-13 18:00 - 00000000 ___DC C:\WINDOWS\Panther
2015-12-13 11:27 - 2015-12-13 11:27 - 00000000 ____D C:\Windows.old
2015-12-13 11:26 - 2015-12-13 11:26 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-12-13 11:23 - 2015-12-13 11:23 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-12-13 11:23 - 2015-12-13 11:23 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2015-12-13 11:23 - 2015-12-13 11:23 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-12-13 11:23 - 2015-12-13 11:23 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-12-13 11:23 - 2015-12-13 11:23 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-12-13 11:23 - 2015-12-13 11:23 - 00000000 ____D C:\Program Files\MSBuild
2015-12-13 11:23 - 2015-12-13 11:23 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-12-13 11:23 - 2015-12-13 11:23 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-12-13 11:23 - 2015-12-13 11:23 - 00000000 ____D C:\inetpub
2015-12-13 11:22 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-12-13 11:22 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-12-13 11:22 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-12-13 11:22 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-12-13 11:22 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-12-13 11:22 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-12-13 11:14 - 2015-12-13 11:14 - 00000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2015-12-12 06:39 - 2015-12-13 11:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-12-12 06:39 - 2015-12-12 06:39 - 00002658 _____ C:\Users\Public\Desktop\Skype.lnk
2015-12-10 22:07 - 2015-12-10 22:08 - 08685992 _____ C:\Users\uzivatel\Downloads\Tucny_M._a_R.Brzobohaty_nadhera.wmv
2015-12-10 21:54 - 2015-12-10 21:54 - 01257984 _____ C:\Users\uzivatel\Downloads\muž_a_žena.pps
2015-12-10 21:50 - 2015-12-10 21:50 - 00723755 _____ C:\Users\uzivatel\Downloads\IMG_6038.MOV
2015-12-10 21:50 - 2015-12-10 21:50 - 00000211 _____ C:\Users\uzivatel\Downloads\untitled-[1.2] (1).html
2015-12-10 21:49 - 2015-12-10 21:49 - 00000211 _____ C:\Users\uzivatel\Downloads\untitled-[1.2].html
2015-12-10 21:33 - 2015-12-10 21:34 - 03322880 _____ C:\Users\uzivatel\Downloads\mikulas.pps
2015-12-10 21:28 - 2015-12-10 21:28 - 01800704 _____ C:\Users\uzivatel\Downloads\Hoppalas_in_Bildern.pps
2015-12-10 21:07 - 2015-12-10 06:29 - 00048776 _____ (StdLib) C:\WINDOWS\system32\Drivers\{2911d039-4963-4ee7-b449-26ccdcdd182e}Gw64.sys
2015-12-08 22:20 - 2015-12-08 12:28 - 00048776 _____ (StdLib) C:\WINDOWS\system32\Drivers\{dd2c6dba-8747-4843-ba36-0ec5fda3cfaf}Gw64.sys
2015-12-06 09:41 - 2015-12-06 11:03 - 00000000 ____D C:\Users\uzivatel\AppData\Roaming\dvdcss
2015-12-05 12:39 - 2015-12-05 00:30 - 00048776 _____ (StdLib) C:\WINDOWS\system32\Drivers\{6160b90c-07fe-4175-aa9e-3e6573704de9}Gw64.sys
2015-11-29 18:00 - 2015-11-29 18:00 - 00024576 _____ C:\Users\uzivatel\Downloads\Měsíční_plán (6).xls
2015-11-29 17:55 - 2015-11-29 17:55 - 00023552 _____ C:\Users\uzivatel\Downloads\Měsíční_plán (5).xls

==================== One Month Modified files and folders ========

[Blondarson]

Pokračování:

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-27 19:49 - 2015-08-26 21:21 - 00000000 ____D C:\Program Files (x86)\Pine Tree
2015-12-27 19:47 - 2015-10-30 07:28 - 00000000 ____D C:\Windows
2015-12-27 19:38 - 2014-07-01 07:04 - 00000992 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-27 19:14 - 2014-06-11 14:31 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-12-27 18:49 - 2009-07-14 03:34 - 00000580 _____ C:\WINDOWS\win.ini
2015-12-27 18:26 - 2015-08-27 15:40 - 00004218 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{ECEE36A5-191A-4AAC-AEFF-8C4875BBCD4F}
2015-12-27 17:39 - 2014-07-01 07:04 - 00000988 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-27 17:33 - 2015-01-02 07:38 - 00000000 ____D C:\ProgramData\CanonIJPLM
2015-12-27 17:33 - 2014-07-08 12:45 - 00000000 ____D C:\ProgramData\Origin
2015-12-27 17:29 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-12-27 17:22 - 2014-06-29 17:33 - 00000000 ____D C:\Users\uzivatel\AppData\Roaming\Skype
2015-12-27 09:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache
2015-12-27 08:26 - 2015-09-01 17:22 - 00000000 ____D C:\Users\uzivatel\AppData\Roaming\Seznam.cz
2015-12-27 08:21 - 2014-06-29 16:21 - 00000000 ____D C:\Program Files (x86)\Steam
2015-12-23 23:12 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF
2015-12-23 19:08 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-23 19:06 - 2014-07-15 08:40 - 00000000 ____D C:\Program Files (x86)\WarThunder
2015-12-22 16:10 - 2015-10-30 19:31 - 00843542 _____ C:\WINDOWS\system32\perfh005.dat
2015-12-22 16:10 - 2015-10-30 19:31 - 00192556 _____ C:\WINDOWS\system32\perfc005.dat
2015-12-22 16:09 - 2014-06-12 10:18 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-12-22 14:25 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-20 12:01 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-12-19 10:33 - 2015-10-30 07:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-12-19 10:32 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-12-19 10:32 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning
2015-12-19 10:32 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2015-12-19 08:54 - 2014-06-11 14:49 - 00000000 ____D C:\AMD
2015-12-19 08:17 - 2014-07-08 12:45 - 00000000 ____D C:\Program Files (x86)\Origin
2015-12-17 17:40 - 2014-07-01 07:10 - 00002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-12-16 20:07 - 2015-11-04 16:48 - 21648880 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2015-12-16 20:07 - 2015-11-04 16:48 - 01256432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2015-12-16 20:07 - 2015-11-04 16:48 - 00874480 _____ (AMD) C:\WINDOWS\system32\coinst_15.20.dll
2015-12-16 20:07 - 2015-11-04 16:48 - 00683504 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2015-12-16 20:07 - 2015-11-04 16:48 - 00674288 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2015-12-16 20:07 - 2015-11-04 16:48 - 00451056 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2015-12-16 20:07 - 2015-11-04 16:48 - 00255472 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2015-12-16 20:06 - 2015-11-04 16:48 - 12088000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 10211016 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 08982432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 08864920 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 08009360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 07482560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 01479808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 01223544 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 00162232 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 00143056 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 00130064 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 00112360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2015-12-16 17:30 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\appcompat
2015-12-16 17:24 - 2015-08-23 10:43 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-12-16 17:24 - 2014-06-11 14:39 - 00000000 ___RD C:\Users\uzivatel\Virtual Machines
2015-12-13 20:44 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-12-13 20:44 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-12-13 20:44 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-12-13 20:44 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-12-13 20:44 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-12-13 20:44 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-12-13 12:41 - 2015-08-23 10:43 - 00000000 ____D C:\Users\uzivatel\AppData\Local\Packages
2015-12-13 12:38 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2015-12-13 12:27 - 2015-08-23 10:48 - 00002453 _____ C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-12-13 12:27 - 2014-06-29 16:36 - 00000000 ___RD C:\Users\uzivatel\OneDrive
2015-12-13 12:19 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-12-13 12:19 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-12-13 12:05 - 2015-08-27 15:17 - 00000476 __RSH C:\ProgramData\ntuser.pol
2015-12-13 12:00 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-12-13 12:00 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows NT
2015-12-13 12:00 - 2015-10-30 07:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-12-13 12:00 - 2015-08-23 09:10 - 00031404 _____ C:\WINDOWS\diagerr.xml
2015-12-13 12:00 - 2015-08-23 09:10 - 00030483 _____ C:\WINDOWS\diagwrn.xml
2015-12-13 11:58 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Registration
2015-12-13 11:56 - 2015-09-12 06:59 - 00002756 _____ C:\WINDOWS\System32\Tasks\Yahoo! Search Updater
2015-12-13 11:56 - 2015-08-23 10:26 - 00023020 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-12-13 11:56 - 2014-09-21 09:59 - 00002182 _____ C:\WINDOWS\System32\Tasks\{97D53701-DED2-4275-859A-75D70B50CEC1}
2015-12-13 11:55 - 2015-10-30 08:24 - 00000000 __RSD C:\WINDOWS\Media
2015-12-13 11:55 - 2014-12-26 05:45 - 00002954 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-12-13 11:55 - 2014-07-01 07:04 - 00003504 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-13 11:55 - 2014-07-01 07:04 - 00003280 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-13 11:55 - 2014-06-11 14:31 - 00003194 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-12-13 11:54 - 2015-10-30 08:24 - 00000000 __RHD C:\Users\Public\Libraries
2015-12-13 11:47 - 2015-10-30 19:35 - 00000000 ____D C:\WINDOWS\ShellNew
2015-12-13 11:47 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-12-13 11:47 - 2015-01-05 17:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-12-13 11:47 - 2015-01-05 17:35 - 00000000 ____D C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Elite Unzip
2015-12-13 11:47 - 2015-01-05 16:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-12-13 11:47 - 2015-01-02 07:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registrace uživatele zařízení Canon MG5300 series
2015-12-13 11:47 - 2015-01-02 07:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5300 series Manual
2015-12-13 11:47 - 2015-01-02 07:27 - 00000000 ____D C:\WINDOWS\system32\STRING
2015-12-13 11:47 - 2014-12-06 10:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-12-13 11:47 - 2014-11-05 08:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-12-13 11:47 - 2014-07-15 08:40 - 00000000 ____D C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2015-12-13 11:47 - 2014-07-08 12:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-12-13 11:47 - 2014-07-01 07:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-12-13 11:47 - 2014-06-29 16:40 - 00000000 ____D C:\WINDOWS\cs
2015-12-13 11:47 - 2014-06-29 16:38 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-12-13 11:47 - 2014-06-29 16:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-12-13 11:47 - 2014-06-18 09:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-LINK
2015-12-13 11:47 - 2014-06-12 10:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-12-13 11:47 - 2014-06-11 14:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Commander
2015-12-13 11:47 - 2014-06-11 14:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2015-12-13 11:47 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-12-13 11:46 - 2015-07-10 10:05 - 00000000 ____D C:\Users\Default.migrated
2015-12-13 11:44 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-12-13 11:44 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-12-13 11:44 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\spool
2015-12-13 11:44 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\IME
2015-12-13 11:42 - 2015-10-30 08:24 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-12-13 11:42 - 2015-10-30 08:24 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-12-13 11:42 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\schemas
2015-12-13 11:42 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-12-13 11:42 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-12-13 11:42 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\USOPrivate
2015-12-13 11:42 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-12-13 11:42 - 2015-09-06 09:14 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2015-12-13 11:42 - 2015-01-02 07:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5300 series
2015-12-13 11:42 - 2014-07-27 11:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2015-12-13 11:42 - 2014-07-03 09:27 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information
2015-12-13 11:42 - 2014-06-12 12:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2015-12-13 11:41 - 2009-07-14 04:20 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2015-12-13 11:40 - 2015-09-01 17:22 - 00000000 ____D C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GUPlayer
2015-12-13 11:37 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-12-13 11:31 - 2015-10-30 19:41 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2015-12-13 11:30 - 2015-10-30 08:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-12-13 11:23 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-12-13 11:23 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-12-13 11:23 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-12-13 11:23 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-12-13 11:23 - 2015-10-30 08:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2015-12-13 11:23 - 2015-10-30 08:19 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2015-12-13 11:23 - 2015-10-30 08:19 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2015-12-13 11:23 - 2015-10-30 08:19 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2015-12-13 11:23 - 2015-10-30 08:19 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-12-13 11:23 - 2015-10-30 08:19 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2015-12-13 11:23 - 2015-10-30 08:18 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-12-13 11:23 - 2015-10-30 08:18 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\telnet.exe
2015-12-13 11:23 - 2015-10-30 08:18 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-12-13 11:23 - 2015-10-30 08:18 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-12-13 11:23 - 2015-10-30 08:18 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-12-13 11:23 - 2015-10-30 08:18 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-12-13 11:23 - 2015-10-30 08:18 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-12-13 11:23 - 2015-10-30 08:18 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-12-13 11:23 - 2015-10-30 08:18 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-12-13 11:23 - 2015-10-30 08:18 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-12-13 11:11 - 2015-08-23 09:15 - 00008192 __RSH C:\BOOTSECT.BAK
2015-12-13 11:05 - 2015-10-30 20:11 - 00000000 ___HD C:\$WINDOWS.~BT
2015-12-13 09:27 - 2014-12-06 10:58 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-12-13 09:27 - 2014-12-06 10:58 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-12-13 09:22 - 2014-06-12 11:06 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-13 09:13 - 2014-06-12 11:06 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-12-12 06:39 - 2014-09-28 15:20 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-12-12 06:39 - 2014-09-28 15:20 - 00000000 ____D C:\Users\uzivatel\AppData\Local\Skype
2015-12-12 06:39 - 2014-06-29 17:32 - 00000000 ____D C:\ProgramData\Skype
2015-12-09 04:39 - 2010-11-21 04:27 - 00301728 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-12-06 18:30 - 2015-01-05 17:52 - 00000000 ____D C:\Users\uzivatel\AppData\Roaming\vlc
2015-12-06 09:48 - 2014-07-01 07:04 - 00000000 ____D C:\Users\uzivatel\AppData\Local\Google
2015-12-01 01:33 - 2015-10-30 08:26 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-12-01 01:33 - 2015-10-30 08:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories =======

2015-12-27 19:48 - 2015-12-27 19:48 - 0029696 _____ () C:\Users\uzivatel\AppData\Local\MSGBOX.EXE

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-12-23 20:19

==================== End of FRST.txt ============================

[Blondarson]

Additional scan result of Farbar Recovery Scan Tool (x64) Version:27-12-2015
Ran by uzivatel (2015-12-27 19:52:12)
Running from C:\Users\uzivatel\Downloads
Windows 10 Pro (X64) (2015-12-13 11:05:06)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4112901673-1865571380-2406517598-500 - Administrator - Disabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-4112901673-1865571380-2406517598-503 - Limited - Disabled)
Guest (S-1-5-21-4112901673-1865571380-2406517598-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4112901673-1865571380-2406517598-1003 - Limited - Enabled)
uzivatel (S-1-5-21-4112901673-1865571380-2406517598-1001 - Administrator - Enabled) => C:\Users\uzivatel

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.22 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0922-000001000000}) (Version: 9.22.00.0 - Igor Pavlov)
Adobe Reader XI (11.0.13) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: - )
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.5.0.0 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: - )
Canon MG5300 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5300_series) (Version: - Canon Inc.)
Canon MG5300 series On-screen Manual (HKLM-x32\...\Canon MG5300 series On-screen Manual) (Version: - )
Canon MP Navigator EX 5.0 (HKLM-x32\...\MP Navigator EX 5.0) (Version: - )
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.0.0 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: - )
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.3.0 - Canon Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Elite Unzip (HKLM-x32\...\Mindspark Elite Unzip) (Version: 1.1.8161.280 - Mindspark Interactive Network) <==== ATTENTION
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.7210.1528 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
IL-2 Sturmovik: Cliffs of Dover (HKLM-x32\...\Steam App 63950) (Version: - 1C: Maddox Games)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
K-Lite Codec Pack 9.9.5 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.9.5 - )
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0405-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (HKLM-x32\...\{95140000-007D-0409-0000-0000000FF1CE}) (Version: 14.0.5120.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.4.11.2806 - Electronic Arts, Inc.)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.0 - pdfforge)
Pine Tree (HKLM\...\Pine Tree) (Version: 2015.08.26.160538 - Pine Tree) <==== ATTENTION
Prostředí Windows XP Mode (HKLM\...\{1374CC63-B520-4f3f-98E8-E9020BF01CFF}) (Version: 1.3.7600.16422 - Microsoft Corporation)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Registrace uživatele zařízení Canon MG5300 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG5300 series) (Version: - )
Search App by Ask (HKLM-x32\...\{4F524A2D-5350-4500-76A7-A758B70C2500}) (Version: 12.37.0.349 - APN, LLC) <==== ATTENTION
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Setup (HKLM-x32\...\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}) (Version: - ) <==== ATTENTION
Seznam Software (HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\SeznamInstall) (Version: - Seznam.cz)
Shopping App by Ask (HKLM-x32\...\{4F524A2D-5354-2D53-5045-A758B70C2300}) (Version: 12.35.0.285 - APN, LLC)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.16 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.16.102 - Skype Technologies S.A.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
TL-WN851ND Driver (HKLM-x32\...\{4BAE4C76-44C3-418F-B715-6BBF5A65323E}) (Version: 1.00.0000 - TP-LINK)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
War Thunder Launcher 1.0.1.376 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\uzivatel\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\FileCoAuth.exe (Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {011FA347-585B-4A6D-BFCC-E4270F74BC60} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {02E3EE98-4456-4DD5-A7A5-33D5F9C97213} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {066A9894-B411-4416-8699-7AB367258A91} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {070F2E7E-E16C-496C-800B-63FBC65926F2} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {08D101C0-4859-4EF8-8F3C-CFC570CFFB4F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {0E1A058A-5CEB-4FD4-B01E-BF77F628F57F} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-16] (Adobe Systems Incorporated)
Task: {0ED05B75-484F-452D-BD67-19F6B22A8164} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {0F3E3232-C934-4AC2-A7F6-3761839606CB} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {1572F8C6-87F4-4596-868F-0A99B984078A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {17308D94-792B-4AFD-974B-6D2BB8D15D19} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {1778BBB2-C6D6-4557-9662-97157A1282E8} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {181CA63B-6F58-4C9B-BB8F-DC9218722F63} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {182BADF0-0922-45D1-BC80-134E56D7CD78} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {1D47ACCA-4D19-4623-965F-F64D8D9940F3} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {33C99A8C-FC6E-4115-8902-1CD791B0121F} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {3761F137-B5A7-435D-AAAD-1D1CABB1942D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {4017DED6-BC89-4E3D-9ED6-0EE073DDEBF6} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {465A0316-3C6E-4248-ABE4-EEA250B8529E} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {4E2BC656-67C2-42F3-92A9-6817D2A89D84} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {50137526-3981-4F95-9B7E-16FC04E790F4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {52F7A4F7-206D-472A-972B-D74C5B791CAF} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {53DC433E-C364-4769-92AC-41DD7556334B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {58ACA16D-A874-443E-ABE5-1A6A4125A794} - System32\Tasks\{97D53701-DED2-4275-859A-75D70B50CEC1} => pcalua.exe -a D:\setup.exe -d D:\
Task: {65BC39FC-F464-4BA0-9E88-2ED6A610B2FF} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {717ACBCE-C600-4C04-8B97-8020EE4D4699} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {87F818FA-7EC7-4A14-AAA8-CACFD093DABB} - System32\Tasks\Yahoo! Search Updater => C:\WINDOWS\system32\wscript.exe [2015-10-30] (Microsoft Corporation) <==== ATTENTION
Task: {9386841D-F3A2-486E-83D9-F4A14F8729A8} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\SYSTEM32\MRT.EXE [2015-12-13] (Microsoft Corporation)
Task: {99BEC8E9-21C2-481C-B291-F69E22301CE6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {A49AE608-7DF8-485B-806F-08D02DDE5377} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {B9BF4072-80E7-44D7-9554-F37CC150B3E5} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {BC4F3A98-11E8-432C-803A-04B7C7139494} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {BF6498DD-EE25-4C10-9766-C94E8D6F7091} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {C3C225A6-6E2A-4B42-9D7D-69D892144481} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {CBD3C970-3228-4684-A270-163F6AA68D94} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {D0462962-072C-4DAB-B863-5AEB85347BEA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {DAE7C5D8-3577-4B73-B56F-5042B41ABF85} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {DC1BE37E-FAC9-4D64-8CEB-B7375905B11D} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {E33122A9-FBB0-4B8C-B0F0-BF65FC8F323D} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {E7EF8709-AED1-49E6-B2AB-265F2641587D} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: {E8D3F32A-6FCF-4448-A0B3-50F14E406378} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {EDE438A1-7B8D-4073-8DED-C88C35E28D9D} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {EFD71CC6-2410-42B4-B9BE-CD067DCB1291} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {F0330C4E-EC6F-41A2-A923-40D5012B326A} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {F3223B82-BA10-4490-AC3E-230AD60154F2} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-01-02 07:38 - 2011-02-07 08:56 - 00138192 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-12-13 14:40 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-13 14:40 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-12-19 08:34 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2015-12-19 08:34 - 2015-12-07 05:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-12-19 08:36 - 2015-12-07 04:37 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-19 08:35 - 2015-12-07 04:33 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-19 08:36 - 2015-12-07 04:34 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-12-19 08:36 - 2015-12-07 04:36 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-12-17 16:56 - 2015-12-17 16:57 - 00144384 _____ () C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.MESSAGING_2.12.15004.0_X86__8WEKYB3D8BBWE\SKYPEHOST.EXE
2015-08-26 18:16 - 2015-12-27 18:48 - 00660720 _____ () C:\Program Files (x86)\Pine Tree\bin\utilPineTree.exe
2015-08-26 21:31 - 2015-12-27 18:49 - 00660720 _____ () C:\Program Files (x86)\Pine Tree\updatePineTree.exe
2015-10-18 06:49 - 2015-12-27 08:32 - 00353520 _____ () C:\Program Files (x86)\Pine Tree\bin\PineTree.PurBrowse64.exe
2015-08-26 21:28 - 2015-12-27 08:31 - 00115440 _____ () C:\Program Files (x86)\Pine Tree\bin\PineTree.expext.exe
2015-08-26 21:28 - 2015-12-27 17:31 - 00108272 _____ () C:\Program Files (x86)\Pine Tree\bin\PineTree.BrowserAdapter.exe
2015-08-26 21:28 - 2015-12-27 17:31 - 00126192 _____ () C:\Program Files (x86)\Pine Tree\bin\PineTree.BrowserAdapter64.exe
2015-12-17 16:56 - 2015-12-17 16:57 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2015-12-17 16:56 - 2015-12-17 16:57 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2015-12-17 16:56 - 2015-12-17 16:57 - 21845504 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2015-12-27 12:35 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2015-12-27 12:35 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2015-12-27 12:35 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2015-12-27 12:35 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2015-12-27 12:35 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-03-31 20:35 - 2014-03-31 20:35 - 00278208 _____ () C:\Program Files (x86)\Windows Live\Writer\cs\WindowsLive.Writer.Localization.resources.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7865 more sites.

IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\123simsen.com -> www.123simsen.com

There are 7865 more sites.


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2015-12-27 16:54 - 00450709 ____R C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
127.0.0.1 www.123moviedownload.com

There are 15461 more lines.


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "ApnTBMon"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [UDP Query User{91D4C72D-8C83-4D08-943A-3F551B48CF5B}C:\program files (x86)\warthunder\win64\aces.exe] => (Allow) C:\program files (x86)\warthunder\win64\aces.exe
FirewallRules: [TCP Query User{6C9D8847-392D-460E-9AE1-BF9C1FD896A4}C:\program files (x86)\warthunder\win64\aces.exe] => (Allow) C:\program files (x86)\warthunder\win64\aces.exe
FirewallRules: [{ED86B7E2-FC10-44A6-8E6E-13354104E54B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{83C8E7B7-8626-4B7F-B43C-DD1085469DCC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{17F50FB9-23FE-48BC-913D-7BAD454C3C33}] => (Allow) C:\Users\uzivatel\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{074CA26E-2A75-4858-B67A-F1B0D3E3CDF1}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{19BCCD38-B5EB-45BB-854A-0739AD12CC33}] => (Allow) LPort=2869
FirewallRules: [{FB1E9532-FFF6-428F-81A3-58C87732592A}] => (Allow) LPort=1900
FirewallRules: [{615276AE-9947-4D69-A7F6-45C8ECFD6322}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{B5CD2EC3-6401-411F-9D0F-986B9743BFFF}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{72ED8E53-B7C0-4E58-A75D-9B4C23B0813A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\IL-2 Sturmovik Cliffs of Dover\Launcher.exe
FirewallRules: [{17EB095C-06EE-4275-AA3B-AA6A2FDDF922}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\IL-2 Sturmovik Cliffs of Dover\Launcher.exe
FirewallRules: [{13627104-A54B-4305-885B-3E28E2791726}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{9759D0B4-334C-40C6-8791-6E33DCF9E59B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{035EF86E-C246-4280-BE0A-21532B8F764A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{4B0C9F96-0578-44E6-BDCB-617D68219755}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{67E42BE9-EFF7-4B35-8C45-8DF5755180D4}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{BBBDADCD-60C8-47E7-ADFC-380A19E9C9F0}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{12FC15B3-FE6A-433E-AB1E-709E4E44A74B}] => (Allow) C:\Program Files (x86)\WarThunder\launcher.exe
FirewallRules: [{F82D9B7B-D915-4D26-8033-8ECCC8950062}] => (Allow) C:\Program Files (x86)\WarThunder\launcher.exe
FirewallRules: [{CF0D98D9-461C-4DE6-BD7F-D14B275CDE87}] => (Allow) LPort=80
FirewallRules: [{E9E52AE3-29C8-4938-9D45-183323E0943D}] => (Allow) LPort=443
FirewallRules: [{5E1F8B56-88D7-42EE-B9A8-3B285E5B2455}] => (Allow) LPort=20010
FirewallRules: [{0E497A10-B786-43BE-A2A8-9271C0621A8A}] => (Allow) LPort=3478
FirewallRules: [{0650B022-0AAF-4FA8-AF1D-340465B03865}] => (Allow) LPort=7850
FirewallRules: [{001F2F4E-0942-4A78-A909-065319121E62}] => (Allow) LPort=7852
FirewallRules: [{A480288D-E629-4949-A9E7-997822F96C4A}] => (Allow) LPort=7853
FirewallRules: [{6C58B760-A873-4E7B-9BD4-B89B9FF986CD}] => (Allow) LPort=27022
FirewallRules: [{965C54E0-CF2C-46C1-8D1C-E59A8F95A2ED}] => (Allow) LPort=6881
FirewallRules: [{E3D8F123-2DCB-471D-98BB-A7133A7CC183}] => (Allow) LPort=33333
FirewallRules: [{D204E4EE-09E3-45D9-932C-045C36B655A3}] => (Allow) LPort=20443
FirewallRules: [{3C12EB5D-029D-4BC5-B81D-EF03078557A1}] => (Allow) LPort=8090
FirewallRules: [TCP Query User{3A7539A6-EF10-4ED2-8727-FBBEFAFE6AFC}C:\program files (x86)\warthunder\aces.exe] => (Allow) C:\program files (x86)\warthunder\aces.exe
FirewallRules: [UDP Query User{A473EFD5-53AA-4846-B114-4FB06207D99D}C:\program files (x86)\warthunder\aces.exe] => (Allow) C:\program files (x86)\warthunder\aces.exe
FirewallRules: [{659624BC-8DB8-4E4C-93A7-69249CCBC599}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{7DC664EB-8932-4AFC-A2EA-AC72FC4FF24F}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{9A4EEF04-39F3-41E1-95CD-EBC979DC43EE}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [{7184B837-162B-47AC-AEA5-D92E30DF4C13}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [TCP Query User{05CD235E-0B64-4934-BC43-D5D8CD479998}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [UDP Query User{AB6BDD65-00DA-4E74-976A-EA82F29685BB}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [{624233A1-3E00-4647-9314-FF2F29CB32E2}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{69254415-EFA3-423C-825F-1210F1C0DBF7}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{AF354DE5-C8DF-4B3E-8E77-A860F2F7F143}C:\program files (x86)\warthunder\launcher.exe] => (Allow) C:\program files (x86)\warthunder\launcher.exe
FirewallRules: [UDP Query User{4E996B5E-D77A-4AFE-9C21-AEDA95E7FF8F}C:\program files (x86)\warthunder\launcher.exe] => (Allow) C:\program files (x86)\warthunder\launcher.exe
FirewallRules: [TCP Query User{971EB48D-1481-492E-9B7F-B1CCF1956407}C:\program files (x86)\warthunder\aces.exe] => (Allow) C:\program files (x86)\warthunder\aces.exe
FirewallRules: [UDP Query User{DF84A2B3-56FF-4777-A4E6-3A0CEC369EE6}C:\program files (x86)\warthunder\aces.exe] => (Allow) C:\program files (x86)\warthunder\aces.exe
FirewallRules: [{120DC493-4DF6-4D7A-8633-04C796C17109}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Restore Points =========================

20-12-2015 19:00:05 Windows Zálohování
27-12-2015 19:00:06 Windows Zálohování

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/27/2015 07:00:22 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (12/27/2015 02:42:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MICROSOFTEDGE.EXE, verze: 11.0.10586.35, časové razítko: 0x56650318
Název chybujícího modulu: Windows.UI.Xaml.dll, verze: 10.0.10586.35, časové razítko: 0x566505e8
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000006fcc8b
ID chybujícího procesu: 0x1de4
Čas spuštění chybující aplikace: 0xMICROSOFTEDGE.EXE0
Cesta k chybující aplikaci: MICROSOFTEDGE.EXE1
Cesta k chybujícímu modulu: MICROSOFTEDGE.EXE2
ID zprávy: MICROSOFTEDGE.EXE3
Úplný název chybujícího balíčku: MICROSOFTEDGE.EXE4
ID aplikace související s chybujícím balíčkem: MICROSOFTEDGE.EXE5

Error: (12/27/2015 02:36:10 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: UZIVATE-3T5RH9M)
Description: Balíček windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy+microsoft.windows.immersivecontrolpanel se ukončil, protože jeho pozastavování trvalo moc dlouho.

Error: (12/27/2015 12:46:41 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10007) (User: NT AUTHORITY)
Description: Aplikaci nebo službu Spybot-S&D 2 Scanner Service nelze restartovat.

Error: (12/27/2015 12:01:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MICROSOFTEDGECP.EXE, verze: 11.0.10586.20, časové razítko: 0x56540c35
Název chybujícího modulu: msvcrt.dll, verze: 7.0.10586.0, časové razítko: 0x5632d79e
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000073c9a
ID chybujícího procesu: 0x1198
Čas spuštění chybující aplikace: 0xMICROSOFTEDGECP.EXE0
Cesta k chybující aplikaci: MICROSOFTEDGECP.EXE1
Cesta k chybujícímu modulu: MICROSOFTEDGECP.EXE2
ID zprávy: MICROSOFTEDGECP.EXE3
Úplný název chybujícího balíčku: MICROSOFTEDGECP.EXE4
ID aplikace související s chybujícím balíčkem: MICROSOFTEDGECP.EXE5

Error: (12/27/2015 08:47:20 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (12/27/2015 08:24:08 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CNQMUPDT.EXE, verze: 2.3.0.0, časové razítko: 0x51ee1f87
Název chybujícího modulu: CNMDWLD.DLL, verze: 1.0.0.0, časové razítko: 0x4f5eedc8
Kód výjimky: 0xc0000005
Posun chyby: 0x000023c6
ID chybujícího procesu: 0xed0
Čas spuštění chybující aplikace: 0xCNQMUPDT.EXE0
Cesta k chybující aplikaci: CNQMUPDT.EXE1
Cesta k chybujícímu modulu: CNQMUPDT.EXE2
ID zprávy: CNQMUPDT.EXE3
Úplný název chybujícího balíčku: CNQMUPDT.EXE4
ID aplikace související s chybujícím balíčkem: CNQMUPDT.EXE5

Error: (12/23/2015 09:31:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MICROSOFTEDGE.EXE, verze: 11.0.10586.35, časové razítko: 0x56650318
Název chybujícího modulu: MICROSOFTEDGE.EXE, verze: 11.0.10586.35, časové razítko: 0x56650318
Kód výjimky: 0xc000041d
Posun chyby: 0x000000000001d1d7
ID chybujícího procesu: 0xb6c
Čas spuštění chybující aplikace: 0xMICROSOFTEDGE.EXE0
Cesta k chybující aplikaci: MICROSOFTEDGE.EXE1
Cesta k chybujícímu modulu: MICROSOFTEDGE.EXE2
ID zprávy: MICROSOFTEDGE.EXE3
Úplný název chybujícího balíčku: MICROSOFTEDGE.EXE4
ID aplikace související s chybujícím balíčkem: MICROSOFTEDGE.EXE5

Error: (12/23/2015 09:30:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MICROSOFTEDGE.EXE, verze: 11.0.10586.35, časové razítko: 0x56650318
Název chybujícího modulu: MICROSOFTEDGE.EXE, verze: 11.0.10586.35, časové razítko: 0x56650318
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000001d1d7
ID chybujícího procesu: 0xb6c
Čas spuštění chybující aplikace: 0xMICROSOFTEDGE.EXE0
Cesta k chybující aplikaci: MICROSOFTEDGE.EXE1
Cesta k chybujícímu modulu: MICROSOFTEDGE.EXE2
ID zprávy: MICROSOFTEDGE.EXE3
Úplný název chybujícího balíčku: MICROSOFTEDGE.EXE4
ID aplikace související s chybujícím balíčkem: MICROSOFTEDGE.EXE5

Error: (12/23/2015 07:24:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MICROSOFTEDGE.EXE, verze: 11.0.10586.35, časové razítko: 0x56650318
Název chybujícího modulu: MICROSOFTEDGE.EXE, verze: 11.0.10586.35, časové razítko: 0x56650318
Kód výjimky: 0xc000041d
Posun chyby: 0x000000000001d1d7
ID chybujícího procesu: 0x1ae4
Čas spuštění chybující aplikace: 0xMICROSOFTEDGE.EXE0
Cesta k chybující aplikaci: MICROSOFTEDGE.EXE1
Cesta k chybujícímu modulu: MICROSOFTEDGE.EXE2
ID zprávy: MICROSOFTEDGE.EXE3
Úplný název chybujícího balíčku: MICROSOFTEDGE.EXE4
ID aplikace související s chybujícím balíčkem: MICROSOFTEDGE.EXE5


System errors:
=============
Error: (12/27/2015 05:33:40 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Hostitel synchronizace_7a8191f bylo dosaženo časového limitu (30000 ms).

Error: (12/27/2015 05:33:40 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Úložiště uživatelských dat_7a8191f, ale tato akce selhala kvůli následující chybě:
%%1056

Error: (12/27/2015 05:33:40 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Úložiště uživatelských dat_7a8191f bylo dosaženo časového limitu (30000 ms).

Error: (12/27/2015 05:33:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Přístup k uživatelským datům_7a8191f byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (12/27/2015 05:33:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Úložiště uživatelských dat_7a8191f byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (12/27/2015 05:33:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Data kontaktů_7a8191f byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (12/27/2015 05:33:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_7a8191f byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (12/27/2015 04:28:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Spyware Terminator 2012 Realtime Shield Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/23/2015 11:43:27 PM) (Source: DCOM) (EventID: 10010) (User: UZIVATE-3T5RH9M)
Description: {0002DF02-0000-0000-C000-000000000046}

Error: (12/23/2015 11:43:27 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Přístup k uživatelským datům_3b9f2 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.


CodeIntegrity:
===================================
Date: 2015-12-27 09:26:35.679
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-27 09:26:35.629
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-27 09:26:34.713
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-27 09:26:34.700
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-27 09:26:34.664
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-27 09:26:34.651
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-27 09:26:34.607
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-27 09:26:34.595
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-27 09:26:34.558
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-27 09:26:34.474
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU E8400 @ 3.00GHz
Percentage of memory in use: 72%
Total physical RAM: 4029.61 MB
Available physical RAM: 1122.2 MB
Total Virtual: 8125.61 MB
Available Virtual: 4388.13 MB

==================== Drives ================================

Drive c: (OSDisk) (Fixed) (Total:148.57 GB) (Free:12.12 GB) NTFS ==>[drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 9D79893D)
Partition 1: (Active) - (Size=148.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of Addition.txt ============================

[altrok]

Zdravim Blondarson a vitam Vas zde na foru,

v jednom tematu vzdy resime prave jednoho uzivatele. Zalozte si prosim sve vlastni tema, kde se Vam nekdo bude venovat - v tomto vlaknu se venuji uzivateli valentyne187. Dekuji za pochopeni.




valentyne187:
Smazte slozku C:\ProgramData\nWdMn. Jak se chova pocitac? Problemy pretrvavaji?

[Blondarson]

Diky za vysvetleni.jdu na to

[valentyne187]

po smazani te slozky to prestalo, diky

[altrok]

• Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
• Oznacte jen moznost "Remove disinfection tools"
• kliknete na Run

Nemate zac, rad jsem pomohl


Mejte se krasne a treba zase nekdy

[valentyne187]

prvni cast: http://forum.viry.cz/viewtopic.php?f=13&t=147357

ahoj,
tak to nakonec neodeznelo, reklamy vyskakuji stale

Logfile of random's system information tool 1.10 (written by random/random)
Run by Vojtěch at 2015-12-28 11:25:05
Microsoft Windows 8
System drive C: has 13 GB (3%) free of 459 GB
Total RAM: 3977 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:47:09, on 28. 12. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.17568)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera_crashreporter.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files\trend micro\Vojtěch.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://unstopp.me/wpad.dat?5843936eda97 ... 4e82969530
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [BtTray] "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Boxoft Tools] "C:\ProgramData\Boxtools\Boxofttoolbox.exe" -autorun
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Stáhnout FDM - file://C:\Program Files (x86)\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout video FDM - file://C:\Program Files (x86)\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Stáhnout vybrané FDM - file://C:\Program Files (x86)\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Stáhnout vše FDM - file://C:\Program Files (x86)\Free Download Manager\dlall.htm
O9 - Extra button: PokerStars.eu - {07BA1DA9-F501-4796-8728-74D1B91A6CD5} - C:\Program Files (x86)\PokerStars.EU\PokerStarsUpdate.exe
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\MICROS~3\WEB2~1\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Vojtěch\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Vojtěch\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra button: CasinoAction - {1B120745-0C71-4F58-A1C4-98DC25A0F6A2} - C:\Microgaming\Casino\CasinoActionMIT\casinogame.exe (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: gDoc PDF Service (GDOCService) - Global Graphics - C:\Program Files (x86)\Global Graphics\gDocPDFServer\MWFSrv.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem7.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ScsiAccess - Unknown owner - C:\Program Files (x86)\Photodex\ProShowProducer\ScsiAccess.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Unknown owner - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WdMan Service (WdMan) - Unknown owner - C:\ProgramData\nWdMn\WdMan.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13555 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
C:\Windows\system32\services.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\lsass.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\Windows\system32\atiesrxx.exe
"dwm.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
atieclxx
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\vcsFPService.exe
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
dashost.exe {cdbe1641-d3d5-43cd-bb9fda4f19b8d3b6}
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PnkBstrB.exe
"C:\Program Files (x86)\Photodex\ProShowProducer\ScsiAccess.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
"C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-9c931977-cf8f-4662-b6eb-426132d5f2ad -SystemEventPortName:HostProcess-d33a72be-a9d5-4453-a782-772eb7081b15 -IoCancelEventPortName:HostProcess-86979b64-9711-4408-9f0a-af96eaabd2b3 -NonStateChangingEventPortName:HostProcess-f5974e8e-35a0-4942-9dc8-a74e364e2d1e -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:a86cd20e-7862-453c-8be3-f827ec64c54c -DeviceGroupId:
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-aacb8158-9789-40bb-a4d4-0f11494f2e5c -SystemEventPortName:HostProcess-641161a8-f302-431b-8eac-8f56956ab387 -IoCancelEventPortName:HostProcess-22b7deaa-2eff-4821-9da8-1c513cd1513a -NonStateChangingEventPortName:HostProcess-e9f1e172-5898-49f0-892a-4d4499ee01ac -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:25bd2fc3-1b41-430a-918e-0bc99892c049 -DeviceGroupId:WudfDefaultDevicePool
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe" "HP Color LaserJet CM1312 MFP Series Fax"
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" /start
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\34.0.2036.25\opera_crashreporter.exe" --ran-launcher --crash-reporter-parent-id=6004
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=gpu-process --channel="6004.0.877836978\1520832026" --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,9,29,57 --gpu-vendor-id=0x1002 --gpu-device-id=0x6841 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.982.6.0 --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6004.2.1168252749\1918781184" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6004.3.1298098045\239753279" /prefetch:673131151
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6004.5.1403585310\1197602344" /prefetch:673131151
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6004.27.2142520830\1613660641" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6004.28.179354515\251001842" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6004.29.375710365\1666484694" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6004.30.1641747167\729541868" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6004.40.2072110700\370139201" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6004.43.1876665896\1644568467" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6004.46.943089815\1754472862" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=ppapi --channel="6004.47.114836378\1403254462" --ppapi-flash-args --lang=cs --device-scale-factor=1 --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6004.67.2007492492\1529740936" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6004.68.992409333\479949582" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6004.69.978198797\1352886394" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6004.70.261390956\1781009933" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6004.73.624278935\132212745" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6004.75.357862680\608292640" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6004.79.632570625\2035754350" /prefetch:673131151
"C:\Program Files (x86)\Opera\34.0.2036.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5972 --enable-proprietary-codecs-support-for-web-audio-api --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="6004.81.1517360775\1554650557" /prefetch:673131151

"C:\totalcmd\TOTALCMD.EXE"
"C:\Users\Vojtěch\Downloads\14_ochrana\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\HPCeeScheduleForVojtěch.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForVojtěch (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-06-24 662672]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-24 565304]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
Free Download Manager - C:\Program Files (x86)\Free Download Manager\iefdm2.dll [2014-09-23 365056]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-08-23 170304]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-08-23 398656]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-08-23 441152]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-11-12 1664000]
"HP Color LaserJet CM1312 MFP Series Fax"=C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe [2009-09-22 3700736]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-12-12 7394584]
"Boxoft Tools"=C:\ProgramData\Boxtools\Boxofttoolbox.exe [2010-12-15 514048]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-05-04 56568]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-08-06 642216]
"BtTray"=C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [2012-09-19 371976]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2013-10-16 337184]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-06-26 5515496]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2013-07-18 683656]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-08-23 441856]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"msacm.ac3filter"=ac3filter64.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-12-28 11:25:05 ----D---- C:\rsit
2015-12-28 11:25:05 ----D---- C:\Program Files\trend micro
2015-12-22 17:28:53 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2015-12-22 17:24:08 ----D---- C:\Program Files\Adobe
2015-12-22 17:21:44 ----D---- C:\Program Files (x86)\Adobe
2015-12-22 17:18:26 ----D---- C:\Program Files\Common Files\Adobe
2015-12-22 15:01:33 ----D---- C:\ProgramData\Adobe
2015-12-21 15:11:54 ----D---- C:\Program Files (x86)\FlashDevelop
2015-12-21 14:24:52 ----D---- C:\Windows\XSxS
2015-12-14 09:38:09 ----A---- C:\Windows\system32\FNTCACHE.DAT
2015-12-10 19:03:44 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-12-10 19:03:44 ----A---- C:\Windows\system32\TSpkg.dll
2015-12-10 19:03:39 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2015-12-10 19:03:39 ----A---- C:\Windows\system32\sspicli.dll
2015-12-10 19:03:39 ----A---- C:\Windows\system32\SHCore.dll
2015-12-10 19:03:38 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-12-10 19:03:38 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2015-12-10 19:03:38 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-12-10 19:03:38 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2015-12-10 19:03:38 ----A---- C:\Windows\system32\winlogon.exe
2015-12-10 19:03:38 ----A---- C:\Windows\system32\wdigest.dll
2015-12-10 19:03:38 ----A---- C:\Windows\system32\usercpl.dll
2015-12-10 19:03:38 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-12-10 19:03:38 ----A---- C:\Windows\system32\credssp.dll
2015-12-10 19:03:38 ----A---- C:\Windows\system32\catsrvut.dll
2015-12-10 19:03:37 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-12-10 19:03:37 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-12-10 19:03:37 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2015-12-10 19:03:37 ----A---- C:\Windows\system32\msv1_0.dll
2015-12-10 19:03:37 ----A---- C:\Windows\system32\lsm.dll
2015-12-10 19:03:37 ----A---- C:\Windows\system32\kerberos.dll
2015-12-10 19:03:37 ----A---- C:\Windows\system32\comsvcs.dll
2015-12-10 19:03:36 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-12-10 19:03:36 ----A---- C:\Windows\system32\ntdll.dll
2015-12-10 19:03:36 ----A---- C:\Windows\system32\lsasrv.dll
2015-12-10 19:03:35 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-12-10 18:56:36 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2015-12-10 18:56:36 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2015-12-10 18:56:36 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2015-12-10 18:56:36 ----A---- C:\Windows\system32\kbdgeoqw.dll
2015-12-10 18:56:36 ----A---- C:\Windows\system32\KBDAZEL.DLL
2015-12-10 18:56:36 ----A---- C:\Windows\system32\KBDAZE.DLL
2015-12-10 18:56:32 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2015-12-10 18:56:32 ----A---- C:\Windows\system32\Windows.Globalization.dll
2015-12-10 18:55:00 ----A---- C:\Windows\system32\mshtmled.dll
2015-12-10 18:54:59 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-12-10 18:54:58 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-12-10 18:54:58 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-12-10 18:54:58 ----A---- C:\Windows\system32\dxtrans.dll
2015-12-10 18:54:57 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-12-10 18:54:57 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-12-10 18:54:57 ----A---- C:\Windows\system32\urlmon.dll
2015-12-10 18:54:57 ----A---- C:\Windows\system32\msfeeds.dll
2015-12-10 18:54:56 ----A---- C:\Windows\SYSWOW64\uxtheme.dll
2015-12-10 18:54:56 ----A---- C:\Windows\SYSWOW64\UXInit.dll
2015-12-10 18:54:56 ----A---- C:\Windows\system32\uxtheme.dll
2015-12-10 18:54:56 ----A---- C:\Windows\system32\UXInit.dll
2015-12-10 18:54:55 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-12-10 18:54:55 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-12-10 18:54:55 ----A---- C:\Windows\system32\vbscript.dll
2015-12-10 18:54:55 ----A---- C:\Windows\system32\jscript.dll
2015-12-10 18:54:54 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-12-10 18:54:54 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-12-10 18:54:54 ----A---- C:\Windows\system32\jscript9.dll
2015-12-10 18:54:54 ----A---- C:\Windows\system32\iertutil.dll
2015-12-10 18:54:53 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-12-10 18:54:53 ----A---- C:\Windows\system32\inetcomm.dll
2015-12-10 18:54:52 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-12-10 18:54:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-12-10 18:54:52 ----A---- C:\Windows\system32\iedkcs32.dll
2015-12-10 18:54:51 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-12-10 18:54:51 ----A---- C:\Windows\system32\wininet.dll
2015-12-10 18:54:50 ----A---- C:\Windows\system32\ieframe.dll
2015-12-10 18:54:44 ----A---- C:\Windows\system32\mshtml.dll
2015-12-10 18:54:42 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-12-10 18:53:34 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-12-10 18:53:34 ----A---- C:\Windows\system32\authui.dll
2015-12-10 18:53:25 ----A---- C:\Windows\system32\drivers\rmcast.sys
2015-12-10 18:52:39 ----A---- C:\Windows\SYSWOW64\user32.dll
2015-12-10 18:52:39 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2015-12-10 18:52:39 ----A---- C:\Windows\system32\user32.dll
2015-12-10 18:52:39 ----A---- C:\Windows\system32\FntCache.dll
2015-12-10 18:52:39 ----A---- C:\Windows\system32\DWrite.dll
2015-12-10 18:52:38 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-12-10 18:52:38 ----A---- C:\Windows\system32\win32k.sys
2015-12-10 18:52:38 ----A---- C:\Windows\system32\GdiPlus.dll
2015-12-05 15:23:13 ----D---- C:\Program Files\Common Files\AV
2015-12-03 21:38:52 ----D---- C:\FlashInstaller

======List of files/folders modified in the last 1 month======

2015-12-28 11:25:23 ----D---- C:\Windows
2015-12-28 11:25:05 ----RD---- C:\Program Files
2015-12-28 11:00:03 ----D---- C:\Windows\system32\sru
2015-12-28 10:28:53 ----D---- C:\Windows\Temp
2015-12-28 10:28:37 ----D---- C:\Windows\Prefetch
2015-12-28 10:28:32 ----D---- C:\Windows\Microsoft.NET
2015-12-28 10:02:37 ----A---- C:\Windows\SYSWOW64\bscs.ini
2015-12-28 09:59:33 ----A---- C:\Windows\SYSWOW64\LOCALSERVICE.INI
2015-12-28 09:59:29 ----A---- C:\Windows\SYSWOW64\LOCALDEVICE.INI
2015-12-27 23:29:46 ----A---- C:\DelFix.txt
2015-12-27 22:43:05 ----HD---- C:\ProgramData
2015-12-27 20:37:36 ----HD---- C:\$Windows.~BT
2015-12-27 20:27:53 ----D---- C:\Windows\system32\catroot2
2015-12-27 20:27:53 ----D---- C:\Windows\system32\catroot
2015-12-27 20:27:13 ----RD---- C:\Windows\System32
2015-12-27 20:27:13 ----D---- C:\Windows\Inf
2015-12-27 20:27:13 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-12-27 20:24:13 ----A---- C:\Windows\SYSWOW64\log.txt
2015-12-27 20:22:05 ----D---- C:\ProgramData\PDFC
2015-12-27 20:04:06 ----D---- C:\Windows\system32\drivers\etc
2015-12-27 20:03:46 ----SHD---- C:\System Volume Information
2015-12-27 20:00:42 ----SHD---- C:\Windows\Installer
2015-12-27 20:00:42 ----HD---- C:\Config.Msi
2015-12-26 15:23:06 ----D---- C:\Users\Vojtěch\AppData\Roaming\vlc
2015-12-26 13:48:22 ----D---- C:\Windows\Tasks
2015-12-26 01:19:14 ----D---- C:\Windows\AUInstallAgent
2015-12-25 10:43:14 ----D---- C:\Windows\system32\config
2015-12-23 01:36:35 ----RD---- C:\Program Files (x86)
2015-12-22 17:35:56 ----D---- C:\Users\Vojtěch\AppData\Roaming\Adobe
2015-12-22 17:24:32 ----D---- C:\Windows\SysWOW64
2015-12-22 17:22:31 ----D---- C:\Windows\WinSxS
2015-12-22 17:21:47 ----D---- C:\Program Files (x86)\Common Files
2015-12-22 17:18:26 ----D---- C:\Program Files\Common Files
2015-12-22 14:29:58 ----D---- C:\Users\Vojtěch\AppData\Roaming\uTorrent
2015-12-22 13:48:05 ----D---- C:\Windows\system32\Tasks
2015-12-19 16:00:29 ----D---- C:\Windows\rescache
2015-12-18 17:45:14 ----D---- C:\Program Files (x86)\PokerStars.EU
2015-12-18 15:51:05 ----D---- C:\Windows\CbsTemp
2015-12-17 15:57:42 ----D---- C:\Program Files (x86)\Opera
2015-12-16 12:31:39 ----D---- C:\Windows\Minidump
2015-12-14 09:16:02 ----RSD---- C:\Windows\assembly
2015-12-13 21:34:52 ----HD---- C:\Program Files\WindowsApps
2015-12-13 21:09:01 ----D---- C:\Windows\debug
2015-12-13 20:51:49 ----D---- C:\Windows\system32\Drivers
2015-12-13 20:51:41 ----RSD---- C:\Windows\Fonts
2015-12-13 20:51:38 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-13 20:51:37 ----D---- C:\Program Files\Internet Explorer
2015-12-13 20:51:31 ----RD---- C:\Windows\ToastData
2015-12-10 19:03:07 ----D---- C:\Windows\system32\MRT
2015-12-10 18:57:18 ----A---- C:\Windows\system32\MRT.exe
2015-12-10 18:52:10 ----D---- C:\Windows\SYSWOW64\en-US
2015-12-10 18:52:10 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-12-10 18:52:10 ----D---- C:\Windows\system32\en-US
2015-12-10 18:52:10 ----D---- C:\Windows\system32\cs-CZ
2015-12-05 16:27:07 ----D---- C:\Users\Vojtěch\AppData\Roaming\Skype
2015-12-04 17:49:49 ----D---- C:\ProgramData\Skype
2015-12-03 21:38:57 ----D---- C:\Program Files (x86)\PacificPoker
2015-12-01 02:11:07 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem19.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\Windows\System32\drivers\amdkmpfd.sys [2012-07-09 35496]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-06-24 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-06-24 272248]
R0 hpdskflt;@oem7.inf,%service_desc%;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2012-08-22 31040]
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-05-04 641672]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2015-04-02 381608]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-06-24 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-06-24 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-06-26 442264]
R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2012-06-25 92536]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2015-02-28 127760]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-06-24 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-06-24 89944]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-06-24 137288]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2013-12-21 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2013-12-21 43680]
R3 Accelerometer;@oem7.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2012-08-22 43328]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-08-01 10280960]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-08-01 368640]
R3 BtAudioBusSrv;@oem15.inf,%SvcDesc%;Ralink Bluetooth Audio Bus Service; C:\Windows\System32\Drivers\BtAudioBus.sys [2012-06-15 23136]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2013-01-09 51712]
R3 BthL2caScoIfSrv;Bluetooth Profile Interface Driver Service; C:\Windows\System32\Drivers\BtL2caScoIf.sys [2012-07-19 56904]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2013-01-09 74752]
R3 btUrbFilterDrv;IVT URB Bluetooth Filter Driver Service; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [2012-10-02 48608]
R3 clwvd;@oem26.inf,%clwvd.DeviceDesc%;CyberLink Webcam Sharing Manager; C:\Windows\system32\DRIVERS\clwvd.sys [2012-08-28 40944]
R3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\Windows\system32\DRIVERS\Hamdrv.sys [2015-08-03 45680]
R3 HpqKbFiltr;@oem5.inf,%HpqKbFiltr.SvcDesc%;HpqKbFilter Driver; C:\Windows\System32\drivers\HpqKbFiltr.sys [2012-08-27 26504]
R3 IntcDAud;@oem21.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2012-08-23 9000256]
R3 JMCR;JMCR; C:\Windows\System32\drivers\jmcr.sys [2013-12-10 176880]
R3 MEIx64;@oem36.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\HECIx64.sys [2014-02-04 62784]
R3 netr28x;@oem39.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2013-12-04 2505904]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\System32\drivers\rfcomm.sys [2013-03-01 156672]
R3 rtbth;@oem37.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\Windows\System32\drivers\rtbth.sys [2013-12-02 1204424]
R3 RTL8168;@oem6.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2012-06-13 683664]
R3 SensorsServiceDriver;@sensorsservicedriver.inf,%WudfSensorsServiceDriverDisplayName%;UMDF Reflector service for SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 198656]
R3 SNP2UVC;@oem22.inf,%SERVICE_DISPLAY_NAME%;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2012-10-04 1864328]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2012-11-12 543744]
R3 SynTP;@oem34.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-10-30 549104]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2013-03-01 1175040]
S3 DAMDrv;DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [2012-11-09 64832]
S3 dg_ssudbus;@oem41.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 e1iexpress;@net1ic64.inf,%E1IExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\Windows\system32\DRIVERS\e1i63x64.sys [2012-06-02 333824]
S3 HPFXBULK;HPFXBULK; C:\Windows\system32\drivers\hpfx64bulk.sys [2007-07-16 20504]
S3 HPFXFAX;HPFXFAX; C:\Windows\system32\drivers\hpfx64fax.sys [2007-07-16 23064]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-08-23 9000256]
S3 nmwcd;@oem46.inf,%MFG% %SVC%;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;@oem50.inf,%MFG% %SVC%;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 SmbDrv;SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [2012-08-15 41272]
S3 SmbDrvI;SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [2012-08-15 43832]
S3 ssudmdm;@oem43.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-01 43008]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-05 210560]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-08-01 239616]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-06-24 343336]
R2 BlueSoleilCS;BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [2012-09-26 1612552]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2012-10-26 488824]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-08-03 2545512]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2015-05-19 99128]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2013-10-16 681760]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 hpsrv;@oem7.inf,%hpservice_desc%;HP Service; C:\Windows\system32\Hpservice.exe [2012-08-22 33600]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-12-10 732160]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2014-02-04 131032]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-02-04 165336]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-08-03 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-02-04 279000]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2013-07-18 1143432]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-10-10 75064]
R2 PnkBstrB;PnkBstrB; C:\Windows\syswow64\PnkBstrB.exe [2014-11-21 214520]
R2 ScsiAccess;ScsiAccess; C:\Program Files (x86)\Photodex\ProShowProducer\ScsiAccess.exe [2014-03-18 181312]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2012-11-12 327680]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2014-02-04 366040]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\Windows\system32\vcsFPService.exe [2013-09-12 3221392]
R3 BsHelpCS;BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [2012-09-19 146184]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-05-13 1129760]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-05-04 15496]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-10 269504]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16 50864]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-08-23 276288]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2012-11-19 477056]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-26 43616]
S3 GDOCService;gDoc PDF Service; C:\Program Files (x86)\Global Graphics\gDocPDFServer\MWFSrv.exe [2010-08-27 77824]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2012-12-10 803872]
S3 Macromedia Licensing Service;Macromedia Licensing Service; C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe [2015-03-22 68096]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2009-08-31 651776]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S4 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\Windows\System32\drivers\BthAvrcpTg.sys [2013-06-01 37632]
S4 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\Windows\System32\drivers\bthhfenum.sys [2012-07-26 51200]
S4 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\Windows\System32\drivers\BthHFHid.sys [2012-11-27 29952]

-----------------EOF-----------------