Preventivka

[Zemos]

Zdravím, prosil bych o překontrolování logu. Avast ani MalwareBytes nic nenašli.
Jediné co mě trápí je disk. Jede na 99%, ale vše jede hladce :O a po restartování PC, naběhne windows 8.1, chce to přihlášení, zadám heslo a cca 1-2 minuty trvá než to napíše Vítejte, proto prosím ještě jednou o překontrolování Děkuji

Kód: Vybrat vše

Logfile of random's system information tool 1.10 (written by random/random)
Run by Péťa at 2016-10-23 11:50:35
Microsoft Windows 8.1 
System drive C: has 304 GB (65%) free of 467 GB
Total RAM: 8114 MB (77% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:50:37, on 23. 10. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
D:\Programy\Driver Booster\4.0.4\Scheduler.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
C:\Program Files\trend micro\Péťa.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [PlaysTV] "C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe" --startup
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Péťa\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [AcerPortal] "C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe" startup
O4 - HKCU\..\Run: [Overwolf] "D:\Programy\Overwolf\OverwolfLauncher.exe" -overwolfsilent
O4 - HKCU\..\Run: [RemoteFilesTrayIcon] "C:\Program Files (x86)\Acer\abFiles\abFilesTrayIcon.exe" --hideUI
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "D:\Programy\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [World of Tanks] "D:\Hry\World_of_Tanks\WargamingGameUpdater.exe"
O4 - Startup: Dropbox.lnk = ?
O4 - Startup: OneDrive pro firmy.lnk = C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVE.EXE
O4 - Startup: Rainmeter.lnk = D:\Programy\rainmeter\Rainmeter.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{F8AF7829-48DA-4A01-BE37-068AE51CC4A9}: NameServer = 77.234.40.79
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - D:\Programy\origin\OriginClientService.exe
O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9426 bytes

======Listing Processes======





wininit.exe

winlogon.exe

C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
"dwm.exe"
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\Windows\System32\svchost.exe -k utcsvc
dashost.exe {eb0ff97d-401f-45d0-b2a1ac3ff817c0f8}
"C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe"
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe" -s
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-99e22c51-fb52-4f1b-b1a4-6a5492b96ebc -SystemEventPortName:HostProcess-0bffe903-f873-4d65-9b38-e8b9f2ee9b75 -IoCancelEventPortName:HostProcess-7b0f87d2-ffeb-4cfa-9321-5afa27ffea09 -NonStateChangingEventPortName:HostProcess-9d83b723-4b79-4b4c-855e-b82f8604e0a0 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:57ab53f0-34f8-4f2f-aae3-612b8108c7f8 -DeviceGroupId:WudfDefaultDevicePool
taskeng.exe {66B47F47-4615-4218-A1DF-FFE52A6ACFFF}
taskhostex.exe 
"C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe" scan upload
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\Explorer.EXE
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
"C:\Program Files\Acer\Acer Quick Access\QAEvent.exe"
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Péťa\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=53.0.2785.143 --handshake-handle=0x144
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4464.0.1030000777\2127539760" --mojo-application-channel-token=C725896D808816FE5C6839549C20E727 --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-conservative/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_38/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,13,14,15,16,18,31,56 --gpu-vendor-id=0x1002 --gpu-device-id=0x6611 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=21.19.155.4 --gpu-driver-date=10-17-2016 --mojo-platform-channel-handle=1288 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-conservative/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_38/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=F837D2AE0C058B17322130BA6928388C --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=0704D952473F3ABF0F663320DF16C00C --mojo-application-channel-token=F837D2AE0C058B17322130BA6928388C --channel="4464.3.307640173\1015008558" --mojo-platform-channel-handle=2612 /prefetch:1
"C:\Program Files\Acer\Acer Quick Access\QAMsg.exe" 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-conservative/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_38/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=35572707EAC081E8ACABB2BA39FEE3DB --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=6E937B0AB951E1954E28D717CFF7F9EB --mojo-application-channel-token=35572707EAC081E8ACABB2BA39FEE3DB --channel="4464.4.1017197094\186812093" --mojo-platform-channel-handle=4708 /prefetch:1
"D:\Programy\Driver Booster\4.0.4\Scheduler.exe" /scheduler
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-conservative/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_38/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=8C66390630F1342AAD6F136B26D310AE --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=216813994678B7904C02BA44F414A8CB --mojo-application-channel-token=8C66390630F1342AAD6F136B26D310AE --channel="4464.6.1864473510\1913465406" --mojo-platform-channel-handle=2908 /prefetch:1
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\Taskmgr.exe" /3 
"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe" task
C:\Windows\System32\svchost.exe -k WerSvcGroup

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" 
"C:\Windows\system32\SearchFilterHost.exe" 0 568 572 580 65536 576 

C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Péťa\Desktop\Programy\RSITx64.exe" 

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe  
C:\Windows\tasks\Uninstaller_SkipUac_Péťa.job - C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe  /UninstallExplorer 

=========Mozilla firefox=========

ProfilePath - C:\Users\Péťa\AppData\Roaming\Mozilla\Firefox\Profiles\t4rih17k.default

prefs.js - "browser.startup.homepage" -  "about:home"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.185 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_185.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1223183.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\2\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.185 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_185.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.74.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_74\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.74.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_74\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-11-12 2472224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-10-08 214216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_74\bin\ssv.dll [2016-02-24 553056]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-08-24 948792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-10-08 2326320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_74\bin\jp2ssv.dll [2016-02-24 214112]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-10-08 151248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-08-24 713440]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-10-08 1632048]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-01-07 13663448]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01 508128]
"StartCN"=C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [2016-10-17 8029576]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Dropbox Update"=C:\Users\Péťa\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-13 134512]
"AcerPortal"=C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2016-09-09 2418392]
"Overwolf"=D:\Programy\Overwolf\OverwolfLauncher.exe [2016-09-27 247344]
"RemoteFilesTrayIcon"=C:\Program Files (x86)\Acer\abFiles\abFilesTrayIcon.exe [2016-06-28 2134232]
"DAEMON Tools Lite Automount"=D:\Programy\DAEMON Tools Lite\DTAgent.exe [2015-06-18 4468056]
"World of Tanks"=D:\Hry\World_of_Tanks\WargamingGameUpdater.exe [2016-09-26 3134728]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-10-15 9083840]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2016-10-07 5565960]
"PlaysTV"=C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [2016-09-28 71440]

C:\Users\Péťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Péťa\AppData\Roaming\Dropbox\bin\Dropbox.exe
OneDrive pro firmy.lnk - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVE.EXE
Rainmeter.lnk - D:\Programy\rainmeter\Rainmeter.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoSimpleNetIDList"=1
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsv64.dll
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-10-23 11:34:25 ----D---- C:\rsit
2016-10-23 10:36:42 ----A---- C:\Windows\SYSWOW64\RsCRIcon.dll
2016-10-23 10:36:42 ----A---- C:\Windows\system32\RtCRX64.dll
2016-10-23 10:36:42 ----A---- C:\Windows\system32\drivers\RtsUer.sys
2016-10-23 10:36:42 ----A---- C:\Windows\RtCRU64.exe
2016-10-23 10:36:15 ----A---- C:\Windows\system32\drivers\amd_xata.sys
2016-10-23 10:36:15 ----A---- C:\Windows\system32\drivers\amd_sata.sys
2016-10-23 10:34:22 ----A---- C:\Windows\system32\RtNicProp64.dll
2016-10-23 10:34:22 ----A---- C:\Windows\system32\drivers\Rt630x64.sys
2016-10-23 10:14:04 ----D---- C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2016-10-23 10:14:03 ----D---- C:\Users\Péťa\AppData\Roaming\ProductData
2016-10-23 10:13:59 ----D---- C:\ProgramData\ProductData
2016-10-23 10:13:51 ----D---- C:\Windows\IObit
2016-10-23 10:13:41 ----D---- C:\Program Files (x86)\IObit
2016-10-23 10:12:32 ----D---- C:\ProgramData\IObit
2016-10-23 10:12:28 ----A---- C:\Windows\SYSWOW64\drivers\HWiNFO64A.SYS
2016-10-23 10:11:42 ----D---- C:\Users\Péťa\AppData\Roaming\IObit
2016-10-23 09:46:42 ----D---- C:\Windows\pss
2016-10-20 20:19:11 ----D---- C:\Program Files (x86)\SpeedFan
2016-10-20 19:14:41 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-10-19 20:31:15 ----D---- C:\Program Files\MAXON
2016-10-18 04:41:14 ----A---- C:\Windows\SYSWOW64\atiumdag.dll
2016-10-18 04:41:10 ----A---- C:\Windows\system32\atiumd64.dll
2016-10-18 04:41:08 ----A---- C:\Windows\SYSWOW64\atiu9pag.dll
2016-10-18 04:41:06 ----A---- C:\Windows\system32\atiu9p64.dll
2016-10-18 04:40:54 ----A---- C:\Windows\system32\GameManager64.dll
2016-10-18 04:40:50 ----A---- C:\Windows\system32\dgtrayicon.exe
2016-10-18 04:40:48 ----A---- C:\Windows\system32\detoured.dll
2016-10-18 04:40:42 ----A---- C:\Windows\system32\atitmm64.dll
2016-10-18 04:40:40 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2016-10-18 04:40:40 ----A---- C:\Windows\system32\atimuixx.dll
2016-10-18 04:40:38 ----A---- C:\Windows\SYSWOW64\atiglpxx.dll
2016-10-18 04:40:38 ----A---- C:\Windows\system32\atiglpxx.dll
2016-10-18 04:40:36 ----A---- C:\Windows\SYSWOW64\atigktxx.dll
2016-10-18 04:40:34 ----A---- C:\Windows\system32\atig6txx.dll
2016-10-18 04:40:34 ----A---- C:\Windows\system32\atig6pxx.dll
2016-10-18 04:40:32 ----A---- C:\Windows\system32\atiumd6a.dll
2016-10-18 04:40:32 ----A---- C:\Windows\system32\atiesrxx.exe
2016-10-18 04:40:30 ----A---- C:\Windows\SYSWOW64\atimpc32.dll
2016-10-18 04:40:30 ----A---- C:\Windows\system32\atimpc64.dll
2016-10-18 04:40:30 ----A---- C:\Windows\system32\atieclxx.exe
2016-10-18 04:40:30 ----A---- C:\Windows\system32\atieah64.exe
2016-10-18 04:40:28 ----A---- C:\Windows\SYSWOW64\atieah32.exe
2016-10-18 04:40:26 ----A---- C:\Windows\system32\amdpcom64.dll
2016-10-18 04:40:24 ----A---- C:\Windows\SYSWOW64\amdpcom32.dll
2016-10-18 04:40:24 ----A---- C:\Windows\system32\atidemgy.dll
2016-10-18 04:40:24 ----A---- C:\Windows\system32\amdmiracast.dll
2016-10-18 04:40:22 ----A---- C:\Windows\SYSWOW64\amdhcp32.dll
2016-10-18 04:40:22 ----A---- C:\Windows\system32\aticalrt64.dll
2016-10-18 04:40:22 ----A---- C:\Windows\system32\amdhcp64.dll
2016-10-18 04:40:20 ----A---- C:\Windows\SYSWOW64\aticalrt.dll
2016-10-18 04:40:18 ----A---- C:\Windows\SYSWOW64\amdave32.dll
2016-10-18 04:40:18 ----A---- C:\Windows\system32\amdave64.dll
2016-10-18 04:40:16 ----A---- C:\Windows\system32\aticaldd64.dll
2016-10-18 04:40:14 ----A---- C:\Windows\system32\mantleaxl64.dll
2016-10-18 04:40:12 ----A---- C:\Windows\SYSWOW64\mantleaxl32.dll
2016-10-18 04:40:10 ----A---- C:\Windows\SYSWOW64\aticaldd.dll
2016-10-18 04:40:10 ----A---- C:\Windows\system32\mantle64.dll
2016-10-18 04:40:08 ----A---- C:\Windows\SYSWOW64\mantle32.dll
2016-10-18 04:40:08 ----A---- C:\Windows\system32\ATIODE.exe
2016-10-18 04:40:08 ----A---- C:\Windows\system32\aticalcl64.dll
2016-10-18 04:40:06 ----A---- C:\Windows\SYSWOW64\atisamu32.dll
2016-10-18 04:40:06 ----A---- C:\Windows\SYSWOW64\aticalcl.dll
2016-10-18 04:40:06 ----A---- C:\Windows\system32\atisamu64.dll
2016-10-18 04:40:06 ----A---- C:\Windows\system32\ATIODCLI.exe
2016-10-18 04:40:04 ----A---- C:\Windows\SYSWOW64\atiadlxy.dll
2016-10-18 04:40:04 ----A---- C:\Windows\SYSWOW64\atiadlxx.dll
2016-10-18 04:40:04 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2016-10-18 04:40:04 ----A---- C:\Windows\system32\atiapfxx.exe
2016-10-18 04:40:02 ----A---- C:\Windows\SYSWOW64\amfrt32.dll
2016-10-18 04:40:02 ----A---- C:\Windows\system32\atiadlxx.dll
2016-10-18 04:40:02 ----A---- C:\Windows\system32\amfrt64.dll
2016-10-18 04:39:58 ----A---- C:\Windows\system32\amdvlk64.dll
2016-10-18 04:39:54 ----A---- C:\Windows\SYSWOW64\amdvlk32.dll
2016-10-18 04:39:50 ----A---- C:\Windows\SYSWOW64\amduve32.dll
2016-10-18 04:39:50 ----A---- C:\Windows\system32\amduve64.dll
2016-10-18 04:39:48 ----A---- C:\Windows\SYSWOW64\hsa-thunk.dll
2016-10-18 04:39:48 ----A---- C:\Windows\system32\hsa-thunk64.dll
2016-10-18 04:39:46 ----A---- C:\Windows\SYSWOW64\amdgfxinfo32.dll
2016-10-18 04:39:46 ----A---- C:\Windows\system32\clinfo.exe
2016-10-18 04:39:46 ----A---- C:\Windows\system32\amdmmcl6.dll
2016-10-18 04:39:46 ----A---- C:\Windows\system32\amdmantle64.dll
2016-10-18 04:39:46 ----A---- C:\Windows\system32\amdgfxinfo64.dll
2016-10-18 04:39:44 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2016-10-18 04:39:44 ----A---- C:\Windows\SYSWOW64\amdmmcl.dll
2016-10-18 04:39:44 ----A---- C:\Windows\system32\OpenCL.dll
2016-10-18 04:39:44 ----A---- C:\Windows\system32\drivers\amdacpksd.sys
2016-10-18 04:39:44 ----A---- C:\Windows\system32\amdmcl64.dll
2016-10-18 04:39:42 ----A---- C:\Windows\SYSWOW64\amdmcl32.dll
2016-10-18 04:39:40 ----A---- C:\Windows\SYSWOW64\amdmantle32.dll
2016-10-18 04:39:38 ----A---- C:\Windows\system32\amdlvr64.dll
2016-10-18 04:39:36 ----A---- C:\Windows\SYSWOW64\amdlvr32.dll
2016-10-18 04:39:36 ----A---- C:\Windows\system32\amdocl64.dll
2016-10-18 04:39:32 ----A---- C:\Windows\system32\amdocl12cl64.dll
2016-10-18 04:39:28 ----A---- C:\Windows\SYSWOW64\amdocl12cl.dll
2016-10-18 04:39:24 ----A---- C:\Windows\SYSWOW64\amdocl.dll
2016-10-18 04:39:00 ----A---- C:\Windows\SYSWOW64\atioglxx.dll
2016-10-18 04:38:46 ----A---- C:\Windows\system32\atio6axx.dll
2016-10-18 04:38:42 ----A---- C:\Windows\SYSWOW64\amdhdl32.dll
2016-10-18 04:38:42 ----A---- C:\Windows\system32\amdhdl64.dll
2016-10-18 04:38:06 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2016-10-16 20:13:19 ----D---- C:\Users\Péťa\AppData\Roaming\PlaysTV
2016-10-16 20:12:14 ----D---- C:\Program Files (x86)\Raptr Inc
2016-10-16 20:12:11 ----D---- C:\Users\Péťa\AppData\Roaming\Raptr
2016-10-13 16:18:35 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-10-12 15:07:55 ----A---- C:\Windows\system32\devinv.dll
2016-10-12 15:07:55 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-10-12 15:07:55 ----A---- C:\Windows\system32\appraiser.dll
2016-10-12 15:07:55 ----A---- C:\Windows\system32\aeinv.dll
2016-10-12 15:07:55 ----A---- C:\Windows\system32\acmigration.dll
2016-10-12 15:07:54 ----A---- C:\Windows\system32\invagent.dll
2016-10-12 15:07:54 ----A---- C:\Windows\system32\generaltel.dll
2016-10-12 15:07:54 ----A---- C:\Windows\system32\centel.dll
2016-10-12 15:07:54 ----A---- C:\Windows\system32\aepic.dll
2016-10-12 15:07:44 ----A---- C:\Windows\system32\mshtml.dll
2016-10-12 15:07:42 ----A---- C:\Windows\system32\wmp.dll
2016-10-12 15:07:41 ----A---- C:\Windows\SYSWOW64\wmp.dll
2016-10-12 15:07:39 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-10-12 15:07:38 ----A---- C:\Windows\SYSWOW64\esent.dll
2016-10-12 15:07:38 ----A---- C:\Windows\system32\esent.dll
2016-10-12 15:07:37 ----A---- C:\Windows\system32\jscript9.dll
2016-10-12 15:07:37 ----A---- C:\Windows\system32\ieframe.dll
2016-10-12 15:07:36 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2016-10-12 15:07:36 ----A---- C:\Windows\system32\d3d11.dll
2016-10-12 15:07:35 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2016-10-12 15:07:35 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-10-12 15:07:35 ----A---- C:\Windows\system32\DWrite.dll
2016-10-12 15:07:35 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-10-12 15:07:34 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2016-10-12 15:07:34 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-10-12 15:07:34 ----A---- C:\Windows\system32\MSVidCtl.dll
2016-10-12 15:07:33 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-10-12 15:07:33 ----A---- C:\Windows\system32\wininet.dll
2016-10-12 15:07:33 ----A---- C:\Windows\system32\urlmon.dll
2016-10-12 15:07:33 ----A---- C:\Windows\system32\FntCache.dll
2016-10-12 15:07:32 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-10-12 15:07:32 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2016-10-12 15:07:32 ----A---- C:\Windows\system32\win32k.sys
2016-10-12 15:07:32 ----A---- C:\Windows\system32\iertutil.dll
2016-10-12 15:07:31 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-10-12 15:07:31 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2016-10-12 15:07:31 ----A---- C:\Windows\system32\ntshrui.dll
2016-10-12 15:07:31 ----A---- C:\Windows\system32\drivers\dfsc.sys
2016-10-12 15:07:30 ----AC---- C:\Windows\system32\drivers\spaceport.sys
2016-10-12 15:07:30 ----A---- C:\Windows\system32\lsasrv.dll
2016-10-12 15:07:29 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2016-10-12 15:07:29 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-10-12 15:07:29 ----A---- C:\Windows\system32\winload.exe
2016-10-12 15:07:29 ----A---- C:\Windows\system32\wbengine.exe
2016-10-12 15:07:29 ----A---- C:\Windows\system32\GdiPlus.dll
2016-10-12 15:07:28 ----AC---- C:\Windows\system32\drivers\parport.sys
2016-10-12 15:07:28 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2016-10-12 15:07:28 ----A---- C:\Windows\system32\wmploc.DLL
2016-10-12 15:07:27 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-10-12 15:07:27 ----A---- C:\Windows\SYSWOW64\rastapi.dll
2016-10-12 15:07:27 ----A---- C:\Windows\system32\vbscript.dll
2016-10-12 15:07:27 ----A---- C:\Windows\system32\PlayToDevice.dll
2016-10-12 15:07:27 ----A---- C:\Windows\system32\inetcomm.dll
2016-10-12 15:07:26 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2016-10-12 15:07:25 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2016-10-12 15:07:25 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-10-12 15:07:25 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2016-10-12 15:07:24 ----A---- C:\Windows\system32\drivers\tm.sys
2016-10-12 15:07:23 ----A---- C:\Windows\SYSWOW64\PlayToDevice.dll
2016-10-12 15:07:23 ----A---- C:\Windows\system32\winresume.exe
2016-10-12 15:07:23 ----A---- C:\Windows\system32\rastapi.dll
2016-10-12 15:07:23 ----A---- C:\Windows\system32\msfeeds.dll
2016-10-12 15:07:22 ----AC---- C:\Windows\system32\drivers\serial.sys
2016-10-12 15:07:22 ----A---- C:\Windows\SYSWOW64\adsmsext.dll
2016-10-12 15:07:22 ----A---- C:\Windows\system32\twinui.appcore.dll
2016-10-12 15:07:22 ----A---- C:\Windows\system32\drivers\vwifimp.sys
2016-10-12 15:07:22 ----A---- C:\Windows\system32\adsmsext.dll
2016-10-12 15:07:18 ----A---- C:\Windows\SYSWOW64\offreg.dll
2016-10-12 15:07:18 ----A---- C:\Windows\system32\offreg.dll
2016-10-12 15:07:18 ----A---- C:\Windows\system32\drivers\vwifibus.sys
2016-10-12 15:07:17 ----AC---- C:\Windows\system32\drivers\serenum.sys
2016-10-12 15:07:17 ----A---- C:\Windows\system32\iedkcs32.dll
2016-10-12 15:07:17 ----A---- C:\Windows\system32\ie4uinit.exe
2016-10-12 15:07:16 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-10-12 15:07:16 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-10-12 15:07:16 ----A---- C:\Windows\system32\drivers\vwififlt.sys
2016-10-12 15:07:16 ----A---- C:\Windows\system32\certcli.dll
2016-10-12 15:07:14 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-10-12 15:07:14 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-10-12 15:07:14 ----A---- C:\Windows\system32\jscript.dll
2016-10-12 15:07:14 ----A---- C:\Windows\system32\ieapfltr.dll
2016-10-12 15:04:46 ----A---- C:\Windows\system32\shell32.dll
2016-10-12 15:04:45 ----A---- C:\Windows\SYSWOW64\shell32.dll
2016-10-12 15:04:45 ----A---- C:\Windows\system32\twinui.dll
2016-10-12 15:04:44 ----A---- C:\Windows\SYSWOW64\twinui.dll
2016-10-12 15:04:44 ----A---- C:\Windows\SYSWOW64\explorer.exe
2016-10-12 15:04:44 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-10-12 15:04:44 ----A---- C:\Windows\system32\authui.dll
2016-10-12 15:04:44 ----A---- C:\Windows\explorer.exe
2016-10-12 15:04:43 ----A---- C:\Windows\SYSWOW64\RestoreOptIn.exe
2016-10-12 15:04:43 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2016-10-12 15:04:43 ----A---- C:\Windows\system32\RestoreOptIn.exe
2016-10-12 15:04:43 ----A---- C:\Windows\system32\actxprxy.dll
2016-10-11 17:55:12 ----A---- C:\Windows\system32\amde34b.dat
2016-10-11 17:55:04 ----A---- C:\Windows\system32\amde34a.dat
2016-10-08 13:51:50 ----D---- C:\Program Files\Ekahau
2016-10-08 00:54:10 ----D---- C:\Users\Péťa\AppData\Roaming\Sony Creative Software Inc
2016-10-07 22:52:28 ----A---- C:\Windows\SYSWOW64\vcruntime140.dll
2016-10-07 22:52:28 ----A---- C:\Windows\SYSWOW64\msvcp140.dll
2016-10-07 22:52:28 ----A---- C:\Windows\system32\vcruntime140.dll
2016-10-07 22:52:28 ----A---- C:\Windows\system32\vccorlib140.dll
2016-10-07 22:52:28 ----A---- C:\Windows\system32\concrt140.dll
2016-10-07 22:49:12 ----A---- C:\Windows\SYSWOW64\concrt140.dll
2016-10-07 22:49:12 ----A---- C:\Windows\system32\msvcp140.dll
2016-10-07 22:45:26 ----A---- C:\Windows\SYSWOW64\vccorlib140.dll
2016-10-07 21:30:28 ----D---- C:\Users\Péťa\AppData\Roaming\Petroglyph
2016-10-07 14:04:44 ----AH---- C:\Windows\system32\drivers\Hamdrv.sys
2016-10-06 18:01:29 ----D---- C:\ProgramData\Hi-Rez Studios
2016-10-05 18:02:08 ----A---- C:\Windows\system32\ativce02.dat
2016-10-05 17:59:40 ----A---- C:\Windows\system32\ativce03.dat
2016-10-05 17:57:08 ----A---- C:\Windows\system32\amde31a.dat
2016-10-05 04:18:48 ----A---- C:\Windows\system32\SET2D8C.tmp
2016-10-05 04:18:48 ----A---- C:\Windows\system32\coinst_16.40.dll
2016-10-04 18:38:32 ----D---- C:\Program Files (x86)\Microsoft OneDrive
2016-10-04 18:38:20 ----D---- C:\ProgramData\Microsoft OneDrive
2016-10-04 17:34:45 ----D---- C:\Program Files\Microsoft Office 15
2016-09-30 19:04:07 ----D---- C:\Users\Péťa\AppData\Roaming\com.freakinware.wormis

======List of files/folders modified in the last 1 month======

2016-10-23 11:50:37 ----D---- C:\Program Files\trend micro
2016-10-23 11:50:33 ----D---- C:\Windows\system32\Tasks
2016-10-23 11:49:00 ----D---- C:\Windows\Temp
2016-10-23 11:48:02 ----D---- C:\Windows\Prefetch
2016-10-23 11:13:58 ----D---- C:\Windows\Tasks
2016-10-23 11:00:02 ----D---- C:\Windows\system32\sru
2016-10-23 10:55:59 ----D---- C:\Windows\system32\config
2016-10-23 10:45:09 ----D---- C:\Windows
2016-10-23 10:45:03 ----D---- C:\Windows\Microsoft.NET
2016-10-23 10:45:00 ----D---- C:\Windows\WinSxS
2016-10-23 10:44:40 ----D---- C:\Windows\system32\DriverStore
2016-10-23 10:44:40 ----D---- C:\Windows\Inf
2016-10-23 10:40:26 ----D---- C:\Program Files (x86)\Internet Explorer
2016-10-23 10:40:11 ----D---- C:\Windows\SYSWOW64\wbem
2016-10-23 10:40:11 ----D---- C:\Windows\SYSWOW64\en-US
2016-10-23 10:40:11 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-10-23 10:40:11 ----D---- C:\Windows\SysWOW64
2016-10-23 10:40:11 ----D---- C:\Windows\system32\spool
2016-10-23 10:40:11 ----D---- C:\Windows\system32\drivers\en-US
2016-10-23 10:40:11 ----D---- C:\Windows\system32\drivers
2016-10-23 10:40:11 ----D---- C:\Windows\PolicyDefinitions
2016-10-23 10:40:10 ----RSD---- C:\Windows\Fonts
2016-10-23 10:40:10 ----RD---- C:\Windows\System32
2016-10-23 10:40:10 ----D---- C:\Windows\system32\wbem
2016-10-23 10:40:10 ----D---- C:\Windows\system32\setup
2016-10-23 10:40:10 ----D---- C:\Windows\system32\en-US
2016-10-23 10:40:10 ----D---- C:\Windows\system32\cs-CZ
2016-10-23 10:40:09 ----RD---- C:\Program Files
2016-10-23 10:40:09 ----D---- C:\Program Files\Internet Explorer
2016-10-23 10:40:06 ----D---- C:\Windows\system32\drivers\UMDF
2016-10-23 10:36:51 ----D---- C:\Windows\SYSWOW64\sda
2016-10-23 10:36:50 ----D---- C:\Windows\system32\catroot
2016-10-23 10:32:23 ----SHD---- C:\System Volume Information
2016-10-23 10:14:04 ----HD---- C:\ProgramData
2016-10-23 10:13:56 ----D---- C:\Program Files (x86)\Common Files
2016-10-23 10:13:41 ----RD---- C:\Program Files (x86)
2016-10-23 10:13:33 ----SHD---- C:\Windows\Installer
2016-10-23 10:13:32 ----SHD---- C:\Config.Msi
2016-10-23 10:12:35 ----D---- C:\Windows\CbsTemp
2016-10-23 10:12:28 ----D---- C:\Windows\SYSWOW64\drivers
2016-10-23 10:07:17 ----D---- C:\Program Files\AMD
2016-10-23 10:02:11 ----D---- C:\AMD
2016-10-22 22:40:18 ----D---- C:\Users\Péťa\AppData\Roaming\Skype
2016-10-22 21:27:55 ----D---- C:\Users\Péťa\AppData\Roaming\OBS
2016-10-22 21:25:56 ----D---- C:\Users\Péťa\AppData\Roaming\MAXON
2016-10-22 18:26:26 ----D---- C:\Users\Péťa\AppData\Roaming\TS3Client
2016-10-22 10:59:40 ----D---- C:\Program Files (x86)\Microsoft Office
2016-10-22 09:59:04 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2016-10-21 16:37:15 ----D---- C:\ProgramData\Skype
2016-10-20 19:31:21 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-10-20 16:04:07 ----RD---- C:\Program Files (x86)\Skype
2016-10-19 20:03:40 ----D---- C:\Users\Péťa\AppData\Roaming\DAEMON Tools Lite
2016-10-19 15:27:14 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2016-10-18 04:41:16 ----A---- C:\Windows\SYSWOW64\atiuxpag.dll
2016-10-18 04:41:16 ----A---- C:\Windows\system32\atiuxp64.dll
2016-10-18 04:40:52 ----A---- C:\Windows\SYSWOW64\GameManager32.dll
2016-10-18 04:40:48 ----A---- C:\Windows\SYSWOW64\detoured.dll
2016-10-18 04:40:38 ----A---- C:\Windows\system32\atidxx64.dll
2016-10-18 04:40:36 ----A---- C:\Windows\SYSWOW64\atiumdva.dll
2016-10-18 04:40:34 ----A---- C:\Windows\SYSWOW64\atidxx32.dll
2016-10-18 04:40:30 ----A---- C:\Windows\system32\aticfx64.dll
2016-10-18 04:40:28 ----A---- C:\Windows\SYSWOW64\aticfx32.dll
2016-10-16 20:34:57 ----SD---- C:\Users\Péťa\AppData\Roaming\Microsoft
2016-10-16 20:34:57 ----D---- C:\Program Files (x86)\AMD
2016-10-16 20:33:59 ----D---- C:\Windows\system32\catroot2
2016-10-16 20:26:41 ----D---- C:\Program Files (x86)\VulkanRT
2016-10-16 18:36:27 ----D---- C:\Users\Péťa\AppData\Roaming\Spotify
2016-10-15 09:34:22 ----D---- C:\Windows\AppReadiness
2016-10-14 18:06:36 ----D---- C:\Windows\rescache
2016-10-14 17:19:52 ----D---- C:\Users\Péťa\AppData\Roaming\Dropbox
2016-10-14 17:17:05 ----RSD---- C:\Windows\assembly
2016-10-14 17:16:54 ----HD---- C:\Program Files\WindowsApps
2016-10-13 16:16:02 ----D---- C:\Program Files\Microsoft Silverlight
2016-10-13 16:16:01 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-10-12 22:00:56 ----SD---- C:\Windows\system32\CompatTel
2016-10-12 22:00:56 ----D---- C:\Windows\system32\appraiser
2016-10-12 22:00:54 ----D---- C:\Windows\system32\Boot
2016-10-12 22:00:54 ----D---- C:\Windows\apppatch
2016-10-12 22:00:52 ----RD---- C:\Windows\ToastData
2016-10-12 16:08:27 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-10-12 15:40:58 ----A---- C:\Windows\system32\pcasvc.dll
2016-10-12 15:40:34 ----D---- C:\Windows\system32\MRT
2016-10-12 15:27:05 ----AC---- C:\Windows\system32\MRT.exe
2016-10-12 15:25:29 ----D---- C:\ProgramData\Microsoft Help
2016-10-12 15:21:13 ----D---- C:\Windows\Logs
2016-10-11 17:32:11 ----D---- C:\Windows\system32\Macromed
2016-10-11 17:32:09 ----D---- C:\Windows\SYSWOW64\Macromed
2016-10-08 21:52:19 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-10-08 01:58:41 ----A---- C:\Windows\system32\uxtheme.dll
2016-10-07 23:08:44 ----D---- C:\Users\Péťa\AppData\Roaming\SmartSteamEmu
2016-10-05 04:21:00 ----A---- C:\Windows\SYSWOW64\SET2CBB.tmp
2016-10-05 04:20:58 ----A---- C:\Windows\system32\SET1125.tmp
2016-10-05 04:20:28 ----A---- C:\Windows\SYSWOW64\SETF03.tmp
2016-10-05 04:20:22 ----A---- C:\Windows\SYSWOW64\SETA39.tmp
2016-10-05 04:19:54 ----A---- C:\Windows\SYSWOW64\SETF209.tmp
2016-10-05 04:19:50 ----A---- C:\Windows\system32\SETEFA5.tmp
2016-10-05 04:19:44 ----A---- C:\Windows\SYSWOW64\SET116.tmp
2016-10-05 04:19:40 ----A---- C:\Windows\system32\SET1187.tmp
2016-10-05 04:19:38 ----A---- C:\Windows\SYSWOW64\SET13CB.tmp
2016-10-04 17:34:46 ----SD---- C:\ProgramData\Microsoft
2016-10-04 17:34:39 ----D---- C:\Program Files\Common Files\microsoft shared
2016-10-03 17:18:08 ----D---- C:\Windows\debug
2016-10-03 16:46:35 ----D---- C:\Windows\SoftwareDistribution
2016-10-02 19:00:28 ----D---- C:\Users\Péťa\AppData\Roaming\FileZilla
2016-10-02 18:55:16 ----D---- C:\Program Files (x86)\TeamViewer
2016-09-29 20:47:41 ----D---- C:\Users\Péťa\AppData\Roaming\.minecraft
2016-09-25 12:36:23 ----D---- C:\Program Files\OBS
2016-09-25 11:02:21 ----D---- C:\Users\Péťa\AppData\Roaming\Notepad++
2016-09-25 10:31:30 ----D---- C:\Program Files (x86)\OBS

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\Windows\System32\drivers\amd_sata.sys [2016-10-23 83656]
R0 amd_xata;amd_xata; C:\Windows\System32\drivers\amd_xata.sys [2016-10-23 23752]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-08-24 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-10-13 293352]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-08-24 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-08-24 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-09-14 969184]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-09-24 513632]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2016-10-23 27552]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2016-08-13 71680]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-08-24 108816]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-08-24 163416]
R2 EkaProt6;@oem26.inf,%EKAHAU_Desc%;Ekahau User Protocol Driver for NDIS 6; C:\Windows\system32\DRIVERS\ekaprot6.sys [2012-03-23 27288]
R2 speedfan;speedfan; \??\C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2016-10-18 26558464]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2016-10-18 519048]
R3 AtiHDAudioService;@oem38.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdWB6.sys [2016-08-09 118848]
R3 dtlitescsibus;@oem23.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\System32\drivers\dtlitescsibus.sys [2015-08-22 30264]
R3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\Windows\system32\DRIVERS\Hamdrv.sys [2016-10-07 45680]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-01-07 3811800]
R3 RTL8168;@oem41.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2016-10-23 876760]
R3 RTSUER;@oem43.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\Windows\system32\Drivers\RtsUer.sys [2016-10-23 416472]
R3 SensorsSimulatorDriver;@oem16.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2014-10-29 226304]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2014-02-16 60640]
S0 amdkmafd;@oem14.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\Windows\System32\drivers\amdkmafd.sys [2012-09-23 21160]
S1 ndisrd;@oem3.inf,%ndisrfl_Desc%;Intel(R) Technology Access Filter Driver; C:\Windows\system32\DRIVERS\ndisrfl.sys [2015-04-30 41688]
S3 AODDriver2;AODDriver2; \??\D:\Programy\overdrive-amd\amd64\AODDriver2.sys []
S3 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-08-24 37656]
S3 aswTap;@oem36.inf,%DeviceDescription%;avast! SecureLine TAP Adapter v3; C:\Windows\system32\DRIVERS\aswTap.sys [2015-01-08 44640]
S3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl63a.sys [2013-07-01 8536752]
S3 dg_ssudbus;@oem29.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 NetTap630;@oem15.inf,%NetTap.Service.DispName%;Intel(R) Technology Access TAP Driver (NDIS 6.30); C:\Windows\system32\DRIVERS\nettap630.sys [2014-10-30 67800]
S3 RSUSBVSTOR;@oem2.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2013-12-16 330968]
S3 ssudmdm;@oem31.inf,%ssud.Service.Name%;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 ssudserd;@oem32.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudserd.sys [2014-01-22 206080]
S3 tap0901t;@oem9.inf,%DeviceDescription%;TAP-Win32 Adapter V9 (Tunngle); C:\Windows\system32\DRIVERS\tap0901t.sys [2009-09-16 31232]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
S3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2016-08-13 38912]
S4 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-08-24 197128]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2016-10-08 3291848]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 38792]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2016-10-07 2622472]
R2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc); C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [2014-10-15 22744]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [2016-10-07 419248]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2014-02-21 134336]
R3 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2014-06-26 458984]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-09-20 324224]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 EasyAntiCheat;EasyAntiCheat; C:\Windows\syswow64\EasyAntiCheat.exe [2014-11-25 174112]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2014-02-20 142336]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 Origin Client Service;Origin Client Service; D:\Programy\origin\OriginClientService.exe [2016-07-01 2122248]
S3 ose;Office  Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2016-10-07 209104]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-10-13 1459488]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-08-22 119808]
S3 TunngleService;TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [2015-10-27 809424]
S3 VsEtwService120;Visual Studio ETW Event Collection Service; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [2014-07-22 89232]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-11 270016]
S4 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2016-10-18 289160]
S4 AMD FUEL Service;AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [2015-08-04 344064]
S4 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe []
S4 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2016-08-30 2267352]
S4 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; D:\Programy\DAEMON Tools Lite\DiscSoftBusService.exe [2015-06-18 1268568]
S4 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [2016-08-11 342456]
S4 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-12-27 265808]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-30 107848]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-30 107848]
S4 HiPatchService;Hi-Rez Studios Authenticate and Update Service; D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [2016-10-10 9728]
S4 Intel(R) TechnologyAccessService;Intel(R) Technology Access Service; C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe [2015-03-17 93408]
S4 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-06-09 174368]
S4 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2016-07-20 2960672]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-09-22 172488]
S4 OverwolfUpdater;Overwolf Updater Windows SCM; D:\Programy\Overwolf\OverwolfUpdater.exe [2016-09-27 1310960]
S4 PlaysService;Plays.tv Update Service; C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe [2016-09-28 32528]
S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2012-04-24 254512]
S4 UEIPSvc;User Experience Improvement Program; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [2014-06-24 233216]

-----------------EOF-----------------

[Márty84]

Zdravim

Nedavejte logy do Code, spatne se to cte, boli z toho oci.

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

[Zemos]

Předem se omlouvám za tem code :/
Zde přikládám Adwcleaner
# AdwCleaner v6.030 - Logfile created 24/10/2016 at 19:52:56
# Updated on 19/10/2016 by Malwarebytes
# Database : 2016-10-23.2 [Server]
# Operating System : Windows 8.1 (X64)
# Username : Péťa - PC-PETA
# Running from : C:\Users\Péťa\Desktop\adwcleaner_6.030.exe
# Mode: Clean
# Support : hxxps://www.malwarebytes.com/support



***** [ Services ] *****



***** [ Folders ] *****



***** [ Files ] *****

[-] File deleted: C:\END


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****

[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}


***** [ Web browsers ] *****



*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [3802 Bytes] - [24/08/2016 16:44:58]
C:\AdwCleaner\AdwCleaner[C2].txt - [960 Bytes] - [24/10/2016 19:52:56]
C:\AdwCleaner\AdwCleaner[S0].txt - [3752 Bytes] - [24/08/2016 16:44:35]
C:\AdwCleaner\AdwCleaner[S1].txt - [1350 Bytes] - [24/10/2016 19:52:33]

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1178 Bytes] ##########

A zde MBAM
Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 24. 10. 2016
Čas skenování: 20:03
Protokol: MBAMlog.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.10.24.09
Databáze rootkitů: v2016.09.26.02
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Péťa

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 1238311
Uplynulý čas: 5 hod, 24 min, 56 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 3
Trojan.Downloader, C:\Users\Péťa\Desktop\Hry\FTBLauncher_32bit.exe, , [a168e8b53c5e70c67ce4436e7490b848],
RiskWare.Tool.HCK, C:\Users\Péťa\Downloads\keygen\Bandicam 3.1.1.1073 Multilingual + Keymaker [SadeemPC].zip, , [45c4811c831772c47f1db6467b858c74],
RiskWare.Tool.HCK, C:\Users\Péťa\Downloads\keygen\Adobe Photoshop Lightroom CC 6.5.1 Multilingual + Crack [SadeemPC]\Crack.rar, , [05040f8e4159fa3c43c7010dce330ff1],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[Márty84]

Nalezy doporucuji odstranit.

Stahnete crystal disk info http://www.slunecnice.cz/sw/crystaldiskinfo/
Nainstalujte (pozor na pripadne doplnky, ty odmitnete zrusenim zatrzitka) a spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)

[Zemos]

Zde, po skenování jsem kouknul do správce úloh a jel na 100%, vytěžoval ho Hostitelský proces systému Windows (2x)
----------------------------------------------------------------------------
CrystalDiskInfo 7.0.4 (C) 2008-2016 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 8.1 [6.3 Build 9600] (x64)
Date : 2016/10/25 20:47:27

-- Controller Map ----------------------------------------------------------
+ AMD SATA Controller [ATA]
- WDC WD10EZEX-21M2NA0
- MATSHITA DVD-RAM SW830
- Řadič prostorů úložišť [SCSI]
- DAEMON Tools Lite Virtual SCSI Bus [SCSI]

-- Disk List ---------------------------------------------------------------
(1) WDC WD10EZEX-21M2NA0 : 1000,2 GB [0/0/0, pd1] - wd

----------------------------------------------------------------------------
(1) WDC WD10EZEX-21M2NA0
----------------------------------------------------------------------------
Model : WDC WD10EZEX-21M2NA0
Firmware : 01.01A01
Serial Number : WCC3FK2KP5AC
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ACS-2
Minor Version : ACS-3 Revision 3b
Transfer Mode : SATA/600 | SATA/600
Power On Hours : 4485 hod.
Power On Count : 1067 krát
Temperature : 26 C (78 F)
Health Status : Dobrý
Features : S.M.A.R.T., 48bit LBA, NCQ
APM Level : ----
AAM Level : ----
Drive Letter : C: D:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 173 169 _21 000000000925 Čas na roztočení ploten
04 _99 _99 __0 00000000042D Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _94 _94 __0 000000001185 Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _99 _99 __0 00000000042B Počet cyklů zapnutí zařízení
C0 200 200 __0 000000000026 Počet vypnutí disku
C1 200 200 __0 000000000409 Počet cyklů načítání/vymazání
C2 117 _88 __0 00000000001A Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 200 200 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 5743 4333 464B 324B 5035 4143
020: 0000 0000 0000 3031 2E30 3141 3031 5744 4320 5744
030: 3130 455A 4558 2D32 314D 324E 4130 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0100
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 970E 0006 0044 0044
080: 03FE 001F 746B 7D61 4123 7469 BC41 4123 407F 0040
090: 0040 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 6003 0000 5001 4EE2
110: 0AB7 6800 0000 0000 0000 0000 0000 0000 0000 4018
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 3035 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 107E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 CCA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C8 C8 00 00 00 00 00 00 00 03 27
010: 00 AD A9 25 09 00 00 00 00 00 04 32 00 63 63 2D
020: 04 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 C8 C8 00 00 00 00 00 00 00 09 32
040: 00 5E 5E 85 11 00 00 00 00 00 0A 32 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 63 63 2B 04 00 00 00 00 00 C0 32
070: 00 C8 C8 26 00 00 00 00 00 00 C1 32 00 C8 C8 09
080: 04 00 00 00 00 00 C2 22 00 75 58 1A 00 00 00 00
090: 00 00 C4 32 00 C8 C8 00 00 00 00 00 00 00 C5 32
0A0: 00 C8 C8 00 00 00 00 00 00 00 C6 30 00 C8 C8 00
0B0: 00 00 00 00 00 00 C7 32 00 C8 C8 00 00 00 00 00
0C0: 00 00 C8 08 00 C8 C8 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 84 00 E0 2E 01 7B
170: 03 00 01 00 02 7C 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 02 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 E8

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 00 00 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 C8 C8 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 00 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 00 C8 C8 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0D

[Márty84]

Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach
(Kdyby nesel Launcher stahnout, dejte logy jen ze samotneho FRST, tedy bez pouziti Launcheru)

[Zemos]

4x mi to vytvořilo FRST.txt , tak přidávám jen ten nejnovější
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-10-2016
Ran by Péťa (administrator) on PC-PETA (26-10-2016 08:50:05)
Running from C:\Users\Péťa\Desktop
Loaded Profiles: Péťa (Available Profiles: Péťa & Guest)
Platform: Windows 8.1 (Update) (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_fa1d93c39b41b41a\TiWorker.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Péťa\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13663448 2014-01-07] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8029576 2016-10-17] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9083840 2016-10-15] (AVAST Software)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565960 2016-10-07] (LogMeIn Inc.)
HKLM-x32\...\Run: [PlaysTV] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [71440 2016-09-28] (Plays.tv, LLC)
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\...\Run: [Dropbox Update] => C:\Users\Péťa\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-13] (Dropbox, Inc.)
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\...\Run: [AcerPortal] => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2418392 2016-09-09] (Acer)
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\...\Run: [Overwolf] => D:\Programy\Overwolf\OverwolfLauncher.exe [247344 2016-09-27] ()
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\...\Run: [RemoteFilesTrayIcon] => C:\Program Files (x86)\Acer\abFiles\abFilesTrayIcon.exe [2134232 2016-06-28] (acer)
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\...\Run: [DAEMON Tools Lite Automount] => D:\Programy\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd)
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\...\Run: [World of Tanks] => D:\Hry\World_of_Tanks\WargamingGameUpdater.exe [3134728 2016-09-26] (Wargaming.net)
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\...\Run: [Spotify Web Helper] => C:\Users\Péťa\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1529456 2016-09-25] (Spotify Ltd)
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\...\MountPoints2: {979b2b46-471a-11e5-82c0-f80f41d54943} - "F:\MAXON-Start.exe"
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\...\MountPoints2: {979b2b7c-471a-11e5-82c0-f80f41d54943} - "G:\SetupGTAV.exe"
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\...\MountPoints2: {979b2b92-471a-11e5-82c0-f80f41d54943} - "H:\m.exe"
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-05-06] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-05-06] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-05-06] (Acer Incorporated)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Péťa\AppData\Roaming\Dropbox\bin\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Péťa\AppData\Roaming\Dropbox\bin\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Péťa\AppData\Roaming\Dropbox\bin\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Péťa\AppData\Roaming\Dropbox\bin\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Péťa\AppData\Roaming\Dropbox\bin\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Péťa\AppData\Roaming\Dropbox\bin\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Péťa\AppData\Roaming\Dropbox\bin\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Péťa\AppData\Roaming\Dropbox\bin\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-08-24] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Péťa\AppData\Roaming\Dropbox\bin\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Péťa\AppData\Roaming\Dropbox\bin\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Péťa\AppData\Roaming\Dropbox\bin\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Péťa\AppData\Roaming\Dropbox\bin\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Péťa\AppData\Roaming\Dropbox\bin\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Péťa\AppData\Roaming\Dropbox\bin\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Péťa\AppData\Roaming\Dropbox\bin\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Péťa\AppData\Roaming\Dropbox\bin\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Péťa\AppData\Roaming\Dropbox\bin\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Péťa\AppData\Roaming\Dropbox\bin\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
Startup: C:\Users\Péťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-08-13]
ShortcutTarget: Dropbox.lnk -> C:\Users\Péťa\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Péťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneDrive pro firmy.lnk [2016-10-04]
ShortcutTarget: OneDrive pro firmy.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVE.EXE (Microsoft Corporation)
Startup: C:\Users\Péťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2016-05-21]
ShortcutTarget: Rainmeter.lnk -> D:\Programy\rainmeter\Rainmeter.exe ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{3783AFFC-F2B4-440D-9137-4FB4E616A3AB}: [DhcpNameServer] 10.77.0.254
Tcpip\..\Interfaces\{6EB4AC1E-4056-46FE-8AB6-7B467F56C03B}: [DhcpNameServer] 7.254.254.254
Tcpip\..\Interfaces\{7E9227A9-8C09-4C6E-87B3-80E27532210B}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{F8AF7829-48DA-4A01-BE37-068AE51CC4A9}: [NameServer] 77.234.40.79

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
SearchScopes: HKU\S-1-5-21-621929646-1206955908-3885600500-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-11-12] (IObit)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-10-08] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_74\bin\ssv.dll [2016-02-24] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-10-24] (AVAST Software)
BHO: No Name -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> No File
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-10-08] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_74\bin\jp2ssv.dll [2016-02-24] (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-10-08] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-10-24] (AVAST Software)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-10-08] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-20] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-20] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-20] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-20] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: t4rih17k.default
FF ProfilePath: C:\Users\Péťa\AppData\Roaming\Mozilla\Firefox\Profiles\t4rih17k.default [2016-10-23]
FF Homepage: Mozilla\Firefox\Profiles\t4rih17k.default -> about:home
FF Extension: (Firefox Hotfix) - C:\Users\Péťa\AppData\Roaming\Mozilla\Firefox\Profiles\t4rih17k.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-10-09]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-08-24]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-08-24]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_185.dll [2016-10-11] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [No File]
FF Plugin: @java.com/DTPlugin,version=11.74.2 -> C:\Program Files\Java\jre1.8.0_74\bin\dtplugin\npDeployJava1.dll [2016-02-24] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.74.2 -> C:\Program Files\Java\jre1.8.0_74\bin\plugin2\npjp2.dll [2016-02-24] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-07-18] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_185.dll [2016-10-11] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1223183.dll [2015-12-22] (Adobe Systems, Inc.)
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-10-08] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-10-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-07-18] (Adobe Systems)
FF Plugin HKU\S-1-5-21-621929646-1206955908-3885600500-1001: @nsroblox.roblox.com/launcher -> C:\Users\Péťa\AppData\Local\Roblox\Versions\version-e6d872d544b64cd9\\NPRobloxProxy.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-621929646-1206955908-3885600500-1001: @nsroblox.roblox.com/launcher64 -> C:\Users\Péťa\AppData\Local\Roblox\Versions\version-e6d872d544b64cd9\\NPRobloxProxy64.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-621929646-1206955908-3885600500-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Péťa\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-27] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-621929646-1206955908-3885600500-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [No File]

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://google.com/
CHR Profile: C:\Users\Péťa\AppData\Local\Google\Chrome\User Data\Default [2016-10-26]
CHR Extension: (Prezentace Google) - C:\Users\Péťa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-16]
CHR Extension: (Dokumenty Google) - C:\Users\Péťa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-16]
CHR Extension: (Disk Google) - C:\Users\Péťa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Péťa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Vyhledávání Google) - C:\Users\Péťa\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Give Up) - C:\Users\Péťa\AppData\Local\Google\Chrome\User Data\Default\Extensions\diippoclinjdbklinhchgedilfncehbi [2015-05-09]
CHR Extension: (Tabulky Google) - C:\Users\Péťa\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Péťa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\Péťa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-10-21]
CHR Extension: (TwitchAlerts Stream Labels) - C:\Users\Péťa\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgmggmdngboajiakmbpdknfpdelbjbcg [2016-09-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Péťa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-01]
CHR Extension: (Gmail) - C:\Users\Péťa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-16]
CHR Extension: (Chrome Media Router) - C:\Users\Péťa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-26]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-04] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-08-24] (AVAST Software)
S4 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2267352 2016-08-30] (Acer Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3291848 2016-10-08] (Microsoft Corporation)
S4 Disc Soft Lite Bus Service; D:\Programy\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [174112 2014-11-25] (EasyAntiCheat Ltd)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [File not signed]
S4 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2016-08-11] (Futuremark)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2622472 2016-10-07] (LogMeIn Inc.)
S4 HiPatchService; D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-10-10] (Hi-Rez Studios) [File not signed]
S4 Intel(R) TechnologyAccessService; C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe [93408 2015-03-17] (Intel(R) Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [22744 2014-10-15] (Microsoft Corporation)
S4 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-06-09] ()
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2960672 2016-07-20] (IObit)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-10-07] (LogMeIn, Inc.)
S3 Origin Client Service; D:\Programy\origin\OriginClientService.exe [2122248 2016-07-01] (Electronic Arts)
S4 OverwolfUpdater; D:\Programy\Overwolf\OverwolfUpdater.exe [1310960 2016-09-27] (Overwolf LTD)
S4 PlaysService; C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe [32528 2016-09-28] (Plays.tv, LLC)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-06-26] (Acer Incorporate)
S4 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [809424 2015-10-27] (Tunngle.net GmbH) [File not signed]
S4 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [233216 2014-06-24] (acer)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [89232 2014-07-22] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
U4 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-08-24] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-08-24] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-08-24] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-08-24] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-08-24] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-09-14] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-09-24] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-08-24] (AVAST Software)
S3 aswTap; C:\Windows\system32\DRIVERS\aswTap.sys [44640 2015-01-08] (The OpenVPN Project)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-13] (AVAST Software)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [118848 2016-08-09] (Advanced Micro Devices)
S3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8536752 2013-07-01] (Broadcom Corporation)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-08-22] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R2 EkaProt6; C:\Windows\system32\DRIVERS\ekaprot6.sys [27288 2012-03-23] (Ekahau Inc.)
U0 gkyqsg; C:\Windows\System32\drivers\brvd.sys [79064 2016-10-25] (Malwarebytes)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2016-10-07] (LogMeIn Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-10-23] (REALiX(tm))
S1 ndisrd; C:\Windows\system32\DRIVERS\ndisrfl.sys [41688 2015-04-30] (Intel Corporation)
S3 NetTap630; C:\Windows\system32\DRIVERS\nettap630.sys [67800 2014-10-30] (Intel Corporation)
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [416472 2016-10-23] (Realsil Semiconductor Corporation)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [11376 2015-12-16] () [File not signed]
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 AODDriver2; \??\D:\Programy\overdrive-amd\amd64\AODDriver2.sys [X]
U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-10-26 08:50 - 2016-10-26 08:51 - 00028798 _____ C:\Users\Péťa\Desktop\FRST.txt
2016-10-26 08:49 - 2016-10-26 08:50 - 00000000 ____D C:\FRST
2016-10-26 08:49 - 2016-10-26 08:49 - 02407424 _____ (Farbar) C:\Users\Péťa\Downloads\FRST64.exe
2016-10-26 08:49 - 2016-10-26 08:49 - 02407424 _____ (Farbar) C:\Users\Péťa\Desktop\FRST64.exe
2016-10-26 08:47 - 2016-10-26 08:47 - 00112640 _____ (forum.viry.cz) C:\Users\Péťa\Downloads\FRSTLauncher.exe
2016-10-26 08:47 - 2016-10-26 08:47 - 00112640 _____ (forum.viry.cz) C:\Users\Péťa\Desktop\FRSTLauncher.exe
2016-10-25 20:46 - 2016-10-25 20:46 - 00001176 _____ C:\Users\Péťa\Desktop\CrystalDiskInfo.lnk
2016-10-25 20:46 - 2016-10-25 20:46 - 00000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2016-10-25 20:45 - 2016-10-25 20:45 - 03956368 _____ (Crystal Dew World ) C:\Users\Péťa\Downloads\CrystalDiskInfo7_0_4-en.exe
2016-10-25 20:45 - 2016-10-25 20:45 - 00079064 _____ (Malwarebytes) C:\Windows\system32\Drivers\brvd.sys
2016-10-25 09:38 - 2016-10-25 09:38 - 00000211 _____ C:\Users\Péťa\Desktop\Paladins.url
2016-10-25 07:52 - 2016-10-25 07:52 - 00001539 _____ C:\Users\Péťa\Desktop\MBAMlog.txt
2016-10-24 20:03 - 2016-10-24 20:03 - 00566128 _____ (Malwarebytes) C:\Users\Péťa\Downloads\mbam-clean-2.3.0.1001.exe
2016-10-24 19:53 - 2016-10-24 19:53 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2016-10-24 19:53 - 2016-10-24 19:53 - 00000000 ____D C:\Program Files\MSBuild
2016-10-24 19:49 - 2016-10-24 19:49 - 03910208 _____ C:\Users\Péťa\Downloads\adwcleaner_6.030.exe
2016-10-24 13:19 - 2016-10-24 13:51 - 00000000 ____D C:\Users\Péťa\Desktop\videa-fraps
2016-10-24 13:15 - 2016-10-24 13:15 - 00000000 ____D C:\Users\Péťa\AppData\LocalLow\Beam Team Games
2016-10-24 13:08 - 2016-10-24 13:15 - 00000000 ____D C:\Users\Péťa\Desktop\Stranded.Deep.Alpha.v0.16.H2
2016-10-24 13:05 - 2016-10-24 13:06 - 341018872 _____ C:\Users\Péťa\Downloads\Stranded.Deep.Alpha.v0.16.H2.rar
2016-10-24 12:51 - 2016-10-24 12:53 - 339398565 ____R C:\Users\Péťa\Downloads\Stranded.Deep.Alpha.v0.16.00.rar
2016-10-24 11:04 - 2016-10-24 11:04 - 00000752 _____ C:\Users\Péťa\Downloads\beep-01a.mp3.sfk
2016-10-23 15:21 - 2016-10-23 15:21 - 00000436 _____ C:\Users\Péťa\Desktop\Tento počítač.lnk
2016-10-23 13:30 - 2016-10-23 15:22 - 00000000 ____D C:\Users\Péťa\Desktop\Složky
2016-10-23 13:27 - 2016-10-23 13:27 - 00000000 ____D C:\Users\Péťa\Desktop\Nová složka
2016-10-23 11:34 - 2016-10-23 11:34 - 00000000 ____D C:\rsit
2016-10-23 10:36 - 2016-10-23 10:36 - 09890008 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RsCRIcon.dll
2016-10-23 10:36 - 2016-10-23 10:36 - 04330712 _____ (Realtek Semiconductor Corp.) C:\Windows\RtCRU64.exe
2016-10-23 10:36 - 2016-10-23 10:36 - 00416472 _____ (Realsil Semiconductor Corporation) C:\Windows\system32\Drivers\RtsUer.sys
2016-10-23 10:36 - 2016-10-23 10:36 - 00083656 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amd_sata.sys
2016-10-23 10:36 - 2016-10-23 10:36 - 00083160 _____ (Realtek Semiconductor.) C:\Windows\system32\RtCRX64.dll
2016-10-23 10:36 - 2016-10-23 10:36 - 00023752 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amd_xata.sys
2016-10-23 10:34 - 2016-10-23 10:34 - 00876760 _____ (Realtek ) C:\Windows\system32\Drivers\Rt630x64.sys
2016-10-23 10:34 - 2016-10-23 10:34 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2016-10-23 10:14 - 2016-10-23 13:54 - 00000292 _____ C:\Windows\Tasks\Uninstaller_SkipUac_Péťa.job
2016-10-23 10:14 - 2016-10-23 13:36 - 00002390 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_Péťa
2016-10-23 10:14 - 2016-10-23 10:14 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2016-10-23 10:14 - 2016-10-23 10:14 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\ProductData
2016-10-23 10:13 - 2016-10-23 10:14 - 00000000 ____D C:\Program Files (x86)\IObit
2016-10-23 10:13 - 2016-10-23 10:13 - 00000000 ____D C:\Windows\IObit
2016-10-23 10:13 - 2016-10-23 10:13 - 00000000 ____D C:\Users\Péťa\AppData\LocalLow\AMD
2016-10-23 10:12 - 2016-10-26 08:47 - 00002848 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Péťa)
2016-10-23 10:12 - 2016-10-23 10:14 - 00000000 ____D C:\Users\Péťa\AppData\LocalLow\IObit
2016-10-23 10:12 - 2016-10-23 10:12 - 00027552 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2016-10-23 10:12 - 2016-10-23 10:12 - 00003216 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler
2016-10-23 10:11 - 2016-10-23 10:15 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\IObit
2016-10-23 10:11 - 2016-10-23 10:11 - 15702680 _____ (IObit ) C:\Users\Péťa\Downloads\driver_booster_setup.exe
2016-10-23 10:07 - 2014-02-20 03:15 - 00000000 ____D C:\Users\Péťa\Desktop\CoreParkingManager
2016-10-23 10:06 - 2016-10-23 10:06 - 00624000 _____ C:\Users\Péťa\Downloads\CoreParkingManager.zip
2016-10-23 09:46 - 2016-10-23 11:38 - 00000000 ____D C:\Windows\pss
2016-10-22 21:28 - 2016-10-22 21:28 - 00000000 ____D C:\Users\Péťa\AppData\LocalLow\Apple Computer
2016-10-22 21:25 - 2016-10-22 21:25 - 41896256 _____ (Apple Inc.) C:\Users\Péťa\Downloads\QuickTimeInstaller.exe
2016-10-22 18:49 - 2016-10-22 18:49 - 00000059 _____ C:\Users\Péťa\Downloads\byte
2016-10-20 20:19 - 2016-10-21 20:58 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2016-10-20 20:19 - 2016-10-20 20:19 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2016-10-20 20:18 - 2016-10-20 20:18 - 03086696 _____ C:\Users\Péťa\Downloads\instspeedfan452 (1).exe
2016-10-20 20:12 - 2016-10-20 20:12 - 00330853 _____ C:\Users\Péťa\Downloads\RealTemp_370.zip
2016-10-20 19:14 - 2016-10-20 19:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-10-20 19:13 - 2016-10-20 19:13 - 00243664 _____ C:\Users\Péťa\Downloads\Firefox Setup Stub 49.0.1.exe
2016-10-19 21:29 - 2016-10-23 18:49 - 00304516 _____ C:\Users\Péťa\Desktop\Bez názvu 1.c4d
2016-10-19 20:51 - 2016-10-19 20:52 - 28568219 _____ C:\Users\Péťa\Downloads\Minecraft Model Pack v1.5.306 (By WeedLion).rar
2016-10-19 20:51 - 2016-10-19 20:52 - 05528688 _____ C:\Users\Péťa\Downloads\Minecraft Steve Rig v1.2 (by WeedLion).rar
2016-10-19 20:31 - 2016-10-19 20:31 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MAXON
2016-10-19 20:31 - 2016-10-19 20:31 - 00000000 ____D C:\Program Files\MAXON
2016-10-19 20:21 - 2016-10-19 20:21 - 15802579 _____ C:\Users\Péťa\Desktop\cc.pfi
2016-10-19 19:55 - 2016-10-20 20:19 - 00000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2016-10-19 19:55 - 2016-10-19 19:55 - 03086696 _____ C:\Users\Péťa\Downloads\instspeedfan452.exe
2016-10-19 19:47 - 2016-10-19 19:48 - 01191360 _____ ( ) C:\Users\Péťa\Downloads\hwmonitor_1.30.exe
2016-10-19 15:25 - 2016-10-19 15:25 - 08413184 _____ C:\Users\Péťa\Downloads\hamachi (1).msi
2016-10-19 15:24 - 2016-10-26 08:45 - 00000000 ____D C:\Users\Péťa\AppData\Local\LogMeIn Hamachi
2016-10-19 15:21 - 2016-10-19 15:22 - 05849088 _____ C:\Users\Péťa\Downloads\hamachi-2-2-0-58.msi
2016-10-18 04:41 - 2016-10-18 04:41 - 08847888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2016-10-18 04:41 - 2016-10-18 04:41 - 07213248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2016-10-18 04:41 - 2016-10-18 04:41 - 00151056 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2016-10-18 04:41 - 2016-10-18 04:41 - 00123776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 15728008 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 14318984 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 10977392 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 02481032 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 02163592 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 01333128 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00998280 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00998280 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00525704 _____ (AMD) C:\Windows\system32\atieclxx.exe
2016-10-18 04:40 - 2016-10-18 04:40 - 00519048 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2016-10-18 04:40 - 2016-10-18 04:40 - 00462080 _____ C:\Windows\system32\amdmiracast.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00458632 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00402312 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2016-10-18 04:40 - 2016-10-18 04:40 - 00349064 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2016-10-18 04:40 - 2016-10-18 04:40 - 00294792 _____ C:\Windows\system32\dgtrayicon.exe
2016-10-18 04:40 - 2016-10-18 04:40 - 00289160 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2016-10-18 04:40 - 2016-10-18 04:40 - 00286600 _____ (AMD) C:\Windows\system32\atitmm64.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00275336 _____ C:\Windows\system32\GameManager64.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00230280 _____ C:\Windows\system32\atieah64.exe
2016-10-18 04:40 - 2016-10-18 04:40 - 00208264 _____ C:\Windows\SysWOW64\atieah32.exe
2016-10-18 04:40 - 2016-10-18 04:40 - 00201608 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00175496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00160136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00145400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00141280 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00136584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00135048 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00129416 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00125288 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00124776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00122760 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00117640 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00110472 _____ (AMD) C:\Windows\system32\atimuixx.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00108936 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00107400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00107400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00078728 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00072072 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00068488 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00067464 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2016-10-18 04:40 - 2016-10-18 04:40 - 00065416 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00059784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2016-10-18 04:40 - 2016-10-18 04:40 - 00020360 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 48824712 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 38268808 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 27489672 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 27291016 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 21640584 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 09926536 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdvlk64.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 09311624 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 08065928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdvlk32.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 07363976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 00842120 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 00677256 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 00305544 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2016-10-18 04:39 - 2016-10-18 04:39 - 00269192 _____ C:\Windows\system32\clinfo.exe
2016-10-18 04:39 - 2016-10-18 04:39 - 00267656 _____ C:\Windows\system32\hsa-thunk64.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 00248200 _____ C:\Windows\system32\amdgfxinfo64.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 00233352 _____ C:\Windows\SysWOW64\hsa-thunk.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 00221064 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 00155016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amduve64.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 00134536 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amduve32.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 00112520 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 00103304 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 00082824 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmcl64.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 00066952 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 00066440 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmcl32.dll
2016-10-18 04:39 - 2016-10-18 04:39 - 00054664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2016-10-18 04:38 - 2016-10-18 04:38 - 33241992 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2016-10-18 04:38 - 2016-10-18 04:38 - 26558464 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2016-10-18 04:38 - 2016-10-18 04:38 - 00200584 _____ C:\Windows\system32\amdhdl64.dll
2016-10-18 04:38 - 2016-10-18 04:38 - 00180616 _____ C:\Windows\SysWOW64\amdhdl32.dll
2016-10-18 04:07 - 2016-10-18 04:07 - 00757712 _____ C:\Windows\SysWOW64\atiapfxx.blb
2016-10-18 04:07 - 2016-10-18 04:07 - 00757712 _____ C:\Windows\system32\atiapfxx.blb
2016-10-18 04:05 - 2016-10-18 04:05 - 03437632 _____ C:\Windows\system32\atiumd6a.cap
2016-10-18 04:00 - 2016-10-18 04:00 - 03471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2016-10-17 19:17 - 2016-10-17 19:23 - 105264369 _____ C:\Users\Péťa\Downloads\Navrhy.rar
2016-10-17 18:26 - 2016-10-17 18:26 - 08409088 _____ C:\Users\Péťa\Downloads\hamachi.msi
2016-10-17 17:47 - 2016-10-17 17:48 - 92658088 _____ (Oracle Corporation) C:\Users\Péťa\Downloads\jre-8u25-windows-x64.exe
2016-10-17 16:59 - 2016-10-17 16:59 - 00145731 _____ C:\Users\Péťa\Downloads\vandr_letak-3-1 (1).pdf
2016-10-16 20:33 - 2016-10-16 20:33 - 00145731 _____ C:\Users\Péťa\Downloads\vandr_letak-3-1.pdf
2016-10-16 20:22 - 2016-10-16 20:22 - 00154734 _____ C:\Users\Péťa\Downloads\5nej (1).pptx
2016-10-16 20:21 - 2016-10-16 20:21 - 00154734 _____ C:\Users\Péťa\Downloads\5nej.pptx
2016-10-16 20:19 - 2016-10-16 20:20 - 255697736 _____ (AMD Inc.) C:\Users\Péťa\Downloads\whql-win8.1-64bit-radeon-software-crimson-16.10.1-oct13.exe
2016-10-16 20:18 - 2016-10-16 20:18 - 00052334 _____ C:\Users\Péťa\Downloads\incomplete.htm
2016-10-16 20:16 - 2016-10-16 20:17 - 255697736 _____ (AMD Inc.) C:\Users\Péťa\Downloads\Nepotvrzeno 269572.crdownload
2016-10-16 20:13 - 2016-10-17 18:01 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\PlaysTV
2016-10-16 20:12 - 2016-10-17 18:02 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\Raptr
2016-10-16 20:12 - 2016-10-16 20:12 - 00000000 ____D C:\Program Files (x86)\Raptr Inc
2016-10-16 20:11 - 2016-10-16 20:11 - 00192816 _____ C:\Users\Péťa\Downloads\raptr_installer.exe
2016-10-16 19:09 - 2016-10-16 19:09 - 36781192 _____ (NVIDIA Corporation) C:\Users\Péťa\Downloads\GeForce_Experience_v2-4-5-28.exe
2016-10-14 22:32 - 2016-10-14 22:32 - 00000000 ___RD C:\Users\Péťa\ODBA
2016-10-14 17:21 - 2016-10-14 17:21 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-10-13 18:06 - 2016-10-13 18:06 - 00334832 _____ C:\Users\Péťa\Downloads\WRLD - Orbit (feat. Richard Caddock) [Monstercat Release].mp3.sfk
2016-10-13 17:56 - 2016-10-13 17:59 - 121972835 _____ C:\Users\Péťa\Downloads\Particles-Light.zip
2016-10-13 17:56 - 2016-10-13 17:57 - 118762453 _____ C:\Users\Péťa\Downloads\Vortex.zip
2016-10-13 17:41 - 2016-10-13 17:41 - 00000000 ____D C:\Users\Péťa\Documents\Vlastní šablony Office
2016-10-13 16:18 - 2016-10-01 02:15 - 00828408 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-10-13 16:18 - 2016-10-01 02:15 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-12 15:33 - 2016-10-12 15:33 - 00008270 _____ C:\Users\Péťa\Downloads\Soucastky pro 3D tiskarnu.xlsx
2016-10-12 15:07 - 2016-10-01 02:22 - 07444312 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-10-12 15:07 - 2016-09-30 09:55 - 25765376 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-10-12 15:07 - 2016-09-30 08:25 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-10-12 15:07 - 2016-09-30 08:25 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-10-12 15:07 - 2016-09-30 08:12 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-10-12 15:07 - 2016-09-30 08:09 - 06048256 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-10-12 15:07 - 2016-09-30 07:47 - 20306944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-10-12 15:07 - 2016-09-30 07:42 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-10-12 15:07 - 2016-09-30 07:41 - 01033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-10-12 15:07 - 2016-09-30 07:38 - 02286592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-10-12 15:07 - 2016-09-30 07:33 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-10-12 15:07 - 2016-09-30 07:33 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-10-12 15:07 - 2016-09-30 07:32 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-10-12 15:07 - 2016-09-30 07:32 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-10-12 15:07 - 2016-09-30 07:31 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-10-12 15:07 - 2016-09-30 07:21 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-10-12 15:07 - 2016-09-30 07:17 - 02920960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-10-12 15:07 - 2016-09-30 07:12 - 04608512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-10-12 15:07 - 2016-09-30 07:11 - 00880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-10-12 15:07 - 2016-09-30 07:06 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-10-12 15:07 - 2016-09-30 07:05 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-10-12 15:07 - 2016-09-30 07:05 - 01544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-10-12 15:07 - 2016-09-30 07:05 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-10-12 15:07 - 2016-09-30 07:03 - 13653504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-10-12 15:07 - 2016-09-30 06:54 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-10-12 15:07 - 2016-09-30 06:46 - 02444288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-10-12 15:07 - 2016-09-30 06:43 - 01312768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-10-12 15:07 - 2016-09-30 06:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-10-12 15:07 - 2016-09-17 20:16 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-10-12 15:07 - 2016-09-17 19:53 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-10-12 15:07 - 2016-09-17 19:21 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2016-10-12 15:07 - 2016-09-17 19:03 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-10-12 15:07 - 2016-09-17 19:02 - 01446400 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-10-12 15:07 - 2016-09-14 03:53 - 01663184 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-10-12 15:07 - 2016-09-14 03:53 - 01523208 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-10-12 15:07 - 2016-09-14 03:53 - 01490112 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-10-12 15:07 - 2016-09-14 03:53 - 01358952 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-10-12 15:07 - 2016-09-13 01:48 - 00085680 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-10-12 15:07 - 2016-09-13 00:03 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2016-10-12 15:07 - 2016-09-12 23:01 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offreg.dll
2016-10-12 15:07 - 2016-09-09 16:17 - 04170752 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-10-12 15:07 - 2016-09-09 15:38 - 01629184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-10-12 15:07 - 2016-09-09 15:38 - 01226752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-10-12 15:07 - 2016-09-09 15:38 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-10-12 15:07 - 2016-09-09 15:38 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-10-12 15:07 - 2016-09-09 15:38 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-10-12 15:07 - 2016-09-09 15:38 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-10-12 15:07 - 2016-09-09 15:38 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-10-12 15:07 - 2016-09-09 15:38 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-10-12 15:07 - 2016-09-08 22:41 - 00121176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tm.sys
2016-10-12 15:07 - 2016-09-08 16:00 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-10-12 15:07 - 2016-09-08 16:00 - 00138240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-10-12 15:07 - 2016-09-08 00:07 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-10-12 15:07 - 2016-09-07 23:59 - 01754112 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-10-12 15:07 - 2016-09-07 23:59 - 01377792 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-10-12 15:07 - 2016-09-07 23:57 - 01560064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-10-12 15:07 - 2016-09-07 23:56 - 01491456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-10-12 15:07 - 2016-08-31 19:22 - 03754496 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-10-12 15:07 - 2016-08-31 18:33 - 02410496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-10-12 15:07 - 2016-08-25 22:50 - 00747008 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2016-10-12 15:07 - 2016-08-25 21:40 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2016-10-12 15:07 - 2016-08-13 02:05 - 09323008 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-10-12 15:07 - 2016-08-13 02:03 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifibus.sys
2016-10-12 15:07 - 2016-08-13 02:02 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys
2016-10-12 15:07 - 2016-08-13 02:01 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys
2016-10-12 15:07 - 2016-08-13 00:35 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2016-10-12 15:07 - 2016-08-13 00:19 - 09323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-10-12 15:07 - 2016-08-12 23:47 - 15431168 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-10-12 15:07 - 2016-08-12 23:17 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll
2016-10-12 15:07 - 2016-08-12 22:52 - 13317120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-10-12 15:07 - 2016-08-12 03:58 - 02315496 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2016-10-12 15:07 - 2016-08-12 03:58 - 01946176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2016-10-12 15:07 - 2016-08-11 20:33 - 00096256 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\parport.sys
2016-10-12 15:07 - 2016-08-11 20:33 - 00083456 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\serial.sys
2016-10-12 15:07 - 2016-08-11 20:33 - 00023040 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\serenum.sys
2016-10-12 15:07 - 2016-08-11 19:17 - 01574912 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2016-10-12 15:07 - 2016-08-11 15:39 - 00445765 _____ C:\Windows\system32\ApnDatabase.xml
2016-10-12 15:07 - 2016-08-11 07:46 - 00420184 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2016-10-12 15:07 - 2016-08-03 17:42 - 01317888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2016-10-12 15:07 - 2016-08-03 17:36 - 01102848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2016-10-12 15:07 - 2016-08-03 17:36 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2016-10-12 15:07 - 2016-08-03 17:33 - 00215552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2016-10-12 15:07 - 2016-07-30 19:12 - 02896384 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2016-10-12 15:07 - 2016-07-30 18:36 - 02537472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2016-10-12 15:07 - 2016-07-26 15:40 - 00162850 _____ C:\Windows\SysWOW64\C_932.NLS
2016-10-12 15:07 - 2016-07-26 15:40 - 00162850 _____ C:\Windows\system32\C_932.NLS
2016-10-12 15:07 - 2016-07-23 20:18 - 01220096 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2016-10-12 15:07 - 2016-07-23 20:12 - 00954880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2016-10-12 15:04 - 2016-08-27 21:44 - 22360288 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-10-12 15:04 - 2016-08-27 21:44 - 02755504 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-10-12 15:04 - 2016-08-27 21:44 - 00133256 _____ (Microsoft Corporation) C:\Windows\system32\RestoreOptIn.exe
2016-10-12 15:04 - 2016-08-27 20:26 - 19789232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-10-12 15:04 - 2016-08-27 20:26 - 02411048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-10-12 15:04 - 2016-08-27 20:26 - 00113656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RestoreOptIn.exe
2016-10-12 15:04 - 2016-08-27 18:33 - 02881536 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2016-10-12 15:04 - 2016-08-27 18:11 - 01049600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2016-10-12 15:04 - 2016-08-27 18:09 - 14466560 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-10-12 15:04 - 2016-08-27 17:55 - 12879360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2016-10-12 15:04 - 2016-08-21 00:24 - 02778624 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-10-12 15:04 - 2016-08-21 00:12 - 02463744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-10-11 19:45 - 2016-10-11 19:45 - 00317769 _____ C:\Users\Péťa\Downloads\Facebook Icon Green Screen.mp4
2016-10-11 19:45 - 2016-10-11 19:45 - 00146560 _____ C:\Users\Péťa\Downloads\Green Screen Logo YouTube Subscribe Intro Explosion - Footage PixelBoom.mp4.sfk
2016-10-11 19:45 - 2016-10-11 19:45 - 00015264 _____ C:\Users\Péťa\Downloads\Youtube Icon Green Screen.mp4.sfk
2016-10-11 19:45 - 2016-10-11 19:45 - 00015264 _____ C:\Users\Péťa\Downloads\Facebook Icon Green Screen.mp4.sfk
2016-10-11 19:44 - 2016-10-11 19:44 - 08897895 _____ C:\Users\Péťa\Downloads\Green Screen Logo YouTube Subscribe Intro Explosion - Footage PixelBoom.mp4
2016-10-11 19:44 - 2016-10-11 19:44 - 00325641 _____ C:\Users\Péťa\Downloads\Youtube Icon Green Screen.mp4
2016-10-11 17:55 - 2016-10-11 17:55 - 00166560 _____ C:\Windows\system32\amde34b.dat
2016-10-11 17:55 - 2016-10-11 17:55 - 00166560 _____ C:\Windows\system32\amde34a.dat
2016-10-08 17:37 - 2016-10-08 17:43 - 00296456 _____ C:\Users\Péťa\Downloads\Electro-Light - Throwback [NCS Release].mp3.sfk
2016-10-08 17:34 - 2016-10-08 17:35 - 00013888 _____ C:\Users\Péťa\Downloads\Odpočet začátku videa.mp4.sfk
2016-10-08 17:34 - 2016-10-08 17:34 - 02914887 _____ C:\Users\Péťa\Downloads\Odpočet začátku videa.mp4
2016-10-08 17:32 - 2016-10-08 17:33 - 00019200 _____ C:\Users\Péťa\Downloads\Number Countdown Timer Animation Green Screen.mp4.sfk
2016-10-08 17:32 - 2016-10-08 17:32 - 00577977 _____ C:\Users\Péťa\Downloads\Number Countdown Timer Animation Green Screen.mp4
2016-10-08 16:35 - 2016-10-08 16:36 - 00384616 _____ C:\Users\Péťa\Downloads\JJD - Adventure [NCS Release].mp3.sfk
2016-10-08 16:25 - 2016-10-08 16:30 - 00153120 _____ C:\Users\Péťa\Downloads\Dust Green Screen Dust at Camera HD AAE DUST.mp4.sfk
2016-10-08 16:25 - 2016-10-08 16:25 - 12149361 _____ C:\Users\Péťa\Downloads\Dust Green Screen Dust at Camera HD AAE DUST.mp4
2016-10-08 14:32 - 2016-09-18 03:47 - 00000000 ____D C:\Users\Péťa\Desktop\Cockroach.Simulator.v0.03
2016-10-08 14:27 - 2016-10-08 14:28 - 228741870 _____ C:\Users\Péťa\Downloads\Cockroach.Simulator.v0.03.rar
2016-10-08 13:52 - 2016-10-08 13:52 - 00000000 ____D C:\Users\Péťa\Ekahau Site Survey
2016-10-08 13:51 - 2016-10-08 13:51 - 00000000 ____D C:\Program Files\Ekahau
2016-10-08 13:50 - 2016-10-08 13:51 - 100885752 _____ (Ekahau) C:\Users\Péťa\Downloads\Ekahau Heatmapper-Setup.exe
2016-10-08 10:13 - 2016-10-08 10:13 - 00485741 _____ C:\Users\Péťa\Downloads\[fixed]Outro 1.rar
2016-10-08 10:12 - 2016-10-08 10:12 - 02012181 _____ C:\Users\Péťa\Downloads\FREE Outro Template[#CINEMATIC LOOK] - After Effects Free Template by Official™.mp4
2016-10-08 01:58 - 2016-10-08 01:58 - 00781547 _____ C:\Users\Péťa\Downloads\UxStyle_Core_sep03_experimental_bits.zip
2016-10-08 01:58 - 2014-10-29 04:50 - 01192960 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll.backup
2016-10-08 01:57 - 2016-10-08 01:58 - 00158836 _____ (Manuel Hoefs (Zottel)) C:\Users\Péťa\Downloads\UXPatcher.exe
2016-10-08 01:57 - 2016-10-08 01:57 - 06477072 _____ C:\Users\Péťa\Downloads\7tsp_AlienWare_Encounter_Red_Win8_Icon_Pack.7z
2016-10-08 01:53 - 2016-10-08 01:52 - 06728775 _____ C:\Users\Péťa\Desktop\7tsp_Aero_Glass_Azure_Win8_Icon_Pack.7z
2016-10-08 01:52 - 2016-10-08 01:52 - 06728775 _____ C:\Users\Péťa\Downloads\7tsp_Aero_Glass_Azure_Win8_Icon_Pack.7z
2016-10-08 01:05 - 2016-10-08 01:05 - 03621145 _____ C:\Users\Péťa\Downloads\Sv_intro108.zip
2016-10-08 01:03 - 2016-10-08 01:03 - 14323421 _____ C:\Users\Péťa\Downloads\Fire Flames intro template by NE.rar
2016-10-08 00:54 - 2016-10-08 00:54 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\Sony Creative Software Inc
2016-10-08 00:52 - 2016-10-08 00:53 - 219408818 _____ C:\Users\Péťa\Downloads\Particles Flow Intro Template for Sony Vegas 11-13 by Navaz Enzee.rar
2016-10-07 23:13 - 2016-10-07 23:13 - 00000000 ____D C:\Users\Péťa\AppData\LocalLow\Pixel Maniacs
2016-10-07 23:12 - 2016-10-07 23:12 - 95262411 _____ C:\Users\Péťa\Downloads\Cant.Drive.This.rar
2016-10-07 23:12 - 2016-09-26 10:48 - 00000000 ____D C:\Users\Péťa\Desktop\Cant.Drive.This
2016-10-07 23:08 - 2016-10-07 23:08 - 00000000 ____D C:\Users\Péťa\AppData\LocalLow\Mostly Harmless Games
2016-10-07 23:07 - 2016-10-07 23:07 - 00000000 ____D C:\Users\Péťa\AppData\LocalLow\House House
2016-10-07 23:04 - 2016-10-07 23:04 - 00000000 ____D C:\Users\Péťa\AppData\LocalLow\Parallel Circles
2016-10-07 23:03 - 2016-10-07 23:03 - 44645730 _____ C:\Users\Péťa\Downloads\Flat.Heroes.rar
2016-10-07 23:01 - 2016-10-07 23:04 - 918456322 _____ C:\Users\Péťa\Downloads\IGG-Funklift.v1.0.2.rar
2016-10-07 22:57 - 2016-10-07 23:00 - 85609073 _____ C:\Users\Péťa\Downloads\IGG-Push.Me.Pull.You.rar
2016-10-07 22:55 - 2016-10-07 22:56 - 199095744 _____ C:\Users\Péťa\Downloads\Party.Panic.v0.9.0.2.rar
2016-10-07 22:52 - 2016-10-07 22:52 - 00443632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140.dll
2016-10-07 22:52 - 2016-10-07 22:52 - 00394496 _____ (Microsoft Corporation) C:\Windows\system32\vccorlib140.dll
2016-10-07 22:52 - 2016-10-07 22:52 - 00334608 _____ (Microsoft Corporation) C:\Windows\system32\concrt140.dll
2016-10-07 22:52 - 2016-10-07 22:52 - 00089328 _____ (Microsoft Corporation) C:\Windows\system32\vcruntime140.dll
2016-10-07 22:52 - 2016-10-07 22:52 - 00085744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcruntime140.dll
2016-10-07 22:51 - 2016-10-07 22:51 - 00000000 ____D C:\Users\Péťa\AppData\LocalLow\Boneloaf
2016-10-07 22:49 - 2016-10-07 22:49 - 00639728 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140.dll
2016-10-07 22:49 - 2016-10-07 22:49 - 00244504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\concrt140.dll
2016-10-07 22:45 - 2016-10-07 22:45 - 00271112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vccorlib140.dll
2016-10-07 22:21 - 2016-10-07 22:21 - 00000000 ____D C:\Users\Péťa\AppData\LocalLow\DanielSnd
2016-10-07 22:20 - 2016-10-03 05:01 - 00000000 ____D C:\Users\Péťa\Desktop\What.The.Box.v1.5.7
2016-10-07 22:18 - 2016-10-07 22:18 - 122389429 _____ C:\Users\Péťa\Downloads\What.The.Box.v1.5.7.rar
2016-10-07 22:17 - 2016-10-07 22:19 - 446069737 _____ C:\Users\Péťa\Downloads\IGG-Gang.Beasts.v0.4.1.rar
2016-10-07 21:30 - 2016-10-07 21:30 - 00000000 ____D C:\Users\Péťa\Documents\Petroglyph
2016-10-07 21:30 - 2016-10-07 21:30 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\Petroglyph
2016-10-07 21:25 - 2016-10-07 21:25 - 00000000 ____D C:\Users\Péťa\Desktop\IGG-8BitArmies.Build.618157
2016-10-07 21:22 - 2016-10-07 21:24 - 772135797 _____ C:\Users\Péťa\Downloads\IGG-8BitArmies.Build.618157.rar
2016-10-07 16:59 - 2016-10-07 16:59 - 00000000 ____D C:\Users\Péťa\.microprofile
2016-10-07 14:04 - 2016-10-07 14:04 - 00045680 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2016-10-06 19:10 - 2016-10-06 19:10 - 43074355 _____ C:\Users\Péťa\Downloads\client_21013.zip
2016-10-06 18:58 - 2016-10-06 18:58 - 00082707 _____ C:\Users\Péťa\Downloads\jablonec-nad-nisou.xlsx
2016-10-06 18:02 - 2016-10-06 18:03 - 00000000 ____D C:\Users\Péťa\AppData\Local\HirezLauncherUI
2016-10-05 18:02 - 2016-10-05 18:02 - 00100832 _____ C:\Windows\system32\ativce02.dat
2016-10-05 17:59 - 2016-10-05 17:59 - 00177280 _____ C:\Windows\system32\ativce03.dat
2016-10-05 17:57 - 2016-10-05 17:57 - 00175584 _____ C:\Windows\system32\amde31a.dat
2016-10-05 04:18 - 2016-10-18 04:39 - 00892296 _____ (AMD) C:\Windows\system32\coinst_16.40.dll
2016-10-05 04:18 - 2016-10-05 04:18 - 00892296 _____ (AMD) C:\Windows\system32\SET2D8C.tmp
2016-10-04 19:24 - 2016-10-04 19:24 - 00003224 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task
2016-10-04 19:24 - 2016-10-04 19:20 - 20738752 _____ (Microsoft Corporation) C:\Users\Péťa\Downloads\OneDriveSetup.exe
2016-10-04 19:23 - 2016-10-04 19:24 - 14780124 _____ C:\Users\Péťa\Downloads\PanoramicBeaches.deskthemepack
2016-10-04 18:39 - 2016-10-15 13:18 - 00000000 ___RD C:\Users\Péťa\OneDrive pro firmy
2016-10-04 18:38 - 2016-10-04 19:24 - 00000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2016-10-04 17:34 - 2016-10-04 17:34 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-10-04 17:33 - 2016-10-04 17:33 - 03769136 _____ (Microsoft Corporation) C:\Users\Péťa\Downloads\Setup.X86.cs-CZ_O365ProPlusRetail_0318d66b-c81a-4d14-be2d-56d45be9ba62_TX_PR_b_32_.exe
2016-10-02 12:08 - 2016-10-07 21:34 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2016-10-01 23:36 - 2016-10-01 23:36 - 06243326 _____ () C:\Users\Péťa\Downloads\MishuvSilenyQuest.exe
2016-10-01 14:41 - 2016-10-01 14:42 - 34860220 _____ C:\Users\Péťa\Downloads\SoundEffects.zip
2016-10-01 12:47 - 2016-10-01 12:47 - 00026591 _____ C:\Users\Péťa\Downloads\Cenik_-_hlasove_sluzby.pdf
2016-10-01 11:44 - 2016-10-01 11:44 - 02348186 _____ C:\Users\Péťa\Downloads\radar-spots.zip
2016-10-01 11:22 - 2016-10-01 11:22 - 00236947 _____ C:\Users\Péťa\Downloads\SLAM_v1.3.4 (1).zip
2016-10-01 10:57 - 2016-10-01 10:57 - 00000000 ____D C:\Users\Péťa\AppData\Local\SLAM
2016-10-01 10:08 - 2016-10-01 10:08 - 00236947 _____ C:\Users\Péťa\Downloads\SLAM_v1.3.4.zip
2016-10-01 10:07 - 2016-10-02 19:16 - 00000000 ____D C:\Users\Péťa\Desktop\CSGO-zvukvehre
2016-10-01 10:07 - 2016-10-01 10:07 - 00317840 _____ C:\Users\Péťa\Downloads\SLAM_v1.2.2.zip
2016-09-30 21:57 - 2016-10-02 18:43 - 00000000 ____D C:\Users\Péťa\Desktop\fotky k poslani
2016-09-30 19:04 - 2016-09-30 19:04 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\com.freakinware.wormis
2016-09-29 20:54 - 2016-09-29 20:54 - 00855691 _____ C:\Users\Péťa\Downloads\Essentials (8).zip
2016-09-29 20:47 - 2016-09-29 20:47 - 00181728 _____ C:\Users\Péťa\Downloads\PermissionsEx (1).jar
2016-09-29 20:45 - 2016-09-29 20:45 - 00722683 _____ C:\Users\Péťa\Downloads\PermissionsEx.jar
2016-09-29 20:44 - 2016-09-29 20:44 - 00721924 _____ C:\Users\Péťa\Downloads\PermissionsEx-1.23.3.jar
2016-09-29 20:43 - 2016-09-29 20:43 - 01331819 _____ C:\Users\Péťa\Downloads\Essentials (7).zip
2016-09-29 20:33 - 2016-09-29 20:33 - 18586063 _____ C:\Users\Péťa\Downloads\Minecraft Server 1.8.zip
2016-09-29 19:34 - 2016-09-29 19:34 - 01003251 _____ C:\Users\Péťa\Downloads\neres.rar
2016-09-29 19:13 - 2016-09-29 19:14 - 00990670 _____ C:\Users\Péťa\Downloads\Essentials (6).zip
2016-09-29 18:34 - 2016-09-29 18:34 - 00000588 _____ C:\Users\Péťa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2016-09-29 18:32 - 2016-09-29 18:32 - 04513336 _____ (ppy) C:\Users\Péťa\Downloads\osu!install.exe
2016-09-29 18:32 - 2016-09-29 18:32 - 00000000 ____D C:\Users\Péťa\Downloads\Localisation
2016-09-28 19:05 - 2016-09-28 19:05 - 02770368 _____ C:\Users\Péťa\Downloads\BanManager (1).jar
2016-09-28 19:02 - 2016-09-28 19:02 - 00417172 _____ C:\Users\Péťa\Downloads\BanManager-WebUI-1.5.8.zip
2016-09-28 19:01 - 2016-09-28 19:01 - 03000874 _____ C:\Users\Péťa\Downloads\BanManager.jar
2016-09-28 18:53 - 2016-09-28 18:53 - 00074863 _____ C:\Users\Péťa\Downloads\AdvancedBan.jar
2016-09-28 18:49 - 2016-09-28 18:49 - 00112400 _____ C:\Users\Péťa\Downloads\UltraBan.jar
2016-09-28 18:47 - 2016-09-28 18:47 - 00128328 _____ C:\Users\Péťa\Downloads\Ultrabans (2).jar
2016-09-28 18:44 - 2016-09-28 18:44 - 00107271 _____ C:\Users\Péťa\Downloads\Ultrabans (1).jar
2016-09-28 18:41 - 2016-09-28 18:41 - 00140404 _____ C:\Users\Péťa\Downloads\Ultrabans.jar
2016-09-27 19:46 - 2016-09-27 19:46 - 00114487 _____ C:\Users\Péťa\Downloads\MineSecure.jar
2016-09-27 19:25 - 2016-09-27 19:25 - 00000930 _____ C:\Users\Péťa\Downloads\Anti-Aura.sk
2016-09-26 20:27 - 2016-09-26 20:27 - 00000588 _____ C:\Users\Péťa\Downloads\etarget_tracking (1).txt

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-10-26 08:49 - 2014-12-26 19:04 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-621929646-1206955908-3885600500-1001
2016-10-26 08:47 - 2014-12-26 19:18 - 00003962 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{12B12331-4303-4ADD-B940-510EDB01C12D}
2016-10-26 08:44 - 2014-12-26 19:19 - 00000000 __RDO C:\Users\Péťa\OneDrive
2016-10-25 22:32 - 2016-02-24 22:48 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-10-25 20:45 - 2016-08-24 18:40 - 00000000 ____D C:\Users\Péťa\Downloads\keygen
2016-10-25 20:45 - 2015-04-09 15:45 - 00000000 ____D C:\Users\Péťa\Desktop\Hry
2016-10-25 20:45 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\WinStore
2016-10-25 16:56 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2016-10-25 13:36 - 2016-09-25 15:28 - 00000000 ____D C:\Users\Péťa\.chatty
2016-10-25 13:36 - 2016-02-20 20:16 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\OBS
2016-10-25 12:17 - 2015-03-05 19:27 - 00000000 ____D C:\Users\Péťa\AppData\Local\Spotify
2016-10-25 12:09 - 2015-03-05 19:27 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\Spotify
2016-10-25 10:00 - 2014-12-26 19:05 - 00000000 ____D C:\Users\Péťa\AppData\Local\CrashDumps
2016-10-25 09:30 - 2014-12-30 11:50 - 00000000 ____D C:\Users\Péťa\Documents\My Games
2016-10-24 20:03 - 2015-09-02 15:13 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-10-24 19:57 - 2014-09-12 15:43 - 00733650 _____ C:\Windows\system32\perfh005.dat
2016-10-24 19:57 - 2014-09-12 15:43 - 00148502 _____ C:\Windows\system32\perfc005.dat
2016-10-24 19:56 - 2016-08-25 15:50 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2016-10-24 19:56 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-10-24 19:56 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-10-24 19:53 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\MUI
2016-10-24 19:53 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\MUI
2016-10-24 19:53 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf
2016-10-24 19:52 - 2016-08-24 16:41 - 00000000 ____D C:\AdwCleaner
2016-10-24 19:48 - 2015-01-14 20:21 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\TS3Client
2016-10-24 18:46 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2016-10-24 13:12 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2016-10-24 10:58 - 2015-10-31 21:30 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\Sony
2016-10-24 08:32 - 2014-03-18 12:03 - 01652644 _____ C:\Windows\system32\PerfStringBackup.INI
2016-10-23 15:22 - 2015-04-01 13:15 - 00000000 ____D C:\Users\Péťa\Desktop\videa
2016-10-23 15:20 - 2015-04-09 15:45 - 00000000 ____D C:\Users\Péťa\Desktop\Programy
2016-10-23 13:50 - 2014-12-27 13:13 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\WildTangent
2016-10-23 13:49 - 2015-06-18 17:22 - 00000000 ____D C:\Users\Guest\AppData\Roaming\WildTangent
2016-10-23 13:33 - 2015-03-10 19:29 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\FileZilla
2016-10-23 13:30 - 2016-08-24 10:37 - 00000000 ____D C:\Users\Péťa\Desktop\Moje veci
2016-10-23 11:50 - 2016-08-24 16:23 - 00000000 ____D C:\Program Files\trend micro
2016-10-23 10:40 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\spool
2016-10-23 10:40 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\setup
2016-10-23 10:40 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-10-23 10:36 - 2014-09-12 15:13 - 00000000 ____D C:\Windows\SysWOW64\sda
2016-10-23 10:07 - 2015-08-23 10:04 - 00000000 ____D C:\Program Files\AMD
2016-10-23 10:02 - 2014-09-12 15:23 - 00000000 ____D C:\AMD
2016-10-22 22:40 - 2014-12-29 11:04 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\Skype
2016-10-22 21:25 - 2015-08-31 18:55 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\MAXON
2016-10-22 10:59 - 2015-02-16 17:43 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-10-20 21:57 - 2014-12-26 18:58 - 00000000 ____D C:\Users\Péťa
2016-10-20 19:31 - 2015-08-03 21:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-10-20 16:04 - 2016-02-24 22:50 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-10-19 20:03 - 2015-08-22 10:11 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\DAEMON Tools Lite
2016-10-19 15:27 - 2015-04-01 12:04 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-10-18 20:21 - 2016-02-06 13:37 - 00000000 ____D C:\Users\Péťa\AppData\Local\Purplizer
2016-10-18 20:20 - 2016-02-05 21:17 - 00000000 ____D C:\Users\Péťa\AppData\Local\Overwolf
2016-10-18 04:41 - 2016-03-21 16:43 - 00139720 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2016-10-18 04:41 - 2014-05-06 07:45 - 00170072 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2016-10-18 04:40 - 2016-08-11 10:22 - 00240008 _____ C:\Windows\SysWOW64\GameManager32.dll
2016-10-18 04:40 - 2016-03-21 16:43 - 09103816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2016-10-18 04:40 - 2014-09-03 14:55 - 00020360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2016-10-18 04:40 - 2014-05-06 07:45 - 10949576 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2016-10-18 04:40 - 2014-05-06 07:45 - 09981352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2016-10-18 04:40 - 2014-05-06 07:45 - 01555976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2016-10-18 04:40 - 2014-05-06 07:45 - 01276840 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2016-10-16 20:34 - 2016-05-19 20:29 - 00000000 ____D C:\Program Files (x86)\AMD
2016-10-16 20:33 - 2015-08-24 07:22 - 00000000 ____D C:\Users\Péťa\AppData\Local\AMD
2016-10-16 20:29 - 2015-01-03 21:45 - 00000000 ____D C:\Users\Péťa\Documents\Euro Truck Simulator 2
2016-10-16 20:26 - 2016-04-01 21:14 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-10-16 20:25 - 2014-12-26 18:58 - 00000000 ____D C:\Users\Péťa\AppData\Local\Packages
2016-10-14 17:19 - 2015-01-12 20:28 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\Dropbox
2016-10-14 17:16 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-10-13 16:24 - 2015-01-08 16:47 - 00293352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2016-10-13 16:16 - 2015-06-13 15:46 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-10-13 16:16 - 2015-01-05 20:53 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-10-13 16:16 - 2013-08-22 16:44 - 05168680 _____ C:\Windows\system32\FNTCACHE.DAT
2016-10-12 22:00 - 2014-12-28 22:53 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-10-12 22:00 - 2014-12-28 22:53 - 00000000 ____D C:\Windows\system32\appraiser
2016-10-12 22:00 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData
2016-10-12 15:40 - 2015-03-12 15:28 - 00474112 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-10-12 15:40 - 2014-12-26 20:54 - 00000000 ____D C:\Windows\system32\MRT
2016-10-12 15:27 - 2014-12-26 20:54 - 143495576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-10-11 17:32 - 2016-02-24 22:48 - 00003802 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-10-11 17:32 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-10-11 17:32 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\Macromed
2016-10-08 21:52 - 2014-09-12 15:13 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-10-08 01:58 - 2015-03-12 15:29 - 01192960 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2016-10-07 23:08 - 2016-07-17 10:29 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\SmartSteamEmu
2016-10-05 04:21 - 2016-03-21 16:43 - 00139720 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\SET2CBB.tmp
2016-10-05 04:20 - 2016-08-11 10:22 - 00240008 _____ C:\Windows\SysWOW64\SETF03.tmp
2016-10-05 04:20 - 2014-09-03 14:55 - 00020360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SETA39.tmp
2016-10-05 04:20 - 2014-05-06 07:45 - 00170072 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\SET1125.tmp
2016-10-05 04:19 - 2016-03-21 16:43 - 09094552 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\SET116.tmp
2016-10-05 04:19 - 2014-05-06 07:45 - 10937728 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\SETEFA5.tmp
2016-10-05 04:19 - 2014-05-06 07:45 - 09981352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\SETF209.tmp
2016-10-05 04:19 - 2014-05-06 07:45 - 01551344 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\SET1187.tmp
2016-10-05 04:19 - 2014-05-06 07:45 - 01274256 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\SET13CB.tmp
2016-10-04 18:51 - 2015-06-26 11:29 - 00000000 ____D C:\Users\Péťa\Documents\Soubory aplikace Outlook
2016-10-04 17:34 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-10-02 19:16 - 2016-03-01 15:33 - 00000000 ____D C:\Users\Péťa\Desktop\server
2016-10-02 19:16 - 2015-01-12 20:30 - 00000000 ___RD C:\Users\Péťa\Dropbox
2016-10-02 18:55 - 2016-04-01 22:25 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-10-02 18:44 - 2016-09-25 17:43 - 00000000 ____D C:\Users\Péťa\Desktop\EG Theme Overlay Elements Pack
2016-09-29 20:47 - 2016-08-16 18:23 - 00000000 ____D C:\Users\Péťa\AppData\Roaming\.minecraft

==================== Files in the root of some directories =======

2015-03-30 15:51 - 2015-04-08 14:13 - 0009662 _____ () C:\Users\Péťa\AppData\Roaming\em_64x64.ico
2015-03-22 18:46 - 2016-09-14 17:33 - 0000000 _____ () C:\Users\Péťa\AppData\Roaming\FileIn.cns
2015-03-22 18:46 - 2016-09-14 17:33 - 0000000 _____ () C:\Users\Péťa\AppData\Roaming\FileOut.cns
2015-10-01 18:37 - 2015-10-01 18:37 - 0000000 ___SH () C:\Users\Péťa\AppData\Local\LumaEmu
2016-04-14 16:47 - 2016-04-14 16:47 - 0000600 _____ () C:\Users\Péťa\AppData\Local\PUTTY.RND
2016-04-08 18:41 - 2016-04-08 18:41 - 0001286 _____ () C:\Users\Péťa\AppData\Local\recently-used.xbel
2016-07-15 20:20 - 2016-07-15 20:20 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Péťa\AppData\Local\Temp\HiPatchSelfUpdateWindow.exe
C:\Users\Péťa\AppData\Local\Temp\HiRezLauncherControls.dll
C:\Users\Péťa\AppData\Local\Temp\libeay32.dll
C:\Users\Péťa\AppData\Local\Temp\msvcr120.dll
C:\Users\Péťa\AppData\Local\Temp\playstv_patch.exe
C:\Users\Péťa\AppData\Local\Temp\raptrpatch.exe
C:\Users\Péťa\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Péťa\AppData\Local\Temp\sfextra.dll
C:\Users\Péťa\AppData\Local\Temp\sqlite3.dll
C:\Users\Péťa\AppData\Local\Temp\{8D138B50-A75B-4A80-885F-4CD8A49F4620}-DropboxClient_12.4.22.exe


==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Uninstaller_SkipUac_Péťa.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Pœa\Desktop" je 15250 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

[Márty84]

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Pœa\Desktop" je 15250 MB.

Velikost plochy by nemela presahovat 200 - 300 MB! Brzdi to chod pc. Cili ji trosku uklidte a na plochu dejte jen zastupce. Jen pozor na obcasnou chybu, ze uzivatele maji na plose slozku, v ni dalsi a v ni dalsi a do te to schovaji. To je sice hezke, ale plochu to nezmensi, jen je to v jinem supliku



Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\...\Run: [DAEMON Tools Lite Automount] => D:\Programy\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd)
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\...\Run: [World of Tanks] => D:\Hry\World_of_Tanks\WargamingGameUpdater.exe [3134728 2016-09-26] (Wargaming.net)
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\...\Run: [Spotify Web Helper] => C:\Users\Péťa\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1529456 2016-09-25] (Spotify Ltd)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-21-621929646-1206955908-3885600500-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-11-12] (IObit)
BHO: No Name -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> No File

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Uninstaller_SkipUac_Péťa.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-09-20 324224]

Hosts:
EmptyTemp:
Reboot:
End

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.

[Zemos]

Omlouvám se, nebyl jsem u PC
Fix result of Farbar Recovery Scan Tool (x64) Version: 29-10-2016
Ran by Péťa (30-10-2016 18:06:01) Run:1
Running from C:\Users\Péťa\Desktop
Loaded Profiles: Péťa (Available Profiles: Péťa & Guest)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\...\Run: [DAEMON Tools Lite Automount] => D:\Programy\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd)
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\...\Run: [World of Tanks] => D:\Hry\World_of_Tanks\WargamingGameUpdater.exe [3134728 2016-09-26] (Wargaming.net)
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\...\Run: [Spotify Web Helper] => C:\Users\Péťa\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1529456 2016-09-25] (Spotify Ltd)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-21-621929646-1206955908-3885600500-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-11-12] (IObit)
BHO: No Name -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> No File

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Uninstaller_SkipUac_Péťa.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-09-20 324224]

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => value removed successfully
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite Automount => value removed successfully
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\Software\Microsoft\Windows\CurrentVersion\Run\\World of Tanks => value removed successfully
HKU\S-1-5-21-621929646-1206955908-3885600500-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Spotify Web Helper => value removed successfully
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKU\S-1-5-21-621929646-1206955908-3885600500-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => key removed successfully
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}" => key removed successfully
"HKCR\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}" => key removed successfully
"HKCR\CLSID\{B4F3A835-0E21-4959-BA22-42B3008E02FF}" => key removed successfully
C:\Windows\Tasks\Adobe Flash Player Updater.job => moved successfully
C:\Windows\Tasks\Uninstaller_SkipUac_Péťa.job => moved successfully
SkypeUpdate => service removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 27579913 B
Java, Flash, Steam htmlcache => 329076994 B
Windows/system/drivers => 168199794 B
Edge => 0 B
Chrome => 806637341 B
Firefox => 78935723 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 37720 B
NetworkService => 0 B
Péťa => 435334967 B
Guest => 34021 B

RecycleBin => 5909058930 B
EmptyTemp: => 7.2 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:07:35 ====

[Márty84]

Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

DelFix https://toolslib.net/downloads/finish/2/

• Stahnete a spustte
• Ponechte zatrzitkou pouze u volby Remove disinfection tools
• Kliknete na Run

Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)

Defragmentujte disk(y) (SSD Disky ne!)
Stahnete program Defraggler https://www.piriform.com/defraggler/download/standard
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.




Pak napiste, jak to s pc vypada.

[Zemos]

Zdravím, tak defragmentace disku C i D trvala cca den a půl. Poaktualizoval jsem ovladače pomocí Driver Booster 4 a následně odinstaloval nějaké ty prográmky pomocí Iobit Uninstaller. Pc šlape jak má, disk už jede kolem 50% v zátěži a v klidu kolem 5%.
Děkuji za čištění a nervy strávené čtením logu
Můžete dát

[Márty84]

Nemate zac!

Mejte se a treba zase nekdy