VIRY.CZ

MBAM muzete odinstalovat.

Dejte log z RSITx64 http://images.malwareremoval.com/random/RSITx64.exe . Navod zde http://forum.viry.cz/viewtopic.php?f=13&t=130786

A k tomu novy log z FRST

Logfile of random's system information tool 1.10 (written by random/random)
Run by Petr Štolfa at 2015-06-08 09:20:36
Microsoft Windows 8.1 Pro
System drive C: has 10 GB (4%) free of 238 GB
Total RAM: 6036 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:20:47, on 8. 6. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Petr Štolfa\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
C:\Users\Petr Štolfa\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Users\Petr Štolfa\AppData\Roaming\ssn\ssn.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Petr Štolfa.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RadioController] "C:\Program Files (x86)\RadioController\RfBtnHelper.exe" Start_Run
O4 - HKLM\..\Run: [EaseUS EPM tray] C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\EpmNews.exe
O4 - HKLM\..\Run: [EaseUS EPM Tray Agent] "C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\TrayTipAgentE.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [ADSK DLMSession] C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Petr Štolfa\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Petr Štolfa\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Save Serp Now] C:\Users\Petr Štolfa\AppData\Roaming\SSN\updssn.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_F6BB993C2485C6A524FA099C1DA94EF1] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Bloody2] "C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe" Minimum
O4 - HKCU\..\Run: [WinMng] C:\Users\Petr Štolfa\AppData\Roaming\Microsoft\BHvr.exe
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
O4 - HKUS\S-1-5-18\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Broadcom Card Reader Service (BrcmCardReader) - Broadcom Corp. - C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) - Foxit Software Inc. - C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Protexis Licensing V2 x64 (PSI_SVC_2_x64) - arvato digital services llc - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12793 bytes

======Listing Processes======





wininit.exe

winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
"C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {a42e4d9a-d570-46fe-ad81f95b9525233e}
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe"
C:\Windows\RfBtnSvc64.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 87b3e9f9-a51d-459d-986d-11c7a3305a52 1
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskeng.exe {B3B22BA2-1C25-4C28-98DF-0D6998FE4F19}
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window --enable-setforeground-window --enable-kbhook-window
taskhostex.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler64.exe"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
C:\WINDOWS\system32\igfxext.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-88fc0cce-b204-43a4-b0aa-7bb06197186e -SystemEventPortName:HostProcess-d61b1d44-10ff-40fa-93db-8f2a672d4a7b -IoCancelEventPortName:HostProcess-316e9d65-1dad-4605-99c0-49aa4a381a4f -NonStateChangingEventPortName:HostProcess-1b943ef6-1bbc-4f2a-b1d9-215f24747293 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:ebeb36c7-3001-41e4-9b20-dd55a99a17cc -DeviceGroupId:WpdFsGroup
igfxEM.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
igfxHK.exe
igfxTray.exe
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Users\Petr Štolfa\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Users\Petr Štolfa\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --on-initialized-event-handle=476 --parent-handle=480
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4516.0.421301108\1411343981" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,43 --gpu-vendor-id=0x8086 --gpu-device-id=0x0156 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3621 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe" Minimum
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/OmniboxBundledExperimentV1/NewSuggestType_A7_Stable_R2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_26/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=4516 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --use-image-texture-target=3553 --channel="4516.1.1023714838\530929342" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/OmniboxBundledExperimentV1/NewSuggestType_A7_Stable_R2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_26/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=4516 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --use-image-texture-target=3553 --channel="4516.2.1891662046\1640243962" /prefetch:673131151
"C:\Program Files (x86)\RadioController\RfBtnHelper.exe" HigherRFButtonHelper
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Users\Petr Štolfa\AppData\Roaming\ssn\ssn.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A7_Stable_R2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_26/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=4516 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --use-image-texture-target=3553 --channel="4516.6.198440371\443002104" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A7_Stable_R2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_26/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=4516 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --use-image-texture-target=3553 --channel="4516.8.1640756650\2107517391" /prefetch:673131151
ctfmon.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4516.9.85072606\340255043" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 576 580 588 65536 584


"C:\Users\Petr Štolfa\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\tasks\Uninstaller_SkipUac_Administrator.job - C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer

=========Mozilla firefox=========

ProfilePath - C:\Users\Petr Štolfa\AppData\Roaming\Mozilla\Firefox\Profiles\agvwlxuj.default

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-07-26 612248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 688528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-06-04 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-07-26 457712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-04 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-06-11 12503184]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-03-28 2673296]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2015-03-28 1570672]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-11-29 3008824]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2013-09-07 132736]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Users\Petr Štolfa\AppData\Roaming\uTorrent\uTorrent.exe [2015-05-06 1694560]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Autodesk Sync"=C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2013-02-05 1081224]
"Akamai NetSession Interface"=C:\Users\Petr Štolfa\AppData\Local\Akamai\netsession_win.exe []
"Save Serp Now"=C:\Users\Petr Štolfa\AppData\Roaming\SSN\updssn.exe [2014-11-21 26112]
"GoogleChromeAutoLaunch_F6BB993C2485C6A524FA099C1DA94EF1"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-05-22 813896]
"Bloody2"=C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe [2014-12-02 15806976]
"WinMng"=C:\Users\Petr Štolfa\AppData\Roaming\Microsoft\BHvr.exe [2015-03-08 9216]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"LManager"= []
"RadioController"=C:\Program Files (x86)\RadioController\RfBtnHelper.exe [2014-07-17 111216]
"EaseUS EPM tray"=C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\EpmNews.exe [2014-03-06 2086568]
"EaseUS EPM Tray Agent"=C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\TrayTipAgentE.exe [2014-02-13 254024]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-07-31 4085896]
"ADSK DLMSession"=C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [2014-02-05 1627032]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-03-30 3978600]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-30 334896]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2013-09-07 132736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll, C:\WINDOWS\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"msacm.dvacm_vspx7"=C:\PROGRA~1\Corel\Corel VideoStudio Ultimate X7\Dvacm.acm
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\WINDOWS\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2015-06-08 09:20:37 ----D---- C:\Program Files\trend micro
2015-06-08 09:20:36 ----D---- C:\rsit
2015-06-08 09:14:28 ----ASH---- C:\pagefile.sys
2015-06-05 19:49:55 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2015-06-05 19:49:36 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2015-06-05 19:49:36 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2015-06-05 19:49:36 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2015-06-05 19:49:35 ----D---- C:\ProgramData\Malwarebytes
2015-06-05 19:49:35 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-06-05 19:34:24 ----D---- C:\AdwCleaner
2015-06-05 10:00:11 ----D---- C:\FRST
2015-06-04 00:38:42 ----D---- C:\Users\Petr Štolfa\AppData\Roaming\NVIDIA
2015-06-04 00:37:09 ----D---- C:\Users\Petr Štolfa\AppData\Roaming\java
2015-06-04 00:35:57 ----D---- C:\ProgramData\Sun
2015-06-04 00:35:52 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2015-06-04 00:34:49 ----D---- C:\ProgramData\Oracle
2015-06-04 00:34:40 ----D---- C:\Program Files (x86)\Java
2015-06-04 00:31:20 ----D---- C:\Users\Petr Štolfa\AppData\Roaming\.minecraft
2015-05-30 09:54:47 ----A---- C:\WINDOWS\SYSWOW64\rgb9rast.dll
2015-05-30 09:54:23 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-05-30 09:54:23 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-05-30 09:53:59 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-05-30 09:53:59 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-05-30 09:53:32 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2015-05-30 09:53:32 ----A---- C:\WINDOWS\system32\rastapi.dll
2015-05-30 09:53:08 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2015-05-30 09:53:08 ----A---- C:\WINDOWS\system32\authz.dll
2015-05-30 09:52:46 ----AC---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2015-05-30 09:52:22 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2015-05-30 09:52:22 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2015-05-30 09:52:22 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2015-05-30 09:52:22 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2015-05-30 09:52:22 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2015-05-30 09:52:22 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2015-05-30 09:52:22 ----A---- C:\WINDOWS\system32\tquery.dll
2015-05-30 09:52:22 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2015-05-30 09:52:22 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2015-05-30 09:52:22 ----A---- C:\WINDOWS\system32\mssvp.dll
2015-05-30 09:52:22 ----A---- C:\WINDOWS\system32\mssrch.dll
2015-05-30 09:52:22 ----A---- C:\WINDOWS\system32\mssphtb.dll
2015-05-30 09:52:22 ----A---- C:\WINDOWS\system32\mssph.dll
2015-05-30 09:50:51 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-05-30 09:50:51 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-05-30 09:50:51 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-05-30 09:50:51 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-05-30 09:50:51 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-05-30 09:50:51 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-05-30 09:50:50 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2015-05-30 09:50:50 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll
2015-05-30 09:50:50 ----A---- C:\WINDOWS\SYSWOW64\vsstrace.dll
2015-05-30 09:50:50 ----A---- C:\WINDOWS\SYSWOW64\vssapi.dll
2015-05-30 09:50:50 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2015-05-30 09:50:50 ----A---- C:\WINDOWS\SYSWOW64\rasser.dll
2015-05-30 09:50:50 ----A---- C:\WINDOWS\SYSWOW64\rasmxs.dll
2015-05-30 09:50:50 ----A---- C:\WINDOWS\SYSWOW64\rasdiag.dll
2015-05-30 09:50:50 ----A---- C:\WINDOWS\SYSWOW64\rascfg.dll
2015-05-30 09:50:50 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2015-05-30 09:50:50 ----A---- C:\WINDOWS\SYSWOW64\QSVRMGMT.DLL
2015-05-30 09:50:50 ----A---- C:\WINDOWS\SYSWOW64\QSHVHOST.DLL
2015-05-30 09:50:50 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2015-05-30 09:50:50 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2015-05-30 09:50:50 ----A---- C:\WINDOWS\SYSWOW64\eventcls.dll
2015-05-30 09:50:50 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2015-05-30 09:50:50 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2015-05-30 09:50:43 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2015-05-30 09:50:43 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-05-30 09:50:43 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\WSDMon.dll
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\vpnike.dll
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\spoolsv.exe
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\rasser.dll
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\rasmxs.dll
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\rasdiag.dll
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\rascfg.dll
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\rasapi32.dll
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\QSVRMGMT.DLL
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\QSHVHOST.DLL
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\nshwfp.dll
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\drivers\ndistapi.sys
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2015-05-30 09:50:42 ----A---- C:\WINDOWS\system32\BFE.DLL
2015-05-30 09:50:42 ----A---- C:\WINDOWS\splwow64.exe
2015-05-30 09:50:41 ----AC---- C:\WINDOWS\system32\drivers\vhdmp.sys
2015-05-30 09:50:41 ----AC---- C:\WINDOWS\system32\drivers\sermouse.sys
2015-05-30 09:50:41 ----AC---- C:\WINDOWS\system32\drivers\mouhid.sys
2015-05-30 09:50:41 ----AC---- C:\WINDOWS\system32\drivers\mouclass.sys
2015-05-30 09:50:41 ----AC---- C:\WINDOWS\system32\drivers\intelpep.sys
2015-05-30 09:50:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-05-30 09:50:41 ----A---- C:\WINDOWS\system32\WSDApi.dll
2015-05-30 09:50:41 ----A---- C:\WINDOWS\system32\WinSCard.dll
2015-05-30 09:50:41 ----A---- C:\WINDOWS\system32\VSSVC.exe
2015-05-30 09:50:41 ----A---- C:\WINDOWS\system32\vsstrace.dll
2015-05-30 09:50:41 ----A---- C:\WINDOWS\system32\vssapi.dll
2015-05-30 09:50:41 ----A---- C:\WINDOWS\system32\untfs.dll
2015-05-30 09:50:41 ----A---- C:\WINDOWS\system32\eventcls.dll
2015-05-30 09:50:41 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2015-05-30 09:50:41 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2015-05-30 09:50:41 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2015-05-30 09:50:41 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2015-05-30 09:50:41 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2015-05-30 09:50:41 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2015-05-30 09:50:41 ----A---- C:\WINDOWS\system32\dnsapi.dll
2015-05-30 09:50:41 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2015-05-30 09:50:40 ----AC---- C:\WINDOWS\system32\drivers\kbdhid.sys
2015-05-30 09:50:40 ----AC---- C:\WINDOWS\system32\drivers\kbdclass.sys
2015-05-30 09:50:40 ----AC---- C:\WINDOWS\system32\drivers\i8042prt.sys
2015-05-30 09:45:28 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2015-05-30 09:45:28 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2015-05-30 09:45:28 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2015-05-30 09:45:28 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2015-05-13 17:17:48 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-05-13 15:52:55 ----A---- C:\WINDOWS\system32\UtcResources.dll
2015-05-13 15:52:54 ----A---- C:\WINDOWS\system32\diagtrack.dll
2015-05-13 13:15:54 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 13:15:54 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-12 19:38:43 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-05-12 19:38:41 ----AC---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2015-05-12 19:38:22 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-05-12 19:38:21 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-05-12 19:36:46 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2015-05-12 19:36:46 ----A---- C:\WINDOWS\system32\schannel.dll
2015-05-12 19:36:43 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2015-05-12 19:36:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2015-05-12 19:36:41 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2015-05-12 19:36:38 ----A---- C:\WINDOWS\system32\SystemSettingsDatabase.dll
2015-05-12 19:36:38 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2015-05-12 19:36:26 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2015-05-12 19:36:26 ----A---- C:\WINDOWS\system32\sdbinst.exe
2015-05-12 19:36:25 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2015-05-12 19:36:21 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-05-12 19:36:21 ----A---- C:\WINDOWS\system32\SRH.dll
2015-05-12 19:36:20 ----A---- C:\WINDOWS\system32\dbgeng.dll
2015-05-12 19:36:19 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll
2015-05-12 19:36:19 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2015-05-12 19:36:19 ----A---- C:\WINDOWS\system32\dbghelp.dll
2015-05-12 19:36:18 ----A---- C:\WINDOWS\system32\services.exe
2015-05-12 19:36:13 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2015-05-12 19:36:10 ----A---- C:\WINDOWS\system32\drivers\udfs.sys
2015-05-12 19:36:09 ----A---- C:\WINDOWS\SYSWOW64\PhotoMetadataHandler.dll
2015-05-12 19:36:09 ----A---- C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-05-12 19:36:08 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2015-05-12 19:36:08 ----A---- C:\WINDOWS\system32\FntCache.dll
2015-05-12 19:36:08 ----A---- C:\WINDOWS\system32\DWrite.dll
2015-05-12 19:36:07 ----A---- C:\WINDOWS\system32\win32k.sys
2015-05-12 19:35:54 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-05-12 19:35:52 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-05-12 19:35:48 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-05-12 19:35:46 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-05-12 19:35:45 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-05-12 19:35:43 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-05-12 19:35:43 ----A---- C:\WINDOWS\system32\wininet.dll
2015-05-12 19:35:42 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-05-12 19:35:41 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-05-12 19:35:41 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-05-12 19:35:40 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-05-12 19:35:39 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-05-12 19:35:39 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-05-12 19:35:39 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-05-12 19:35:39 ----A---- C:\WINDOWS\system32\jscript.dll
2015-05-12 19:35:38 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-05-12 19:35:38 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-05-12 19:35:30 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-05-12 19:35:29 ----A---- C:\WINDOWS\system32\mshtmled.dll
2015-05-12 19:35:29 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-05-12 19:35:28 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-05-12 19:35:28 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2015-05-12 19:35:27 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2015-05-12 19:35:26 ----A---- C:\WINDOWS\system32\ieui.dll
2015-05-12 19:35:26 ----A---- C:\WINDOWS\system32\dxtrans.dll
2015-05-12 19:35:25 ----A---- C:\WINDOWS\system32\webcheck.dll
2015-05-12 19:35:25 ----A---- C:\WINDOWS\system32\inseng.dll
2015-05-12 19:35:25 ----A---- C:\WINDOWS\system32\iepeers.dll
2015-05-12 19:35:25 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-05-12 19:35:24 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2015-05-12 19:35:24 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2015-05-12 19:35:24 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2015-05-12 19:35:24 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-05-12 19:35:24 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2015-05-12 19:35:23 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2015-05-12 19:35:06 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-05-12 19:35:03 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2015-05-12 19:35:03 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-05-12 19:35:03 ----A---- C:\WINDOWS\system32\certcli.dll
2015-05-12 19:34:59 ----AC---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-05-12 19:34:58 ----AC---- C:\WINDOWS\system32\drivers\dumpsd.sys
2015-05-12 19:34:58 ----A---- C:\WINDOWS\system32\wpdshext.dll
2015-05-12 19:34:57 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll

======List of files/folders modified in the last 1 month======

2015-06-08 09:20:38 ----D---- C:\WINDOWS\Prefetch
2015-06-08 09:20:37 ----RD---- C:\Program Files
2015-06-08 09:18:00 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-06-08 09:17:07 ----D---- C:\Users\Petr Štolfa\AppData\Roaming\uTorrent
2015-06-08 09:16:57 ----D---- C:\WINDOWS\Temp
2015-06-08 09:16:47 ----D---- C:\Windows
2015-06-08 09:14:37 ----D---- C:\WINDOWS\Minidump
2015-06-08 00:58:01 ----D---- C:\WINDOWS\system32\sru
2015-06-07 16:10:39 ----D---- C:\WINDOWS\AppReadiness
2015-06-07 16:04:30 ----SHD---- C:\System Volume Information
2015-06-07 13:44:03 ----D---- C:\WINDOWS\Microsoft.NET
2015-06-07 01:20:02 ----D---- C:\Users\Petr Štolfa\AppData\Roaming\vlc
2015-06-07 00:57:04 ----RD---- C:\WINDOWS\System32
2015-06-07 00:57:04 ----D---- C:\WINDOWS\Inf
2015-06-07 00:57:04 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-06-06 20:04:51 ----D---- C:\Program Files (x86)\WarThunder
2015-06-06 00:31:32 ----HD---- C:\Program Files\WindowsApps
2015-06-06 00:17:36 ----SHD---- C:\WINDOWS\BitLockerDiscoveryVolumeContents
2015-06-06 00:17:36 ----D---- C:\WINDOWS\system32\drivers
2015-06-05 19:49:35 ----RD---- C:\Program Files (x86)
2015-06-05 19:49:35 ----HD---- C:\ProgramData
2015-06-05 19:30:46 ----D---- C:\Users\Petr Štolfa\AppData\Roaming\Seznam.cz
2015-06-05 19:30:11 ----D---- C:\WINDOWS\Tasks
2015-06-05 19:30:11 ----D---- C:\WINDOWS\system32\Tasks
2015-06-05 19:29:27 ----D---- C:\Program Files (x86)\IObit
2015-06-05 10:56:25 ----D---- C:\WINDOWS\system32\config
2015-06-04 23:43:25 ----D---- C:\WINDOWS\debug
2015-06-04 14:34:25 ----D---- C:\WINDOWS\rescache
2015-06-04 00:35:57 ----SHD---- C:\WINDOWS\Installer
2015-06-04 00:35:56 ----SHD---- C:\Config.Msi
2015-06-04 00:35:56 ----D---- C:\Program Files (x86)\Common Files
2015-06-04 00:35:52 ----D---- C:\WINDOWS\SysWOW64
2015-06-04 00:17:11 ----SD---- C:\Users\Petr Štolfa\AppData\Roaming\Microsoft
2015-06-03 21:02:26 ----D---- C:\WINDOWS\system32\NDF
2015-06-02 09:56:18 ----D---- C:\WINDOWS\system32\DriverStore
2015-06-02 09:56:12 ----D---- C:\WINDOWS\WinSxS
2015-06-01 14:08:54 ----D---- C:\WINDOWS\system32\catroot2
2015-06-01 14:03:04 ----D---- C:\WINDOWS\SoftwareDistribution
2015-06-01 13:52:08 ----D---- C:\WINDOWS\SYSWOW64\setup
2015-06-01 13:52:08 ----D---- C:\WINDOWS\system32\setup
2015-05-30 09:55:16 ----D---- C:\WINDOWS\CbsTemp
2015-05-30 09:45:46 ----D---- C:\WINDOWS\system32\en-US
2015-05-30 09:45:46 ----D---- C:\WINDOWS\system32\cs-CZ
2015-05-30 09:45:45 ----D---- C:\WINDOWS\system32\wbem
2015-05-30 09:28:46 ----D---- C:\ProgramData\ProductData
2015-05-29 18:17:02 ----RSD---- C:\WINDOWS\Fonts
2015-05-29 17:45:34 ----D---- C:\Hry
2015-05-13 17:38:37 ----RSD---- C:\WINDOWS\assembly
2015-05-13 17:10:17 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-05-13 17:10:16 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2015-05-13 17:10:13 ----D---- C:\WINDOWS\apppatch
2015-05-13 17:10:11 ----D---- C:\Program Files\Internet Explorer
2015-05-13 17:10:11 ----D---- C:\Program Files (x86)\Internet Explorer
2015-05-13 13:13:34 ----D---- C:\WINDOWS\system32\MRT
2015-05-13 13:07:01 ----A---- C:\WINDOWS\system32\MRT.exe
2015-05-13 12:56:33 ----D---- C:\Program Files\Windows Journal
2015-05-10 10:05:43 ----D---- C:\WINDOWS\system32\NV

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-07-26 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-07-26 224896]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2015-04-09 31376]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-07-26 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-11-21 1041168]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-07-26 427360]
R1 dtsoftbus01;@oem16.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-07-17 283064]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-07-26 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-07-26 79184]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-07-26 92008]
R3 AthBTPort;@oem12.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-09-07 89800]
R3 athr;@oem7.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-08-07 3915264]
R3 b57xdbd;@oem24.inf,%bcmxd_16bf_svcd%;Broadcom xD Picture Bus Driver Service; C:\WINDOWS\System32\drivers\b57xdbd.sys [2012-08-13 72280]
R3 b57xdmp;@oem24.inf,%BXD_SVCDESC%;Broadcom xD Picture vstorp client drv; C:\WINDOWS\System32\drivers\b57xdmp.sys [2012-08-13 21080]
R3 bScsiMSa;bScsiMSa; C:\WINDOWS\System32\drivers\bScsiMSa.sys [2012-06-18 55384]
R3 bScsiSDa;bScsiSDa; C:\WINDOWS\System32\drivers\bScsiSDa.sys [2012-08-14 70744]
R3 BTATH_A2DP;@oem11.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-09-07 338120]
R3 btath_avdt;@oem11.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-09-07 116424]
R3 BTATH_BUS;@oem8.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2013-09-07 34384]
R3 BTATH_HCRP;@oem15.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-09-07 179432]
R3 BTATH_LWFLT;@oem17.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-09-07 77464]
R3 BTATH_RCP;@oem18.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-09-07 137928]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2013-09-07 594120]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2015-03-30 44296]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-05-21 3791872]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-06-12 4060560]
R3 IntcDAud;@oem21.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 iwdbus;@oem29.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2014-05-07 27032]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\k57nd60a.sys [2013-06-18 425984]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2015-04-14 25816]
R3 MEIx64;@oem25.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-04-09 10423952]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-03-28 19600]
R3 nvvad_WaveExtensible;@oem53.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 Ps2Kb2Hid;@oem3.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [2014-07-17 26736]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2012-11-29 31032]
R3 SynTP;@oem5.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-11-29 464184]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2014-06-21 212736]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 cpuz137;cpuz137; \??\C:\Users\PETRTO~1\AppData\Local\Temp\cpuz137\cpuz137_x64.sys []
S3 epmntdrv;epmntdrv; \??\C:\WINDOWS\syswow64\epmntdrv.sys [2013-03-07 13896]
S3 EuGdiDrv;EuGdiDrv; \??\C:\WINDOWS\syswow64\EuGdiDrv.sys [2013-03-07 9160]
S3 intaud_WaveExtensible;@oem28.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-05-07 38296]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\WINDOWS\system32\drivers\mwac.sys [2015-04-14 64216]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\System32\drivers\usbscan.sys [2014-10-29 44544]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [2013-09-07 312448]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-12-13 12288]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-07-26 50344]
R2 BrcmCardReader;Broadcom Card Reader Service; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [2012-08-20 176640]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-12-10 350544]
R2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [2015-05-11 244392]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-03-28 1152144]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2014-05-21 314696]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-03-30 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-03-28 1878672]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-03-28 22995600]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-04-08 936264]
R2 PSI_SVC_2_x64;Protexis Licensing V2 x64; C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2013-09-13 337776]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2014-07-17 96880]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-17 116648]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-03-30 2490216]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-04-14 1080120]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14 268464]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-05-21 278344]
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-10-26 1471352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-17 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-24 114288]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]

-----------------EOF-----------------

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:03-06-2015
Ran by Petr Štolfa (administrator) on PETR41-PC on 08-06-2015 09:30:50
Running from C:\Users\Petr Štolfa\Desktop
Loaded Profiles: Petr Štolfa (Available Profiles: Petr Štolfa & Účet 2)
Platform: Windows 8.1 Pro (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Broadcom Corp.) C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(BitTorrent Inc.) C:\Users\Petr Štolfa\AppData\Roaming\uTorrent\uTorrent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Dritek System Inc.) C:\Program Files (x86)\RadioController\RfBtnHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Users\Petr Štolfa\AppData\Roaming\SSN\ssn.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\livecomm.exe
(Maxthon International ltd.) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
(Maxthon International ltd.) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
(Maxthon International ltd.) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
(Maxthon International ltd.) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
(Maxthon International ltd.) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
(Maxthon International ltd.) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
(forum.viry.cz) C:\Users\Petr Štolfa\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-28] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3008824 2012-11-29] (Synaptics Incorporated)
HKLM-x32\...\Run: [LManager] => [X]
HKLM-x32\...\Run: [RadioController] => C:\Program Files (x86)\RadioController\RfBtnHelper.exe [111216 2014-07-17] (Dritek System Inc.)
HKLM-x32\...\Run: [EaseUS EPM tray] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\EpmNews.exe [2086568 2014-03-06] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM-x32\...\Run: [EaseUS EPM Tray Agent] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\TrayTipAgentE.exe [254024 2014-02-13] ()
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-07-31] (AVAST Software)
HKLM-x32\...\Run: [ADSK DLMSession] => C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [1627032 2014-02-05] (Autodesk, Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3978600 2015-03-30] (LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-09-07] (Qualcomm®Atheros®)
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\Run: [uTorrent] => C:\Users\Petr Štolfa\AppData\Roaming\uTorrent\uTorrent.exe [1694560 2015-05-06] (BitTorrent Inc.)
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\Run: [Akamai NetSession Interface] => "C:\Users\Petr Štolfa\AppData\Local\Akamai\netsession_win.exe"
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\Run: [Save Serp Now] => C:\Users\Petr Štolfa\AppData\Roaming\SSN\updssn.exe [26112 2014-11-21] ()
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\Run: [GoogleChromeAutoLaunch_F6BB993C2485C6A524FA099C1DA94EF1] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896 2015-05-22] (Google Inc.)
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\Run: [Bloody2] => C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe [15806976 2014-12-02] ()
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\Run: [WinMng] => C:\Users\Petr Štolfa\AppData\Roaming\Microsoft\BHvr.exe [9216 2015-03-08] ()
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_169_Plugin.exe [927920 2015-04-14] (Adobe Systems Incorporated)
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\Policies\Explorer: []
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\MountPoints2: J - "J:\.autorun\autorun.exe"
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\MountPoints2: {6e123437-0db5-11e4-be6d-40f02f5f7ec8} - "J:\setup.exe"
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [175880 2015-04-09] (NVIDIA Corporation)
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [175880 2015-04-09] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [154256 2015-04-09] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2014-07-26] (AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2013-02-08] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr Štolfa\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr Štolfa\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr Štolfa\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr Štolfa\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [Správa překryvné ikony digitálních podpisů AutoCADu ] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2013-02-08] (Autodesk, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr Štolfa\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr Štolfa\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr Štolfa\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll No File
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-07-26] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-06-04] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-07-26] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-04] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Petr Štolfa\AppData\Roaming\Mozilla\Firefox\Profiles\agvwlxuj.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-14] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-04] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-04] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin HKU\S-1-5-21-3790269049-1540372019-2988136619-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Petr Štolfa\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-12-05] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3790269049-1540372019-2988136619-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll No File
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-07-26]

Chrome:
=======
CHR Profile: C:\Users\Petr Štolfa\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Angry Birds) - C:\Users\Petr Štolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2014-07-17]
CHR Extension: (Google Docs) - C:\Users\Petr Štolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-07-17]
CHR Extension: (Google Drive) - C:\Users\Petr Štolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-07-17]
CHR Extension: (YouTube) - C:\Users\Petr Štolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-17]
CHR Extension: (Chrome YouTube Downloader) - C:\Users\Petr Štolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbdjiinahkdjdcdlgfimlcolkjpbooja [2015-04-20]
CHR Extension: (Pool) - C:\Users\Petr Štolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\cedbddnnmhgnedpamoenmdkhnpnfbpjb [2014-07-17]
CHR Extension: (Google Search) - C:\Users\Petr Štolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-17]
CHR Extension: (Bookmark Manager) - C:\Users\Petr Štolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-21]
CHR Extension: (Google Wallet) - C:\Users\Petr Štolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-17]
CHR Extension: (Gmail) - C:\Users\Petr Štolfa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-17]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-26]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [312448 2013-09-07] (Windows (R) Win 7 DDK provider) [File not signed]
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-26] (AVAST Software)
R2 BrcmCardReader; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [176640 2012-08-20] (Broadcom Corp.) [File not signed]
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [244392 2015-05-11] (Foxit Software Inc.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-28] (NVIDIA Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-21] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-28] (NVIDIA Corporation)
R2 PSI_SVC_2_x64; C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2013-09-13] (arvato digital services llc)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [96880 2014-07-17] (Dritek System INC.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-26] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-07-26] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-07-26] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-07-26] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-11-21] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-07-26] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-07-26] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-07-26] ()
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-07] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-07-17] (Disc Soft Ltd)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] () [File not signed]
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [13896 2013-03-07] () [File not signed]
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] () [File not signed]
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] () [File not signed]
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-03-30] (LogMeIn Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-28] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2014-07-17] (Dritek System Inc.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31032 2012-11-29] (Synaptics Incorporated)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 cpuz137; \??\C:\Users\PETRTO~1\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-08 09:30 - 2015-06-08 09:31 - 00023950 _____ C:\Users\Petr Štolfa\Desktop\FRST.txt
2015-06-08 09:30 - 2015-06-08 09:30 - 00112640 _____ (forum.viry.cz) C:\Users\Petr Štolfa\Desktop\FRSTLauncher.exe
2015-06-08 09:20 - 2015-06-08 09:20 - 01222144 _____ C:\Users\Petr Štolfa\Downloads\RSITx64.exe
2015-06-08 09:20 - 2015-06-08 09:20 - 00000000 ____D C:\rsit
2015-06-08 09:20 - 2015-06-08 09:20 - 00000000 ____D C:\Program Files\trend micro
2015-06-08 09:14 - 2015-06-08 09:14 - 01028912 _____ C:\WINDOWS\Minidump\060815-38578-01.dmp
2015-06-07 13:47 - 2015-06-07 13:47 - 00001158 _____ C:\Users\Petr Štolfa\Desktop\Viry 2.txt
2015-06-05 23:31 - 2015-06-05 23:31 - 00002902 _____ C:\Users\Petr Štolfa\Desktop\Viry.txt
2015-06-05 19:49 - 2015-06-07 10:47 - 00136408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-06-05 19:49 - 2015-06-05 19:49 - 00001134 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-06-05 19:49 - 2015-06-05 19:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-06-05 19:49 - 2015-06-05 19:49 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-06-05 19:49 - 2015-06-05 19:49 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-06-05 19:49 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-06-05 19:49 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-06-05 19:49 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-06-05 19:45 - 2015-06-05 19:46 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Petr Štolfa\Downloads\mbam-setup-2.1.6.1022.exe
2015-06-05 19:34 - 2015-06-05 19:38 - 00000000 ____D C:\AdwCleaner
2015-06-05 19:32 - 2015-06-05 19:32 - 02231296 _____ C:\Users\Petr Štolfa\Desktop\adwcleaner_4.206.exe
2015-06-05 10:00 - 2015-06-08 09:30 - 00000000 ____D C:\FRST
2015-06-05 09:57 - 2015-06-05 09:57 - 00112640 _____ (forum.viry.cz) C:\Users\Petr Štolfa\Downloads\Nepotvrzeno 990163.crdownload
2015-06-05 09:55 - 2015-06-05 09:56 - 02108928 _____ (Farbar) C:\Users\Petr Štolfa\Desktop\FRST64.exe
2015-06-04 23:37 - 2015-06-04 23:42 - 168744216 _____ (Microsoft Corporation) C:\Users\Petr Štolfa\Downloads\msert.exe
2015-06-04 22:55 - 2015-06-07 00:19 - 00000000 ____D C:\Users\Petr Štolfa\Downloads\GENERATION KILL
2015-06-04 22:54 - 2015-06-04 22:54 - 00025156 _____ C:\Users\Petr Štolfa\Downloads\[CzT]GENERATION_KILL (1).torrent
2015-06-04 00:38 - 2015-06-04 00:38 - 00000000 ____D C:\Users\Petr Štolfa\AppData\Roaming\NVIDIA
2015-06-04 00:37 - 2015-06-04 00:37 - 00000000 ____D C:\Users\Petr Štolfa\AppData\Roaming\java
2015-06-04 00:35 - 2015-06-04 00:35 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-06-04 00:35 - 2015-06-04 00:35 - 00000000 ____D C:\ProgramData\Sun
2015-06-04 00:35 - 2015-06-04 00:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-06-04 00:34 - 2015-06-04 00:34 - 00000000 ____D C:\ProgramData\Oracle
2015-06-04 00:34 - 2015-06-04 00:34 - 00000000 ____D C:\Program Files (x86)\Java
2015-06-04 00:32 - 2015-06-04 00:32 - 00562272 _____ (Oracle Corporation) C:\Users\Petr Štolfa\Downloads\chromeinstall-8u45.exe
2015-06-04 00:32 - 2015-06-04 00:32 - 00002188 _____ C:\Users\Petr Štolfa\Desktop\Minecraft.lnk
2015-06-04 00:32 - 2015-06-04 00:32 - 00000000 ____D C:\Users\Petr Štolfa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
2015-06-04 00:31 - 2015-06-07 22:34 - 00000000 ____D C:\Users\Petr Štolfa\AppData\Roaming\.minecraft
2015-06-04 00:20 - 2015-06-04 00:28 - 163759374 ____R (TeamExtreme ) C:\Users\Petr Štolfa\Downloads\Minecraft 1.8.exe
2015-06-04 00:20 - 2015-06-04 00:20 - 00000000 ____D C:\Users\Petr Štolfa\Downloads\Minecraft 1.7.2
2015-06-04 00:19 - 2015-06-04 00:19 - 00016948 _____ C:\Users\Petr Štolfa\Downloads\[CzT]Minecraft_1_7_2_2013_CZ_.torrent
2015-06-04 00:19 - 2015-06-04 00:19 - 00013040 _____ C:\Users\Petr Štolfa\Downloads\[CzT]Minecraft_1_8_0_CZ_SK_.torrent
2015-06-04 00:16 - 2015-06-04 00:16 - 05226020 _____ C:\Users\Petr Štolfa\Downloads\Minecraft-1.9.8.rar
2015-06-03 21:43 - 2015-06-03 22:19 - 742442342 _____ C:\Users\Petr Štolfa\Downloads\seznam-se-bezpecne-3 (1).mp4
2015-06-03 21:29 - 2015-06-03 21:43 - 246417924 _____ C:\Users\Petr Štolfa\Downloads\seznam-se-bezpecne-3.mp4
2015-06-01 21:50 - 2015-06-01 21:50 - 05555070 _____ C:\Users\Petr Štolfa\Downloads\Jan_OTCENASEK__Romeo_Julie_a_tma.rar
2015-06-01 21:48 - 2015-06-01 21:50 - 25952147 _____ C:\Users\Petr Štolfa\Downloads\Jan-Ot_en_ek---Romeo_Julie-a-tma_pd.rar
2015-06-01 19:44 - 2015-06-01 20:07 - 00000000 ____D C:\Users\Petr Štolfa\Downloads\Elysium (2013) [1080p]
2015-06-01 13:53 - 2015-06-08 09:15 - 00001155 _____ C:\WINDOWS\setupact.log
2015-06-01 13:53 - 2015-06-01 13:53 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-06-01 13:51 - 2015-06-08 09:14 - 00050378 _____ C:\WINDOWS\PFRO.log
2015-06-01 13:51 - 2015-06-01 13:52 - 01026960 _____ C:\WINDOWS\Minidump\060115-33281-01.dmp
2015-05-31 20:22 - 2015-05-31 20:22 - 00098183 _____ C:\Users\Petr Štolfa\Downloads\Avengers-Age-of-Ultron(0000255441).srt
2015-05-31 18:54 - 2015-05-31 18:54 - 00000000 ____D C:\Users\Petr Štolfa\Downloads\Avengers.Age.of.Ultron.2015.TCRip.XVID.AC3.HQ.Hive-CM8
2015-05-30 11:48 - 2015-05-30 11:48 - 02071033 _____ C:\Users\Petr Štolfa\Downloads\roc4306-manual.zip
2015-05-30 11:18 - 2015-05-30 11:18 - 01242560 _____ (LiveSoft Action) C:\Users\Petr Štolfa\Downloads\UNIVERSAL URC-L-639 1 user guide provided through pdfretriever.com.exe
2015-05-30 09:55 - 2015-05-30 09:55 - 00410336 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-05-30 09:54 - 2015-05-30 09:54 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-05-30 09:54 - 2015-05-30 09:54 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-05-30 09:54 - 2015-05-30 09:54 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rgb9rast.dll
2015-05-30 09:53 - 2015-05-30 09:53 - 03097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-05-30 09:53 - 2015-05-30 09:53 - 02483712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-05-30 09:53 - 2015-05-30 09:53 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2015-05-30 09:53 - 2015-05-30 09:53 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2015-05-30 09:53 - 2015-05-30 09:53 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2015-05-30 09:53 - 2015-05-30 09:53 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2015-05-30 09:52 - 2015-05-30 09:52 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-05-30 09:52 - 2015-05-30 09:52 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-05-30 09:52 - 2015-05-30 09:52 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-05-30 09:52 - 2015-05-30 09:52 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-05-30 09:52 - 2015-05-30 09:52 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-05-30 09:52 - 2015-05-30 09:52 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2015-05-30 09:52 - 2015-05-30 09:52 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-05-30 09:52 - 2015-05-30 09:52 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2015-05-30 09:52 - 2015-05-30 09:52 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2015-05-30 09:52 - 2015-05-30 09:52 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2015-05-30 09:52 - 2015-05-30 09:52 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-05-30 09:52 - 2015-05-30 09:52 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-05-30 09:52 - 2015-05-30 09:52 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-05-30 09:52 - 2015-05-30 09:52 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 18823168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 15158784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 02485056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-05-30 09:50 - 2015-05-30 09:50 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 01454080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2015-05-30 09:50 - 2015-05-30 09:50 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2015-05-30 09:50 - 2015-05-30 09:50 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 01084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2015-05-30 09:50 - 2015-05-30 09:50 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00952896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2015-05-30 09:50 - 2015-05-30 09:50 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2015-05-30 09:50 - 2015-05-30 09:50 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00786120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00551232 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2015-05-30 09:50 - 2015-05-30 09:50 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00473408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-05-30 09:50 - 2015-05-30 09:50 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-05-30 09:50 - 2015-05-30 09:50 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2015-05-30 09:50 - 2015-05-30 09:50 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2015-05-30 09:50 - 2015-05-30 09:50 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2015-05-30 09:50 - 2015-05-30 09:50 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2015-05-30 09:50 - 2015-05-30 09:50 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2015-05-30 09:50 - 2015-05-30 09:50 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2015-05-30 09:50 - 2015-05-30 09:50 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2015-05-30 09:50 - 2015-05-30 09:50 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2015-05-30 09:50 - 2015-05-30 09:50 - 00108544 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2015-05-30 09:50 - 2015-05-30 09:50 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2015-05-30 09:50 - 2015-05-30 09:50 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2015-05-30 09:50 - 2015-05-30 09:50 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-05-30 09:50 - 2015-05-30 09:50 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2015-05-30 09:50 - 2015-05-30 09:50 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2015-05-30 09:50 - 2015-05-30 09:50 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00059712 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2015-05-30 09:50 - 2015-05-30 09:50 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-05-30 09:50 - 2015-05-30 09:50 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00051008 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2015-05-30 09:50 - 2015-05-30 09:50 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2015-05-30 09:50 - 2015-05-30 09:50 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00039744 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2015-05-30 09:50 - 2015-05-30 09:50 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2015-05-30 09:50 - 2015-05-30 09:50 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00032256 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2015-05-30 09:50 - 2015-05-30 09:50 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2015-05-30 09:50 - 2015-05-30 09:50 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2015-05-30 09:50 - 2015-05-30 09:50 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2015-05-30 09:50 - 2015-05-30 09:50 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2015-05-30 09:50 - 2015-05-30 09:50 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2015-05-30 09:45 - 2015-05-30 09:45 - 02171904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2015-05-30 09:45 - 2015-05-30 09:45 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2015-05-30 09:45 - 2015-05-30 09:45 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2015-05-30 09:45 - 2015-05-30 09:45 - 00273240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2015-05-30 09:25 - 2015-05-30 09:25 - 01066992 _____ C:\WINDOWS\Minidump\053015-60453-01.dmp
2015-05-29 18:17 - 2015-05-29 18:17 - 00001582 _____ C:\Users\Public\Desktop\The Sims 4.lnk
2015-05-28 12:53 - 2014-07-17 21:08 - 00000819 _____ C:\Users\Účet 2\Downloads\µTorrent.lnk
2015-05-28 12:52 - 2014-07-17 21:08 - 00000819 _____ C:\Users\Účet 2\Desktop\µTorrent.lnk
2015-05-28 12:20 - 2015-05-28 12:20 - 00017608 _____ C:\Users\Petr Štolfa\Downloads\[CzT]The_Sims_4_2014_CZ_.torrent
2015-05-26 21:52 - 2015-05-26 21:53 - 14145024 _____ C:\Users\Petr Štolfa\Downloads\Prague-.-KAJ.ppt
2015-05-24 23:13 - 2015-05-24 23:15 - 19311231 _____ C:\Users\Petr Štolfa\Downloads\P5090222.MOV
2015-05-24 23:06 - 2015-05-21 22:00 - 35945152 _____ C:\Users\Petr Štolfa\Downloads\VIDEO0049.mp4
2015-05-24 23:06 - 2015-05-21 21:54 - 19558717 _____ C:\Users\Petr Štolfa\Downloads\VIDEO0048.mp4
2015-05-24 23:06 - 2015-05-21 21:50 - 19346480 _____ C:\Users\Petr Štolfa\Downloads\VIDEO0047.mp4
2015-05-24 23:06 - 2015-05-21 21:49 - 02245707 _____ C:\Users\Petr Štolfa\Downloads\VIDEO0046.mp4
2015-05-24 23:06 - 2015-05-21 20:46 - 13437500 _____ C:\Users\Petr Štolfa\Downloads\VIDEO0045.mp4
2015-05-24 23:06 - 2015-05-21 19:44 - 58932994 _____ C:\Users\Petr Štolfa\Downloads\VIDEO0044.mp4
2015-05-24 23:06 - 2015-05-21 19:07 - 06955913 _____ C:\Users\Petr Štolfa\Downloads\VIDEO0043.mp4
2015-05-24 23:06 - 2015-05-21 19:06 - 07339706 _____ C:\Users\Petr Štolfa\Downloads\VIDEO0042.mp4
2015-05-24 23:06 - 2015-05-21 19:03 - 08784946 _____ C:\Users\Petr Štolfa\Downloads\VIDEO0041.mp4
2015-05-24 19:27 - 2015-05-24 19:33 - 91636500 _____ C:\Users\Petr Štolfa\Downloads\Kabát_-_Do_pekla_do_nebe_(2015).rar
2015-05-23 22:43 - 2015-05-23 22:44 - 10586530 _____ C:\Users\Petr Štolfa\Downloads\VIDEO0012 (1).mp4
2015-05-22 23:03 - 2015-05-22 23:13 - 163558710 _____ C:\Users\Petr Štolfa\Downloads\Večírek.rar
2015-05-18 18:41 - 2015-05-18 18:42 - 00801314 _____ C:\Users\Petr Štolfa\Downloads\Opravene_zaznamove_archy_DT_jaro_2015 (1).zip
2015-05-18 18:41 - 2015-05-18 18:41 - 00062062 _____ C:\Users\Petr Štolfa\Downloads\Vypis_vysledku_DT_jaro_2015 (1).zip
2015-05-17 23:19 - 2015-05-17 23:21 - 00000000 ____D C:\Users\Petr Štolfa\Downloads\Big.Hero.6.2014.480p.BDRip.XviD.AC3.CZ-4play
2015-05-17 23:07 - 2015-05-17 23:07 - 00015613 _____ C:\Users\Petr Štolfa\Downloads\[CzT]Velka_sestka_Big_Hero_6_2014_CZ_.torrent
2015-05-17 14:27 - 2015-05-17 14:27 - 00012365 _____ C:\Users\Petr Štolfa\Downloads\MATURITA-.odt
2015-05-16 14:25 - 2015-06-08 09:30 - 00000980 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-16 14:25 - 2015-06-08 09:17 - 00000976 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-16 09:21 - 2015-05-16 09:21 - 00801314 _____ C:\Users\Petr Štolfa\Downloads\Opravene_zaznamove_archy_DT_jaro_2015.zip
2015-05-15 18:44 - 2015-05-15 18:44 - 00062062 _____ C:\Users\Petr Štolfa\Downloads\Vypis_vysledku_DT_jaro_2015.zip
2015-05-15 18:35 - 2015-05-15 18:36 - 00823536 _____ C:\WINDOWS\Minidump\051515-31750-01.dmp
2015-05-13 17:17 - 2015-05-05 19:59 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-05-13 17:17 - 2015-05-05 19:59 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-05-13 15:52 - 2015-04-24 23:32 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-05-13 15:52 - 2015-03-05 01:09 - 01429504 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-05-13 13:15 - 2015-04-30 22:35 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 13:15 - 2015-04-30 22:35 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-12 19:38 - 2015-04-10 02:34 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-05-12 19:38 - 2015-04-10 02:11 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-05-12 19:38 - 2015-03-17 19:26 - 00467776 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-05-12 19:38 - 2015-03-09 04:02 - 00057856 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-05-12 19:36 - 2015-05-01 01:05 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-05-12 19:36 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-05-12 19:36 - 2015-04-14 00:48 - 04180480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-05-12 19:36 - 2015-04-10 03:00 - 01996800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-05-12 19:36 - 2015-04-10 02:50 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-05-12 19:36 - 2015-04-10 02:26 - 01560576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-05-12 19:36 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-05-12 19:36 - 2015-04-03 02:35 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-05-12 19:36 - 2015-04-03 02:14 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2015-05-12 19:36 - 2015-04-02 00:22 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2015-05-12 19:36 - 2015-04-02 00:20 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2015-05-12 19:36 - 2015-04-01 05:45 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2015-05-12 19:36 - 2015-04-01 04:31 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2015-05-12 19:36 - 2015-03-20 03:56 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-05-12 19:36 - 2015-03-13 04:02 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2015-05-12 19:36 - 2015-03-13 03:11 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-05-12 19:36 - 2015-03-13 02:39 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-05-12 19:36 - 2015-03-11 03:49 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2015-05-12 19:36 - 2015-03-11 03:09 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2015-05-12 19:36 - 2015-03-06 04:47 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2015-05-12 19:36 - 2015-03-04 03:32 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2015-05-12 19:36 - 2015-03-04 03:12 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2015-05-12 19:36 - 2015-02-18 01:19 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2015-05-12 19:36 - 2015-01-30 02:53 - 02819584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2015-05-12 19:36 - 2014-11-14 08:58 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll
2015-05-12 19:35 - 2015-04-21 19:14 - 24971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-05-12 19:35 - 2015-04-21 18:50 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-05-12 19:35 - 2015-04-21 18:50 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-05-12 19:35 - 2015-04-21 18:49 - 02885120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-05-12 19:35 - 2015-04-21 18:37 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-05-12 19:35 - 2015-04-21 18:35 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-05-12 19:35 - 2015-04-21 18:31 - 06025728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-05-12 19:35 - 2015-04-21 18:24 - 19691008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-05-12 19:35 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2015-05-12 19:35 - 2015-04-21 18:11 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-05-12 19:35 - 2015-04-21 18:09 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-05-12 19:35 - 2015-04-21 18:08 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-05-12 19:35 - 2015-04-21 18:07 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-05-12 19:35 - 2015-04-21 18:05 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-05-12 19:35 - 2015-04-21 18:04 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-05-12 19:35 - 2015-04-21 17:59 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-05-12 19:35 - 2015-04-21 17:58 - 00664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-05-12 19:35 - 2015-04-21 17:52 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-05-12 19:35 - 2015-04-21 17:49 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-05-12 19:35 - 2015-04-21 17:49 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-05-12 19:35 - 2015-04-21 17:49 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-05-12 19:35 - 2015-04-21 17:46 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-05-12 19:35 - 2015-04-21 17:40 - 14401536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-05-12 19:35 - 2015-04-21 17:38 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-05-12 19:35 - 2015-04-21 17:37 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-05-12 19:35 - 2015-04-21 17:36 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-05-12 19:35 - 2015-04-21 17:32 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-05-12 19:35 - 2015-04-21 17:31 - 04305920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-05-12 19:35 - 2015-04-21 17:28 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-05-12 19:35 - 2015-04-21 17:27 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-05-12 19:35 - 2015-04-21 17:26 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-05-12 19:35 - 2015-04-21 17:26 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-05-12 19:35 - 2015-04-21 17:25 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-05-12 19:35 - 2015-04-21 17:17 - 12828672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-05-12 19:35 - 2015-04-21 17:15 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-05-12 19:35 - 2015-04-21 17:03 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-05-12 19:35 - 2015-04-21 17:02 - 01882112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-05-12 19:35 - 2015-04-21 16:58 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-05-12 19:35 - 2015-04-21 16:56 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-05-12 19:35 - 2015-03-30 07:47 - 00561928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-05-12 19:35 - 2015-03-27 05:27 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-05-12 19:35 - 2015-03-27 04:50 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-05-12 19:35 - 2015-03-27 04:48 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-05-12 19:34 - 2015-03-13 06:03 - 00239424 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-05-12 19:34 - 2015-03-13 06:03 - 00154432 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2015-05-12 19:34 - 2015-03-06 05:08 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2015-05-12 19:34 - 2015-03-06 04:43 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2015-05-09 22:51 - 2015-05-09 22:51 - 00080223 _____ C:\Users\Petr Štolfa\Downloads\Fifty-Shades-of-Grey(0000251436).srt
2015-05-09 11:16 - 2015-05-09 11:16 - 00744790 _____ C:\Users\Petr Štolfa\Downloads\Kom-od-Frídi (1).zip
2015-05-09 09:00 - 2015-05-09 09:02 - 01023616 _____ C:\WINDOWS\Minidump\050915-34468-01.dmp

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-08 09:32 - 2014-07-17 21:07 - 00000000 ____D C:\Users\Petr Štolfa\AppData\Roaming\uTorrent
2015-06-08 09:27 - 2014-07-18 18:31 - 01333610 _____ C:\WINDOWS\WindowsUpdate.log
2015-06-08 09:27 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-06-08 09:26 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-06-08 09:23 - 2014-07-31 15:48 - 00003998 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{0D569331-FB0F-485D-8A13-CD4E26B175FA}
2015-06-08 09:18 - 2014-07-18 19:23 - 00000000 ___DO C:\Users\Petr Štolfa\OneDrive
2015-06-08 09:15 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-06-08 09:14 - 2014-08-01 18:58 - 00000000 ____D C:\WINDOWS\Minidump
2015-06-08 00:44 - 2014-07-18 10:15 - 00000000 ____D C:\Users\Petr Štolfa\AppData\Local\CrashDumps
2015-06-07 23:57 - 2014-10-02 21:05 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-06-07 10:25 - 2014-07-17 18:50 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3790269049-1540372019-2988136619-1001
2015-06-07 01:20 - 2014-07-17 23:28 - 00000000 ____D C:\Users\Petr Štolfa\AppData\Roaming\vlc
2015-06-07 00:57 - 2014-03-18 17:33 - 01745984 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-06-07 00:57 - 2014-03-18 16:54 - 00739924 _____ C:\WINDOWS\system32\perfh005.dat
2015-06-07 00:57 - 2014-03-18 16:54 - 00151610 _____ C:\WINDOWS\system32\perfc005.dat
2015-06-06 20:04 - 2014-07-17 19:46 - 00000000 ____D C:\Program Files (x86)\WarThunder
2015-06-06 00:18 - 2014-07-28 22:24 - 00000000 ____D C:\Users\Petr Štolfa\AppData\Local\LogMeIn Hamachi
2015-06-06 00:17 - 2014-03-18 17:10 - 00000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2015-06-06 00:17 - 2013-08-22 15:25 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-06-05 19:30 - 2014-11-01 19:07 - 00000000 ____D C:\Users\Petr Štolfa\AppData\Roaming\Seznam.cz
2015-06-05 19:29 - 2014-11-18 22:52 - 00000000 ____D C:\Program Files (x86)\IObit
2015-06-05 19:26 - 2014-07-18 16:48 - 00000000 ____D C:\Users\Petr Štolfa\Documents\Škola
2015-06-05 19:23 - 2015-03-31 19:41 - 00000000 ____D C:\Users\Petr Štolfa\Documents\DCIM
2015-06-04 14:34 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2015-06-04 14:07 - 2014-07-21 09:27 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3790269049-1540372019-2988136619-1003
2015-06-04 14:04 - 2014-11-04 14:00 - 00000000 ____D C:\Users\Účet 2\AppData\Roaming\Seznam.cz
2015-06-03 21:02 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-06-01 14:07 - 2014-07-26 11:02 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-06-01 13:52 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2015-06-01 13:52 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\setup
2015-05-30 09:55 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-05-30 09:42 - 2014-08-13 12:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolní Kounice v2.0
2015-05-30 09:28 - 2014-11-18 22:52 - 00000000 ____D C:\ProgramData\ProductData
2015-05-30 09:25 - 2013-08-22 16:44 - 00580976 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-05-29 18:19 - 2014-09-20 18:51 - 00000000 ____D C:\Users\Petr Štolfa\Documents\Electronic Arts
2015-05-29 18:17 - 2015-01-10 20:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\hry
2015-05-29 17:45 - 2014-10-31 23:08 - 00000000 ____D C:\Hry
2015-05-28 13:05 - 2014-07-18 22:39 - 00000000 ____D C:\Users\Účet 2\Documents\Bluetooth Folder
2015-05-28 12:57 - 2015-02-20 15:13 - 00000000 ____D C:\Users\Účet 2\AppData\Local\CrashDumps
2015-05-25 20:31 - 2014-07-17 19:06 - 00002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-05-23 22:39 - 2015-04-22 20:15 - 00000074 _____ C:\Users\Petr Štolfa\Desktop\Filmy.txt
2015-05-16 14:25 - 2014-07-17 19:04 - 00003952 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-16 14:25 - 2014-07-17 19:04 - 00003716 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-05-14 00:56 - 2014-07-18 18:42 - 00000000 ____D C:\Users\Petr Štolfa
2015-05-13 17:10 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-05-13 17:10 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2015-05-13 13:13 - 2014-07-17 20:00 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-05-13 13:07 - 2014-07-17 20:00 - 140425016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-05-13 12:56 - 2014-03-18 17:10 - 00000000 ____D C:\Program Files\Windows Journal
2015-05-10 10:05 - 2015-04-24 20:29 - 00000000 ____D C:\WINDOWS\system32\NV

==================== Files in the root of some directories =======

2014-12-28 11:56 - 2014-12-28 11:56 - 0000103 _____ () C:\Users\Petr Štolfa\AppData\Roaming\settings.xml
2015-01-14 22:26 - 2015-01-14 22:26 - 0007605 _____ () C:\Users\Petr Štolfa\AppData\Local\Resmon.ResmonCfg
2014-10-26 18:19 - 2014-10-26 18:19 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Some files in TEMP:
====================
C:\Users\Petr Štolfa\AppData\Local\Temp\Quarantine.exe
C:\Users\Petr Štolfa\AppData\Local\Temp\sqlite3.dll
C:\Users\Petr Štolfa\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
C:\Users\Účet 2\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Administrator.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Petr �tolfa\Desktop" je 4 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

Otevrete si poznamkovy blok a zkopirujte do nej tento skript Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.

Fix result of Farbar Recovery Scan Tool (x64) Version:03-06-2015
Ran by Petr Štolfa at 2015-06-08 20:16:54 Run:1
Running from C:\Users\Petr Štolfa\Desktop
Loaded Profiles: Petr Štolfa (Available Profiles: Petr Štolfa & Účet 2)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM-x32\...\Run: [LManager] => [X]
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\Run: [uTorrent] => C:\Users\Petr Štolfa\AppData\Roaming\uTorrent\uTorrent.exe [1694560 2015-05-06] (BitTorrent Inc.)
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\Run: [Akamai NetSession Interface] => "C:\Users\Petr Štolfa\AppData\Local\Akamai\netsession_win.exe"
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\Run: [Save Serp Now] => C:\Users\Petr Štolfa\AppData\Roaming\SSN\updssn.exe [26112 2014-11-21] ()
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\Run: [Bloody2] => C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe [15806976 2014-12-02] ()
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\Run: [WinMng] => C:\Users\Petr Štolfa\AppData\Roaming\Microsoft\BHvr.exe [9216 2015-03-08] ()
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_169_Plugin.exe [927920 2015-04-14] (Adobe Systems Incorporated)
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\...\Policies\Explorer: []

BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll No File

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Administrator.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-17 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14 268464]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-17 116648]

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\LManager => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent => value removed successfully
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value removed successfully
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Akamai NetSession Interface => value removed successfully
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Save Serp Now => value removed successfully
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Bloody2 => value removed successfully
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\Software\Microsoft\Windows\CurrentVersion\Run\\WinMng => value removed successfully
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce\\FlashPlayerUpdate => value not found.
HKU\S-1-5-21-3790269049-1540372019-2988136619-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\ => value removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}" => key removed successfully
"HKCR\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814}" => key removed successfully
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully.
C:\WINDOWS\Tasks\Uninstaller_SkipUac_Administrator.job => moved successfully.
gupdate => Service removed successfully
AdobeFlashPlayerUpdateSvc => Service removed successfully
gupdatem => Service removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully.
Hosts restored successfully.
EmptyTemp: => 1.9 GB temporary data Removed.


The system needed a reboot..

==== End of Fixlog 20:19:38 ====

Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

vyosek píše: DelFix https://toolslib.net/downloads/finish/2/

• Stahnete a spustte
• Ponechte zatrzitkou pouze u volby Remove disinfection tools
• Kliknete na Run

Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)

Defragmentujte disk(y) (SSD Disky ne!)
Stahnete program Defraggler https://www.piriform.com/defraggler/download/standard
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.




Pak napiste, jak je na tom pc.

Dobře, udělám to až zítra, dnes už bych to nestihl. Zatím moc děkuji za pomoc, nevím co bych si bez vás počal Chtěl jsem se ještě zeptat, počítač tak 3-4 měsíce dělá to, že se třeba jednou za hodinu na momentík sekne, pak problikne display a na ploše znovu nabíhají ikony, někdy to vypne i otevřené průzkumníky. Myslíte, že by to mohlo přestat? Díky

Petr41 píše:nevím co bych si bez vás počal

Asi byste sel jinam

Petr41 píše:Chtěl jsem se ještě zeptat, počítač tak 3-4 měsíce dělá to, že se třeba jednou za hodinu na momentík sekne, pak problikne display a na ploše znovu nabíhají ikony, někdy to vypne i otevřené průzkumníky. Myslíte, že by to mohlo přestat?

Mohlo by, uvidime, kdyztak koukneme hlobeji

Nemate zac!



18.7. http://forum.viry.cz/viewtopic.php?f=12&t=123975