VIRY.CZ

Dobry den. Chcel by som Vas poprosit o kontrolu. Nejde o nic zavazne, len obcas PC zamrzne, na 4-5s. Mam tyzden novy NB, s Win7 od vyroby. Pouzivam BitDefender,Ccleaner,SuperAntispyware,Mbam. Je mozne ze PC moze spomalovat mnozstvo aplikacii od Lenova? Dakujem.

info.txt logfile of random's system information tool 1.09 2012-10-24 13:16:14

======Uninstall list======

-->C:\Program Files\Conexant\CxAudMsg\SETUP64.EXE -U -ICxAudMsg
-->C:\Windows\SysWOW64\Macromed\Flash\uninstall_activeX.exe
-->MsiExec.exe /X{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613} /q
-->RunDll32.exe setupapi.dll,InstallHinfSection DefaultUninstall.NTx86 130 C:\Program Files (x86)\Lenovo\RapidBoot\lnvrb.inf
Absolute Reminder-->MsiExec.exe /X{40F4FF7A-B214-4453-B973-080B09CED019}
Adobe AIR-->c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{14DC0059-00F1-4F62-BD1A-AB23CD51A95E}
Adobe Flash Player 10 ActiveX-->MsiExec.exe /X{B7B3E9B3-FB14-4927-894B-E9124509AF5A}
Adobe Reader XI - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-AB0000000001}
Assassin's Creed-->C:\Program Files (x86)\InstallShield Installation Information\{8CFA9151-6404-409A-AF22-4632D04582FD}\setup.exe -runfromtemp -l0x0009 -removeonly
Battlefield 3™-->"C:\Program Files (x86)\Common Files\EAInstaller\Battlefield 3\Cleanup.exe" uninstall_game -autologging
Bitdefender Total Security 2013-->C:\Program Files\Common Files\Bitdefender\SetupInformation\{34480DEE-54D6-4985-A817-CA30E9BBC94C}\installer.exe
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Conexant HD Audio-->C:\Program Files\CONEXANT\CNXT_AUDIO_HDA\UIU64a.exe -U -G -IEDGCC2wa.inf
Corel WinDVD-->MsiExec.exe /X{5C1F18D2-F6B7-4242-B803-B5A78648185D}
CPUID CPU-Z 1.61.5-->"C:\Program Files\CPUID\CPU-Z\unins000.exe"
Create Recovery Media-->MsiExec.exe /X{50DC5136-21E8-48BC-97E5-1AD055F6B0B6}
Crysis(R)-->MsiExec.exe /I{000E79B7-E725-4F01-870A-C12942B7F8E4}
D3DX10-->MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}
DAEMON Tools Lite-->C:\Program Files (x86)\DAEMON Tools Lite\uninst.exe
Dev-C++ 5 beta 9 release (4.9.9.2)-->"C:\Dev-Cpp\uninstall.exe"
EVEREST Ultimate Edition v5.50-->"C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\unins000.exe"
Evernote v. 4.2.3-->MsiExec.exe /X{F761359C-9CED-45AE-9A51-9D6605CD55C4}
Fingerprint Reader-->MsiExec.exe /X{C5BB9380-D729-410A-A440-061EBCADCCB9}
Fraps-->"C:\Fraps\uninstall.exe"
GIMP 2.8.2-->"C:\Program Files\GIMP 2\uninst\unins000.exe"
Google Chrome-->"C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\Installer\setup.exe" --uninstall --multi-install --chrome --system-level --verbose-logging
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Integrated Camera Driver Installer Package Ver.1.2.1.18-->"C:\Program Files (x86)\InstallShield Installation Information\{A78800AF-1779-4AE8-8EBE-16E1BE727C71}\setup.exe" -runfromtemp -l0x0009 anything -removeonly
Intel AppUp(SM) center-->C:\Program Files (x86)\Intel\IntelAppStore\run_uninstaller.exe
Intel(R) Control Center-->C:\Program Files (x86)\Intel\Intel Control Center\uninstaller\SetupICC.exe -uninstall -force -confirm
Intel(R) Manageability Engine Firmware Recovery Agent-->MsiExec.exe /X{A6C48A9F-694A-4234-B3AA-62590B668927}
Intel(R) Management Engine Components-->C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
Intel(R) OpenCL CPU Runtime-->C:\Program Files (x86)\Intel\OpenCL SDK\2.0\Uninstall\setup.exe -uninstall
Intel(R) Processor Graphics-->C:\Program Files (x86)\Intel\Intel(R) Processor Graphics\Uninstall\setup.exe -uninstall
Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed-->MsiExec.exe /X{37EC048A-81A2-452A-8D1F-3BE2018E767D}
Intel(R) Update Manager-->MsiExec.exe /X{608E1B9B-A2E8-4A1F-8BAB-874EB0DD25E3}
Intel(R) WiDi-->MsiExec.exe /X{93F34C5C-ACAA-48F3-9B26-70359A117F12}
Intel® PROSet/Wireless WiFi Software-->MsiExec.exe /I{E97F409F-9E1C-42A0-B72D-765A78DF3696}
Intel® Trusted Connect Service Client-->MsiExec.exe /X{09536BA1-E498-4CC3-B834-D884A67D7E34}
Junk Mail filter update-->MsiExec.exe /I{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
Lenovo Auto Scroll Utility-->rundll32.exe "C:\Program Files\Lenovo\VIRTSCRL\cleanup.dll",InfUninstall DefaultUninstall.LH 132 C:\Program Files\Lenovo\VIRTSCRL\tpdu_vs.inf
Lenovo Patch Utility 64 bit-->MsiExec.exe /X{0369F866-2CE0-4EB9-B426-88FA122C6E82}
Lenovo Patch Utility-->MsiExec.exe /X{6E6E7725-C7BC-4C39-8B3F-14B67331A120}
Lenovo Power Management Driver-->RunDll32.exe tpinspm.dll,Uninstall
Lenovo Registration-->MsiExec.exe /X{6707C034-ED6B-4B6A-B21F-969B3606FBDE}
Lenovo SimpleTap-->MsiExec.exe /X{BF601122-9F0A-41A9-BA06-3158D9FB4B80}
Lenovo Solution Center-->MsiExec.exe /X{DD00F699-6861-4DCF-A19F-8CF61E5E28ED}
Lenovo Solutions for Small Business Customizations-->MsiExec.exe /X{5B5DEF99-85E9-423D-A1A3-B83202697B09}
Lenovo Solutions for Small Business-->C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Uninstall\setup.exe -uninstall
Lenovo User Guide-->MsiExec.exe /X{13F59938-C595-479C-B479-F171AB9AF64F}
Lenovo Warranty Information-->MsiExec.exe /X{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}
Lenovo Welcome-->MsiExec.exe /X{2DC26D10-CC6A-494F-BEA3-B5BC21126D5E}
Malwarebytes Anti-Malware verzia 1.65.1.1000-->"C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe"
MATLAB R2008a-->D:\Matlab\uninstall\uninstall.exe D:\Matlab\
Mesh Runtime-->MsiExec.exe /I{8C6D6116-B724-4810-8F2D-D047E6B7D68E}
Message Center Plus-->MsiExec.exe /X{3849486C-FF09-4F5D-B491-3E179D58EE15}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /x64 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
Microsoft Office-->MsiExec.exe /X{95140000-0070-0000-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2005 Redistributable (x64)-->MsiExec.exe /X{071c9b48-7c32-4621-a0ac-3f809523288f}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17-->MsiExec.exe /X{8220EEFE-38CD-377E-8595-13398D740ACE}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148-->MsiExec.exe /X{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161-->MsiExec.exe /X{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219-->MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
MiniTool Partition Wizard Home Edition 7.6.1-->"C:\Program Files (x86)\MiniTool Partition Wizard Home Edition 7.6.1\unins000.exe"
MSVCRT_amd64-->MsiExec.exe /I{D0B44725-3666-492D-BEF6-587A14BD9BD9}
MSVCRT-->MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
NVIDIA Graphics Driver 296.90-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL",UninstallPackage Display.Driver
NVIDIA Update 1.7.13-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL",UninstallPackage Display.Update
On Screen Display-->rundll32.exe "C:\Program Files\Lenovo\HOTKEY\cleanup.dll",InfUninstall DefaultUninstall.LH 132 C:\Program Files\Lenovo\HOTKEY\tphk_tp.inf
OpenOffice.org 3.4.1-->MsiExec.exe /I{73736FBF-5A67-4AB8-A1BF-DFCAB9467F3F}
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení-->MsiExec.exe /I{B6190387-0036-4BEB-8D74-A0AFC5F14706}
Power Manager-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}\Setup.exe" -l0x9 -AddRemove
RapidBoot HDD Accelerator-->C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\Uninstall.exe
RapidBoot Shield-->MsiExec.exe /X{5E2652DF-743F-482B-A593-C95F431A5769}
Realtek Ethernet Controller Driver-->C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -removeonly
Realtek PCIE Card Reader-->"C:\Program Files (x86)\InstallShield Installation Information\{C1594429-8296-4652-BF54-9DBE4932A44C}\setup.exe" -runfromtemp -removeonly
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {6AF6C62E-4E3D-33BF-A591-9E4D53BDF22F} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {E59B2174-E924-311F-8549-AD714C14664D} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {DA36C2E5-6B34-3A6A-9C0A-7D1CC1C5A768} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {7B82A51A-768B-3A7B-ADFA-F777097A8079} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {E40184A4-4A61-3D2E-9035-CB6E1E610E07} /parameterfolder Client
Skype™ 5.10-->MsiExec.exe /X{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}
Spybot - Search & Destroy-->"C:\Program Files (x86)\Spybot - Search & Destroy\unins000.exe"
SpywareBlaster 4.6-->"C:\Program Files (x86)\SpywareBlaster\unins000.exe"
SugarSync Manager-->C:\Program Files (x86)\SugarSync\uninstall.exe
SUPERAntiSpyware-->"C:\Program Files\SUPERAntiSpyware\Uninstall.exe"
System Update-->MsiExec.exe /X{25C64847-B900-48AD-A164-1B4F9B774650}
ThinkPad UltraNav Driver-->rundll32.exe "%ProgramFiles%\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
ThinkVantage Active Protection System-->MsiExec.exe /X{46A84694-59EC-48F0-964C-7E76E9F8A2ED}
ThinkVantage Communications Utility-->"C:\Program Files\Lenovo\Communications Utility\unins000.exe"
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {29C7BE97-DE59-37A2-A687-2ADD5321948A} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {7D799A81-5661-3159-BF92-754161CED6E6} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4DFA8287-EA36-3469-99FE-F568FEC81653} /parameterfolder Client
VIP Access-->MsiExec.exe /X{E8D46836-CD55-453C-A107-A59EC51CB8DC}
VLC media player 2.0.3-->C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
Windows Driver Package - Intel (iaStor) hdc (11/29/2011 11.0.0.1032)-->C:\PROGRA~1\DIFX\8730326CFC0D32D8\DPInst.exe /u C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_amd64_neutral_9c981fcb416c038e\iaahci.inf
Windows Driver Package - Lenovo 1.65.05.21 (01/11/2012 1.65.05.21)-->C:\PROGRA~1\DIFX\8730326CFC0D32D8\DPInst.exe /u C:\Windows\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_neutral_da4bc7c5427f9dff\ibmpmdrv.inf
Windows Live Communications Platform-->MsiExec.exe /I{D45240D3-B6B3-4FF9-B243-54ECE3E10066}
Windows Live Essentials-->C:\Program Files (x86)\Windows Live\Installer\wlarp.exe
Windows Live Essentials-->MsiExec.exe /I{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}
Windows Live Essentials-->MsiExec.exe /I{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}
Windows Live Fotogalerie-->MsiExec.exe /X{FB79FDB7-4DE1-453D-99FE-9A880F57380E}
Windows Live ID Sign-in Assistant-->MsiExec.exe /I{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}
Windows Live Installer-->MsiExec.exe /I{0B0F231F-CE6A-483D-AA23-77B364F75917}
Windows Live Language Selector-->MsiExec.exe /I{027E5FAB-1476-4C59-AAB4-32EF28520399}
Windows Live Mail-->MsiExec.exe /I{9D56775A-93F3-44A3-8092-840E3826DE30}
Windows Live Mail-->MsiExec.exe /I{C454280F-3C3E-4929-B60E-9E6CED5717E7}
Windows Live Mail-->MsiExec.exe /I{C66824E4-CBB3-4851-BB3F-E8CFD6350923}
Windows Live Mesh ActiveX Control for Remote Connections-->MsiExec.exe /I{2902F983-B4C1-44BA-B85D-5C6D52E2C441}
Windows Live Mesh-->MsiExec.exe /I{80E8C65A-8F70-4585-88A2-ABC54BABD576}
Windows Live Mesh-->MsiExec.exe /I{A0C91188-C88F-4E86-93E6-CD7C9A266649}
Windows Live Mesh-->MsiExec.exe /I{DECDCB7C-58CC-4865-91AF-627F9798FE48}
Windows Live Messenger-->MsiExec.exe /X{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}
Windows Live Messenger-->MsiExec.exe /X{E5B21F11-6933-4E0B-A25C-7963E3C07D11}
Windows Live Messenger-->MsiExec.exe /X{F2979AAA-FDD7-4CB3-93BC-5C24D965D679}
Windows Live MIME IFilter-->MsiExec.exe /I{DA54F80E-261C-41A2-A855-549A144F2F59}
Windows Live Movie Maker-->MsiExec.exe /X{19BA08F7-C728-469C-8A35-BFBD3633BE08}
Windows Live Movie Maker-->MsiExec.exe /X{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}
Windows Live Movie Maker-->MsiExec.exe /X{92EA4134-10D1-418A-91E1-5A0453131A38}
Windows Live Photo Common-->MsiExec.exe /X{78906B56-0E81-42A7-AC25-F54C946E1538}
Windows Live Photo Common-->MsiExec.exe /X{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
Windows Live Photo Common-->MsiExec.exe /X{D436F577-1695-4D2F-8B44-AC76C99E0002}
Windows Live Photo Gallery-->MsiExec.exe /X{3336F667-9049-4D46-98B6-4C743EEBC5B1}
Windows Live Photo Gallery-->MsiExec.exe /X{34F4D9A4-42C2-4348-BEF4-E553C84549E7}
Windows Live PIMT Platform-->MsiExec.exe /I{83C292B7-38A5-440B-A731-07070E81A64F}
Windows Live Remote Client Resources-->MsiExec.exe /I{3921492E-82D2-4180-8124-E347AD2F2DB4}
Windows Live Remote Client Resources-->MsiExec.exe /I{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}
Windows Live Remote Client-->MsiExec.exe /I{DF6D988A-EEA0-4277-AAB8-158E086E439B}
Windows Live Remote Service Resources-->MsiExec.exe /I{34384A2A-2CA2-4446-AB0E-1F360BA2AAC5}
Windows Live Remote Service Resources-->MsiExec.exe /I{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}
Windows Live Remote Service-->MsiExec.exe /I{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}
Windows Live SOXE Definitions-->MsiExec.exe /I{200FEC62-3C34-4D60-9CE8-EC372E01C08F}
Windows Live SOXE-->MsiExec.exe /I{682B3E4F-696A-42DE-A41C-4C07EA1678B4}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}
Windows Live UX Platform-->MsiExec.exe /I{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
Windows Live Writer Resources-->MsiExec.exe /X{AB78C965-5C67-409B-8433-D7B5BDB12073}
Windows Live Writer Resources-->MsiExec.exe /X{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}
Windows Live Writer-->MsiExec.exe /X{4264C020-850B-4F08-ACBE-98205D9C336C}
Windows Live Writer-->MsiExec.exe /X{A726AE06-AAA3-43D1-87E3-70F510314F04}
Windows Live Writer-->MsiExec.exe /X{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
Windows Live Writer-->MsiExec.exe /X{AAF454FC-82CA-4F29-AB31-6A109485E76E}
WinRAR 4.20 (64-bitová verzia)-->C:\Program Files\WinRAR\uninstall.exe

======Hosts File======

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com

======System event log======

Computer Name: JurajNTB
Event Code: 7036
Message: Stav služby Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service byl změněn na: Spuštěno
Record Number: 2449
Source Name: Service Control Manager
Time Written: 20121016221317.954002-000
Event Type: Informace
User:

Computer Name: JurajNTB
Event Code: 7036
Message: Stav služby Intel® Centrino® Wireless Bluetooth® + High Speed Service byl změněn na: Spuštěno
Record Number: 2448
Source Name: Service Control Manager
Time Written: 20121016221317.782402-000
Event Type: Informace
User:

Computer Name: JurajNTB
Event Code: 7036
Message: Stav služby Windows Presentation Foundation Font Cache 3.0.0.0 byl změněn na: Spuštěno
Record Number: 2447
Source Name: Service Control Manager
Time Written: 20121016221315.260775-000
Event Type: Informace
User:

Computer Name: JurajNTB
Event Code: 104
Message: Byl vymazán soubor protokolu setup.
Record Number: 2446
Source Name: Microsoft-Windows-Eventlog
Time Written: 20121016221238.507111-000
Event Type: Informace
User: JurajNTB\Juraj

Computer Name: JurajNTB
Event Code: 104
Message: Byl vymazán soubor protokolu System.
Record Number: 2445
Source Name: Microsoft-Windows-Eventlog
Time Written: 20121016221238.413510-000
Event Type: Informace
User: JurajNTB\Juraj

=====Application event log=====

Computer Name: JurajNTB
Event Code: 35
Message:
Record Number: 1558
Source Name: NIS
Time Written: 20121016221322.000000-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: JurajNTB
Event Code: 34
Message:
Record Number: 1557
Source Name: NIS
Time Written: 20121016221320.000000-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: JurajNTB
Event Code: 0
Message: LMS started
Record Number: 1556
Source Name: LMS
Time Written: 20121016221320.000000-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: JurajNTB
Event Code: 0
Message:
Record Number: 1555
Source Name: gupdate
Time Written: 20121016221320.000000-000
Event Type: Informace
User:

Computer Name: JurajNTB
Event Code: 0
Message:
Record Number: 1554
Source Name: BTHSSecurityMgr
Time Written: 20121016221318.000000-000
Event Type: Informace
User:

=====Security event log=====

Computer Name: JurajNTB
Event Code: 4624
Message: Účet byl úspěšně přihlášen.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: JURAJNTB$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Typ přihlášení: 5

Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3e7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Informace o procesu:
ID procesu: 0x314
Název procesu: C:\Windows\System32\services.exe

Informace o síti:
Název pracovní stanice:
Adresa zdrojové sítě -
Zdrojový port: -

Podrobné informace o ověření:
Proces přihlášení: Advapi
Balíček ověření: Negotiate
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0

Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.

Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.

Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).

Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.

Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.

Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 4683
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20121016221343.850048-000
Event Type: Úspěšný audit
User:

Computer Name: JurajNTB
Event Code: 4672
Message: Novému přihlášení byla přiřazena zvláštní oprávnění.

Předmět:
ID zabezpečení: S-1-5-21-1967815658-257592732-663853043-1000
Název účtu: UpdatusUser
Doména účtu: JurajNTB
ID přihlášení: 0xd9985

Oprávnění: SeAssignPrimaryTokenPrivilege
SeImpersonatePrivilege
Record Number: 4682
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20121016221322.275210-000
Event Type: Úspěšný audit
User:

Computer Name: JurajNTB
Event Code: 4624
Message: Účet byl úspěšně přihlášen.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: JURAJNTB$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Typ přihlášení: 5

Nové přihlášení:
ID zabezpečení: S-1-5-21-1967815658-257592732-663853043-1000
Název účtu: UpdatusUser
Doména účtu: JurajNTB
ID přihlášení: 0xd9985
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Informace o procesu:
ID procesu: 0x314
Název procesu: C:\Windows\System32\services.exe

Informace o síti:
Název pracovní stanice: JURAJNTB
Adresa zdrojové sítě -
Zdrojový port: -

Podrobné informace o ověření:
Proces přihlášení: Advapi
Balíček ověření: Negotiate
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0

Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.

Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.

Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).

Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.

Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.

Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 4681
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20121016221322.275210-000
Event Type: Úspěšný audit
User:

Computer Name: JurajNTB
Event Code: 4648
Message: Došlo k pokusu o přihlášení pomocí explicitního pověření.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: JURAJNTB$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Účet, jehož pověření bylo použito:
Název účtu: UpdatusUser
Doména účtu: JurajNTB
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Cílový server:
Název cílového serveru: localhost
Další informace: localhost

Informace o procesu:
ID procesu: 0x314
Název procesu: C:\Windows\System32\services.exe

Informace o síti:
Síťová adresa: -
Port: -

Tato událost je generována, pokud se proces pokusí přihlásit k účtu explicitním zadáním pověření tohoto účtu. K tomu nejčastěji dochází v dávkových konfiguracích, například naplánovaných úlohách, nebo při použití příkazu RUNAS.
Record Number: 4680
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20121016221322.275210-000
Event Type: Úspěšný audit
User:

Computer Name: JurajNTB
Event Code: 1102
Message: Protokol auditu byl vymazán.
Předmět:
ID zabezpečení: S-1-5-21-1967815658-257592732-663853043-1001
Název účtu: Juraj
Název domény: JurajNTB
ID přihlášení: 0x3fc8e
Record Number: 4679
Source Name: Microsoft-Windows-Eventlog
Time Written: 20121016221238.475911-000
Event Type: Úspěšný audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files\Lenovo Fingerprint Reader\;C:\Program Files\Lenovo Fingerprint Reader\x86;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\Common Files\Lenovo;C:\Program Files (x86)\Windows Live\Shared;C:\SWTOOLS\ReadyApps;C:\Program Files (x86)\Symantec\VIP Access Client\;C:\Program Files (x86)\Common Files\Lenovo;D:\Matlab\bin;D:\Matlab\bin\win64
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
"PROCESSOR_REVISION"=3a09
"windows_tracing_logfile"=C:\BVTBin\Tests\installpackage\csilogfile.log
"windows_tracing_flags"=3
"configsetroot"=%SystemRoot%\ConfigSetRoot
"COMMPath"=C:\Program Files\Lenovo\Communications Utility
"READYAPPS"=C:\SWTOOLS\ReadyApps
"TVTCOMMON"=C:\Program Files (x86)\Common Files\Lenovo
"SWSHARE"=C:\SWSHARE
"TVT"=C:\Program Files (x86)\Lenovo

-----------------EOF-----------------

Zdravim.

To vam ten predchozi moc dlouho nevydrzel http://forum.viry.cz/viewtopic.php?f=13 ... 5#p1152375

Doufam, ze to tentokrat dokoncite

Tento log je ale celkem k nicemu. Potrebuji nejdrive ten druhy, s nazvem log.txt http://forum.viry.cz/viewtopic.php?f=13&t=105895

Predosla tema je kamaratova.

Mal problem takze zato nemozem

tu je ten log

Logfile of random's system information tool 1.09 (written by random/random)
Run by Juraj at 2012-10-24 13:17:07
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 37 GB (44%) free of 82 GB
Total RAM: 3690 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:17:26, on 24. 10. 2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16450)
Boot mode: Normal

Running processes:
C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\UI\IntelSmallBusinessAdvantage.exe
C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe
C:\Program Files\Lenovo Fingerprint Reader\x86\BioMonitor.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Juraj.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: TrueSuite Browser Helper Object - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: IEPlugin - {C63CD127-A1CB-4D49-A4F7-D6F88A917BE6} - C:\Program Files (x86)\Symantec\VIP Access Client\VIPAddOnForIE.dll
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [RotateImage] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [Fastboot] C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [Lenovo Registration] C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot
O4 - HKLM\..\Run: [IntelSBA] C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\SBALaunchDelay.exe "C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\UI\IntelSmallBusinessAdvantage.exe -minimized" 60
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Comrade.exe] C:\Program Files (x86)\GameSpy\Comrade\Comrade.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1967815658-257592732-663853043-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1967815658-257592732-663853043-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FastbootService - Lenovo - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: TrueSuiteService (FPLService) - AuthenTec, Inc - C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HyperW7 Service (HyperW7Svc) - Lenovo Group Limited - C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe
O23 - Service: Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Small Business Advantage - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo Camera Mute (LENOVO.CAMMUTE) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo Keyboard Noise Reduction (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
O23 - Service: ThinkVantage Virtual Camera Controller (LENOVO.TVTVCAM) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Power Manager DBC Service - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Cisco EnergyWise Enabler (PwmEWSvc) - Lenovo Group Limited - C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: SafeBox - Bitdefender - C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: System Update (SUService) - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\Windows\System32\TPHDEXLG64.exe (file missing)
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Bitdefender Desktop Update Service (UPDATESRV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIPAppService - Symantec Corporation - C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: Bitdefender Virus Shield (VSSERV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 15374 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe" /service
"C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe"
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-5fc93eb9-d548-4c2c-9715-0da98f64fd41 -SystemEventPortName:HostProcess-90505f68-bfa2-4a27-b0d2-cb8efa069971 -IoCancelEventPortName:HostProcess-63e6bee3-6e78-4ab1-82db-2b27b72ead1b -NonStateChangingEventPortName:HostProcess-653d28d5-28d3-490b-a1f0-7594c7838e6a -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:29511c33-88c8-4df0-87a6-eb258e2d8a05
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k WbioSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\CxAudMsg64.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe"
"C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe"
"C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\SysWOW64\SAsrv.exe
"C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe"
"C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe" /service
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
WLIDSvcM.exe 2244
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\Dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"taskhost.exe"
C:\Windows\system32\igfxext.exe -Embedding
C:\Windows\system32\igfxsrvc.exe -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlk.exe
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Windows\System32\TpShocks.exe"
"C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\Windows Sidebar\sidebar.exe" /autoRun
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
"C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe" -Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
C:\PROGRA~1\Lenovo\HOTKEY\MKRMSG.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.MediaKey
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe"
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
"C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\UI\IntelSmallBusinessAdvantage.exe" -minimized
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
taskeng.exe {BA1C5A7B-55D4-45B9-BDE3-49787364A3F9}
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" -startup
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe" /start
"C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
"C:\Program Files (x86)\Lenovo\System Update\SUService.exe"
"C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe"
"taskhost.exe"
"C:\Fraps\fraps64.dat"
taskeng.exe {472840FE-AD17-45DA-B45B-EC71420C0EB4}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE"
explorer.exe
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" /TASK:c834b177-6fcf-4734-adcb-b101f2c56471
"C:\Program Files\Lenovo Fingerprint Reader\TouchControl.exe"
"C:\Program Files\Lenovo Fingerprint Reader\x86\BioMonitor.exe" -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="24776.1.1329441631\1795653062" --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2778 --ignored=" --type=renderer " /prefetch:12
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxHQPNewScoring/NewScoring/OmniboxSearchSuggest/0/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyImpact/spdy3/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-1-Percent/group_16/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/warm_socket/ --extension-process --renderer-print-preview --channel="24776.2.815970890\233449861" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxHQPNewScoring/NewScoring/OmniboxSearchSuggest/0/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyImpact/spdy3/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-1-Percent/group_16/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/warm_socket/ --extension-process --renderer-print-preview --channel="24776.3.1071577690\1240667982" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxHQPNewScoring/NewScoring/OmniboxSearchSuggest/0/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyImpact/spdy3/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-1-Percent/group_16/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/warm_socket/ --extension-process --renderer-print-preview --channel="24776.4.1306771359\113535787" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\Juraj\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdkedefaddcdlpmiafhicjnkbogjiogj\2.0_0\npwebsitelogon.dll" --lang=cs --channel="24776.5.1966190241\1372746693" /prefetch:4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxHQPNewScoring/NewScoring/OmniboxSearchSuggest/0/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyImpact/spdy3/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-1-Percent/group_16/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/warm_socket/ --renderer-print-preview --channel="24776.6.456977700\1890266558" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxHQPNewScoring/NewScoring/OmniboxSearchSuggest/0/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyImpact/spdy3/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-1-Percent/group_16/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/warm_socket/ --renderer-print-preview --channel="24776.9.521024313\1323246007" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxHQPNewScoring/NewScoring/OmniboxSearchSuggest/0/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyImpact/spdy3/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-1-Percent/group_16/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/warm_socket/ --renderer-print-preview --channel="24776.13.577778961\1534904041" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxHQPNewScoring/NewScoring/OmniboxSearchSuggest/0/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyImpact/spdy3/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-1-Percent/group_16/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/warm_socket/ --renderer-print-preview --channel="24776.17.565369037\1072869569" /prefetch:3
"C:\Windows\system32\NOTEPAD.EXE" C:\rsit\info.txt
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxHQPNewScoring/NewScoring/OmniboxSearchSuggest/0/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyImpact/spdy3/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-1-Percent/group_16/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/warm_socket/ --renderer-print-preview --channel="24776.19.1764088332\1182066966" /prefetch:3
"C:\Users\Juraj\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
C:\Windows\tasks\SUPERAntiSpyware Scheduled Task c834b177-6fcf-4734-adcb-b101f2c56471.job
C:\Windows\tasks\SUPERAntiSpyware Scheduled Task ee51a5bc-ffe0-4140-a1fb-32c961f1b892.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Browser Helper Object - C:\Program Files\Lenovo Fingerprint Reader\IEBHO.DLL [2012-06-07 1930088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C63CD127-A1CB-4D49-A4F7-D6F88A917BE6}]
Symantec VIP Access Add-On - C:\Program Files (x86)\Symantec\VIP Access Client\64bit\VIPAddOnForIE64.dll [2012-04-19 2443376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Browser Helper Object - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll [2012-06-07 1772904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C63CD127-A1CB-4D49-A4F7-D6F88A917BE6}]
Symantec VIP Access Add-On - C:\Program Files (x86)\Symantec\VIP Access Client\VIPAddOnForIE.dll [2012-04-19 2109040]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-06-25 170304]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-06-25 398656]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-06-25 440128]
"BLEServicesCtrl"=C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [2012-03-15 178960]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2012-03-27 11407120]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-03-01 564352]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-02-21 1654400]
"TpShocks"=C:\Windows\system32\TpShocks.exe [2012-02-25 382528]
"LENOVO.TPKNRRES"=C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [2012-06-02 290160]
""= []
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-06-19 2881336]
"Bdagent"=C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe [2012-10-21 1544912]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2012-07-13 17418928]
"Sidebar"=C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-21 1174016]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-08-28 3671904]
"Comrade.exe"=C:\Program Files (x86)\GameSpy\Comrade\Comrade.exe [2007-06-29 36864]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-08-28 3671904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2012-10-16 5628800]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2012-03-07 133400]
"RotateImage"=C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [2008-10-31 55808]
"Dolby Advanced Audio v2"=C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2011-12-21 507744]
"PWMTRV"=rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor []
"Fastboot"=C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [2012-01-17 1091376]
"Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2012-07-12 155488]
"Lenovo Registration"=C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe [2011-07-14 4351712]
"IntelSBA"=C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\SBALaunchDelay.exe [2012-04-24 55520]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-06-25 436224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2012-10-24 13:15:55 ----D---- C:\Program Files\trend micro
2012-10-24 13:15:54 ----D---- C:\rsit
2012-10-23 23:08:07 ----D---- C:\Program Files\GIMP 2
2012-10-23 22:31:31 ----D---- C:\Users\Juraj\AppData\Roaming\MathWorks
2012-10-22 17:43:25 ----RHD---- C:\Users\Juraj\AppData\Roaming\SecuROM
2012-10-22 17:43:24 ----A---- C:\Windows\SYSWOW64\CmdLineExt_x64.dll
2012-10-22 17:21:47 ----A---- C:\Windows\system32\bddel.exe
2012-10-22 17:21:47 ----A---- C:\Windows\system32\bddel.dat
2012-10-22 16:05:11 ----D---- C:\Program Files (x86)\GameSpy
2012-10-22 16:04:25 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2012-10-22 16:03:44 ----D---- C:\Windows\SYSWOW64\URTTEMP
2012-10-22 16:01:25 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2012-10-22 16:01:08 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2012-10-22 16:01:08 ----A---- C:\Windows\SYSWOW64\pbsvc.exe
2012-10-22 09:47:00 ----D---- C:\Users\Juraj\AppData\Roaming\Ubisoft
2012-10-22 09:26:48 ----D---- C:\ProgramData\Ubisoft
2012-10-22 09:14:02 ----D---- C:\Users\Juraj\AppData\Roaming\InstallShield
2012-10-21 23:06:52 ----A---- C:\bdlog.txt
2012-10-21 22:54:19 ----D---- C:\ProgramData\BDLogging
2012-10-21 22:54:13 ----A---- C:\Windows\system32\drivers\bdvedisk.sys
2012-10-21 22:54:11 ----A---- C:\Windows\system32\drivers\bdsandbox.sys
2012-10-21 22:54:11 ----A---- C:\Windows\system32\drivers\BdfNdisf6.sys
2012-10-21 22:54:11 ----A---- C:\Windows\capicom.dll
2012-10-21 22:54:02 ----A---- C:\Windows\system32\drivers\avchv.sys
2012-10-21 22:54:02 ----A---- C:\Windows\system32\drivers\avckf.sys
2012-10-21 22:54:00 ----A---- C:\Windows\system32\drivers\avc3.sys
2012-10-21 22:53:56 ----D---- C:\Users\Juraj\AppData\Roaming\Bitdefender
2012-10-21 22:53:51 ----D---- C:\ProgramData\Bitdefender
2012-10-21 22:51:53 ----D---- C:\Users\Juraj\AppData\Roaming\QuickScan
2012-10-21 22:51:12 ----N---- C:\Windows\TrufosLog.txt
2012-10-21 22:51:12 ----N---- C:\Windows\TrufosDllLog.txt
2012-10-21 22:51:06 ----D---- C:\Program Files\Bitdefender
2012-10-21 22:51:06 ----A---- C:\Windows\system32\drivers\trufos.sys
2012-10-21 22:51:06 ----A---- C:\Windows\system32\drivers\gzflt.sys
2012-10-21 22:50:48 ----D---- C:\Program Files\Common Files\Bitdefender
2012-10-19 01:26:39 ----D---- C:\Program Files (x86)\MSXML 4.0
2012-10-18 13:24:09 ----D---- C:\Users\Juraj\AppData\Roaming\Dev-Cpp
2012-10-18 13:16:02 ----A---- C:\IFRToolLog.txt
2012-10-18 10:25:19 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-10-18 10:25:19 ----A---- C:\Windows\system32\drivers\mbam.sys
2012-10-18 01:41:23 ----D---- C:\Windows\SYSWOW64\Wat
2012-10-18 01:41:23 ----D---- C:\Windows\system32\Wat
2012-10-18 01:34:51 ----D---- C:\Program Files\AuthenTec
2012-10-18 01:32:18 ----A---- C:\Windows\system32\MRT.exe
2012-10-18 01:14:01 ----D---- C:\ProgramData\Spybot - Search & Destroy
2012-10-18 01:14:01 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy
2012-10-18 01:12:26 ----A---- C:\Windows\system32\browserchoice.exe
2012-10-18 01:09:50 ----AD---- C:\ProgramData\TEMP
2012-10-18 01:09:43 ----D---- C:\Program Files (x86)\SpywareBlaster
2012-10-18 01:09:43 ----A---- C:\Windows\SYSWOW64\MSSTDFMT.DLL
2012-10-18 01:08:45 ----D---- C:\Users\Juraj\AppData\Roaming\Malwarebytes
2012-10-18 01:08:33 ----D---- C:\ProgramData\Malwarebytes
2012-10-18 01:04:40 ----D---- C:\Users\Juraj\AppData\Roaming\SUPERAntiSpyware.com
2012-10-18 01:04:22 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2012-10-18 01:04:22 ----D---- C:\Program Files\SUPERAntiSpyware
2012-10-18 01:00:37 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2012-10-18 01:00:37 ----A---- C:\Windows\system32\mshtmled.dll
2012-10-18 01:00:36 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2012-10-18 01:00:35 ----A---- C:\Windows\SYSWOW64\ieui.dll
2012-10-18 01:00:34 ----A---- C:\Windows\SYSWOW64\url.dll
2012-10-18 01:00:34 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2012-10-18 01:00:34 ----A---- C:\Windows\system32\url.dll
2012-10-18 01:00:34 ----A---- C:\Windows\system32\ieUnatt.exe
2012-10-18 01:00:34 ----A---- C:\Windows\system32\ieui.dll
2012-10-18 01:00:32 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-10-18 01:00:32 ----A---- C:\Windows\system32\urlmon.dll
2012-10-18 01:00:31 ----A---- C:\Windows\system32\jscript9.dll
2012-10-18 01:00:30 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2012-10-18 01:00:30 ----A---- C:\Windows\system32\msfeeds.dll
2012-10-18 01:00:29 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-10-18 01:00:28 ----A---- C:\Windows\system32\wininet.dll
2012-10-18 01:00:27 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2012-10-18 01:00:27 ----A---- C:\Windows\system32\jsproxy.dll
2012-10-18 01:00:26 ----A---- C:\Windows\SYSWOW64\jscript.dll
2012-10-18 01:00:26 ----A---- C:\Windows\system32\vbscript.dll
2012-10-18 01:00:25 ----A---- C:\Windows\system32\jscript.dll
2012-10-18 01:00:25 ----A---- C:\Windows\system32\iertutil.dll
2012-10-18 01:00:24 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2012-10-18 01:00:24 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-10-18 01:00:19 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2012-10-18 01:00:16 ----A---- C:\Windows\system32\mshtml.dll
2012-10-18 01:00:14 ----A---- C:\Windows\system32\ieframe.dll
2012-10-18 01:00:13 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-10-18 00:49:56 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2012-10-18 00:49:56 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2012-10-18 00:49:56 ----A---- C:\Windows\system32\winsrv.dll
2012-10-18 00:49:56 ----A---- C:\Windows\system32\KernelBase.dll
2012-10-18 00:49:56 ----A---- C:\Windows\system32\kernel32.dll
2012-10-18 00:49:56 ----A---- C:\Windows\system32\conhost.exe
2012-10-18 00:49:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-10-18 00:49:55 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-10-18 00:49:55 ----A---- C:\Windows\SYSWOW64\wow32.dll
2012-10-18 00:49:55 ----A---- C:\Windows\SYSWOW64\setup16.exe
2012-10-18 00:49:55 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2012-10-18 00:49:55 ----A---- C:\Windows\SYSWOW64\instnm.exe
2012-10-18 00:49:55 ----A---- C:\Windows\system32\wow64win.dll
2012-10-18 00:49:55 ----A---- C:\Windows\system32\wow64cpu.dll
2012-10-18 00:49:55 ----A---- C:\Windows\system32\wow64.dll
2012-10-18 00:49:55 ----A---- C:\Windows\system32\ntvdm64.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-10-18 00:49:54 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-10-18 00:49:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2012-10-18 00:49:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2012-10-18 00:49:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2012-10-18 00:49:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2012-10-18 00:49:53 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-10-18 00:49:53 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-10-18 00:49:53 ----A---- C:\Windows\SYSWOW64\user.exe
2012-10-18 00:49:48 ----A---- C:\Windows\system32\drivers\ndis.sys
2012-10-18 00:49:48 ----A---- C:\Windows\system32\drivers\bthport.sys
2012-10-18 00:49:47 ----A---- C:\Windows\system32\OxpsConverter.exe
2012-10-18 00:49:47 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2012-10-18 00:49:46 ----A---- C:\Windows\system32\win32spl.dll
2012-10-18 00:49:45 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2012-10-18 00:49:45 ----A---- C:\Windows\system32\srcore.dll
2012-10-18 00:49:45 ----A---- C:\Windows\system32\spoolsv.exe
2012-10-18 00:49:45 ----A---- C:\Windows\splwow64.exe
2012-10-18 00:49:44 ----A---- C:\Windows\SYSWOW64\srclient.dll
2012-10-18 00:49:39 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2012-10-18 00:49:39 ----A---- C:\Windows\system32\qdvd.dll
2012-10-18 00:49:38 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2012-10-18 00:49:38 ----A---- C:\Windows\system32\XpsPrint.dll
2012-10-18 00:49:38 ----A---- C:\Windows\system32\drivers\ntfs.sys
2012-10-18 00:49:37 ----A---- C:\Windows\SYSWOW64\msi.dll
2012-10-18 00:49:37 ----A---- C:\Windows\system32\msi.dll
2012-10-18 00:49:36 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2012-10-18 00:49:36 ----A---- C:\Windows\system32\profsvc.dll
2012-10-18 00:49:36 ----A---- C:\Windows\system32\d3d10level9.dll
2012-10-17 23:46:45 ----D---- C:\Program Files (x86)\Lavalys
2012-10-17 20:33:08 ----D---- C:\Dev-Cpp
2012-10-17 14:15:02 ----D---- C:\Fraps

pokracovanie logu

2012-10-17 09:55:51 ----D---- C:\ProgramData\TrueSuite
2012-10-17 05:56:18 ----A---- C:\Windows\system32\win32k.sys
2012-10-17 05:56:15 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2012-10-17 05:56:15 ----A---- C:\Windows\system32\poqexec.exe
2012-10-17 05:56:14 ----A---- C:\Windows\system32\shell32.dll
2012-10-17 05:56:12 ----A---- C:\Windows\SYSWOW64\shell32.dll
2012-10-17 05:56:11 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-10-17 05:56:10 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2012-10-17 05:56:10 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2012-10-17 05:56:08 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2012-10-17 05:56:08 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2012-10-17 05:56:08 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2012-10-17 05:56:08 ----A---- C:\Windows\system32\msxml6.dll
2012-10-17 05:56:08 ----A---- C:\Windows\system32\msxml3r.dll
2012-10-17 05:56:08 ----A---- C:\Windows\system32\msxml3.dll
2012-10-17 05:56:07 ----A---- C:\Windows\system32\schannel.dll
2012-10-17 05:56:07 ----A---- C:\Windows\system32\rdrmemptylst.exe
2012-10-17 05:56:07 ----A---- C:\Windows\system32\rdpwsx.dll
2012-10-17 05:56:07 ----A---- C:\Windows\system32\rdpcorekmts.dll
2012-10-17 05:56:07 ----A---- C:\Windows\system32\ncrypt.dll
2012-10-17 05:56:07 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-10-17 05:56:07 ----A---- C:\Windows\system32\drivers\cng.sys
2012-10-17 05:56:06 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2012-10-17 05:56:06 ----A---- C:\Windows\SYSWOW64\schannel.dll
2012-10-17 05:56:06 ----A---- C:\Windows\SYSWOW64\secur32.dll
2012-10-17 05:56:06 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2012-10-17 05:56:06 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-10-17 05:56:05 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-10-17 05:56:05 ----A---- C:\Windows\system32\drivers\netio.sys
2012-10-17 05:56:05 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2012-10-17 05:55:59 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2012-10-17 05:55:59 ----A---- C:\Windows\system32\wintrust.dll
2012-10-17 05:55:56 ----A---- C:\Windows\SYSWOW64\tzres.dll
2012-10-17 05:55:56 ----A---- C:\Windows\system32\tzres.dll
2012-10-17 05:55:31 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-10-17 05:55:29 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2012-10-17 05:55:29 ----A---- C:\Windows\system32\kerberos.dll
2012-10-17 05:55:16 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2012-10-17 05:55:16 ----A---- C:\Windows\SYSWOW64\browcli.dll
2012-10-17 05:55:16 ----A---- C:\Windows\system32\netapi32.dll
2012-10-17 05:55:16 ----A---- C:\Windows\system32\browser.dll
2012-10-17 05:55:16 ----A---- C:\Windows\system32\browcli.dll
2012-10-17 05:55:12 ----A---- C:\Windows\system32\localspl.dll
2012-10-17 05:55:11 ----A---- C:\Windows\system32\drivers\bowser.sys
2012-10-17 05:54:55 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2012-10-17 05:54:54 ----A---- C:\Windows\system32\cdosys.dll
2012-10-17 05:54:38 ----A---- C:\Windows\system32\crypt32.dll
2012-10-17 05:54:37 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2012-10-17 05:54:37 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2012-10-17 05:54:37 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2012-10-17 05:54:37 ----A---- C:\Windows\system32\cryptsvc.dll
2012-10-17 05:54:37 ----A---- C:\Windows\system32\cryptnet.dll
2012-10-17 05:49:00 ----A---- C:\Windows\system32\wups2.dll
2012-10-17 05:49:00 ----A---- C:\Windows\system32\wuauclt.exe
2012-10-17 05:48:59 ----A---- C:\Windows\system32\wucltux.dll
2012-10-17 05:48:59 ----A---- C:\Windows\system32\wuaueng.dll
2012-10-17 05:48:55 ----A---- C:\Windows\system32\wups.dll
2012-10-17 05:48:55 ----A---- C:\Windows\system32\wudriver.dll
2012-10-17 05:48:55 ----A---- C:\Windows\system32\wuapi.dll
2012-10-17 05:48:47 ----A---- C:\Windows\system32\wuwebv.dll
2012-10-17 05:48:47 ----A---- C:\Windows\system32\wuapp.exe
2012-10-17 00:35:33 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2012-10-17 00:35:33 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2012-10-17 00:35:33 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2012-10-17 00:35:33 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2012-10-17 00:35:33 ----A---- C:\Windows\system32\XAudio2_7.dll
2012-10-17 00:35:33 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2012-10-17 00:35:33 ----A---- C:\Windows\system32\xactengine3_7.dll
2012-10-17 00:35:33 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2012-10-17 00:35:32 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2012-10-17 00:35:32 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2012-10-17 00:35:32 ----A---- C:\Windows\system32\d3dx11_43.dll
2012-10-17 00:35:32 ----A---- C:\Windows\system32\d3dcsx_43.dll
2012-10-17 00:35:31 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2012-10-17 00:35:31 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2012-10-17 00:35:31 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2012-10-17 00:35:31 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2012-10-17 00:35:31 ----A---- C:\Windows\system32\XAudio2_6.dll
2012-10-17 00:35:31 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2012-10-17 00:35:31 ----A---- C:\Windows\system32\D3DX9_43.dll
2012-10-17 00:35:31 ----A---- C:\Windows\system32\d3dx10_43.dll
2012-10-17 00:35:30 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2012-10-17 00:35:30 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2012-10-17 00:35:30 ----A---- C:\Windows\system32\XAudio2_5.dll
2012-10-17 00:35:30 ----A---- C:\Windows\system32\xactengine3_6.dll
2012-10-17 00:35:30 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2012-10-17 00:35:29 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2012-10-17 00:35:29 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2012-10-17 00:35:29 ----A---- C:\Windows\system32\xactengine3_5.dll
2012-10-17 00:35:29 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2012-10-17 00:35:28 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2012-10-17 00:35:28 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2012-10-17 00:35:28 ----A---- C:\Windows\system32\d3dx11_42.dll
2012-10-17 00:35:28 ----A---- C:\Windows\system32\d3dcsx_42.dll
2012-10-17 00:35:27 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2012-10-17 00:35:27 ----A---- C:\Windows\system32\D3DX9_42.dll
2012-10-17 00:35:27 ----A---- C:\Windows\system32\d3dx10_41.dll
2012-10-17 00:35:27 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2012-10-17 00:35:26 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2012-10-17 00:35:26 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2012-10-17 00:35:26 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2012-10-17 00:35:26 ----A---- C:\Windows\system32\XAudio2_4.dll
2012-10-17 00:35:26 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2012-10-17 00:35:26 ----A---- C:\Windows\system32\xactengine3_4.dll
2012-10-17 00:35:26 ----A---- C:\Windows\system32\D3DX9_41.dll
2012-10-17 00:35:25 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2012-10-17 00:35:25 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2012-10-17 00:35:25 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2012-10-17 00:35:25 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2012-10-17 00:35:25 ----A---- C:\Windows\system32\d3dx10_40.dll
2012-10-17 00:35:25 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2012-10-17 00:35:24 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2012-10-17 00:35:24 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2012-10-17 00:35:24 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2012-10-17 00:35:24 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2012-10-17 00:35:24 ----A---- C:\Windows\system32\XAudio2_3.dll
2012-10-17 00:35:24 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2012-10-17 00:35:24 ----A---- C:\Windows\system32\xactengine3_3.dll
2012-10-17 00:35:24 ----A---- C:\Windows\system32\D3DX9_40.dll
2012-10-17 00:35:23 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2012-10-17 00:35:23 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2012-10-17 00:35:23 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2012-10-17 00:35:23 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2012-10-17 00:35:23 ----A---- C:\Windows\system32\XAudio2_2.dll
2012-10-17 00:35:23 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2012-10-17 00:35:23 ----A---- C:\Windows\system32\xactengine3_2.dll
2012-10-17 00:35:23 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2012-10-17 00:35:22 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2012-10-17 00:35:22 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2012-10-17 00:35:22 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2012-10-17 00:35:22 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2012-10-17 00:35:22 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2012-10-17 00:35:22 ----A---- C:\Windows\system32\D3DX9_39.dll
2012-10-17 00:35:22 ----A---- C:\Windows\system32\d3dx10_39.dll
2012-10-17 00:35:22 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2012-10-17 00:35:21 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2012-10-17 00:35:21 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2012-10-17 00:35:21 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2012-10-17 00:35:21 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2012-10-17 00:35:21 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2012-10-17 00:35:21 ----A---- C:\Windows\system32\XAudio2_1.dll
2012-10-17 00:35:21 ----A---- C:\Windows\system32\xactengine3_1.dll
2012-10-17 00:35:21 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2012-10-17 00:35:21 ----A---- C:\Windows\system32\d3dx10_38.dll
2012-10-17 00:35:21 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2012-10-17 00:35:20 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2012-10-17 00:35:20 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2012-10-17 00:35:20 ----A---- C:\Windows\system32\XAudio2_0.dll
2012-10-17 00:35:20 ----A---- C:\Windows\system32\D3DX9_38.dll
2012-10-17 00:35:19 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2012-10-17 00:35:19 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2012-10-17 00:35:19 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2012-10-17 00:35:19 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2012-10-17 00:35:19 ----A---- C:\Windows\system32\xactengine3_0.dll
2012-10-17 00:35:19 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2012-10-17 00:35:19 ----A---- C:\Windows\system32\d3dx10_37.dll
2012-10-17 00:35:19 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2012-10-17 00:35:18 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2012-10-17 00:35:18 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2012-10-17 00:35:18 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2012-10-17 00:35:18 ----A---- C:\Windows\system32\xactengine2_10.dll
2012-10-17 00:35:18 ----A---- C:\Windows\system32\D3DX9_37.dll
2012-10-17 00:35:18 ----A---- C:\Windows\system32\d3dx10_36.dll
2012-10-17 00:35:17 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2012-10-17 00:35:17 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2012-10-17 00:35:17 ----A---- C:\Windows\system32\d3dx9_36.dll
2012-10-17 00:35:17 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2012-10-17 00:35:16 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2012-10-17 00:35:16 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2012-10-17 00:35:16 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2012-10-17 00:35:16 ----A---- C:\Windows\system32\xactengine2_9.dll
2012-10-17 00:35:16 ----A---- C:\Windows\system32\d3dx10_35.dll
2012-10-17 00:35:16 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2012-10-17 00:35:15 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2012-10-17 00:35:15 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2012-10-17 00:35:15 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2012-10-17 00:35:15 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2012-10-17 00:35:15 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2012-10-17 00:35:15 ----A---- C:\Windows\system32\xactengine2_8.dll
2012-10-17 00:35:15 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2012-10-17 00:35:15 ----A---- C:\Windows\system32\d3dx9_35.dll
2012-10-17 00:35:15 ----A---- C:\Windows\system32\d3dx10_34.dll
2012-10-17 00:35:15 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2012-10-17 00:35:14 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2012-10-17 00:35:14 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2012-10-17 00:35:14 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2012-10-17 00:35:14 ----A---- C:\Windows\system32\xinput1_3.dll
2012-10-17 00:35:14 ----A---- C:\Windows\system32\xactengine2_7.dll
2012-10-17 00:35:14 ----A---- C:\Windows\system32\d3dx9_34.dll
2012-10-17 00:35:13 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2012-10-17 00:35:13 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2012-10-17 00:35:13 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2012-10-17 00:35:13 ----A---- C:\Windows\system32\d3dx9_33.dll
2012-10-17 00:35:13 ----A---- C:\Windows\system32\d3dx10_33.dll
2012-10-17 00:35:13 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2012-10-17 00:35:12 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2012-10-17 00:35:12 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2012-10-17 00:35:12 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2012-10-17 00:35:12 ----A---- C:\Windows\system32\xactengine2_6.dll
2012-10-17 00:35:12 ----A---- C:\Windows\system32\xactengine2_5.dll
2012-10-17 00:35:12 ----A---- C:\Windows\system32\d3dx10.dll
2012-10-17 00:35:11 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2012-10-17 00:35:11 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2012-10-17 00:35:11 ----A---- C:\Windows\system32\xactengine2_4.dll
2012-10-17 00:35:11 ----A---- C:\Windows\system32\x3daudio1_1.dll
2012-10-17 00:35:10 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2012-10-17 00:35:10 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2012-10-17 00:35:10 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2012-10-17 00:35:10 ----A---- C:\Windows\system32\xinput1_2.dll
2012-10-17 00:35:10 ----A---- C:\Windows\system32\xactengine2_3.dll
2012-10-17 00:35:10 ----A---- C:\Windows\system32\d3dx9_31.dll
2012-10-17 00:35:09 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2012-10-17 00:35:09 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2012-10-17 00:35:09 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2012-10-17 00:35:09 ----A---- C:\Windows\system32\xinput1_1.dll
2012-10-17 00:35:09 ----A---- C:\Windows\system32\xactengine2_2.dll
2012-10-17 00:35:09 ----A---- C:\Windows\system32\xactengine2_1.dll
2012-10-17 00:35:06 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2012-10-17 00:35:06 ----A---- C:\Windows\system32\d3dx9_30.dll
2012-10-17 00:35:05 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2012-10-17 00:35:05 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2012-10-17 00:35:05 ----A---- C:\Windows\system32\xactengine2_0.dll
2012-10-17 00:35:05 ----A---- C:\Windows\system32\x3daudio1_0.dll
2012-10-17 00:35:05 ----A---- C:\Windows\system32\d3dx9_29.dll
2012-10-17 00:35:04 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2012-10-17 00:35:04 ----A---- C:\Windows\system32\d3dx9_28.dll
2012-10-17 00:35:03 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2012-10-17 00:35:03 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2012-10-17 00:35:03 ----A---- C:\Windows\system32\d3dx9_27.dll
2012-10-17 00:35:03 ----A---- C:\Windows\system32\d3dx9_26.dll
2012-10-17 00:35:02 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2012-10-17 00:35:02 ----A---- C:\Windows\system32\d3dx9_25.dll
2012-10-17 00:35:01 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2012-10-17 00:35:01 ----A---- C:\Windows\system32\d3dx9_24.dll
2012-10-17 00:21:25 ----D---- C:\Users\Juraj\AppData\Roaming\LSC
2012-10-17 00:21:24 ----D---- C:\Users\Juraj\AppData\Roaming\Adobe
2012-10-17 00:15:41 ----D---- C:\Users\Juraj\AppData\Roaming\Lenovo
2012-10-17 00:15:38 ----D---- C:\Users\Juraj\AppData\Roaming\Leadertech
2012-10-17 00:14:39 ----D---- C:\Users\Juraj\AppData\Roaming\Identities
2012-10-17 00:12:33 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2012-10-17 00:12:13 ----D---- C:\Program Files (x86)\Amazon
2012-10-17 00:11:46 ----A---- C:\Windows\firstboot.dat
2012-10-17 00:11:23 ----D---- C:\Users\Juraj\AppData\Roaming\Intel
2012-10-17 00:11:16 ----SD---- C:\Users\Juraj\AppData\Roaming\Microsoft
2012-10-17 00:11:16 ----D---- C:\Users\Juraj\AppData\Roaming\Media Center Programs
2012-10-17 00:11:16 ----D---- C:\Users\Juraj\AppData\Roaming\Macromedia
2012-10-16 23:58:00 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2012-10-16 23:55:18 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2012-10-16 23:55:04 ----D---- C:\Users\Juraj\AppData\Roaming\DAEMON Tools Lite
2012-10-16 23:54:50 ----D---- C:\ProgramData\DAEMON Tools Lite
2012-10-16 21:56:41 ----N---- C:\Windows\system32\pwdspio.sys
2012-10-16 21:56:41 ----N---- C:\Windows\system32\pwdrvio.sys
2012-10-16 21:56:41 ----A---- C:\Windows\system32\pwNative.exe
2012-10-16 21:56:14 ----D---- C:\Program Files (x86)\MiniTool Partition Wizard Home Edition 7.6.1
2012-10-16 21:35:18 ----D---- C:\Program Files (x86)\netscan
2012-10-16 21:34:47 ----D---- C:\Users\Juraj\AppData\Roaming\Network Scanner
2012-10-16 21:29:32 ----D---- C:\Users\Juraj\AppData\Roaming\WinRAR
2012-10-16 21:29:23 ----D---- C:\Program Files\WinRAR
2012-10-16 20:41:57 ----D---- C:\Users\Juraj\AppData\Roaming\vlc
2012-10-16 20:41:36 ----D---- C:\Program Files (x86)\VideoLAN
2012-10-16 19:56:31 ----D---- C:\Users\Juraj\AppData\Roaming\Skype
2012-10-16 19:56:28 ----RD---- C:\Program Files (x86)\Skype
2012-10-16 19:56:26 ----D---- C:\ProgramData\Skype
2012-10-16 19:51:33 ----D---- C:\Users\Juraj\AppData\Roaming\OpenOffice.org
2012-10-16 19:50:36 ----D---- C:\Program Files (x86)\OpenOffice.org 3
2012-10-16 19:35:21 ----D---- C:\Users\Juraj\AppData\Roaming\ESET
2012-10-16 19:28:35 ----D---- C:\Users\Juraj\AppData\Roaming\PwrMgr
2012-10-16 18:56:13 ----D---- C:\Program Files\CCleaner
2012-10-16 18:46:41 ----D---- C:\Program Files\CPUID
2012-09-27 15:14:48 ----D---- C:\Windows\util
2012-09-27 15:08:21 ----D---- C:\Windows\SYSWOW64\sda
2012-09-27 15:08:16 ----A---- C:\Windows\SYSWOW64\RtsP2StorIcon.dll
2012-09-27 15:08:16 ----A---- C:\Windows\system32\drivers\RtsP2Stor.sys
2012-09-27 15:08:10 ----D---- C:\Program Files\Synaptics
2012-09-27 15:08:02 ----A---- C:\Windows\SYSWOW64\SynTPEnhPS.dll
2012-09-27 15:08:02 ----A---- C:\Windows\SYSWOW64\SynTPCOM.dll
2012-09-27 15:08:02 ----A---- C:\Windows\SYSWOW64\SynCtrl.dll
2012-09-27 15:08:02 ----A---- C:\Windows\SYSWOW64\SynCOM.dll
2012-09-27 15:08:02 ----A---- C:\Windows\system32\SynTPCo9.dll
2012-09-27 15:08:02 ----A---- C:\Windows\system32\SynTPAPI.dll
2012-09-27 15:08:02 ----A---- C:\Windows\system32\SynCtrl.dll
2012-09-27 15:08:02 ----A---- C:\Windows\system32\SynCOM.dll
2012-09-27 15:08:02 ----A---- C:\Windows\system32\drivers\SynTP.sys
2012-09-27 15:08:02 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel.sys
2012-09-27 15:07:09 ----D---- C:\Program Files (x86)\Intel Corporation
2012-09-27 15:05:29 ----D---- C:\Program Files (x86)\Microsoft Office
2012-09-27 15:03:27 ----D---- C:\Program Files (x86)\SymSilent
2012-09-27 15:03:05 ----D---- C:\Program Files (x86)\Symantec
2012-09-27 15:02:14 ----D---- C:\ProgramData\Norton
2012-09-27 15:02:01 ----D---- C:\ProgramData\NortonInstaller
2012-09-27 15:01:54 ----D---- C:\Program Files (x86)\Absolute Software
2012-09-27 15:01:47 ----D---- C:\Program Files (x86)\Lenovo Registration
2012-09-27 15:01:31 ----D---- C:\Windows\en
2012-09-27 15:01:13 ----D---- C:\Windows\cs
2012-09-27 15:01:02 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2012-09-27 15:00:34 ----D---- C:\Program Files (x86)\Windows Live
2012-09-27 15:00:27 ----D---- C:\Windows\PCHEALTH
2012-09-27 15:00:25 ----D---- C:\Program Files\Windows Live
2012-09-27 15:00:19 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2012-09-27 15:00:19 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2012-09-27 15:00:19 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2012-09-27 15:00:19 ----A---- C:\Windows\system32\d3dx10_42.dll
2012-09-27 15:00:16 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2012-09-27 15:00:16 ----A---- C:\Windows\system32\d3dx9_32.dll
2012-09-27 14:59:57 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2012-09-27 14:59:48 ----D---- C:\Program Files (x86)\SugarSync
2012-09-27 14:59:07 ----D---- C:\ProgramData\Partner
2012-09-27 14:59:04 ----D---- C:\Program Files\Google
2012-09-27 14:58:52 ----D---- C:\Program Files (x86)\Google
2012-09-27 14:58:43 ----D---- C:\Program Files\Protector Suite
2012-09-27 14:58:39 ----D---- C:\Program Files\Fingerprint Sensor
2012-09-27 14:58:39 ----D---- C:\Program Files\Common Files\AuthenTec
2012-09-27 14:58:36 ----D---- C:\Program Files\Lenovo Fingerprint Reader
2012-09-27 14:58:35 ----D---- C:\ProgramData\Downloaded Installations
2012-09-27 14:58:00 ----A---- C:\Windows\ocsetup_cbs_install_OEMHelpCustomization.txt
2012-09-27 14:57:43 ----D---- C:\swshare
2012-09-27 14:57:37 ----N---- C:\Windows\system32\drivers\Fastboot.sys
2012-09-27 14:57:15 ----D---- C:\Windows\SYSWOW64\Macromed
2012-09-27 14:57:12 ----D---- C:\Program Files (x86)\Evernote
2012-09-27 14:56:34 ----D---- C:\ProgramData\Corel
2012-09-27 14:56:34 ----D---- C:\Program Files (x86)\Corel
2012-09-27 14:56:29 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2012-09-27 14:55:37 ----D---- C:\Windows\Downloaded Installations
2012-09-27 14:55:36 ----D---- C:\ProgramData\Adobe
2012-09-27 14:55:36 ----D---- C:\Program Files (x86)\Adobe
2012-09-27 14:55:23 ----A---- C:\Windows\system32\drivers\tvtvcamd.sys
2012-09-27 14:54:30 ----N---- C:\Windows\PWMBTHLV.EXE
2012-09-27 14:54:28 ----A---- C:\Windows\system32\drivers\TPPWR64V.SYS
2012-09-27 14:54:22 ----D---- C:\Program Files\ThinkPad
2012-09-27 14:54:22 ----D---- C:\Program Files (x86)\ThinkPad
2012-09-27 14:53:04 ----D---- C:\Windows\SYSWOW64\NV
2012-09-27 14:53:04 ----D---- C:\Windows\system32\NV
2012-09-27 14:51:10 ----A---- C:\Windows\system32\RTNUninst64.dll
2012-09-27 14:51:10 ----A---- C:\Windows\system32\RtNicProp64.dll
2012-09-27 14:51:10 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2012-09-27 14:51:07 ----D---- C:\Program Files (x86)\Realtek
2012-09-27 14:50:56 ----D---- C:\Program Files (x86)\Dolby Advanced Audio v2
2012-09-27 14:50:25 ----A---- C:\Windows\SYSWOW64\SASrv.exe
2012-09-27 14:50:00 ----A---- C:\Windows\system32\drivers\SamSfPa.dat
2012-09-27 14:49:54 ----A---- C:\Windows\system32\CxAudMsg64.exe
2012-09-27 14:49:49 ----D---- C:\Program Files\CONEXANT
2012-09-27 14:49:43 ----A---- C:\Windows\system32\UCI64A88.dll
2012-09-27 14:49:43 ----A---- C:\Windows\system32\FMAPO64.dll
2012-09-27 14:49:43 ----A---- C:\Windows\system32\drivers\Mixer.ini
2012-09-27 14:49:42 ----A---- C:\Windows\system32\EEP64A.dll
2012-09-27 14:49:42 ----A---- C:\Windows\system32\EEL64A.dll
2012-09-27 14:49:42 ----A---- C:\Windows\system32\EEG64A.dll
2012-09-27 14:49:42 ----A---- C:\Windows\system32\EED64A.dll
2012-09-27 14:49:42 ----A---- C:\Windows\system32\EEA64A.dll
2012-09-27 14:49:42 ----A---- C:\Windows\system32\drivers\CHDRT64.sys
2012-09-27 14:49:42 ----A---- C:\Windows\system32\CxPageMaster64.dll
2012-09-27 14:49:42 ----A---- C:\Windows\system32\CXHDMI64.dll
2012-09-27 14:49:42 ----A---- C:\Windows\system32\CX64AP60.dll
2012-09-27 14:49:42 ----A---- C:\Windows\system32\C3DHPExt64.dll
2012-09-27 14:49:38 ----D---- C:\Program Files\Common Files\Lenovo
2012-09-27 14:49:31 ----D---- C:\Program Files (x86)\Lenovo
2012-09-27 14:47:33 ----HD---- C:\Windows\system32\WLANProfiles
2012-09-27 14:47:04 ----D---- C:\ProgramData\Roaming
2012-09-27 14:46:17 ----D---- C:\Program Files (x86)\Cisco
2012-09-27 14:46:12 ----D---- C:\ProgramData\Intel.sav
2012-09-27 14:45:29 ----D---- C:\Program Files (x86)\Integrated Camera Driver
2012-09-27 14:45:15 ----D---- C:\Program Files\Lenovo
2012-09-27 14:45:14 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-09-27 14:45:14 ----A---- C:\Windows\system32\drivers\5U877.sys
2012-09-27 14:45:14 ----A---- C:\Windows\system32\5U877.dll
2012-09-27 14:45:08 ----D---- C:\ProgramData\NVIDIA
2012-09-27 14:45:00 ----A---- C:\Windows\SYSWOW64\oemdspif.dll
2012-09-27 14:45:00 ----A---- C:\Windows\system32\nvvsvc.exe
2012-09-27 14:45:00 ----A---- C:\Windows\system32\nvsvcr.dll
2012-09-27 14:45:00 ----A---- C:\Windows\system32\nvsvc64.dll
2012-09-27 14:45:00 ----A---- C:\Windows\system32\nvshext.dll
2012-09-27 14:45:00 ----A---- C:\Windows\system32\nvmctray.dll
2012-09-27 14:45:00 ----A---- C:\Windows\system32\nvcpl.dll
2012-09-27 14:45:00 ----A---- C:\Windows\system32\nv3dappshextr.dll
2012-09-27 14:45:00 ----A---- C:\Windows\system32\nv3dappshext.dll
2012-09-27 14:44:43 ----D---- C:\ProgramData\NVIDIA Corporation
2012-09-27 14:44:41 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2012-09-27 14:44:24 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2012-09-27 14:44:24 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2012-09-27 14:44:24 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2012-09-27 14:44:24 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2012-09-27 14:44:24 ----A---- C:\Windows\SYSWOW64\nvdecodemft.dll
2012-09-27 14:44:24 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2012-09-27 14:44:24 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2012-09-27 14:44:24 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2012-09-27 14:44:24 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2012-09-27 14:44:24 ----A---- C:\Windows\system32\nvwgf2umx.dll
2012-09-27 14:44:24 ----A---- C:\Windows\system32\nvumdshimx.dll
2012-09-27 14:44:24 ----A---- C:\Windows\system32\nvoglv64.dll
2012-09-27 14:44:24 ----A---- C:\Windows\system32\nvinitx.dll
2012-09-27 14:44:24 ----A---- C:\Windows\system32\nvgenco64.dll
2012-09-27 14:44:24 ----A---- C:\Windows\system32\nvdispco64.dll
2012-09-27 14:44:24 ----A---- C:\Windows\system32\nvdecodemft.dll
2012-09-27 14:44:24 ----A---- C:\Windows\system32\nvd3dumx.dll
2012-09-27 14:44:24 ----A---- C:\Windows\system32\nvcuvid.dll
2012-09-27 14:44:24 ----A---- C:\Windows\system32\nvcuvenc.dll
2012-09-27 14:44:24 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2012-09-27 14:44:24 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2012-09-27 14:44:23 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2012-09-27 14:44:23 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2012-09-27 14:44:23 ----A---- C:\Windows\system32\nvcuda.dll
2012-09-27 14:44:23 ----A---- C:\Windows\system32\nvcompiler.dll
2012-09-27 14:44:23 ----A---- C:\Windows\system32\nvapi64.dll
2012-09-27 14:44:22 ----D---- C:\Program Files\NVIDIA Corporation
2012-09-27 14:44:18 ----D---- C:\Program Files\Common Files\Intel
2012-09-27 14:43:35 ----A---- C:\Windows\system32\IntcDAuC.dll
2012-09-27 14:43:35 ----A---- C:\Windows\system32\drivers\IntcDAud.sys
2012-09-27 14:43:33 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2012-09-27 14:43:33 ----A---- C:\Windows\SYSWOW64\IntelOpenCL32.dll
2012-09-27 14:43:33 ----A---- C:\Windows\SYSWOW64\IntelCpHeciSvc.exe
2012-09-27 14:43:33 ----A---- C:\Windows\SYSWOW64\iglhsip32.dll
2012-09-27 14:43:33 ----A---- C:\Windows\SYSWOW64\iglhcp32.dll
2012-09-27 14:43:33 ----A---- C:\Windows\system32\OpenCL.dll
2012-09-27 14:43:33 ----A---- C:\Windows\system32\IntelOpenCL64.dll
2012-09-27 14:43:33 ----A---- C:\Windows\system32\iglhsip64.dll
2012-09-27 14:43:33 ----A---- C:\Windows\system32\iglhcp64.dll
2012-09-27 14:43:33 ----A---- C:\Windows\system32\igfxtray.exe
2012-09-27 14:43:33 ----A---- C:\Windows\system32\igfxTMM.dll
2012-09-27 14:43:33 ----A---- C:\Windows\system32\igfxsrvc.exe
2012-09-27 14:43:33 ----A---- C:\Windows\system32\igfxsrvc.dll
2012-09-27 14:43:33 ----A---- C:\Windows\system32\igfxCoIn_v2778.dll
2012-09-27 14:43:32 ----A---- C:\Windows\SYSWOW64\igfxexps32.dll
2012-09-27 14:43:32 ----A---- C:\Windows\SYSWOW64\igfxdv32.dll
2012-09-27 14:43:32 ----A---- C:\Windows\SYSWOW64\igfxcmrt32.dll
2012-09-27 14:43:32 ----A---- C:\Windows\system32\igfxress.dll
2012-09-27 14:43:32 ----A---- C:\Windows\system32\igfxpph.dll
2012-09-27 14:43:32 ----A---- C:\Windows\system32\igfxpers.exe
2012-09-27 14:43:32 ----A---- C:\Windows\system32\igfxext.exe
2012-09-27 14:43:32 ----A---- C:\Windows\system32\igfxexps.dll
2012-09-27 14:43:32 ----A---- C:\Windows\system32\igfxdo.dll
2012-09-27 14:43:32 ----A---- C:\Windows\system32\IGFXDEVLib.dll
2012-09-27 14:43:32 ----A---- C:\Windows\system32\igfxdev.dll
2012-09-27 14:43:32 ----A---- C:\Windows\system32\igfxcmrt64.dll
2012-09-27 14:43:32 ----A---- C:\Windows\system32\igfxcmjit64.dll
2012-09-27 14:43:31 ----A---- C:\Windows\SYSWOW64\igfxcmjit32.dll
2012-09-27 14:43:30 ----A---- C:\Windows\SYSWOW64\igdumd32.dll
2012-09-27 14:43:30 ----A---- C:\Windows\SYSWOW64\igdrcl32.dll
2012-09-27 14:43:30 ----A---- C:\Windows\system32\igdumd64.dll
2012-09-27 14:43:30 ----A---- C:\Windows\system32\igdrcl64.dll
2012-09-27 14:43:29 ----A---- C:\Windows\system32\igdfcl64.dll
2012-09-27 14:43:29 ----A---- C:\Windows\system32\drivers\igdkmd64.sys
2012-09-27 14:43:28 ----A---- C:\Windows\SYSWOW64\igdfcl32.dll
2012-09-27 14:43:28 ----A---- C:\Windows\SYSWOW64\igdde32.dll
2012-09-27 14:43:28 ----A---- C:\Windows\SYSWOW64\igdbcl32.dll
2012-09-27 14:43:28 ----A---- C:\Windows\system32\igdde64.dll
2012-09-27 14:43:28 ----A---- C:\Windows\system32\igdbcl64.dll
2012-09-27 14:43:28 ----A---- C:\Windows\system32\igd10umd64.dll
2012-09-27 14:43:27 ----A---- C:\Windows\SYSWOW64\igd10umd32.dll
2012-09-27 14:43:27 ----A---- C:\Windows\SYSWOW64\ig7icd32.dll
2012-09-27 14:43:27 ----A---- C:\Windows\system32\ig7icd64.dll
2012-09-27 14:43:27 ----A---- C:\Windows\system32\IccLibDll_x64.dll
2012-09-27 14:43:27 ----A---- C:\Windows\system32\hkcmd.exe
2012-09-27 14:43:27 ----A---- C:\Windows\system32\hccutils.dll
2012-09-27 14:43:27 ----A---- C:\Windows\system32\GfxUI.exe
2012-09-27 14:43:27 ----A---- C:\Windows\system32\gfxSrvc.dll
2012-09-27 14:43:26 ----A---- C:\Windows\system32\difx64.exe
2012-09-27 14:43:10 ----A---- C:\Windows\SYSWOW64\CSVer.dll
2012-09-27 14:42:50 ----A---- C:\Windows\system32\drivers\USB3Ver.dll
2012-09-27 14:42:49 ----A---- C:\Windows\system32\WdfCoInstaller01009.dll
2012-09-27 14:42:49 ----A---- C:\Windows\system32\drivers\iusb3xhc.sys
2012-09-27 14:42:49 ----A---- C:\Windows\system32\drivers\iusb3hub.sys
2012-09-27 14:42:49 ----A---- C:\Windows\system32\drivers\iusb3hcs.sys
2012-09-27 14:42:21 ----A---- C:\Windows\system32\drivers\IntelMEFWVer.dll
2012-09-27 14:42:18 ----A---- C:\Windows\SYSWOW64\log.txt
2012-09-27 14:42:15 ----D---- C:\ProgramData\Intel
2012-09-27 14:42:11 ----D---- C:\Program Files\Intel
2012-09-27 14:41:36 ----D---- C:\Program Files (x86)\Intel
2012-09-27 14:41:35 ----D---- C:\Intel
2012-09-27 14:41:30 ----A---- C:\Windows\system32\drivers\HECIx64.sys
2012-09-27 14:40:06 ----D---- C:\Program Files\MLPS
2012-09-27 14:39:22 ----D---- C:\Program Files\DIFX
2012-09-27 14:37:40 ----D---- C:\Windows\SoftwareDistribution
2012-09-27 14:34:33 ----ASH---- C:\pagefile.sys
2012-09-27 14:34:33 ----ASH---- C:\hiberfil.sys
2012-09-27 14:32:47 ----A---- C:\Windows\system32\drivers\partmgr.sys
2012-09-27 14:31:31 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2012-09-27 14:31:31 ----A---- C:\Windows\system32\DWrite.dll
2012-09-27 14:31:21 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2012-09-27 14:31:21 ----A---- C:\Windows\system32\msvcrt.dll
2012-09-27 14:31:11 ----A---- C:\Windows\SYSWOW64\wmi.dll
2012-09-27 14:31:11 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2012-09-27 14:31:11 ----A---- C:\Windows\system32\wmi.dll
2012-09-27 14:31:11 ----A---- C:\Windows\system32\imagehlp.dll
2012-09-27 14:31:11 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2012-09-27 14:30:53 ----A---- C:\Windows\system32\drivers\afd.sys
2012-09-27 14:30:45 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2012-09-27 14:30:45 ----A---- C:\Windows\system32\ntdll.dll
2012-09-27 14:30:23 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2012-09-27 14:30:23 ----A---- C:\Windows\system32\ntshrui.dll
2012-09-27 14:29:49 ----A---- C:\Windows\SYSWOW64\quartz.dll
2012-09-27 14:29:49 ----A---- C:\Windows\system32\quartz.dll
2012-09-27 14:29:38 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2012-09-27 14:29:38 ----A---- C:\Windows\system32\rdpcore.dll
2012-09-27 14:29:38 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2012-09-27 14:29:29 ----A---- C:\Windows\system32\csrsrv.dll
2012-09-27 14:29:20 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2012-09-27 14:29:20 ----A---- C:\Windows\system32\EncDec.dll
2012-09-27 14:29:03 ----A---- C:\Windows\system32\wwansvc.dll
2012-09-27 14:29:03 ----A---- C:\Windows\system32\wwanprotdim.dll
2012-09-27 14:28:36 ----A---- C:\Windows\SYSWOW64\webio.dll
2012-09-27 14:28:36 ----A---- C:\Windows\system32\webio.dll
2012-09-27 14:28:36 ----A---- C:\Windows\system32\sspisrv.dll
2012-09-27 14:28:36 ----A---- C:\Windows\system32\sspicli.dll
2012-09-27 14:28:36 ----A---- C:\Windows\system32\secur32.dll
2012-09-27 14:28:36 ----A---- C:\Windows\system32\lsass.exe
2012-09-27 14:28:36 ----A---- C:\Windows\system32\lsasrv.dll
2012-09-27 14:28:25 ----A---- C:\Windows\SYSWOW64\packager.dll
2012-09-27 14:28:25 ----A---- C:\Windows\system32\packager.dll
2012-09-27 14:28:16 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2012-09-27 14:28:16 ----A---- C:\Windows\system32\psisdecd.dll
2012-09-27 14:28:05 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2012-09-27 14:28:05 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2012-09-27 14:28:05 ----A---- C:\Windows\system32\oleaut32.dll
2012-09-27 14:28:05 ----A---- C:\Windows\system32\oleacc.dll
2012-09-27 14:27:46 ----A---- C:\Windows\system32\umpo.dll
2012-09-27 14:26:46 ----A---- C:\Windows\system32\perfi005.dat
2012-09-27 14:26:46 ----A---- C:\Windows\system32\perfh005.dat
2012-09-27 14:26:46 ----A---- C:\Windows\system32\perfd005.dat
2012-09-27 14:26:46 ----A---- C:\Windows\system32\perfc005.dat
2012-09-27 14:26:30 ----D---- C:\Windows\SYSWOW64\XPSViewer
2012-09-27 14:26:30 ----D---- C:\Windows\SYSWOW64\drivers\cs-CZ
2012-09-27 14:26:30 ----D---- C:\Windows\SYSWOW64\cs
2012-09-27 14:26:30 ----D---- C:\Windows\cs-CZ
2012-09-27 14:26:29 ----D---- C:\Windows\system32\cs
2012-09-27 14:26:28 ----D---- C:\Windows\system32\drivers\cs-CZ
2012-09-27 14:23:25 ----A---- C:\Windows\system32\tpinspm.dll
2012-09-27 14:23:25 ----A---- C:\Windows\system32\ibmpmsvc.exe
2012-09-27 14:23:25 ----A---- C:\Windows\system32\drivers\ibmpmdrv.sys
2012-09-27 14:23:25 ----A---- C:\Windows\system32\drivers\iaStor.sys
2012-09-27 14:23:05 ----A---- C:\Windows\MFGCLEAN.CMD
2012-09-27 14:22:49 ----SHD---- C:\System Volume Information
2012-09-26 22:17:49 ----D---- C:\mfg
2012-09-26 22:15:44 ----D---- C:\ProgramData\Lenovo
2012-09-26 21:55:27 ----A---- C:\Windows\CSUP.TXT

======List of files/folders modified in the last 1 month======

2012-10-24 13:17:13 ----D---- C:\Windows\Temp
2012-10-24 13:15:55 ----RD---- C:\Program Files
2012-10-24 13:09:54 ----D---- C:\Windows\inf
2012-10-24 13:09:54 ----D---- C:\Windows
2012-10-24 13:09:40 ----D---- C:\Windows\System32
2012-10-24 13:07:25 ----D---- C:\Windows\system32\drivers\etc
2012-10-24 09:08:04 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-10-24 09:00:17 ----D---- C:\Windows\Prefetch
2012-10-23 22:28:53 ----RSD---- C:\Windows\assembly
2012-10-23 22:13:36 ----SHD---- C:\Windows\Installer
2012-10-23 09:33:06 ----D---- C:\Windows\system32\config
2012-10-22 17:43:24 ----D---- C:\Windows\SysWOW64
2012-10-22 16:32:01 ----D---- C:\Windows\winsxs
2012-10-22 16:27:58 ----RD---- C:\Program Files (x86)
2012-10-22 16:04:40 ----D---- C:\Windows\Registration
2012-10-22 16:03:44 ----D---- C:\Program Files (x86)\Internet Explorer
2012-10-22 16:01:08 ----D---- C:\Windows\system32\LogFiles
2012-10-22 09:26:48 ----HD---- C:\ProgramData
2012-10-21 22:54:33 ----D---- C:\Windows\system32\drivers
2012-10-21 22:54:31 ----D---- C:\Windows\system32\DriverStore
2012-10-21 22:54:31 ----D---- C:\Windows\system32\catroot
2012-10-21 22:50:48 ----D---- C:\Program Files\Common Files
2012-10-21 21:49:48 ----D---- C:\Program Files (x86)\Common Files
2012-10-21 17:19:45 ----D---- C:\Windows\Logs
2012-10-21 17:19:45 ----D---- C:\Windows\debug
2012-10-20 11:32:04 ----D---- C:\Windows\Microsoft.NET
2012-10-18 10:26:20 ----D---- C:\Windows\system32\NDF
2012-10-18 10:17:41 ----D---- C:\Windows\system32\wdi
2012-10-18 10:02:32 ----D---- C:\Windows\system32\catroot2
2012-10-18 09:47:20 ----D---- C:\Windows\system32\WinBioPlugIns
2012-10-18 09:47:20 ----D---- C:\Windows\system32\drivers\UMDF
2012-10-18 01:41:26 ----D---- C:\Program Files\Common Files\System
2012-10-18 01:41:25 ----D---- C:\Windows\SYSWOW64\cs-CZ
2012-10-18 01:41:25 ----D---- C:\Windows\system32\cs-CZ
2012-10-18 01:41:25 ----D---- C:\Windows\AppPatch
2012-10-18 01:41:22 ----D---- C:\Windows\SYSWOW64\migration
2012-10-18 01:41:22 ----D---- C:\Windows\system32\migration
2012-10-18 01:41:22 ----D---- C:\Program Files\Internet Explorer
2012-10-18 01:41:19 ----RSD---- C:\Windows\Fonts
2012-10-18 01:41:19 ----D---- C:\Program Files\Windows Journal
2012-10-18 01:04:57 ----D---- C:\Windows\Tasks
2012-10-18 01:04:57 ----D---- C:\Windows\system32\Tasks
2012-10-17 08:34:10 ----D---- C:\Windows\rescache
2012-10-17 08:28:58 ----D---- C:\Program Files\Windows Sidebar
2012-10-17 08:28:58 ----D---- C:\Program Files\Windows Photo Viewer
2012-10-17 08:28:58 ----D---- C:\Program Files\Windows Media Player
2012-10-17 08:28:58 ----D---- C:\Program Files\Windows Mail
2012-10-17 08:28:58 ----D---- C:\Program Files\Windows Defender
2012-10-17 08:28:58 ----D---- C:\Program Files\DVD Maker
2012-10-17 08:28:58 ----D---- C:\Program Files (x86)\Windows Sidebar
2012-10-17 08:28:58 ----D---- C:\Program Files (x86)\Windows Media Player
2012-10-17 08:28:58 ----D---- C:\Program Files (x86)\Windows Mail
2012-10-17 08:28:57 ----D---- C:\Windows\SYSWOW64\winrm
2012-10-17 08:28:57 ----D---- C:\Windows\SYSWOW64\slmgr
2012-10-17 08:28:57 ----D---- C:\Windows\SYSWOW64\migwiz
2012-10-17 08:28:57 ----D---- C:\Windows\SYSWOW64\en-US
2012-10-17 08:28:57 ----D---- C:\Windows\SYSWOW64\en
2012-10-17 08:28:57 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2012-10-17 08:28:57 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2012-10-17 08:28:57 ----D---- C:\Program Files (x86)\Windows Defender
2012-10-17 08:28:49 ----D---- C:\Windows\SYSWOW64\WCN
2012-10-17 08:28:49 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2012-10-17 08:28:49 ----D---- C:\Windows\SYSWOW64\DriverStore
2012-10-17 08:28:49 ----D---- C:\Windows\SYSWOW64\Dism
2012-10-17 08:28:48 ----D---- C:\Windows\en-US
2012-10-17 08:28:47 ----D---- C:\Windows\system32\winrm
2012-10-17 08:28:47 ----D---- C:\Windows\system32\slmgr
2012-10-17 08:28:47 ----D---- C:\Windows\system32\migwiz
2012-10-17 08:28:47 ----D---- C:\Windows\system32\en-US
2012-10-17 08:28:47 ----D---- C:\Windows\system32\en
2012-10-17 08:28:47 ----D---- C:\Windows\system32\Boot
2012-10-17 08:28:41 ----D---- C:\Windows\system32\WCN
2012-10-17 08:28:41 ----D---- C:\Windows\system32\drivers\en-US
2012-10-17 08:28:41 ----D---- C:\Windows\system32\Dism
2012-10-17 08:28:40 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2012-10-17 08:28:40 ----D---- C:\Windows\Speech
2012-10-17 07:50:14 ----D---- C:\Windows\Panther
2012-10-17 00:14:25 ----SHD---- C:\$Recycle.Bin
2012-10-17 00:12:39 ----D---- C:\SWTOOLS
2012-10-17 00:11:15 ----RD---- C:\Users
2012-10-16 21:54:32 ----D---- C:\Windows\SYSWOW64\drivers
2012-10-16 21:37:42 ----SD---- C:\ProgramData\Microsoft
2012-10-16 19:34:28 ----D---- C:\Windows\system32\restore
2012-09-27 15:15:29 ----D---- C:\Windows\system32\sysprep
2012-09-27 15:12:08 ----D---- C:\Windows\SYSWOW64\wbem
2012-09-27 15:00:27 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-09-27 14:58:48 ----D---- C:\Windows\system32\WinBioDatabase
2012-09-27 14:58:33 ----D---- C:\Windows\Help
2012-09-27 14:54:33 ----RSD---- C:\Windows\Media
2012-09-27 14:48:26 ----D---- C:\Windows\system32\CodeIntegrity
2012-09-27 14:45:29 ----D---- C:\Windows\twain_32
2012-09-27 14:41:22 ----D---- C:\Windows\system32\Recovery
2012-09-27 14:29:52 ----D---- C:\Windows\ehome
2012-09-27 14:26:31 ----D---- C:\Windows\servicing
2012-09-27 14:26:30 ----D---- C:\Windows\SYSWOW64\MUI
2012-09-27 14:26:30 ----D---- C:\Windows\SYSWOW64\com
2012-09-27 14:26:30 ----D---- C:\Windows\IME
2012-09-27 14:26:29 ----D---- C:\Windows\system32\oobe
2012-09-27 14:26:29 ----D---- C:\Windows\PolicyDefinitions
2012-09-27 14:26:28 ----D---- C:\Windows\system32\wbem
2012-09-27 14:26:28 ----D---- C:\Windows\system32\MUI
2012-09-27 14:26:28 ----D---- C:\Windows\system32\com
2012-09-27 14:23:05 ----D---- C:\Windows\Setup

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 avc3;avc3; C:\Windows\system32\DRIVERS\avc3.sys [2012-06-13 700384]
R0 Fastboot;Fastboot; C:\Windows\System32\DRIVERS\Fastboot.sys [2012-01-17 70416]
R0 gzflt;gzflt; C:\Windows\system32\DRIVERS\gzflt.sys [2012-08-29 145696]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-12-23 568600]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-04-13 19224]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2012-06-10 29032]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 Shockprf;Shockprf; C:\Windows\System32\DRIVERS\Apsx64.sys [2011-12-29 147784]
R0 TPDIGIMN;TPDIGIMN; C:\Windows\System32\DRIVERS\ApsHM64.sys [2011-12-29 25416]
R0 trufos;trufos; C:\Windows\system32\DRIVERS\trufos.sys [2012-07-02 350160]
R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver; \??\c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2012-07-06 93160]
R1 bdfwfpf;bdfwfpf; \??\C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-14 103504]
R1 BDVEDISK;BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys [2012-04-17 76944]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-10-16 283200]
R1 PHCORE;PHCORE; \??\C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [2012-03-27 33344]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 TPPWRIF;TPPWRIF; C:\Windows\System32\drivers\Tppwr64v.sys [2012-05-15 19784]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 5U877;5U877; C:\Windows\system32\DRIVERS\5U877.sys [2012-03-28 216704]
R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter; C:\Windows\system32\DRIVERS\AMPPAL.sys [2012-01-09 195584]
R3 avckf;avckf; C:\Windows\system32\DRIVERS\avckf.sys [2012-06-13 577248]
R3 avchv;avchv Function Driver; C:\Windows\system32\DRIVERS\avchv.sys [2011-11-25 258736]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2012-03-08 1602688]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2012-04-11 42280]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-06-25 14760096]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-21 331264]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-04-13 356632]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-04-13 789272]
R3 iwdbus;IWD Bus Enumerator; C:\Windows\system32\DRIVERS\iwdbus.sys [2011-12-21 25496]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2011-11-10 60184]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\Windows\system32\DRIVERS\psadd.sys [2011-12-26 40248]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RSP2STOR;Realtek PCIE CardReader Driver - P2; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [2011-10-27 259688]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-08-23 565352]
R3 SmbDrvIntel;SmbDrvIntel; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2012-06-19 27448]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2012-06-19 431928]
R3 TVTI2C;Lenovo SM bus driver; C:\Windows\system32\DRIVERS\Tvti2c.sys [2011-05-29 40248]
R3 tvtvcamd;ThinkVantage Virtual Camera; C:\Windows\system32\DRIVERS\tvtvcamd.sys [2011-12-08 27432]
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol; C:\Windows\system32\DRIVERS\amppal.sys [2012-01-09 195584]
S3 BDSandBox;BDSandBox; \??\C:\Windows\system32\drivers\bdsandbox.sys [2012-08-23 82384]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-12-08 80384]
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2012-02-13 95232]
S3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2012-02-13 747008]
S3 ibtfltcoex;ibtfltcoex; C:\Windows\system32\DRIVERS\iBtFltCoex.sys [2012-03-21 60928]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2011-12-21 34200]
S3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2012-02-20 11471872]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2012-07-11 140672]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-01-09 659968]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-03-27 1014096]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-03-27 1104208]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-01-18 135952]
R2 CxAudMsg;@C:\Windows\system32\CxAudMsg64.exe,-100; C:\Windows\system32\CxAudMsg64.exe [2010-12-17 198784]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2012-02-26 626960]
R2 FastbootService;FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [2012-01-17 169776]
R2 FPLService;TrueSuiteService; C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe [2012-06-07 328552]
R2 IBMPMSVC;Lenovo PM Service; C:\Windows\system32\ibmpmsvc.exe [2012-04-11 47440]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-02-03 628448]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-03-07 128280]
R2 Intel(R) Small Business Advantage;Intel(R) Small Business Advantage; C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [2012-04-24 46816]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-03-07 163608]
R2 LENOVO.CAMMUTE;Lenovo Camera Mute; C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe [2012-06-02 58224]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2011-07-12 101736]
R2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction; C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2012-06-02 61296]
R2 LENOVO.TVTVCAM;ThinkVantage Virtual Camera Controller; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [2012-06-02 179568]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2011-07-12 133992]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-03-07 277784]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-06-08 890216]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-06-10 2458984]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-10-22 66872]
R2 PSI_SVC_2;Protexis Licensing V2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2010-03-11 193824]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2012-02-26 148752]
R2 SafeBox;SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [2012-06-25 95184]
R2 SAService;Conexant SmartAudio service; C:\Windows\system32\SAsrv.exe []
R2 SUService;System Update; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [2012-06-06 34728]
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2011-07-12 145256]
R2 TPHKSVC;On Screen Display; C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [2011-12-29 144960]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-03-07 363800]
R2 UPDATESRV;Bitdefender Desktop Update Service; C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe [2012-07-03 68416]
R2 VIPAppService;VIPAppService; C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe [2012-04-19 84080]
R2 VSSERV;Bitdefender Virus Shield; C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe [2012-09-26 1576848]
R3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2012-03-27 1304912]
R3 Power Manager DBC Service;Power Manager DBC Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2012-05-15 1662560]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-19 138576]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-09-27 136176]
S2 HyperW7Svc;HyperW7 Service; C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe [2012-05-30 144992]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-06-25 276288]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-09-27 136176]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-02-26 273168]
S3 PwmEWSvc;Cisco EnergyWise Enabler; C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2012-05-15 1665120]
S3 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\Windows\System32\TPHDEXLG64.exe [2011-12-29 49480]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-10-18 1255736]
S4 BdDesktopParental;Bitdefender Desktop Parental Control; C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe [2012-09-11 65344]

-----------------EOF-----------------

Kamarad nekamarad, bylo to z vaseho uctu a za nej jste zodpovedny vy

Pokud jeste v pc je, odinstalujte Spybot - Search & Destroy

Stahnete OTM http://oldtimer.geekstogo.com/OTM.exe a ulozte nejlepe na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Do leveho okna zkopirujte tento skript (vcetne te dvojtecky pred slovem commands)

Kód: Vybrat vše

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[RESETHOSTS]
[Purity]

:services
AdobeARMservice
gupdate
SkypeUpdate
gupdatem

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\ProgramData\Spybot - Search & Destroy
C:\Program Files (x86)\Spybot - Search & Destroy
C:\Users\Juraj\AppData\Roaming\ESET
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
C:\Windows\tasks\SUPERAntiSpyware Scheduled Task c834b177-6fcf-4734-adcb-b101f2c56471.job
C:\Windows\tasks\SUPERAntiSpyware Scheduled Task ee51a5bc-ffe0-4140-a1fb-32c961f1b892.job

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=-
""=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=-
"DAEMON Tools Lite"=-
"Comrade.exe"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] /64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware] /64
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=-

Kliknete na MoveIt a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu sem dejte log, ktery na vas vyskoci, nebo bude zde C:\_OTM\MovedFiles\xxxxxxxx_xxxxxx (misto tech x budou cisla, predstavujici datum a cas spusteni)

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56504 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Juraj
->Temp folder emptied: 12286113 bytes
->Temporary Internet Files folder emptied: 160414 bytes
->Google Chrome cache emptied: 279898872 bytes
->Flash cache emptied: 57002 bytes

User: Public

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 7976 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 279,00 mb

[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Juraj
->Flash cache emptied: 0 bytes

User: Public

User: UpdatusUser

Total Flash Files Cleaned = 0,00 mb

C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
========== SERVICES/DRIVERS ==========
Service AdobeARMservice stopped successfully!
Service AdobeARMservice deleted successfully!
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service SkypeUpdate stopped successfully!
Service SkypeUpdate deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
C:\ProgramData\Spybot - Search & Destroy\Recovery folder moved successfully.
C:\ProgramData\Spybot - Search & Destroy\Logs folder moved successfully.
C:\ProgramData\Spybot - Search & Destroy folder moved successfully.
C:\Program Files (x86)\Spybot - Search & Destroy folder moved successfully.
C:\Users\Juraj\AppData\Roaming\ESET\ESET Smart Security folder moved successfully.
C:\Users\Juraj\AppData\Roaming\ESET folder moved successfully.
File move failed. C:\Windows\tasks\GoogleUpdateTaskMachineCore.job scheduled to be moved on reboot.
File move failed. C:\Windows\tasks\GoogleUpdateTaskMachineUA.job scheduled to be moved on reboot.
File move failed. C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job scheduled to be moved on reboot.
File move failed. C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job scheduled to be moved on reboot.
File move failed. C:\Windows\tasks\SUPERAntiSpyware Scheduled Task c834b177-6fcf-4734-adcb-b101f2c56471.job scheduled to be moved on reboot.
File move failed. C:\Windows\tasks\SUPERAntiSpyware Scheduled Task ee51a5bc-ffe0-4140-a1fb-32c961f1b892.job scheduled to be moved on reboot.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\IgfxTray not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Skype deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Comrade.exe deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.

OTM by OldTimer - Version 3.1.21.0 log created on 10242012_221034

Files moved on Reboot...
C:\Users\Juraj\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Windows\temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Windows\temp\FXSTIFFDebugLogFile.txt moved successfully.
File C:\Windows\temp\~bdDA4B.tmp not found!
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job moved successfully.
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job moved successfully.
C:\Windows\tasks\SUPERAntiSpyware Scheduled Task c834b177-6fcf-4734-adcb-b101f2c56471.job moved successfully.
C:\Windows\tasks\SUPERAntiSpyware Scheduled Task ee51a5bc-ffe0-4140-a1fb-32c961f1b892.job moved successfully.

Registry entries deleted on Reboot...

OTM provedlo co melo. Nastala nejaka zmena?

Je to lepsie. Obcas sa este stale lagne na sekundu ale uz je to ovela menej

Este sa to da zlepsit ci uz je to zbytocne?

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

Ospravedlnujem sa ze tak neskoro, ale mal som zapocty

Tu su logy.

OTL Extras logfile created on: 28. 10. 2012 9:21:21 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Juraj\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

3,60 Gb Total Physical Memory | 2,10 Gb Available Physical Memory | 58,19% Memory free
7,21 Gb Paging File | 4,53 Gb Available in Paging File | 62,83% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 80,42 Gb Total Space | 29,96 Gb Free Space | 37,25% Space Free | Partition Type: NTFS
Drive D: | 599,17 Gb Total Space | 531,45 Gb Free Space | 88,70% Space Free | Partition Type: NTFS
Drive Q: | 17,58 Gb Total Space | 5,15 Gb Free Space | 29,32% Space Free | Partition Type: NTFS

Computer Name: JURAJNTB | User Name: Juraj | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

========== Authorized Applications List ==========

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1467A517-DC49-4017-B2AA-E8DC5F7BE1C6}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{2707BD48-39FF-4850-98A1-A8E6455DBD77}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{38D24D86-9339-4249-90CD-4FF541A76A84}" = lport=137 | protocol=17 | dir=in | app=system |
"{3D3A5FF9-8B4B-44DD-A073-9C78CC7D28B7}" = lport=138 | protocol=17 | dir=in | app=system |
"{4C08B26A-63ED-42D8-AF9F-2E132CF5FB78}" = rport=445 | protocol=6 | dir=out | app=system |
"{5ED32338-ECFC-45C3-836B-B8AA75884903}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{6F089D18-DEC5-441F-8EEC-864249878E28}" = rport=139 | protocol=6 | dir=out | app=system |
"{94C8BFED-FEF2-4858-B741-6B0BD0E27C0C}" = lport=139 | protocol=6 | dir=in | app=system |
"{AD4F7BDA-6E88-4913-A0BB-ABFCE9694E79}" = lport=445 | protocol=6 | dir=in | app=system |
"{BC2C2200-61AC-4388-A145-E01A2DC134DA}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D4092257-CC78-45AD-ABB9-D4802504114D}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{D69225B6-ED1F-4105-9955-84A8578460FE}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{DF41B019-65E8-438E-9954-532D475E1656}" = rport=138 | protocol=17 | dir=out | app=system |
"{E8506C05-D4A9-49E0-8BDD-B493517D7C95}" = rport=137 | protocol=17 | dir=out | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{023781DA-6206-441C-AD54-BF620225C25A}" = dir=in | app=c:\program files (x86)\intel corporation\intel widi\widiapp.exe |
"{03D09BFD-83B6-41E6-8D9E-5020E558BE7E}" = protocol=17 | dir=in | app=d:\crysis\bin64\crysisdedicatedserver.exe |
"{0578C6CA-5688-44E8-BC87-1B93AFB6DF4C}" = protocol=17 | dir=in | app=d:\assassin's creed\assassinscreed_dx9.exe |
"{08DC1475-F0CD-48FB-949C-21BDFBC5D911}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{179BA8E8-D79B-4FFC-AC48-8CA66997812D}" = protocol=6 | dir=in | app=d:\assassin's creed\assassinscreed_launcher.exe |
"{18C8BDF5-DD2A-4D9B-B67E-AEEA176B9BC4}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{2FD4A4C4-B260-4C71-9A2A-E6B1378E46C5}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{32D5493F-8D08-4CC3-9A71-4F2638B35E3D}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{3591045C-0B75-4962-B002-698B04ADCE40}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{52548A72-D339-45D5-9DA6-4D5004FBD88B}" = protocol=17 | dir=in | app=d:\crysis\bin64\crysis.exe |
"{5DF6B022-A95B-48B7-AACF-07D7C6C8EE65}" = protocol=6 | dir=in | app=d:\crysis\bin64\crysisdedicatedserver.exe |
"{7404F318-BCEF-42C0-9AA5-EA3F4D1A316B}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{791333BF-FAD2-4125-AAA0-30547D6A014F}" = protocol=6 | dir=in | app=d:\assassin's creed\assassinscreed_dx10.exe |
"{7B288534-7898-45F7-B0E9-B0651C2EE20C}" = protocol=17 | dir=in | app=d:\assassin's creed\assassinscreed_launcher.exe |
"{7EA341B6-011B-4CCD-B0B0-1132306AB095}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{81C5CD41-5F6D-4D0E-A5E6-23A8AC3E5555}" = protocol=17 | dir=in | app=d:\crysis\bin32\crysisdedicatedserver.exe |
"{862F834F-6256-40F8-880F-B5FDE3E9DE0B}" = protocol=6 | dir=in | app=d:\crysis\bin64\crysis.exe |
"{9FDF3316-9806-49DE-B4B2-3313A522EEC0}" = protocol=6 | dir=in | app=d:\assassin's creed\assassinscreed_dx9.exe |
"{B21D36FC-B7F6-4B50-8A41-09D36BA2AB89}" = protocol=17 | dir=in | app=d:\assassin's creed\assassinscreed_dx10.exe |
"{BBDBD7C0-894A-4A00-B3B7-363720F5DE38}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{C12D8CCF-538E-43F2-A519-18DA007C4756}" = protocol=6 | dir=in | app=d:\crysis\bin32\crysisdedicatedserver.exe |
"{C184F3EA-8FF3-49B4-9186-B6B0A5ECC947}" = protocol=6 | dir=in | app=d:\crysis\bin32\crysis.exe |
"{D5083A7E-24F1-4480-B328-BA451C68C03D}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{D715D908-4295-4D4E-B106-5E2E0E300933}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{E37155AA-315B-472E-8817-3783FA87E839}" = protocol=17 | dir=in | app=d:\crysis\bin32\crysis.exe |
"{F75215BC-8E88-45FD-966F-6FCE9499C11E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F7B61E3D-8C6D-4D64-9256-47AC23A2A7E3}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{F810FE17-55BA-47CB-96CD-D870C2C1947D}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"TCP Query User{7EACF13A-0BEC-43A6-8F42-EC032B6FE6FD}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe" = protocol=6 | dir=in | app=c:\program files (x86)\intel\intelappstore\bin\ismagent.exe |
"UDP Query User{DE906A2F-92AA-42EA-9F14-7E6FC392D918}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe" = protocol=17 | dir=in | app=c:\program files (x86)\intel\intelappstore\bin\ismagent.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{0369F866-2CE0-4EB9-B426-88FA122C6E82}" = Lenovo Patch Utility 64 bit
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{09536BA1-E498-4CC3-B834-D884A67D7E34}" = Intel® Trusted Connect Service Client
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{28EF7372-9087-4AC3-9B9F-D9751FCDF830}" = Intel(R) Wireless Display
"{3015F546-6C3E-4E6A-B564-BCDF88C0BA2A}" = Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology
"{34384A2A-2CA2-4446-AB0E-1F360BA2AAC5}" = Windows Live Remote Service Resources
"{37EC048A-81A2-452A-8D1F-3BE2018E767D}" = Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed
"{3849486C-FF09-4F5D-B491-3E179D58EE15}" = Message Center Plus
"{3921492E-82D2-4180-8124-E347AD2F2DB4}" = Windows Live Remote Client Resources
"{46A84694-59EC-48F0-964C-7E76E9F8A2ED}" = ThinkVantage Active Protection System
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5E2652DF-743F-482B-A593-C95F431A5769}" = RapidBoot Shield
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{88C6A6D9-324C-46E8-BA87-563D14021442}_is1" = ThinkVantage Communications Utility
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 296.90
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 296.90
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus 1.7.13
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.7.13
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{BF601122-9F0A-41A9-BA06-3158D9FB4B80}" = Lenovo SimpleTap
"{C5BB9380-D729-410A-A440-061EBCADCCB9}" = Fingerprint Reader
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DD00F699-6861-4DCF-A19F-8CF61E5E28ED}" = Lenovo Solution Center
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{E97F409F-9E1C-42A0-B72D-765A78DF3696}" = Intel® PROSet/Wireless WiFi Software
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"64A62163FE43328D13305746CB8BCC93F2DF6545" = Windows Driver Package - Intel (iaStor) hdc (11/29/2011 11.0.0.1032)
"Bitdefender" = Bitdefender Total Security 2013
"CCleaner" = CCleaner
"CNXT_AUDIO_HDA" = Conexant HD Audio
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.61.5
"FD2ED46D31CE7DF190049D079E92DE03D347A634" = Windows Driver Package - Lenovo 1.65.05.21 (01/11/2012 1.65.05.21)
"GIMP-2_is1" = GIMP 2.8.2
"LenovoAutoScrollUtility" = Lenovo Auto Scroll Utility
"MatlabR2008a" = MATLAB R2008a
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"OnScreenDisplay" = On Screen Display
"Power Management Driver" = Lenovo Power Management Driver
"SynTPDeinstKey" = ThinkPad UltraNav Driver
"WinRAR archiver" = WinRAR 4.20 (64-bitová verzia)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{000E79B7-E725-4F01-870A-C12942B7F8E4}" = Crysis(R)
"{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1" = MiniTool Partition Wizard Home Edition 7.6.1
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{13F59938-C595-479C-B479-F171AB9AF64F}" = Lenovo User Guide
"{14DC0059-00F1-4F62-BD1A-AB23CD51A95E}" = Adobe AIR
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{25C64847-B900-48AD-A164-1B4F9B774650}" = System Update
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2DC26D10-CC6A-494F-BEA3-B5BC21126D5E}" = Lenovo Welcome
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{40F4FF7A-B214-4453-B973-080B09CED019}" = Absolute Reminder
"{4264C020-850B-4F08-ACBE-98205D9C336C}" = Windows Live Writer
"{4A5667B2-5D13-46C2-85B5-9D46A6096F61}" = Secure Download Manager
"{50DC5136-21E8-48BC-97E5-1AD055F6B0B6}" = Create Recovery Media
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{5B5DEF99-85E9-423D-A1A3-B83202697B09}" = Lenovo Solutions for Small Business Customizations
"{5C1F18D2-F6B7-4242-B803-B5A78648185D}" = Corel WinDVD
"{5F4C776F-8CBD-4C4F-892F-B568ABDD70C8}" = GameSpy Comrade
"{608E1B9B-A2E8-4A1F-8BAB-874EB0DD25E3}" = Intel(R) Update Manager
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{6707C034-ED6B-4B6A-B21F-969B3606FBDE}" = Lenovo Registration
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6A6D86CD-B004-46b7-8951-7BB75A776F8C}" = Lenovo Solutions for Small Business
"{6E6E7725-C7BC-4C39-8B3F-14B67331A120}" = Lenovo Patch Utility
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{73736FBF-5A67-4AB8-A1BF-DFCAB9467F3F}" = OpenOffice.org 3.4.1
"{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{80E8C65A-8F70-4585-88A2-ABC54BABD576}" = Windows Live Mesh
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8CFA9151-6404-409A-AF22-4632D04582FD}" = Assassin's Creed
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{93F34C5C-ACAA-48F3-9B26-70359A117F12}" = Intel(R) WiDi
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A6C48A9F-694A-4234-B3AA-62590B668927}" = Intel(R) Manageability Engine Firmware Recovery Agent
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A78800AF-1779-4AE8-8EBE-16E1BE727C71}" = Integrated Camera Driver Installer Package Ver.1.2.1.18
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI - Czech
"{B6190387-0036-4BEB-8D74-A0AFC5F14706}" = Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení
"{B7B3E9B3-FB14-4927-894B-E9124509AF5A}" = Adobe Flash Player 10 ActiveX
"{C1594429-8296-4652-BF54-9DBE4932A44C}" = Realtek PCIE Card Reader
"{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}" = Power Manager
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E8D46836-CD55-453C-A107-A59EC51CB8DC}" = VIP Access
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F2979AAA-FDD7-4CB3-93BC-5C24D965D679}" = Windows Live Messenger
"{F761359C-9CED-45AE-9A51-9D6605CD55C4}" = Evernote v. 4.2.3
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) OpenCL CPU Runtime
"{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}" = Lenovo Warranty Information
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"Adobe AIR" = Adobe AIR
"DAEMON Tools Lite" = DAEMON Tools Lite
"Dev-C++" = Dev-C++ 5 beta 9 release (4.9.9.2)
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.50
"Fastboot" = RapidBoot HDD Accelerator
"Fraps" = Fraps
"Google Chrome" = Google Chrome
"Intel AppUp(SM) center 33057" = Intel AppUp(SM) center
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verzia 1.65.1.1000
"SpywareBlaster_is1" = SpywareBlaster 4.6
"SugarSync" = SugarSync Manager
"VLC media player" = VLC media player 2.0.3
"WinLiveSuite" = Windows Live Essentials

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 19. 10. 2012 8:48:16 | Computer Name = JurajNTB | Source = WinMgmt | ID = 10
Description =

Error - 19. 10. 2012 12:44:30 | Computer Name = JurajNTB | Source = WinMgmt | ID = 10
Description =

Error - 21. 10. 2012 16:31:29 | Computer Name = JurajNTB | Source = Application Error | ID = 1000
Description = Název chybující aplikace: chrome.exe, verze: 22.0.1229.94, časové
razítko: 0x507531a4 Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko:
0x00000000 Kód výjimky: 0xc000041d Posun chyby: 0x73824f0d ID chybujícího procesu:
0x4c78 Čas spuštění chybující aplikace: 0x01cdafc3c541bc7e Cesta k chybující aplikaci:
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe Cesta k chybujícímu
modulu: unknown ID zprávy: 4a9c39d0-1bbe-11e2-8057-f28edf06f12b

Error - 21. 10. 2012 16:48:14 | Computer Name = JurajNTB | Source = WinMgmt | ID = 10
Description =

Error - 21. 10. 2012 17:08:19 | Computer Name = JurajNTB | Source = WinMgmt | ID = 10
Description =

Error - 21. 10. 2012 17:09:08 | Computer Name = JurajNTB | Source = Application Error | ID = 1000
Description = Název chybující aplikace: obexsrv.exe, verze: 2.0.0.128, časové razítko:
0x4ed5d3d0 Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17725, časové razítko:
0x4ec49b8f Kód výjimky: 0xc0000005 Posun chyby: 0x0003331f ID chybujícího procesu:
0xcd0 Čas spuštění chybující aplikace: 0x01cdafd03254860e Cesta k chybující aplikaci:
C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe Cesta k chybujícímu modulu: C:\Windows\SysWOW64\ntdll.dll
ID
zprávy: 8cec816c-1bc3-11e2-87e7-b888e3337442

Error - 22. 10. 2012 8:49:09 | Computer Name = JurajNTB | Source = Application Error | ID = 1000
Description = Název chybující aplikace: chrome.exe, verze: 22.0.1229.94, časové
razítko: 0x507531a4 Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko:
0x00000000 Kód výjimky: 0xc000041d Posun chyby: 0x72b34f0d ID chybujícího procesu:
0x2e34 Čas spuštění chybující aplikace: 0x01cdb0535839def2 Cesta k chybující aplikaci:
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe Cesta k chybujícímu
modulu: unknown ID zprávy: dec25eee-1c46-11e2-87e7-b888e3337442

Error - 22. 10. 2012 9:06:23 | Computer Name = JurajNTB | Source = Application Error | ID = 1000
Description = Název chybující aplikace: chrome.exe, verze: 22.0.1229.94, časové
razítko: 0x507531a4 Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko:
0x00000000 Kód výjimky: 0xc000041d Posun chyby: 0x72b34f0d ID chybujícího procesu:
0x194c Čas spuštění chybující aplikace: 0x01cdb0560431f4fb Cesta k chybující aplikaci:
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe Cesta k chybujícímu
modulu: unknown ID zprávy: 47224b40-1c49-11e2-87e7-b888e3337442

Error - 22. 10. 2012 9:51:29 | Computer Name = JurajNTB | Source = MsiInstaller | ID = 11935
Description =

Error - 22. 10. 2012 11:14:28 | Computer Name = JurajNTB | Source = WinMgmt | ID = 10
Description =

[ Lenovo-Message Center Plus/Admin Events ]
Error - 25. 10. 2012 7:06:23 | Computer Name = JurajNTB | Source = Lenovo-Message Center Plus/Admin | ID = 2
Description = Message = Není znám žádný takový hostitel -> Exception message: Není
znám žádný takový hostitel

Error - 25. 10. 2012 11:26:09 | Computer Name = JurajNTB | Source = Lenovo-Message Center Plus/Admin | ID = 2
Description = Message = Není znám žádný takový hostitel -> Exception message: Není
znám žádný takový hostitel

Error - 25. 10. 2012 11:26:09 | Computer Name = JurajNTB | Source = Lenovo-Message Center Plus/Admin | ID = 2
Description = Message = Není znám žádný takový hostitel -> Exception message: Není
znám žádný takový hostitel

Error - 25. 10. 2012 11:26:09 | Computer Name = JurajNTB | Source = Lenovo-Message Center Plus/Admin | ID = 2
Description = Message = Není znám žádný takový hostitel -> Exception message: Není
znám žádný takový hostitel

Error - 25. 10. 2012 15:27:28 | Computer Name = JurajNTB | Source = Lenovo-Message Center Plus/Admin | ID = 2
Description = Message = Není znám žádný takový hostitel -> Exception message: Není
znám žádný takový hostitel

Error - 25. 10. 2012 15:27:28 | Computer Name = JurajNTB | Source = Lenovo-Message Center Plus/Admin | ID = 2
Description = Message = Není znám žádný takový hostitel -> Exception message: Není
znám žádný takový hostitel

Error - 25. 10. 2012 15:27:28 | Computer Name = JurajNTB | Source = Lenovo-Message Center Plus/Admin | ID = 2
Description = Message = Není znám žádný takový hostitel -> Exception message: Není
znám žádný takový hostitel

Error - 27. 10. 2012 10:46:39 | Computer Name = JurajNTB | Source = Lenovo-Message Center Plus/Admin | ID = 2
Description = Message = Není znám žádný takový hostitel -> Exception message: Není
znám žádný takový hostitel

Error - 27. 10. 2012 10:46:39 | Computer Name = JurajNTB | Source = Lenovo-Message Center Plus/Admin | ID = 2
Description = Message = Není znám žádný takový hostitel -> Exception message: Není
znám žádný takový hostitel

Error - 27. 10. 2012 10:46:39 | Computer Name = JurajNTB | Source = Lenovo-Message Center Plus/Admin | ID = 2
Description = Message = Není znám žádný takový hostitel -> Exception message: Není
znám žádný takový hostitel

[ System Events ]
Error - 18. 10. 2012 3:48:52 | Computer Name = JurajNTB | Source = DCOM | ID = 10010
Description =

Error - 18. 10. 2012 3:48:52 | Computer Name = JurajNTB | Source = Microsoft-Windows-LanguagePackSetup | ID = 1000
Description = Nepodařilo se inicializovat klienta CBS. Poslední chyba: 0x80080005

Error - 18. 10. 2012 3:48:52 | Computer Name = JurajNTB | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description = Nepodařilo se spustit průvodce instalací jazykové sady. Restartujte
systém a zkuste znovu spustit průvodce.

Error - 18. 10. 2012 4:57:46 | Computer Name = JurajNTB | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby netprofm bylo dosaženo časového
limitu (30000 ms).

Error - 18. 10. 2012 14:18:06 | Computer Name = JurajNTB | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby Dnscache bylo dosaženo časového
limitu (30000 ms).

Error - 18. 10. 2012 14:18:07 | Computer Name = JurajNTB | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby Intel(R) Small Business Advantage
bylo dosaženo časového limitu (30000 ms).

Error - 18. 10. 2012 17:36:01 | Computer Name = JurajNTB | Source = bowser | ID = 8003
Description =

Error - 18. 10. 2012 18:14:29 | Computer Name = JurajNTB | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby lmhosts bylo dosaženo časového
limitu (30000 ms).

Error - 19. 10. 2012 8:41:18 | Computer Name = JurajNTB | Source = volsnap | ID = 393241
Description = Stínové kopie svazku C: byly smazány, protože úložiště stínové kopie
nebylo možné včas zvětšit. Zvažte možnost snížení vstupně-výstupního zatížení systému
nebo zvolte svazek úložiště stínové kopie, pro který není vytvářena stínová kopie.

Error - 19. 10. 2012 12:51:13 | Computer Name = JurajNTB | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Instalace se nezdařila: Instalování následující aktualizace se nezdařilo
z důvodu chyby (0x80070643): Definition Update for Windows Defender - KB915597
(Definition 1.139.124.0).

< End of report >

OTL logfile created on: 28. 10. 2012 9:21:21 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Juraj\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

3,60 Gb Total Physical Memory | 2,10 Gb Available Physical Memory | 58,19% Memory free
7,21 Gb Paging File | 4,53 Gb Available in Paging File | 62,83% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 80,42 Gb Total Space | 29,96 Gb Free Space | 37,25% Space Free | Partition Type: NTFS
Drive D: | 599,17 Gb Total Space | 531,45 Gb Free Space | 88,70% Space Free | Partition Type: NTFS
Drive Q: | 17,58 Gb Total Space | 5,15 Gb Free Space | 29,32% Space Free | Partition Type: NTFS

Computer Name: JURAJNTB | User Name: Juraj | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/10/25 22:59:53 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Juraj\Desktop\OTL.exe
PRC - [2012/10/22 15:01:09 | 000,066,872 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2012/10/10 11:06:17 | 001,239,064 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2012/07/12 13:59:15 | 000,155,488 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
PRC - [2012/06/10 03:03:00 | 002,458,984 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012/06/07 08:04:22 | 000,145,256 | ---- | M] (AuthenTec Inc.) -- C:\Program Files\Lenovo Fingerprint Reader\x86\BioMonitor.exe
PRC - [2012/06/05 23:14:28 | 000,034,728 | ---- | M] (Lenovo Group Limited) -- C:\Program Files (x86)\Lenovo\System Update\SUService.exe
PRC - [2012/06/02 04:49:06 | 000,179,568 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
PRC - [2012/06/02 04:49:00 | 000,290,160 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
PRC - [2012/06/02 04:48:58 | 000,061,296 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
PRC - [2012/06/02 04:48:38 | 000,058,224 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\Communications Utility\CamMute.exe
PRC - [2012/05/16 00:45:22 | 000,065,336 | ---- | M] (Lenovo) -- C:\Program Files (x86)\Lenovo\Message Center Plus\MCPLaunch.exe
PRC - [2012/05/15 22:32:00 | 001,662,560 | ---- | M] (Lenovo) -- C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
PRC - [2012/05/15 22:32:00 | 000,128,608 | ---- | M] (Lenovo Group Limited) -- C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.EXE
PRC - [2012/04/23 23:05:18 | 004,243,168 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\UI\IntelSmallBusinessAdvantage.exe
PRC - [2012/04/23 23:03:52 | 000,046,816 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe
PRC - [2012/04/19 08:15:38 | 000,084,080 | ---- | M] (Symantec Corporation) -- C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
PRC - [2012/03/27 16:02:04 | 001,104,208 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
PRC - [2012/03/27 16:02:02 | 001,304,912 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
PRC - [2012/03/27 16:01:56 | 001,014,096 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
PRC - [2012/03/27 16:01:56 | 000,936,272 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
PRC - [2012/03/06 23:49:18 | 000,363,800 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2012/03/06 23:49:16 | 000,277,784 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2012/03/06 23:49:08 | 000,128,280 | ---- | M] () -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
PRC - [2012/03/06 23:49:04 | 000,163,608 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
PRC - [2012/01/25 08:44:56 | 000,567,360 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
PRC - [2012/01/17 07:29:24 | 000,169,776 | ---- | M] (Lenovo) -- C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
PRC - [2011/12/29 11:20:42 | 000,144,960 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
PRC - [2011/07/12 08:53:26 | 000,101,736 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\HOTKEY\micmute.exe
PRC - [2011/01/07 05:28:42 | 000,446,592 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\SysWOW64\SASrv.exe
PRC - [2010/11/21 04:25:10 | 001,174,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe
PRC - [2010/03/11 22:06:06 | 000,193,824 | ---- | M] (Protexis Inc.) -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe

========== Modules (No Company Name) ==========

MOD - [2012/10/20 09:56:10 | 000,330,240 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\8280490a2939075b726fd051d9010cc0\System.Management.Instrumentation.ni.dll
MOD - [2012/10/20 09:52:45 | 002,297,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\dfd33f59a5803a3c73cf408362e6e0b7\System.Core.ni.dll
MOD - [2012/10/20 09:52:38 | 001,051,136 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\9b2f17fb61b7197f2a04108f5d1a1cc6\System.Management.ni.dll
MOD - [2012/10/18 08:52:35 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\8e56489276063ededde74e597a121df3\PresentationFramework.Aero.ni.dll
MOD - [2012/10/18 08:52:33 | 000,141,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\498d2033c60fe5b777cf923b71b25972\System.Configuration.Install.ni.dll
MOD - [2012/10/18 08:52:32 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\69ca4a43ba14b66689715ad62aed70e6\System.ServiceProcess.ni.dll
MOD - [2012/10/18 08:51:26 | 014,340,608 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e717a230496832656b05b515eb9f3bc5\PresentationFramework.ni.dll
MOD - [2012/10/18 08:50:52 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\7b7fbe651c6e72f12099a298654c9594\System.Windows.Forms.ni.dll
MOD - [2012/10/18 08:50:34 | 001,591,808 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6bb439b3f87736d3248ae27d43e2c0d6\System.Drawing.ni.dll
MOD - [2012/10/18 08:50:28 | 000,185,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\d8af9a65cf0ed85d47360796e2645a06\UIAutomationTypes.ni.dll
MOD - [2012/10/18 08:50:28 | 000,060,928 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\ca2eff60beb3ba00a529a2d42dceca22\UIAutomationProvider.ni.dll
MOD - [2012/10/18 08:50:26 | 012,237,824 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\14a87218ea49639f38097e278b98a3da\PresentationCore.ni.dll
MOD - [2012/10/18 08:49:50 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll
MOD - [2012/10/18 08:49:42 | 000,680,448 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Security\054fcff18035c210487b0888e6461192\System.Security.ni.dll
MOD - [2012/10/18 08:49:37 | 005,452,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll
MOD - [2012/10/18 08:49:28 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll
MOD - [2012/10/18 08:49:27 | 007,967,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll
MOD - [2012/10/18 08:49:09 | 011,492,864 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll
MOD - [2012/10/10 11:06:15 | 000,460,312 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\ppgooglenaclpluginchrome.dll
MOD - [2012/10/10 11:06:12 | 004,005,912 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\pdf.dll
MOD - [2012/10/10 11:04:57 | 000,578,072 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\libglesv2.dll
MOD - [2012/10/10 11:04:55 | 000,123,928 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\libegl.dll
MOD - [2012/10/10 11:04:44 | 000,156,712 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\avutil-51.dll
MOD - [2012/10/10 11:04:43 | 000,275,496 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\avformat-54.dll
MOD - [2012/10/10 11:04:42 | 002,168,360 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\avcodec-54.dll
MOD - [2012/09/27 13:25:58 | 000,237,568 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationFramework.resources\3.0.0.0_cs_31bf3856ad364e35\PresentationFramework.resources.dll
MOD - [2012/09/27 13:25:58 | 000,106,496 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationCore.resources\3.0.0.0_cs_31bf3856ad364e35\PresentationCore.resources.dll
MOD - [2012/09/27 13:25:45 | 000,159,744 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Xml.resources\2.0.0.0_cs_b77a5c561934e089\System.Xml.resources.dll
MOD - [2012/09/27 13:25:39 | 000,204,800 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.resources\2.0.0.0_cs_b77a5c561934e089\System.resources.dll
MOD - [2012/07/12 13:59:16 | 000,400,384 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\sqlite3.dll
MOD - [2012/07/12 13:59:16 | 000,062,976 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\osEvents.dll
MOD - [2012/07/12 13:59:16 | 000,062,464 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\zlib1.dll
MOD - [2012/07/12 13:59:15 | 000,891,392 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\QtNetwork4.dll
MOD - [2012/07/12 13:59:15 | 000,339,456 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\QtXml4.dll
MOD - [2012/07/12 13:59:15 | 000,322,048 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\log4cplus.dll
MOD - [2012/07/12 13:59:15 | 000,195,584 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\libgsoap.dll
MOD - [2012/07/12 13:59:15 | 000,062,976 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\ServiceManagerStarter.dll
MOD - [2012/07/12 13:59:15 | 000,019,456 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\eventsSender.dll
MOD - [2012/07/12 13:59:15 | 000,016,896 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\featureController.dll
MOD - [2012/07/12 13:59:14 | 002,281,984 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\QtCore4.dll
MOD - [2012/07/12 13:59:14 | 000,446,976 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\DeviceProfile.dll
MOD - [2012/06/07 08:04:24 | 000,828,776 | ---- | M] () -- C:\Program Files\Lenovo Fingerprint Reader\x86\DataManager.dll
MOD - [2012/04/23 23:05:16 | 000,215,264 | ---- | M] () -- C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\UI\System.ComponentModel.Composition.dll
MOD - [2012/04/23 23:05:12 | 000,051,424 | ---- | M] () -- C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\UI\Interop.TaskScheduler.dll

========== Services (SafeList) ==========

SRV:64bit: - [2012/10/24 19:41:42 | 000,068,416 | ---- | M] (Bitdefender) [Auto | Running] -- C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe -- (UPDATESRV)
SRV:64bit: - [2012/10/24 19:41:25 | 001,637,112 | ---- | M] (Bitdefender) [Auto | Running] -- C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe -- (VSSERV)
SRV:64bit: - [2012/10/24 19:41:20 | 000,065,344 | ---- | M] (Bitdefender) [Disabled | Stopped] -- C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe -- (BdDesktopParental)
SRV:64bit: - [2012/07/11 19:54:58 | 000,140,672 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore64.exe -- (!SASCORE)
SRV:64bit: - [2012/06/25 17:45:56 | 000,095,184 | ---- | M] (Bitdefender) [Auto | Running] -- C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxservice.exe -- (SafeBox)
SRV:64bit: - [2012/06/07 08:04:04 | 000,328,552 | ---- | M] (AuthenTec, Inc) [Auto | Running] -- C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe -- (FPLService)
SRV:64bit: - [2012/06/02 04:49:06 | 000,179,568 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe -- (LENOVO.TVTVCAM)
SRV:64bit: - [2012/06/02 04:48:58 | 000,061,296 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe -- (LENOVO.TPKNRSVC)
SRV:64bit: - [2012/06/02 04:48:38 | 000,058,224 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\Communications Utility\CamMute.exe -- (LENOVO.CAMMUTE)
SRV:64bit: - [2012/05/29 23:27:14 | 000,144,992 | ---- | M] (Lenovo Group Limited) [Auto | Stopped] -- C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe -- (HyperW7Svc)
SRV:64bit: - [2012/04/11 08:27:06 | 000,047,440 | ---- | M] (Lenovo.) [Auto | Running] -- C:\Windows\SysNative\ibmpmsvc.exe -- (IBMPMSVC)
SRV:64bit: - [2012/02/26 13:07:52 | 002,669,840 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:64bit: - [2012/02/26 13:07:42 | 000,273,168 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2012/02/26 13:07:32 | 000,626,960 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2012/02/26 13:07:26 | 000,148,752 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2012/02/03 06:29:52 | 000,628,448 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:64bit: - [2012/01/18 00:12:28 | 000,135,952 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2012/01/09 20:39:44 | 000,659,968 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2011/12/29 11:20:42 | 000,144,960 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe -- (TPHKSVC)
SRV:64bit: - [2011/12/29 06:48:24 | 000,049,480 | ---- | M] (Lenovo.) [On_Demand | Stopped] -- C:\Windows\SysNative\TPHDEXLG64.exe -- (TPHDEXLGSVC)
SRV:64bit: - [2011/07/12 08:54:00 | 000,133,992 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe -- (Lenovo.VIRTSCRLSVC)
SRV:64bit: - [2011/07/12 08:53:42 | 000,145,256 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\HOTKEY\tphkload.exe -- (TPHKLOAD)
SRV:64bit: - [2011/07/12 08:53:26 | 000,101,736 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\HOTKEY\micmute.exe -- (LENOVO.MICMUTE)
SRV:64bit: - [2010/12/17 09:46:34 | 000,198,784 | ---- | M] (Conexant Systems Inc.) [Auto | Running] -- C:\Windows\SysNative\CxAudMsg64.exe -- (CxAudMsg)
SRV:64bit: - [2010/09/23 02:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009/07/14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2012/10/22 15:01:09 | 000,066,872 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2012/06/25 07:19:50 | 000,276,288 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2012/06/10 03:03:00 | 002,458,984 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/06/05 23:14:28 | 000,034,728 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files (x86)\Lenovo\System Update\SUService.exe -- (SUService)
SRV - [2012/05/15 22:32:00 | 001,665,120 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.exe -- (PwmEWSvc)
SRV - [2012/05/15 22:32:00 | 001,662,560 | ---- | M] (Lenovo) [On_Demand | Running] -- C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe -- (Power Manager DBC Service)
SRV - [2012/04/23 23:03:52 | 000,046,816 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe -- (Intel(R)
SRV - [2012/04/19 08:15:38 | 000,084,080 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe -- (VIPAppService)
SRV - [2012/03/27 16:02:04 | 001,104,208 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)
SRV - [2012/03/27 16:02:02 | 001,304,912 | ---- | M] (Intel Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe -- (Bluetooth Media Service)
SRV - [2012/03/27 16:01:56 | 001,014,096 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2012/03/06 23:49:18 | 000,363,800 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012/03/06 23:49:16 | 000,277,784 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/03/06 23:49:08 | 000,128,280 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe -- (Intel(R)
SRV - [2012/03/06 23:49:04 | 000,163,608 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2012/01/17 07:29:24 | 000,169,776 | ---- | M] (Lenovo) [Auto | Running] -- C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe -- (FastbootService)
SRV - [2011/01/07 05:28:42 | 000,446,592 | ---- | M] (Conexant Systems, Inc.) [Auto | Running] -- C:\Windows\SysWOW64\SASrv.exe -- (SAService)
SRV - [2010/03/18 22:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/11 22:06:06 | 000,193,824 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/10/24 19:41:43 | 000,705,552 | ---- | M] (BitDefender) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avc3.sys -- (avc3)
DRV:64bit: - [2012/10/24 19:41:28 | 000,587,024 | ---- | M] (BitDefender) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\avckf.sys -- (avckf)
DRV:64bit: - [2012/10/24 19:41:07 | 000,082,384 | ---- | M] (BitDefender SRL) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bdsandbox.sys -- (BDSandBox)
DRV:64bit: - [2012/10/16 22:58:03 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012/09/27 13:31:11 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/08/29 17:24:10 | 000,145,696 | ---- | M] (BitDefender LLC) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\gzflt.sys -- (gzflt)
DRV:64bit: - [2012/08/20 14:48:50 | 000,019,032 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\pwdrvio.sys -- (pwdrvio)
DRV:64bit: - [2012/08/20 14:48:48 | 000,012,384 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\pwdspio.sys -- (pwdspio)
DRV:64bit: - [2012/07/06 14:21:55 | 000,093,160 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- c:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys -- (BdfNdisf)
DRV:64bit: - [2012/07/02 14:21:40 | 000,350,160 | ---- | M] (BitDefender S.R.L.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\trufos.sys -- (trufos)
DRV:64bit: - [2012/06/25 07:19:38 | 014,760,096 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2012/06/21 03:46:46 | 000,331,264 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2012/06/19 20:32:20 | 000,431,928 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2012/06/19 20:32:20 | 000,027,448 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Smb_driver_Intel.sys -- (SmbDrvIntel)
DRV:64bit: - [2012/06/10 03:03:00 | 000,029,032 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2012/05/15 22:32:00 | 000,019,784 | ---- | M] (Lenovo Group Limited) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\TPPWR64V.SYS -- (TPPWRIF)
DRV:64bit: - [2012/04/17 13:34:26 | 000,076,944 | ---- | M] (BitDefender) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\bdvedisk.sys -- (BDVEDISK)
DRV:64bit: - [2012/04/13 17:06:42 | 000,789,272 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc)
DRV:64bit: - [2012/04/13 17:06:42 | 000,356,632 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub)
DRV:64bit: - [2012/04/13 17:06:42 | 000,019,224 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs)
DRV:64bit: - [2012/04/11 08:27:04 | 000,042,280 | ---- | M] (Lenovo.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ibmpmdrv.sys -- (IBMPMDRV)
DRV:64bit: - [2012/03/28 21:16:48 | 000,216,704 | ---- | M] (Ricoh co.,Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\5U877.sys -- (5U877)
DRV:64bit: - [2012/03/27 00:07:06 | 000,033,344 | ---- | M] (Lenovo Group Limited) [Kernel | System | Running] -- C:\Program Files\Lenovo\RapidBoot\PHCORE64.sys -- (PHCORE)
DRV:64bit: - [2012/03/21 19:13:14 | 000,060,928 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iBtFltCoex.sys -- (ibtfltcoex)
DRV:64bit: - [2012/03/08 07:59:08 | 001,602,688 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CHDRT64.sys -- (CnxtHdAudService)
DRV:64bit: - [2012/02/20 20:36:58 | 011,471,872 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Netwsw00.sys -- (NETwNs64)
DRV:64bit: - [2012/02/13 17:10:40 | 000,747,008 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btmhsf.sys -- (btmhsf)
DRV:64bit: - [2012/02/13 16:53:54 | 000,095,232 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btmaux.sys -- (btmaux)
DRV:64bit: - [2012/01/09 20:32:40 | 000,195,584 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPALP)
DRV:64bit: - [2012/01/09 20:32:40 | 000,195,584 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPAL)
DRV:64bit: - [2011/12/29 06:48:24 | 000,147,784 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ApsX64.sys -- (Shockprf)
DRV:64bit: - [2011/12/29 06:48:24 | 000,025,416 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ApsHM64.sys -- (TPDIGIMN)
DRV:64bit: - [2011/12/26 10:10:44 | 000,040,248 | ---- | M] (Lenovo Information Product(ShenZhen China) Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\psadd.sys -- (psadd)
DRV:64bit: - [2011/12/23 13:37:12 | 000,568,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2011/12/21 01:38:36 | 000,034,200 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:64bit: - [2011/12/21 01:38:36 | 000,025,496 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:64bit: - [2011/12/08 21:24:30 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/12/08 21:24:30 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/12/08 02:59:52 | 000,027,432 | ---- | M] (ThinkVantage Communications Utility) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tvtvcamd.sys -- (tvtvcamd)
DRV:64bit: - [2011/11/25 14:00:36 | 000,258,736 | ---- | M] (BitDefender) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\avchv.sys -- (avchv)
DRV:64bit: - [2011/11/14 19:16:37 | 000,103,504 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys -- (bdfwfpf)
DRV:64bit: - [2011/11/10 10:04:14 | 000,060,184 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2011/10/27 03:27:52 | 000,259,688 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsP2Stor.sys -- (RSP2STOR)
DRV:64bit: - [2011/08/23 13:57:24 | 000,565,352 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/07/22 17:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011/07/12 22:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2011/05/29 11:48:04 | 000,040,248 | ---- | M] (Lenovo Information Product(ShenZhen China) Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tvti2c.sys -- (TVTI2C)
DRV:64bit: - [2010/11/21 04:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/21 04:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/21 04:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2009/07/14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/14 00:21:48 | 000,038,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2009/06/10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7

IE - HKU\S-1-5-21-1967815658-257592732-663853043-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com/welcome/thinkpad [binary data]
IE - HKU\S-1-5-21-1967815658-257592732-663853043-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/welcome/thinkpad [binary data]
IE - HKU\S-1-5-21-1967815658-257592732-663853043-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-1967815658-257592732-663853043-1001\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-1967815658-257592732-663853043-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?sourceid=i ... lz=1I7LENP
IE - HKU\S-1-5-21-1967815658-257592732-663853043-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.3: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\bdThunderbird@bitdefender.com: C:\PROGRAM FILES\BITDEFENDER\BITDEFENDER 2013\BDTBEXT [2012/10/21 21:54:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\VIP5X@verisign.com: C:\Program Files (x86)\Symantec\VIP Access Client\ [2012/09/27 14:03:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\bdThunderbird@bitdefender.com: C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext [2012/10/21 21:54:12 | 000,000,000 | ---D | M]

========== Chrome ==========

CHR - homepage: http://www.google.com/ig/redirectdomain ... &bmod=LENP
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com/ig/redirectdomain ... &bmod=LENP
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\pdf.dll
CHR - plugin: TrueSuite (Enabled) = C:\Users\Juraj\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdkedefaddcdlpmiafhicjnkbogjiogj\2.0_0\npwebsitelogon.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
CHR - Extension: Website Logon = C:\Users\Juraj\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdkedefaddcdlpmiafhicjnkbogjiogj\2.0_0\
CHR - Extension: AdBlock = C:\Users\Juraj\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.46_0\
CHR - Extension: goo.gl URL Shortener = C:\Users\Juraj\AppData\Local\Google\Chrome\User Data\Default\Extensions\iblijlcdoidgdpfknkckljiocdbnlagk\0.7.2_0\
CHR - Extension: Desktop = C:\Users\Juraj\AppData\Local\Google\Chrome\User Data\Default\Extensions\pafkcccccfmnjkhhndjfffifnflhkpdo\1.0_0\

O1 HOSTS File: ([2012/10/24 21:11:06 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (TrueSuite Browser Helper Object) - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files\Lenovo Fingerprint Reader\IEBHO.dll (AuthenTec Inc.)
O2:64bit: - BHO: (Symantec VIP Access Add-On) - {C63CD127-A1CB-4D49-A4F7-D6F88A917BE6} - C:\Program Files (x86)\Symantec\VIP Access Client\64bit\VIPAddOnForIE64.dll (Symantec Corporation)
O2 - BHO: (TrueSuite Browser Helper Object) - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll (AuthenTec Inc.)
O2 - BHO: (Symantec VIP Access Add-On) - {C63CD127-A1CB-4D49-A4F7-D6F88A917BE6} - C:\Program Files (x86)\Symantec\VIP Access Client\VIPAddOnForIE.dll (Symantec Corporation)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [] File not found
O4:64bit: - HKLM..\Run: [Bdagent] C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe (Bitdefender)
O4:64bit: - HKLM..\Run: [BLEServicesCtrl] C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll (Intel Corporation)
O4:64bit: - HKLM..\Run: [cAudioFilterAgent] C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe (Conexant Systems, Inc.)
O4:64bit: - HKLM..\Run: [ForteConfig] C:\Program Files\CONEXANT\ForteConfig\fmapp.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [LENOVO.TPKNRRES] C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe (Lenovo Group Limited)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SACpl.exe (Conexant Systems, Inc.)
O4:64bit: - HKLM..\Run: [TpShocks] C:\Windows\SysNative\TpShocks.exe (Lenovo.)
O4 - HKLM..\Run: [Dolby Advanced Audio v2] C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe (Dolby Laboratories Inc.)
O4 - HKLM..\Run: [Fastboot] C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe (Lenovo)
O4 - HKLM..\Run: [IMSS] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe (Intel Corporation)
O4 - HKLM..\Run: [Intel AppUp(SM) center] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe (Intel Corporation)
O4 - HKLM..\Run: [IntelSBA] C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\SBALaunchDelay.exe (Intel Corporation)
O4 - HKLM..\Run: [Lenovo Registration] C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe (Lenovo, Inc.)
O4 - HKLM..\Run: [PWMTRV] C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL (Lenovo Group Limited)
O4 - HKLM..\Run: [RotateImage] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe (Ricoh co.,Ltd.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1967815658-257592732-663853043-1000..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1967815658-257592732-663853043-1001..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-1967815658-257592732-663853043-1001..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-21-1967815658-257592732-663853043-1000..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\S-1-5-21-1967815658-257592732-663853043-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 147.175.167.251 147.175.189.200
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3582A620-9994-4D46-850F-9DB0D34A9B63}: DhcpNameServer = 147.175.167.251 147.175.189.200
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{860FDB2D-17EE-4370-86ED-DB9B0E017991}: DhcpNameServer = 10.0.0.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/12/15 04:05:40 | 000,000,049 | -HS- | M] () - Q:\AUTORUN.INF -- [ NTFS ]
O33 - MountPoints2\{aa542646-089f-11e2-8e0b-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{aa542646-089f-11e2-8e0b-806e6f6e6963}\Shell\AutoRun\command - "" = Q:\LenovoQDrive.exe -- [2011/12/15 04:05:40 | 000,267,576 | -HS- | M] (Lenovo Group Limited)
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.FPS1 - frapsv64.dll (Beepa P/L)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FPS1 - C:\Windows\SysWow64\frapsvid.dll (Beepa P/L)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2012/10/27 17:39:32 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\e-academy Inc
[2012/10/27 17:39:32 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Local\e-academy Inc
[2012/10/26 02:00:46 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012/10/25 22:59:53 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Juraj\Desktop\OTL.exe
[2012/10/25 20:04:20 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\NVIDIA
[2012/10/24 22:11:35 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\Ubisoft
[2012/10/24 21:51:29 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\InstallShield
[2012/10/24 21:10:34 | 000,000,000 | ---D | C] -- C:\_OTM
[2012/10/24 19:41:43 | 000,705,552 | ---- | C] (BitDefender) -- C:\Windows\SysNative\drivers\avc3.sys
[2012/10/24 12:15:55 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2012/10/24 12:15:54 | 000,000,000 | ---D | C] -- C:\rsit
[2012/10/23 22:10:27 | 000,000,000 | ---D | C] -- C:\Users\Juraj\.thumbnails
[2012/10/23 22:09:07 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Local\fontconfig
[2012/10/23 22:09:05 | 000,000,000 | ---D | C] -- C:\Users\Juraj\.gimp-2.8
[2012/10/23 22:09:04 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Local\gegl-0.2
[2012/10/23 22:08:07 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP 2
[2012/10/23 21:33:07 | 000,000,000 | ---D | C] -- C:\Users\Juraj\Documents\MATLAB
[2012/10/23 21:31:31 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\MathWorks
[2012/10/23 21:29:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MATLAB
[2012/10/22 16:49:51 | 000,000,000 | ---D | C] -- C:\Users\Juraj\Documents\My Games
[2012/10/22 16:43:25 | 000,000,000 | RH-D | C] -- C:\Users\Juraj\AppData\Roaming\SecuROM
[2012/10/22 16:43:24 | 000,178,800 | ---- | C] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll
[2012/10/22 16:16:09 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Local\GameSpy
[2012/10/22 16:15:25 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Local\ApplicationHistory
[2012/10/22 15:40:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts
[2012/10/22 15:05:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSpy
[2012/10/22 15:05:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GameSpy
[2012/10/22 15:03:44 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\URTTEMP
[2012/10/22 08:26:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Ubisoft
[2012/10/21 21:54:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2013
[2012/10/21 21:54:19 | 000,000,000 | ---D | C] -- C:\ProgramData\BDLogging
[2012/10/21 21:54:13 | 000,076,944 | ---- | C] (BitDefender) -- C:\Windows\SysNative\drivers\bdvedisk.sys
[2012/10/21 21:54:11 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\capicom.dll
[2012/10/21 21:54:11 | 000,093,160 | ---- | C] (BitDefender LLC) -- C:\Windows\SysNative\drivers\BdfNdisf6.sys
[2012/10/21 21:54:11 | 000,082,384 | ---- | C] (BitDefender SRL) -- C:\Windows\SysNative\drivers\bdsandbox.sys
[2012/10/21 21:54:02 | 000,587,024 | ---- | C] (BitDefender) -- C:\Windows\SysNative\drivers\avckf.sys
[2012/10/21 21:54:02 | 000,258,736 | ---- | C] (BitDefender) -- C:\Windows\SysNative\drivers\avchv.sys
[2012/10/21 21:53:56 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\Bitdefender
[2012/10/21 21:53:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Bitdefender
[2012/10/21 21:51:53 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\QuickScan
[2012/10/21 21:51:06 | 000,350,160 | ---- | C] (BitDefender S.R.L.) -- C:\Windows\SysNative\drivers\trufos.sys
[2012/10/21 21:51:06 | 000,145,696 | ---- | C] (BitDefender LLC) -- C:\Windows\SysNative\drivers\gzflt.sys
[2012/10/21 21:51:06 | 000,000,000 | ---D | C] -- C:\Program Files\Bitdefender
[2012/10/21 21:50:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Bitdefender
[2012/10/21 20:49:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2012/10/19 00:26:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2012/10/18 12:24:09 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\Dev-Cpp
[2012/10/18 09:26:22 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Local\ElevatedDiagnostics
[2012/10/18 09:25:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/10/18 09:25:19 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012/10/18 09:25:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2012/10/18 00:41:23 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2012/10/18 00:41:23 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2012/10/18 00:34:51 | 000,000,000 | ---D | C] -- C:\Program Files\AuthenTec
[2012/10/18 00:12:26 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browserchoice.exe
[2012/10/18 00:09:50 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2012/10/18 00:09:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
[2012/10/18 00:09:43 | 001,071,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSCOMCTL.OCX
[2012/10/18 00:09:43 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSSTDFMT.DLL
[2012/10/18 00:09:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SpywareBlaster
[2012/10/18 00:08:45 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\Malwarebytes
[2012/10/18 00:08:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012/10/18 00:04:40 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\SUPERAntiSpyware.com
[2012/10/18 00:04:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2012/10/18 00:04:22 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2012/10/18 00:04:22 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2012/10/18 00:00:37 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012/10/18 00:00:37 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012/10/18 00:00:35 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012/10/18 00:00:34 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012/10/18 00:00:34 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012/10/18 00:00:34 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012/10/18 00:00:34 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/10/18 00:00:34 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/10/18 00:00:31 | 002,312,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/10/18 00:00:31 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012/10/18 00:00:31 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012/10/18 00:00:30 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012/10/18 00:00:26 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/10/18 00:00:26 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2012/10/18 00:00:25 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/10/17 23:49:56 | 001,162,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2012/10/17 23:49:56 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2012/10/17 23:49:56 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2012/10/17 23:49:56 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2012/10/17 23:49:55 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2012/10/17 23:49:55 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2012/10/17 23:49:55 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2012/10/17 23:49:55 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2012/10/17 23:49:55 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2012/10/17 23:49:55 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2012/10/17 23:49:55 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2012/10/17 23:49:55 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2012/10/17 23:49:55 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/17 23:49:55 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/17 23:49:55 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/17 23:49:55 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/17 23:49:55 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/17 23:49:55 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2012/10/17 23:49:55 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2012/10/17 23:49:55 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2012/10/17 23:49:55 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/17 23:49:55 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/17 23:49:55 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/17 23:49:55 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/17 23:49:55 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2012/10/17 23:49:55 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2012/10/17 23:49:55 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2012/10/17 23:49:55 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/17 23:49:55 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2012/10/17 23:49:55 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2012/10/17 23:49:55 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2012/10/17 23:49:55 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/17 23:49:55 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2012/10/17 23:49:54 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2012/10/17 23:49:54 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2012/10/17 23:49:54 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll

[2012/10/17 23:49:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/17 23:49:54 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/17 23:49:53 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2012/10/17 23:49:53 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/17 23:49:53 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2012/10/17 23:49:53 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2012/10/17 23:49:53 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2012/10/17 23:49:53 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2012/10/17 23:49:53 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2012/10/17 23:49:47 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OxpsConverter.exe
[2012/10/17 23:49:47 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys
[2012/10/17 23:49:46 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2012/10/17 23:49:45 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2012/10/17 23:49:45 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2012/10/17 23:49:45 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\splwow64.exe
[2012/10/17 23:49:39 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2012/10/17 23:49:39 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2012/10/17 23:49:38 | 001,465,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2012/10/17 23:49:38 | 000,870,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2012/10/17 23:49:37 | 003,216,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2012/10/17 23:49:36 | 000,574,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2012/10/17 23:01:47 | 000,000,000 | ---D | C] -- C:\Users\Juraj\Documents\NFS Most Wanted
[2012/10/17 22:46:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
[2012/10/17 22:46:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lavalys
[2012/10/17 19:33:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloodshed Dev-C++
[2012/10/17 19:33:08 | 000,000,000 | ---D | C] -- C:\Dev-Cpp
[2012/10/17 13:15:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
[2012/10/17 13:15:02 | 000,000,000 | ---D | C] -- C:\Fraps
[2012/10/17 10:15:47 | 000,000,000 | R--D | C] -- C:\Users\Juraj\Desktop\Dangerous!
[2012/10/17 09:49:40 | 000,000,000 | ---D | C] -- C:\Users\Juraj\Documents\Battlefield 3
[2012/10/17 08:55:51 | 000,000,000 | ---D | C] -- C:\ProgramData\TrueSuite
[2012/10/17 08:03:32 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Local\Adobe
[2012/10/17 04:56:15 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2012/10/17 04:56:15 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2012/10/17 04:56:11 | 005,559,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2012/10/17 04:56:10 | 003,968,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2012/10/17 04:56:10 | 003,914,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2012/10/17 04:56:08 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll
[2012/10/17 04:56:08 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml3r.dll
[2012/10/17 04:56:07 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2012/10/17 04:56:07 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2012/10/17 04:56:07 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2012/10/17 04:56:07 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe
[2012/10/17 04:56:05 | 000,376,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2012/10/17 04:56:05 | 000,288,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2012/10/17 04:55:59 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2012/10/17 04:55:16 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2012/10/17 04:55:16 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2012/10/17 04:55:16 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2012/10/17 04:55:12 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2012/10/17 04:54:55 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2012/10/17 04:54:54 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2012/10/17 04:54:38 | 001,464,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2012/10/17 04:54:37 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2012/10/17 04:49:00 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2012/10/17 04:49:00 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2012/10/17 04:48:59 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2012/10/17 04:48:55 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2012/10/17 04:48:55 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2012/10/17 04:48:55 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2012/10/17 04:48:47 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2012/10/17 04:48:47 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2012/10/16 23:35:34 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Common Files\EAInstaller
[2012/10/16 23:35:33 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2012/10/16 23:35:33 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2012/10/16 23:35:33 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2012/10/16 23:35:33 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2012/10/16 23:35:33 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2012/10/16 23:35:33 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2012/10/16 23:35:33 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2012/10/16 23:35:33 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2012/10/16 23:35:32 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2012/10/16 23:35:32 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2012/10/16 23:35:32 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2012/10/16 23:35:32 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2012/10/16 23:35:31 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2012/10/16 23:35:31 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2012/10/16 23:35:31 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2012/10/16 23:35:31 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2012/10/16 23:35:31 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2012/10/16 23:35:31 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2012/10/16 23:35:31 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2012/10/16 23:35:31 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2012/10/16 23:35:30 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2012/10/16 23:35:30 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2012/10/16 23:35:30 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2012/10/16 23:35:30 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2012/10/16 23:35:30 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2012/10/16 23:35:29 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2012/10/16 23:35:29 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2012/10/16 23:35:29 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2012/10/16 23:35:29 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2012/10/16 23:35:28 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2012/10/16 23:35:28 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2012/10/16 23:35:28 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2012/10/16 23:35:28 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2012/10/16 23:35:27 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2012/10/16 23:35:27 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2012/10/16 23:35:27 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2012/10/16 23:35:27 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2012/10/16 23:35:26 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll
[2012/10/16 23:35:26 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2012/10/16 23:35:26 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2012/10/16 23:35:26 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2012/10/16 23:35:26 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2012/10/16 23:35:26 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2012/10/16 23:35:26 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2012/10/16 23:35:25 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2012/10/16 23:35:25 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2012/10/16 23:35:25 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2012/10/16 23:35:25 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2012/10/16 23:35:25 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2012/10/16 23:35:25 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2012/10/16 23:35:24 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2012/10/16 23:35:24 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2012/10/16 23:35:24 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2012/10/16 23:35:24 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2012/10/16 23:35:24 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2012/10/16 23:35:24 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2012/10/16 23:35:24 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2012/10/16 23:35:24 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2012/10/16 23:35:23 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2012/10/16 23:35:23 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2012/10/16 23:35:23 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2012/10/16 23:35:23 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2012/10/16 23:35:23 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2012/10/16 23:35:23 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2012/10/16 23:35:23 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2012/10/16 23:35:23 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2012/10/16 23:35:22 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2012/10/16 23:35:22 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2012/10/16 23:35:22 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2012/10/16 23:35:22 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2012/10/16 23:35:22 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2012/10/16 23:35:22 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2012/10/16 23:35:22 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2012/10/16 23:35:22 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2012/10/16 23:35:21 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2012/10/16 23:35:21 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2012/10/16 23:35:21 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2012/10/16 23:35:21 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2012/10/16 23:35:21 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2012/10/16 23:35:21 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2012/10/16 23:35:21 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2012/10/16 23:35:21 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2012/10/16 23:35:21 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2012/10/16 23:35:21 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2012/10/16 23:35:20 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2012/10/16 23:35:20 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2012/10/16 23:35:20 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2012/10/16 23:35:20 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2012/10/16 23:35:19 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2012/10/16 23:35:19 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2012/10/16 23:35:19 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2012/10/16 23:35:19 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2012/10/16 23:35:19 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2012/10/16 23:35:19 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2012/10/16 23:35:19 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2012/10/16 23:35:19 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2012/10/16 23:35:18 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2012/10/16 23:35:18 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2012/10/16 23:35:18 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2012/10/16 23:35:18 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2012/10/16 23:35:18 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2012/10/16 23:35:18 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2012/10/16 23:35:17 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2012/10/16 23:35:17 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2012/10/16 23:35:17 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2012/10/16 23:35:17 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2012/10/16 23:35:16 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll
[2012/10/16 23:35:16 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2012/10/16 23:35:16 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2012/10/16 23:35:16 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2012/10/16 23:35:16 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2012/10/16 23:35:16 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2012/10/16 23:35:15 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2012/10/16 23:35:15 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2012/10/16 23:35:15 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2012/10/16 23:35:15 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2012/10/16 23:35:15 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2012/10/16 23:35:15 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2012/10/16 23:35:15 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2012/10/16 23:35:15 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2012/10/16 23:35:15 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2012/10/16 23:35:15 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2012/10/16 23:35:14 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2012/10/16 23:35:14 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2012/10/16 23:35:14 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2012/10/16 23:35:14 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2012/10/16 23:35:14 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2012/10/16 23:35:14 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2012/10/16 23:35:13 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2012/10/16 23:35:13 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2012/10/16 23:35:13 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2012/10/16 23:35:13 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2012/10/16 23:35:13 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2012/10/16 23:35:13 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2012/10/16 23:35:12 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2012/10/16 23:35:12 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2012/10/16 23:35:12 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2012/10/16 23:35:12 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2012/10/16 23:35:12 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2012/10/16 23:35:12 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2012/10/16 23:35:11 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2012/10/16 23:35:11 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2012/10/16 23:35:11 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2012/10/16 23:35:11 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2012/10/16 23:35:10 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2012/10/16 23:35:10 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2012/10/16 23:35:10 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2012/10/16 23:35:10 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2012/10/16 23:35:10 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2012/10/16 23:35:10 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2012/10/16 23:35:09 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2012/10/16 23:35:09 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2012/10/16 23:35:09 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2012/10/16 23:35:09 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2012/10/16 23:35:09 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2012/10/16 23:35:09 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2012/10/16 23:35:06 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2012/10/16 23:35:06 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2012/10/16 23:35:05 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2012/10/16 23:35:05 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2012/10/16 23:35:05 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2012/10/16 23:35:05 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2012/10/16 23:35:05 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2012/10/16 23:35:04 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2012/10/16 23:35:04 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2012/10/16 23:35:03 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2012/10/16 23:35:03 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2012/10/16 23:35:03 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2012/10/16 23:35:03 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2012/10/16 23:35:02 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2012/10/16 23:35:02 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2012/10/16 23:35:01 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2012/10/16 23:35:01 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2012/10/16 23:21:41 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Local\LSC
[2012/10/16 23:21:25 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\LSC
[2012/10/16 23:21:24 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\Adobe
[2012/10/16 23:15:41 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\Lenovo
[2012/10/16 23:15:38 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Local\Lenovo
[2012/10/16 23:15:38 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\Leadertech
[2012/10/16 23:14:57 | 000,000,000 | R--D | C] -- C:\Users\Juraj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012/10/16 23:14:57 | 000,000,000 | R--D | C] -- C:\Users\Juraj\Searches
[2012/10/16 23:14:57 | 000,000,000 | R--D | C] -- C:\Users\Juraj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012/10/16 23:14:39 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\Identities
[2012/10/16 23:14:27 | 000,000,000 | R--D | C] -- C:\Users\Juraj\Contacts
[2012/10/16 23:14:09 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Local\Google
[2012/10/16 23:13:48 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Local\VirtualStore
[2012/10/16 23:12:33 | 001,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71.dll
[2012/10/16 23:12:33 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Local\AuthenTec
[2012/10/16 23:12:24 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Local\Absolute_Software
[2012/10/16 23:12:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Amazon
[2012/10/16 23:11:23 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\Intel
[2012/10/16 23:11:16 | 000,000,000 | --SD | C] -- C:\Users\Juraj\AppData\Roaming\Microsoft
[2012/10/16 23:11:16 | 000,000,000 | R--D | C] -- C:\Users\Juraj\Videos
[2012/10/16 23:11:16 | 000,000,000 | R--D | C] -- C:\Users\Juraj\Saved Games
[2012/10/16 23:11:16 | 000,000,000 | R--D | C] -- C:\Users\Juraj\Pictures
[2012/10/16 23:11:16 | 000,000,000 | R--D | C] -- C:\Users\Juraj\Music
[2012/10/16 23:11:16 | 000,000,000 | R--D | C] -- C:\Users\Juraj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012/10/16 23:11:16 | 000,000,000 | R--D | C] -- C:\Users\Juraj\Links
[2012/10/16 23:11:16 | 000,000,000 | R--D | C] -- C:\Users\Juraj\Favorites
[2012/10/16 23:11:16 | 000,000,000 | R--D | C] -- C:\Users\Juraj\Downloads
[2012/10/16 23:11:16 | 000,000,000 | R--D | C] -- C:\Users\Juraj\Documents
[2012/10/16 23:11:16 | 000,000,000 | R--D | C] -- C:\Users\Juraj\Desktop
[2012/10/16 23:11:16 | 000,000,000 | R--D | C] -- C:\Users\Juraj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012/10/16 23:11:16 | 000,000,000 | -HSD | C] -- C:\Users\Juraj\AppData\Local\Temporary Internet Files
[2012/10/16 23:11:16 | 000,000,000 | -HSD | C] -- C:\Users\Juraj\Šablony
[2012/10/16 23:11:16 | 000,000,000 | -HSD | C] -- C:\Users\Juraj\Soubory cookie
[2012/10/16 23:11:16 | 000,000,000 | -HSD | C] -- C:\Users\Juraj\SendTo
[2012/10/16 23:11:16 | 000,000,000 | -HSD | C] -- C:\Users\Juraj\Poslední
[2012/10/16 23:11:16 | 000,000,000 | -HSD | C] -- C:\Users\Juraj\Okolní tiskárny
[2012/10/16 23:11:16 | 000,000,000 | -HSD | C] -- C:\Users\Juraj\Okolní síť
[2012/10/16 23:11:16 | 000,000,000 | -HSD | C] -- C:\Users\Juraj\Documents\Obrázky
[2012/10/16 23:11:16 | 000,000,000 | -HSD | C] -- C:\Users\Juraj\Nabídka Start
[2012/10/16 23:11:16 | 000,000,000 | -HSD | C] -- C:\Users\Juraj\Local Settings
[2012/10/16 23:11:16 | 000,000,000 | -HSD | C] -- C:\Users\Juraj\Documents\Hudba
[2012/10/16 23:11:16 | 000,000,000 | -HSD | C] -- C:\Users\Juraj\AppData\Local\History
[2012/10/16 23:11:16 | 000,000,000 | -HSD | C] -- C:\Users\Juraj\Documents\Filmy
[2012/10/16 23:11:16 | 000,000,000 | -HSD | C] -- C:\Users\Juraj\Dokumenty
[2012/10/16 23:11:16 | 000,000,000 | -HSD | C] -- C:\Users\Juraj\Data aplikací
[2012/10/16 23:11:16 | 000,000,000 | -HSD | C] -- C:\Users\Juraj\AppData\Local\Data aplikací
[2012/10/16 23:11:16 | 000,000,000 | -H-D | C] -- C:\Users\Juraj\AppData
[2012/10/16 23:11:16 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Local\Temp
[2012/10/16 23:11:16 | 000,000,000 | ---D | C] -- C:\Users\Juraj\Roaming
[2012/10/16 23:11:16 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Local\Microsoft
[2012/10/16 23:11:16 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\Media Center Programs
[2012/10/16 23:11:16 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\Macromedia
[2012/10/16 22:58:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2012/10/16 22:58:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2012/10/16 22:56:44 | 000,000,000 | ---D | C] -- C:\Users\Juraj\Desktop\Useful
[2012/10/16 22:55:18 | 000,283,200 | ---- | C] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2012/10/16 22:55:04 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\DAEMON Tools Lite
[2012/10/16 22:54:50 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2012/10/16 21:52:02 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Local\Diagnostics
[2012/10/16 21:48:00 | 000,000,000 | ---D | C] -- C:\Users\Juraj\Desktop\Antisoft
[2012/10/16 20:56:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard Home Edition 7.6.1
[2012/10/16 20:56:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MiniTool Partition Wizard Home Edition 7.6.1
[2012/10/16 20:35:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\netscan
[2012/10/16 20:34:47 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\Network Scanner
[2012/10/16 20:29:32 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\WinRAR
[2012/10/16 20:29:32 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012/10/16 20:29:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012/10/16 20:29:23 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2012/10/16 19:41:57 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\vlc
[2012/10/16 19:41:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2012/10/16 19:41:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
[2012/10/16 18:56:31 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\Skype
[2012/10/16 18:56:28 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2012/10/16 18:56:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012/10/16 18:56:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2012/10/16 18:56:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2012/10/16 18:51:33 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\OpenOffice.org
[2012/10/16 18:51:02 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
[2012/10/16 18:50:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenOffice.org 3
[2012/10/16 18:35:21 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Local\ESET
[2012/10/16 18:28:35 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Roaming\PwrMgr
[2012/10/16 17:59:33 | 000,000,000 | ---D | C] -- C:\Users\Juraj\AppData\Local\VeriSign
[2012/10/16 17:56:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2012/10/16 17:56:13 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012/10/16 17:46:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
[2012/10/16 17:46:41 | 000,000,000 | ---D | C] -- C:\Program Files\CPUID

========== Files - Modified Within 30 Days ==========

[2012/10/28 09:22:53 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012/10/28 09:00:18 | 001,497,284 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/10/28 09:00:18 | 000,631,838 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2012/10/28 09:00:18 | 000,624,776 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/10/28 09:00:18 | 000,126,740 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2012/10/28 09:00:18 | 000,110,414 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/10/28 08:57:15 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/10/28 00:26:30 | 000,000,870 | ---- | M] () -- C:\Users\Juraj\Desktop\Zadanie4.cpp
[2012/10/27 17:39:33 | 000,003,139 | ---- | M] () -- C:\Users\Juraj\Desktop\Shortcut to SecureDownloadManager.exe.lnk
[2012/10/27 13:39:51 | 001,406,966 | ---- | M] () -- C:\Users\Juraj\Desktop\xDD.png
[2012/10/26 15:54:09 | 000,031,472 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/10/26 15:54:09 | 000,031,472 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/10/26 15:44:46 | 000,012,026 | ---- | M] () -- C:\Users\Juraj\AppData\Roaming\AbsoluteReminder.xml
[2012/10/26 15:41:47 | 2901,872,640 | -HS- | M] () -- C:\hiberfil.sys
[2012/10/25 22:59:53 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Juraj\Desktop\OTL.exe
[2012/10/25 21:20:42 | 000,000,640 | ---- | M] () -- C:\Users\Juraj\Desktop\uloha51.m
[2012/10/25 10:01:36 | 001,331,971 | ---- | M] () -- C:\Users\Juraj\Desktop\Bez názvu.png
[2012/10/24 21:11:06 | 000,000,098 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\Hosts
[2012/10/24 20:59:26 | 000,106,016 | ---- | M] () -- C:\Users\Juraj\Desktop\Top.Gear.17x07.India.Special.720p.HDTV.x264-FoV.srt
[2012/10/24 19:41:43 | 000,705,552 | ---- | M] (BitDefender) -- C:\Windows\SysNative\drivers\avc3.sys
[2012/10/24 19:41:28 | 000,587,024 | ---- | M] (BitDefender) -- C:\Windows\SysNative\drivers\avckf.sys
[2012/10/24 19:41:07 | 000,082,384 | ---- | M] (BitDefender SRL) -- C:\Windows\SysNative\drivers\bdsandbox.sys
[2012/10/23 22:44:14 | 000,000,043 | ---- | M] () -- C:\Users\Juraj\Desktop\Untitled.m
[2012/10/23 22:14:41 | 000,001,459 | ---- | M] () -- C:\Users\Juraj\AppData\Local\recently-used.xbel
[2012/10/23 21:29:35 | 000,000,684 | ---- | M] () -- C:\Users\Public\Desktop\MATLAB R2008a.lnk
[2012/10/22 16:43:24 | 000,178,800 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll
[2012/10/22 16:15:25 | 000,000,093 | ---- | M] () -- C:\Users\Juraj\AppData\Local\fusioncache.dat
[2012/10/22 16:14:16 | 000,295,152 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/10/22 15:42:22 | 000,103,736 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2012/10/22 15:42:14 | 000,669,184 | ---- | M] () -- C:\Windows\SysWow64\pbsvc.exe
[2012/10/22 15:04:28 | 001,513,370 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/10/22 15:01:09 | 000,066,872 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2012/10/21 21:56:37 | 000,466,128 | ---- | M] () -- C:\ProgramData\1350852650.bdinstall.bin
[2012/10/21 21:55:01 | 000,000,385 | ---- | M] () -- C:\Windows\SysNative\user_gensett.xml
[2012/10/21 21:54:34 | 000,253,404 | -H-- | M] () -- C:\bdr-ld01
[2012/10/21 21:54:34 | 000,009,216 | -H-- | M] () -- C:\bdr-ld01.mbr
[2012/10/21 21:54:34 | 000,000,684 | -H-- | M] () -- C:\bdr-cf01
[2012/10/21 21:54:25 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_avchv_01009.Wdf
[2012/10/21 21:30:40 | 000,040,440 | ---- | M] () -- C:\Users\Juraj\Desktop\Rozvrh.png
[2012/10/19 16:12:14 | 629,734,400 | -HS- | M] () -- C:\Windows\lenovo_fastboot.img
[2012/10/17 19:33:30 | 000,000,614 | ---- | M] () -- C:\Users\Juraj\Desktop\Dev-C++.lnk
[2012/10/17 13:03:51 | 000,000,400 | ---- | M] () -- C:\Users\Juraj\Desktop\Bezdrátové připojení k síti – zástupce.lnk
[2012/10/17 13:03:31 | 000,000,418 | ---- | M] () -- C:\Users\Juraj\Desktop\Připojení k místní síti – zástupce.lnk
[2012/10/17 08:08:08 | 000,289,413 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2012/10/17 08:08:08 | 000,289,413 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2012/10/16 23:12:39 | 000,000,042 | ---- | M] () -- C:\Windows\SysWow64\drivers\17AA_Lenovo_ThinkPad_Edge_E530_3259_AHG.MRK
[2012/10/16 23:12:34 | 000,000,861 | ---- | M] () -- C:\Users\Public\Desktop\Nainstalujte dodateŔnaplikace.lnk
[2012/10/16 23:11:46 | 000,000,000 | ---- | M] () -- C:\Windows\firstboot.dat
[2012/10/16 22:58:03 | 000,283,200 | ---- | M] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2012/10/16 22:21:20 | 000,000,359 | ---- | M] () -- C:\Users\Juraj\Desktop\PC.lnk
[2012/10/16 18:51:02 | 000,001,156 | ---- | M] () -- C:\Users\Public\Desktop\OpenOffice.org 3.4.1.lnk
[2012/10/16 18:33:42 | 000,002,381 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012/10/16 17:44:00 | 000,007,635 | ---- | M] () -- C:\Users\Juraj\AppData\Local\Resmon.ResmonCfg
[2012/09/29 18:54:26 | 000,025,928 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys

========== Files Created - No Company Name ==========

[2012/10/28 00:26:30 | 000,000,870 | ---- | C] () -- C:\Users\Juraj\Desktop\Zadanie4.cpp
[2012/10/27 17:39:33 | 000,003,139 | ---- | C] () -- C:\Users\Juraj\Desktop\Shortcut to SecureDownloadManager.exe.lnk
[2012/10/27 13:39:50 | 001,406,966 | ---- | C] () -- C:\Users\Juraj\Desktop\xDD.png
[2012/10/25 23:05:05 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012/10/25 21:20:42 | 000,000,640 | ---- | C] () -- C:\Users\Juraj\Desktop\uloha51.m
[2012/10/25 10:01:36 | 001,331,971 | ---- | C] () -- C:\Users\Juraj\Desktop\Bez názvu.png
[2012/10/24 20:59:25 | 000,106,016 | ---- | C] () -- C:\Users\Juraj\Desktop\Top.Gear.17x07.India.Special.720p.HDTV.x264-FoV.srt
[2012/10/23 22:44:14 | 000,000,043 | ---- | C] () -- C:\Users\Juraj\Desktop\Untitled.m
[2012/10/23 22:14:41 | 000,001,459 | ---- | C] () -- C:\Users\Juraj\AppData\Local\recently-used.xbel
[2012/10/23 22:08:49 | 000,001,125 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
[2012/10/23 21:29:35 | 000,000,684 | ---- | C] () -- C:\Users\Public\Desktop\MATLAB R2008a.lnk
[2012/10/22 16:15:25 | 000,000,093 | ---- | C] () -- C:\Users\Juraj\AppData\Local\fusioncache.dat
[2012/10/22 15:04:25 | 001,513,370 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/10/22 15:01:25 | 000,103,736 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2012/10/22 15:01:08 | 000,669,184 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe
[2012/10/22 15:01:08 | 000,066,872 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2012/10/21 21:56:36 | 000,466,128 | ---- | C] () -- C:\ProgramData\1350852650.bdinstall.bin
[2012/10/21 21:55:01 | 000,000,385 | ---- | C] () -- C:\Windows\SysNative\user_gensett.xml
[2012/10/21 21:54:34 | 000,000,684 | -H-- | C] () -- C:\bdr-cf01
[2012/10/21 21:54:25 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_avchv_01009.Wdf
[2012/10/21 21:53:50 | 002,510,608 | -H-- | C] () -- C:\bdr-bz01
[2012/10/21 21:53:50 | 000,009,216 | -H-- | C] () -- C:\bdr-ld01.mbr
[2012/10/21 21:53:49 | 037,134,407 | -H-- | C] () -- C:\bdr-im01.gz
[2012/10/21 21:53:49 | 000,253,404 | -H-- | C] () -- C:\bdr-ld01
[2012/10/21 20:51:07 | 000,040,440 | ---- | C] () -- C:\Users\Juraj\Desktop\Rozvrh.png
[2012/10/21 20:50:16 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[2012/10/17 23:47:34 | 000,000,614 | ---- | C] () -- C:\Users\Juraj\Desktop\Dev-C++.lnk
[2012/10/17 13:03:51 | 000,000,400 | ---- | C] () -- C:\Users\Juraj\Desktop\Bezdrátové připojení k síti – zástupce.lnk
[2012/10/17 13:03:31 | 000,000,418 | ---- | C] () -- C:\Users\Juraj\Desktop\Připojení k místní síti – zástupce.lnk
[2012/10/16 23:15:09 | 000,001,400 | ---- | C] () -- C:\Users\Juraj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2012/10/16 23:15:02 | 000,001,434 | ---- | C] () -- C:\Users\Juraj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2012/10/16 23:12:36 | 000,002,381 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012/10/16 23:12:34 | 000,000,861 | ---- | C] () -- C:\Users\Public\Desktop\Nainstalujte dodateŔnaplikace.lnk
[2012/10/16 23:12:23 | 000,012,026 | ---- | C] () -- C:\Users\Juraj\AppData\Roaming\AbsoluteReminder.xml
[2012/10/16 23:11:46 | 000,000,000 | ---- | C] () -- C:\Windows\firstboot.dat
[2012/10/16 22:21:20 | 000,000,359 | ---- | C] () -- C:\Users\Juraj\Desktop\PC.lnk
[2012/10/16 20:56:41 | 002,966,720 | ---- | C] () -- C:\Windows\SysNative\pwNative.exe
[2012/10/16 20:56:41 | 000,019,032 | ---- | C] () -- C:\Windows\SysNative\pwdrvio.sys
[2012/10/16 20:56:41 | 000,012,384 | ---- | C] () -- C:\Windows\SysNative\pwdspio.sys
[2012/10/16 18:51:02 | 000,001,156 | ---- | C] () -- C:\Users\Public\Desktop\OpenOffice.org 3.4.1.lnk
[2012/10/16 17:44:00 | 000,007,635 | ---- | C] () -- C:\Users\Juraj\AppData\Local\Resmon.ResmonCfg
[2012/09/27 13:43:33 | 000,755,572 | ---- | C] () -- C:\Windows\SysWow64\igkrng700.bin
[2012/09/27 13:43:31 | 000,559,972 | ---- | C] () -- C:\Windows\SysWow64\igfcg700m.bin
[2012/09/27 13:43:28 | 000,058,880 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2012/09/27 13:43:27 | 013,026,816 | ---- | C] () -- C:\Windows\SysWow64\ig7icd32.dll
[2012/02/03 06:08:26 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll

========== ZeroAccess Check ==========

[2009/07/14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012/10/21 22:09:35 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Bitdefender
[2012/10/28 09:16:55 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\DAEMON Tools Lite
[2012/10/27 17:37:22 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Dev-Cpp
[2012/10/27 17:39:32 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\e-academy Inc
[2012/10/16 23:15:38 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Leadertech
[2012/10/16 17:40:09 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Lenovo
[2012/10/16 23:21:25 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\LSC
[2012/10/16 20:34:52 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Network Scanner
[2012/10/16 18:51:33 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\OpenOffice.org
[2012/10/16 18:28:35 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\PwrMgr
[2012/10/21 21:51:53 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\QuickScan
[2012/10/24 22:11:35 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Ubisoft

========== Purity Check ==========

========== Custom Scans ==========

< >
[2009/07/14 06:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009/07/14 06:08:49 | 000,009,112 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT

< >

< MD5 for: AGP440.SYS >
[2009/07/14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009/07/14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys
[2009/07/14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2010/11/21 04:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010/11/21 04:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2010/11/21 04:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010/11/21 04:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2010/11/21 04:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010/11/21 04:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010/11/21 04:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys

< MD5 for: CNGAUDIT.DLL >
[2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009/07/14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009/07/14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll

< MD5 for: CRYPTSVC.DLL >
[2012/06/02 05:52:32 | 000,142,336 | ---- | M] (Microsoft Corporation) MD5=063DD65889D21035311463337BD268E7 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22010_none_788c7cc71232cc19\cryptsvc.dll
[2010/11/21 04:24:16 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=15597883FBE9B056F276ADA3AD87D9AF -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_d4259ed3b16ed82a\cryptsvc.dll
[2012/06/04 08:52:35 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=7E7D2DACF65D750D466F36BD3D09AE20 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22010_none_d4ab184aca903d4f\cryptsvc.dll
[2012/06/02 05:36:29 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=96C0E38905CFD788313BE8E11DAE3F2F -- C:\Windows\SysWOW64\cryptsvc.dll
[2012/06/02 05:36:29 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=96C0E38905CFD788313BE8E11DAE3F2F -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17856_none_77ddc9e5f93000db\cryptsvc.dll
[2012/06/02 06:41:28 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=9C01375BE382E834CC26D1B7EAF2C4FE -- C:\Windows\SysNative\cryptsvc.dll
[2012/06/02 06:41:28 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=9C01375BE382E834CC26D1B7EAF2C4FE -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17856_none_d3fc6569b18d7211\cryptsvc.dll
[2010/11/21 04:24:32 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll

< MD5 for: EXPLORER.EXE >
[2011/12/08 21:15:19 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011/12/08 21:15:19 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011/12/08 21:15:19 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011/12/08 21:15:19 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010/11/21 04:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011/12/08 21:15:19 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011/12/08 21:15:19 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010/11/21 04:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

< MD5 for: HAL.DLL >
[2010/11/21 04:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010/11/21 04:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll

< MD5 for: IASTOR.SYS >
[2011/12/23 13:37:12 | 000,568,600 | ---- | M] (Intel Corporation) MD5=C224331A54571C8C9162F7714400BBBD -- C:\SWTOOLS\DRIVERS\IRST\iaStor.sys
[2011/12/23 13:37:12 | 000,568,600 | ---- | M] (Intel Corporation) MD5=C224331A54571C8C9162F7714400BBBD -- C:\Windows\SysNative\drivers\iaStor.sys
[2011/12/23 13:37:12 | 000,568,600 | ---- | M] (Intel Corporation) MD5=C224331A54571C8C9162F7714400BBBD -- C:\Windows\SysNative\DriverStore\FileRepository\iaahci.inf_amd64_neutral_9c981fcb416c038e\iaStor.sys

< MD5 for: IASTORV.SYS >
[2010/11/21 04:23:47 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_668286aa35d55928\iaStorV.sys
[2010/11/21 04:23:47 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_0d3757e79e6784d0\iaStorV.sys
[2011/12/08 21:24:30 | 000,410,496 | ---- | M] (Intel Corporation) MD5=5B3DE7208E5000D5B451B9D290D2579C -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_0d714416b7c182d5\iaStorV.sys
[2011/12/08 21:24:30 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2011/12/08 21:24:30 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_0bcee2057afcc090\iaStorV.sys
[2011/12/08 21:24:30 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_0cf9793d9e95787b\iaStorV.sys

< MD5 for: ISAPNP.SYS >
[2009/07/14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\drivers\isapnp.sys
[2009/07/14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\isapnp.sys
[2009/07/14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\isapnp.sys

< MD5 for: LSASS.EXE >
[2009/07/14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_04709031736ac277\lsass.exe
[2012/09/27 13:28:36 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0A10B74FBB437FF9A23F1D5DE4446A83 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.21861_none_04c1204e8cb39c3f\lsass.exe
[2012/06/04 08:51:10 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=79C908CAA6F43021EB05F4C733A927D1 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22010_none_04f609a88c8c279c\lsass.exe
[2012/09/27 13:28:36 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- C:\Windows\SysNative\lsass.exe
[2012/09/27 13:28:36 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17725_none_0466c45b7371f20d\lsass.exe
[2012/09/27 13:28:36 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17856_none_044756c773895c5e\lsass.exe

< MD5 for: NDIS.SYS >
[2012/09/27 13:27:55 | 000,950,656 | ---- | M] (Microsoft Corporation) MD5=303310C91F8C0740ED1C76851C759874 -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.21628_none_066fff3d4bd0b870\ndis.sys
[2012/08/22 19:06:07 | 000,950,128 | ---- | M] (Microsoft Corporation) MD5=5E74508FCB5820B29EEAFE24E6035BCF -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.22097_none_06232d534c0a8d67\ndis.sys
[2012/08/22 19:12:40 | 000,950,128 | ---- | M] (Microsoft Corporation) MD5=760E38053BF56E501D562B70AD796B88 -- C:\Windows\SysNative\drivers\ndis.sys
[2012/08/22 19:12:40 | 000,950,128 | ---- | M] (Microsoft Corporation) MD5=760E38053BF56E501D562B70AD796B88 -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17939_none_05dc9a6832ba428a\ndis.sys
[2010/11/21 04:23:55 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_05ed313632ae9759\ndis.sys
[2012/09/27 13:27:55 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=C38B8AE57F78915905064A9A24DC1586 -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17530_none_05d3903632c269df\ndis.sys

< MD5 for: NETLOGON.DLL >
[2010/11/21 04:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\SysNative\netlogon.dll
[2010/11/21 04:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_5bddbcb24e997298\netlogon.dll
[2010/11/21 04:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\SysWOW64\netlogon.dll
[2010/11/21 04:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll

< MD5 for: NVRAID.SYS >
[2011/12/08 21:24:30 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\SysNative\drivers\nvraid.sys
[2011/12/08 21:24:30 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvraid.sys
[2011/12/08 21:24:30 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvraid.sys
[2010/11/21 04:23:47 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvraid.sys
[2010/11/21 04:23:47 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvraid.sys
[2011/12/08 21:24:30 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=666CA16F17914C1CD3616CF16DE0A6EA -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2011/12/08 21:24:30 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=D23C7E8566DA2B8A7C0DBBB761D54888 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvstor.sys
[2011/12/08 21:24:30 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\drivers\nvstor.sys
[2011/12/08 21:24:30 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvstor.sys
[2011/12/08 21:24:30 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvstor.sys
[2010/11/21 04:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvstor.sys
[2010/11/21 04:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvstor.sys

< MD5 for: SCECLI.DLL >
[2010/11/21 04:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010/11/21 04:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010/11/21 04:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010/11/21 04:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll

< MD5 for: SMSS.EXE >
[2009/07/14 02:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe
[2009/07/14 02:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe

< MD5 for: SVCHOST.EXE >
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2012/09/29 18:54:26 | 000,218,184 | ---- | M] () MD5=8846E87210AD131CF71E3E2E49F647B0 -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2009/07/14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2010/11/21 04:24:08 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2012/08/22 19:06:13 | 001,901,936 | ---- | M] (Microsoft Corporation) MD5=7880A26B7D3B96FDA8EFD9F985036B1D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22097_none_117a13de9661c145\tcpip.sys
[2012/09/27 13:32:38 | 001,901,424 | ---- | M] (Microsoft Corporation) MD5=885B202006EE17AE99B9FBCEC9AF88C9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21954_none_11a27a8e9643d23a\tcpip.sys
[2011/12/08 21:12:52 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=92CE29D95AC9DD2D0EE9061D551BA250 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_114de9497cfe9316\tcpip.sys
[2011/12/08 21:21:52 | 001,914,752 | ---- | M] (Microsoft Corporation) MD5=A0EB71E0DC047C7CC95CD6AB4036296E -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21754_none_11a276c29643d7ec\tcpip.sys
[2012/09/27 13:32:38 | 001,918,320 | ---- | M] (Microsoft Corporation) MD5=ACB82BDA8F46C84F465C1AFA517DC4B9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17802_none_114ceccb7cff740d\tcpip.sys
[2011/12/08 21:12:52 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=B77977AEB2FF159D01DB08A309989C5F -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_11cbb5de9625357a\tcpip.sys
[2011/12/08 21:21:52 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=F0E98C00A09FDF791525829A1D14240F -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17638_none_11327af77d12659c\tcpip.sys
[2012/08/22 19:12:50 | 001,913,200 | ---- | M] (Microsoft Corporation) MD5=F782CAD3CEDBB3F9FFE3BF2775D92DDC -- C:\Windows\SysNative\drivers\tcpip.sys
[2012/08/22 19:12:50 | 001,913,200 | ---- | M] (Microsoft Corporation) MD5=F782CAD3CEDBB3F9FFE3BF2775D92DDC -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17939_none_113380f37d117668\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010/11/21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010/11/21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010/11/21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010/11/21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010/11/21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010/11/21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2012/09/29 18:54:26 | 000,218,184 | ---- | M] () MD5=8846E87210AD131CF71E3E2E49F647B0 -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe

< MD5 for: WS2_32.DLL >
[2010/11/21 04:24:28 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\SysNative\ws2_32.dll
[2010/11/21 04:24:28 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_50ddb631e4f59005\ws2_32.dll
[2010/11/21 04:23:55 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\SysWOW64\ws2_32.dll
[2010/11/21 04:23:55 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll

< >

< %systemroot%*.* /U /s >
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[6 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2012/10/21 21:05:02 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Adobe
[2012/10/21 22:09:35 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Bitdefender
[2012/10/28 09:16:55 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\DAEMON Tools Lite
[2012/10/27 17:37:22 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Dev-Cpp
[2012/10/27 17:39:32 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\e-academy Inc
[2012/10/16 23:14:39 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Identities
[2012/10/24 21:51:29 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\InstallShield
[2012/10/16 23:11:23 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Intel
[2012/10/16 23:15:38 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Leadertech
[2012/10/16 17:40:09 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Lenovo
[2012/10/16 23:21:25 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\LSC
[2012/09/27 13:55:36 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Macromedia
[2012/10/18 00:08:45 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Malwarebytes
[2012/10/23 21:31:31 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\MathWorks
[2011/12/08 21:02:50 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Media Center Programs
[2012/10/27 17:39:33 | 000,000,000 | --SD | M] -- C:\Users\Juraj\AppData\Roaming\Microsoft
[2012/10/16 20:34:52 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Network Scanner
[2012/10/25 20:04:20 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\NVIDIA
[2012/10/16 18:51:33 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\OpenOffice.org
[2012/10/16 18:28:35 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\PwrMgr
[2012/10/21 21:51:53 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\QuickScan
[2012/10/22 16:43:25 | 000,000,000 | RH-D | M] -- C:\Users\Juraj\AppData\Roaming\SecuROM
[2012/10/28 09:20:41 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Skype
[2012/10/18 00:04:40 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\SUPERAntiSpyware.com
[2012/10/24 22:11:35 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\Ubisoft
[2012/10/28 01:07:49 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\vlc
[2012/10/16 20:34:25 | 000,000,000 | ---D | M] -- C:\Users\Juraj\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2012/10/27 17:39:33 | 000,009,662 | R--- | M] () -- C:\Users\Juraj\AppData\Roaming\Microsoft\Installer\{4A5667B2-5D13-46C2-85B5-9D46A6096F61}\_112D608FD02CD87FDC7735.exe
[2012/10/27 17:39:33 | 000,009,662 | R--- | M] () -- C:\Users\Juraj\AppData\Roaming\Microsoft\Installer\{4A5667B2-5D13-46C2-85B5-9D46A6096F61}\_79DFA17CFF2876593FBC23.exe
[2012/10/27 17:39:33 | 000,009,662 | R--- | M] () -- C:\Users\Juraj\AppData\Roaming\Microsoft\Installer\{4A5667B2-5D13-46C2-85B5-9D46A6096F61}\_853F67D554F05449430E7E.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2012/10/28 08:57:09 | 000,000,278 | ---- | M] () -- C:\Windows\system32\log.txt

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Sidebar" = C:\Program Files (x86)\Windows Sidebar\sidebar.exe /autoRun -- [2010/11/21 04:25:10 | 001,174,016 | ---- | M] (Microsoft Corporation)
"DAEMON Tools Lite" = "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun -- [2012/08/28 14:52:56 | 003,671,904 | ---- | M] (DT Soft Ltd)

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs

< >

< type c:\boot.ini >> test.txt /c >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012/10/28 09:22:53 | 000,000,512 | ---- | M] () MD5=C63AC5BA2E45053AF2A7F340822A52BE -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2012/08/23 22:11:14 | 000,062,238 | ---- | M] () -- \Program Files\GIMP 2\share\gimp\2.0\patterns\cracked.pat

< *keygen* /s >

< *loader* /s >
[2012/08/13 09:52:58 | 000,006,081 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.py
[2012/08/10 15:50:58 | 000,020,992 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.uno.dll
[2012/08/13 10:52:26 | 000,000,171 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.uno.ini
[2012/08/10 15:50:54 | 000,029,696 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\URE\bin\javaloader.uno.dll
[2012/08/13 09:12:36 | 000,003,868 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\URE\java\unoloader.jar
[2012/04/25 15:51:43 | 000,410,640 | ---- | M] () -- \Program Files\Bitdefender\Bitdefender 2013\downloader.exe
[2012/04/24 14:28:38 | 000,000,597 | ---- | M] () -- \Program Files\Bitdefender\Bitdefender 2013\logging\downloader.logger.xml
[2012/04/24 14:30:58 | 000,008,519 | ---- | M] () -- \Program Files\Bitdefender\Bitdefender 2013\skin\images\sb_loader.gif
[2012/05/10 13:24:01 | 000,061,907 | ---- | M] () -- \Program Files\Bitdefender\Bitdefender 2013\skin\images\browser\obk_loader.png
[2012/04/24 14:30:27 | 000,002,196 | ---- | M] () -- \Program Files\Bitdefender\Bitdefender 2013\skin\images\common\loader.gif
[2012/04/24 14:30:28 | 000,008,439 | ---- | M] () -- \Program Files\Bitdefender\Bitdefender 2013\skin\images\common\loader.png
[2012/04/24 14:30:28 | 000,008,519 | ---- | M] () -- \Program Files\Bitdefender\Bitdefender 2013\skin\images\common\sb_loader.gif
[2011/03/08 08:43:28 | 000,013,734 | ---- | M] () -- \Program Files\GIMP 2\Python\Lib\unittest\loader.py
[2012/06/09 18:19:37 | 000,055,296 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2012/06/18 11:39:40 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2012/06/18 11:39:40 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2012/06/18 11:39:40 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2012/06/18 11:39:40 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2012/08/22 13:36:08 | 000,057,728 | ---- | M] () -- \Users\Juraj\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\img\dt_dadget_loader.png
[2012/08/22 13:36:00 | 000,057,728 | ---- | M] () -- \Users\Juraj\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin1\dt_dadget_loader.png
[2012/08/22 13:36:00 | 000,057,728 | ---- | M] () -- \Users\Juraj\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin2\dt_dadget_loader.png
[2012/08/22 13:36:00 | 000,057,728 | ---- | M] () -- \Users\Juraj\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin3\dt_dadget_loader.png
[2012/08/22 13:36:04 | 000,057,728 | ---- | M] () -- \Users\Juraj\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin4\dt_dadget_loader.png
[2012/08/22 13:36:04 | 000,061,770 | ---- | M] () -- \Users\Juraj\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin5\dt_dadget_loader.png
[2012/08/22 13:36:06 | 000,061,770 | ---- | M] () -- \Users\Juraj\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin6\dt_dadget_loader.png
[2012/10/28 09:19:59 | 000,482,060 | ---- | M] () -- \Windows\Prefetch\DOWNLOADER.EXE-34501C53.pf
[2012/08/20 18:32:13 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2012/08/20 18:32:13 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2009/07/14 02:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009/07/14 02:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/12/08 21:22:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_68a9b6bd92929e63\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/08/20 19:38:32 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_68c05c919281774d\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/12/08 21:22:15 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_691eb3faabbf8f66\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/08/20 19:09:47 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_6907efc6abd0db81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/09/27 13:26:21 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2012/09/27 13:26:21 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2012/09/27 13:26:21 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2012/09/27 13:26:21 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2012/09/27 13:26:21 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2011/12/08 21:13:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011/12/08 21:13:24 | 000,642,944 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.efi_75834aa0
[2011/12/08 21:13:25 | 000,605,552 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.exe_75835076
[2011/12/08 21:13:25 | 000,566,208 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.efi_85cd069f
[2011/12/08 21:13:26 | 000,518,672 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.exe_85cd1215
[2009/07/14 03:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009/07/14 03:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2012/09/27 13:24:26 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2010/11/21 04:16:35 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011/12/08 21:13:21 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011/12/08 21:13:21 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009/07/14 03:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009/07/14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009/07/14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/12/08 21:22:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/08/20 18:32:13 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_0ca1c10dda240617\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/12/08 21:22:15 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/08/20 18:23:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_0ce95442f3736a4b\api-ms-win-core-libraryloader-l1-1-0.dll

< *minodlogin* /s >

< *tnod* /s >

< *AutoKMS* /s >

< *activator* /s >

< *serial* /s >
[2011/02/09 22:38:08 | 000,707,072 | ---- | M] () -- \Program Files (x86)\Common Files\Intel Corporation\WiDiAgent\serializer.dll
[2011/11/25 21:25:18 | 001,489,920 | ---- | M] () -- \Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\serializer.dll
[2011/11/25 21:39:54 | 002,053,632 | ---- | M] () -- \Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\x64\serializer64.dll
[2011/11/30 00:35:10 | 001,491,456 | ---- | M] () -- \Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\IUM\bin\serializer.dll
[2012/07/12 13:59:16 | 000,539,136 | ---- | M] () -- \Program Files (x86)\Intel\IntelAppStore\bin\serializer.dll
[2010/04/01 09:20:06 | 000,413,696 | ---- | M] () -- \Program Files (x86)\Microsoft Silverlight\4.0.50401.0\System.Runtime.Serialization.dll
[2012/09/27 14:00:09 | 001,186,304 | ---- | M] () -- \Program Files (x86)\Microsoft Silverlight\4.0.50401.0\System.Runtime.Serialization.ni.dll
[2010/11/21 04:25:11 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2012/09/27 13:25:58 | 000,090,112 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2010/04/15 02:20:46 | 000,415,592 | ---- | M] () -- \Program Files (x86)\Windows Live\Mesh\System.Runtime.Serialization.dll
[2010/04/15 02:20:46 | 000,141,168 | ---- | M] () -- \Program Files (x86)\Windows Live\Mesh\System.Runtime.Serialization.Json.dll
[2010/04/15 02:20:46 | 000,321,376 | ---- | M] () -- \Program Files (x86)\Windows Live\Mesh\System.Xml.Serialization.dll
[2012/04/24 14:30:27 | 000,080,527 | ---- | M] () -- \Program Files\Bitdefender\Bitdefender 2013\skin\images\common\bg_certification_serial.png
[2010/11/21 04:24:53 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2012/09/27 13:25:58 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2012/10/22 15:03:42 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC\System.Runtime.Serialization.Formatters.Soap\1.0.5000.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012/09/27 13:25:48 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009/06/10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012/09/27 13:25:58 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2010/11/21 04:24:53 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2012/10/18 08:50:53 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\2ff4e90c5842525f7a7456639de090d8\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012/10/20 09:53:25 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\72a24b45e11d64eb2bc840aae9419ba5\System.Runtime.Serialization.ni.dll
[2012/10/20 09:32:43 | 003,073,536 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\265531568722647aab229a2cec195b3d\System.Runtime.Serialization.ni.dll
[2012/10/18 08:56:28 | 000,396,288 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\807759890a40e4047c35a24e64dc76d5\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012/10/20 09:57:09 | 002,647,040 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\3fe3910474b3e2a08fca9b09330a74f7\System.Runtime.Serialization.ni.dll
[2012/10/20 09:57:16 | 000,311,296 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\490f9ea2b1a2e738d203af00c5c9b735\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2010/03/29 22:29:24 | 000,310,272 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\d0ff3383438d688a0118d0fa19ed1dc4\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2010/03/29 22:29:10 | 002,625,024 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\e9f8a45b1063d6c6a62718c88a5623d1\System.Runtime.Serialization.ni.dll
[2012/10/20 10:00:31 | 000,009,216 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Serializ#\5d0529cca67ada47749f5373ae050a4a\System.Xml.Serialization.ni.dll
[2012/10/20 10:17:46 | 000,376,832 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\7590828d50338d512b11a4d3f87d69a2\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012/10/20 10:17:30 | 003,412,992 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\affb28e2d9cc3c19de0758e7e8c68e8f\System.Runtime.Serialization.ni.dll
[2012/10/20 10:31:37 | 000,010,240 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.Serializ#\7fa267d10b2df6dbd00d00d130715f0a\System.Xml.Serialization.ni.dll
[2012/10/18 00:30:02 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012/10/18 00:30:01 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2012/10/18 00:30:04 | 000,011,120 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2003/02/21 06:26:56 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2012/09/27 13:25:50 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010/11/21 04:24:53 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010/03/18 22:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010/03/18 22:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2011/04/06 15:48:20 | 000,011,120 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2009/06/10 21:40:06 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2012/09/27 13:25:46 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010/11/21 04:24:53 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010/03/18 22:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2010/03/18 22:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2011/04/06 15:48:20 | 000,011,120 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.Serialization.dll
[2009/07/14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2012/09/27 13:25:39 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009/07/14 01:00:40 | 000,094,208 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_neutral_fdcfb86ce78678d1\serial.sys
[2009/06/10 21:37:50 | 000,038,400 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_amd64_neutral_6fb75ea318f84fe5\grserial.sys
[2009/07/14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2012/09/27 13:25:39 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\cs-CZ\serialui.dll.mui
[2012/09/27 13:25:46 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_1e527062c1f59d5f\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2012/09/27 13:25:50 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23\serialui.dll.mui
[2009/07/14 02:41:54 | 000,017,920 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360\serialui.dll
[2012/09/27 13:25:58 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_bb9a1800691e639c\System.RunTime.Serialization.Resources.dll
[2012/09/27 13:25:51 | 000,009,728 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_20ab142d65ed6acc\serial.sys.mui
[2009/07/14 01:00:40 | 000,094,208 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_548ca258d20f4ada\serial.sys
[2009/06/10 21:40:06 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_a9d1bee515273f56\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/10 21:37:50 | 000,038,400 | ---- | M] () -- \Windows\winsxs\amd64_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_ce9ed3064deed3aa\grserial.sys
[2010/11/21 04:24:53 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722\System.Runtime.Serialization.dll
[2010/11/21 04:24:53 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb\System.Runtime.Serialization.dll
[2011/12/08 21:13:26 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2011/12/08 21:13:26 | 000,017,792 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8_kdcom.dll_db5e7744
[2012/09/27 13:26:22 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23_serialui.dll.mui_7d29d2a3
[2009/07/14 03:57:29 | 000,017,920 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360_serialui.dll_bea29328
[2012/09/27 13:26:21 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009/07/14 03:58:37 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009/07/14 03:15:17 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2011/12/08 21:13:21 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2011/12/08 21:13:21 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.21655_none_703aeff2dc87a23b.manifest
[2009/07/14 03:11:30 | 000,000,868 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_88b1c48f2026fe3f.manifest
[2010/11/21 04:17:50 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722.manifest
[2010/11/21 04:17:50 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb.manifest
[2010/11/21 04:17:50 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2012/09/27 13:25:05 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2010/11/21 04:17:50 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2010/11/21 04:18:20 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2009/06/10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2012/09/27 13:25:48 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010/11/21 04:24:53 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2012/09/27 13:25:58 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2010/11/21 04:24:53 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2012/09/27 13:25:50 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_28a71ab4f6565f5a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012/09/27 13:25:39 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009/07/14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2012/09/27 13:25:58 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2010/11/21 04:25:11 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll

< *w7lxe* /s >

========== Alternate Data Streams ==========

@Alternate Data Stream - 105 bytes -> C:\ProgramData\TEMP:5C321E34

< End of report >

A dopadly dobre?

Znovu spustte OTL jako spravce
Do spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)

Kód: Vybrat vše

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[RESETHOSTS]
[Purity]

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:otl
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [] File not found
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[6 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
@Alternate Data Stream - 105 bytes -> C:\ProgramData\TEMP:5C321E34

Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.

Vyzera to na nadpriemer

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Juraj
->Temp folder emptied: 3382717 bytes
->Temporary Internet Files folder emptied: 2753583 bytes
->Google Chrome cache emptied: 131551023 bytes
->Flash cache emptied: 577 bytes

User: Public

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 2964 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50574 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 131,00 mb

[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Juraj
->Flash cache emptied: 0 bytes

User: Public

User: UpdatusUser

Total Flash Files Cleaned = 0,00 mb

C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
File C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll not found.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1812.tmp\System.Data.dll deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1812.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP2490.tmp\System.Design.dll deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP2490.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP50C0.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP6B8E.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPFED9.tmp folder deleted successfully.
C:\Windows\Installer\MSIF2AA.tmp deleted successfully.
ADS C:\ProgramData\TEMP:5C321E34 deleted successfully.

OTL by OldTimer - Version 3.2.69.0 log created on 10282012_154002

Files\Folders moved on Reboot...
C:\Users\Juraj\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Windows\temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Windows\temp\FXSTIFFDebugLogFile.txt moved successfully.
File\Folder C:\Windows\temp\~bd7CC0.tmp not found!

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

VIRY.CZ

Prosim o kontrolu. Obcas freeze na 4-5s.

Prosim o kontrolu. Obcas freeze na 4-5s.

Re: Prosim o kontrolu. Obcas freeze na 4-5s.

Re: Prosim o kontrolu. Obcas freeze na 4-5s.

Re: Prosim o kontrolu. Obcas freeze na 4-5s.

Re: Prosim o kontrolu. Obcas freeze na 4-5s.

Re: Prosim o kontrolu. Obcas freeze na 4-5s.

Re: Prosim o kontrolu. Obcas freeze na 4-5s.

Re: Prosim o kontrolu. Obcas freeze na 4-5s.

Re: Prosim o kontrolu. Obcas freeze na 4-5s.

Re: Prosim o kontrolu. Obcas freeze na 4-5s.

Re: Prosim o kontrolu. Obcas freeze na 4-5s.

Re: Prosim o kontrolu. Obcas freeze na 4-5s.

Re: Prosim o kontrolu. Obcas freeze na 4-5s.

Re: Prosim o kontrolu. Obcas freeze na 4-5s.

Re: Prosim o kontrolu. Obcas freeze na 4-5s.