VIRY.CZ

Dobrý den,

k vánocům jsem rodině pořídil nový notebook od Lenova (Ideapad) s předinstalovaným systémem Windows 8.1. Vše jede celkem v pořídku až na jednu věc. Při větším vytížení se občas stane že systém se sekne a chvíli trvá, než se opět uvede do provozu, někdy se dokonce stane, že systém zamrzne natolik, že nezbývá něž použít vypínací tlačítko, pro tvrdé vypnutí. Chtěl bych tedy poprosit o radu, přikládám log z RST a link pro stažení logu z FRST, předem děkuji za rady.

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-01-2014
Ran by snejdarov (administrator) on SNEJDAROVI on 25-01-2014 08:42:40
Running from C:\Users\snejdarov\Desktop
Windows 8.1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAService.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel) C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
() C:\Windows\SysWOW64\UMonit64.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAMain.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9600.16422_x64__8wekyb3d8bbwe\glcnd.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUNMain.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2014-01-08] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1368792 2014-01-08] (Realtek Semiconductor)
HKLM\...\Run: [RtsFT] - C:\WINDOWS\RTFTrack.exe [6339656 2013-05-18] (Realtek semiconductor)
HKLM\...\Run: [BTMTrayAgent] - C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7830328 2013-05-21] (Motorola Solutions, Inc.)
HKLM\...\Run: [UMonit64] - C:\windows\SysWOW64\UMonit64.exe [40960 2013-02-28] ()
HKLM\...\Run: [Energy Manager] - C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15792112 2013-08-22] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] - C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [101360 2013-08-22] (Lenovo(beijing) Limited)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2986224 2013-06-20] (Synaptics Incorporated)
HKLM\...\Run: [IntelAntiTheftDiscoveryAppIECNotifier] - C:\Program Files (x86)\Intel\Intel Anti-Theft Discovery App\IntelAntiTheftDiscoveryAppIECNotifier.exe [142848 2013-07-27] (Intel Corporation)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1368792 2014-01-08] (Realtek Semiconductor)
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168464 2012-10-31] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [PSUAMain] - C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAMain.exe [32736 2013-10-19] (Panda Security, S.L.)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com
SearchScopes: HKLM - DefaultScope {11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKLM - {11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKLM-x32 - DefaultScope {11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKLM-x32 - {11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKCU - DefaultScope {11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} URL =
SearchScopes: HKCU - {11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} URL =
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

Chrome:
=======
CHR Extension: (Dokumenty Google) - C:\Users\snejdarov\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-19]
CHR Extension: (Disk Google) - C:\Users\snejdarov\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-19]
CHR Extension: (YouTube) - C:\Users\snejdarov\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-19]
CHR Extension: (Vyhledávání Google) - C:\Users\snejdarov\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-19]
CHR Extension: (Peněženka Google) - C:\Users\snejdarov\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-19]
CHR Extension: (Gmail) - C:\Users\snejdarov\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-19]

==================== Services (Whitelisted) =================

U2 BrcmSetSecurity; C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe [101536 2013-05-28] (Intel)
U2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-03-22] (Intel Corporation)
U3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
U2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-05-09] (Intel Corporation)
U2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [156616 2013-06-26] (Intel Corporation)
U2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [182760 2013-04-15] ()
U2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-05-09] (Intel Corporation)
U3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-08-28] ()
U2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe [140768 2013-10-03] (Panda Security, S.L.)
U2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAService.exe [37344 2013-10-19] (Panda Security, S.L.)
U2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [68368 2013-08-22] ()
U3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
U3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
U2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3378416 2013-08-28] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

U0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
U3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
U3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
U3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1385272 2013-04-23] (Motorola Solutions, Inc.)
U3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
U3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
U0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
U3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [115656 2013-06-03] (Intel Corporation)
U3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21048 2013-04-15] ()
U3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21048 2013-04-15] ()
U0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-12-26] (Microsoft Corporation)
U3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-04-15] ()
U0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
U3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-12-19] (Intel Corporation)
U3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
U3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
U3 NETwNb64; C:\Windows\system32\DRIVERS\NETwbw02.sys [3607520 2014-01-09] (Intel Corporation)
U3 NETwNe64; C:\Windows\system32\DRIVERS\Netwew02.sys [3648480 2013-10-08] (Intel Corporation)
U1 NNSALPC; C:\Windows\system32\DRIVERS\NNSALPC.sys [91368 2013-05-29] (Panda Security, S.L.)
U1 NNSHTTP; C:\Windows\system32\DRIVERS\NNSHTTP.sys [122088 2013-05-29] (Panda Security, S.L.)
U1 NNSHTTPS; C:\Windows\system32\DRIVERS\NNSHTTPS.sys [109288 2013-05-29] (Panda Security, S.L.)
U1 NNSIDS; C:\Windows\system32\DRIVERS\NNSIDS.sys [114920 2013-05-29] (Panda Security, S.L.)
U1 NNSPICC; C:\Windows\system32\DRIVERS\NNSPICC.sys [95464 2013-05-29] (Panda Security, S.L.)
U4 NNSPIHSW; C:\Windows\system32\DRIVERS\NNSPIHSW.sys [69864 2013-05-29] (Panda Security, S.L.)
U1 NNSPOP3; C:\Windows\system32\DRIVERS\NNSPOP3.sys [119016 2013-05-29] (Panda Security, S.L.)
U1 NNSPROT; C:\Windows\system32\DRIVERS\NNSPROT.sys [305896 2013-05-29] (Panda Security, S.L.)
U1 NNSPRV; C:\Windows\system32\DRIVERS\NNSPRV.sys [118504 2013-05-29] (Panda Security, S.L.)
U1 NNSSMTP; C:\Windows\system32\DRIVERS\NNSSMTP.sys [114920 2013-05-29] (Panda Security, S.L.)
U1 NNSSTRM; C:\Windows\system32\DRIVERS\NNSSTRM.sys [246504 2013-05-29] (Panda Security, S.L.)
U1 NNSTLSC; C:\Windows\system32\DRIVERS\NNSTLSC.sys [106216 2013-05-29] (Panda Security, S.L.)
U2 PSINAflt; C:\Windows\system32\DRIVERS\PSINAflt.sys [169192 2013-10-17] (Panda Security, S.L.)
U2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [122600 2013-10-11] (Panda Security, S.L.)
U1 PSINKNC; C:\Windows\system32\DRIVERS\PSINKNC.sys [206056 2013-10-11] (Panda Security, S.L.)
U2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [124648 2013-10-11] (Panda Security, S.L.)
U2 PSINProt; C:\Windows\system32\DRIVERS\PSINProt.sys [137960 2013-10-11] (Panda Security, S.L.)
U3 PSINReg; C:\Windows\System32\DRIVERS\PSINReg.sys [105704 2013-10-11] (Panda Security, S.L.)
U3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
U3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8243528 2013-05-18] (Realtek Semiconductor Corp.)
U3 SensorsAlsDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [230912 2013-08-22] (Microsoft Corporation)
U3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-12-26] (Microsoft Corporation)
U3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33008 2013-06-20] (Synaptics Incorporated)
U0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
U3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
U3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [206744 2013-05-28] (Windows (R) Win 7 DDK provider)
U3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
U3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2014-01-24] ()
U3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
U3 PSKMAD; System32\DRIVERS\PSKMAD.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-25 08:42 - 2014-01-25 08:42 - 00015014 _____ C:\Users\snejdarov\Desktop\FRST.txt
2014-01-25 08:41 - 2014-01-25 08:41 - 00112640 _____ (forum.viry.cz) C:\Users\snejdarov\Desktop\FRSTLauncher.exe
2014-01-25 08:40 - 2014-01-25 08:40 - 00000000 ____D C:\FRST
2014-01-25 08:35 - 2014-01-25 08:35 - 00112640 _____ (forum.viry.cz) C:\Users\snejdarov\Downloads\Nepotvrzeno 718644.crdownload
2014-01-25 08:34 - 2014-01-25 08:35 - 02077696 _____ (Farbar) C:\Users\snejdarov\Desktop\FRST64.exe
2014-01-24 22:14 - 2014-01-24 22:14 - 00094656 _____ (CACE Technologies) C:\WINDOWS\system32\WPRO_41_2001woem.tmp
2014-01-24 21:56 - 2013-11-27 16:34 - 03210528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2014-01-24 21:56 - 2013-11-27 16:27 - 00809872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-01-24 21:56 - 2013-11-27 14:47 - 02804528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2014-01-24 21:56 - 2013-11-27 10:17 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-01-24 21:56 - 2013-11-27 09:58 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-01-24 21:56 - 2013-11-27 09:20 - 04106240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-01-24 21:56 - 2013-11-26 14:22 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2014-01-24 21:56 - 2013-11-26 14:20 - 02131120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-01-24 21:56 - 2013-11-26 14:20 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-01-24 21:56 - 2013-11-26 14:20 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-01-24 21:56 - 2013-11-26 12:50 - 01371312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2014-01-24 21:56 - 2013-11-26 12:44 - 02142936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-01-24 21:56 - 2013-11-26 12:44 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-01-24 21:56 - 2013-11-26 11:13 - 04191232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-01-24 21:56 - 2013-11-26 10:21 - 18577920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-01-24 21:56 - 2013-11-26 09:28 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-01-24 21:56 - 2013-11-25 02:32 - 01119064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-01-24 21:56 - 2013-11-23 13:47 - 00032088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2014-01-24 21:56 - 2013-11-23 12:49 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-01-24 21:56 - 2013-11-23 09:19 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-01-24 21:56 - 2013-11-23 08:08 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-01-24 21:56 - 2013-11-23 05:50 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-01-24 21:56 - 2013-11-23 04:57 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-01-24 21:56 - 2013-11-23 04:48 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-01-24 21:56 - 2013-11-23 04:25 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-01-24 21:56 - 2013-11-23 04:25 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-01-24 21:56 - 2013-11-23 04:19 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-01-24 21:56 - 2013-11-23 04:15 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-01-24 21:56 - 2013-11-16 06:11 - 00764856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-01-24 21:56 - 2013-11-15 19:19 - 00669344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-01-24 21:56 - 2013-11-15 15:59 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2014-01-24 21:56 - 2013-11-15 15:08 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-01-24 21:56 - 2013-11-15 14:24 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-01-24 21:56 - 2013-11-05 21:12 - 02551128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-01-24 21:56 - 2013-10-31 01:29 - 00745336 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-01-24 21:55 - 2013-12-11 08:55 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-01-24 21:55 - 2013-12-09 01:34 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-01-24 21:55 - 2013-12-09 01:04 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-01-24 21:55 - 2013-11-27 15:00 - 00663680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-01-24 21:55 - 2013-11-27 13:02 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2014-01-24 21:55 - 2013-11-27 11:54 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-01-24 21:55 - 2013-11-27 11:24 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2014-01-24 21:55 - 2013-11-27 11:08 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-01-24 21:55 - 2013-11-27 10:46 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2014-01-24 21:55 - 2013-11-27 10:41 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-01-24 21:55 - 2013-11-27 10:10 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2014-01-24 21:55 - 2013-11-27 09:56 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2014-01-24 21:55 - 2013-11-27 05:01 - 00385614 _____ C:\WINDOWS\system32\ApnDatabase.xml
2014-01-24 21:55 - 2013-11-25 02:45 - 00142680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-01-24 21:55 - 2013-11-25 00:30 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-01-24 21:55 - 2013-11-25 00:28 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-01-24 21:55 - 2013-11-23 08:13 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\bi.dll
2014-01-24 21:55 - 2013-11-23 08:13 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2014-01-24 21:55 - 2013-11-21 07:58 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceregistration.dll
2014-01-24 21:55 - 2013-11-21 07:26 - 01415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-01-24 21:55 - 2013-11-15 15:25 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2014-01-24 21:55 - 2013-10-31 00:41 - 00552624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-01-23 22:22 - 2014-01-23 23:14 - 578373355 _____ C:\Users\snejdarov\Downloads\Sherlock--serial-2012----S03E03-EN-CZtit---His-Last-Vow.mkv
2014-01-23 19:14 - 2014-01-23 19:16 - 00000000 ____D C:\Users\snejdarov\Downloads\skol
2014-01-23 09:05 - 2014-01-23 10:29 - 1613389036 _____ C:\Users\snejdarov\Downloads\Tancim-abych-zil.avi
2014-01-21 23:02 - 2014-01-21 23:02 - 00056041 _____ C:\Users\snejdarov\Downloads\Oblivion(0000221987).srt
2014-01-21 22:38 - 2014-01-22 00:16 - 1990201957 _____ C:\Users\snejdarov\Downloads\Oblivion.2013.1080p.BluRay.x264.YIFY.mp4
2014-01-21 11:49 - 2014-01-21 12:16 - 732328206 _____ C:\Users\snejdarov\Downloads\Ctihodny-obcan.avi
2014-01-20 18:49 - 2014-01-24 22:05 - 00002700 _____ C:\WINDOWS\setupact.log
2014-01-20 18:49 - 2014-01-20 18:49 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-19 19:21 - 2014-01-24 22:13 - 00002616 _____ C:\WINDOWS\PFRO.log
2014-01-19 17:47 - 2014-01-19 18:31 - 313507084 _____ C:\Users\snejdarov\Downloads\Microsoft-Office-Professional-Plus-2010-CZ-x64--LEGALIZACE.rar
2014-01-19 01:56 - 2014-01-19 13:14 - 00002282 _____ C:\Users\snejdarov\Desktop\Google Chrome.lnk
2014-01-19 01:55 - 2014-01-25 08:10 - 00000976 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-19 01:55 - 2014-01-24 23:05 - 00000980 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-19 01:55 - 2014-01-19 02:00 - 00003952 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-19 01:55 - 2014-01-19 02:00 - 00003716 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-19 01:55 - 2014-01-19 01:55 - 00000000 ____D C:\Users\snejdarov\AppData\Local\Deployment
2014-01-19 01:54 - 2014-01-24 22:31 - 01127382 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-19 01:53 - 2014-01-25 08:29 - 00003994 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{B989291E-9AAC-4215-A576-99A64150BEAF}
2014-01-18 23:23 - 2014-01-18 23:23 - 00050380 _____ C:\Users\snejdarov\Downloads\Gravity(0000229833).srt
2014-01-18 21:21 - 2014-01-18 23:31 - 2960940045 _____ C:\Users\snejdarov\Downloads\Gravity.2013.1080p.WEB-DL.H264-PublicHD.mkv.crdownload
2014-01-15 18:12 - 2013-11-27 16:36 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-01-15 18:12 - 2013-11-27 09:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 18:12 - 2013-11-27 09:40 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 18:12 - 2013-11-27 09:17 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-15 18:12 - 2013-11-27 09:12 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-15 18:11 - 2013-12-09 01:15 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-01-15 18:11 - 2013-11-27 12:41 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-01-15 18:11 - 2013-11-27 11:34 - 00138240 _____ C:\WINDOWS\system32\OEMLicense.dll
2014-01-15 18:11 - 2013-11-27 10:54 - 00103936 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-01-15 18:11 - 2013-11-27 09:45 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-01-15 18:11 - 2013-11-27 09:38 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-01-14 23:25 - 2014-01-14 23:29 - 746039296 _____ C:\Users\snejdarov\Downloads\Ucho-1970.avi
2014-01-14 19:05 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2014-01-14 19:05 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2014-01-14 19:04 - 2014-01-19 01:54 - 00000000 ____D C:\Users\snejdarov\AppData\Roaming\Winamp
2014-01-13 21:00 - 2014-01-13 21:00 - 05748916 _____ C:\Users\snejdarov\Downloads\2.před.rar
2014-01-12 21:16 - 2014-01-12 21:16 - 00004119 _____ C:\Users\snejdarov\Downloads\nhl2412Fix.luac
2014-01-12 15:23 - 2014-01-24 21:50 - 00000000 ____D C:\Users\snejdarov\AppData\Roaming\vlc
2014-01-12 15:22 - 2014-01-12 15:22 - 00004063 _____ C:\Users\snejdarov\Downloads\hockey2.luac
2014-01-12 15:21 - 2014-01-12 15:21 - 00004731 _____ C:\Users\snejdarov\Downloads\nhl_archive.luac
2014-01-12 15:20 - 2014-01-12 15:20 - 00001089 _____ C:\Users\Public\Desktop\VLC media player.lnk
2014-01-12 14:45 - 2014-01-12 14:45 - 00002780 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2014-01-12 14:45 - 2014-01-12 14:45 - 00000000 ____D C:\Program Files\CCleaner
2014-01-12 12:47 - 2014-01-12 12:47 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2014-01-11 11:50 - 2014-01-11 11:50 - 00002039 _____ C:\Users\Public\Desktop\Starnet Player - testovací verze.lnk
2014-01-11 11:50 - 2014-01-11 11:50 - 00000000 ____D C:\Program Files (x86)\StarnetPlayer-Test
2014-01-11 11:41 - 2014-01-11 11:41 - 35194880 _____ C:\Users\snejdarov\Downloads\starnet-tv-player_test.msi
2014-01-09 22:42 - 2014-01-09 22:42 - 09122384 _____ C:\WINDOWS\system32\Drivers\Netwfw02.dat
2014-01-09 22:42 - 2014-01-09 22:42 - 03607520 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\NETwbw02.sys
2014-01-09 12:29 - 2014-01-12 14:47 - 00000000 ____D C:\WINDOWS\Minidump
2014-01-08 09:03 - 2014-01-08 09:03 - 45601280 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2014-01-08 09:03 - 2014-01-08 09:03 - 14153984 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 05804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2014-01-08 09:03 - 2014-01-08 09:03 - 03806936 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2014-01-08 09:03 - 2014-01-08 09:03 - 02825432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 02784984 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 02770976 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 02103040 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 02036992 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2014-01-08 09:03 - 2014-01-08 09:03 - 01922304 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 01022680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 01013504 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 00711425 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2014-01-08 09:03 - 2014-01-08 09:03 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 00624344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 00154840 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2014-01-08 09:02 - 2014-01-08 09:02 - 06217904 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2014-01-08 09:02 - 2014-01-08 09:02 - 01938608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2014-01-08 09:02 - 2014-01-08 09:02 - 00313520 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2014-01-08 09:02 - 2014-01-08 09:02 - 00260272 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2014-01-08 09:02 - 2014-01-08 09:02 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2014-01-08 09:02 - 2014-01-08 09:02 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2014-01-02 20:43 - 2014-01-02 23:44 - 796124664 _____ C:\Users\snejdarov\Downloads\Sissi-1955.avi
2014-01-01 15:05 - 2014-01-01 16:53 - 1008718230 _____ C:\Users\snejdarov\Downloads\intimni-detaily-cz-1996_(www.KinoTip.cz).avi
2013-12-30 19:08 - 2013-12-30 19:49 - 1828716394 _____ C:\Users\snejdarov\Downloads\Django.Unchained.2012.DVDSCR.XVID-NYDIC.avi
2013-12-30 19:08 - 2013-12-30 19:08 - 00131499 _____ C:\Users\snejdarov\Downloads\Django.Unchained.2012.DVDSCR.XVID-NYDIC.srt
2013-12-28 20:53 - 2013-12-28 20:54 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-12-27 23:34 - 2014-01-12 21:51 - 00000000 ____D C:\Users\snejdarov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-12-27 23:34 - 2013-12-27 23:34 - 00000000 ____D C:\Users\snejdarov\AppData\Roaming\WinRAR
2013-12-26 14:05 - 2013-12-26 14:05 - 00000000 ____D C:\Users\snejdarov\AppData\Roaming\MPC-HC
2013-12-26 13:01 - 2014-01-25 08:10 - 00000000 __RDO C:\Users\snejdarov\SkyDrive
2013-12-26 12:59 - 2013-12-26 12:59 - 00001429 _____ C:\Users\snejdarov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-26 12:58 - 2013-12-26 12:58 - 00000020 ___SH C:\Users\snejdarov\ntuser.ini
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Public\Documents\Obrázky
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Public\Documents\Hudba
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Public\Documents\Filmy
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Šablony
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Poslední
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Okolní síť
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Dokumenty
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Data aplikací
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\ProgramData\Šablony
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\ProgramData\Plocha
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\ProgramData\Nabídka Start
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\ProgramData\Dokumenty
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\ProgramData\Data aplikací
2013-12-26 12:28 - 2013-12-26 12:28 - 00022924 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-12-26 12:17 - 2013-12-26 12:17 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-12-26 12:16 - 2014-01-24 22:11 - 00000000 ____D C:\Users\snejdarov
2013-12-26 12:16 - 2013-12-26 12:28 - 00020958 _____ C:\WINDOWS\diagwrn.xml
2013-12-26 12:16 - 2013-12-26 12:28 - 00020958 _____ C:\WINDOWS\diagerr.xml
2013-12-26 12:16 - 2013-12-26 12:17 - 00000000 ___RD C:\Users\snejdarov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-26 12:16 - 2013-12-26 12:17 - 00000000 ___RD C:\Users\snejdarov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Šablony
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Soubory cookie
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Poslední
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Okolní tiskárny
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Okolní síť
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Nabídka Start
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Dokumenty
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Documents\Obrázky
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Documents\Hudba
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Documents\Filmy
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Data aplikací
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\AppData\Local\Data aplikací
2013-12-26 12:16 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\snejdarov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-26 12:16 - 2013-08-22 16:36 - 00000000 ____D C:\Users\snejdarov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-26 12:10 - 2014-01-11 09:07 - 00000000 ____D C:\Program Files (x86)\Intel
2013-12-26 12:10 - 2013-12-26 12:18 - 00000000 ____D C:\Program Files\Intel
2013-12-26 12:10 - 2013-12-26 12:10 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2013-12-26 12:10 - 2013-12-26 12:10 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2013-12-26 12:10 - 2013-12-26 12:10 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2013-12-26 12:10 - 2013-12-26 12:10 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2013-12-26 12:10 - 2013-12-26 12:10 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_btmhsf_01011.Wdf
2013-12-26 12:10 - 2013-12-26 12:10 - 00000000 ____D C:\Program Files\Synaptics
2013-12-26 12:10 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2013-12-26 12:10 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2013-12-26 12:09 - 2014-01-24 22:04 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2013-12-26 12:09 - 2013-12-26 12:09 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_SensorsAlsDriver_01_11_00.Wdf
2013-12-26 12:09 - 2013-12-26 12:09 - 00000000 ____D C:\Program Files\Realtek
2013-12-26 12:07 - 2014-01-12 14:47 - 00000000 ___DC C:\WINDOWS\Panther
2013-12-26 12:07 - 2013-12-26 12:07 - 00000000 __SHD C:\Recovery
2013-12-26 12:05 - 2013-12-26 12:05 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-12-26 12:05 - 2013-12-26 12:05 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-12-26 12:05 - 2013-12-26 12:05 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2013-12-26 12:05 - 2013-12-26 12:05 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-12-26 12:05 - 2013-12-26 12:05 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-12-26 12:04 - 2013-12-26 12:04 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2013-12-26 12:04 - 2013-12-26 12:04 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-12-26 12:04 - 2013-12-26 12:04 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-12-26 12:04 - 2013-12-26 12:04 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-12-26 12:04 - 2013-12-26 12:04 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-12-26 12:04 - 2013-12-26 12:04 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2013-12-26 12:04 - 2013-12-26 12:04 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-12-26 12:04 - 2013-12-26 12:04 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2013-12-26 12:04 - 2013-12-26 12:04 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-12-26 12:04 - 2013-12-26 12:04 - 00372568 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-12-26 12:04 - 2013-12-26 12:04 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-12-26 12:04 - 2013-12-26 12:04 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2013-12-26 12:04 - 2013-12-26 12:04 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-12-26 12:04 - 2013-12-26 12:04 - 00039768 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-12-26 12:04 - 2013-12-26 12:04 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2013-12-26 12:02 - 2013-12-26 12:02 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-12-26 11:57 - 2013-12-26 11:57 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2013-12-26 11:57 - 2013-12-26 11:57 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-12-26 11:57 - 2013-12-26 11:57 - 00000000 ____D C:\Program Files\MSBuild
2013-12-26 11:57 - 2013-12-26 11:57 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-12-26 11:57 - 2013-12-26 11:57 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-12-26 11:57 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2013-12-26 11:57 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-26 11:57 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2013-12-26 11:57 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2013-12-26 11:57 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-26 11:57 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe

==================== One Month Modified Files and Folders =======

2014-01-25 08:42 - 2014-01-25 08:42 - 00015014 _____ C:\Users\snejdarov\Desktop\FRST.txt
2014-01-25 08:41 - 2014-01-25 08:41 - 00112640 _____ (forum.viry.cz) C:\Users\snejdarov\Desktop\FRSTLauncher.exe
2014-01-25 08:40 - 2014-01-25 08:40 - 00000000 ____D C:\FRST
2014-01-25 08:35 - 2014-01-25 08:35 - 00112640 _____ (forum.viry.cz) C:\Users\snejdarov\Downloads\Nepotvrzeno 718644.crdownload
2014-01-25 08:35 - 2014-01-25 08:34 - 02077696 _____ (Farbar) C:\Users\snejdarov\Desktop\FRST64.exe
2014-01-25 08:29 - 2014-01-19 01:53 - 00003994 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{B989291E-9AAC-4215-A576-99A64150BEAF}
2014-01-25 08:15 - 2013-12-19 17:57 - 00003592 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-159075975-713097771-432203685-1001
2014-01-25 08:10 - 2014-01-19 01:55 - 00000976 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-25 08:10 - 2013-12-26 13:01 - 00000000 __RDO C:\Users\snejdarov\SkyDrive
2014-01-25 08:10 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-24 23:05 - 2014-01-19 01:55 - 00000980 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-24 22:31 - 2014-01-19 01:54 - 01127382 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-24 22:19 - 2013-11-14 13:40 - 01749406 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-24 22:19 - 2013-11-14 13:24 - 00740962 _____ C:\WINDOWS\system32\perfh005.dat
2014-01-24 22:19 - 2013-11-14 13:24 - 00152146 _____ C:\WINDOWS\system32\perfc005.dat
2014-01-24 22:15 - 2013-12-19 17:21 - 00000000 ___RD C:\Users\snejdarov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-24 22:15 - 2013-12-19 17:21 - 00000000 ___RD C:\Users\snejdarov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-24 22:14 - 2014-01-24 22:14 - 00094656 _____ (CACE Technologies) C:\WINDOWS\system32\WPRO_41_2001woem.tmp
2014-01-24 22:14 - 2013-08-22 03:59 - 00034752 _____ C:\WINDOWS\system32\Drivers\WPRO_41_2001.sys
2014-01-24 22:13 - 2014-01-19 19:21 - 00002616 _____ C:\WINDOWS\PFRO.log
2014-01-24 22:13 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-24 22:13 - 2013-08-22 15:44 - 00382744 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-24 22:12 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2014-01-24 22:12 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2014-01-24 22:12 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\FileManager
2014-01-24 22:12 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Camera
2014-01-24 22:12 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2014-01-24 22:12 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Dism
2014-01-24 22:12 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-24 22:12 - 2013-08-22 04:13 - 00002560 _____ C:\WINDOWS\system32\VfService.trf
2014-01-24 22:11 - 2013-12-26 12:16 - 00000000 ____D C:\Users\snejdarov
2014-01-24 22:05 - 2014-01-20 18:49 - 00002700 _____ C:\WINDOWS\setupact.log
2014-01-24 22:04 - 2013-12-26 12:09 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2014-01-24 21:50 - 2014-01-12 15:23 - 00000000 ____D C:\Users\snejdarov\AppData\Roaming\vlc
2014-01-24 12:47 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2014-01-23 23:14 - 2014-01-23 22:22 - 578373355 _____ C:\Users\snejdarov\Downloads\Sherlock--serial-2012----S03E03-EN-CZtit---His-Last-Vow.mkv
2014-01-23 19:16 - 2014-01-23 19:14 - 00000000 ____D C:\Users\snejdarov\Downloads\skol
2014-01-23 10:29 - 2014-01-23 09:05 - 1613389036 _____ C:\Users\snejdarov\Downloads\Tancim-abych-zil.avi
2014-01-23 09:15 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2014-01-22 00:16 - 2014-01-21 22:38 - 1990201957 _____ C:\Users\snejdarov\Downloads\Oblivion.2013.1080p.BluRay.x264.YIFY.mp4
2014-01-21 23:02 - 2014-01-21 23:02 - 00056041 _____ C:\Users\snejdarov\Downloads\Oblivion(0000221987).srt
2014-01-21 12:16 - 2014-01-21 11:49 - 732328206 _____ C:\Users\snejdarov\Downloads\Ctihodny-obcan.avi
2014-01-20 18:49 - 2014-01-20 18:49 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-19 18:31 - 2014-01-19 17:47 - 313507084 _____ C:\Users\snejdarov\Downloads\Microsoft-Office-Professional-Plus-2010-CZ-x64--LEGALIZACE.rar
2014-01-19 13:14 - 2014-01-19 01:56 - 00002282 _____ C:\Users\snejdarov\Desktop\Google Chrome.lnk
2014-01-19 10:26 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2014-01-19 02:00 - 2014-01-19 01:55 - 00003952 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-19 02:00 - 2014-01-19 01:55 - 00003716 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-19 01:59 - 2013-12-19 17:18 - 00000000 ____D C:\Users\snejdarov\AppData\Local\Packages
2014-01-19 01:56 - 2013-12-19 17:41 - 00000000 ____D C:\Users\snejdarov\AppData\Local\Google
2014-01-19 01:55 - 2014-01-19 01:55 - 00000000 ____D C:\Users\snejdarov\AppData\Local\Deployment
2014-01-19 01:55 - 2013-12-19 17:42 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-19 01:54 - 2014-01-14 19:04 - 00000000 ____D C:\Users\snejdarov\AppData\Roaming\Winamp
2014-01-18 23:31 - 2014-01-18 21:21 - 2960940045 _____ C:\Users\snejdarov\Downloads\Gravity.2013.1080p.WEB-DL.H264-PublicHD.mkv.crdownload
2014-01-18 23:23 - 2014-01-18 23:23 - 00050380 _____ C:\Users\snejdarov\Downloads\Gravity(0000229833).srt
2014-01-18 10:03 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-15 19:38 - 2013-12-19 18:20 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-15 19:36 - 2013-12-19 18:20 - 86054176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-14 23:29 - 2014-01-14 23:25 - 746039296 _____ C:\Users\snejdarov\Downloads\Ucho-1970.avi
2014-01-14 19:00 - 2013-12-19 17:25 - 00000000 ____D C:\Programy
2014-01-13 21:00 - 2014-01-13 21:00 - 05748916 _____ C:\Users\snejdarov\Downloads\2.před.rar
2014-01-12 21:51 - 2013-12-27 23:34 - 00000000 ____D C:\Users\snejdarov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-12 21:16 - 2014-01-12 21:16 - 00004119 _____ C:\Users\snejdarov\Downloads\nhl2412Fix.luac
2014-01-12 15:22 - 2014-01-12 15:22 - 00004063 _____ C:\Users\snejdarov\Downloads\hockey2.luac
2014-01-12 15:21 - 2014-01-12 15:21 - 00004731 _____ C:\Users\snejdarov\Downloads\nhl_archive.luac
2014-01-12 15:20 - 2014-01-12 15:20 - 00001089 _____ C:\Users\Public\Desktop\VLC media player.lnk
2014-01-12 14:47 - 2014-01-09 12:29 - 00000000 ____D C:\WINDOWS\Minidump
2014-01-12 14:47 - 2013-12-26 12:07 - 00000000 ___DC C:\WINDOWS\Panther
2014-01-12 14:47 - 2013-12-24 19:27 - 00000000 ____D C:\Users\snejdarov\AppData\Local\CrashDumps
2014-01-12 14:45 - 2014-01-12 14:45 - 00002780 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2014-01-12 14:45 - 2014-01-12 14:45 - 00000000 ____D C:\Program Files\CCleaner
2014-01-12 12:47 - 2014-01-12 12:47 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2014-01-11 11:50 - 2014-01-11 11:50 - 00002039 _____ C:\Users\Public\Desktop\Starnet Player - testovací verze.lnk
2014-01-11 11:50 - 2014-01-11 11:50 - 00000000 ____D C:\Program Files (x86)\StarnetPlayer-Test
2014-01-11 11:41 - 2014-01-11 11:41 - 35194880 _____ C:\Users\snejdarov\Downloads\starnet-tv-player_test.msi
2014-01-11 09:07 - 2013-12-26 12:10 - 00000000 ____D C:\Program Files (x86)\Intel
2014-01-09 22:42 - 2014-01-09 22:42 - 09122384 _____ C:\WINDOWS\system32\Drivers\Netwfw02.dat
2014-01-09 22:42 - 2014-01-09 22:42 - 03607520 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\NETwbw02.sys
2014-01-08 09:03 - 2014-01-08 09:03 - 45601280 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2014-01-08 09:03 - 2014-01-08 09:03 - 14153984 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 05804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2014-01-08 09:03 - 2014-01-08 09:03 - 03806936 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2014-01-08 09:03 - 2014-01-08 09:03 - 02825432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 02784984 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 02770976 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 02103040 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 02036992 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2014-01-08 09:03 - 2014-01-08 09:03 - 01922304 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 01022680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 01013504 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 00711425 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2014-01-08 09:03 - 2014-01-08 09:03 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 00624344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2014-01-08 09:03 - 2014-01-08 09:03 - 00154840 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2014-01-08 09:02 - 2014-01-08 09:02 - 06217904 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2014-01-08 09:02 - 2014-01-08 09:02 - 01938608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2014-01-08 09:02 - 2014-01-08 09:02 - 00313520 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2014-01-08 09:02 - 2014-01-08 09:02 - 00260272 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2014-01-08 09:02 - 2014-01-08 09:02 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2014-01-08 09:02 - 2014-01-08 09:02 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2014-01-06 23:31 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-01-06 23:31 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-02 23:44 - 2014-01-02 20:43 - 796124664 _____ C:\Users\snejdarov\Downloads\Sissi-1955.avi
2014-01-01 16:53 - 2014-01-01 15:05 - 1008718230 _____ C:\Users\snejdarov\Downloads\intimni-detaily-cz-1996_(www.KinoTip.cz).avi
2013-12-30 19:49 - 2013-12-30 19:08 - 1828716394 _____ C:\Users\snejdarov\Downloads\Django.Unchained.2012.DVDSCR.XVID-NYDIC.avi
2013-12-30 19:08 - 2013-12-30 19:08 - 00131499 _____ C:\Users\snejdarov\Downloads\Django.Unchained.2012.DVDSCR.XVID-NYDIC.srt
2013-12-29 10:44 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2013-12-28 20:54 - 2013-12-28 20:53 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-12-28 20:53 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\restore
2013-12-27 23:34 - 2013-12-27 23:34 - 00000000 ____D C:\Users\snejdarov\AppData\Roaming\WinRAR
2013-12-26 14:05 - 2013-12-26 14:05 - 00000000 ____D C:\Users\snejdarov\AppData\Roaming\MPC-HC
2013-12-26 12:59 - 2013-12-26 12:59 - 00001429 _____ C:\Users\snejdarov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-26 12:59 - 2013-12-19 17:21 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2013-12-26 12:58 - 2013-12-26 12:58 - 00000020 ___SH C:\Users\snejdarov\ntuser.ini
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Public\Documents\Obrázky
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Public\Documents\Hudba
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Public\Documents\Filmy
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Šablony
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Poslední
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Okolní síť
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Dokumenty
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\Data aplikací
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\ProgramData\Šablony
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\ProgramData\Plocha
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\ProgramData\Nabídka Start
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\ProgramData\Dokumenty
2013-12-26 12:29 - 2013-12-26 12:29 - 00000000 _SHDL C:\ProgramData\Data aplikací
2013-12-26 12:29 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2013-12-26 12:29 - 2013-08-22 14:36 - 00000000 __RHD C:\Users\Default
2013-12-26 12:28 - 2013-12-26 12:28 - 00022924 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-12-26 12:28 - 2013-12-26 12:16 - 00020958 _____ C:\WINDOWS\diagwrn.xml
2013-12-26 12:28 - 2013-12-26 12:16 - 00020958 _____ C:\WINDOWS\diagerr.xml
2013-12-26 12:28 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration
2013-12-26 12:24 - 2013-08-22 03:37 - 01771058 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2013-12-26 12:23 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2013-12-26 12:23 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries
2013-12-26 12:19 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2013-12-26 12:19 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2013-12-26 12:19 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2013-12-26 12:18 - 2013-12-26 12:10 - 00000000 ____D C:\Program Files\Intel
2013-12-26 12:18 - 2013-11-14 13:26 - 00000000 ____D C:\Program Files\Windows Journal
2013-12-26 12:18 - 2013-11-14 13:23 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2013-12-26 12:18 - 2013-11-14 13:23 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2013-12-26 12:18 - 2013-11-14 13:23 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2013-12-26 12:18 - 2013-11-14 13:23 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2013-12-26 12:18 - 2013-11-14 13:23 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2013-12-26 12:18 - 2013-11-14 13:23 - 00000000 ____D C:\WINDOWS\system32\winrm
2013-12-26 12:18 - 2013-11-14 13:23 - 00000000 ____D C:\WINDOWS\system32\WCN
2013-12-26 12:18 - 2013-11-14 13:23 - 00000000 ____D C:\WINDOWS\system32\slmgr
2013-12-26 12:18 - 2013-11-14 13:23 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2013-12-26 12:18 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2013-12-26 12:18 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2013-12-26 12:18 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2013-12-26 12:18 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2013-12-26 12:18 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2013-12-26 12:18 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2013-12-26 12:18 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2013-12-26 12:18 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2013-12-26 12:18 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool
2013-12-26 12:18 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2013-12-26 12:18 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME
2013-12-26 12:18 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME
2013-12-26 12:18 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2013-12-26 12:18 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-12-26 12:18 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2013-12-26 12:18 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2013-12-26 12:18 - 2013-03-25 22:03 - 00000000 ____D C:\ProgramData\PRICache
2013-12-26 12:17 - 2013-12-26 12:17 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-12-26 12:17 - 2013-12-26 12:16 - 00000000 ___RD C:\Users\snejdarov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-26 12:17 - 2013-12-26 12:16 - 00000000 ___RD C:\Users\snejdarov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-26 12:17 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Šablony
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Soubory cookie
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Poslední
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Okolní tiskárny
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Okolní síť
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Nabídka Start
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Dokumenty
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Documents\Obrázky
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Documents\Hudba
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Documents\Filmy
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\Data aplikací
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2013-12-26 12:16 - 2013-12-26 12:16 - 00000000 _SHDL C:\Users\snejdarov\AppData\Local\Data aplikací
2013-12-26 12:10 - 2013-12-26 12:10 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2013-12-26 12:10 - 2013-12-26 12:10 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2013-12-26 12:10 - 2013-12-26 12:10 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2013-12-26 12:10 - 2013-12-26 12:10 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2013-12-26 12:10 - 2013-12-26 12:10 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_btmhsf_01011.Wdf
2013-12-26 12:10 - 2013-12-26 12:10 - 00000000 ____D C:\Program Files\Synaptics
2013-12-26 12:09 - 2013-12-26 12:09 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_SensorsAlsDriver_01_11_00.Wdf
2013-12-26 12:09 - 2013-12-26 12:09 - 00000000 ____D C:\Program Files\Realtek
2013-12-26 12:07 - 2013-12-26 12:07 - 00000000 __SHD C:\Recovery
2013-12-26 12:06 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2013-12-26 12:05 - 2013-12-26 12:05 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-12-26 12:05 - 2013-12-26 12:05 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-12-26 12:05 - 2013-12-26 12:05 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2013-12-26 12:05 - 2013-12-26 12:05 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-12-26 12:05 - 2013-12-26 12:05 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2013-12-26 12:05 - 2013-12-26 12:05 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-12-26 12:04 - 2013-12-26 12:04 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2013-12-26 12:04 - 2013-12-26 12:04 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-12-26 12:04 - 2013-12-26 12:04 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-12-26 12:04 - 2013-12-26 12:04 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-12-26 12:04 - 2013-12-26 12:04 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-12-26 12:04 - 2013-12-26 12:04 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2013-12-26 12:04 - 2013-12-26 12:04 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-12-26 12:04 - 2013-12-26 12:04 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2013-12-26 12:04 - 2013-12-26 12:04 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-12-26 12:04 - 2013-12-26 12:04 - 00372568 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-12-26 12:04 - 2013-12-26 12:04 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-12-26 12:04 - 2013-12-26 12:04 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2013-12-26 12:04 - 2013-12-26 12:04 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-12-26 12:04 - 2013-12-26 12:04 - 00039768 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-12-26 12:04 - 2013-12-26 12:04 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2013-12-26 12:04 - 2013-12-26 12:04 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2013-12-26 12:02 - 2013-12-26 12:02 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-12-26 11:57 - 2013-12-26 11:57 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2013-12-26 11:57 - 2013-12-26 11:57 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-12-26 11:57 - 2013-12-26 11:57 - 00000000 ____D C:\Program Files\MSBuild
2013-12-26 11:57 - 2013-12-26 11:57 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-12-26 11:57 - 2013-12-26 11:57 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-12-26 11:22 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-17 20:56

==================== End Of Log ============================

http://leteckaposta.cz/204830282

Otevřte poznámkový blok a zkopírujte do něj:

Start
SearchScopes: HKLM - DefaultScope {11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKLM - {11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKLM-x32 - DefaultScope {11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKLM-x32 - {11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKCU - DefaultScope {11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} URL =
SearchScopes: HKCU - {11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} URL =
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\Users\snejdarov\Downloads\nhl2412Fix.luac
End

Uložte na plochu jako fixlist.txt. Pak znovu spusťte FRST a klikněte na >Fix<. Zkopírujte sem pak log, který se na závěr vytvoří.

Tak, snad jsem to zvládl dobbře.. log:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 24-01-2014
Ran by snejdarov at 2014-01-25 13:05:35 Run:1
Running from C:\Users\snejdarov\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
SearchScopes: HKLM - DefaultScope {11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKLM - {11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKLM-x32 - DefaultScope {11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKLM-x32 - {11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKCU - DefaultScope {11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} URL =
SearchScopes: HKCU - {11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} URL =
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\Users\snejdarov\Downloads\nhl2412Fix.luac
End
*****************

HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} => Key deleted successfully.
HKCR\CLSID\{11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} => Key deleted successfully.
HKCR\CLSID\{11182EF9-8BB3-4CE3-89F6-F35C4CD9D2EA} => Key not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Users\snejdarov\Downloads\nhl2412Fix.luac => Moved successfully.

==== End of Fixlog ====

Zvládl jse to OK. Nastala nějaká změna?

Zatím to vypadá slibně = bez problémů. Uvidím, zda to tak vydrží delší dobu, kdyžtak dám vědět, mockrát děkuji za pomoc!

OK, zatím není zač!

Tak bohužel dnes jsem zaregistroval opět zásek, bylo to při puštěné hudbě z ytb + několika dalších procesech. Jen tak pro zajímavost jsem si zkusil zobrazit správce úloh a všiml si že u sloupce HDD bylo nadepsáno 100%, což mi přijde přestřelené.. Poté jsem notebook restartoval a vše jede zase jak po másle..díky za pomoc.

Zkuste ještě toto:


Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*loader* /s

a klikněte na >Prohledat<.

provedeno..log OTL:

OTL logfile created on: 30. 1. 2014 18:10:06 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\snejdarov\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16476)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy

3,73 Gb Total Physical Memory | 1,62 Gb Available Physical Memory | 43,36% Memory free
7,48 Gb Paging File | 5,07 Gb Available in Paging File | 67,83% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 423,01 Gb Total Space | 371,18 Gb Free Space | 87,75% Space Free | Partition Type: NTFS
Drive D: | 25,00 Gb Total Space | 20,96 Gb Free Space | 83,85% Space Free | Partition Type: NTFS

Computer Name: SNEJDAROVI | User Name: snejdarov | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014/01/30 18:08:13 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\snejdarov\Desktop\OTL.exe
PRC - [2014/01/23 06:57:02 | 000,866,584 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2013/11/14 13:46:11 | 000,518,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WWAHost.exe
PRC - [2013/10/19 06:19:35 | 000,037,344 | ---- | M] (Panda Security, S.L.) -- C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAService.exe
PRC - [2013/10/19 06:19:34 | 000,032,736 | ---- | M] (Panda Security, S.L.) -- C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAMain.exe
PRC - [2013/10/03 07:13:48 | 000,140,768 | ---- | M] (Panda Security, S.L.) -- C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe
PRC - [2013/06/24 11:38:48 | 001,132,920 | ---- | M] (Motorola Solutions, Inc.) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
PRC - [2013/05/09 13:23:40 | 000,368,600 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2013/05/09 13:23:40 | 000,131,544 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
PRC - [2013/05/09 13:23:38 | 000,169,432 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
PRC - [2013/04/23 23:50:46 | 001,153,400 | ---- | M] (Motorola Solutions, Inc.) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
PRC - [2013/04/15 23:45:00 | 000,247,784 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
PRC - [2013/03/22 16:38:32 | 000,015,344 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2013/02/28 00:26:48 | 000,040,960 | ---- | M] () -- C:\Windows\SysWOW64\UMonit64.exe
PRC - [2012/10/31 04:11:32 | 000,168,464 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe


========== Modules (No Company Name) ==========

MOD - [2014/01/23 06:57:00 | 000,399,640 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\ppgooglenaclpluginchrome.dll
MOD - [2014/01/23 06:56:59 | 013,615,896 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\PepperFlash\pepflashplayer.dll
MOD - [2014/01/23 06:56:56 | 004,055,320 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\pdf.dll
MOD - [2014/01/23 06:56:02 | 000,715,544 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\libglesv2.dll
MOD - [2014/01/23 06:56:01 | 000,100,120 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\libegl.dll
MOD - [2014/01/23 06:55:58 | 001,634,584 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\ffmpegsumo.dll
MOD - [2013/02/28 00:26:48 | 000,040,960 | ---- | M] () -- C:\Windows\SysWOW64\UMonit64.exe


========== Services (SafeList) ==========

SRV:64bit: - [2013/12/26 12:04:01 | 001,302,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:64bit: - [2013/11/27 16:36:30 | 003,395,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2013/11/27 10:17:40 | 000,263,168 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2013/11/23 05:50:00 | 000,282,112 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2013/11/14 13:46:10 | 001,584,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:64bit: - [2013/11/14 13:46:10 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2013/11/14 13:46:09 | 000,533,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:64bit: - [2013/11/14 13:39:20 | 000,365,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2013/11/14 13:39:19 | 001,555,456 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2013/11/14 13:39:19 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:64bit: - [2013/08/28 16:24:04 | 003,378,416 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:64bit: - [2013/08/28 16:23:48 | 000,273,136 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2013/08/28 16:23:40 | 000,626,416 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2013/08/28 16:23:20 | 000,149,744 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2013/08/22 13:32:01 | 000,346,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:64bit: - [2013/08/22 13:32:00 | 000,023,840 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2013/08/22 13:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2013/08/22 12:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:64bit: - [2013/08/22 12:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2013/08/22 12:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2013/08/22 12:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2013/08/22 12:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2013/08/22 11:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:64bit: - [2013/08/22 11:04:53 | 000,716,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2013/08/22 11:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:64bit: - [2013/08/22 10:59:26 | 000,832,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2013/08/22 10:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:64bit: - [2013/08/22 10:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2013/08/22 10:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/08/22 10:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013/08/22 10:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:64bit: - [2013/08/22 10:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2013/08/22 10:40:14 | 000,398,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2013/08/22 10:39:33 | 000,198,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2013/08/22 10:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/08/22 10:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2013/05/28 23:37:36 | 000,101,536 | ---- | M] (Intel) [Auto | Running] -- C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe -- (BrcmSetSecurity)
SRV:64bit: - [2013/04/15 23:45:08 | 000,182,760 | ---- | M] () [Auto | Running] -- C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe -- (ISCTAgent)
SRV:64bit: - [2013/03/22 16:38:32 | 000,015,344 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV:64bit: - [2013/02/13 20:47:04 | 000,820,184 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
SRV:64bit: - [2013/02/13 20:46:48 | 000,731,648 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV - [2013/12/21 00:02:54 | 000,279,000 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2013/11/14 13:39:18 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2013/10/19 06:19:35 | 000,037,344 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAService.exe -- (PSUAService)
SRV - [2013/10/03 07:13:48 | 000,140,768 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe -- (NanoServiceMain)
SRV - [2013/08/22 13:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2013/08/22 04:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013/08/22 04:13:12 | 000,068,368 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe -- (VeriFaceSrv)
SRV - [2013/08/22 03:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2013/06/26 19:49:12 | 000,156,616 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe -- (Intel(R)
SRV - [2013/06/24 11:38:48 | 001,132,920 | ---- | M] (Motorola Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2013/05/09 13:23:40 | 000,368,600 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2013/05/09 13:23:40 | 000,131,544 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe -- (Intel(R)
SRV - [2013/05/09 13:23:38 | 000,169,432 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2013/04/23 23:50:46 | 001,153,400 | ---- | M] (Motorola Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2014/01/30 17:37:58 | 000,034,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WPRO_41_2001.sys -- (WPRO_41_2001)
DRV:64bit: - [2014/01/09 22:42:16 | 003,607,520 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETwbw02.sys -- (NETwNb64)
DRV:64bit: - [2013/12/26 12:04:01 | 000,372,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2013/12/26 12:04:01 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2013/12/26 12:04:01 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:64bit: - [2013/12/26 12:04:01 | 000,086,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:64bit: - [2013/12/26 12:04:01 | 000,039,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:64bit: - [2013/12/21 00:02:44 | 004,216,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2013/12/19 23:18:36 | 000,099,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
DRV:64bit: - [2013/12/15 00:34:54 | 000,039,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:64bit: - [2013/12/15 00:34:54 | 000,027,032 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:64bit: - [2013/11/14 13:46:08 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:64bit: - [2013/11/14 13:39:18 | 000,467,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2013/11/14 13:39:18 | 000,236,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2013/11/14 13:39:18 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2013/11/14 13:35:14 | 000,136,536 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2013/11/14 13:26:21 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2013/11/14 13:26:16 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2013/11/14 13:26:16 | 000,009,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\acpials.sys -- (acpials)
DRV:64bit: - [2013/10/17 20:31:24 | 000,169,192 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\PSINAflt.sys -- (PSINAflt)
DRV:64bit: - [2013/10/11 10:46:48 | 000,206,056 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\PSINKNC.sys -- (PSINKNC)
DRV:64bit: - [2013/10/11 10:46:48 | 000,137,960 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\PSINProt.sys -- (PSINProt)
DRV:64bit: - [2013/10/11 10:46:22 | 000,124,648 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\PSINProc.sys -- (PSINProc)
DRV:64bit: - [2013/10/11 10:46:22 | 000,105,704 | ---- | M] (Panda Security, S.L.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\PSINReg.sys -- (PSINReg)
DRV:64bit: - [2013/10/11 10:46:21 | 000,122,600 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\PSINFile.sys -- (PSINFile)
DRV:64bit: - [2013/10/08 22:52:34 | 003,648,480 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NETwew02.sys -- (NETwNe64)
DRV:64bit: - [2013/08/22 14:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:64bit: - [2013/08/22 14:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2013/08/22 13:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:64bit: - [2013/08/22 13:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2013/08/22 13:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/08/22 13:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2013/08/22 13:43:48 | 000,146,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2013/08/22 13:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2013/08/22 13:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2013/08/22 13:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2013/08/22 13:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2013/08/22 13:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2013/08/22 13:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:64bit: - [2013/08/22 13:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:64bit: - [2013/08/22 13:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2013/08/22 13:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2013/08/22 13:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:64bit: - [2013/08/22 13:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2013/08/22 13:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2013/08/22 13:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2013/08/22 13:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2013/08/22 13:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2013/08/22 13:43:33 | 000,189,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2013/08/22 13:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2013/08/22 13:43:32 | 000,078,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2013/08/22 13:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2013/08/22 13:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/08/22 13:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2013/08/22 13:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2013/08/22 13:41:08 | 000,054,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2013/08/22 13:39:44 | 000,377,696 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2013/08/22 13:39:15 | 000,924,512 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refs.sys -- (ReFS)
DRV:64bit: - [2013/08/22 13:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:64bit: - [2013/08/22 13:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:64bit: - [2013/08/22 13:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2013/08/22 13:34:22 | 000,265,056 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2013/08/22 13:34:22 | 000,124,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:64bit: - [2013/08/22 13:31:28 | 000,034,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2013/08/22 12:39:54 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:64bit: - [2013/08/22 12:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2013/08/22 12:39:28 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2013/08/22 12:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2013/08/22 12:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2013/08/22 12:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2013/08/22 12:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2013/08/22 12:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/08/22 12:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2013/08/22 12:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2013/08/22 12:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2013/08/22 12:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2013/08/22 12:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2013/08/22 12:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2013/08/22 12:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2013/08/22 12:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2013/08/22 12:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2013/08/22 12:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2013/08/22 12:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:64bit: - [2013/08/22 12:36:37 | 000,224,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:64bit: - [2013/08/22 12:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:64bit: - [2013/08/22 12:36:17 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2013/08/22 12:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2013/08/22 12:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2013/08/22 09:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2013/08/22 04:18:05 | 000,035,600 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV:64bit: - [2013/08/22 04:17:58 | 000,039,008 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\LhdX64.sys -- (LHDmgr)
DRV:64bit: - [2013/08/13 00:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:64bit: - [2013/08/10 01:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:64bit: - [2013/07/30 19:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:64bit: - [2013/07/25 20:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:64bit: - [2013/06/20 22:29:10 | 000,532,720 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2013/06/20 22:29:08 | 000,033,008 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Smb_driver_Intel.sys -- (SmbDrvI)
DRV:64bit: - [2013/06/03 19:58:16 | 000,115,656 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ibtusb.sys -- (ibtusb)
DRV:64bit: - [2013/05/29 04:55:24 | 000,246,504 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnsstrm.sys -- (NNSSTRM)
DRV:64bit: - [2013/05/29 04:55:24 | 000,106,216 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnstlsc.sys -- (NNSTLSC)
DRV:64bit: - [2013/05/29 04:55:23 | 000,118,504 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnsprv.sys -- (NNSPRV)
DRV:64bit: - [2013/05/29 04:55:23 | 000,114,920 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnssmtp.sys -- (NNSSMTP)
DRV:64bit: - [2013/05/29 04:55:22 | 000,305,896 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnsprot.sys -- (NNSPROT)
DRV:64bit: - [2013/05/29 04:55:22 | 000,119,016 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnspop3.sys -- (NNSPOP3)
DRV:64bit: - [2013/05/29 04:55:22 | 000,069,864 | ---- | M] (Panda Security, S.L.) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\nnspihsw.sys -- (NNSPIHSW)
DRV:64bit: - [2013/05/29 04:55:21 | 000,114,920 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnsids.sys -- (NNSIDS)
DRV:64bit: - [2013/05/29 04:55:21 | 000,109,288 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnshttps.sys -- (NNSHTTPS)
DRV:64bit: - [2013/05/29 04:55:21 | 000,095,464 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnspicc.sys -- (NNSPICC)
DRV:64bit: - [2013/05/29 04:55:20 | 000,122,088 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnshttp.sys -- (NNSHTTP)
DRV:64bit: - [2013/05/29 04:55:20 | 000,091,368 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nnsalpc.sys -- (NNSALPC)
DRV:64bit: - [2013/05/28 23:37:28 | 000,206,744 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usb3Hub.sys -- (usb3Hub)
DRV:64bit: - [2013/05/18 07:53:52 | 008,243,528 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtsuvc.sys -- (rtsuvc)
DRV:64bit: - [2013/05/17 22:25:18 | 000,442,368 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2013/04/29 08:17:30 | 000,058,808 | ---- | M] (Panda Security, S.L.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\PSKMAD.sys -- (PSKMAD)
DRV:64bit: - [2013/04/23 23:50:22 | 001,385,272 | ---- | M] (Motorola Solutions, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmhsf.sys -- (btmhsf)
DRV:64bit: - [2013/04/15 23:38:30 | 000,046,568 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ISCTD64.sys -- (ISCT)
DRV:64bit: - [2013/04/15 23:38:30 | 000,021,048 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\imsevent.sys -- (imsevent)
DRV:64bit: - [2013/04/15 23:38:30 | 000,021,048 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ikbevent.sys -- (ikbevent)
DRV:64bit: - [2013/04/10 20:09:50 | 000,801,864 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt630x64.sys -- (RTL8168)
DRV:64bit: - [2013/03/22 16:38:18 | 000,678,384 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:64bit: - [2012/06/14 01:10:32 | 000,102,376 | ---- | M] ("CyberLink) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wsvd.sys -- (wsvd)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-159075975-713097771-432203685-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
IE - HKU\S-1-5-21-159075975-713097771-432203685-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com [binary data]
IE - HKU\S-1-5-21-159075975-713097771-432203685-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com [binary data]
IE - HKU\S-1-5-21-159075975-713097771-432203685-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com
IE - HKU\S-1-5-21-159075975-713097771-432203685-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-159075975-713097771-432203685-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE11SR
IE - HKU\S-1-5-21-159075975-713097771-432203685-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.2: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\msktbird@mcafee.com: C:\Program Files\McAfee\MSK


========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - Extension: Dokumenty Google = C:\Users\snejdarov\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_1\
CHR - Extension: Disk Google = C:\Users\snejdarov\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_1\
CHR - Extension: YouTube = C:\Users\snejdarov\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_1\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Users\snejdarov\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_1\
CHR - Extension: Pen\u011B\u017Eenka Google = C:\Users\snejdarov\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\
CHR - Extension: Gmail = C:\Users\snejdarov\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_2\

O1 HOSTS File: ([2013/08/22 14:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O4:64bit: - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll (Motorola Solutions, Inc.)
O4:64bit: - HKLM..\Run: [Energy Manager] C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe (Lenovo(beijing) Limited)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\WINDOWS\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelAntiTheftDiscoveryAppIECNotifier] C:\Program Files (x86)\Intel\Intel Anti-Theft Discovery App\IntelAntiTheftDiscoveryAppIECNotifier.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Lenovo Utility] C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe (Lenovo(beijing) Limited)
O4:64bit: - HKLM..\Run: [Persistence] C:\WINDOWS\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVBg_Dolby] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RtHDVBg_LENOVO_MICPKEY] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RtsFT] C:\WINDOWS\RTFTrack.exe (Realtek semiconductor)
O4:64bit: - HKLM..\Run: [UMonit64] C:\Windows\SysWOW64\UMonit64.exe ()
O4 - HKLM..\Run: [Intel AppUp(SM) center] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe (Intel Corporation)
O4 - HKLM..\Run: [PSUAMain] C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAMain.exe (Panda Security, S.L.)
O4 - HKLM..\Run: [YouCam Tray] C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe (CyberLink Corp.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{45DB8B7E-92C3-491B-ABB5-672D224A4F55}: DhcpNameServer = 127.0.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DCAC9463-CFCF-4110-A08F-931D9E67FF83}: DhcpNameServer = 192.168.0.1
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\WINDOWS\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: lfsvc - C:\Windows\SysNative\GeofenceMonitorService.dll (Microsoft Corporation)
NetSvcs:64bit: wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
NetSvcs:64bit: DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs:64bit: NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\WINDOWS\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2014/01/30 18:08:09 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\snejdarov\Desktop\OTL.exe
[2014/01/30 17:38:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bluetooth Devices
[2014/01/26 17:15:07 | 000,000,000 | ---D | C] -- C:\Users\snejdarov\AppData\Local\Diagnostics
[2014/01/25 15:25:04 | 000,000,000 | ---D | C] -- C:\Users\snejdarov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
[2014/01/25 15:25:04 | 000,000,000 | ---D | C] -- C:\Users\snejdarov\AppData\Roaming\GHISLER
[2014/01/25 15:21:49 | 000,058,808 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\SysNative\drivers\PSKMAD.sys
[2014/01/25 13:04:37 | 002,077,696 | ---- | C] (Farbar) -- C:\Users\snejdarov\Desktop\FRST64.exe
[2014/01/25 08:40:26 | 000,000,000 | ---D | C] -- C:\FRST
[2014/01/24 21:56:08 | 000,637,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncHost.exe
[2014/01/24 21:56:08 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncCore.dll
[2014/01/24 21:56:08 | 000,479,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncHost.exe
[2014/01/24 21:56:07 | 004,106,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncEngine.dll
[2014/01/24 21:56:07 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncCore.dll
[2014/01/24 21:56:05 | 003,210,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msmpeg2vdec.dll
[2014/01/24 21:56:04 | 018,577,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2014/01/24 21:56:04 | 002,804,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msmpeg2vdec.dll
[2014/01/24 21:56:03 | 002,142,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2014/01/24 21:56:03 | 002,131,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2014/01/24 21:56:03 | 001,928,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\combase.dll
[2014/01/24 21:56:02 | 013,925,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2014/01/24 21:56:02 | 002,617,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll
[2014/01/24 21:56:02 | 001,371,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\combase.dll
[2014/01/24 21:56:01 | 002,295,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2014/01/24 21:56:01 | 001,399,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winmde.dll
[2014/01/24 21:56:00 | 001,374,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpmde.dll
[2014/01/24 21:56:00 | 001,204,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winmde.dll
[2014/01/24 21:56:00 | 000,809,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll
[2014/01/24 21:56:00 | 000,764,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmpeg2srcsnk.dll
[2014/01/24 21:56:00 | 000,745,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\oleaut32.dll
[2014/01/24 21:56:00 | 000,669,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll
[2014/01/24 21:56:00 | 000,470,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfds.dll
[2014/01/24 21:56:00 | 000,282,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemEventsBrokerServer.dll
[2014/01/24 21:56:00 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bisrv.dll
[2014/01/24 21:56:00 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ubpm.dll
[2014/01/24 21:56:00 | 000,032,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ploptin.dll
[2014/01/24 21:55:59 | 001,415,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2014/01/24 21:55:59 | 001,227,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mispace.dll
[2014/01/24 21:55:59 | 000,663,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll
[2014/01/24 21:55:59 | 000,589,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rastls.dll
[2014/01/24 21:55:59 | 000,461,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XpsGdiConverter.dll
[2014/01/24 21:55:59 | 000,433,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfds.dll
[2014/01/24 21:55:59 | 000,336,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XpsGdiConverter.dll
[2014/01/24 21:55:59 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msieftp.dll
[2014/01/24 21:55:59 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Graphics.dll
[2014/01/24 21:55:59 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Graphics.dll
[2014/01/24 21:55:59 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\psmsrv.dll
[2014/01/24 21:55:59 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bi.dll
[2014/01/24 21:55:58 | 000,980,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mispace.dll
[2014/01/24 21:55:58 | 000,513,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rastls.dll
[2014/01/24 21:55:58 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msieftp.dll
[2014/01/24 21:55:58 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceregistration.dll
[2014/01/24 21:55:58 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\BtaMPM.sys
[2014/01/24 21:55:37 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winbici.dll
[2014/01/19 01:56:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2014/01/19 01:55:30 | 000,000,000 | ---D | C] -- C:\Users\snejdarov\AppData\Local\Deployment
[2014/01/15 18:12:01 | 003,395,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSService.dll
[2014/01/15 18:12:00 | 000,848,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSShared.dll
[2014/01/15 18:12:00 | 000,695,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSShared.dll
[2014/01/15 18:12:00 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2014/01/15 18:12:00 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2014/01/15 18:11:59 | 000,206,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSClient.dll
[2014/01/15 18:11:59 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSClient.dll
[2014/01/15 18:11:59 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSCollect.exe
[2014/01/15 18:11:50 | 000,787,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uDWM.dll
[2014/01/14 19:05:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
[2014/01/14 19:05:29 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_42.dll
[2014/01/14 19:05:28 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_31.dll
[2014/01/14 19:04:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PX Storage Engine
[2014/01/14 19:04:31 | 000,000,000 | ---D | C] -- C:\Users\snejdarov\AppData\Roaming\Winamp
[2014/01/12 15:23:14 | 000,000,000 | ---D | C] -- C:\Users\snejdarov\AppData\Roaming\vlc
[2014/01/12 15:20:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2014/01/12 14:45:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2014/01/12 14:45:04 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014/01/12 12:47:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
[2014/01/11 11:50:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\StarnetPlayer-Test
[2014/01/11 11:50:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarnetPlayer - testovací verze
[2014/01/09 22:42:16 | 003,607,520 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\NETwbw02.sys
[2014/01/09 12:29:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2014/01/08 09:03:26 | 002,103,040 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\WavesGUILib64.dll
[2014/01/08 09:03:24 | 000,947,760 | ---- | C] (Sony Corporation) -- C:\WINDOWS\SysNative\SFSS_APO.dll
[2014/01/08 09:03:22 | 002,825,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtPgEx64.dll
[2014/01/08 09:03:22 | 001,958,616 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTSnMg64.cpl
[2014/01/08 09:03:18 | 002,784,984 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkAPO64.dll
[2014/01/08 09:03:18 | 001,022,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkApi64.dll
[2014/01/08 09:03:18 | 000,624,344 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtDataProc64.dll
[2014/01/08 09:03:16 | 045,601,280 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RCoRes64.dat
[2014/01/08 09:03:16 | 001,286,872 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTCOM64.dll
[2014/01/08 09:03:14 | 000,154,840 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RCoInstII64.dll
[2014/01/08 09:03:08 | 000,662,784 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxVolumeSDAPO.dll
[2014/01/08 09:03:04 | 014,153,984 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioRealtek64.dll
[2014/01/08 09:03:04 | 002,036,992 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioEQ64.dll
[2014/01/08 09:03:04 | 001,922,304 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioRealtek264.dll
[2014/01/08 09:03:02 | 001,013,504 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPOShell64.dll
[2014/01/08 09:03:02 | 000,663,296 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPO30.dll
[2014/01/08 09:03:00 | 002,770,976 | ---- | C] (Fortemedia Corporation) -- C:\WINDOWS\SysNative\FMAPO64.dll
[2014/01/08 09:02:58 | 006,217,904 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPP64A.dll
[2014/01/08 09:02:58 | 001,938,608 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPD64A.dll
[2014/01/08 09:02:58 | 000,313,520 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPO64A.dll
[2014/01/08 09:02:58 | 000,260,272 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPA64.dll
[2014/01/08 09:02:58 | 000,113,576 | ---- | C] (Real Sound Lab SIA) -- C:\WINDOWS\SysNative\CONEQMSAPOGUILibrary.dll
[2014/01/08 09:02:56 | 000,209,096 | ---- | C] (Andrea Electronics Corporation) -- C:\WINDOWS\SysNative\AERTAC64.dll
[1 C:\WINDOWS\SysNative\*.tmp files -> C:\WINDOWS\SysNative\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2014/01/30 18:13:25 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014/01/30 18:08:13 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\snejdarov\Desktop\OTL.exe
[2014/01/30 17:43:59 | 001,749,406 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2014/01/30 17:43:59 | 000,740,962 | ---- | M] () -- C:\WINDOWS\SysNative\perfh005.dat
[2014/01/30 17:43:59 | 000,723,514 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2014/01/30 17:43:59 | 000,152,146 | ---- | M] () -- C:\WINDOWS\SysNative\perfc005.dat
[2014/01/30 17:43:59 | 000,136,128 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2014/01/30 17:39:36 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014/01/30 17:37:58 | 000,034,752 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\WPRO_41_2001.sys
[2014/01/30 17:37:36 | 408,714,250 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP
[2014/01/30 17:37:36 | 3201,318,912 | -HS- | M] () -- C:\hiberfil.sys
[2014/01/30 17:37:36 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2014/01/30 16:39:43 | 000,002,560 | ---- | M] () -- C:\WINDOWS\SysNative\VfService.trf
[2014/01/25 13:04:48 | 002,077,696 | ---- | M] (Farbar) -- C:\Users\snejdarov\Desktop\FRST64.exe
[2014/01/24 22:13:35 | 000,382,744 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2014/01/12 15:20:33 | 000,001,089 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2014/01/11 11:50:32 | 000,002,039 | ---- | M] () -- C:\Users\Public\Desktop\Starnet Player - testovací verze.lnk
[2014/01/09 22:42:18 | 009,122,384 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\Netwfw02.dat
[2014/01/09 22:42:16 | 003,607,520 | ---- | M] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\NETwbw02.sys
[2014/01/08 09:03:26 | 002,103,040 | ---- | M] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\WavesGUILib64.dll
[2014/01/08 09:03:24 | 000,947,760 | ---- | M] (Sony Corporation) -- C:\WINDOWS\SysNative\SFSS_APO.dll
[2014/01/08 09:03:22 | 005,804,772 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\rtvienna.dat
[2014/01/08 09:03:22 | 002,825,432 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtPgEx64.dll
[2014/01/08 09:03:22 | 001,958,616 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTSnMg64.cpl
[2014/01/08 09:03:18 | 002,784,984 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkAPO64.dll
[2014/01/08 09:03:18 | 001,022,680 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkApi64.dll
[2014/01/08 09:03:18 | 000,624,344 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtDataProc64.dll
[2014/01/08 09:03:16 | 045,601,280 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RCoRes64.dat
[2014/01/08 09:03:16 | 001,286,872 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTCOM64.dll
[2014/01/08 09:03:16 | 000,711,425 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\RTAIODAT.DAT
[2014/01/08 09:03:14 | 000,154,840 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RCoInstII64.dll
[2014/01/08 09:03:08 | 000,662,784 | ---- | M] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxVolumeSDAPO.dll
[2014/01/08 09:03:04 | 014,153,984 | ---- | M] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioRealtek64.dll
[2014/01/08 09:03:04 | 002,036,992 | ---- | M] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioEQ64.dll
[2014/01/08 09:03:04 | 001,922,304 | ---- | M] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioRealtek264.dll
[2014/01/08 09:03:02 | 001,013,504 | ---- | M] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPOShell64.dll
[2014/01/08 09:03:02 | 000,663,296 | ---- | M] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPO30.dll
[2014/01/08 09:03:00 | 002,770,976 | ---- | M] (Fortemedia Corporation) -- C:\WINDOWS\SysNative\FMAPO64.dll
[2014/01/08 09:02:58 | 006,217,904 | ---- | M] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPP64A.dll
[2014/01/08 09:02:58 | 001,938,608 | ---- | M] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPD64A.dll
[2014/01/08 09:02:58 | 000,313,520 | ---- | M] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPO64A.dll
[2014/01/08 09:02:58 | 000,260,272 | ---- | M] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPA64.dll
[2014/01/08 09:02:58 | 000,113,576 | ---- | M] (Real Sound Lab SIA) -- C:\WINDOWS\SysNative\CONEQMSAPOGUILibrary.dll
[2014/01/08 09:02:56 | 000,209,096 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\SysNative\AERTAC64.dll
[2014/01/06 23:31:05 | 000,693,240 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2014/01/06 23:31:05 | 000,105,464 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[1 C:\WINDOWS\SysNative\*.tmp files -> C:\WINDOWS\SysNative\*.tmp -> ]

========== Files Created - No Company Name ==========

[2014/01/30 18:13:25 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014/01/30 17:37:36 | 408,714,250 | ---- | C] () -- C:\WINDOWS\MEMORY.DMP
[2014/01/24 21:55:58 | 000,385,614 | ---- | C] () -- C:\WINDOWS\SysNative\ApnDatabase.xml
[2014/01/15 18:11:58 | 000,138,240 | ---- | C] () -- C:\WINDOWS\SysNative\OEMLicense.dll
[2014/01/15 18:11:58 | 000,103,936 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll
[2014/01/12 15:20:33 | 000,001,089 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2014/01/11 11:50:32 | 000,002,039 | ---- | C] () -- C:\Users\Public\Desktop\Starnet Player - testovací verze.lnk
[2014/01/09 22:42:18 | 009,122,384 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\Netwfw02.dat
[2014/01/08 09:03:22 | 005,804,772 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\rtvienna.dat
[2014/01/08 09:03:16 | 000,711,425 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTAIODAT.DAT
[2013/12/25 23:34:03 | 000,000,000 | ---- | C] () -- C:\ProgramData\0x0304A000.sfl
[2013/12/24 19:27:34 | 000,076,976 | ---- | C] () -- C:\Users\snejdarov\AppData\Roaming\LoJackSetup.exe
[2013/12/21 00:02:44 | 000,280,064 | ---- | C] () -- C:\WINDOWS\SysWow64\igdmd32.dll
[2013/12/21 00:02:40 | 000,182,272 | ---- | C] () -- C:\WINDOWS\SysWow64\igdde32.dll
[2013/12/21 00:02:40 | 000,142,848 | ---- | C] () -- C:\WINDOWS\SysWow64\igdail32.dll
[2013/12/19 17:20:09 | 000,004,879 | ---- | C] () -- C:\Users\snejdarov\AppData\Roaming\AbsoluteReminder.xml
[2013/08/22 16:36:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2013/08/22 16:36:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2013/08/22 15:46:23 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/08/22 08:01:23 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2013/08/22 04:32:36 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2013/08/22 03:52:44 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2013/08/22 03:49:23 | 000,172,097 | ---- | C] () -- C:\WINDOWS\SysWow64\NoMSGuninstall.exe
[2013/08/22 03:49:23 | 000,040,960 | ---- | C] () -- C:\WINDOWS\SysWow64\UMonit64.exe
[2013/08/22 03:49:23 | 000,000,898 | ---- | C] () -- C:\WINDOWS\SysWow64\ProductName.ini
[2013/08/22 03:49:22 | 000,001,519 | ---- | C] () -- C:\WINDOWS\SysWow64\_IconCfg0.ini
[2013/08/22 03:49:22 | 000,000,213 | ---- | C] () -- C:\WINDOWS\SysWow64\IconCfg0.ini
[2013/08/22 03:37:09 | 001,771,058 | ---- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI
[2013/08/22 00:55:20 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2013/08/22 00:52:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2013/08/02 08:01:20 | 000,010,011 | ---- | C] () -- C:\ProgramData\regid.2012-01.com.intel.discover-at_512FCF1B-3685-45F2-A1E9-63AEF7F79B35.swidtag
[2013/02/13 20:27:54 | 000,001,536 | ---- | C] () -- C:\WINDOWS\SysWow64\IusEventLog.dll
[2012/07/25 21:22:56 | 000,267,284 | ---- | C] () -- C:\WINDOWS\SysWow64\igvpkrng600.bin
[2012/07/25 21:22:54 | 000,963,376 | ---- | C] () -- C:\WINDOWS\SysWow64\igcodeckrng600.bin

========== ZeroAccess Check ==========


[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/11/23 12:49:06 | 021,196,664 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/11/23 09:19:35 | 018,642,504 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013/08/22 10:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013/08/22 03:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013/08/22 10:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2014/01/25 15:40:31 | 000,000,000 | ---D | M] -- C:\Users\snejdarov\AppData\Roaming\GHISLER
[2013/12/26 14:05:55 | 000,000,000 | ---D | M] -- C:\Users\snejdarov\AppData\Roaming\MPC-HC
[2013/12/19 17:30:02 | 000,000,000 | ---D | M] -- C:\Users\snejdarov\AppData\Roaming\Panda Security

========== Purity Check ==========



========== Custom Scans ==========

< >
[2013/08/22 15:45:54 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2013/12/26 12:10:45 | 000,000,264 | ---- | C] () -- C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job

< >

< MD5 for: ATAPI.SYS >
[2013/08/22 13:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\WINDOWS\SysNative\drivers\atapi.sys
[2013/08/22 13:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\WINDOWS\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_64aa4354da84c2df\atapi.sys
[2013/08/22 13:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.3.9600.16384_none_cdf68824f580d510\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2013/08/22 12:41:41 | 000,891,392 | ---- | M] (Microsoft Corporation) MD5=37D01B8BC15E263F4405367C9A442824 -- C:\WINDOWS\SysNative\autochk.exe
[2013/08/22 12:41:41 | 000,891,392 | ---- | M] (Microsoft Corporation) MD5=37D01B8BC15E263F4405367C9A442824 -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.16384_none_d2b24d5495b82963\autochk.exe
[2013/08/22 05:13:03 | 000,793,600 | ---- | M] (Microsoft Corporation) MD5=E259644C02551BFAB10B160CF95C8F88 -- C:\Windows\SysWOW64\autochk.exe
[2013/08/22 05:13:03 | 000,793,600 | ---- | M] (Microsoft Corporation) MD5=E259644C02551BFAB10B160CF95C8F88 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.16384_none_7693b1d0dd5ab82d\autochk.exe

< MD5 for: CDROM.SYS >
[2013/08/22 09:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\WINDOWS\SysNative\drivers\cdrom.sys
[2013/08/22 09:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\WINDOWS\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_42e9c29f0affc440\cdrom.sys
[2013/08/22 09:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\Windows\WinSxS\amd64_cdrom.inf_31bf3856ad364e35_6.3.9600.16384_none_5067bbed77be70be\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2013/11/14 13:46:10 | 002,065,448 | ---- | M] (Microsoft Corporation) MD5=1A0BC9598E4A58FC84570FFF5A108E58 -- C:\Windows\SysWOW64\explorer.exe
[2013/11/14 13:46:10 | 002,065,448 | ---- | M] (Microsoft Corporation) MD5=1A0BC9598E4A58FC84570FFF5A108E58 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16441_none_4ceff22781f6788c\explorer.exe
[2013/11/14 13:46:09 | 002,328,872 | ---- | M] (Microsoft Corporation) MD5=63DC38C3E4564B2405D562855643ABA2 -- C:\Windows\explorer.exe
[2013/11/14 13:46:09 | 002,328,872 | ---- | M] (Microsoft Corporation) MD5=63DC38C3E4564B2405D562855643ABA2 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16441_none_429b47d54d95b691\explorer.exe

< MD5 for: HAL.DLL >
[2013/11/14 13:39:18 | 000,419,160 | ---- | M] (Microsoft Corporation) MD5=7DEA8CDADD23BBFFC8C47EFE6AF11328 -- C:\WINDOWS\SysNative\hal.dll
[2013/11/14 13:39:18 | 000,419,160 | ---- | M] (Microsoft Corporation) MD5=7DEA8CDADD23BBFFC8C47EFE6AF11328 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.16408_none_9c41d51d2d5cc0c4\hal.dll

< MD5 for: SCECLI.DLL >
[2013/08/22 03:48:17 | 000,207,360 | ---- | M] (Microsoft Corporation) MD5=1F142D5BD1C3869C5D902779B6FEC3EF -- C:\Windows\SysWOW64\scecli.dll
[2013/08/22 03:48:17 | 000,207,360 | ---- | M] (Microsoft Corporation) MD5=1F142D5BD1C3869C5D902779B6FEC3EF -- C:\Windows\WinSxS\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_3320ecb8e1733781\scecli.dll
[2013/08/22 10:55:43 | 000,271,360 | ---- | M] (Microsoft Corporation) MD5=1F1B8D07708E40E54C55B392C78ECCE2 -- C:\WINDOWS\SysNative\scecli.dll
[2013/08/22 10:55:43 | 000,271,360 | ---- | M] (Microsoft Corporation) MD5=1F1B8D07708E40E54C55B392C78ECCE2 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_28cc4266ad127586\scecli.dll

< MD5 for: SERVICES.EXE >
[2013/08/22 14:25:40 | 000,405,488 | ---- | M] (Microsoft Corporation) MD5=B4B610BBCB002EC478C6FD80CF915697 -- C:\WINDOWS\SysNative\services.exe
[2013/08/22 14:25:40 | 000,405,488 | ---- | M] (Microsoft Corporation) MD5=B4B610BBCB002EC478C6FD80CF915697 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.3.9600.16384_none_2fd72579d09a45e9\services.exe

< MD5 for: SVCHOST.EXE >
[2013/08/22 06:30:58 | 000,031,552 | ---- | M] (Microsoft Corporation) MD5=425E22D9F5C01616AFC92987791B19E9 -- C:\Windows\SysWOW64\svchost.exe
[2013/08/22 06:30:58 | 000,031,552 | ---- | M] (Microsoft Corporation) MD5=425E22D9F5C01616AFC92987791B19E9 -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_4a5b1e2820e75323\svchost.exe
[2013/08/22 13:45:17 | 000,037,768 | ---- | M] (Microsoft Corporation) MD5=E4CA434F251681590D0538BC21C32D2F -- C:\WINDOWS\SysNative\svchost.exe
[2013/08/22 13:45:17 | 000,037,768 | ---- | M] (Microsoft Corporation) MD5=E4CA434F251681590D0538BC21C32D2F -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_a679b9abd944c459\svchost.exe

< MD5 for: TCPIP.SYS >
[2014/01/25 11:55:44 | 000,210,441 | ---- | M] () MD5=01941724D120729E2B680B22F05D4123 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16423_none_a41c53813a2d8394\tcpip.sys
[2013/11/05 21:12:19 | 002,551,128 | ---- | M] (Microsoft Corporation) MD5=3D9A5AC880D7AA2305812D665D24ED23 -- C:\WINDOWS\SysNative\drivers\tcpip.sys
[2013/11/05 21:12:19 | 002,551,128 | ---- | M] (Microsoft Corporation) MD5=3D9A5AC880D7AA2305812D665D24ED23 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16456_none_a3fee49b3a43236c\tcpip.sys

< MD5 for: USERINIT.EXE >
[2013/08/22 11:03:12 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=08C191B2917862BE90C33E31CB6B6D79 -- C:\WINDOWS\SysNative\userinit.exe
[2013/08/22 11:03:12 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=08C191B2917862BE90C33E31CB6B6D79 -- C:\Windows\WinSxS\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_cce71a20a5a6fe7f\userinit.exe
[2013/08/22 03:54:12 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=41636F77AD6D9A396EA34E4786B96F2B -- C:\Windows\SysWOW64\userinit.exe
[2013/08/22 03:54:12 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=41636F77AD6D9A396EA34E4786B96F2B -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_70c87e9ced498d49\userinit.exe

< MD5 for: WINLOGON.EXE >
[2013/08/22 10:55:08 | 000,564,736 | ---- | M] (Microsoft Corporation) MD5=7C94FDA3809015B8F2208D2E1C221F17 -- C:\WINDOWS\SysNative\winlogon.exe
[2013/08/22 10:55:08 | 000,564,736 | ---- | M] (Microsoft Corporation) MD5=7C94FDA3809015B8F2208D2E1C221F17 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.16384_none_60816121a8e88269\winlogon.exe

< >

< %systemroot%*.* /U /s >
[1 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[4 C:\WINDOWS\Inf\Intel Storage Counters\*.tmp files -> C:\WINDOWS\Inf\Intel Storage Counters\*.tmp -> ]
[2 C:\WINDOWS\Inf\Intel Storage Counters\0000\*.tmp files -> C:\WINDOWS\Inf\Intel Storage Counters\0000\*.tmp -> ]
[2 C:\WINDOWS\Inf\Intel Storage Counters\0005\*.tmp files -> C:\WINDOWS\Inf\Intel Storage Counters\0005\*.tmp -> ]
[2 C:\WINDOWS\Inf\Intel Storage Counters\0009\*.tmp files -> C:\WINDOWS\Inf\Intel Storage Counters\0009\*.tmp -> ]
[1 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2013/12/19 17:20:09 | 000,000,000 | ---D | M] -- C:\Users\snejdarov\AppData\Roaming\Adobe
[2014/01/25 15:40:31 | 000,000,000 | ---D | M] -- C:\Users\snejdarov\AppData\Roaming\GHISLER
[2013/12/26 12:59:13 | 000,000,000 | ---D | M] -- C:\Users\snejdarov\AppData\Roaming\Identities
[2013/12/19 17:18:52 | 000,000,000 | ---D | M] -- C:\Users\snejdarov\AppData\Roaming\Intel
[2013/12/19 17:20:10 | 000,000,000 | ---D | M] -- C:\Users\snejdarov\AppData\Roaming\Macromedia
[2013/12/26 12:59:58 | 000,000,000 | --SD | M] -- C:\Users\snejdarov\AppData\Roaming\Microsoft
[2013/12/26 14:05:55 | 000,000,000 | ---D | M] -- C:\Users\snejdarov\AppData\Roaming\MPC-HC
[2013/12/19 17:30:02 | 000,000,000 | ---D | M] -- C:\Users\snejdarov\AppData\Roaming\Panda Security
[2014/01/26 02:03:01 | 000,000,000 | ---D | M] -- C:\Users\snejdarov\AppData\Roaming\vlc
[2014/01/19 01:54:19 | 000,000,000 | ---D | M] -- C:\Users\snejdarov\AppData\Roaming\Winamp
[2013/12/27 23:34:35 | 000,000,000 | ---D | M] -- C:\Users\snejdarov\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2013/12/24 19:27:35 | 000,076,976 | ---- | M] () -- C:\Users\snejdarov\AppData\Roaming\LoJackSetup.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >
[2013/12/26 12:10:45 | 000,000,264 | ---- | M] () -- C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2013/08/22 06:20:05 | 000,805,992 | ---- | M] (Microsoft Corporation) MD5=EE889775E0F9755C90FAEBFB93FBD781 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2014/01/23 06:57:02 | 000,866,584 | ---- | M] (Google Inc.) MD5=9B593137FBCC7C1E5D0E4A422749D9A5 -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014/01/30 18:13:25 | 000,000,512 | ---- | M] () MD5=7EE606E5D084396167FC60917883DF11 -- C:\PhysicalMBR.bin

< >

< *crack* /s >

< *keygen* /s >

< *loader* /s >
[2012/10/31 04:12:42 | 000,127,504 | ---- | M] () -- \Program Files (x86)\Lenovo\YouCam\Koan\pyloader.dll
[2012/10/24 00:54:52 | 000,020,119 | ---- | M] () -- \Program Files (x86)\Lenovo\YouCam\subsys\Uploader\PyUploader.kc
[2012/10/24 00:54:52 | 000,232,560 | ---- | M] () -- \Program Files (x86)\Lenovo\YouCam\subsys\Uploader\_PyUploader.pyd
[2012/10/31 04:12:30 | 000,171,024 | ---- | M] () -- \Program Files (x86)\Lenovo\YouCam\subsys\YouCam\CES_3DLoaderC3S.dll
[2012/10/31 04:12:34 | 002,528,784 | ---- | M] () -- \Program Files (x86)\Lenovo\YouCam\subsys\YouCam\CES_3DLoaderFBX.dll
[2013/10/07 11:35:18 | 000,084,448 | ---- | M] () -- \Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSANLiveDownloader.dll
[2013/12/25 23:25:59 | 000,000,708 | ---- | M] () -- \Program Files\WindowsApps\FilmOnLiveTVFree.FilmOnLiveTVFree_1.3.6.115_x64__zx03kxexxb716\js\player\plugins\unloader-plugin.js
[2013/11/14 13:29:00 | 000,000,930 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.BingTravel_3.0.1.202_x64__8wekyb3d8bbwe\js\HtmlFileLoader.js
[2013/11/14 13:26:50 | 000,001,160 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\modernpeople\appframe\backgroundloader.js
[2013/11/14 13:26:50 | 000,004,996 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\modernshareanything\sharedataloader.js
[2013/11/14 13:26:50 | 000,002,125 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\modernsharetarget\sharemaildataloader.js
[2013/11/14 13:29:10 | 000,043,128 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2013/12/28 01:09:27 | 000,054,211 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_2.2.338.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2013/12/01 14:09:05 | 000,061,528 | ---- | M] () -- \Programy\rozbalovač\Instalace\Formats\ace32loader.exe
[2014/01/25 18:57:32 | 000,002,942 | ---- | M] () -- \Users\snejdarov\AppData\Local\Microsoft\Windows\INetCache\Low\IE\V1QFE91N\rmsloaderdelayed[1].js
[2014/01/19 01:55:11 | 000,001,049 | ---- | M] () -- \Users\snejdarov\AppData\Local\Packages\windows_ie_ac_001\AC\INetCache\AOZ1GV03\_preloader[1].gif
[2013/08/22 05:17:27 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 05:17:25 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 05:17:24 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 05:17:20 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 05:17:34 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 05:17:33 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 04:55:19 | 000,036,352 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013/08/22 14:25:39 | 000,003,584 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:39 | 000,003,072 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:38 | 000,002,560 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 05:17:27 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 05:17:25 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 05:17:24 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 05:17:20 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 05:17:34 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 05:17:33 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 04:55:19 | 000,036,352 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2013/08/22 14:25:39 | 000,003,584 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:39 | 000,003,072 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:38 | 000,002,560 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 15:52:34 | 000,592,677 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.16384_none_210fb36c397c4e2b\hvloader.efi
[2013/08/22 15:52:33 | 000,536,051 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.16384_none_210fb36c397c4e2b\hvloader.exe
[2013/08/22 12:21:30 | 000,046,592 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.16384_none_36b27bfc6399d5ce\dmloader.dll
[2013/08/22 14:25:37 | 000,003,584 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:37 | 000,003,072 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:36 | 000,002,560 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 12:45:31 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 12:45:33 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 12:45:35 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 12:45:30 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 12:45:40 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 12:45:44 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-stringloader-l1-1-1.dll
[2013/11/14 13:23:46 | 000,000,463 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_2400ceb4d1008089.manifest
[2014/01/04 17:08:17 | 000,009,588 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_2400ceb4d1008089_winload.efi.mui_35ee487d
[2014/01/04 17:08:17 | 000,009,604 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_2400ceb4d1008089_winload.exe.mui_3bc5b827
[2014/01/04 17:08:17 | 000,007,885 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_2400ceb4d1008089_winresume.efi.mui_f412814e
[2014/01/04 17:08:17 | 000,007,900 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_2400ceb4d1008089_winresume.exe.mui_ff8b5358
[2013/12/26 12:04:16 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16452_none_4c038b5340875d62.manifest
[2014/01/04 17:08:20 | 000,716,508 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16452_none_4c038b5340875d62_winload.efi_75834aa0
[2014/01/04 17:08:22 | 000,653,334 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16452_none_4c038b5340875d62_winload.exe_75835076
[2014/01/04 17:08:24 | 000,640,528 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16452_none_4c038b5340875d62_winresume.efi_85cd069f
[2014/01/04 17:08:25 | 000,581,014 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16452_none_4c038b5340875d62_winresume.exe_85cd1215
[2013/08/22 16:34:52 | 000,000,596 | ---- | M] () -- \Windows\WinSxS\FileMaps\programdata_microsoft_network_downloader_7fafaef6d33e4371.cdf-ms
[2013/11/14 13:22:40 | 000,000,463 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_2400ceb4d1008089.manifest
[2013/08/22 16:22:38 | 000,000,542 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16384_none_4be51a3d409de6bc.manifest
[2013/11/14 13:38:28 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16411_none_4c2dcab94067d447.manifest
[2013/11/14 13:50:45 | 000,000,546 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16415_none_4c31cbe1406439a3.manifest
[2013/12/26 12:03:51 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16452_none_4c038b5340875d62.manifest
[2013/08/22 04:55:19 | 000,036,352 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.16384_none_da93e078ab3c6498\dmloader.dll
[2013/08/22 14:25:39 | 000,003,584 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:39 | 000,003,072 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:38 | 000,002,560 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 05:17:27 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 05:17:25 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 05:17:24 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 05:17:20 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 05:17:34 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 05:17:33 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-1.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 220 bytes -> C:\Users\snejdarov\SkyDrive:ms-properties

< End of report >

a druhý log "Extras"

Potřebuji vidět oba logy.

Asi se oba nevešly do jedné odpovědi, zasílám je tedy v raru zde jako přílohu, snad to nevadí. Díky.

spusťte znovu OTL a do spodního okna vložte:

:OTL
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-159075975-713097771-432203685-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE11SR
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O30 - LSA: Security Packages - (livessp) - File not found
@Alternate Data Stream - 220 bytes -> C:\Users\snejdarov\SkyDrive:ms-properties

:files
c:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.1.202_x64__8wekyb3d8bbwe\js\HtmlFileLoader.js
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]
[CreateRestorePoint]

a klikněte na >opravit<. Po restartu PC se objeví log,který sem zkopírujte.

log:

All processes killed
========== OTL ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-159075975-713097771-432203685-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Security Packages:livessp deleted successfully.
Unable to delete ADS C:\Users\snejdarov\SkyDrive:ms-properties .
========== FILES ==========
File move failed. c:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.1.202_x64__8wekyb3d8bbwe\js\HtmlFileLoader.js scheduled to be moved on reboot.
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default.migrated

User: Public

User: snejdarov
->Temp folder emptied: 734308 bytes
->Temporary Internet Files folder emptied: 6382469 bytes
->Google Chrome cache emptied: 351527086 bytes
->Flash cache emptied: 506 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 94656 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 10881101 bytes
RecycleBin emptied: 1618152100 bytes

Total Files Cleaned = 1 896,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Default.migrated

User: Public

User: snejdarov
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.69.0 log created on 01302014_204655

Files\Folders moved on Reboot...
c:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.1.202_x64__8wekyb3d8bbwe\js\HtmlFileLoader.js moved successfully.
C:\Users\snejdarov\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
C:\WINDOWS\SysNative\WPRO_41_2001woem.tmp moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Smazáno. Nastala nějaká změna?

Momentálně nedokážu posoudit, jelikož notebook i minule běžel plynule a po nějaké době se začal opět zasekávat, budu to pozorovat a když tak dám vědět, bylo by možné třeba jen v krátkosti popsat, co tam bylo za problém? Děkuji mockrát.