VIRY.CZ

Prosím o kontrolu logu. Objevil se mi v nb Malah.net. Načítání stránek se výrazně zpomalilo a při otevírání Chrome se vždy současně s ním otevřela stránka Malah. Našel jsem na netu radu na odstranění pomocí Cloud System Booster.Ten jsem stáhl a použil v základním nastavení. Malah se po restartu již neobjevuje, ale nevím, jestli v nb nezůstaly po něm nějaké zbytky. Log přikládám a předem děkuji.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Ruda at 2015-03-25 01:58:38
WIN_7 Service Pack 1
System drive C: has 65 GB (34%) free of 191 GB
Total RAM: 3980 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:27:14, on 1.2.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17496)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Ruda.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?logged=1#obsah
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file)
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: LastPass Vault - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)
O2 - BHO: DownloadHelper Class - {FF2573AE-E1ED-40e1-83BA-F544CB2EE135} - C:\Program Files (x86)\Common Files\Download Helper\DownloadHelper.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O3 - Toolbar: LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [ACMON] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [iSkysoft Helper Compact.exe] C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - Startup: Odeslat do OneNote.lnk = C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
O4 - Startup: SystemExplorerDisabled
O4 - Global Startup: Install LastPass FF RunOnce.lnk = C:\Program Files (x86)\Common Files\lpuninstall.exe
O4 - Global Startup: Install LastPass IE RunOnce.lnk = C:\Program Files (x86)\Common Files\lpuninstall.exe
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\LastPass\LPToolbar.dll
O9 - Extra 'Tools' menuitem: LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\LastPass\LPToolbar.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: (no name) - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - (no file)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} - http://www.asus.com/support/asusTek_sys_ctrl3.cab
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} -
O17 - HKLM\System\CCS\Services\Tcpip\..\{A749964F-2A94-43D1-9724-95EC764BBAA2}: NameServer = 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: c:\windows\syswow64\nvinit.dll c:\windows\syswow64\nvinit.dll c:\windows\syswow64\nvinit.dll, c:\windows\syswow64\nvinit.dll, C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: @%systemroot%\system32\CISVC.EXE,-1 (CISVC) - Unknown owner - C:\Windows\system32\CISVC.EXE (file missing)
O23 - Service: COMODO LPS Launcher (CLPSLauncher) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
O23 - Service: COMODO Internet Security Helper Service (CmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: COMODO Programs Manager Service (CPMService) - Unknown owner - C:\Program Files\COMODO\COMODO Programs Manager\CPMService.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GeekBuddyRSP Server (GeekBuddyRSP) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Internet Explorer ETW Collector Service (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\Windows\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Zachytávání pro službu SNMP (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SpyHunter 4 Service - Unknown owner - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe (file missing)
O23 - Service: SInstalátor (ssinstall) - PS Media s.r.o. - C:\Windows\SysWOW64\ssins.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: VideoAcceleratorService - SPEEDbit - C:\PROGRA~2\SPEEDB~1\VideoAcceleratorService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 14274 bytes

======Listing Processes======


======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe#
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe# /c#
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe# /ua /installsource scheduler#

=========Mozilla firefox=========

ProfilePath - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081

prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.67.2]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@lastpass.com/NPLastPass]
"Description"=
"Path"=C:\Program Files (x86)\LastPass\nplastpass64.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@oberon-media.com/ONCAdapter]
"Description"=Oberon com adapter plugin
"Path"=C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.14\npapicomadapter.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Skype Technologies S.A..com/Skype Web Plugin]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=
"Path"=


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.31.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@lastpass.com/NPLastPass]
"Description"=
"Path"=C:\Program Files (x86)\LastPass\nplastpass64.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Skype Technologies S.A..com/Skype Web Plugin]
"Description"=Skype Web Plugin
"Path"=C:\Program Files (x86)\SkypeWebPlugin\npSkypeWebPlugin64.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll


C:\Program Files (x86)\Mozilla Firefox\plugins\
npPDFXCviewNPPlugin.dll

C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\extensions\
support@lastpass.com

C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\searchplugins\
zbocz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-02-10 218776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-24 551848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-03-14 438368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95D9ECF5-2A4D-4550-BE49-70D42F71296E}]
LastPass Vault - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-03-22 926720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2015-02-10 886488]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-02-10 2334928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-24 212904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF2573AE-E1ED-40e1-83BA-F544CB2EE135}]
DownloadHelper Class - C:\Program Files\Common Files\Download Helper\DownloadHelperx64.dll [2011-01-07 905216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-08-12 715016]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201CF130-E29C-4E5C-A73F-CD197DEFA6AE}]
E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27 238576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-05-31 52352]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95D9ECF5-2A4D-4550-BE49-70D42F71296E}]
LastPass Vault - C:\Program Files (x86)\LastPass\LPToolbar.dll [2015-03-22 608768]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2015-02-10 710864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF2573AE-E1ED-40e1-83BA-F544CB2EE135}]
DownloadHelper Class - C:\Program Files (x86)\Common Files\Download Helper\DownloadHelper.dll [2011-01-07 626688]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12 606472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-03-14 438368]
{9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - LastPass Toolbar - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-03-22 926720]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27 238576]
{9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - LastPass Toolbar - C:\Program Files (x86)\LastPass\LPToolbar.dll [2015-03-22 608768]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-02-19 2661672]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2011-05-26 361984]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\btvstack.exe [2012-05-31 1023616]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\athbttray.exe [2012-05-31 801920]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-12-13 2824504]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2014-01-29 171992]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2014-01-29 399832]
"Persistence"=C:\Windows\system32\igfxpers.exe [2014-01-29 442328]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-02-04 1297624]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EPLTarget\P0000000000000000"=C:\Windows\system32\spool\DRIVERS\x64\3\E_YATII4E.EXE [2015-03-14 283232]
"EPLTarget\P0000000000000001"=C:\Windows\system32\spool\DRIVERS\x64\3\E_YATII4E.EXE [2015-03-14 283232]
"CloudSystemBooster"=C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe [2015-03-25 527544]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSWebStorage]
C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.144.298\AsusWSPanel.exe [2012-11-05 740736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Family Tree Builder Update]
C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [2013-11-12 2532864]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GIGABYTEMOUSE]
C:\Program Files (x86)\GIGABYTE\GIGABYTE Sim Series7\Mouse.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google+ Auto Backup]
C:\Users\Ruda\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe [2014-08-12 3746120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-02-18 3978600]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDFPrint]
C:\Program Files (x86)\PDF24\pdf24.exe [2015-02-13 193568]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tvncontrol]
C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2014-12-25 2327248]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Skype.lnk]
C:\PROGRA~2\Skype\Phone\Skype.exe [2015-02-26 31346784]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Ruda^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Odeslat do OneNote.lnk]
C:\PROGRA~1\MICROS~4\root\office15\ONENOTEM.EXE [2014-09-23 195240]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2000-01-01 292088]
"ACMON"=C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2012-02-21 102568]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2012-02-03 2321072]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-06-25 322208]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2012-06-19 174752]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"iSkysoft Helper Compact.exe"=C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe [2015-01-07 2066432]
"EEventManager"=C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2015-03-14 1057408]
"ArcSoft Connection Service"=C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2015-03-14 203264]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
"wextract_cleanup0"=C:\Windows\system32\advpack.dll [2009-07-14 160256]
"wextract_cleanup1"=C:\Windows\system32\advpack.dll [2009-07-14 160256]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Install LastPass FF RunOnce.lnk - C:\Program Files (x86)\Common Files\lpuninstall.exe
Install LastPass IE RunOnce.lnk - C:\Program Files (x86)\Common Files\lpuninstall.exe

C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Odeslat do OneNote.lnk - C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
SystemExplorerDisabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" C:\Windows\System32\nvinitx.dll, C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2014-01-29 442880]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"undockwithoutlogon"=1
"ShutdownWithoutLogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoFileAssociate"=0
"NoRun"=0
"NoClose"=0
"StartMenuLogoff"=0
"NoResolveTrack"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"msacm.l3codecp"=l3codecp.acm
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.txt - open -

======List of files/folders created in the last 1 month======

2015-03-25 01:58:38 ----DC---- C:\rsit
2015-03-25 01:46:50 ----HD---- C:\Windows\AxInstSV
2015-03-25 01:21:57 ----D---- C:\Program Files (x86)\Anvisoft
2015-03-23 17:21:05 ----D---- C:\Windows\SYSWOW64\NV
2015-03-23 17:21:05 ----D---- C:\Windows\system32\NV
2015-03-23 17:16:18 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-03-23 17:16:18 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-03-23 17:16:18 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-03-23 17:16:18 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2015-03-23 17:16:18 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-03-23 17:16:18 ----A---- C:\Windows\system32\nvopencl.dll
2015-03-23 17:16:18 ----A---- C:\Windows\system32\nvoglv64.dll
2015-03-23 17:16:18 ----A---- C:\Windows\system32\nvoglshim64.dll
2015-03-23 17:16:18 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2015-03-23 17:16:17 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-03-23 17:16:17 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-03-23 17:16:17 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2015-03-23 17:16:17 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-03-23 17:16:17 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2015-03-23 17:16:17 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-03-23 17:16:17 ----A---- C:\Windows\system32\nvinitx.dll
2015-03-23 17:16:17 ----A---- C:\Windows\system32\NvIFR64.dll
2015-03-23 17:16:17 ----A---- C:\Windows\system32\NvFBC64.dll
2015-03-23 17:16:17 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-03-23 17:16:17 ----A---- C:\Windows\system32\nvcuvid.dll
2015-03-23 17:16:17 ----A---- C:\Windows\system32\nvcuvenc.dll
2015-03-23 17:16:17 ----A---- C:\Windows\system32\nvcuda.dll
2015-03-23 17:16:17 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-03-23 17:16:13 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-03-23 17:16:13 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2015-03-23 17:16:13 ----A---- C:\Windows\system32\nvcompiler.dll
2015-03-21 23:33:51 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-03-17 14:09:49 ----DC---- C:\Program Files (x86)\RKComputer
2015-03-17 13:03:12 ----D---- C:\ProgramData\firebird
2015-03-17 10:13:40 ----D---- C:\Program Files\paint.net
2015-03-16 17:17:44 ----DC---- C:\Users\Ruda\AppData\Roaming\OBS
2015-03-16 17:17:14 ----DC---- C:\Program Files\OBS
2015-03-16 17:17:03 ----DC---- C:\Program Files (x86)\OBS
2015-03-15 02:41:27 ----D---- C:\Users\Ruda\AppData\Roaming\Notepad++
2015-03-14 16:35:49 ----D---- C:\ProgramData\Sony Corporation
2015-03-14 16:25:42 ----D---- C:\Program Files\Common Files\EPSON
2015-03-14 15:09:11 ----A---- C:\Windows\system32\esxw2ud.dll
2015-03-14 15:09:11 ----A---- C:\Windows\system32\escsvc64.exe
2015-03-14 14:06:40 ----D---- C:\ProgramData\EPSON
2015-03-14 13:41:42 ----D---- C:\Program Files (x86)\Epson Software
2015-03-14 13:40:35 ----A---- C:\Windows\SYSWOW64\esintdd.dll
2015-03-14 13:40:35 ----A---- C:\Windows\system32\esxw2_dd.dll
2015-03-14 13:40:35 ----A---- C:\Windows\system32\esxuindd.dll
2015-03-14 13:40:35 ----A---- C:\Windows\system32\esxcdev.dll
2015-03-14 13:40:35 ----A---- C:\Windows\system32\esdevapp.exe
2015-03-14 13:39:53 ----D---- C:\Program Files (x86)\epson
2015-03-13 12:36:37 ----D---- C:\ProgramData\UDL
2015-03-13 11:12:36 ----A---- C:\Windows\system32\enspres.dll
2015-03-13 11:12:36 ----A---- C:\Windows\system32\ensppui.dll
2015-03-13 11:12:36 ----A---- C:\Windows\system32\ensppmon.dll
2015-03-13 11:12:36 ----A---- C:\Windows\system32\enpres.dll
2015-03-13 11:12:36 ----A---- C:\Windows\system32\enppui.dll
2015-03-13 11:12:36 ----A---- C:\Windows\system32\enppmon.dll
2015-03-13 11:10:42 ----A---- C:\Windows\system32\E_GCINST.DLL
2015-03-13 11:10:39 ----A---- C:\Windows\system32\E_YLMI4E.DLL
2015-03-13 11:10:38 ----A---- C:\Windows\system32\E_YD4BI4E.DLL
2015-03-11 09:44:54 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-03-11 09:44:54 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-03-11 09:44:54 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-03-11 09:44:54 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-03-11 09:44:54 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-03-11 09:44:54 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-03-11 09:44:53 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-03-11 09:44:53 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-03-11 09:44:53 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-03-11 09:44:53 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-03-11 09:44:53 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-03-11 09:44:53 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-03-11 09:44:53 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-03-11 09:44:53 ----A---- C:\Windows\system32\iernonce.dll
2015-03-11 09:44:53 ----A---- C:\Windows\system32\ie4uinit.exe
2015-03-11 09:44:51 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-03-11 09:44:51 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-03-11 09:44:51 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-03-11 09:44:51 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-03-11 09:44:51 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-03-11 09:44:51 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-03-11 09:44:51 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-03-11 09:44:51 ----A---- C:\Windows\system32\urlmon.dll
2015-03-11 09:44:51 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-03-11 09:44:51 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-03-11 09:44:51 ----A---- C:\Windows\system32\iedkcs32.dll
2015-03-11 09:44:51 ----A---- C:\Windows\system32\dxtrans.dll
2015-03-11 09:44:50 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-03-11 09:44:50 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-03-11 09:44:50 ----A---- C:\Windows\system32\msfeeds.dll
2015-03-11 09:44:50 ----A---- C:\Windows\system32\iesetup.dll
2015-03-11 09:44:50 ----A---- C:\Windows\system32\ieapfltr.dll
2015-03-11 09:44:49 ----A---- C:\Windows\system32\iertutil.dll
2015-03-11 09:44:48 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-03-11 09:44:48 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-03-11 09:44:48 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-03-11 09:44:48 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-03-11 09:44:48 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-03-11 09:44:48 ----A---- C:\Windows\system32\jsproxy.dll
2015-03-11 09:44:48 ----A---- C:\Windows\system32\ieUnatt.exe
2015-03-11 09:44:47 ----A---- C:\Windows\system32\ieui.dll
2015-03-11 09:44:47 ----A---- C:\Windows\system32\ieframe.dll
2015-03-11 09:44:47 ----A---- C:\Windows\system32\dxtmsft.dll
2015-03-11 09:44:46 ----A---- C:\Windows\system32\vbscript.dll
2015-03-11 09:44:46 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-03-11 09:44:46 ----A---- C:\Windows\system32\mshtmled.dll
2015-03-11 09:44:46 ----A---- C:\Windows\system32\jscript9diag.dll
2015-03-11 09:44:46 ----A---- C:\Windows\system32\jscript9.dll
2015-03-11 09:44:45 ----A---- C:\Windows\system32\wininet.dll
2015-03-11 09:44:45 ----A---- C:\Windows\system32\msrating.dll
2015-03-11 09:44:45 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-03-11 09:44:44 ----A---- C:\Windows\system32\mshtml.dll
2015-03-11 09:03:29 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-03-11 09:03:29 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-03-11 09:03:29 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-03-11 09:03:29 ----A---- C:\Windows\system32\lpk.dll
2015-03-11 09:03:29 ----A---- C:\Windows\system32\dciman32.dll
2015-03-11 09:03:29 ----A---- C:\Windows\system32\atmlib.dll
2015-03-11 09:03:29 ----A---- C:\Windows\system32\atmfd.dll
2015-03-11 09:03:28 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-03-11 09:03:28 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-03-11 09:03:28 ----A---- C:\Windows\system32\fontsub.dll
2015-03-11 09:03:24 ----A---- C:\Windows\system32\rdpcorets.dll
2015-03-11 09:03:23 ----A---- C:\Windows\system32\rdpudd.dll
2015-03-11 09:03:23 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-03-11 09:03:16 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-03-11 09:03:15 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-03-11 09:03:14 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-03-11 09:03:14 ----A---- C:\Windows\system32\crypt32.dll
2015-03-11 09:03:12 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-03-11 09:03:11 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-03-11 09:03:11 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-03-11 09:03:08 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-03-11 09:03:07 ----A---- C:\Windows\system32\mf.dll
2015-03-11 09:03:04 ----A---- C:\Windows\system32\wmp.dll
2015-03-11 09:03:02 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-03-11 09:03:02 ----A---- C:\Windows\system32\drmv2clt.dll
2015-03-11 09:03:01 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-03-11 09:03:01 ----A---- C:\Windows\system32\quartz.dll
2015-03-11 09:03:01 ----A---- C:\Windows\system32\msscp.dll
2015-03-11 09:03:00 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-03-11 09:03:00 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2015-03-11 09:03:00 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-03-11 09:03:00 ----A---- C:\Windows\system32\winload.exe
2015-03-11 09:03:00 ----A---- C:\Windows\system32\cryptui.dll
2015-03-11 09:02:59 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-03-11 09:02:59 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-03-11 09:02:59 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-03-11 09:02:59 ----A---- C:\Windows\system32\wintrust.dll
2015-03-11 09:02:59 ----A---- C:\Windows\system32\srcore.dll
2015-03-11 09:02:59 ----A---- C:\Windows\system32\rstrui.exe
2015-03-11 09:02:59 ----A---- C:\Windows\system32\pcasvc.dll
2015-03-11 09:02:59 ----A---- C:\Windows\system32\cryptnet.dll
2015-03-11 09:02:59 ----A---- C:\Windows\system32\blackbox.dll
2015-03-11 09:02:59 ----A---- C:\Windows\system32\audiosrv.dll
2015-03-11 09:02:58 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-03-11 09:02:58 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-03-11 09:02:58 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-03-11 09:02:58 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-03-11 09:02:57 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-03-11 09:02:57 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-03-11 09:02:57 ----A---- C:\Windows\system32\mfplat.dll
2015-03-11 09:02:57 ----A---- C:\Windows\system32\evr.dll
2015-03-11 09:02:56 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-03-11 09:02:56 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-03-11 09:02:56 ----A---- C:\Windows\system32\qdvd.dll
2015-03-11 09:02:56 ----A---- C:\Windows\system32\cryptsvc.dll
2015-03-11 09:02:56 ----A---- C:\Windows\system32\AudioSes.dll
2015-03-11 09:02:56 ----A---- C:\Windows\system32\audiodg.exe
2015-03-11 09:02:55 ----A---- C:\Windows\system32\msnetobj.dll
2015-03-11 09:02:54 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2015-03-11 09:02:54 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-03-11 09:02:54 ----A---- C:\Windows\system32\pcadm.dll
2015-03-11 09:02:54 ----A---- C:\Windows\system32\AudioEng.dll
2015-03-11 09:02:53 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2015-03-11 09:02:53 ----A---- C:\Windows\system32\rrinstaller.exe
2015-03-11 09:02:52 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-03-11 09:02:52 ----A---- C:\Windows\system32\smss.exe
2015-03-11 09:02:51 ----A---- C:\Windows\SYSWOW64\mfps.dll
2015-03-11 09:02:51 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-03-11 09:02:51 ----A---- C:\Windows\system32\pcawrk.exe
2015-03-11 09:02:51 ----A---- C:\Windows\system32\msmmsp.dll
2015-03-11 09:02:51 ----A---- C:\Windows\system32\mfps.dll
2015-03-11 09:02:51 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-03-11 09:02:51 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-03-11 09:02:51 ----A---- C:\Windows\system32\appidapi.dll
2015-03-11 09:02:49 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-03-11 09:02:49 ----A---- C:\Windows\system32\appidsvc.dll
2015-03-11 09:02:48 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-03-11 09:02:48 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2015-03-11 09:02:48 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2015-03-11 09:02:48 ----A---- C:\Windows\system32\srclient.dll
2015-03-11 09:02:48 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-03-11 09:02:48 ----A---- C:\Windows\system32\pcalua.exe
2015-03-11 09:02:48 ----A---- C:\Windows\system32\mfpmp.exe
2015-03-11 09:02:48 ----A---- C:\Windows\system32\EncDump.dll
2015-03-11 09:02:48 ----A---- C:\Windows\system32\csrsrv.dll
2015-03-11 09:02:48 ----A---- C:\Windows\system32\cryptsp.dll
2015-03-11 09:02:47 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-03-11 09:02:46 ----A---- C:\Windows\system32\drivers\appid.sys
2015-03-11 09:02:44 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-03-11 09:02:44 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-03-11 09:02:44 ----A---- C:\Windows\system32\spwmp.dll
2015-03-11 09:02:44 ----A---- C:\Windows\system32\dxmasf.dll
2015-03-11 09:02:43 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-03-11 09:02:43 ----A---- C:\Windows\system32\pcaevts.dll
2015-03-11 09:02:43 ----A---- C:\Windows\system32\apisetschema.dll
2015-03-11 09:02:42 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-03-11 09:02:42 ----A---- C:\Windows\system32\wmploc.DLL
2015-03-11 09:02:36 ----A---- C:\Windows\SYSWOW64\mferror.dll
2015-03-11 09:02:36 ----A---- C:\Windows\system32\mferror.dll
2015-03-11 09:01:51 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-03-11 09:01:51 ----A---- C:\Windows\system32\ubpm.dll
2015-03-11 09:01:49 ----A---- C:\Windows\system32\shell32.dll
2015-03-11 09:01:47 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-03-11 09:01:43 ----A---- C:\Windows\system32\schannel.dll
2015-03-11 09:01:43 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-03-11 09:01:43 ----A---- C:\Windows\system32\drivers\cng.sys
2015-03-11 09:01:42 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-03-11 09:01:42 ----A---- C:\Windows\system32\lsasrv.dll
2015-03-11 09:01:42 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-03-11 09:01:41 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-03-11 09:01:41 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-03-11 09:01:41 ----A---- C:\Windows\system32\wdigest.dll
2015-03-11 09:01:41 ----A---- C:\Windows\system32\msv1_0.dll
2015-03-11 09:01:41 ----A---- C:\Windows\system32\kerberos.dll
2015-03-11 09:01:40 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-03-11 09:01:40 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-03-11 09:01:40 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-03-11 09:01:40 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-03-11 09:01:40 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-03-11 09:01:40 ----A---- C:\Windows\system32\TSpkg.dll
2015-03-11 09:01:40 ----A---- C:\Windows\system32\sspisrv.dll
2015-03-11 09:01:40 ----A---- C:\Windows\system32\sspicli.dll
2015-03-11 09:01:40 ----A---- C:\Windows\system32\ncrypt.dll
2015-03-11 09:01:40 ----A---- C:\Windows\system32\lsass.exe
2015-03-11 09:01:40 ----A---- C:\Windows\system32\credssp.dll
2015-03-11 09:01:40 ----A---- C:\Windows\system32\auditpol.exe
2015-03-11 09:01:39 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-03-11 09:01:39 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-03-11 09:01:39 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-03-11 09:01:39 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-03-11 09:01:39 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-03-11 09:01:39 ----A---- C:\Windows\system32\secur32.dll
2015-03-11 09:01:39 ----A---- C:\Windows\system32\msobjs.dll
2015-03-11 09:01:39 ----A---- C:\Windows\system32\msaudite.dll
2015-03-11 09:01:39 ----A---- C:\Windows\system32\adtschema.dll
2015-03-11 09:01:28 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-03-11 09:01:28 ----A---- C:\Windows\system32\msctf.dll
2015-03-11 09:01:27 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-03-11 09:01:27 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-03-11 09:01:22 ----A---- C:\Windows\system32\win32k.sys
2015-03-11 08:58:14 ----A---- C:\Windows\system32\WMPhoto.dll
2015-03-11 08:58:13 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-03-11 00:54:04 ----D---- C:\Users\Ruda\AppData\Roaming\AnvsoftPdfTools
2015-03-08 16:49:02 ----D---- C:\aws
2015-03-08 16:33:00 ----A---- C:\IFRToolLog.txt
2015-03-05 20:21:02 ----D---- C:\Users\Ruda\AppData\Roaming\Tracker Software

======List of files/folders modified in the last 1 month======

2015-03-25 01:48:28 ----D---- C:\Windows\temp
2015-03-25 01:48:22 ----D---- C:\Windows\system32\config
2015-03-25 01:48:01 ----D---- C:\Windows\Prefetch
2015-03-25 01:46:50 ----D---- C:\Windows
2015-03-25 01:34:53 ----D---- C:\Users\Ruda\AppData\Roaming\Skype
2015-03-25 01:25:01 ----SHD---- C:\System Volume Information
2015-03-25 01:21:57 ----D---- C:\Program Files (x86)
2015-03-24 23:41:13 ----D---- C:\Windows\system32\FxsTmp
2015-03-24 17:41:38 ----D---- C:\Users\Ruda\AppData\Roaming\PhotoScape
2015-03-24 17:41:35 ----D---- C:\Users\Ruda\AppData\Roaming\uTorrent
2015-03-24 17:04:24 ----D---- C:\Windows\inf
2015-03-24 17:04:21 ----D---- C:\Windows\debug
2015-03-24 00:35:37 ----D---- C:\Windows\System32
2015-03-24 00:35:37 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-03-24 00:26:47 ----D---- C:\Windows\SysWOW64
2015-03-23 17:21:04 ----D---- C:\ProgramData\NVIDIA
2015-03-23 17:21:03 ----DC---- C:\Temp
2015-03-23 17:19:57 ----A---- C:\Windows\system32\nvvsvc.exe
2015-03-23 17:18:19 ----D---- C:\Windows\system32\drivers
2015-03-23 17:18:16 ----D---- C:\Program Files\NVIDIA Corporation
2015-03-23 17:17:52 ----D---- C:\Windows\system32\DriverStore
2015-03-23 17:17:17 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2015-03-23 17:17:17 ----A---- C:\Windows\system32\nvumdshimx.dll
2015-03-23 17:17:17 ----A---- C:\Windows\system32\nvapi64.dll
2015-03-23 17:17:14 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2015-03-23 17:06:33 ----A---- C:\Windows\Q-Dir.ini
2015-03-23 17:06:27 ----D---- C:\Program Files (x86)\Q-Dir
2015-03-22 22:31:41 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-22 21:08:39 ----D---- C:\Users\Ruda\AppData\Roaming\vlc
2015-03-22 13:11:23 ----D---- C:\Program Files (x86)\LastPass
2015-03-21 21:03:11 ----SHDC---- C:\Config.Msi
2015-03-20 12:55:33 ----A---- C:\Windows\system32\WSDScDrv.dll
2015-03-20 12:30:47 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-03-20 05:16:30 ----RSD---- C:\Windows\assembly
2015-03-20 05:16:26 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-03-20 05:13:26 ----D---- C:\Program Files\Microsoft Office 15
2015-03-19 10:04:20 ----D---- C:\Program Files (x86)\System Explorer
2015-03-17 13:03:12 ----D---- C:\ProgramData
2015-03-17 10:17:35 ----D---- C:\Windows\Microsoft.NET
2015-03-17 10:13:40 ----RD---- C:\Program Files
2015-03-16 10:45:24 ----RD---- C:\Program Files (x86)\Skype
2015-03-16 10:44:40 ----D---- C:\ProgramData\Skype
2015-03-14 16:35:37 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-03-14 16:25:42 ----D---- C:\Program Files\Common Files
2015-03-14 13:51:27 ----D---- C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint
2015-03-14 13:39:53 ----D---- C:\Windows\twain_32
2015-03-14 13:29:26 ----D---- C:\Windows\system32\catroot
2015-03-13 12:41:48 ----D---- C:\Users\Ruda\AppData\Roaming\Epson
2015-03-13 11:10:56 ----D---- C:\Windows\system32\catroot2
2015-03-13 02:50:09 ----D---- C:\Users\Ruda\AppData\Roaming\XnView
2015-03-13 02:04:25 ----D---- C:\Windows\Logs
2015-03-13 01:41:23 ----D---- C:\Program Files\Defraggler
2015-03-12 03:49:17 ----D---- C:\Windows\rescache
2015-03-12 00:22:29 ----D---- C:\Users\Ruda\AppData\Roaming\ArcSoft
2015-03-11 15:07:16 ----AD---- C:\ProgramData\Temp
2015-03-11 10:35:53 ----D---- C:\Windows\winsxs
2015-03-11 10:28:27 ----D---- C:\Program Files\Windows Media Player
2015-03-11 10:28:26 ----D---- C:\Windows\SYSWOW64\Dism
2015-03-11 10:28:26 ----D---- C:\Program Files (x86)\Windows Media Player
2015-03-11 10:28:25 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-03-11 10:28:22 ----D---- C:\Windows\system32\Dism
2015-03-11 10:28:21 ----D---- C:\Windows\system32\cs-CZ
2015-03-11 10:28:20 ----D---- C:\Windows\system32\en-US
2015-03-11 10:28:15 ----D---- C:\Windows\system32\Boot
2015-03-11 10:27:59 ----D---- C:\Program Files\Internet Explorer
2015-03-11 10:27:57 ----D---- C:\Windows\SYSWOW64\en-US
2015-03-11 10:27:51 ----D---- C:\Program Files (x86)\Internet Explorer
2015-03-11 10:16:30 ----D---- C:\Windows\system32\MRT
2015-03-11 09:55:10 ----A---- C:\Windows\system32\MRT.exe
2015-03-10 17:13:56 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2015-03-10 16:26:58 ----D---- C:\Program Files (x86)\Ashampoo
2015-03-10 16:13:09 ----D---- C:\Users\Ruda\AppData\Roaming\Ashampoo
2015-03-10 16:11:33 ----D---- C:\ProgramData\Ashampoo
2015-03-09 10:55:16 ----D---- C:\Program Files (x86)\Recepty doma
2015-03-09 10:55:07 ----A---- C:\Windows\SYSWOW64\mediarcpt.dll
2015-03-09 03:03:08 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2015-03-09 03:02:31 ----D---- C:\Windows\registration
2015-03-09 00:43:55 ----D---- C:\ProgramData\Package Cache
2015-03-09 00:43:31 ----D---- C:\Program Files\Tracker Software
2015-03-08 16:49:54 ----D---- C:\Windows\pss
2015-03-08 16:49:03 ----D---- C:\Users\Ruda\AppData\Roaming\ASUS WebStorage
2015-03-08 16:12:42 ----D---- C:\Windows\Tasks
2015-03-08 16:12:42 ----D---- C:\Windows\system32\wfp
2015-03-08 16:12:32 ----D---- C:\Windows\system32\wbem
2015-03-08 16:11:13 ----D---- C:\Windows\system32\Tasks
2015-03-08 16:11:13 ----D---- C:\Windows\system32\Msdtc
2015-03-08 16:11:13 ----D---- C:\Windows\system32\drivers\etc
2015-03-08 16:11:13 ----D---- C:\Users\Ruda\AppData\Roaming\PicPick
2015-03-08 16:11:13 ----D---- C:\Program Files\CCleaner
2015-03-08 16:11:13 ----D---- C:\Program Files (x86)\Plus500
2015-03-08 16:09:06 ----D---- C:\Windows\Minidump
2015-03-02 18:29:44 ----D---- C:\Program Files (x86)\Google
2015-03-01 19:02:42 ----D---- C:\ProgramData\ABBYY
2015-03-01 19:02:42 ----D---- C:\PerfLogs
2015-03-01 18:38:32 ----D---- C:\ProgramData\ProgDVB
2015-03-01 13:17:55 ----D---- C:\Program Files (x86)\TeamViewer
2015-03-01 12:22:20 ----D---- C:\Program Files (x86)\LibreOffice 4
2015-03-01 12:18:14 ----RSD---- C:\Windows\Fonts
2015-02-28 14:57:17 ----HD---- C:\ProgramData\ArcSoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-12-23 568600]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2000-01-01 20464]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2015-03-23 32544]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 CFRMD;CFRMD; C:\Windows\system32\DRIVERS\CFRMD.sys [2014-06-26 37976]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\Windows\System32\DRIVERS\cmderd.sys [2015-01-30 20184]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\system32\DRIVERS\cmdguard.sys [2015-01-30 792648]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2015-01-30 45880]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2015-01-30 104608]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
R3 Afc;PPdus ASPI Shell; C:\Windows\SysWOW64\drivers\Afc.sys [2015-02-25 22784]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2012-02-29 17152]
R3 anvsnddrv;AnvSoft Virtual Sound Device; C:\Windows\system32\drivers\anvsnddrv.sys [2015-01-06 33872]
R3 AsusVBus;AsusVBus; C:\Windows\system32\DRIVERS\AsusVBus.sys [2012-04-12 35968]
R3 AsusVTouch;AsusVTouch; C:\Windows\system32\DRIVERS\AsusVTouch.sys [2012-04-12 16512]
R3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2012-05-31 36480]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2014-04-06 3979776]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2012-05-31 341120]
R3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2012-05-31 111232]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2012-05-31 30848]
R3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2012-05-31 168064]
R3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2012-05-31 68736]
R3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2012-05-31 281472]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2014-03-18 589000]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2012-02-24 80384]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2012-02-19 200488]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-01-29 5363200]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2000-01-01 342528]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2000-01-01 358896]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2000-01-01 795632]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2000-01-01 117912]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2000-01-01 100312]
R3 MQAC;@mqutil.dll,-6101; C:\Windows\system32\drivers\mqac.sys [2009-07-14 189440]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-12-13 19600]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 cpuz134;cpuz134; \??\C:\Users\Ruda\AppData\Local\Temp\cpuz134\cpuz134_x64.sys []
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2013-04-22 21712]
S3 EsgScanner;EsgScanner; C:\Windows\system32\DRIVERS\EsgScanner.sys [2015-01-31 22704]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2014-03-31 58056]
S3 IT9135BDA;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2014-10-22 164864]
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2014-12-11 82816]
S3 PCWinSoft;ScreenCamera Video Camera; C:\Windows\system32\DRIVERS\scrcamhrdrv_x64.sys [2012-10-11 241800]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2014-12-22 16152]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2015-02-25 42496]
S3 usbser;USB Serial Emulation Driver; C:\Windows\system32\DRIVERS\usbser.sys [2013-08-29 33280]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2015-02-25 759048]
R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2015-03-14 109056]
R2 AnviCsbSvc;Anvi Cloud System Booster Speed Service; C:\Program Files (x86)\Anvisoft\Cloud System Booster\CSBSvc.exe [2015-03-25 42680]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2011-11-21 80512]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [2012-04-13 277120]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2012-05-31 119424]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-21 96896]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-03-16 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-03-16 1767520]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2015-03-20 2714800]
R2 CLPSLauncher;COMODO LPS Launcher; C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [2014-12-25 70864]
R2 CmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2015-02-04 7618952]
R2 DirMngr;DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [2015-02-11 216576]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2014-11-27 2370240]
R2 EPSON_PM_RPCV4_05;EPSON V3 Service4(05); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE [2012-02-27 151648]
R2 EpsonScanSvc;Epson Scanner Service; C:\Windows\system32\EscSvc64.exe [2015-03-14 135824]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-12-13 1148560]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-02-18 2490216]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2000-01-01 169432]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-02-18 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2000-01-01 390616]
R2 MSMQ;@mqutil.dll,-6102; C:\Windows\system32\mqsvc.exe [2009-07-14 9216]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2015-02-21 29293408]
R2 MSSQLSERVER;SQL Server (MSSQLSERVER); c:\Program Files (x86)\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe [2015-02-21 29293408]
R2 NetMsmqActivator;Adaptér naslouchání Net.Msmq; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-01-14 139944]
R2 NetPipeActivator;Adaptér naslouchání Net.Pipe; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-01-14 139944]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-12-13 1701520]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-12-13 19823248]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-03-23 927520]
R2 simptcp;@%SystemRoot%\system32\simptcp.dll,-200; C:\Windows\System32\tcpsvcs.exe [2009-07-14 10240]
R2 SNMP;@%SystemRoot%\system32\snmp.exe,-3; C:\Windows\System32\snmp.exe [2010-11-20 49664]
R2 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2015-02-21 238944]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2015-02-21 153440]
R2 ssinstall;SInstalátor; C:\Windows\SysWOW64\ssins.exe [2013-11-01 2324216]
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2015-02-04 2265304]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-01-14 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-01-14 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-20 107912]
S2 IEEtwCollectorService;Internet Explorer ETW Collector Service; C:\Windows\system32\IEEtwCollector.exe [2015-03-11 114688]
S2 NetTcpActivator;Adaptér naslouchání Net.Tcp; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-01-14 139944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-20 268464]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-01-14 50864]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-01-29 279000]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-20 107912]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2015-02-26 136120]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-03-22 148080]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-03-02 150600]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2014-03-02 5132888]
S3 SystemExplorerHelpService;System Explorer Service; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [2014-12-20 820960]
S4 CISVC;@%systemroot%\system32\CISVC.EXE,-1; C:\Windows\system32\CISVC.EXE [2009-07-14 19456]
S4 GeekBuddyRSP;GeekBuddyRSP Server; C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2014-12-25 2327248]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2015-02-21 44384]
S4 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-03-01 5436176]

-----------------EOF-----------------

Zdravim

Cloud Booster odinstalujte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Po spusteni probehne stazeni databaze
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  resethosts;
  emptyclsid;
  IEdefaults;
  FFdefaults;
  CHRdefaults;
  emptyIEcache;
  emptyFFcache;
  emptyCHRcache;
  emptyalltemp;
  emptyflash;
  emptyjava;
  emptyrecycle.bin;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

# AdwCleaner v4.113 - Logfile created 25/03/2015 at 10:22:22
# Updated 22/03/2015 by Xplode
# Database : 2015-03-23.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Ruda - RUDA-PC
# Running from : C:\Users\Ruda\Downloads\adwcleaner_4.113.exe
# Option : Cleaning

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plus500
Folder Deleted : C:\Program Files (x86)\Plus500
Folder Deleted : C:\Users\Ruda\AppData\Local\Plus500
Folder Deleted : C:\Users\Ruda\AppData\Local\Innovative Solutions
Folder Deleted : C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Plus500
File Deleted : C:\Windows\AppPatch\Custom\{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb
File Deleted : C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_olfeabkoenfaoljndfecamgilllcpiak_0.localstorage

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
Key Deleted : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
Key Deleted : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
Key Deleted : HKCU\Software\Pokki
Key Deleted : HKCU\Software\Appscion
Key Deleted : HKLM\SOFTWARE\GeekBuddyRSP

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17689


-\\ Mozilla Firefox v36.0.4 (x86 cs)


-\\ Google Chrome v41.0.2272.101


-\\ Chromium v


-\\ Comodo Dragon v36.1.1.21


-\\ Opera v0.0.0.0


*************************

AdwCleaner[R0].txt - [1552 bytes] - [21/02/2015 03:18:56]
AdwCleaner[R1].txt - [2551 bytes] - [25/03/2015 10:19:51]
AdwCleaner[S0].txt - [1636 bytes] - [21/02/2015 03:23:33]
AdwCleaner[S1].txt - [2425 bytes] - [25/03/2015 10:22:22]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [2484 bytes] ##########



Zoek.exe v5.0.0.0 Updated 23-March-2015
Tool run by Ruda on st 25.03.2015 at 10:33:30,06.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\PerfLogs\Desktop\zoek.exe [Scan all users] [Script inserted]

===== Runcheck 10:37:35,05 =====

--- Create Environment Variables 10:37:44,17
--- Create System Restore Point 10:38:35,73
--- Checking Input 10:39:52,86

Zoek.exe v5.0.0.0 Updated 23-March-2015
Tool run by Ruda on st 25.03.2015 at 10:33:30,06.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\PerfLogs\Desktop\zoek.exe [Scan all users] [Script inserted]

===== Runcheck 10:37:35,05 =====

--- Create Environment Variables 10:37:44,17
--- Create System Restore Point 10:38:35,73
--- Checking Input 10:39:52,86
--- Reset Hosts File 10:41:41,45
--- AU AppData Check 10:41:44,52
--- Remove From Windows Installer 10:42:22,29

Pockejte az zoek dokonci svou cinnost, restartuje PC a pak dejte log, ktery bude c:\zoek_result.log

Snad je to takhle správně.Jen mne překvapila doba procesu.

Zoek.exe v5.0.0.0 Updated 23-March-2015
Tool run by Ruda on st 25.03.2015 at 11:31:39,53.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\PerfLogs\Desktop\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2015-03-25-094144.log 1302 bytes
C:\zoek-results2015-03-25-101145.log 1267 bytes

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\Anvisoft deleted successfully
C:\PROGRA~2\COMMON~1\ReGet Shared deleted successfully
C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully
C:\Program Files\VideoLAN deleted successfully
C:\PROGRA~3\firebird deleted successfully
C:\PROGRA~3\PicPick deleted successfully
C:\PROGRA~3\tmp deleted successfully
C:\PROGRA~3\VS Revo Group deleted successfully
C:\Users\Guest\AppData\Roaming\LastPass deleted successfully
C:\Users\Ruda\AppData\Roaming\ABBYY FineReader Engine 9.0 deleted successfully
C:\Users\Ruda\AppData\Roaming\DiskDefrag deleted successfully
C:\Users\Ruda\AppData\Roaming\DMCache deleted successfully
C:\Users\Ruda\AppData\Roaming\Maxthon3 deleted successfully
C:\Users\Ruda\AppData\Roaming\NetMeter deleted successfully
C:\Users\Ruda\AppData\Roaming\PDF Architect 2 deleted successfully
C:\Users\Ruda\AppData\Roaming\PeerNetworking deleted successfully
C:\Users\Ruda\AppData\Roaming\The Complete Genealogy Reporter - FTB deleted successfully
C:\Users\Ruda\AppData\Roaming\WiseUpdate deleted successfully
C:\Users\Ruda\AppData\Roaming\Yandex deleted successfully
C:\Users\Ruda\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A} deleted successfully
C:\Users\Guest\AppData\Local\VirtualStore deleted successfully
C:\Users\Ruda\AppData\Local\ABBYY FineReader Engine 9.0 deleted successfully
C:\Users\Ruda\AppData\Local\Application Data deleted successfully
C:\Users\Ruda\AppData\Local\cache deleted successfully
C:\Users\Ruda\AppData\Local\Installer deleted successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\CrashDumps deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\SearchScopes\{206BE1CD-D8E5-4E8B-82A6-7642EF131402} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{12DAD4E4-2B32-4B9A-8017-28F648EBE0F6} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{15B851AF-A4B9-43EF-97D3-28E1B4A5DB9B} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1642130b-1055-4f57-bc4c-8591914b9080} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{172E189F-9370-44D5-9085-DE48F57A18C} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1902485B-CE75-42C1-BA2D-57E660793D9A} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{19BAE2FC-3F3-4B51-B97B-AF12D2D41C5B} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{19F36853-C5C0-4A70-99BD-A3652E5B87B9} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1C3D7E4C-C3CF-402D-A658-389927B7458F} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2052D732-4E0E-469B-B1D3-E62E3AD178F} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2386C339-F6AF-4223-8836-A4AE9A10F9AB} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2A850B99-8451-40FA-A7E8-481AA631B934} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2EB885A1-B5A5-42D3-BE90-4185654CBFA5} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{318AD7E4-BD78-4EBC-93E8-622367FA14A0} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{33889032-BB10-40C6-B886-FD7D1D9E4798} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{338EAA14-BD17-43F8-A2F5-52242A971DE} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{340123B-EE4D-4864-9DFC-5B3768C38AD6} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{36D7B5C2-BACE-4399-A27B-7956294541A} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3853ee3d-0b43-460c-9494-d380b4c991cf} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3AC254D2-9172-4099-964F-408F65E084D7} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3C806B14-5171-4352-ADE-6EEF1499E28D} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3de94459-ccd3-435c-b568-a6701ffcc998} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3EBD62F7-D4EF-48BB-A541-D8FEFD297C1} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3ECA8F53-B877-434F-9CF-9E1F9E73E8B} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3EDACB72-DDCE-4754-AF7E-D1F36B78A4} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3F182DFE-2E57-47B6-9F52-AB189ACF907C} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4001E2FF-CFAB-4E30-A9FE-98CC6AE89ABE} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{42E8EAD9-EC24-46E2-9DE8-4548B3137911} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{44E9C5B9-CA22-4E77-B1D4-9C3F1BB98224} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4B207841-B8B6-4223-9959-A72A9936754} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4CDA130E-C0D1-4FCF-8DC3-A05D9CF4DBF0} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4D321ED5-B96D-428F-94C6-808394E8DDD} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4D522062-1B2-4086-B276-21C824A4E0AC} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4d7fa28e-846d-41e9-838f-fc560cd261e4} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4DFE7DAD-332-4D2D-863D-EA342A601553} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4e38b11d-9057-4aa7-ada8-7fecb1c316d1} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4e4075fd-ac81-4884-85b8-58cbe9923800} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{52184D84-220D-4D1F-8443-CC15D48411A4} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{53411880-4D9C-4BBC-AECF-88D0DBB0C7} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{58CB3905-FEAA-4BE4-A894-B810331A9B3} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5CD34102-B29-47AD-9EC-79D47EEA5BBE} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E189942-3E83-443B-A3F1-133EFC36ECD} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5FFD6886-DC03-4BA4-AED3-40B5FBC378A} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{61061F4F-47B3-4508-8E9-3342A4E5AEB2} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{61FE4973-AD20-456C-89F6-701986F4B1} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{63BA87CB-F92C-4581-A453-B359D475558} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{658e9218-ea02-4e4a-8610-b55724e6fde4} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{65922C97-798C-443A-84B8-541B1178F3CF} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{66689D2F-CA5E-494B-BDAC-DBF584A767F} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{66CE0B01-6F93-425F-AB8B-BB0560F180} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6A244838-DF7E-45D0-B98C-1E85F8393055} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6E09F45F-1567-4DCF-A0F3-C6C312A9AE90} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6EAA5245-4B25-4392-99C3-76CCCC5FD3DE} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7029efbc-8bce-43f3-8c0f-c7e5711bd313} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7428DA49-CADB-4DCF-899C-F9C547B737A0} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7477E0A8-AEAC-4F9C-B916-DDD120BCD0EE} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{75353410-F5FC-44EA-9034-CCB0BAFDB36F} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7CC4C474-46A9-4A63-8960-837DD9E0A21E} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{808CE38D-F837-475F-824D-4750A6CE6369} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{81794A46-BBA6-4E0A-886F-ADA42E1D224C} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{82C219D4-8C4A-4806-A8F3-524076CE7098} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8300FC63-AF28-4724-A794-BFFCAE766540} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83C6683E-5DEA-41AE-97A-72BD24B2669A} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85bf9d4f-b8bb-41eb-819d-e657b6d5ae4e} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{88C40F35-7636-4C34-BE94-D9805C9BA5F2} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8CC12FF1-CD70-47ED-B581-31103D1C5874} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8F52A6A4-5433-4E62-80C4-188BA4857BBF} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9071A61D-418A-42CD-9CC0-99727A333BF} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{90982F15-366F-45FC-A653-683A22982688} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{941FA44-374F-4404-82BF-9CBD725ECD2E} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{98C5066B-40E0-4106-B820-3393DD68DFB2} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{992978C6-C08A-4A4F-B282-B168E4C3468A} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9AF589F3-629-4C4A-A027-134AC93B74} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b6d63c0-e9df-4eef-89aa-5526d10b0f52} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9F87B3E0-F0E-4DAF-8AA0-B823FB956A48} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9FE5AC52-6FA3-4729-B289-619CF86917B1} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a1efd8e5-9cb7-4785-bf84-0b04af856444} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A22CC2D9-C1B9-4AE9-9DC0-C8F4C6060A0} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A31D9C3D-574C-43F5-AE8-999FFEAA988E} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A655F9DA-ADF0-4E1C-AC68-72C4C0403617} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A6ECBE2-6DC0-4EE4-B6D4-C66FAB6DFD1} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A8BEC394-404E-423C-AF93-F2F991FDA441} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AD5C5971-694E-4AB5-843C-6CB18B6A1B66} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{afb580df-6f69-4e7c-9632-1acd7fc0c8af} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B3FEAEF7-ECA6-489A-A26E-6628DA4A3AA} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B678F0D-D636-4C71-A627-A5483EBB7511} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B77ABD7C-B3C9-4FC7-BA6D-DC565A9CD0CC} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B79825DD-93A0-4FE7-A889-35D87D9A8BE0} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B7F06565-37B6-483D-96E6-6C43B8906237} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BE98A4D8-68F9-4529-B191-FC15BFF4EA} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BFF12695-8409-4F23-92C6-7B910C3FDB2B} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C1C227EE-6A3F-41E0-A32E-F535873E313} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C223E19D-9BF2-4DEC-8652-EA56209B7C5} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C22B25F0-57EF-4EB4-AE4D-D05C125EF558} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c5b247f3-8e38-44f8-bd32-a51045d39fc8} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C93BF999-C397-4313-8C64-5F2962438B28} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CA3E3AB2-D707-4C82-BBE7-3BEB9E1DB89} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CACA8738-D246-4B45-AA65-517B286FB357} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CE41E83-5C19-4F1A-AFC4-647E26055E5} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CF2DE927-6224-405C-A5DD-4570A7F52EA} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFA6C748-38D7-43E8-A24-779A470EBD8} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D02DC46E-4180-4CD5-9766-FC35108F343F} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D14F84C-10E7-464C-8844-D0D5DD342163} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d3efca71-b884-4c84-98b9-bcef5a241416} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D63CE59E-1E5C-463F-98F1-F1FADC873B23} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7CD27FB-5013-42B3-ADB4-35768B3D1782} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d7f6d550-ad07-40ed-990c-e807d096a4b5} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{db60d9f2-5ef4-4cf6-ae52-b43589832aa5} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DBB61773-217A-4416-9A93-3A446EC3961} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DFAB402E-A822-4851-951C-A8FC671D2B6} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0DACC63-037F-46EE-AC02-E4C7B0FBFEB4} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E1944394-D514-4930-B848-E65A8245B463} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ed035aad-8df6-4d44-b4c8-162f542baf76} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F3A2994-715E-4DAF-A085-2BBAC47F950} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F59F17E6-A0A2-4589-9C53-7647F9C49CC} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f7ec4c87-da68-46f6-bfdb-9f0eb66f08c6} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FC91A318-DD1E-4F8C-BFBF-27D248AFF7B8} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FFE05106-D528-4610-9858-E8A6752FBC46} deleted successfully
HKEY_USERS\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FFFF1356-A8DE-4CE7-B06C-CBC1DC9E1B3} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1642130b-1055-4f57-bc4c-8591914b9080} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3853ee3d-0b43-460c-9494-d380b4c991cf} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4e38b11d-9057-4aa7-ada8-7fecb1c316d1} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{658e9218-ea02-4e4a-8610-b55724e6fde4} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7029efbc-8bce-43f3-8c0f-c7e5711bd313} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b6d63c0-e9df-4eef-89aa-5526d10b0f52} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{afb580df-6f69-4e7c-9632-1acd7fc0c8af} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c5b247f3-8e38-44f8-bd32-a51045d39fc8} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d3efca71-b884-4c84-98b9-bcef5a241416} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d7f6d550-ad07-40ed-990c-e807d096a4b5} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ed035aad-8df6-4d44-b4c8-162f542baf76} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f7ec4c87-da68-46f6-bfdb-9f0eb66f08c6} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\{ABDE892B-13A8-4d1b-88E6-365A6E755758} deleted successfully

==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\nr746uxa.default\prefs.js:

Added to C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\nr746uxa.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\Ruda\AppData\Roaming\Instantbird\Profiles\fvpzpc8n.default\prefs.js:

Added to C:\Users\Ruda\AppData\Roaming\Instantbird\Profiles\fvpzpc8n.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\prefs.js:
user_pref("browser.startup.homepage", "https://www.seznam.cz/");

Added to C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\97apsu2u.default-1403817709297\prefs.js:

Added to C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\97apsu2u.default-1403817709297\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\r2ujku5h.default-1413400396589\prefs.js:
user_pref("browser.startup.homepage", "https://www.seznam.cz/?logged=1#obsah");

Added to C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\r2ujku5h.default-1413400396589\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\Ruda\AppData\Roaming\pickr-f26139c4b25c7fa88b6d25f2498f8d67\Profiles\7uv2ja8c.default\prefs.js:

Added to C:\Users\Ruda\AppData\Roaming\pickr-f26139c4b25c7fa88b6d25f2498f8d67\Profiles\7uv2ja8c.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\Ruda\AppData\Roaming\Thunderbird\Profiles\5reclxko.default\prefs.js:

Added to C:\Users\Ruda\AppData\Roaming\Thunderbird\Profiles\5reclxko.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\nr746uxa.default

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs_25.03.2015_1414_.backup

ProfilePath: C:\Users\Ruda\AppData\Roaming\Instantbird\Profiles\fvpzpc8n.default

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs_25.03.2015_1414_.backup

ProfilePath: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081

user.js not found
---- Lines pirrit removed from prefs.js ----
user_pref("extensions.speeddial.thumbnail-35-label", "Odebrat Pirrit");
user_pref("extensions.speeddial.thumbnail-35-url", "http://www.remove-pcvirus.com/cz/odebrat-pirrit/");
---- Lines ilivid removed from prefs.js ----
user_pref("extensions.s3gt.always_domain_question_www_ilivid_com", false);
user_pref("extensions.s3gt.always_domain_translate_www_ilivid_com", true);
---- FireFox user.js and prefs.js backups ----

prefs_25.03.2015_1414_.backup

ProfilePath: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\97apsu2u.default-1403817709297

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs_25.03.2015_1414_.backup

ProfilePath: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\r2ujku5h.default-1413400396589

user.js not found
---- Lines Search removed from prefs.js ----
user_pref("extensions.speeddial.thumbnail-3-label", "MyWebSearch Home Page");
---- Lines WebSearch removed from prefs.js ----
user_pref("extensions.speeddial.thumbnail-3-url", "http://home.mywebsearch.com/index.jhtml ... 4D4B-8D20-
---- FireFox user.js and prefs.js backups ----

prefs_25.03.2015_1414_.backup

ProfilePath: C:\Users\Ruda\AppData\Roaming\pickr-f26139c4b25c7fa88b6d25f2498f8d67\Profiles\7uv2ja8c.default

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs_25.03.2015_1414_.backup

ProfilePath: C:\Users\Ruda\AppData\Roaming\Thunderbird\Profiles\5reclxko.default

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs_25.03.2015_1414_.backup

==== Deleting Files \ Folders ======================

C:\PROGRA~2\Anvisoft not found
C:\B7944113 not found
C:\PROGRA~2\logview4net deleted
C:\Users\Ruda\AppData\Roaming\FlashGetBHO deleted
C:\PROGRA~3\DivX deleted
C:\PROGRA~2\GUM6A93.tmp deleted
C:\PROGRA~2\GUMC10E.tmp deleted
C:\PROGRA~2\Participatory Culture Foundation deleted
C:\PROGRA~2\VideoPlayer deleted
C:\104890-15[1].js deleted
C:\104890-1[1].js deleted
C:\104890-1[1]_1.js deleted
C:\104890-9[1].js deleted
C:\104890-9[2].js deleted
C:\105098-15[1].js deleted
C:\105098-1[1].js deleted
C:\105098-1[1]_1.js deleted
C:\105098-9[1].js deleted
C:\105098-9[1]_1.js deleted
C:\10900[1].js deleted
C:\Adform.Bootstrap[1].js deleted
C:\Adform.RMB[1].js deleted
C:\adfscript[1].js deleted
C:\adfscript[1]_1.js deleted
C:\adfscript[1]_2.js deleted
C:\adfscript[2].js deleted
C:\adfscript[2]_1.js deleted
C:\adfscript[3].js deleted
C:\adfscript[3]_1.js deleted
C:\adfserve[1].js deleted
C:\adfserve[1]_1.js deleted
C:\adfserve[1]_2.js deleted
C:\adfserve[1]_3.js deleted
C:\adfserve[2].js deleted
C:\adfserve[2]_1.js deleted
C:\adfserve[2]_2.js deleted
C:\adsbygoogle[1].js deleted
C:\Advert.Advantage.Reloader[1].js deleted
C:\Advert.Advantage[1].js deleted
C:\advertisement[1].js deleted
C:\ad[1].js deleted
C:\ad[2].js deleted
C:\ajs[1].js deleted
C:\auth[1].js deleted
C:\barebone_packed[1].js deleted
C:\base[1].js deleted
C:\bootstrap[1].js deleted
C:\browser[1].js deleted
C:\channels[1].js deleted
C:\Controls.Google.AdSense[1].js deleted
C:\Controls.Google.Search[1].js deleted
C:\Controls.Google.Tracker[1].js deleted
C:\Controls.Page.FontSize[1].js deleted
C:\Controls.Page.GigaMania[1].js deleted
C:\Controls.Page.Header[1].js deleted
C:\Controls.Page.Rotator.Tip[1].js deleted
C:\Controls.Page.RssHub[1].js deleted
C:\Controls.Page.Society[1].js deleted
C:\Controls.Page[1].js deleted
C:\counter[1].js deleted
C:\EngagementTracker.v13[1].js deleted
C:\facebook_api_loader[1].js deleted
C:\flowplayer.min[1].js deleted
C:\frame[1].js deleted
C:\gfk_telekom_onexit[1].js deleted
C:\impact_dw[1].js deleted
C:\imshow[1].js deleted
C:\imshow[1]_1.js deleted
C:\imshow[1]_2.js deleted
C:\inscreen_lib[1].js deleted
C:\javascript[2].js deleted
C:\javascript[2]_1.js deleted
C:\javascript[3].js deleted
C:\javascript[7].js deleted
C:\javascript[7]_1.js deleted
C:\javascript[8].js deleted
C:\jquery.cookie[1].js deleted
C:\jquery.login-handler[1].js deleted
C:\jquery.pinify.min[1].js deleted
C:\jquery.query-2.1.7[1].js deleted
C:\misc[1].js deleted
C:\osd[1].js deleted
C:\rexdot[2].js deleted
C:\rexdot[3].js deleted
C:\rexdot[4].js deleted
C:\rexdot[4]_1.js deleted
C:\rexdot[6].js deleted
C:\ScriptResource[1].js deleted
C:\script[1].js deleted
C:\script[2].js deleted
C:\show_ads[1].js deleted
C:\SWFObject[1].js deleted
C:\tracker[1].js deleted
C:\tracking[1].js deleted
C:\user.js deleted
C:\var=ccauds[1].js deleted
C:\WebResource[1].js deleted
C:\WebResource[1]_1.js deleted
C:\webtrends[1].js deleted
C:\wtid[1].js deleted
C:\xgemius[1].js deleted
C:\youtube[1].js deleted
C:\zive.common[1].js deleted
C:\Users\Ruda\AppData\Roaming\zulagames.ico deleted
C:\Users\Ruda\AppData\Roaming\All CPU MeterV3_Settings.ini deleted
C:\Users\Ruda\AppData\Roaming\CamStudio.Producer.Data.ini deleted
C:\Users\Ruda\AppData\Roaming\CamStudio.Producer.ini deleted
C:\Users\Ruda\AppData\Roaming\Network Meter_Settings.ini deleted
C:\Users\Ruda\AppData\Roaming\Network Meter_Usage.ini deleted
C:\Users\Ruda\AppData\Roaming\pcouffin.log deleted
C:\Users\Ruda\AppData\Roaming\Alawar_Entertainment deleted
C:\Users\Ruda\AppData\Roaming\ProductData deleted
C:\PROGRA~3\ProductData deleted
C:\PROGRA~3\InstallMate deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Ruda\AppData\Local\Pokki deleted
C:\Users\Ruda\AppData\Local\CrashRpt deleted
C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk deleted
C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki deleted
C:\Users\Ruda\AppData\LocalLow\ADSRemoval deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\Application Updater deleted
C:\Windows\wininit.ini deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\gpt.ini deleted
C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted
C:\Windows\SysWOW64\AniGIF.ocx deleted
C:\Windows\SysWow64\AI_RecycleBin deleted
C:\Windows\SysWow64\searchplugins deleted
C:\Windows\SysWow64\Extensions deleted
C:\Users\Ruda\Documents\Add-in Express deleted
C:\Users\DefaultAppPool\AppData\Roaming\lpuninstall.exe deleted
C:\Users\Ruda\AppData\Local\MSGBOX.EXE deleted
"C:\Windows\Installer\d03c866.msi" deleted
"C:\Users\Ruda\AppData\Local\{2AD90493-B67A-481D-A553-D22B73F8EAB5}" deleted
"C:\Users\Ruda\AppData\Local\{71DED261-FF4C-4986-A45B-7F72C0DDBF10}" deleted
"C:\Users\Ruda\AppData\Local\{A034DB76-FB5A-4BD7-A4F6-4776FBCD9F50}" deleted
"C:\ProgramData\mntemp" deleted
"C:\Users\Ruda\AppData\Roaming\temp\ICON.html" deleted
"C:\Users\Ruda\AppData\Roaming\temp" deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\nr746uxa.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\Ruda\AppData\Roaming\Instantbird\Profiles\fvpzpc8n.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\97apsu2u.default-1403817709297
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\r2ujku5h.default-1413400396589
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\Ruda\AppData\Roaming\pickr-f26139c4b25c7fa88b6d25f2498f8d67\Profiles\7uv2ja8c.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\Ruda\AppData\Roaming\Thunderbird\Profiles\5reclxko.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Proxy Settings ======================

ProfilePath: C:\Users\Ruda\AppData\Roaming\Thunderbird\Profiles\5reclxko.default
user_pref("network.proxy.type", 4);

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"e-webprint@epson.com"="C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on" [21.03.2015 21:03]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\nr746uxa.default
- Iplay Gamesbar - %ProfilePath%\extensions\{7ffa5f54-1c4f-46de-8576-c271a0dd482f}

ProfilePath: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081
- E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
- Undetermined - %ProfilePath%\extensions\8df7d3cb5d8f27aa6644713773c12aa88f17956b0e559de2c8622a846cab9148_lp.key
- Undetermined - %ProfilePath%\extensions\8df7d3cb5d8f27aa6644713773c12aa88f17956b0e559de2c8622a846cab9148_lp.key
- LastPass - %ProfilePath%\extensions\support@lastpass.com
- S3.Google Translator - %ProfilePath%\extensions\s3google@translator.xpi
- Speed Dial - %ProfilePath%\extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
- Tab Mix Plus - %ProfilePath%\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi

ProfilePath: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\97apsu2u.default-1403817709297
- Undetermined - %ProfilePath%\extensions\8df7d3cb5d8f27aa6644713773c12aa88f17956b0e559de2c8622a846cab9148_lp.key
- Undetermined - %ProfilePath%\extensions\8df7d3cb5d8f27aa6644713773c12aa88f17956b0e559de2c8622a846cab9148_lp.key
- Undetermined - %ProfilePath%\extensions\idabarff@westbyte.com
- Internet Download Accelerator Media Monitor - %ProfilePath%\extensions\idamm@westbyte.com
- Undetermined - %ProfilePath%\extensions\idapluginff@westbyte.com
- Undetermined - %ProfilePath%\extensions\idaremote@westbyte.com
- LastPass - %ProfilePath%\extensions\support@lastpass.com
- Undetermined - %ProfilePath%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

ProfilePath: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\r2ujku5h.default-1413400396589
- Undetermined - %ProfilePath%\extensions\8df7d3cb5d8f27aa6644713773c12aa88f17956b0e559de2c8622a846cab9148_lp.key
- Undetermined - %ProfilePath%\extensions\8df7d3cb5d8f27aa6644713773c12aa88f17956b0e559de2c8622a846cab9148_lp.key
- Undetermined - %ProfilePath%\extensions\idabarff@westbyte.com
- Internet Download Accelerator Media Monitor - %ProfilePath%\extensions\idamm@westbyte.com
- Undetermined - %ProfilePath%\extensions\idapluginff@westbyte.com
- Undetermined - %ProfilePath%\extensions\idaremote@westbyte.com
- LastPass - %ProfilePath%\extensions\support@lastpass.com
- S3.Google Translator - %ProfilePath%\extensions\s3google@translator.xpi
- Google Translator for Firefox - %ProfilePath%\extensions\translator@zoli.bod.xpi
- Speed Dial - %ProfilePath%\extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
- Tab Mix Plus - %ProfilePath%\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi

ProfilePath: C:\Users\Ruda\AppData\Roaming\Thunderbird\Profiles\5reclxko.default
- Thunderbird Chat Notification - %ProfilePath%\extensions\tbchatnotification@forrest79.net
- Enigmail - %ProfilePath%\extensions\{847b3a00-7ab1-11d4-8f02-006008948af5}

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
- Skype Click to Call - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081
18CF51689186AEB9D1D149AEB0E92D03 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL - Microsoft Office 2013
DCB0BCEF594E2C410793C4A823C318F3 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll - Shockwave for Director / Shockwave for Director
43583AB4DFD406F4C188342F41B1F91C - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll - Shockwave Flash
D2377C9458EFEB094E38B8C874AA214C - C:\Users\Ruda\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll - Google Update
3CD19649B2C3023D65E67C056457A2BC - C:\Users\Ruda\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin
64C4ADE063A9C93D3BAE09922AD90C27 - C:\Users\Ruda\AppData\Roaming\Mozilla\plugins\nppdf32.dll - Adobe Acrobat
D8D077FB075C51B21FB575183239362E - C:\Users\Ruda\AppData\Roaming\Mozilla\plugins\npPDFXCviewNPPlugin.dll - PDF-XChange Viewer
2E74E65B5A886EFA9646A952FCF74629 - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll - PDF-XChange Viewer

Profilepath: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\r2ujku5h.default-1413400396589
3CD19649B2C3023D65E67C056457A2BC - C:\Users\Ruda\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin
DCB0BCEF594E2C410793C4A823C318F3 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll - Shockwave for Director / Shockwave for Director
18CF51689186AEB9D1D149AEB0E92D03 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL - Microsoft Office 2013


==== Chromium Look ======================

Google Chrome Version: 41.0.2272.101 (Latest Stable version: 41.0.2272.101)

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
hdokiejnpimakedhajhdlcegeplioahd - No path found[]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[14.07.2014 18:22]

Seznam Li\u0161ti\u010Dka - Email - Ruda\AppData\Local\BlackHawk\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig
Seznam Li\u0161ti\u010Dka - Slovn\u00EDk - Ruda\AppData\Local\BlackHawk\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd
Facebook - Ruda\AppData\Local\BlackHawk\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm
Zula Games - Ruda\AppData\Local\BlackHawk\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn
AdBlock - Ruda\AppData\Local\BlackHawk\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
PageRank Status - Ruda\AppData\Local\BlackHawk\User Data\Default\Extensions\hbdkkfheckcdppiaiabobmennhijkknn
LastPass - Ruda\AppData\Local\BlackHawk\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd
IE Tab - Ruda\AppData\Local\BlackHawk\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd
Seznam Li\u0161ti\u010Dka - Rychl\u00E1 volba - Ruda\AppData\Local\BlackHawk\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak
Astrid Tasks - Ruda\AppData\Local\BlackHawk\User Data\Default\Extensions\pmjlnfgnkpknjgkpohcgoeiakkbofpjo
Comodo Drag&Drop Service - Ruda\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aneodkojaglhnkkdbbdnmmmgimlcaogo
Comodo Web Inspector - Ruda\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdngekjahnmlkinegnhdmmbcfnmbclnn
Comodo Media Downloader - Ruda\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dihmnpngfonlhjmgkflpnibiaaliendo
Sticky Password Autofill Engine - Ruda\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ggepjhbdgijjkbelnggboeoehacbphed
Comodo Dragon Browser Light Theme - Ruda\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\kglppafajjeikfgmjjegogphhkjnnmgc
LastPass - Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hdokiejnpimakedhajhdlcegeplioahd
Translator (All Languages) - Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\kkdkohkdahffmjhcehilamblbpnjpmlo

==== Chromium Startpages ======================

C:\Users\Ruda\AppData\Local\Comodo\Dragon\User Data\Default\Preferences
"startup_urls": [ "http://www.google.cz/?gws_rd=ssl" ],

C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Preferences
"startup_urls": [ "http://www.google.cz/?gws_rd=ssl" ]


==== Chromium Fix ======================

C:\Users\Ruda\AppData\Local\BlackHawk\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.seznam.cz/?logged=1#obsah"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Default_Page_URL"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Default_Page_URL"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchURI]
"(Default)"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchURI]
"(Default)"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchURI]
"(Default)"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\SearchURI]
"(Default)"=""
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURI]
"(Default)"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"Start Page"="http://www.google.com"
"Start Default_Page_URL"="http://www.google.com"
"Default_Search_URL"="http://www.google.com"
"Search Bar"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Search]
"Start Page"="http://www.google.com"
"Start Default_Page_URL"="http://www.google.com"
"Default_Search_URL"="http://www.google.com"
"Search Bar"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Start Page"="http://www.google.com"
"Start Default_Page_URL"="http://www.google.com"
"Default_Search_URL"="http://www.google.com/ie"
"Search Bar"="http://www.google.com"
"Search Page"="http://www.google.com"
"SearchAssistant"="http://www.google.com/ie"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.seznam.cz/?logged=1#obsah"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchURI]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchURI]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchURI]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Software\Microsoft\Internet Explorer\SearchURI]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURI]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{15C4DF55-4B67-495A-A3D3-A497C4A49EE0} Seznam Url="http://search.seznam.cz/?sourceid=quick ... earchTerms}"
{1E1F17B7-F889-4480-8A29-31EC9A9EFF8C} Novinky.cz Url="http://www.novinky.cz/hledej?w={searchT ... arch_12454"
{1E2C0E9F-5A57-404C-B006-0935D8B62540} Alza.cz Url="http://www.alza.cz/SearchAdvanced.asp?EXPS={searchTerms}"
{261F48F8-D058-48FB-AF2F-1612D1198CC3} Zbo§ˇ.cz Url="http://www.zbozi.cz/?q={searchTerms}&r= ... arch_12454"
{4B2BCD33-D984-4D8E-9C54-B803E34B1CA9} Seznam TV Program Url="http://tv.seznam.cz/hledej?w={searchTer ... arch_12454"
{593B6F83-B0BB-4B83-A5D9-7AC258B674B2} Mapy.cz Url="http://www.mapy.cz/?query={searchTerms} ... arch_12454"
{697A3350-6749-4A05-8E19-B8931A10DA0C} Google Url="http://www.google.com/search?q={searchT ... f8&oe=utf8"
{9249FFDB-058C-45D6-9AF3-F1B23BF48FF0} Seznam Url="http://search.seznam.cz/?q={searchTerms ... arch_12454"
{9FF53AE7-AE60-4664-949F-033A0F77247D} Slovnˇk CZ/EN Url="http://slovnik.seznam.cz/?q={searchTerm ... arch_12454"
{A11803E2-62F5-4A23-B930-9F8D435E2A78} Firmy.cz Url="http://www.firmy.cz/phr/{searchTerms}?s ... arch_12454"
{A3A70049-68EA-44AC-905D-25C4A57E654C} Slovnˇk EN/CZ Url="http://slovnik.seznam.cz/?q={searchTerm ... arch_12454"
{C7C7B0ED-D00A-4989-9D5A-29377FA141AF} Wikipedie (¬esky) Url="http://cs.wikipedia.org/w/index.php?tit ... earchTerms}"
{D55EDDC6-DF84-4DE3-A258-8E0FC1DAE671} Radˇrna.cz Url="http://www.radirna.cz/search/{searchTerms}/"
{DCEBF011-A869-4BF6-AF25-376F5EE21962} Wikipedie (cs) Url="http://cs.wikipedia.org/w/index.php?tit ... earchTerms}"

==== Reset Google Chrome ======================

C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\preferences was reset successfully
C:\Users\Ruda\AppData\Local\Chromium\User Data\Default\Preferences was reset successfully
C:\Users\Ruda\AppData\Local\Comodo\Dragon\User Data\Default\Preferences was reset successfully
C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Preferences was reset successfully
C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Secure Preferences was reset successfully
C:\Users\Ruda\AppData\Roaming\Opera Software\Opera Stable\Preferences was reset successfully
C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\Ruda\AppData\Local\BlackHawk\User Data\Default\Web Data was reset successfully
C:\Users\Ruda\AppData\Local\BlackHawk\User Data\Default\Web Data-journal was reset successfully
C:\Users\Ruda\AppData\Local\Chromium\User Data\Default\Web Data was reset successfully
C:\Users\Ruda\AppData\Local\Comodo\Dragon\User Data\Default\Web Data was reset successfully
C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Web Data was reset successfully
C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Web Data-journal was reset successfully
C:\Users\Ruda\AppData\Roaming\Opera Software\Opera Stable\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A0A5CBD84C137C642B25B695E31AA178 deleted successfully
HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Policies\Chromium deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\A0A5CBD84C137C642B25B695E31AA178 deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GIGABYTEMOUSE deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Ruda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Ruda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Ruda\AppData\Local\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Ruda\AppData\Local\BlackHawk\User Data\Default\Cache emptied successfully
C:\Users\Ruda\AppData\Local\Comodo\Dragon\User Data\Default\Cache emptied successfully
C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1504 folders=180 315711406 bytes)

==== Empty Temp Folders ======================

C:\Users\Classic .NET AppPool\AppData\Local\temp emptied successfully
C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\DefaultAppPool\AppData\Local\temp emptied successfully
C:\Users\Guest\AppData\Local\temp emptied successfully
C:\Users\Ruda\AppData\Local\Temp will be emptied at reboot
C:\Users\CLASSI~1.NE~\AppData\Local\temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Ruda\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted

==== EOF on st 25.03.2015 at 15:40:13,81 ======================

Bylo tam hooodne bordelu, tak mu to trvalo

Poprosim o FRST http://forum.viry.cz/viewtopic.php?f=30&t=133101

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015
Ran by Ruda at 2015-03-25 16:22:27
Running from C:\PerfLogs\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: COMODO Antivirus (Enabled - Up to date) {F0BC89B2-8937-0933-021B-B17D981F2A71}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Comodo Defense+ (Enabled - Up to date) {4BDD6856-AF0D-06BD-38AB-8A0FE39860CC}
FW: COMODO Firewall (Enabled) {C8870897-C358-086B-2944-184866CC6D0A}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

„Windows Live Essentials“ (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
„Windows Live Mail“ (x32 Version: 16.4.3528.0331 - „Microsoft Corporation“) Hidden
„Windows Live Messenger“ (x32 Version: 16.4.3528.0331 - „Microsoft Corporation“) Hidden
µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - )
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.00.631.5823 - ABBYY)
ABBYY FineReader 9.0 Sprint (x32 Version: 9.00.631.5823 - ABBYY) Hidden
Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{CB320215-F4BD-40FD-A209-62B131DA1B82}) (Version: 99.9 - Eyeo GmbH)
Adblock Plus for IE (HKLM-x32\...\{1ce01891-839b-4ad1-b629-2e608ba0c6ba}) (Version: 1.0 - )
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 16.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.134 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
Akamai NetSession Interface (HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\Akamai) (Version: - Akamai Technologies, Inc)
Aktualizace NVIDIA 16.18.9 (Version: 16.18.9 - NVIDIA Corporation) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 1.4.42.69356 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 1.4.42.69356 - Alcor Micro Corp.) Hidden
Any Video Converter Ultimate 5.7.8 (HKLM-x32\...\Any Video Converter Ultimate_is1) (Version: - Any-Video-Converter.com)
ArcSoft MediaImpression 2 (HKLM-x32\...\{FB46F473-333E-4A06-A777-31C54188593E}) (Version: 2.0.14.672 - ArcSoft)
Ashampoo GetBack Photo v.1.0.1 (HKLM-x32\...\{C92AB6F1-2490-D7C3-A45D-23F3C33ECFA5}_is1) (Version: 1.0.1 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Commander 11 (HKLM-x32\...\{C92AB6F1-0F9C-8526-5DF1-0A2FD0FB33D9}_is1) (Version: 11.1.9 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Optimizer FREE (HKLM-x32\...\Ashampoo Photo Optimizer FREE_is1) (Version: 1.2.0 - ashampoo GmbH & Co. KG)
Ashampoo ZIP Free v.1.0.1 (HKLM-x32\...\{0A11EA01-06AA-A977-2548-2F3C0E8BE50B}_is1) (Version: 1.0.1 - Ashampoo GmbH & Co. KG)
ASUS AI Recovery (HKLM-x32\...\{D39F0676-163E-4595-A917-E28F99BBD4D2}) (Version: 1.0.24 - ASUS)
ASUS FaceLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0014 - ASUS)
ASUS Instant Connect (HKLM-x32\...\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}) (Version: 1.2.2 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.1 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.1.7 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.2.1 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0041 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.0.9 - ASUS)
ASUS Virtual Touch (HKLM-x32\...\{938CFBD4-0652-49E5-BB8B-153948865941}) (Version: 1.0.11 - ASUS)
ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 3.0.144.298 - ASUS Cloud Corporation)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.309 - ASUSTEK)
Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.140 - Atheros)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.12 - Atheros Communications Inc.)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0020 - ASUS)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 3.8.5187 - DsNET Corp)
aTube Catcher verze 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Bass Audio Decoder (remove only) (HKLM-x32\...\Bass Audio Decoder) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5306 - CDBurnerXP)
cechoslovak (HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\cechoslovak) (Version: - )
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 36.1.1.21 - Comodo)
COMODO Internet Security Premium (HKLM\...\{18F14F4B-D8A9-4309-817E-3BC0B7664E53}) (Version: 8.0.0.4344 - COMODO Security Solutions Inc.)
CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2926 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform)
DirectVobSub (remove only) (HKLM-x32\...\DirectVobSub) (Version: - )
Document Capture Pro (HKLM-x32\...\{B4A3C072-87AF-4937-880D-3D7997111C0D}) (Version: 1.01.0000 - Seiko Epson Corporation)
Dream Day First Home (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}) (Version: - Oberon Media)
Dream Vacation Solitaire (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111249233}) (Version: - Oberon Media)
Epson Connect Guide (HKLM-x32\...\Epson Connect Guide) (Version: - )
Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.3.0 - SEIKO EPSON CORPORATION)
Epson Copy Utility 3.5 (HKLM-x32\...\{AA72FB28-73B4-49E5-B6B4-E78F44BBD0AD}) (Version: 3.5.0.0 - )
Epson Easy Photo Print 2 (HKLM-x32\...\{674E262F-72EA-41C1-AF16-9727311A4553}) (Version: 2.4.1.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{148C8BF9-E1B4-445D-AC67-2CABAE63949A}) (Version: 3.01.0009 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{E904F572-D7DB-43C1-929F-043F267FC77D}) (Version: 1.22.0000 - SEIKO EPSON CORPORATION)
EPSON L355 Series Printer Uninstall (HKLM\...\EPSON L355 Series) (Version: - SEIKO EPSON Corporation)
Epson Příručka pro síť L355 Series (HKLM-x32\...\L355 Series Netg) (Version: - )
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
Epson Uživatelská příručka EPSON Perfection V370 Photo (HKLM-x32\...\EPSON Perfection V370 Photo Useg) (Version: - )
Epson Uživatelská příručka L355 Series (HKLM-x32\...\L355 Series Useg) (Version: - )
ETDWare PS/2-X64 10.5.9.0 (HKLM\...\Elantech) (Version: 10.5.9.0 - ELAN Microelectronic Corp.)
Evidence LSoft 4.2.0.0 (HKLM-x32\...\{6B7574A7-ADE5-40CD-B4DE-3A72C483DB92}_is1) (Version: - Martin Lutonský)
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
FastStone Image Viewer 5.3 (HKLM-x32\...\FastStone Image Viewer) (Version: 5.3 - FastStone Soft)
FFMPEG Core Files (remove only) (HKLM-x32\...\FFMPEG Core Files) (Version: - )
FormatFactory 3.6.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.6.0.0 - Format Factory)
Freemake Video Converter verze 4.1.5 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.5 - Ellora Assets Corporation)
Gabest MPEG Splitter (remove only) (HKLM-x32\...\Gabest MPEG Splitter) (Version: - )
Galapago (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}) (Version: - Oberon Media)
Game Park Console (HKLM-x32\...\Game Park Console) (Version: 1.2.4.431 - Oberon Media Inc.)
GeekBuddy (HKLM\...\{E98902C5-09AF-487A-AFAE-D4C386F506C0}) (Version: 4.18.121 - Comodo Security Solutions Inc)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Go Go Gourmet Chef of the Year (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115290153}) (Version: - Oberon Media)
Google Earth (HKLM-x32\...\{96AD3B61-EAE2-11E2-9E72-B8AC6F98CCE3}) (Version: 7.1.1.1888 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.101 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Google+ Auto Backup (HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\Google+ Auto Backup) (Version: 1.0.26.151 - Google, Inc.)
Gpg4win (2.2.3) (HKLM-x32\...\GPG4Win) (Version: 2.2.3 - The Gpg4win Project)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
IE Download Helper (HKLM\...\{92A49BB2-0039-470F-82F8-A599BF5C4410}) (Version: 3.2 - IE Download Helper)
InstantOn for NB (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.3.3 - ASUS)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.10.255 - Intel Corporation)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
LastPass (pouze odinstalace) (HKLM-x32\...\LastPass) (Version: - LastPass)
LAV Filters 0.63.0 (HKLM-x32\...\lavfilters_is1) (Version: 0.63.0 - Hendrik Leppkes)
LibreOffice 4.4.1.2 (HKLM-x32\...\{4A754DA6-6E12-40AF-BAF0-B7D60C6BE005}) (Version: 4.4.1.2 - The Document Foundation)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.319 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.319 - LogMeIn, Inc.) Hidden
Mahjong Secrets (HKLM-x32\...\510008402) (Version: - Oberon Media)
MediaPortal (HKLM-x32\...\MediaPortal) (Version: 1.9.0 - Team MediaPortal)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
Microsoft OneNote 2013 - cs-cz (HKLM\...\OneNoteFreeRetail - cs-cz) (Version: 15.0.4701.1002 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0405-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM-x32\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 CSY (HKLM\...\{0A8A841B-29C4-4947-BF59-241216B4D904}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{9ACF3FDB-C8E6-444C-8C64-13A221F7BFFD}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM-x32\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{B636C9B9-A3F2-4DCE-ADCC-72E095018385}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Visual Basic PowerPacks 10.0 (HKLM-x32\...\{2D9F8079-7D50-3EFD-B3BD-ED642E4EE756}) (Version: 10.0.20911 - Microsoft)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Web Platform Installer 4.6 (HKLM\...\{16C7D2AD-20CA-491E-80BC-8607A9AACED9}) (Version: 4.0.40719.0 - Microsoft Corporation)
Mozilla Firefox 36.0.4 (x86 cs) (HKLM-x32\...\Mozilla Firefox 36.0.4 (x86 cs)) (Version: 36.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.4.0 - Mozilla)
Mozilla Thunderbird 31.5.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 31.5.0 (x86 cs)) (Version: 31.5.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyHeritage Family Tree Builder (HKLM-x32\...\Family Tree Builder) (Version: 7.0.0.7128 - MyHeritage.com)
NVIDIA GeForce Experience 2.1.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.5 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 337.88 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4701.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4701.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4701.1002 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenSource AVI Splitter (remove only) (HKLM-x32\...\OpenSource AVI Splitter) (Version: - )
OpenSource DTS/AC3/DD+ Source Filter (remove only) (HKLM-x32\...\OpenSource DTS/AC3/DD+ Source Filter) (Version: - )
OpenSource Flash Video Splitter (remove only) (HKLM-x32\...\OpenSource Flash Video Splitter) (Version: - )
Ovládací panel NVIDIA 337.88 (Version: 337.88 - NVIDIA Corporation) Hidden
paint.net (HKLM\...\{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC42}) (Version: 4.0.5 - dotPDN LLC)
PDF Architect 2 OCR Module (x32 Version: 2.0.17.17583 - pdfforge GmbH) Hidden
PDF24 Creator 6.9.2 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.312.1 - Tracker Software Products Ltd)
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PicPick (HKLM-x32\...\PicPick) (Version: 3.4.0 - NTeWORKS)
Plants vs Zombies (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-117080787}) (Version: - Oberon Media)
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Plus500 (HKLM-x32\...\Plus500) (Version: - )
Poczta usługi Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Pošta Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
ProgDVB (HKLM-x32\...\ProgDVB) (Version: 7.x - Prog)
Q-Dir (HKLM\...\Q-Dir) (Version: - )
Q-Dir (HKLM-x32\...\Q-Dir) (Version: - )
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 3.0 - Qualcomm Atheros)
Recepty doma (HKLM-x32\...\Recepty doma_is1) (Version: - Martin Roubec)
Recuva (HKLM\...\Recuva) (Version: 1.48 - Piriform)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Sada Compatibility Pack pro systém Office 2007 (HKLM-x32\...\{90120000-0020-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
SceneSwitch (HKLM-x32\...\{5172E572-C175-4F80-A6D5-5CB45826AD61}) (Version: 1.0.12 - ASUS)
Seznam Instalátor (HKLM-x32\...\ssinstall) (Version: - Seznam.cz)
Seznam Software (HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\SeznamInstall) (Version: - Seznam.cz)
SHIELD Streaming (Version: 3.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.18.9 - NVIDIA Corporation) Hidden
Simple Adblock (HKLM-x32\...\{B4920103-09F6-4AD2-B150-CFC4474D2DDC}) (Version: 1.1.5 - Simple Adblock)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype Web Plugin (HKLM-x32\...\{B51DD93B-3CB5-4D9D-BFF2-FD19DBBBFD9A}) (Version: 2.9.13008.18866 - Skype Technologies S.A.)
Skype™ 7.2 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.2.103 - Skype Technologies S.A.)
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Explorer 6.4.0 (HKLM-x32\...\{40F485F7-6478-4896-B0D5-F94BE677EB78}_is1) (Version: - Mister Group)
TapinRadio 1.60.1 (HKLM-x32\...\TapinRadio_is1) (Version: - Raimersoft)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.39052 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
Tisk Obalek 3.2.2.7 (HKLM-x32\...\Tisk Obalek_is1) (Version: 3.2.2.7 - Mgr. Radovan Kraus)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VIA Platform Device Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.0 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.1 - ASUS)
Wireless Console 3 (HKLM-x32\...\{19EA33FB-B34E-40EA-8B8A-61743AEB795A}) (Version: 3.0.27 - ASUS)
World of Goo (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-116672750}) (Version: - Oberon Media)
XnView 2.31 (HKLM-x32\...\XnView_is1) (Version: 2.31 - Gougelet Pierre-e)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-841361005-909514878-2309378359-1002_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-841361005-909514878-2309378359-1002_Classes\CLSID\{A75BE48D-BF58-4A8B-B96C-F9A09DFB9844}\InprocServer32 -> %LOCALAPPDATA%\Pokki\ocdeskband_0.dll No File
CustomCLSID: HKU\S-1-5-21-841361005-909514878-2309378359-1002_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-841361005-909514878-2309378359-1002_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-841361005-909514878-2309378359-1002_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-841361005-909514878-2309378359-1002_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points =========================

16-03-2015 20:29:34 Windows Update
16-03-2015 20:34:35 Windows Update
16-03-2015 23:44:35 Windows Update
17-03-2015 10:12:54 paint.net 4.0.5
17-03-2015 10:51:24 Windows Update
17-03-2015 11:45:27 Installed Software Updater
18-03-2015 22:38:43 Revo Uninstaller's restore point - Tisk Obalek 3.2.2.7
19-03-2015 22:10:14 Windows Update
25-03-2015 01:23:18 Anvi CSB 3.5
25-03-2015 09:55:11 Revo Uninstaller's restore point - Cloud System Booster
25-03-2015 10:38:44 zoek.exe restore point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2015-03-25 11:39 - 00000841 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {00B4C1D0-87B9-446F-9BD5-3FC8C2467514} - System32\Tasks\{18940542-76C0-4F13-9BE4-8A66F0476E6A} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {030C4D65-5770-4883-AAE9-A6EEF09B80CA} - \GoogleUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002UA No Task File <==== ATTENTION
Task: {063B2351-F936-4ADC-B53F-DD1E5582889F} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-04] (COMODO)
Task: {0C6B6EBC-9031-44FA-B832-2A50AC01A441} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-04] (COMODO)
Task: {0EA9B830-5DC4-4E1B-A3F2-5A1794F8501C} - System32\Tasks\{9166EEE1-665A-47B7-9AA3-F28205031DCF} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Galapago\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Galapago\install.log"
Task: {11FA246D-C1FB-4763-82E6-F9EB4F15CCF0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-02-27] (Piriform Ltd)
Task: {11FB9A9F-DE45-4625-A68C-FFC2E0940A67} - System32\Tasks\{3C9D2E01-D7E9-4342-BDC9-2776D4B876E9} => pcalua.exe -a C:\Users\Ruda\Downloads\Windows-Live-Mail-_16.4.3505.0912.exe -d C:\Users\Ruda\Downloads
Task: {16B650C0-89C9-454D-97D5-6C2102834D84} - System32\Tasks\{6B5CC6B3-B792-45FF-9E34-6A890BAA3CBF} => pcalua.exe -a C:\Users\Ruda\Downloads\Android.Manager.WiFi.v2010.10.01.exe -d C:\Users\Ruda\Downloads
Task: {16EC238F-8D7D-4C90-A41B-F10D5F8B95E3} - System32\Tasks\{BFFDA647-C68E-454A-B685-C181E1C9EEF0} => Chrome.exe http://ui.skype.com/ui/0/6.7.0.102/cs/g ... Error=1603
Task: {1AB0F5BC-6361-4DFA-82E6-E03EF58F9B29} - System32\Tasks\{17B8EBB4-ACC4-40FC-9E86-5E55A576447D} => pcalua.exe -a c:\vallen\jpegger\jpegger.exe -c -ui -q
Task: {1B030A60-CD3C-46E5-9D8D-09ECFB600B57} - System32\Tasks\C__Users_Ruda_Downloads_tvonline.exe => C:\Users\Ruda\Downloads\tvonline.exe
Task: {21F63DC7-40DC-4AFB-9776-A61419648025} - System32\Tasks\{D6893A38-300B-4034-AEEE-3EA1D9C1E11C} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {247BD6D5-3C21-4DD9-9179-6AC13EC5E037} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-02-04] (COMODO)
Task: {2547CE60-04D2-4E81-A72C-7D14A59FAE45} - System32\Tasks\{83EAA0A7-58FB-4FB5-8FF1-0142CB60BC2D} => Chrome.exe http://ui.skype.com/ui/0/6.7.0.102/cs/g ... Error=1603
Task: {29B6765C-3E5D-4669-B996-06AC5DF531B4} - System32\Tasks\{A1CF3082-39CC-4078-AEC3-25C007D9ED63} => Chrome.exe http://ui.skype.com/ui/0/6.3.0.105/cs/g ... Error=1603
Task: {2F8B20C9-A499-4C3C-A308-C6734868B719} - System32\Tasks\{71BFF601-8F49-4643-AC08-7CD109E89297} => pcalua.exe -a C:\PerfLogs\Desktop\wlsetup-web.exe -d C:\PerfLogs\Desktop
Task: {37087F67-6F6B-497C-8243-910F7194E560} - System32\Tasks\{BF848EB0-7806-4688-96BF-34413190A1F6} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {37C1B75B-A500-45B3-B1AE-90E1EFD6C201} - System32\Tasks\{6BBE8BB2-5C12-4A6E-92BE-36A91ADE43FD} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Bubbletown\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Bubbletown\install.log"
Task: {380EF2F5-1933-45D0-84A2-E73992A28DD5} - \GoogleUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002Core No Task File <==== ATTENTION
Task: {3BA38A96-8C57-4DFA-B37F-13BEE26FE5BC} - System32\Tasks\{5F50205B-81B7-4BE5-A556-CAF25610E21D} => pcalua.exe -a C:\Users\Ruda\Documents\FreeRapid-0.9u3\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Documents\FreeRapid-0.9u3\FreeRapid-0.9u3
Task: {3D98428B-0114-49A0-B54A-04EA96571626} - System32\Tasks\{A6F96F0C-EB4C-4E2F-AAFA-EDD1BC516833} => pcalua.exe -a C:\Users\Ruda\Downloads\StudioLine_PB4_Setup2015.exe -d C:\Users\Ruda\Downloads
Task: {3DB4F540-0DA0-4B85-B5BC-69EB92075629} - System32\Tasks\{1A9D60BE-8A7F-4668-8FC6-3784F8E88970} => pcalua.exe -a "C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server\SetupTv.exe" -d "C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server"
Task: {3FAFCF43-3B51-4FC9-AEEF-12C98082BEFE} - System32\Tasks\{8B1919D7-7714-4D33-96FD-34DF36DC72E6} => C:\Users\Ruda\Downloads\Luminance-HDR-Win32-SETUP-v2.3.1-2.exe
Task: {4218984F-6740-45DF-9257-BEC2967174D6} - System32\Tasks\{2F0CBDFA-5117-4D5A-B7D9-EF2A2ADD726D} => pcalua.exe -a C:\Users\Ruda\Downloads\Install-winMd5Sum.exe -d C:\Users\Ruda\Downloads
Task: {46334A36-2A94-45FE-91AD-21E678AE8106} - System32\Tasks\{A002E75E-1495-4BA8-9A86-F4D44AD135DA} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Plants vs Zombies\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Plants vs Zombies\install.log"
Task: {4A1E6D7E-D213-44F7-80C9-08B4ABDA0F84} - System32\Tasks\{6FBB8A7D-5EE5-43AA-94E5-BE60D121BDD9} => C:\Program Files (x86)\WinThruster\WinThruster.exe
Task: {4D42D988-220F-4BC7-B7DC-B8E44055D893} - System32\Tasks\{2181C5A6-223E-4525-BB57-559A0BC59D43} => pcalua.exe -a E:\obsah\Programy\Ostatní\OpenOffice\OOo_3.2.0rc3_20100118_Win32Intel_install_cs.exe -d E:\obsah\Programy\Ostatní\OpenOffice
Task: {4FD437B7-9854-48BB-B791-B77A1FA57D9A} - System32\Tasks\_UPDATES => C:\Program Files (x86)\WinThruster\WinThruster.exe
Task: {532591BF-F6F0-430E-9EAA-061231AAF910} - System32\Tasks\{927A8016-7C84-4099-B4A9-7974F86116C3} => pcalua.exe -a C:\Users\Ruda\Downloads\wlsetup-all.exe -d C:\Users\Ruda\Downloads
Task: {5702B3D4-BC81-45E2-9ABA-68BC3D512AEA} - System32\Tasks\{7F5B67FF-7FC5-433A-B43F-7C97030550DC} => C:\Users\Ruda\Downloads\Luminance-HDR-Win32-SETUP-v2.3.1-2.exe
Task: {596F0B48-FC9F-43E7-B75F-37DBD67176A3} - System32\Tasks\{3CA36EE5-E256-4568-B0D0-D654007BFB6E} => pcalua.exe -a E:\software\oem\oemsetup.exe -d E:\software\oem
Task: {5A08588B-9980-4FAE-A675-B8BE597CE218} - System32\Tasks\{7064E0ED-D387-4527-B3FB-D3E603B18F21} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u3
Task: {5BC1BF0D-5504-4D12-9F8D-12A226E1FF9A} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {5DBF41C4-05C3-44C4-8A5A-9F8C01F8D2B4} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [2012-09-27] ()
Task: {5FAE1F37-D79B-48A7-A5D4-B4D2FC852F0F} - System32\Tasks\{638DA9E3-5093-48A0-A3A5-F81670454AC0} => pcalua.exe -a C:\PerfLogs\Desktop\wlsetup-all.exe -d C:\PerfLogs\Desktop
Task: {60C99AB4-F669-44B2-8138-1C54E3C0CC62} - System32\Tasks\{F2016396-B017-48F7-A855-8A17138D566C} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Turbo Fiesta\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Turbo Fiesta\install.log"
Task: {6C4C1E35-9884-43C2-B491-674768318C0D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-03-20] (Microsoft Corporation)
Task: {70CF69D2-989B-4CDF-AD9E-7F59AFD5BBE2} - System32\Tasks\{6735FC5D-B0D4-41FB-983F-D6A0632CB305} => C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe
Task: {712B8D58-53FD-47AA-A47E-B77BEB389D27} - System32\Tasks\{47747F88-D939-441C-BA01-5980F3ACC2C1} => pcalua.exe -a C:\Users\Ruda\Downloads\AdobeAIRInstaller(1).exe -d C:\Users\Ruda\Downloads
Task: {73598455-55F6-457F-A91D-18E3C7C42BAC} - System32\Tasks\{B4C4EABB-5B0D-4EF7-8449-BFA20337AEEC} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Dream Day First Home\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Dream Day First Home\install.log"
Task: {73D09C75-C9E8-4D7E-9A05-54315B7E0A74} - System32\Tasks\{17A30D0C-9F9A-42D2-ADD6-E6C2A6087AAA} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3\
Task: {73F4FA2A-59E5-4814-A2A9-1130AFCBD7A4} - System32\Tasks\{F4502145-42AF-418D-82E5-00CC641E2BB3} => pcalua.exe -a "C:\Users\Ruda\Downloads\wlsetup-web .exe" -d C:\Users\Ruda\Downloads
Task: {74960CA7-B50D-4A3D-838C-C6E30438E0F2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-20] (Google Inc.)
Task: {74BAB3AC-7C7A-4C02-9F63-AD3A5E095058} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-20] (Google Inc.)
Task: {75977CC3-1E01-4AD2-A0BC-DE752D94BE37} - System32\Tasks\{86B6FF6A-565B-4AE2-A512-561E454D84F8} => C:\Program Files (x86)\ASUS\FaceLogon\logonmgr.exe [2012-02-21] (ASUSTek Computer Inc.)
Task: {782AF7B1-93C4-46BB-9331-671A3DEA7473} - System32\Tasks\ASUS Quick Gesture (x64) => C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe [2012-04-11] (ASUSTeK Computer Inc.)
Task: {796FB41F-561A-4CDB-A13E-DA8677AD52B3} - System32\Tasks\{3B64BBF6-C46E-482D-934F-2F09EA63E528} => Chrome.exe http://ui.skype.com/ui/0/6.7.0.102/cs/g ... Error=1603
Task: {7AB9DA8D-80DE-46E8-B6EE-740D1548BEA2} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-06-20] (ASUSTeK Computer Inc.)
Task: {7EFAFBEE-4A0E-4258-8F22-B56A074FC1EE} - System32\Tasks\{CE160BED-AA6C-4B07-B819-15E1D2ED4F96} => pcalua.exe -a "C:\Program Files (x86)\OpenAL\oalinst.exe"
Task: {7F061C75-D6FC-4936-98CD-A81BADAAA50E} - System32\Tasks\{E70DE9C2-B021-460F-B37F-A045C1BD318B} => pcalua.exe -a C:\Users\Ruda\Downloads\Install-winMd5Sum.exe -d C:\Users\Ruda\Downloads
Task: {81169D4E-22EB-4B20-B641-AFCE30989E53} - System32\Tasks\{E9107696-4A75-4598-8970-BB83E8189B72} => pcalua.exe -a "c:\program files (x86)\kingsoft\kingsoft antivirus\uni0nst.exe"
Task: {8507C6E0-AB15-4A94-8661-252E988BBE53} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-04] (COMODO)
Task: {855C2966-0F57-492E-9289-49D291F7077F} - System32\Tasks\{EA700A6E-4619-4175-87F5-4DD8516627A9} => pcalua.exe -a E:\EasySetupAssistant\TL-WDR3600\EasySetupAssistant.exe -d E:\EasySetupAssistant\TL-WDR3600
Task: {85EC1DB6-DF1D-4F4F-84A8-8BF3C48D845E} - System32\Tasks\{DF50BD1D-B297-4274-95D1-9537FECDF4FD} => C:\Users\Ruda\Downloads\flock-2.6.0.en-US.win32.exe
Task: {87F70169-16E2-4A1D-BBBE-F5A3BE9BC361} - System32\Tasks\{3C018CAC-80C2-4550-ADE7-06563FDA0C82} => pcalua.exe -a C:\Users\Ruda\Downloads\wlsetup-web(1).exe -d C:\Users\Ruda\Downloads
Task: {8A6064C4-E61B-4442-A531-779DA76F62A6} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe [2012-02-17] (ASUSTek Computer Inc.)
Task: {8B8F3C55-A04A-4C63-93FA-25E3BA0E2AE0} - System32\Tasks\UnHackMe Task Scheduler => C:\Program Files (x86)\UnHackMe\hackmon.exe
Task: {8E1EF39C-C9C4-4604-B02C-5777F2E1D975} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {8F6A888A-91DF-44B3-A669-E86ED83FE6AA} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe
Task: {90FAEF35-3C1F-472B-99EE-577638B37680} - System32\Tasks\{009319D0-F3BB-4BA5-A79C-64A982F5295A} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9
Task: {95BA0704-4383-4360-8A79-C648AC6657CC} - System32\Tasks\{767F9478-3C3D-4EAA-AB9E-61FD8DC323EC} => C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [2014-04-17] (Microsoft Corporation)
Task: {9B604BA7-4990-4066-ADEE-F3E1E3AB2077} - System32\Tasks\{EF25F101-B955-42F5-9878-F24186A0A763} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {9C253EF1-E933-4C60-9C9C-2020699D01F1} - System32\Tasks\{4428E1A8-8A3F-43FB-A889-1A0C6ED40E8E} => C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe
Task: {9DD4C10B-EAE3-45B3-B84F-FC885D539853} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-04] (COMODO)
Task: {9FAC172D-4CA5-4419-B661-B5C427F70794} - System32\Tasks\{F3796B24-9A0C-4930-A356-6EB166310D6C} => pcalua.exe -a "C:\Program Files (x86)\FlashGet Network\FlashGet 3\uninst.exe"
Task: {A0E4045A-A82E-40C0-8251-CCF2EF9C4DB5} - System32\Tasks\{4CAE5787-73F8-42AA-820D-13DFD7C1BC04} => pcalua.exe -a C:\Users\Ruda\Downloads\RegCleaner.exe -d C:\Users\Ruda\Downloads
Task: {A531A161-339D-4362-A29F-B71B712BCA8E} - System32\Tasks\{E28F3532-125E-4BE3-BC6B-C39100C0C74C} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Farm Frenzy 3 - Madagascar\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Farm Frenzy 3 - Madagascar\install.log"
Task: {A70A22AF-33B2-4F03-86DD-015C88918DF9} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-03-20] (Microsoft Corporation)
Task: {A70A2388-E6AE-4C8A-BAC7-72241A828F77} - System32\Tasks\{91E9A25E-61BF-4194-9114-A965A07543E7} => pcalua.exe -a C:\Users\Ruda\Downloads\ytd-1.25.exe -d C:\Users\Ruda\Downloads
Task: {A7B080BD-8455-423E-BD5F-8964591CFCA3} - System32\Tasks\{37307FD2-BAB0-4627-B352-FDAEC564DE7C} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3
Task: {ACC1D449-0B5C-4147-9276-7881F1A0CEDF} - System32\Tasks\{F230008E-22AA-45DB-BC33-0AD646C51DAA} => Chrome.exe http://ui.skype.com/ui/0/6.3.0.105/cs/g ... Error=1603
Task: {AE595AEE-C073-4DDA-968A-65FD87657463} - System32\Tasks\ASUS Quick Gesture => C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe [2012-04-11] (ASUSTeK Computer Inc.)
Task: {B037B310-9877-4270-A541-A2A4D10B4928} - System32\Tasks\{12F3F5D9-2FE5-4D60-A69F-D350813ABF07} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {B6D3F62D-EA60-47E6-94B5-0951D8F8A948} - System32\Tasks\{DAB592B0-49D5-4393-87F5-F69B1E2418A6} => pcalua.exe -a C:\Users\Ruda\Downloads\InstallPlus500(1).exe -d C:\Users\Ruda\Downloads
Task: {B9377CF7-D996-4021-B03C-C2B772A125D0} - System32\Tasks\{DC882E5B-1A06-4E48-B21B-3D82B17243FD} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {BCFAAA81-E865-4CC4-B387-1D54FCB965F5} - System32\Tasks\{3FDD096B-4477-4116-9577-8D01A2A457C0} => pcalua.exe -a C:\Users\Ruda\Downloads\IrfanView-4.32-cestina.exe -d C:\Users\Ruda\Downloads
Task: {C31E0E22-2242-4B96-8DD5-6399CBED420F} - System32\Tasks\{C841434A-58F6-4B51-A900-FDB75DD8C7C6} => pcalua.exe -a C:\Users\Ruda\FreeRapid-0.9u4\frd.exe -d C:\Users\Ruda\FreeRapid-0.9u4
Task: {C71C5F8F-8CBE-41D5-A71A-DD9A34B238C1} - System32\Tasks\{75D8443C-5E6E-4EEC-9CA2-1CD4A83155EF} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Deadtime Stories\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Deadtime Stories\install.log"
Task: {C787445F-7F00-4E87-854D-E25060E58B1F} - System32\Tasks\{EDE012CB-828B-43A7-B05D-799D50643F98} => pcalua.exe -a C:\Users\Ruda\Downloads\Q-Dir_Installer\Q-Dir_Installer.exe -d C:\Users\Ruda\Downloads\Q-Dir_Installer
Task: {C795DFDD-E73F-4421-AF65-2DAA23DCD7D5} - System32\Tasks\_DEFAULT => C:\Program Files (x86)\WinThruster\WinThruster.exe
Task: {C8C1F110-C824-438D-A675-90B8ED30FDCF} - System32\Tasks\{69E4AD2B-0444-4F0F-938E-E25216565717} => pcalua.exe -a C:\Users\Ruda\Downloads\irfanviewcestina.exe -d C:\Users\Ruda\Downloads
Task: {C9B0E551-C092-4A34-A052-48938833C4AE} - System32\Tasks\{A6A6EE80-91BB-4C25-B7AE-007E7827504E} => pcalua.exe -a C:\Users\Ruda\Downloads\PuranDefragFree73cz.exe -d C:\Users\Ruda\Downloads
Task: {CC12428E-D56B-4AD1-B482-958669ACE552} - System32\Tasks\{497236D4-2B86-47EE-B2DC-494DE0F459E0} => Chrome.exe http://ui.skype.com/ui/0/6.7.0.102/cs/g ... Error=1603
Task: {CFFF0114-748E-4136-952C-9885E6DFD2BB} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [2009-07-14] (Microsoft Corporation)
Task: {D03F2332-EE2B-4B19-9FCE-81837046DBA9} - System32\Tasks\{B537248A-7A51-4F21-9537-1F4656D35C43} => pcalua.exe -a "C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe" -d "C:\Program Files (x86)\VS Revo Group\Revo Uninstaller"
Task: {DC3B6C01-BB96-4CC8-A94A-12D5DADC8CB2} - System32\Tasks\{F1C323FF-2AE3-4EE4-B2A7-664C45CF8786} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3
Task: {DCFE36AD-5A4B-4737-8371-E3AECD3D28F2} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-06-25] (ASUSTek Computer Inc.)
Task: {E1CC17F3-46BC-4C83-9AB4-2D5301740B16} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-841361005-909514878-2309378359-1002 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {E39B3F81-57A4-4C48-A27C-B7BB6641F6D9} - System32\Tasks\{6093F58B-05B8-4885-AC3E-5CBADB3B9EE8} => pcalua.exe -a "C:\Program Files (x86)\Q-Dir\Q-Dir.exe" -c -uninstall
Task: {E3A4C2E2-F09C-4FB8-AB3B-A5C57EA40DB8} - System32\Tasks\{F54D05B9-8665-451C-B33E-50DBCEE2C466} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u4\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u4
Task: {E86C242E-58BE-4D9E-9CD7-377E682ABDA1} - System32\Tasks\{46D68E75-36A5-415B-870B-2044C36BB17D} => Chrome.exe http://ui.skype.com/ui/0/6.3.0.105/cs/g ... Error=1603
Task: {EAC240FD-628B-421C-B9D9-F9A6699C5447} - System32\Tasks\{8934D43F-07E3-4AC9-8B51-EE69159070D9} => pcalua.exe -a C:\Users\Ruda\Downloads\InstallPlus500.exe -d C:\PerfLogs\Desktop
Task: {EE121801-62E4-413E-90B1-35D247602CDC} - System32\Tasks\{565C191B-0775-4FC9-9A45-B4693D41137F} => pcalua.exe -a "C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe" -d "C:\Program Files (x86)\Maxthon\Bin"
Task: {F1F971D1-C6AC-4C78-BDA2-617D7F2B1D2B} - System32\Tasks\{9153B0BA-90A9-4180-9C9C-7732DF80A851} => pcalua.exe -a C:\Users\Ruda\Downloads\wlsetup-web.exe -d C:\Users\Ruda\Downloads
Task: {F22C2E35-F41F-4796-A405-B7B0FC0004FF} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-02-29] (ASUSTek Computer Inc.)
Task: {F68F5127-7E5C-43A9-B13E-6B79E1600FF9} - System32\Tasks\Wise Disk Cleaner Schedule Task => C:\Program Files (x86)\Wise\Wise Disk Cleaner\WiseDiskCleaner.exe
Task: {F8762AE5-8D0F-4553-964B-38F1CB6524F3} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {F9CEAC5E-8BD9-4E8D-A9DD-72585A11D274} - System32\Tasks\{D0A82C02-D5B6-40F3-A6FE-5C6222ECAC6A} => Chrome.exe http://ui.skype.com/ui/0/6.3.0.105/cs/g ... Error=1603
Task: {F9F7AE3C-F149-49A5-B175-AA2EAC6D5570} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {FBB56E48-46C1-4174-A6F9-1E58A55FC723} - System32\Tasks\{974A3388-1B51-49AC-ADC4-7C199260FE17} => pcalua.exe -a C:\Users\Ruda\Downloads\iview436_setup.exe
Task: {FC4C46C5-AAE6-4316-9892-FD88BE98D484} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-20] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) ==============

2014-01-08 20:21 - 2014-05-20 02:25 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-03-25 01:22 - 2014-05-20 08:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2014-11-25 20:25 - 2015-02-11 17:25 - 00216576 _____ () C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
2013-04-15 17:39 - 2013-04-15 17:39 - 00073424 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
2014-11-25 20:11 - 2014-11-25 20:11 - 00221184 _____ () C:\Program Files (x86)\GNU\GnuPG\libksba-8.dll
2014-11-25 20:05 - 2014-11-25 20:05 - 00038400 _____ () C:\Program Files (x86)\GNU\GnuPG\libgpg-error-0.dll
2014-11-25 19:57 - 2014-11-25 19:57 - 00050176 _____ () C:\Program Files (x86)\GNU\GnuPG\libw32pth-0.dll
2014-11-25 20:10 - 2014-11-25 20:10 - 00070144 _____ () C:\Program Files (x86)\GNU\GnuPG\libassuan-0.dll
2014-11-25 20:13 - 2014-11-25 20:13 - 00742912 _____ () C:\Program Files (x86)\GNU\GnuPG\libgcrypt-20.dll
2014-10-10 13:39 - 2015-03-23 17:17 - 00012120 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2012-02-21 23:49 - 2012-02-21 23:49 - 00009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2012-01-31 18:25 - 2012-01-31 18:25 - 01163264 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\acAuth.dll
2015-01-07 19:59 - 2015-01-07 19:59 - 01498112 _____ () C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\DAQExp.dll
2015-01-07 19:59 - 2015-01-07 19:59 - 00137728 _____ () C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\CBSCreateVC.dll
2014-11-15 10:42 - 2014-11-15 10:42 - 00316576 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream32.dll
2015-03-22 17:02 - 2015-03-22 17:02 - 01020928 _____ () C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\extensions\support@lastpass.com\platform\WINNT_x86-msvc\components\lpxpcom.dll
2014-11-17 11:01 - 2000-01-01 01:00 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-02-25 18:46 - 2015-03-10 17:13 - 03348080 _____ () C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll
2015-02-25 18:46 - 2015-03-10 17:13 - 00158832 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2015-02-25 18:46 - 2015-03-10 17:13 - 00023152 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Windows\zoek-delete.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\adtschema.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\aeinv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\aepdu.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\aepic.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\aitstatic.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\apisetschema.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appidapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appidcertstorecheck.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appidpolicyconverter.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appidsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appraiser.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\atmfd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\atmlib.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\audiodg.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AudioEng.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AUDIOKSE.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AudioSes.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\audiosrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\auditpol.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\blackbox.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\credssp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\crypt32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\cryptnet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\cryptsp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\cryptsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\cryptui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\csrsrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dciman32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\devinv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\drmmgrtn.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\drmv2clt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dxmasf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dxtmsft.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dxtrans.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\EncDump.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enppmon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enppui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enpres.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ensppmon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ensppui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enspres.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\escsvc64.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\esdevapp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\evr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\E_GCINST.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\system32\E_YD4BI4E.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\system32\E_YLMI4E.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\system32\fontsub.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\generaltel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ie4uinit.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieapfltr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\iedkcs32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieetwcollector.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieetwcollectorres.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieetwproxystub.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieframe.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\iernonce.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\iertutil.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\iesetup.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieUnatt.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\inetcpl.cpl:$CmdTcID
AlternateDataStreams: C:\Windows\system32\invagent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\JavaScriptCollectionAgent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\jscript9.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\jscript9diag.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\jsproxy.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\kerberos.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\lpk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\lsasrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\lsass.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mferror.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfplat.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfpmp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MpSigStub.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MRT.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msaudite.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msctf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msdxm.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msfeeds.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MshtmlDac.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mshtmled.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mshtmlmedia.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msmmsp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msnetobj.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msobjs.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msrating.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msscp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MsSpellCheckingFacility.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msv1_0.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ncrypt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nlasvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvapi64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcompiler.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcuda.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcuvenc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcuvid.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvd3dumx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispco6434725.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispgenco6434725.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NvFBC64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NvIFR64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvinitx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvoglshim64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvoglv64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvopencl.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvumdshimx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvvsvc.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvwgf2umx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\oleaut32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcadm.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcaevts.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcalua.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcasvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcawrk.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\perftrack.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\powertracker.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\profsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\qdvd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\quartz.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rdpcorets.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RdpGroupPolicyExtension.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rdpudd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rrinstaller.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rstrui.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\scesrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\schannel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\secur32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\setbcdlocale.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\shell32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\smss.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\spwmp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\srclient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\srcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\sspicli.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\sspisrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\TSpkg.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\TSWbPrxy.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ubpm.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\urlmon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wdi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wdigest.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\win32k.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WindowsCodecs.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wininet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winload.efi:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winload.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winresume.efi:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wintrust.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wmdrmsdk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wmp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WMPhoto.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wmploc.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WSDScDrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\adtschema.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\apisetschema.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\appidapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\atmfd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\atmlib.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AudioEng.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AUDIOKSE.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AudioSes.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\auditpol.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\blackbox.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\credssp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\crypt32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\cryptnet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\cryptsp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\cryptsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\cryptui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\D3DX9_42.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dciman32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\drmmgrtn.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\drmv2clt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dxmasf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dxtmsft.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dxtrans.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\evr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\FlashPlayerApp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\fontsub.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\GPhotos.scr:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieapfltr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\iedkcs32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieetwproxystub.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieframe.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\iernonce.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\iertutil.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\iesetup.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieUnatt.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\inetcpl.cpl:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\jscript9.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\jscript9diag.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\jsproxy.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\kerberos.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\lpk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mediarcpt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mferror.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfplat.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfpmp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msaudite.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msctf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msdxm.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msfeeds.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MshtmlDac.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mshtmled.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mshtmlmedia.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msnetobj.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msobjs.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msrating.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msscp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msv1_0.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msvcr71.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ncrypt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ncsi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nlaapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ntkrnlpa.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcompiler.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcuda.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcuvenc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcuvid.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvd3dum.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\NvFBC.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\NvIFR.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvinit.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvoglshim32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvoglv32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvopencl.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvumdshim.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvwgf2um.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\oleaut32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\qdvd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\quartz.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\rrinstaller.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\scesrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\schannel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\secur32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\shell32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\spwmp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\srclient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\sspicli.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\TSpkg.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ubpm.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\urlmon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wdi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wdigest.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WindowsCodecs.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wininet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wintrust.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wmdrmsdk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wmp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WMPhoto.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wmploc.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\anvsnddrv.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\appid.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\cng.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\EsgScanner.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\ksecdd.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\ksecpkg.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mountmgr.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mrxdav.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\nvlddmkm.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\nvpciflt.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\PEAuth.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\usbscan.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\VClone.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\WSDPrint.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\WSDScan.sys:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Drivers\afc.sys:$CmdTcID
AlternateDataStreams: C:\ProgramData\Temp:F169C698
AlternateDataStreams: C:\Users\Ruda\Downloads\7-zip.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\adwcleaner_4.113.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\adwcleaner_4.113.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\ashampoo_getback_photo_18891.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\ashampoo_getback_photo_18891.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\ashampoo_zip_free.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\ashampoo_zip_free.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\avc-ultimate.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\avc-ultimate.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\cc-setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\cc-setup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\cdbxp_setup_4.5.4.5306.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\cdbxp_setup_4.5.4.5306.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\dfsetup219.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\dfsetup219.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\EPSON manual_cs.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\EpsonConnect130.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\EpsonConnect130.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\FirefoxSetup36.0cz.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\FirefoxSetup36.0cz.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\FSViewerSetup53(1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\FSViewerSetup53(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\GoogleEarthWin.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\GoogleEarthWin.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\GPU-Z.0.8.1.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\GPU-Z.0.8.1.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\install_flash_player(1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\install_flash_player(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\install_flash_player_ax.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\install_flash_player_ax.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\InstalRecepty .exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\InstalRecepty .exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\jre-8u31-windows-x64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\jre-8u31-windows-x64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\kontakty.csv:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\kontakty.csv:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\lastpass_x64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\lastpass_x64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\LibreOffice_4.4.1_Win_x86.msi:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\LibreOffice_4.4.1_Win_x86.msi:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\Mapa stredoceskych farnosti.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\Mapa stredoceskych farnosti.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\matriky_prislusnost_obce.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\obce_2014.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\obce_2014.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\paint.net.4.0.5.install.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\Procmon.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\ProgDVB_7.07.1.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\ProgDVB_7.07.1.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\Q-Dir_Installer.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\setup_pdf_converter_pro.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\setup_pdf_converter_pro.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\skype-setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\skype-setup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\spsetup128.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\spsetup128.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\SystemExplorerSetup_640.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\SystemExplorerSetup_640.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\TeamViewer_Setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\TeamViewer_Setup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\ThunderbirdSetup31.4.0 .exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\ThunderbirdSetup31.4.0 .exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\TiskObalek_CZ_3227.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\TiskObalek_CZ_3227.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\vlc-2.2.0-win32.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\vlc-2.2.0-win32.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\vlozeni_certifikatu KB_cz.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\vlozeni_certifikatu KB_cz.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\wlsetup-all.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\wlsetup-all.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\XnView-win.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\AppData\Roaming\inst.exe:$CmdTcID

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-841361005-909514878-2309378359-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1 - 8.8.8.8

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: GeekBuddyRSP => 2
MSCONFIG\Services: NAUpdate => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\Services: VideoAcceleratorService => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Skype.lnk => C:\Windows\pss\Skype.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Ruda^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Odeslat do OneNote.lnk => C:\Windows\pss\Odeslat do OneNote.lnk.Startup
MSCONFIG\startupreg: ASUSWebStorage => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.144.298\AsusWSPanel.exe /S
MSCONFIG\startupreg: Family Tree Builder Update => C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
MSCONFIG\startupreg: Google+ Auto Backup => "C:\Users\Ruda\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: PDFPrint => C:\Program Files (x86)\PDF24\pdf24.exe
MSCONFIG\startupreg: tvncontrol => "C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe" -controlservice -slave

==================== Accounts: =============================

63ruda99 (S-1-5-21-841361005-909514878-2309378359-1014 - Administrator - Enabled)
Administrator (S-1-5-21-841361005-909514878-2309378359-500 - Administrator - Disabled)
Guest (S-1-5-21-841361005-909514878-2309378359-501 - Limited - Enabled) => C:\Users\Guest
Ruda (S-1-5-21-841361005-909514878-2309378359-1002 - Administrator - Enabled) => C:\Users\Ruda

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/25/2015 11:39:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 36.0.4.5557, časové razítko: 0x550d0883
Název chybujícího modulu: mozalloc.dll, verze: 36.0.4.5557, časové razítko: 0x550cfa82
Kód výjimky: 0x80000003
Posun chyby: 0x00001e02
ID chybujícího procesu: 0x1050
Čas spuštění chybující aplikace: 0xplugin-container.exe0
Cesta k chybující aplikaci: plugin-container.exe1
Cesta k chybujícímu modulu: plugin-container.exe2
ID zprávy: plugin-container.exe3

Error: (03/25/2015 11:11:43 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 36.0.4.5557, časové razítko: 0x550d0883
Název chybujícího modulu: mozalloc.dll, verze: 36.0.4.5557, časové razítko: 0x550cfa82
Kód výjimky: 0x80000003
Posun chyby: 0x00001e02
ID chybujícího procesu: 0x1a68
Čas spuštění chybující aplikace: 0xplugin-container.exe0
Cesta k chybující aplikaci: plugin-container.exe1
Cesta k chybujícímu modulu: plugin-container.exe2
ID zprávy: plugin-container.exe3

Error: (03/25/2015 10:41:42 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 36.0.4.5557, časové razítko: 0x550d0883
Název chybujícího modulu: mozalloc.dll, verze: 36.0.4.5557, časové razítko: 0x550cfa82
Kód výjimky: 0x80000003
Posun chyby: 0x00001e02
ID chybujícího procesu: 0x1480
Čas spuštění chybující aplikace: 0xplugin-container.exe0
Cesta k chybující aplikaci: plugin-container.exe1
Cesta k chybujícímu modulu: plugin-container.exe2
ID zprávy: plugin-container.exe3

Error: (03/25/2015 02:35:45 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005

Error: (03/25/2015 01:56:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 6.1.7601.17567, časové razítko: 0x4d672ee4
Název chybujícího modulu: EXPLORERFRAME.dll, verze: 6.1.7601.17514, časové razítko: 0x4ce7c6a8
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000411ce
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xExplorer.EXE0
Cesta k chybující aplikaci: Explorer.EXE1
Cesta k chybujícímu modulu: Explorer.EXE2
ID zprávy: Explorer.EXE3

Error: (03/25/2015 01:40:06 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005

Error: (03/25/2015 00:42:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 36.0.4.5557, časové razítko: 0x550d0883
Název chybujícího modulu: mozalloc.dll, verze: 36.0.4.5557, časové razítko: 0x550cfa82
Kód výjimky: 0x80000003
Posun chyby: 0x00001e02
ID chybujícího procesu: 0x219c
Čas spuštění chybující aplikace: 0xplugin-container.exe0
Cesta k chybující aplikaci: plugin-container.exe1
Cesta k chybujícímu modulu: plugin-container.exe2
ID zprávy: plugin-container.exe3

Error: (03/25/2015 00:42:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 36.0.4.5557, časové razítko: 0x550d0883
Název chybujícího modulu: mozalloc.dll, verze: 36.0.4.5557, časové razítko: 0x550cfa82
Kód výjimky: 0x80000003
Posun chyby: 0x00001e02
ID chybujícího procesu: 0x2650
Čas spuštění chybující aplikace: 0xplugin-container.exe0
Cesta k chybující aplikaci: plugin-container.exe1
Cesta k chybujícímu modulu: plugin-container.exe2
ID zprávy: plugin-container.exe3

Error: (03/24/2015 09:52:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 36.0.4.5557, časové razítko: 0x550d0883
Název chybujícího modulu: mozalloc.dll, verze: 36.0.4.5557, časové razítko: 0x550cfa82
Kód výjimky: 0x80000003
Posun chyby: 0x00001e02
ID chybujícího procesu: 0x2df0
Čas spuštění chybující aplikace: 0xplugin-container.exe0
Cesta k chybující aplikaci: plugin-container.exe1
Cesta k chybujícímu modulu: plugin-container.exe2
ID zprávy: plugin-container.exe3

Error: (03/24/2015 09:52:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 36.0.4.5557, časové razítko: 0x550d0883
Název chybujícího modulu: mozalloc.dll, verze: 36.0.4.5557, časové razítko: 0x550cfa82
Kód výjimky: 0x80000003
Posun chyby: 0x00001e02
ID chybujícího procesu: 0x1d68
Čas spuštění chybující aplikace: 0xplugin-container.exe0
Cesta k chybující aplikaci: plugin-container.exe1
Cesta k chybujícímu modulu: plugin-container.exe2
ID zprávy: plugin-container.exe3


System errors:
=============
Error: (03/25/2015 03:39:11 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníSpuštění{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (pomocí LRPC)

Error: (03/25/2015 03:38:59 PM) (Source: ipnathlp) (EventID: 30013) (User: )
Description: 25.144.235.58192.168.137.0255.255.255.0

Error: (03/25/2015 03:38:59 PM) (Source: ipnathlp) (EventID: 1233) (User: )
Description:

Error: (03/25/2015 03:38:08 PM) (Source: SNMP) (EventID: 1500) (User: )
Description: Služba SNMP zjistila při přístupu ke klíči registru SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration chybu.

Error: (03/25/2015 03:38:04 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Adaptér naslouchání Net.Tcp závisí na službě Služba sdílení portů Net.Tcp, která neuspěla při spuštění v důsledku následující chyby:
%%1058

Error: (03/25/2015 03:21:14 PM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: 0

Error: (03/25/2015 02:14:51 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (03/25/2015 02:14:48 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (03/25/2015 02:14:46 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (03/25/2015 02:14:45 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.


Microsoft Office Sessions:
=========================
Error: (03/25/2015 11:39:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe36.0.4.5557550d0883mozalloc.dll36.0.4.5557550cfa828000000300001e02105001d066e63200cd26C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll2f0c8628-d2db-11e4-ace4-94dbc999140f

Error: (03/25/2015 11:11:43 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe36.0.4.5557550d0883mozalloc.dll36.0.4.5557550cfa828000000300001e021a6801d066e242b759e3C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll55e0566c-d2d7-11e4-9aee-94dbc999140f

Error: (03/25/2015 10:41:42 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe36.0.4.5557550d0883mozalloc.dll36.0.4.5557550cfa828000000300001e02148001d066de3258c475C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll24325295-d2d3-11e4-8ce5-94dbc999140f

Error: (03/25/2015 02:35:45 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005

Error: (03/25/2015 01:56:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.1.7601.175674d672ee4EXPLORERFRAME.dll6.1.7601.175144ce7c6a8c000000500000000000411ce

Error: (03/25/2015 01:40:06 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005

Error: (03/25/2015 00:42:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe36.0.4.5557550d0883mozalloc.dll36.0.4.5557550cfa828000000300001e02219c01d0667493d1459cC:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll6d4716e4-d27f-11e4-aec7-94dbc999140f

Error: (03/25/2015 00:42:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe36.0.4.5557550d0883mozalloc.dll36.0.4.5557550cfa828000000300001e02265001d0668bdfd92992C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll6d459044-d27f-11e4-aec7-94dbc999140f

Error: (03/24/2015 09:52:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe36.0.4.5557550d0883mozalloc.dll36.0.4.5557550cfa828000000300001e022df001d066740e0edb79C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dllbdb1a8bf-d267-11e4-aec7-94dbc999140f

Error: (03/24/2015 09:52:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe36.0.4.5557550d0883mozalloc.dll36.0.4.5557550cfa828000000300001e021d6801d06674194e36e2C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dllb6adb27b-d267-11e4-aec7-94dbc999140f


CodeIntegrity Errors:
===================================
Date: 2014-11-16 23:51:45.335
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-11-16 23:51:45.242
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-11-16 23:46:25.555
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-11-16 23:46:25.384
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-10-22 15:48:44.609
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-10-22 15:48:44.546
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-10-22 15:43:39.254
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-10-22 15:43:39.185
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-09-15 20:13:30.760
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-09-15 20:13:30.610
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\IT9135BDA.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU B970 @ 2.30GHz
Percentage of memory in use: 61%
Total physical RAM: 3979.91 MB
Available physical RAM: 1522.1 MB
Total Pagefile: 9946.1 MB
Available Pagefile: 6969.69 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:186.3 GB) (Free:62.09 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (DATA) (Fixed) (Total:254.14 GB) (Free:37.06 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 30EC77D9)

Partition: GPT Partition Type.

==================== End Of Log ============================

Poprosim o log FRST.txt

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by Ruda (administrator) on RUDA-PC on 25-03-2015 16:19:32
Running from C:\PerfLogs\Desktop
Loaded Profiles: Ruda (Available profiles: Ruda & Guest & Classic .NET AppPool & DefaultAppPool)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(Microsoft Corporation) C:\Windows\System32\snmp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(PS Media s.r.o.) C:\Windows\SysWOW64\ssins.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATII4E.EXE
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATII4E.EXE
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(iSkySoft) C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2661672 2012-02-19] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [361984 2011-05-26] (Alcor Micro Corp.)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\btvstack.exe [1023616 2012-05-31] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\athbttray.exe [801920 2012-05-31] (Atheros Commnucations)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1297624 2015-02-04] (COMODO)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2000-01-01] (Intel Corporation)
HKLM-x32\...\Run: [ACMON] => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [102568 2012-02-21] (ASUS)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2321072 2012-02-03] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322208 2012-06-25] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174752 2012-06-19] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [iSkysoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe [2066432 2015-01-07] (iSkySoft)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1057408 2015-03-14] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [203264 2015-03-14] (ArcSoft Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATII4E.EXE [283232 2015-03-14] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATII4E.EXE [283232 2015-03-14] (SEIKO EPSON CORPORATION)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [166568 2015-03-23] (NVIDIA Corporation)
AppInit_DLLs: , C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [166568 2015-03-23] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [146480 2015-03-23] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [146480 2015-03-23] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [146480 2015-03-23] (NVIDIA Corporation)
AppInit_DLLs-x32: , c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [146480 2015-03-23] (NVIDIA Corporation)
AppInit_DLLs-x32: , C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [146480 2015-03-23] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass FF RunOnce.lnk
ShortcutTarget: Install LastPass FF RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk
ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
Startup: C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odeslat do OneNote.lnk
ShortcutTarget: Odeslat do OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SystemExplorerDisabled ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?logged=1#obsah
SearchScopes: HKLM-x32 -> SuggestionsURL_JSON http://api.widdit.com/suggestions/?form ... earchTerms}
SearchScopes: HKLM-x32 -> TopResultURLFallback http://search.certified-toolbar.com?si= ... earchTerms}
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {1E1F17B7-F889-4480-8A29-31EC9A9EFF8C} URL = http://www.novinky.cz/hledej?w={searchT ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {1E2C0E9F-5A57-404C-B006-0935D8B62540} URL = http://www.alza.cz/SearchAdvanced.asp?EXPS={searchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {261F48F8-D058-48FB-AF2F-1612D1198CC3} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {4B2BCD33-D984-4D8E-9C54-B803E34B1CA9} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {593B6F83-B0BB-4B83-A5D9-7AC258B674B2} URL = http://www.mapy.cz/?query={searchTerms} ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {9249FFDB-058C-45D6-9AF3-F1B23BF48FF0} URL = http://search.seznam.cz/?q={searchTerms ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {9FF53AE7-AE60-4664-949F-033A0F77247D} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {A11803E2-62F5-4A23-B930-9F8D435E2A78} URL = http://www.firmy.cz/phr/{searchTerms}?s ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {A3A70049-68EA-44AC-905D-25C4A57E654C} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {C7C7B0ED-D00A-4989-9D5A-29377FA141AF} URL = http://cs.wikipedia.org/w/index.php?tit ... earchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {D55EDDC6-DF84-4DE3-A258-8E0FC1DAE671} URL = http://www.radirna.cz/search/{searchTerms}/
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {DCEBF011-A869-4BF6-AF25-376F5EE21962} URL = http://cs.wikipedia.org/w/index.php?tit ... earchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-24] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-03-14] (SEIKO EPSON CORPORATION)
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-03-22] (LastPass)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2015-02-10] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-02-10] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-24] (Oracle Corporation)
BHO: DownloadHelper Class -> {FF2573AE-E1ED-40e1-83BA-F544CB2EE135} -> C:\Program Files\Common Files\Download Helper\DownloadHelperx64.dll [2011-01-07] (IE Download Helper)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-08-12] (Adblock Plus)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-05-31] (Atheros Commnucations)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2015-03-22] (LastPass)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2015-02-10] (Microsoft Corporation)
BHO-x32: DownloadHelper Class -> {FF2573AE-E1ED-40e1-83BA-F544CB2EE135} -> C:\Program Files (x86)\Common Files\Download Helper\DownloadHelper.dll [2011-01-07] (IE Download Helper)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12] (Adblock Plus)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-03-14] (SEIKO EPSON CORPORATION)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-03-22] (LastPass)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2015-03-22] (LastPass)
DPF: HKLM-x32 {0D41B8C5-2599-4893-8183-00195EC8D5F9} http://www.asus.com/support/asusTek_sys_ctrl3.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab
DPF: HKLM-x32 {6A060448-60F9-11D5-A6CD-0002B31F7455}
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{A749964F-2A94-43D1-9724-95EC764BBAA2}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1

FireFox:
========
FF ProfilePath: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-20] ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2015-03-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-24] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-24] (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2015-03-22] (LastPass)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @Skype Technologies S.A..com/Skype Web Plugin -> C:\Program Files (x86)\SkypeWebPlugin\npSkypeWebPlugin64.dll [2013-12-04] (Skype)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2015-03-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-20] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-03-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-07-12] (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2015-03-22] (LastPass)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-04-12] (Microsoft Corporation)
FF Plugin-x32: @oberon-media.com/ONCAdapter -> C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.14\npapicomadapter.dll [2012-05-31] (Oberon-Media )
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-03-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-03-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Ruda\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @tools.google.com/Google Update;version=3 -> C:\Users\Ruda\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2014-11-14] (Google Inc.)
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @tools.google.com/Google Update;version=9 -> C:\Users\Ruda\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2014-11-14] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll [2015-03-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Users\Ruda\AppData\Roaming\mozilla\plugins\nppdf32.dll [2014-12-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Ruda\AppData\Roaming\mozilla\plugins\npPDFXCviewNPPlugin.dll [2014-12-28] (Tracker Software Products (Canada) Ltd.)
FF SearchPlugin: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\searchplugins\zbocz.xml [2015-02-05]
FF Extension: LastPass - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\Extensions\support@lastpass.com [2015-03-22]
FF Extension: S3.Google Translator - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\Extensions\s3google@translator.xpi [2015-02-04]
FF Extension: Speed Dial - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi [2015-02-04]
FF Extension: Adblock Plus - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-02-04]
FF Extension: Tab Mix Plus - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2015-02-04]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-03-21]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2015-03-21]

Chrome:
=======
CHR Profile: C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Default
CHR Profile: C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Extension: (Google Slides) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-24]
CHR Extension: (Google Docs) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-24]
CHR Extension: (Google Drive) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-24]
CHR Extension: (YouTube) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-24]
CHR Extension: (Google Search) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-24]
CHR Extension: (Google Sheets) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-24]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2015-01-24]
CHR Extension: (Translator (All Languages)) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\kkdkohkdahffmjhcehilamblbpnjpmlo [2015-02-03]
CHR Extension: (Google Wallet) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-24]
CHR Extension: (Gmail) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-24]
CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - http://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - http://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2015-02-25] (ABBYY)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [109056 2015-03-14] (ArcSoft Inc.)
R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [119424 2012-05-31] (Atheros Commnucations) [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2015-03-16] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2015-03-16] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2714800 2015-03-20] (Microsoft Corporation)
R2 CLPSLauncher; C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [70864 2014-12-25] (Comodo Security Solutions, Inc.)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [7618952 2015-02-04] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265304 2015-02-04] (COMODO)
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [216576 2015-02-11] () [File not signed]
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2370240 2014-11-27] (Comodo Security Solutions, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2015-03-14] (Seiko Epson Corporation)
S4 GeekBuddyRSP; C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2014-12-25] (Comodo Security Solutions, Inc.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2014-12-13] (NVIDIA Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2000-01-01] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-02-18] (LogMeIn, Inc.)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [9216 2009-07-14] (Microsoft Corporation)
R2 MSSQL$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2015-02-21] (Microsoft Corporation)
R2 MSSQLSERVER; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe [29293408 2015-02-21] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19823248 2014-12-13] (NVIDIA Corporation)
R2 simptcp; C:\Windows\SysWOW64\tcpsvcs.exe [9216 2009-07-14] (Microsoft Corporation)
R2 SNMP; C:\Windows\System32\snmp.exe [49664 2010-11-20] (Microsoft Corporation)
R2 SNMP; C:\Windows\SysWOW64\snmp.exe [47616 2010-11-20] (Microsoft Corporation)
R2 ssinstall; C:\Windows\SysWOW64\ssins.exe [2324216 2013-11-01] (PS Media s.r.o.)
S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-20] (Mister Group)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5436176 2015-03-01] (TeamViewer GmbH)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2000-01-01] (VIA Technologies, Inc.)
S4 VideoAcceleratorService; C:\Program Files (x86)\SpeedBit Video Accelerator\VideoAcceleratorService.exe [298152 2014-02-24] (SPEEDbit)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [327296 2012-05-31] (Atheros) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiCharger; C:\Windows\SysWOW64\DRIVERS\AiCharger.sys [17152 2012-02-29] (ASUSTek Computer Inc.)
R3 anvsnddrv; C:\Windows\System32\drivers\anvsnddrv.sys [33872 2015-01-06] (AnvSoft Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R3 AsusVBus; C:\Windows\System32\DRIVERS\AsusVBus.sys [35968 2012-04-12] (Windows (R) Win 7 DDK provider)
R3 AsusVTouch; C:\Windows\System32\DRIVERS\AsusVTouch.sys [16512 2012-04-12] (Windows (R) Win 7 DDK provider)
R1 CFRMD; C:\Windows\System32\DRIVERS\CFRMD.sys [37976 2014-06-26] (Windows (R) Win 7 DDK provider) [File not signed]
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [20184 2015-01-30] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [792648 2015-01-30] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [45880 2015-01-30] (COMODO)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2015-01-31] ()
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [104608 2015-01-30] (COMODO)
S3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [164864 2014-10-22] (ITE ) [File not signed]
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [117912 2000-01-01] (Qualcomm Atheros Co., Ltd.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [100312 2000-01-01] (Intel Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [189440 2009-07-14] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2014-12-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
S3 PCWinSoft; C:\Windows\System32\DRIVERS\scrcamhrdrv_x64.sys [241800 2012-10-11] (Windows (R) Server 2003 DDK provider)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-12-22] ()
S3 XHCIdrv; C:\Windows\System32\DRIVERS\XHCIdrv.sys [119720 2013-08-08] (Windows (R) Win 7 DDK provider)
S3 cpuz134; \??\C:\Users\Ruda\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-25 15:40 - 2015-03-25 15:40 - 00000000 ___RD () C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-03-25 15:37 - 2015-03-25 15:37 - 00000022 _____ () C:\Windows\S.dirmngr
2015-03-25 15:37 - 2015-03-25 15:37 - 00000000 ___HD () C:\Windows\AxInstSV
2015-03-25 15:25 - 2015-03-25 11:31 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-03-25 13:34 - 2015-03-25 15:40 - 00000000 ____D () C:\zoek
2015-03-25 11:37 - 2015-03-25 11:11 - 00001267 _____ () C:\zoek-results2015-03-25-101145.log
2015-03-25 11:09 - 2015-03-25 10:41 - 00001302 _____ () C:\zoek-results2015-03-25-094144.log
2015-03-25 10:38 - 2015-03-25 15:40 - 00058336 _____ () C:\zoek-results.log
2015-03-25 10:33 - 2015-03-25 15:37 - 00000000 ____D () C:\zoek_backup
2015-03-25 10:27 - 2015-03-25 10:27 - 00002576 _____ () C:\Users\Ruda\Documents\AdwCleaner[S1].txt
2015-03-25 10:01 - 2015-03-25 10:01 - 02168320 _____ () C:\Users\Ruda\Downloads\adwcleaner_4.113.exe
2015-03-25 01:46 - 2015-03-25 15:38 - 00000840 _____ () C:\Windows\setupact.log
2015-03-25 01:46 - 2015-03-25 15:37 - 00001350 _____ () C:\Windows\PFRO.log
2015-03-25 01:46 - 2015-03-25 01:46 - 00000000 _____ () C:\Windows\setuperr.log
2015-03-25 01:22 - 2015-03-25 09:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvisoft
2015-03-23 17:21 - 2015-03-23 17:21 - 00000000 ____D () C:\Windows\SysWOW64\NV
2015-03-23 17:21 - 2015-03-23 17:21 - 00000000 ____D () C:\Windows\system32\NV
2015-03-23 17:16 - 2015-03-23 17:17 - 31387936 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 24025376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 18531568 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 17480432 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 16003912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 14434704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 12688328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-03-23 17:16 - 2015-03-23 17:17 - 11644928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 11599072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 09735256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 09697640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 03141976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 02953672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 02785568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 02730208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 02412376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 00895776 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 00867784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 00861128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 00354016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 00166568 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2015-03-23 17:16 - 2014-05-20 03:44 - 00026069 _____ () C:\Windows\system32\nvinfo.pb
2015-03-22 13:10 - 2015-03-22 13:10 - 00001196 _____ () C:\Users\Public\Desktop\My LastPass Vault.lnk
2015-03-21 23:33 - 2015-03-21 23:34 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-03-19 23:09 - 2015-03-19 23:09 - 02483904 _____ (Sysinternals - www.sysinternals.com) C:\Users\Ruda\Downloads\Procmon.exe
2015-03-19 23:09 - 2011-11-28 11:46 - 00063582 _____ () C:\Users\Ruda\Downloads\procmon.chm
2015-03-19 23:09 - 2006-07-28 09:32 - 00007005 _____ () C:\Users\Ruda\Downloads\Eula.txt
2015-03-19 15:23 - 2015-03-19 15:23 - 00013642 _____ () C:\Users\Ruda\Documents\EMAILY Nov.heslem.odt
2015-03-19 10:03 - 2015-03-19 10:03 - 01919272 _____ (Mister Group ) C:\Users\Ruda\Downloads\SystemExplorerSetup_640.exe
2015-03-18 23:06 - 2015-03-18 23:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tisk Obalek
2015-03-18 22:46 - 2015-03-18 22:47 - 04858555 _____ (Mgr. Radovan Kraus ) C:\Users\Ruda\Downloads\TiskObalek_CZ_3227.exe
2015-03-17 14:09 - 2015-03-18 23:06 - 00000000 ____D () C:\Program Files (x86)\RKComputer
2015-03-17 10:15 - 2015-03-17 10:15 - 00001216 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2015-03-17 10:15 - 2015-03-17 10:15 - 00001204 _____ () C:\Users\Public\Desktop\paint.net.lnk
2015-03-17 10:13 - 2015-03-17 10:14 - 00000000 ____D () C:\Program Files\paint.net
2015-03-17 10:00 - 2014-12-22 01:59 - 49792191 ____N () C:\Users\Ruda\Downloads\2.aTube Catcher.wmv nastavení a stah.z You Tube
2015-03-17 10:00 - 2014-12-22 00:16 - 00000218 ____N () C:\Users\Ruda\Downloads\Nahrávání pořadů z web. stránek.gdoc
2015-03-16 10:45 - 2015-03-16 10:45 - 00000000 ____D () C:\Users\Ruda\Tracing
2015-03-15 02:41 - 2015-03-15 02:47 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Notepad++
2015-03-14 17:16 - 2015-03-14 17:18 - 00000000 ____D () C:\Users\Ruda\Downloads\EPSON
2015-03-14 16:50 - 2015-03-14 16:51 - 03545416 _____ () C:\Users\Ruda\Downloads\EpsonConnect130.exe
2015-03-14 16:36 - 2015-03-14 16:36 - 00002143 _____ () C:\Users\Public\Desktop\Epson Easy Photo Print.lnk
2015-03-14 16:35 - 2015-03-14 16:35 - 00000000 ____D () C:\ProgramData\Sony Corporation
2015-03-14 16:25 - 2015-03-14 16:25 - 00000000 ____D () C:\Program Files\Common Files\EPSON
2015-03-14 15:09 - 2015-03-14 15:08 - 00135824 _____ (Seiko Epson Corporation) C:\Windows\system32\escsvc64.exe
2015-03-14 15:09 - 2012-07-24 00:00 - 00466432 _____ (Seiko Epson Corporation) C:\Windows\system32\esxw2ud.dll
2015-03-14 14:15 - 2015-03-14 14:15 - 00002129 _____ () C:\Users\Public\Desktop\Media Impression 2.lnk
2015-03-14 14:15 - 2015-03-14 14:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft MediaImpression 2
2015-03-14 14:15 - 2015-03-14 14:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Connect
2015-03-14 14:06 - 2015-03-14 22:11 - 00000000 ____D () C:\ProgramData\EPSON
2015-03-14 13:44 - 2015-03-17 11:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
2015-03-14 13:41 - 2015-03-21 21:03 - 00000000 ____D () C:\Program Files (x86)\Epson Software
2015-03-14 13:40 - 2015-03-14 16:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2015-03-14 13:40 - 2015-03-14 15:09 - 00000932 _____ () C:\Users\Public\Desktop\EPSON Scan.lnk
2015-03-14 13:40 - 2015-03-14 13:39 - 00132560 _____ (Seiko Epson Corporation) C:\Windows\system32\esdevapp.exe
2015-03-14 13:40 - 2012-08-08 00:00 - 00094208 _____ (Seiko Epson Corporation.) C:\Windows\system32\esxw2_dd.dll
2015-03-14 13:40 - 2012-04-20 00:00 - 00262144 _____ (Seiko Epson Corporation) C:\Windows\SysWOW64\esintdd.dll
2015-03-14 13:40 - 2012-04-18 00:00 - 00281088 _____ (Seiko Epson Corporation) C:\Windows\system32\esxuindd.dll
2015-03-14 13:40 - 2012-03-26 01:00 - 00065793 _____ () C:\Windows\system32\esfwdd.bin
2015-03-14 13:40 - 2009-10-16 00:00 - 00013824 _____ (Seiko Epson Corporation) C:\Windows\system32\esxcdev.dll
2015-03-14 13:39 - 2015-03-14 13:52 - 00000000 ____D () C:\Program Files (x86)\epson
2015-03-13 12:36 - 2015-03-14 16:36 - 00000000 ____D () C:\ProgramData\UDL
2015-03-13 11:12 - 2015-03-13 11:12 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppmon.dll
2015-03-13 11:12 - 2015-03-13 11:12 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enppmon.dll
2015-03-13 11:12 - 2015-03-13 11:12 - 00535552 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppui.dll
2015-03-13 11:12 - 2015-03-13 11:12 - 00535552 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enppui.dll
2015-03-13 11:12 - 2015-03-13 11:12 - 00219648 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enspres.dll
2015-03-13 11:12 - 2015-03-13 11:12 - 00219648 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enpres.dll
2015-03-13 11:10 - 2015-03-13 11:10 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_YLMI4E.DLL
2015-03-13 11:10 - 2015-03-13 11:10 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_YD4BI4E.DLL
2015-03-13 11:10 - 2015-03-13 11:10 - 00010752 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_GCINST.DLL
2015-03-13 01:38 - 2015-03-13 01:39 - 04532776 _____ (Piriform Ltd) C:\Users\Ruda\Downloads\dfsetup219.exe
2015-03-13 00:10 - 2015-03-13 00:10 - 00011685 _____ () C:\Users\Ruda\AppData\Local\recently-used.xbel
2015-03-11 09:44 - 2015-03-11 09:44 - 25021440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 19720192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 14398976 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 12827648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 06035456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 04300288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-03-11 09:44 - 2015-03-11 09:44 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-03-11 09:44 - 2015-03-11 09:44 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-03-11 09:44 - 2015-03-11 09:44 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-03-11 09:44 - 2015-03-11 09:44 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00389800 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00342696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-03-11 09:44 - 2015-03-11 09:44 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-03-11 09:44 - 2015-03-11 09:44 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-03-11 09:44 - 2015-03-11 09:44 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-03-11 09:44 - 2015-02-20 04:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-03-11 09:44 - 2015-02-20 03:22 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-03-11 09:03 - 2015-03-11 09:03 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 11411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 05554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-03-11 09:03 - 2015-03-11 09:03 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 03973048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-03-11 09:03 - 2015-03-11 09:03 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-03-11 09:03 - 2015-03-11 09:03 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-03-11 09:03 - 2015-03-11 09:03 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-03-11 09:03 - 2015-03-11 09:03 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-03-11 09:03 - 2015-03-11 09:03 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-03-11 09:03 - 2015-03-11 09:03 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-03-11 09:02 - 2015-03-11 09:02 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-03-11 09:02 - 2015-03-11 09:02 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-03-11 09:02 - 2015-03-11 09:02 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-03-11 09:02 - 2015-03-11 09:02 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-03-11 09:02 - 2015-03-11 09:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-03-11 09:02 - 2015-03-11 09:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 12875264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 03204096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-03-11 09:01 - 2015-03-11 09:01 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-03-11 09:01 - 2015-03-11 09:01 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-03-11 09:01 - 2015-03-11 09:01 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-03-11 09:01 - 2015-03-11 09:01 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-03-11 09:01 - 2015-03-11 09:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-03-11 09:01 - 2015-03-11 09:01 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-03-11 09:01 - 2015-03-11 09:01 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-03-11 08:58 - 2015-03-11 08:58 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-03-11 08:58 - 2015-03-11 08:58 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-03-11 00:54 - 2015-03-11 00:54 - 00000000 ____D () C:\Users\Ruda\Documents\Anvsoft
2015-03-11 00:54 - 2015-03-11 00:54 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\AnvsoftPdfTools
2015-03-11 00:52 - 2015-03-11 00:52 - 37602112 _____ (pdfmate.com ) C:\Users\Ruda\Downloads\setup_pdf_converter_pro.exe
2015-03-10 22:58 - 2015-03-19 15:16 - 00015353 _____ () C:\Users\Ruda\Documents\EMAILY.odt
2015-03-10 16:04 - 2015-03-10 16:04 - 00001181 _____ () C:\Users\Public\Desktop\Ashampoo GetBack Photo.lnk
2015-03-10 15:58 - 2015-03-10 15:58 - 10137680 _____ (Ashampoo GmbH & Co. KG ) C:\Users\Ruda\Downloads\ashampoo_getback_photo_18891.exe
2015-03-09 10:33 - 2015-03-09 10:33 - 10074152 _____ (Martin Roubec ) C:\Users\Ruda\Downloads\InstalRecepty .exe
2015-03-08 23:48 - 2015-03-08 23:48 - 00002072 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2015-03-08 23:48 - 2015-03-08 23:48 - 00002060 _____ () C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2015-03-08 23:45 - 2015-03-08 23:45 - 00001127 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-03-08 23:45 - 2015-03-08 23:45 - 00001115 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-03-08 23:27 - 2015-03-08 23:27 - 28763032 _____ (Mozilla) C:\Users\Ruda\Downloads\ThunderbirdSetup31.4.0 .exe
2015-03-08 23:25 - 2015-03-08 23:26 - 40822464 _____ () C:\Users\Ruda\Downloads\FirefoxSetup36.0cz.exe
2015-03-08 16:49 - 2015-03-08 16:49 - 00000000 ____D () C:\aws
2015-03-05 22:48 - 2015-03-05 22:48 - 00000000 ____D () C:\Users\Ruda\Documents\My Cheat Tables
2015-03-05 20:21 - 2015-03-05 20:21 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Tracker Software
2015-03-02 19:13 - 2015-03-02 19:13 - 00003122 _____ () C:\Windows\System32\Tasks\{927A8016-7C84-4099-B4A9-7974F86116C3}
2015-03-02 19:04 - 2015-03-02 19:05 - 140274864 _____ (společnost Microsoft Corporation) C:\Users\Ruda\Downloads\wlsetup-all.exe
2015-03-02 18:29 - 2015-03-08 16:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2015-03-02 18:29 - 2015-03-02 18:29 - 00002180 _____ () C:\Users\Public\Desktop\Google Earth.lnk
2015-03-02 18:27 - 2015-03-02 18:28 - 25415728 _____ () C:\Users\Ruda\Downloads\GoogleEarthWin.exe
2015-03-02 13:59 - 2015-03-02 13:59 - 00003148 _____ () C:\Windows\System32\Tasks\{A6F96F0C-EB4C-4E2F-AAFA-EDD1BC516833}
2015-03-01 20:28 - 2015-03-20 10:40 - 00000000 ____D () C:\Users\Ruda\Documents\Kostička
2015-03-01 18:33 - 2015-03-01 18:33 - 00000972 _____ () C:\Users\Public\Desktop\ProgDVB 7.lnk
2015-03-01 18:33 - 2015-03-01 18:33 - 00000948 _____ () C:\Users\Public\Desktop\ProgTV.lnk
2015-03-01 18:33 - 2015-03-01 18:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProgDVB
2015-03-01 12:22 - 2015-03-01 12:23 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.4
2015-03-01 12:22 - 2015-03-01 12:22 - 00001468 _____ () C:\Users\Public\Desktop\LibreOffice 4.4.lnk
2015-03-01 12:05 - 2015-03-01 12:08 - 224264192 _____ () C:\Users\Ruda\Downloads\LibreOffice_4.4.1_Win_x86.msi
2015-03-01 11:58 - 2015-03-01 11:58 - 28509232 _____ () C:\Users\Ruda\Downloads\vlc-2.2.0-win32.exe
2015-02-27 15:41 - 2015-02-27 15:41 - 00003106 _____ () C:\Windows\System32\Tasks\{71BFF601-8F49-4643-AC08-7CD109E89297}
2015-02-27 09:25 - 2015-02-27 09:25 - 12667027 _____ () C:\Users\Ruda\Downloads\cc-setup.exe
2015-02-26 14:29 - 2015-02-26 14:29 - 00003106 _____ () C:\Windows\System32\Tasks\{638DA9E3-5093-48A0-A3A5-F81670454AC0}
2015-02-26 02:20 - 2015-03-23 01:39 - 00000000 ____D () C:\Users\Ruda\Documents\WebCam Capture Media
2015-02-25 18:46 - 2015-03-10 17:13 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2015-02-25 17:38 - 2015-02-25 17:38 - 00003166 _____ () C:\Windows\System32\Tasks\{3C9D2E01-D7E9-4342-BDC9-2776D4B876E9}
2015-02-25 13:34 - 2015-01-09 00:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls
2015-02-25 13:34 - 2015-01-09 00:43 - 00419936 _____ () C:\Windows\system32\locale.nls
2015-02-25 10:41 - 2015-03-11 11:41 - 00001095 _____ () C:\Users\Ruda\Sti_Trace.log
2015-02-25 10:28 - 2015-02-25 10:28 - 00000000 ____D () C:\Users\Ruda\AppData\Local\ArcSoft
2015-02-25 10:22 - 2015-02-28 14:57 - 00000000 ___HD () C:\ProgramData\ArcSoft
2015-02-25 10:20 - 2015-03-12 00:22 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\ArcSoft
2015-02-25 10:20 - 2015-02-25 10:20 - 00022784 _____ (Arcsoft, Inc.) C:\Windows\SysWOW64\Drivers\afc.sys
2015-02-25 10:20 - 2015-02-25 10:20 - 00000000 ____D () C:\Program Files (x86)\ArcSoft
2015-02-25 10:13 - 2015-02-25 10:13 - 00000000 ____D () C:\Users\Ruda\AppData\Local\ABBYY
2015-02-25 10:13 - 2015-02-25 10:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABBYY FineReader 9.0 Sprint
2015-02-25 10:12 - 2015-03-14 13:51 - 00000000 ____D () C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint
2015-02-25 10:12 - 2015-03-01 19:02 - 00000000 ____D () C:\ProgramData\ABBYY
2015-02-25 10:00 - 2015-03-13 12:41 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Epson
2015-02-25 00:59 - 2015-02-25 00:59 - 00000000 ____D () C:\FFOutput
2015-02-25 00:57 - 2015-02-25 00:58 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2015-02-25 00:03 - 2015-02-25 00:03 - 00003128 _____ () C:\Windows\System32\Tasks\{3C018CAC-80C2-4550-ADE7-06563FDA0C82}
2015-02-24 16:35 - 2015-02-24 16:35 - 00000000 ____D () C:\Users\Ruda\Documents\ASH ZIP
2015-02-24 11:47 - 2015-02-25 11:22 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2015-02-24 11:47 - 2015-02-24 11:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2015-02-24 01:41 - 2015-03-13 02:50 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\XnView
2015-02-24 01:41 - 2015-02-24 01:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView
2015-02-24 01:41 - 2015-02-24 01:41 - 00000000 ____D () C:\Program Files (x86)\XnView
2015-02-24 01:39 - 2015-02-24 01:39 - 05060784 _____ (Gougelet Pierre-e ) C:\Users\Ruda\Downloads\XnView-win.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-25 16:20 - 2013-05-29 00:14 - 01090256 _____ () C:\Windows\WindowsUpdate.log
2015-03-25 16:19 - 2015-01-09 23:20 - 00000000 ____D () C:\FRST
2015-03-25 16:17 - 2014-12-25 14:40 - 01474832 _____ () C:\Windows\system32\Drivers\sfi.dat
2015-03-25 16:16 - 2015-01-29 23:56 - 00003962 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{B9C26119-2806-4546-B247-5A5B1261D67E}
2015-03-25 15:46 - 2009-07-14 05:45 - 00018736 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-03-25 15:46 - 2009-07-14 05:45 - 00018736 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-03-25 15:45 - 2015-02-04 01:39 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-25 15:40 - 2013-03-07 02:52 - 00000466 _____ () C:\Users\Ruda\AppData\Roaming\sp_data.sys
2015-03-25 15:38 - 2015-02-04 01:39 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-03-25 15:38 - 2014-09-14 12:37 - 00000000 _____ () C:\Windows\SysWOW64\sinstall.log
2015-03-25 15:38 - 2014-04-13 15:39 - 00000434 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2015-03-25 15:37 - 2014-12-28 03:28 - 04267958 _____ () C:\Windows\system32\Drivers\fvstore.dat
2015-03-25 15:37 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-25 15:22 - 2015-01-29 23:41 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-03-25 14:22 - 2009-07-14 04:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2015-03-25 14:22 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2015-03-25 11:39 - 2013-03-07 10:49 - 00000000 ____D () C:\Users\Ruda\AppData\Local\CrashDumps
2015-03-25 10:27 - 2015-02-21 03:18 - 00000000 ____D () C:\AdwCleaner
2015-03-25 01:38 - 2014-11-04 12:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer
2015-03-25 01:38 - 2014-06-29 17:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3
2015-03-25 01:34 - 2013-08-23 16:09 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Skype
2015-03-24 23:41 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2015-03-24 17:41 - 2013-10-02 17:41 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\uTorrent
2015-03-24 17:41 - 2013-07-15 19:59 - 00000000 ____D () C:\Users\Ruda\AppData\Local\LogMeIn Hamachi
2015-03-24 17:41 - 2013-04-07 16:45 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\PhotoScape
2015-03-24 12:17 - 2014-11-05 01:12 - 00000891 _____ () C:\Users\Ruda\Desktop\Plus500.lnk
2015-03-24 12:17 - 2014-11-05 01:12 - 00000891 _____ () C:\Users\Guest\Desktop\Plus500.lnk
2015-03-24 00:35 - 2011-02-19 06:36 - 00876542 _____ () C:\Windows\system32\perfh005.dat
2015-03-24 00:35 - 2011-02-19 06:36 - 00268970 _____ () C:\Windows\system32\perfc005.dat
2015-03-24 00:35 - 2009-07-14 06:13 - 02150978 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-03-23 17:21 - 2014-11-28 01:08 - 00000000 ___DC () C:\Temp
2015-03-23 17:21 - 2013-03-08 11:06 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-03-23 17:19 - 2014-01-08 20:21 - 00927520 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-03-23 17:18 - 2013-03-08 11:05 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-03-23 17:17 - 2015-01-27 11:17 - 03109248 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-03-23 17:17 - 2015-01-27 11:17 - 00952952 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-03-23 17:17 - 2014-05-27 12:05 - 00837056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-03-23 17:17 - 2013-11-19 19:52 - 00146480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-03-23 17:06 - 2015-02-10 13:36 - 00000000 ____D () C:\Program Files (x86)\Q-Dir
2015-03-23 17:06 - 2015-02-10 13:35 - 00778240 _____ (Nenad Hrg (SoftwareOK.com)) C:\Users\Ruda\Downloads\Q-Dir_Installer.exe
2015-03-23 17:06 - 2015-01-28 00:36 - 00001797 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Q-Dir.lnk
2015-03-23 17:06 - 2015-01-28 00:36 - 00001791 _____ () C:\Users\Public\Desktop\Q-Dir.lnk
2015-03-23 17:06 - 2013-09-03 09:22 - 00074914 _____ () C:\Windows\Q-Dir.ini
2015-03-22 22:31 - 2014-02-13 11:44 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-22 21:08 - 2013-11-23 00:33 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\vlc
2015-03-22 19:04 - 2015-01-06 17:01 - 03785728 ___SH () C:\Users\Ruda\Documents\Thumbs.db
2015-03-22 13:11 - 2013-11-30 00:32 - 00000000 ____D () C:\Program Files (x86)\LastPass
2015-03-22 13:10 - 2013-11-30 00:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LastPass
2015-03-22 13:10 - 2013-11-04 20:47 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LastPass
2015-03-20 22:49 - 2014-09-28 15:19 - 00002145 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-03-20 12:55 - 2009-07-14 01:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WSDPrint.sys
2015-03-20 12:55 - 2009-07-14 01:35 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\WSDScDrv.dll
2015-03-20 12:55 - 2009-07-14 01:35 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WSDScan.sys
2015-03-20 12:31 - 2013-03-07 03:23 - 00000000 ____D () C:\Users\Ruda\AppData\Local\Adobe
2015-03-20 12:30 - 2015-01-29 23:41 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-03-20 12:30 - 2015-01-29 23:41 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-03-20 12:30 - 2015-01-29 23:41 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-03-20 10:40 - 2014-12-19 22:10 - 00000000 ____D () C:\Users\Ruda\Documents\LICENČNÍ ČÍSLA PROGR
2015-03-20 05:13 - 2014-03-25 01:22 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2015-03-19 10:04 - 2014-05-05 00:52 - 00001054 _____ () C:\Users\Public\Desktop\System Explorer.lnk
2015-03-19 10:04 - 2014-05-05 00:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Explorer
2015-03-19 10:04 - 2014-04-21 13:00 - 00000000 ____D () C:\Program Files (x86)\System Explorer
2015-03-17 10:11 - 2014-12-07 22:58 - 06554872 _____ () C:\Users\Ruda\Downloads\paint.net.4.0.5.install.exe
2015-03-17 10:06 - 2015-01-08 18:10 - 00786944 ___SH () C:\Users\Ruda\Downloads\Thumbs.db
2015-03-16 10:45 - 2014-02-24 11:28 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-03-16 10:45 - 2013-03-07 02:48 - 00000000 ____D () C:\Users\Ruda
2015-03-16 10:44 - 2013-08-23 15:45 - 00000000 ____D () C:\ProgramData\Skype
2015-03-14 16:35 - 2013-03-08 11:08 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-03-13 01:41 - 2014-06-14 01:25 - 00000000 ____D () C:\Program Files\Defraggler
2015-03-13 01:40 - 2014-06-14 01:25 - 00001726 _____ () C:\Users\Public\Desktop\Defraggler.lnk
2015-03-13 00:12 - 2014-01-06 02:52 - 00000000 ____D () C:\Users\Ruda\.gimp-2.8
2015-03-13 00:10 - 2014-01-06 02:55 - 00000000 ____D () C:\Users\Ruda\AppData\Local\gtk-2.0
2015-03-12 03:49 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2015-03-11 15:09 - 2015-01-06 01:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvsoft
2015-03-11 15:07 - 2013-03-08 02:36 - 00000000 ____D () C:\ProgramData\Temp
2015-03-11 13:01 - 2015-01-02 01:10 - 00026064 _____ () C:\Windows\CUAppUsage.Dat
2015-03-11 13:00 - 2014-12-25 14:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2015-03-11 12:53 - 2009-07-14 06:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2015-03-11 10:43 - 2014-01-05 15:52 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-03-11 10:34 - 2009-07-14 05:45 - 04906320 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-11 10:28 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-03-11 10:28 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Dism
2015-03-11 10:16 - 2013-07-10 13:25 - 00000000 ____D () C:\Windows\system32\MRT
2015-03-11 09:55 - 2013-03-07 09:48 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-03-11 00:53 - 2015-01-06 01:12 - 00000000 ____D () C:\Program Files (x86)\Anvsoft
2015-03-10 16:26 - 2014-04-22 08:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2015-03-10 16:26 - 2014-04-22 08:49 - 00000000 ____D () C:\Program Files (x86)\Ashampoo
2015-03-10 16:13 - 2014-01-10 00:12 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Ashampoo
2015-03-10 16:11 - 2014-01-10 00:11 - 00000000 ____D () C:\ProgramData\Ashampoo
2015-03-10 15:06 - 2014-11-28 01:50 - 00000000 ____D () C:\Users\Ruda\Documents\čištění
2015-03-09 10:55 - 2014-06-19 14:40 - 00201216 _____ () C:\Windows\SysWOW64\mediarcpt.dll
2015-03-09 10:55 - 2014-06-19 14:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recepty doma
2015-03-09 10:55 - 2014-06-19 14:40 - 00000000 ____D () C:\Program Files (x86)\Recepty doma
2015-03-09 03:03 - 2015-02-20 17:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2015-03-09 03:02 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2015-03-09 00:43 - 2014-11-04 12:14 - 00000000 ____D () C:\Program Files\Tracker Software
2015-03-08 23:41 - 2014-11-04 12:14 - 00001020 _____ () C:\Users\Public\Desktop\PDF-Viewer.lnk
2015-03-08 16:49 - 2013-03-22 00:36 - 00000000 ____D () C:\Windows\pss
2015-03-08 16:49 - 2013-03-07 03:17 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\ASUS WebStorage
2015-03-08 16:11 - 2014-12-25 14:40 - 00000000 ____D () C:\Windows\System32\Tasks\COMODO
2015-03-08 16:11 - 2014-09-30 10:22 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\PicPick
2015-03-08 16:11 - 2014-09-28 15:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-03-08 16:11 - 2014-01-05 15:51 - 00000000 ____D () C:\Users\Guest
2015-03-08 16:11 - 2013-12-07 18:51 - 00000000 ____D () C:\Users\Classic .NET AppPool
2015-03-08 16:11 - 2013-12-02 11:38 - 00000000 ____D () C:\Program Files\CCleaner
2015-03-08 16:11 - 2013-07-28 10:32 - 00000000 ____D () C:\Users\DefaultAppPool
2015-03-08 16:11 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Msdtc
2015-03-08 16:10 - 2015-02-20 17:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2005
2015-03-08 16:09 - 2013-08-19 14:49 - 00000000 ____D () C:\Windows\Minidump
2015-03-08 16:06 - 2013-03-07 04:30 - 00000000 ____D () C:\Users\Ruda\AppData\Local\Google
2015-03-04 10:28 - 2013-03-07 02:52 - 00000000 ____D () C:\Users\Ruda\Documents\Bluetooth Folder
2015-03-02 18:29 - 2012-02-24 12:40 - 00000000 ____D () C:\Program Files (x86)\Google
2015-03-01 18:55 - 2014-12-23 13:26 - 00000000 ____D () C:\Users\Ruda\Documents\Evidence LSoft
2015-03-01 18:38 - 2015-02-11 11:30 - 00000000 ____D () C:\ProgramData\ProgDVB
2015-03-01 17:52 - 2014-09-13 00:22 - 00077872 _____ () C:\Users\Ruda\AppData\Local\GDIPFONTCACHEV1.DAT
2015-03-01 13:17 - 2015-01-03 20:35 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2015-03-01 12:22 - 2014-11-16 17:45 - 00000000 ____D () C:\Program Files (x86)\LibreOffice 4
2015-03-01 12:02 - 2013-12-29 19:08 - 00001028 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2015-02-27 09:27 - 2013-12-02 11:38 - 00000824 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-02-26 13:19 - 2015-02-13 12:47 - 04575232 _____ (Google Inc.) C:\Windows\SysWOW64\GPhotos.scr
2015-02-26 12:41 - 2014-10-07 00:16 - 00009216 _____ () C:\Users\Ruda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-02-25 22:11 - 2015-01-18 20:54 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird.bak
2015-02-25 10:20 - 2014-08-24 22:56 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2015-02-25 10:05 - 2013-10-09 13:15 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2015-02-24 12:35 - 2012-02-24 12:42 - 00000000 ____D () C:\Program Files\Windows Live
2015-02-24 11:17 - 2011-02-19 07:13 - 00000000 ____D () C:\Windows\sr-Latn-CS

==================== Files in the root of some directories =======

2013-03-16 11:33 - 2013-03-16 04:27 - 15271824 _____ (Google Inc.) C:\Program Files (x86)\picasa39-setup.exe
2013-10-16 00:00 - 2015-03-22 13:11 - 14147584 _____ () C:\Program Files (x86)\Common Files\lpuninstall.exe
2014-06-26 22:06 - 2014-06-26 22:19 - 0000096 _____ () C:\Users\Ruda\AppData\Roaming\Camdata.ini
2014-06-26 22:06 - 2014-06-26 22:19 - 0000408 _____ () C:\Users\Ruda\AppData\Roaming\CamLayout.ini
2014-06-26 22:06 - 2014-06-26 22:19 - 0000408 _____ () C:\Users\Ruda\AppData\Roaming\CamShapes.ini
2014-06-26 22:06 - 2014-06-26 22:19 - 0004509 _____ () C:\Users\Ruda\AppData\Roaming\CamStudio.cfg
2014-03-24 18:03 - 2015-01-01 14:05 - 0099384 _____ () C:\Users\Ruda\AppData\Roaming\inst.exe
2014-03-24 18:03 - 2015-01-01 14:05 - 0007859 _____ () C:\Users\Ruda\AppData\Roaming\pcouffin.cat
2014-03-24 18:03 - 2015-01-01 14:05 - 0001167 _____ () C:\Users\Ruda\AppData\Roaming\pcouffin.inf
2014-03-24 18:03 - 2015-01-01 14:05 - 0082816 _____ (VSO Software) C:\Users\Ruda\AppData\Roaming\pcouffin.sys
2013-03-07 02:52 - 2015-03-25 15:40 - 0000466 _____ () C:\Users\Ruda\AppData\Roaming\sp_data.sys
2014-01-18 18:31 - 2014-01-18 18:31 - 0022713 _____ () C:\Users\Ruda\AppData\Roaming\UserTile.png
2014-12-11 18:11 - 2015-01-01 13:54 - 0001057 _____ () C:\Users\Ruda\AppData\Roaming\vso_ts_preview.xml
2014-10-07 00:16 - 2015-02-26 12:41 - 0009216 _____ () C:\Users\Ruda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-11-28 16:12 - 2013-11-28 16:12 - 0001715 _____ () C:\Users\Ruda\AppData\Local\FastClean.20131128.161230.txt
2015-03-13 00:10 - 2015-03-13 00:10 - 0011685 _____ () C:\Users\Ruda\AppData\Local\recently-used.xbel
2013-03-27 21:44 - 2014-08-16 15:37 - 0007670 _____ () C:\Users\Ruda\AppData\Local\Resmon.ResmonCfg
2014-06-03 08:57 - 2014-10-22 14:52 - 0012326 _____ () C:\ProgramData\LmeUSB.log
2014-06-03 08:57 - 2014-10-22 14:52 - 0012342 _____ () C:\ProgramData\LSDmbTH.log
2015-02-06 21:20 - 2015-02-06 21:20 - 0005074 _____ () C:\ProgramData\mxnhytee.feu
2013-03-08 02:37 - 2013-03-08 02:38 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2013-03-08 02:36 - 2013-03-08 02:37 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2013-03-08 02:36 - 2013-03-08 02:36 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-03-25 03:42

==================== End Of Log ============================

Tak nevím, jestli jsem prve neposlal něco jiného.
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by Ruda (administrator) on RUDA-PC on 25-03-2015 22:08:25
Running from C:\PerfLogs\Desktop
Loaded Profiles: Ruda (Available profiles: Ruda & Guest & Classic .NET AppPool & DefaultAppPool)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(Microsoft Corporation) C:\Windows\System32\snmp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(PS Media s.r.o.) C:\Windows\SysWOW64\ssins.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATII4E.EXE
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATII4E.EXE
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(iSkySoft) C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2661672 2012-02-19] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [361984 2011-05-26] (Alcor Micro Corp.)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\btvstack.exe [1023616 2012-05-31] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\athbttray.exe [801920 2012-05-31] (Atheros Commnucations)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1297624 2015-02-04] (COMODO)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2000-01-01] (Intel Corporation)
HKLM-x32\...\Run: [ACMON] => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [102568 2012-02-21] (ASUS)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2321072 2012-02-03] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322208 2012-06-25] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174752 2012-06-19] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [iSkysoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe [2066432 2015-01-07] (iSkySoft)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1057408 2015-03-14] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [203264 2015-03-14] (ArcSoft Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATII4E.EXE [283232 2015-03-14] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATII4E.EXE [283232 2015-03-14] (SEIKO EPSON CORPORATION)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [166568 2015-03-23] (NVIDIA Corporation)
AppInit_DLLs: , C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [166568 2015-03-23] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [146480 2015-03-23] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [146480 2015-03-23] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [146480 2015-03-23] (NVIDIA Corporation)
AppInit_DLLs-x32: , c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [146480 2015-03-23] (NVIDIA Corporation)
AppInit_DLLs-x32: , C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [146480 2015-03-23] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass FF RunOnce.lnk
ShortcutTarget: Install LastPass FF RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk
ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
Startup: C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odeslat do OneNote.lnk
ShortcutTarget: Odeslat do OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SystemExplorerDisabled ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?logged=1#obsah
SearchScopes: HKLM-x32 -> SuggestionsURL_JSON http://api.widdit.com/suggestions/?form ... earchTerms}
SearchScopes: HKLM-x32 -> TopResultURLFallback http://search.certified-toolbar.com?si= ... earchTerms}
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {1E1F17B7-F889-4480-8A29-31EC9A9EFF8C} URL = http://www.novinky.cz/hledej?w={searchT ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {1E2C0E9F-5A57-404C-B006-0935D8B62540} URL = http://www.alza.cz/SearchAdvanced.asp?EXPS={searchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {261F48F8-D058-48FB-AF2F-1612D1198CC3} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {4B2BCD33-D984-4D8E-9C54-B803E34B1CA9} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {593B6F83-B0BB-4B83-A5D9-7AC258B674B2} URL = http://www.mapy.cz/?query={searchTerms} ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {9249FFDB-058C-45D6-9AF3-F1B23BF48FF0} URL = http://search.seznam.cz/?q={searchTerms ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {9FF53AE7-AE60-4664-949F-033A0F77247D} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {A11803E2-62F5-4A23-B930-9F8D435E2A78} URL = http://www.firmy.cz/phr/{searchTerms}?s ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {A3A70049-68EA-44AC-905D-25C4A57E654C} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_12454
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {C7C7B0ED-D00A-4989-9D5A-29377FA141AF} URL = http://cs.wikipedia.org/w/index.php?tit ... earchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {D55EDDC6-DF84-4DE3-A258-8E0FC1DAE671} URL = http://www.radirna.cz/search/{searchTerms}/
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {DCEBF011-A869-4BF6-AF25-376F5EE21962} URL = http://cs.wikipedia.org/w/index.php?tit ... earchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-24] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-03-14] (SEIKO EPSON CORPORATION)
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-03-22] (LastPass)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2015-02-10] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-02-10] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-24] (Oracle Corporation)
BHO: DownloadHelper Class -> {FF2573AE-E1ED-40e1-83BA-F544CB2EE135} -> C:\Program Files\Common Files\Download Helper\DownloadHelperx64.dll [2011-01-07] (IE Download Helper)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-08-12] (Adblock Plus)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-05-31] (Atheros Commnucations)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2015-03-22] (LastPass)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2015-02-10] (Microsoft Corporation)
BHO-x32: DownloadHelper Class -> {FF2573AE-E1ED-40e1-83BA-F544CB2EE135} -> C:\Program Files (x86)\Common Files\Download Helper\DownloadHelper.dll [2011-01-07] (IE Download Helper)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12] (Adblock Plus)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-03-14] (SEIKO EPSON CORPORATION)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-03-22] (LastPass)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2015-03-22] (LastPass)
DPF: HKLM-x32 {0D41B8C5-2599-4893-8183-00195EC8D5F9} http://www.asus.com/support/asusTek_sys_ctrl3.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab
DPF: HKLM-x32 {6A060448-60F9-11D5-A6CD-0002B31F7455}
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{A749964F-2A94-43D1-9724-95EC764BBAA2}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1

FireFox:
========
FF ProfilePath: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081
FF Homepage: https://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-20] ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2015-03-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-24] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-24] (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2015-03-22] (LastPass)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @Skype Technologies S.A..com/Skype Web Plugin -> C:\Program Files (x86)\SkypeWebPlugin\npSkypeWebPlugin64.dll [2013-12-04] (Skype)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2015-03-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-20] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-03-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-07-12] (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2015-03-22] (LastPass)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-04-12] (Microsoft Corporation)
FF Plugin-x32: @oberon-media.com/ONCAdapter -> C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.14\npapicomadapter.dll [2012-05-31] (Oberon-Media )
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-03-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-03-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @kb-ext.cz/PKIComponent -> C:\Users\Ruda\AppData\Roaming\KB-ext\lib\x86\npPKIComponentNPAPI-kbext.dll [2015-03-25] (Komerční banka, a.s.)
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Ruda\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @tools.google.com/Google Update;version=3 -> C:\Users\Ruda\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2014-11-14] (Google Inc.)
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @tools.google.com/Google Update;version=9 -> C:\Users\Ruda\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2014-11-14] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll [2015-03-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Users\Ruda\AppData\Roaming\mozilla\plugins\nppdf32.dll [2014-12-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Ruda\AppData\Roaming\mozilla\plugins\npPDFXCviewNPPlugin.dll [2014-12-28] (Tracker Software Products (Canada) Ltd.)
FF SearchPlugin: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\searchplugins\zbocz.xml [2015-02-05]
FF Extension: LastPass - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\Extensions\support@lastpass.com [2015-03-22]
FF Extension: S3.Google Translator - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\Extensions\s3google@translator.xpi [2015-02-04]
FF Extension: Speed Dial - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi [2015-02-04]
FF Extension: Adblock Plus - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-02-04]
FF Extension: Tab Mix Plus - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2015-02-04]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-03-21]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2015-03-21]

Chrome:
=======
CHR Profile: C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Default
CHR Profile: C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Extension: (Google Slides) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-24]
CHR Extension: (Google Docs) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-24]
CHR Extension: (Google Drive) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-24]
CHR Extension: (YouTube) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-24]
CHR Extension: (Google Search) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-24]
CHR Extension: (Google Sheets) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-24]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2015-01-24]
CHR Extension: (Skype Click to Call) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-03-25]
CHR Extension: (Google Wallet) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-24]
CHR Extension: (Gmail) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-24]
CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - http://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - http://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2015-02-25] (ABBYY)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [109056 2015-03-14] (ArcSoft Inc.)
R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [119424 2012-05-31] (Atheros Commnucations) [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2015-03-16] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2015-03-16] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2714800 2015-03-20] (Microsoft Corporation)
R2 CLPSLauncher; C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [70864 2014-12-25] (Comodo Security Solutions, Inc.)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [7618952 2015-02-04] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265304 2015-02-04] (COMODO)
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [216576 2015-02-11] () [File not signed]
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2370240 2014-11-27] (Comodo Security Solutions, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2015-03-14] (Seiko Epson Corporation)
S4 GeekBuddyRSP; C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2014-12-25] (Comodo Security Solutions, Inc.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2014-12-13] (NVIDIA Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2000-01-01] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-02-18] (LogMeIn, Inc.)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [9216 2009-07-14] (Microsoft Corporation)
R2 MSSQL$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2015-02-21] (Microsoft Corporation)
R2 MSSQLSERVER; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe [29293408 2015-02-21] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19823248 2014-12-13] (NVIDIA Corporation)
R2 simptcp; C:\Windows\SysWOW64\tcpsvcs.exe [9216 2009-07-14] (Microsoft Corporation)
R2 SNMP; C:\Windows\System32\snmp.exe [49664 2010-11-20] (Microsoft Corporation)
R2 SNMP; C:\Windows\SysWOW64\snmp.exe [47616 2010-11-20] (Microsoft Corporation)
R2 ssinstall; C:\Windows\SysWOW64\ssins.exe [2324216 2013-11-01] (PS Media s.r.o.)
S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-20] (Mister Group)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5436176 2015-03-01] (TeamViewer GmbH)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2000-01-01] (VIA Technologies, Inc.)
S4 VideoAcceleratorService; C:\Program Files (x86)\SpeedBit Video Accelerator\VideoAcceleratorService.exe [298152 2014-02-24] (SPEEDbit)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [327296 2012-05-31] (Atheros) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiCharger; C:\Windows\SysWOW64\DRIVERS\AiCharger.sys [17152 2012-02-29] (ASUSTek Computer Inc.)
R3 anvsnddrv; C:\Windows\System32\drivers\anvsnddrv.sys [33872 2015-01-06] (AnvSoft Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R3 AsusVBus; C:\Windows\System32\DRIVERS\AsusVBus.sys [35968 2012-04-12] (Windows (R) Win 7 DDK provider)
R3 AsusVTouch; C:\Windows\System32\DRIVERS\AsusVTouch.sys [16512 2012-04-12] (Windows (R) Win 7 DDK provider)
R1 CFRMD; C:\Windows\System32\DRIVERS\CFRMD.sys [37976 2014-06-26] (Windows (R) Win 7 DDK provider) [File not signed]
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [20184 2015-01-30] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [792648 2015-01-30] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [45880 2015-01-30] (COMODO)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2015-01-31] ()
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [104608 2015-01-30] (COMODO)
S3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [164864 2014-10-22] (ITE ) [File not signed]
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [117912 2000-01-01] (Qualcomm Atheros Co., Ltd.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [100312 2000-01-01] (Intel Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [189440 2009-07-14] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2014-12-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
S3 PCWinSoft; C:\Windows\System32\DRIVERS\scrcamhrdrv_x64.sys [241800 2012-10-11] (Windows (R) Server 2003 DDK provider)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-12-22] ()
S3 XHCIdrv; C:\Windows\System32\DRIVERS\XHCIdrv.sys [119720 2013-08-08] (Windows (R) Win 7 DDK provider)
S3 cpuz134; \??\C:\Users\Ruda\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-25 17:35 - 2015-03-25 17:35 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\KB-ext
2015-03-25 15:40 - 2015-03-25 15:40 - 00000000 ___RD () C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-03-25 15:37 - 2015-03-25 15:37 - 00000022 _____ () C:\Windows\S.dirmngr
2015-03-25 15:37 - 2015-03-25 15:37 - 00000000 ___HD () C:\Windows\AxInstSV
2015-03-25 15:25 - 2015-03-25 11:31 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-03-25 13:34 - 2015-03-25 15:40 - 00000000 ____D () C:\zoek
2015-03-25 11:37 - 2015-03-25 11:11 - 00001267 _____ () C:\zoek-results2015-03-25-101145.log
2015-03-25 11:09 - 2015-03-25 10:41 - 00001302 _____ () C:\zoek-results2015-03-25-094144.log
2015-03-25 10:38 - 2015-03-25 15:40 - 00058336 _____ () C:\zoek-results.log
2015-03-25 10:33 - 2015-03-25 15:37 - 00000000 ____D () C:\zoek_backup
2015-03-25 10:27 - 2015-03-25 10:27 - 00002576 _____ () C:\Users\Ruda\Documents\AdwCleaner[S1].txt
2015-03-25 10:01 - 2015-03-25 10:01 - 02168320 _____ () C:\Users\Ruda\Downloads\adwcleaner_4.113.exe
2015-03-25 01:46 - 2015-03-25 15:38 - 00000840 _____ () C:\Windows\setupact.log
2015-03-25 01:46 - 2015-03-25 15:37 - 00001350 _____ () C:\Windows\PFRO.log
2015-03-25 01:46 - 2015-03-25 01:46 - 00000000 _____ () C:\Windows\setuperr.log
2015-03-25 01:22 - 2015-03-25 09:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvisoft
2015-03-23 17:21 - 2015-03-23 17:21 - 00000000 ____D () C:\Windows\SysWOW64\NV
2015-03-23 17:21 - 2015-03-23 17:21 - 00000000 ____D () C:\Windows\system32\NV
2015-03-23 17:16 - 2015-03-23 17:17 - 31387936 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 24025376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 18531568 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 17480432 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 16003912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 14434704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 12688328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-03-23 17:16 - 2015-03-23 17:17 - 11644928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 11599072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 09735256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 09697640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 03141976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 02953672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 02785568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 02730208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 02412376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 00895776 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 00867784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 00861128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 00354016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 00166568 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-03-23 17:16 - 2015-03-23 17:17 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2015-03-23 17:16 - 2014-05-20 03:44 - 00026069 _____ () C:\Windows\system32\nvinfo.pb
2015-03-22 13:10 - 2015-03-22 13:10 - 00001196 _____ () C:\Users\Public\Desktop\My LastPass Vault.lnk
2015-03-21 23:33 - 2015-03-21 23:34 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-03-19 23:09 - 2015-03-19 23:09 - 02483904 _____ (Sysinternals - www.sysinternals.com) C:\Users\Ruda\Downloads\Procmon.exe
2015-03-19 23:09 - 2011-11-28 11:46 - 00063582 _____ () C:\Users\Ruda\Downloads\procmon.chm
2015-03-19 23:09 - 2006-07-28 09:32 - 00007005 _____ () C:\Users\Ruda\Downloads\Eula.txt
2015-03-19 15:23 - 2015-03-19 15:23 - 00013642 _____ () C:\Users\Ruda\Documents\EMAILY Nov.heslem.odt
2015-03-19 10:03 - 2015-03-19 10:03 - 01919272 _____ (Mister Group ) C:\Users\Ruda\Downloads\SystemExplorerSetup_640.exe
2015-03-18 23:06 - 2015-03-18 23:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tisk Obalek
2015-03-18 22:46 - 2015-03-18 22:47 - 04858555 _____ (Mgr. Radovan Kraus ) C:\Users\Ruda\Downloads\TiskObalek_CZ_3227.exe
2015-03-17 14:09 - 2015-03-18 23:06 - 00000000 ____D () C:\Program Files (x86)\RKComputer
2015-03-17 10:15 - 2015-03-17 10:15 - 00001216 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2015-03-17 10:15 - 2015-03-17 10:15 - 00001204 _____ () C:\Users\Public\Desktop\paint.net.lnk
2015-03-17 10:13 - 2015-03-17 10:14 - 00000000 ____D () C:\Program Files\paint.net
2015-03-17 10:00 - 2014-12-22 01:59 - 49792191 ____N () C:\Users\Ruda\Downloads\2.aTube Catcher.wmv nastavení a stah.z You Tube
2015-03-17 10:00 - 2014-12-22 00:16 - 00000218 ____N () C:\Users\Ruda\Downloads\Nahrávání pořadů z web. stránek.gdoc
2015-03-16 10:45 - 2015-03-16 10:45 - 00000000 ____D () C:\Users\Ruda\Tracing
2015-03-15 02:41 - 2015-03-15 02:47 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Notepad++
2015-03-14 17:16 - 2015-03-14 17:18 - 00000000 ____D () C:\Users\Ruda\Downloads\EPSON
2015-03-14 16:50 - 2015-03-14 16:51 - 03545416 _____ () C:\Users\Ruda\Downloads\EpsonConnect130.exe
2015-03-14 16:36 - 2015-03-14 16:36 - 00002143 _____ () C:\Users\Public\Desktop\Epson Easy Photo Print.lnk
2015-03-14 16:35 - 2015-03-14 16:35 - 00000000 ____D () C:\ProgramData\Sony Corporation
2015-03-14 16:25 - 2015-03-14 16:25 - 00000000 ____D () C:\Program Files\Common Files\EPSON
2015-03-14 15:09 - 2015-03-14 15:08 - 00135824 _____ (Seiko Epson Corporation) C:\Windows\system32\escsvc64.exe
2015-03-14 15:09 - 2012-07-24 00:00 - 00466432 _____ (Seiko Epson Corporation) C:\Windows\system32\esxw2ud.dll
2015-03-14 14:15 - 2015-03-14 14:15 - 00002129 _____ () C:\Users\Public\Desktop\Media Impression 2.lnk
2015-03-14 14:15 - 2015-03-14 14:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft MediaImpression 2
2015-03-14 14:15 - 2015-03-14 14:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Connect
2015-03-14 14:06 - 2015-03-14 22:11 - 00000000 ____D () C:\ProgramData\EPSON
2015-03-14 13:44 - 2015-03-17 11:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
2015-03-14 13:41 - 2015-03-21 21:03 - 00000000 ____D () C:\Program Files (x86)\Epson Software
2015-03-14 13:40 - 2015-03-14 16:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2015-03-14 13:40 - 2015-03-14 15:09 - 00000932 _____ () C:\Users\Public\Desktop\EPSON Scan.lnk
2015-03-14 13:40 - 2015-03-14 13:39 - 00132560 _____ (Seiko Epson Corporation) C:\Windows\system32\esdevapp.exe
2015-03-14 13:40 - 2012-08-08 00:00 - 00094208 _____ (Seiko Epson Corporation.) C:\Windows\system32\esxw2_dd.dll
2015-03-14 13:40 - 2012-04-20 00:00 - 00262144 _____ (Seiko Epson Corporation) C:\Windows\SysWOW64\esintdd.dll
2015-03-14 13:40 - 2012-04-18 00:00 - 00281088 _____ (Seiko Epson Corporation) C:\Windows\system32\esxuindd.dll
2015-03-14 13:40 - 2012-03-26 01:00 - 00065793 _____ () C:\Windows\system32\esfwdd.bin
2015-03-14 13:40 - 2009-10-16 00:00 - 00013824 _____ (Seiko Epson Corporation) C:\Windows\system32\esxcdev.dll
2015-03-14 13:39 - 2015-03-14 13:52 - 00000000 ____D () C:\Program Files (x86)\epson
2015-03-13 12:36 - 2015-03-14 16:36 - 00000000 ____D () C:\ProgramData\UDL
2015-03-13 11:12 - 2015-03-13 11:12 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppmon.dll
2015-03-13 11:12 - 2015-03-13 11:12 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enppmon.dll
2015-03-13 11:12 - 2015-03-13 11:12 - 00535552 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppui.dll
2015-03-13 11:12 - 2015-03-13 11:12 - 00535552 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enppui.dll
2015-03-13 11:12 - 2015-03-13 11:12 - 00219648 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enspres.dll
2015-03-13 11:12 - 2015-03-13 11:12 - 00219648 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enpres.dll
2015-03-13 11:10 - 2015-03-13 11:10 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_YLMI4E.DLL
2015-03-13 11:10 - 2015-03-13 11:10 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_YD4BI4E.DLL
2015-03-13 11:10 - 2015-03-13 11:10 - 00010752 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_GCINST.DLL
2015-03-13 01:38 - 2015-03-13 01:39 - 04532776 _____ (Piriform Ltd) C:\Users\Ruda\Downloads\dfsetup219.exe
2015-03-13 00:10 - 2015-03-13 00:10 - 00011685 _____ () C:\Users\Ruda\AppData\Local\recently-used.xbel
2015-03-11 09:44 - 2015-03-11 09:44 - 25021440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 19720192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 14398976 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 12827648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 06035456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 04300288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-03-11 09:44 - 2015-03-11 09:44 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-03-11 09:44 - 2015-03-11 09:44 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-03-11 09:44 - 2015-03-11 09:44 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-03-11 09:44 - 2015-03-11 09:44 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00389800 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00342696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-03-11 09:44 - 2015-03-11 09:44 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-03-11 09:44 - 2015-03-11 09:44 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-03-11 09:44 - 2015-03-11 09:44 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-03-11 09:44 - 2015-03-11 09:44 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-03-11 09:44 - 2015-02-20 04:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-03-11 09:44 - 2015-02-20 03:22 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-03-11 09:03 - 2015-03-11 09:03 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 11411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 05554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-03-11 09:03 - 2015-03-11 09:03 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 03973048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-03-11 09:03 - 2015-03-11 09:03 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-03-11 09:03 - 2015-03-11 09:03 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-03-11 09:03 - 2015-03-11 09:03 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-03-11 09:03 - 2015-03-11 09:03 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-03-11 09:03 - 2015-03-11 09:03 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-03-11 09:03 - 2015-03-11 09:03 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-03-11 09:03 - 2015-03-11 09:03 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-03-11 09:02 - 2015-03-11 09:02 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-03-11 09:02 - 2015-03-11 09:02 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-03-11 09:02 - 2015-03-11 09:02 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-03-11 09:02 - 2015-03-11 09:02 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-03-11 09:02 - 2015-03-11 09:02 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-03-11 09:02 - 2015-03-11 09:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-03-11 09:02 - 2015-03-11 09:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2015-03-11 09:02 - 2015-03-11 09:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 12875264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 03204096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-03-11 09:01 - 2015-03-11 09:01 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-03-11 09:01 - 2015-03-11 09:01 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-03-11 09:01 - 2015-03-11 09:01 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-03-11 09:01 - 2015-03-11 09:01 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-03-11 09:01 - 2015-03-11 09:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-03-11 09:01 - 2015-03-11 09:01 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-03-11 09:01 - 2015-03-11 09:01 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-03-11 09:01 - 2015-03-11 09:01 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-03-11 08:58 - 2015-03-11 08:58 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-03-11 08:58 - 2015-03-11 08:58 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-03-11 00:54 - 2015-03-11 00:54 - 00000000 ____D () C:\Users\Ruda\Documents\Anvsoft
2015-03-11 00:54 - 2015-03-11 00:54 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\AnvsoftPdfTools
2015-03-11 00:52 - 2015-03-11 00:52 - 37602112 _____ (pdfmate.com ) C:\Users\Ruda\Downloads\setup_pdf_converter_pro.exe
2015-03-10 22:58 - 2015-03-19 15:16 - 00015353 _____ () C:\Users\Ruda\Documents\EMAILY.odt
2015-03-10 16:04 - 2015-03-10 16:04 - 00001181 _____ () C:\Users\Public\Desktop\Ashampoo GetBack Photo.lnk
2015-03-10 15:58 - 2015-03-10 15:58 - 10137680 _____ (Ashampoo GmbH & Co. KG ) C:\Users\Ruda\Downloads\ashampoo_getback_photo_18891.exe
2015-03-09 10:33 - 2015-03-09 10:33 - 10074152 _____ (Martin Roubec ) C:\Users\Ruda\Downloads\InstalRecepty .exe
2015-03-08 23:48 - 2015-03-08 23:48 - 00002072 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2015-03-08 23:48 - 2015-03-08 23:48 - 00002060 _____ () C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2015-03-08 23:45 - 2015-03-08 23:45 - 00001127 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-03-08 23:45 - 2015-03-08 23:45 - 00001115 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-03-08 23:27 - 2015-03-08 23:27 - 28763032 _____ (Mozilla) C:\Users\Ruda\Downloads\ThunderbirdSetup31.4.0 .exe
2015-03-08 23:25 - 2015-03-08 23:26 - 40822464 _____ () C:\Users\Ruda\Downloads\FirefoxSetup36.0cz.exe
2015-03-08 16:49 - 2015-03-08 16:49 - 00000000 ____D () C:\aws
2015-03-05 22:48 - 2015-03-05 22:48 - 00000000 ____D () C:\Users\Ruda\Documents\My Cheat Tables
2015-03-05 20:21 - 2015-03-05 20:21 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Tracker Software
2015-03-02 19:13 - 2015-03-02 19:13 - 00003122 _____ () C:\Windows\System32\Tasks\{927A8016-7C84-4099-B4A9-7974F86116C3}
2015-03-02 19:04 - 2015-03-02 19:05 - 140274864 _____ (společnost Microsoft Corporation) C:\Users\Ruda\Downloads\wlsetup-all.exe
2015-03-02 18:29 - 2015-03-08 16:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2015-03-02 18:29 - 2015-03-02 18:29 - 00002180 _____ () C:\Users\Public\Desktop\Google Earth.lnk
2015-03-02 18:27 - 2015-03-02 18:28 - 25415728 _____ () C:\Users\Ruda\Downloads\GoogleEarthWin.exe
2015-03-02 13:59 - 2015-03-02 13:59 - 00003148 _____ () C:\Windows\System32\Tasks\{A6F96F0C-EB4C-4E2F-AAFA-EDD1BC516833}
2015-03-01 20:28 - 2015-03-20 10:40 - 00000000 ____D () C:\Users\Ruda\Documents\Kostička
2015-03-01 18:33 - 2015-03-01 18:33 - 00000972 _____ () C:\Users\Public\Desktop\ProgDVB 7.lnk
2015-03-01 18:33 - 2015-03-01 18:33 - 00000948 _____ () C:\Users\Public\Desktop\ProgTV.lnk
2015-03-01 18:33 - 2015-03-01 18:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProgDVB
2015-03-01 12:22 - 2015-03-01 12:23 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.4
2015-03-01 12:22 - 2015-03-01 12:22 - 00001468 _____ () C:\Users\Public\Desktop\LibreOffice 4.4.lnk
2015-03-01 12:05 - 2015-03-01 12:08 - 224264192 _____ () C:\Users\Ruda\Downloads\LibreOffice_4.4.1_Win_x86.msi
2015-03-01 11:58 - 2015-03-01 11:58 - 28509232 _____ () C:\Users\Ruda\Downloads\vlc-2.2.0-win32.exe
2015-02-27 15:41 - 2015-02-27 15:41 - 00003106 _____ () C:\Windows\System32\Tasks\{71BFF601-8F49-4643-AC08-7CD109E89297}
2015-02-27 09:25 - 2015-02-27 09:25 - 12667027 _____ () C:\Users\Ruda\Downloads\cc-setup.exe
2015-02-26 14:29 - 2015-02-26 14:29 - 00003106 _____ () C:\Windows\System32\Tasks\{638DA9E3-5093-48A0-A3A5-F81670454AC0}
2015-02-26 02:20 - 2015-03-23 01:39 - 00000000 ____D () C:\Users\Ruda\Documents\WebCam Capture Media
2015-02-25 18:46 - 2015-03-10 17:13 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2015-02-25 17:38 - 2015-02-25 17:38 - 00003166 _____ () C:\Windows\System32\Tasks\{3C9D2E01-D7E9-4342-BDC9-2776D4B876E9}
2015-02-25 13:34 - 2015-01-09 00:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls
2015-02-25 13:34 - 2015-01-09 00:43 - 00419936 _____ () C:\Windows\system32\locale.nls
2015-02-25 10:41 - 2015-03-11 11:41 - 00001095 _____ () C:\Users\Ruda\Sti_Trace.log
2015-02-25 10:28 - 2015-02-25 10:28 - 00000000 ____D () C:\Users\Ruda\AppData\Local\ArcSoft
2015-02-25 10:22 - 2015-02-28 14:57 - 00000000 ___HD () C:\ProgramData\ArcSoft
2015-02-25 10:20 - 2015-03-12 00:22 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\ArcSoft
2015-02-25 10:20 - 2015-02-25 10:20 - 00022784 _____ (Arcsoft, Inc.) C:\Windows\SysWOW64\Drivers\afc.sys
2015-02-25 10:20 - 2015-02-25 10:20 - 00000000 ____D () C:\Program Files (x86)\ArcSoft
2015-02-25 10:13 - 2015-02-25 10:13 - 00000000 ____D () C:\Users\Ruda\AppData\Local\ABBYY
2015-02-25 10:13 - 2015-02-25 10:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABBYY FineReader 9.0 Sprint
2015-02-25 10:12 - 2015-03-14 13:51 - 00000000 ____D () C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint
2015-02-25 10:12 - 2015-03-01 19:02 - 00000000 ____D () C:\ProgramData\ABBYY
2015-02-25 10:00 - 2015-03-13 12:41 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Epson
2015-02-25 00:59 - 2015-02-25 00:59 - 00000000 ____D () C:\FFOutput
2015-02-25 00:57 - 2015-02-25 00:58 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2015-02-25 00:03 - 2015-02-25 00:03 - 00003128 _____ () C:\Windows\System32\Tasks\{3C018CAC-80C2-4550-ADE7-06563FDA0C82}
2015-02-24 16:35 - 2015-02-24 16:35 - 00000000 ____D () C:\Users\Ruda\Documents\ASH ZIP
2015-02-24 11:47 - 2015-02-25 11:22 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2015-02-24 11:47 - 2015-02-24 11:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2015-02-24 01:41 - 2015-03-13 02:50 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\XnView
2015-02-24 01:41 - 2015-02-24 01:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView
2015-02-24 01:41 - 2015-02-24 01:41 - 00000000 ____D () C:\Program Files (x86)\XnView
2015-02-24 01:39 - 2015-02-24 01:39 - 05060784 _____ (Gougelet Pierre-e ) C:\Users\Ruda\Downloads\XnView-win.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-25 22:08 - 2015-01-09 23:20 - 00000000 ____D () C:\FRST
2015-03-25 22:07 - 2015-01-29 23:56 - 00003962 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{B9C26119-2806-4546-B247-5A5B1261D67E}
2015-03-25 22:07 - 2014-12-25 14:40 - 01474832 _____ () C:\Windows\system32\Drivers\sfi.dat
2015-03-25 21:57 - 2013-08-23 16:09 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Skype
2015-03-25 21:44 - 2015-02-04 01:39 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-25 21:22 - 2015-01-29 23:41 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-03-25 18:57 - 2013-03-07 10:49 - 00000000 ____D () C:\Users\Ruda\AppData\Local\CrashDumps
2015-03-25 17:40 - 2015-01-06 17:01 - 03785728 ___SH () C:\Users\Ruda\Documents\Thumbs.db
2015-03-25 16:46 - 2014-11-28 01:50 - 00000000 ____D () C:\Users\Ruda\Documents\čištění
2015-03-25 16:20 - 2013-05-29 00:14 - 01090256 _____ () C:\Windows\WindowsUpdate.log
2015-03-25 15:46 - 2009-07-14 05:45 - 00018736 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-03-25 15:46 - 2009-07-14 05:45 - 00018736 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-03-25 15:40 - 2013-03-07 02:52 - 00000466 _____ () C:\Users\Ruda\AppData\Roaming\sp_data.sys
2015-03-25 15:38 - 2015-02-04 01:39 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-03-25 15:38 - 2014-09-14 12:37 - 00000000 _____ () C:\Windows\SysWOW64\sinstall.log
2015-03-25 15:38 - 2014-04-13 15:39 - 00000434 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2015-03-25 15:37 - 2014-12-28 03:28 - 04267958 _____ () C:\Windows\system32\Drivers\fvstore.dat
2015-03-25 15:37 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-25 14:22 - 2009-07-14 04:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2015-03-25 14:22 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2015-03-25 10:27 - 2015-02-21 03:18 - 00000000 ____D () C:\AdwCleaner
2015-03-25 01:38 - 2014-11-04 12:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer
2015-03-25 01:38 - 2014-06-29 17:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3
2015-03-24 23:41 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2015-03-24 17:41 - 2013-10-02 17:41 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\uTorrent
2015-03-24 17:41 - 2013-07-15 19:59 - 00000000 ____D () C:\Users\Ruda\AppData\Local\LogMeIn Hamachi
2015-03-24 17:41 - 2013-04-07 16:45 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\PhotoScape
2015-03-24 12:17 - 2014-11-05 01:12 - 00000891 _____ () C:\Users\Ruda\Desktop\Plus500.lnk
2015-03-24 12:17 - 2014-11-05 01:12 - 00000891 _____ () C:\Users\Guest\Desktop\Plus500.lnk
2015-03-24 00:35 - 2011-02-19 06:36 - 00876542 _____ () C:\Windows\system32\perfh005.dat
2015-03-24 00:35 - 2011-02-19 06:36 - 00268970 _____ () C:\Windows\system32\perfc005.dat
2015-03-24 00:35 - 2009-07-14 06:13 - 02150978 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-03-23 17:21 - 2014-11-28 01:08 - 00000000 ___DC () C:\Temp
2015-03-23 17:21 - 2013-03-08 11:06 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-03-23 17:19 - 2014-01-08 20:21 - 00927520 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-03-23 17:18 - 2013-03-08 11:05 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-03-23 17:17 - 2015-01-27 11:17 - 03109248 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-03-23 17:17 - 2015-01-27 11:17 - 00952952 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-03-23 17:17 - 2014-05-27 12:05 - 00837056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-03-23 17:17 - 2013-11-19 19:52 - 00146480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-03-23 17:06 - 2015-02-10 13:36 - 00000000 ____D () C:\Program Files (x86)\Q-Dir
2015-03-23 17:06 - 2015-02-10 13:35 - 00778240 _____ (Nenad Hrg (SoftwareOK.com)) C:\Users\Ruda\Downloads\Q-Dir_Installer.exe
2015-03-23 17:06 - 2015-01-28 00:36 - 00001797 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Q-Dir.lnk
2015-03-23 17:06 - 2015-01-28 00:36 - 00001791 _____ () C:\Users\Public\Desktop\Q-Dir.lnk
2015-03-23 17:06 - 2013-09-03 09:22 - 00074914 _____ () C:\Windows\Q-Dir.ini
2015-03-22 22:31 - 2014-02-13 11:44 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-22 21:08 - 2013-11-23 00:33 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\vlc
2015-03-22 13:11 - 2013-11-30 00:32 - 00000000 ____D () C:\Program Files (x86)\LastPass
2015-03-22 13:10 - 2013-11-30 00:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LastPass
2015-03-22 13:10 - 2013-11-04 20:47 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LastPass
2015-03-20 22:49 - 2014-09-28 15:19 - 00002145 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-03-20 12:55 - 2009-07-14 01:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WSDPrint.sys
2015-03-20 12:55 - 2009-07-14 01:35 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\WSDScDrv.dll
2015-03-20 12:55 - 2009-07-14 01:35 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WSDScan.sys
2015-03-20 12:31 - 2013-03-07 03:23 - 00000000 ____D () C:\Users\Ruda\AppData\Local\Adobe
2015-03-20 12:30 - 2015-01-29 23:41 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-03-20 12:30 - 2015-01-29 23:41 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-03-20 12:30 - 2015-01-29 23:41 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-03-20 10:40 - 2014-12-19 22:10 - 00000000 ____D () C:\Users\Ruda\Documents\LICENČNÍ ČÍSLA PROGR
2015-03-20 05:13 - 2014-03-25 01:22 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2015-03-19 10:04 - 2014-05-05 00:52 - 00001054 _____ () C:\Users\Public\Desktop\System Explorer.lnk
2015-03-19 10:04 - 2014-05-05 00:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Explorer
2015-03-19 10:04 - 2014-04-21 13:00 - 00000000 ____D () C:\Program Files (x86)\System Explorer
2015-03-17 10:11 - 2014-12-07 22:58 - 06554872 _____ () C:\Users\Ruda\Downloads\paint.net.4.0.5.install.exe
2015-03-17 10:06 - 2015-01-08 18:10 - 00786944 ___SH () C:\Users\Ruda\Downloads\Thumbs.db
2015-03-16 10:45 - 2014-02-24 11:28 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-03-16 10:45 - 2013-03-07 02:48 - 00000000 ____D () C:\Users\Ruda
2015-03-16 10:44 - 2013-08-23 15:45 - 00000000 ____D () C:\ProgramData\Skype
2015-03-14 16:35 - 2013-03-08 11:08 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-03-13 01:41 - 2014-06-14 01:25 - 00000000 ____D () C:\Program Files\Defraggler
2015-03-13 01:40 - 2014-06-14 01:25 - 00001726 _____ () C:\Users\Public\Desktop\Defraggler.lnk
2015-03-13 00:12 - 2014-01-06 02:52 - 00000000 ____D () C:\Users\Ruda\.gimp-2.8
2015-03-13 00:10 - 2014-01-06 02:55 - 00000000 ____D () C:\Users\Ruda\AppData\Local\gtk-2.0
2015-03-12 03:49 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2015-03-11 15:09 - 2015-01-06 01:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvsoft
2015-03-11 15:07 - 2013-03-08 02:36 - 00000000 ____D () C:\ProgramData\Temp
2015-03-11 13:01 - 2015-01-02 01:10 - 00026064 _____ () C:\Windows\CUAppUsage.Dat
2015-03-11 13:00 - 2014-12-25 14:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2015-03-11 12:53 - 2009-07-14 06:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2015-03-11 10:43 - 2014-01-05 15:52 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-03-11 10:34 - 2009-07-14 05:45 - 04906320 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-11 10:28 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-03-11 10:28 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Dism
2015-03-11 10:16 - 2013-07-10 13:25 - 00000000 ____D () C:\Windows\system32\MRT
2015-03-11 09:55 - 2013-03-07 09:48 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-03-11 00:53 - 2015-01-06 01:12 - 00000000 ____D () C:\Program Files (x86)\Anvsoft
2015-03-10 16:26 - 2014-04-22 08:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2015-03-10 16:26 - 2014-04-22 08:49 - 00000000 ____D () C:\Program Files (x86)\Ashampoo
2015-03-10 16:13 - 2014-01-10 00:12 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\Ashampoo
2015-03-10 16:11 - 2014-01-10 00:11 - 00000000 ____D () C:\ProgramData\Ashampoo
2015-03-09 10:55 - 2014-06-19 14:40 - 00201216 _____ () C:\Windows\SysWOW64\mediarcpt.dll
2015-03-09 10:55 - 2014-06-19 14:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recepty doma
2015-03-09 10:55 - 2014-06-19 14:40 - 00000000 ____D () C:\Program Files (x86)\Recepty doma
2015-03-09 03:03 - 2015-02-20 17:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2015-03-09 03:02 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2015-03-09 00:43 - 2014-11-04 12:14 - 00000000 ____D () C:\Program Files\Tracker Software
2015-03-08 23:41 - 2014-11-04 12:14 - 00001020 _____ () C:\Users\Public\Desktop\PDF-Viewer.lnk
2015-03-08 16:49 - 2013-03-22 00:36 - 00000000 ____D () C:\Windows\pss
2015-03-08 16:49 - 2013-03-07 03:17 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\ASUS WebStorage
2015-03-08 16:11 - 2014-12-25 14:40 - 00000000 ____D () C:\Windows\System32\Tasks\COMODO
2015-03-08 16:11 - 2014-09-30 10:22 - 00000000 ____D () C:\Users\Ruda\AppData\Roaming\PicPick
2015-03-08 16:11 - 2014-09-28 15:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-03-08 16:11 - 2014-01-05 15:51 - 00000000 ____D () C:\Users\Guest
2015-03-08 16:11 - 2013-12-07 18:51 - 00000000 ____D () C:\Users\Classic .NET AppPool
2015-03-08 16:11 - 2013-12-02 11:38 - 00000000 ____D () C:\Program Files\CCleaner
2015-03-08 16:11 - 2013-07-28 10:32 - 00000000 ____D () C:\Users\DefaultAppPool
2015-03-08 16:11 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Msdtc
2015-03-08 16:10 - 2015-02-20 17:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2005
2015-03-08 16:09 - 2013-08-19 14:49 - 00000000 ____D () C:\Windows\Minidump
2015-03-08 16:06 - 2013-03-07 04:30 - 00000000 ____D () C:\Users\Ruda\AppData\Local\Google
2015-03-04 10:28 - 2013-03-07 02:52 - 00000000 ____D () C:\Users\Ruda\Documents\Bluetooth Folder
2015-03-02 18:29 - 2012-02-24 12:40 - 00000000 ____D () C:\Program Files (x86)\Google
2015-03-01 18:55 - 2014-12-23 13:26 - 00000000 ____D () C:\Users\Ruda\Documents\Evidence LSoft
2015-03-01 18:38 - 2015-02-11 11:30 - 00000000 ____D () C:\ProgramData\ProgDVB
2015-03-01 17:52 - 2014-09-13 00:22 - 00077872 _____ () C:\Users\Ruda\AppData\Local\GDIPFONTCACHEV1.DAT
2015-03-01 13:17 - 2015-01-03 20:35 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2015-03-01 12:22 - 2014-11-16 17:45 - 00000000 ____D () C:\Program Files (x86)\LibreOffice 4
2015-03-01 12:02 - 2013-12-29 19:08 - 00001028 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2015-02-27 09:27 - 2013-12-02 11:38 - 00000824 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-02-26 13:19 - 2015-02-13 12:47 - 04575232 _____ (Google Inc.) C:\Windows\SysWOW64\GPhotos.scr
2015-02-26 12:41 - 2014-10-07 00:16 - 00009216 _____ () C:\Users\Ruda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-02-25 22:11 - 2015-01-18 20:54 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird.bak
2015-02-25 10:20 - 2014-08-24 22:56 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2015-02-25 10:05 - 2013-10-09 13:15 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2015-02-24 12:35 - 2012-02-24 12:42 - 00000000 ____D () C:\Program Files\Windows Live
2015-02-24 11:17 - 2011-02-19 07:13 - 00000000 ____D () C:\Windows\sr-Latn-CS

==================== Files in the root of some directories =======

2013-03-16 11:33 - 2013-03-16 04:27 - 15271824 _____ (Google Inc.) C:\Program Files (x86)\picasa39-setup.exe
2013-10-16 00:00 - 2015-03-22 13:11 - 14147584 _____ () C:\Program Files (x86)\Common Files\lpuninstall.exe
2014-06-26 22:06 - 2014-06-26 22:19 - 0000096 _____ () C:\Users\Ruda\AppData\Roaming\Camdata.ini
2014-06-26 22:06 - 2014-06-26 22:19 - 0000408 _____ () C:\Users\Ruda\AppData\Roaming\CamLayout.ini
2014-06-26 22:06 - 2014-06-26 22:19 - 0000408 _____ () C:\Users\Ruda\AppData\Roaming\CamShapes.ini
2014-06-26 22:06 - 2014-06-26 22:19 - 0004509 _____ () C:\Users\Ruda\AppData\Roaming\CamStudio.cfg
2014-03-24 18:03 - 2015-01-01 14:05 - 0099384 _____ () C:\Users\Ruda\AppData\Roaming\inst.exe
2014-03-24 18:03 - 2015-01-01 14:05 - 0007859 _____ () C:\Users\Ruda\AppData\Roaming\pcouffin.cat
2014-03-24 18:03 - 2015-01-01 14:05 - 0001167 _____ () C:\Users\Ruda\AppData\Roaming\pcouffin.inf
2014-03-24 18:03 - 2015-01-01 14:05 - 0082816 _____ (VSO Software) C:\Users\Ruda\AppData\Roaming\pcouffin.sys
2013-03-07 02:52 - 2015-03-25 15:40 - 0000466 _____ () C:\Users\Ruda\AppData\Roaming\sp_data.sys
2014-01-18 18:31 - 2014-01-18 18:31 - 0022713 _____ () C:\Users\Ruda\AppData\Roaming\UserTile.png
2014-12-11 18:11 - 2015-01-01 13:54 - 0001057 _____ () C:\Users\Ruda\AppData\Roaming\vso_ts_preview.xml
2014-10-07 00:16 - 2015-02-26 12:41 - 0009216 _____ () C:\Users\Ruda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-11-28 16:12 - 2013-11-28 16:12 - 0001715 _____ () C:\Users\Ruda\AppData\Local\FastClean.20131128.161230.txt
2015-03-13 00:10 - 2015-03-13 00:10 - 0011685 _____ () C:\Users\Ruda\AppData\Local\recently-used.xbel
2013-03-27 21:44 - 2014-08-16 15:37 - 0007670 _____ () C:\Users\Ruda\AppData\Local\Resmon.ResmonCfg
2014-06-03 08:57 - 2014-10-22 14:52 - 0012326 _____ () C:\ProgramData\LmeUSB.log
2014-06-03 08:57 - 2014-10-22 14:52 - 0012342 _____ () C:\ProgramData\LSDmbTH.log
2015-02-06 21:20 - 2015-02-06 21:20 - 0005074 _____ () C:\ProgramData\mxnhytee.feu
2013-03-08 02:37 - 2013-03-08 02:38 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2013-03-08 02:36 - 2013-03-08 02:37 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2013-03-08 02:36 - 2013-03-08 02:36 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-03-25 03:42

==================== End Of Log ============================

Zdravím a mám dotaz. Je odstranění Malhal.net dokončeno? Nebo jsem se tím zazmatkováním připravil o spolupráci s vámi?

Omlouvam se, pracovni povinnosti

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  CloseProcesses:
  CreateRestorePoint:
  
  HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
  HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
  HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
  HKU\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?logged=1#obsah
  SearchScopes: HKLM-x32 -> SuggestionsURL_JSON http://api.widdit.com/suggestions/?form ... 1&command={searchTerms}
  SearchScopes: HKLM-x32 -> TopResultURLFallback http://search.certified-toolbar.com?si= ... D049FA9&q={searchTerms}
  SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
  SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
  BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
  DPF: HKLM-x32 {6A060448-60F9-11D5-A6CD-0002B31F7455} 
  
  FF Extension: Speed Dial - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi [2015-02-04]
  FF Extension: Tab Mix Plus - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2015-02-04]
  FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-03-21]
  
  CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]
  
  R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2015-03-16] (Microsoft Corporation)
  R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2015-03-16] (Microsoft Corporation)
  S4 VideoAcceleratorService; C:\Program Files (x86)\SpeedBit Video Accelerator\VideoAcceleratorService.exe [298152 2014-02-24] (SPEEDbit)
  
  C:\Program Files (x86)\Skype\Toolbars
  C:\Program Files (x86)\SpeedBit Video Accelerator
  2015-03-25 15:25 - 2015-03-25 11:31 - 00024064 _____ () C:\Windows\zoek-delete.exe
  2015-03-25 13:34 - 2015-03-25 15:40 - 00000000 ____D () C:\zoek
  2015-03-25 11:37 - 2015-03-25 11:11 - 00001267 _____ () C:\zoek-results2015-03-25-101145.log
  2015-03-25 11:09 - 2015-03-25 10:41 - 00001302 _____ () C:\zoek-results2015-03-25-094144.log
  2015-03-25 10:38 - 2015-03-25 15:40 - 00058336 _____ () C:\zoek-results.log
  2015-03-25 10:33 - 2015-03-25 15:37 - 00000000 ____D () C:\zoek_backup
  2015-03-25 10:27 - 2015-03-25 10:27 - 00002576 _____ () C:\Users\Ruda\Documents\AdwCleaner[S1].txt
  2015-03-25 10:01 - 2015-03-25 10:01 - 02168320 _____ () C:\Users\Ruda\Downloads\adwcleaner_4.113.exe
  2015-03-25 01:46 - 2015-03-25 15:38 - 00000840 _____ () C:\Windows\setupact.log
  2015-03-25 01:46 - 2015-03-25 15:37 - 00001350 _____ () C:\Windows\PFRO.log
  2015-03-25 01:46 - 2015-03-25 01:46 - 00000000 _____ () C:\Windows\setuperr.log
  2015-03-19 23:09 - 2015-03-19 23:09 - 02483904 _____ (Sysinternals - www.sysinternals.com) C:\Users\Ruda\Downloads\Procmon.exe
  2015-03-19 23:09 - 2011-11-28 11:46 - 00063582 _____ () C:\Users\Ruda\Downloads\procmon.chm
  2015-03-19 23:09 - 2006-07-28 09:32 - 00007005 _____ () C:\Users\Ruda\Downloads\Eula.txt
  
  Task: {030C4D65-5770-4883-AAE9-A6EEF09B80CA} - \GoogleUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002UA No Task File <==== ATTENTION
  Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  
  AlternateDataStreams: C:\Windows\zoek-delete.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\adtschema.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\aeinv.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\aepdu.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\aepic.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\aitstatic.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\apisetschema.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\appidapi.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\appidcertstorecheck.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\appidpolicyconverter.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\appidsvc.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\appraiser.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\atmfd.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\atmlib.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\audiodg.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\AudioEng.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\AUDIOKSE.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\AudioSes.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\audiosrv.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\auditpol.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\blackbox.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\credssp.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\crypt32.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\cryptnet.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\cryptsp.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\cryptsvc.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\cryptui.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\csrsrv.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\dciman32.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\devinv.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\drmmgrtn.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\drmv2clt.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\dxmasf.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\dxtmsft.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\dxtrans.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\EncDump.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\enppmon.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\enppui.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\enpres.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\ensppmon.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\ensppui.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\enspres.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\escsvc64.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\esdevapp.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\evr.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\E_GCINST.DLL:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\E_YD4BI4E.DLL:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\E_YLMI4E.DLL:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\fontsub.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\generaltel.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\ie4uinit.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\ieapfltr.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\iedkcs32.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\ieetwcollector.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\ieetwcollectorres.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\ieetwproxystub.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\ieframe.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\iernonce.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\iertutil.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\iesetup.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\ieui.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\ieUnatt.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\inetcpl.cpl:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\invagent.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\JavaScriptCollectionAgent.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\jscript9.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\jscript9diag.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\jsproxy.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\kerberos.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\lpk.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\lsasrv.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\lsass.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\mf.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\mferror.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\mfplat.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\mfpmp.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\mfps.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\MpSigStub.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\MRT.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\msaudite.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\msctf.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\msdxm.ocx:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\msfeeds.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\mshtml.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\MshtmlDac.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\mshtmled.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\mshtmlmedia.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\msmmsp.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\msnetobj.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\msobjs.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\msrating.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\msscp.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\MsSpellCheckingFacility.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\msv1_0.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\ncrypt.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\nlasvc.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\ntoskrnl.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\nvapi64.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\nvcompiler.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\nvcuda.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\nvcuvenc.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\nvcuvid.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\nvd3dumx.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\nvdispco6434725.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\nvdispgenco6434725.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\NvFBC64.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\NvIFR64.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\nvinitx.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\nvoglshim64.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\nvoglv64.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\nvopencl.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\nvumdshimx.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\nvvsvc.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\nvwgf2umx.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\oleaut32.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\pcadm.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\pcaevts.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\pcalua.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\pcasvc.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\pcawrk.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\perftrack.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\powertracker.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\profsvc.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\qdvd.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\quartz.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\rdpcorets.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\RdpGroupPolicyExtension.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\rdpudd.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\rrinstaller.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\rstrui.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\scesrv.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\schannel.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\secur32.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\setbcdlocale.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\shell32.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\smss.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\spwmp.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\srclient.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\srcore.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\sspicli.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\sspisrv.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\TSpkg.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\TSWbPrxy.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\ubpm.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\urlmon.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\vbscript.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\wdi.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\wdigest.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\win32k.sys:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\WindowsCodecs.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\wininet.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\winload.efi:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\winload.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\winresume.efi:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\wintrust.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\wmdrmsdk.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\wmp.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\WMPhoto.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\wmploc.DLL:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\WSDScDrv.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\adtschema.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\apisetschema.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\appidapi.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\atmfd.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\atmlib.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\AudioEng.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\AUDIOKSE.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\AudioSes.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\auditpol.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\blackbox.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\credssp.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\crypt32.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\cryptnet.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\cryptsp.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\cryptsvc.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\cryptui.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\D3DX9_42.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\dciman32.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\drmmgrtn.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\drmv2clt.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\dxmasf.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\dxtmsft.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\dxtrans.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\evr.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\FlashPlayerApp.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\fontsub.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\GPhotos.scr:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\ieapfltr.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\iedkcs32.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\ieetwproxystub.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\ieframe.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\iernonce.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\iertutil.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\iesetup.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\ieui.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\ieUnatt.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\inetcpl.cpl:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\jscript9.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\jscript9diag.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\jsproxy.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\kerberos.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\lpk.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\mediarcpt.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\mf.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\mferror.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\mfplat.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\mfpmp.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\mfps.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\msaudite.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\msctf.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\msdxm.ocx:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\msfeeds.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\mshtml.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\MshtmlDac.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\mshtmled.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\mshtmlmedia.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\msnetobj.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\msobjs.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\msrating.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\msscp.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\msv1_0.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\msvcr71.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\ncrypt.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\ncsi.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\nlaapi.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\ntkrnlpa.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\ntoskrnl.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\nvapi.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\nvcompiler.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\nvcuda.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\nvcuvenc.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\nvcuvid.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\nvd3dum.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\NvFBC.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\NvIFR.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\nvinit.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\nvoglshim32.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\nvoglv32.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\nvopencl.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\nvumdshim.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\nvwgf2um.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\oleaut32.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\qdvd.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\quartz.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\rrinstaller.exe:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\scesrv.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\schannel.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\secur32.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\shell32.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\spwmp.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\srclient.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\sspicli.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\TSpkg.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\ubpm.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\urlmon.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\vbscript.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\wdi.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\wdigest.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\WindowsCodecs.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\wininet.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\wintrust.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\wmdrmsdk.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\wmp.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\WMPhoto.dll:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\wmploc.DLL:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\Drivers\anvsnddrv.sys:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\Drivers\appid.sys:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\Drivers\cng.sys:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\Drivers\EsgScanner.sys:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\Drivers\ksecdd.sys:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\Drivers\ksecpkg.sys:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\Drivers\mountmgr.sys:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\Drivers\mrxdav.sys:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\Drivers\nvlddmkm.sys:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\Drivers\nvpciflt.sys:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\Drivers\PEAuth.sys:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\Drivers\usbscan.sys:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\Drivers\VClone.sys:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\Drivers\WSDPrint.sys:$CmdTcID
  AlternateDataStreams: C:\Windows\system32\Drivers\WSDScan.sys:$CmdTcID
  AlternateDataStreams: C:\Windows\SysWOW64\Drivers\afc.sys:$CmdTcID
  AlternateDataStreams: C:\ProgramData\Temp:F169C698
  AlternateDataStreams: C:\Users\Ruda\Downloads\7-zip.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\adwcleaner_4.113.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\adwcleaner_4.113.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\ashampoo_getback_photo_18891.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\ashampoo_getback_photo_18891.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\ashampoo_zip_free.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\ashampoo_zip_free.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\avc-ultimate.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\avc-ultimate.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\cc-setup.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\cc-setup.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\cdbxp_setup_4.5.4.5306.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\cdbxp_setup_4.5.4.5306.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\dfsetup219.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\dfsetup219.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\EPSON manual_cs.pdf:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\EpsonConnect130.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\EpsonConnect130.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\FirefoxSetup36.0cz.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\FirefoxSetup36.0cz.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\FSViewerSetup53(1).exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\FSViewerSetup53(1).exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\GoogleEarthWin.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\GoogleEarthWin.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\GPU-Z.0.8.1.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\GPU-Z.0.8.1.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\install_flash_player(1).exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\install_flash_player(1).exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\install_flash_player_ax.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\install_flash_player_ax.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\InstalRecepty .exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\InstalRecepty .exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\jre-8u31-windows-x64.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\jre-8u31-windows-x64.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\kontakty.csv:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\kontakty.csv:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\lastpass_x64.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\lastpass_x64.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\LibreOffice_4.4.1_Win_x86.msi:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\LibreOffice_4.4.1_Win_x86.msi:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\Mapa stredoceskych farnosti.pdf:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\Mapa stredoceskych farnosti.pdf:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\matriky_prislusnost_obce.pdf:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\obce_2014.pdf:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\obce_2014.pdf:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\paint.net.4.0.5.install.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\Procmon.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\ProgDVB_7.07.1.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\ProgDVB_7.07.1.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\Q-Dir_Installer.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\setup_pdf_converter_pro.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\setup_pdf_converter_pro.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\skype-setup.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\skype-setup.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\spsetup128.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\spsetup128.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\SystemExplorerSetup_640.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\SystemExplorerSetup_640.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\TeamViewer_Setup.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\TeamViewer_Setup.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\ThunderbirdSetup31.4.0 .exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\ThunderbirdSetup31.4.0 .exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\TiskObalek_CZ_3227.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\TiskObalek_CZ_3227.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\vlc-2.2.0-win32.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\vlc-2.2.0-win32.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\vlozeni_certifikatu KB_cz.pdf:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\vlozeni_certifikatu KB_cz.pdf:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\wlsetup-all.exe:$CmdTcID
  AlternateDataStreams: C:\Users\Ruda\Downloads\wlsetup-all.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\Downloads\XnView-win.exe:$CmdZnID
  AlternateDataStreams: C:\Users\Ruda\AppData\Roaming\inst.exe:$CmdTcID
  
  
  Hosts:
  EmptyTemp:
  Reboot:
  End
  

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

Díky, už jsem měl obavy, že jsem něco podělal

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-03-2015
Ran by Ruda at 2015-03-26 22:09:18 Run:1
Running from C:\PerfLogs\Desktop
Loaded Profiles: Ruda (Available profiles: Ruda & Guest & Classic .NET AppPool & DefaultAppPool)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?logged=1#obsah
SearchScopes: HKLM-x32 -> SuggestionsURL_JSON http://api.widdit.com/suggestions/?form ... 1&command={searchTerms}
SearchScopes: HKLM-x32 -> TopResultURLFallback http://search.certified-toolbar.com?si= ... D049FA9&q={searchTerms}
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
DPF: HKLM-x32 {6A060448-60F9-11D5-A6CD-0002B31F7455}

FF Extension: Speed Dial - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi [2015-02-04]
FF Extension: Tab Mix Plus - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2015-02-04]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-03-21]

CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]

R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2015-03-16] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2015-03-16] (Microsoft Corporation)
S4 VideoAcceleratorService; C:\Program Files (x86)\SpeedBit Video Accelerator\VideoAcceleratorService.exe [298152 2014-02-24] (SPEEDbit)

C:\Program Files (x86)\Skype\Toolbars
C:\Program Files (x86)\SpeedBit Video Accelerator
2015-03-25 15:25 - 2015-03-25 11:31 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-03-25 13:34 - 2015-03-25 15:40 - 00000000 ____D () C:\zoek
2015-03-25 11:37 - 2015-03-25 11:11 - 00001267 _____ () C:\zoek-results2015-03-25-101145.log
2015-03-25 11:09 - 2015-03-25 10:41 - 00001302 _____ () C:\zoek-results2015-03-25-094144.log
2015-03-25 10:38 - 2015-03-25 15:40 - 00058336 _____ () C:\zoek-results.log
2015-03-25 10:33 - 2015-03-25 15:37 - 00000000 ____D () C:\zoek_backup
2015-03-25 10:27 - 2015-03-25 10:27 - 00002576 _____ () C:\Users\Ruda\Documents\AdwCleaner[S1].txt
2015-03-25 10:01 - 2015-03-25 10:01 - 02168320 _____ () C:\Users\Ruda\Downloads\adwcleaner_4.113.exe
2015-03-25 01:46 - 2015-03-25 15:38 - 00000840 _____ () C:\Windows\setupact.log
2015-03-25 01:46 - 2015-03-25 15:37 - 00001350 _____ () C:\Windows\PFRO.log
2015-03-25 01:46 - 2015-03-25 01:46 - 00000000 _____ () C:\Windows\setuperr.log
2015-03-19 23:09 - 2015-03-19 23:09 - 02483904 _____ (Sysinternals - www.sysinternals.com) C:\Users\Ruda\Downloads\Procmon.exe
2015-03-19 23:09 - 2011-11-28 11:46 - 00063582 _____ () C:\Users\Ruda\Downloads\procmon.chm
2015-03-19 23:09 - 2006-07-28 09:32 - 00007005 _____ () C:\Users\Ruda\Downloads\Eula.txt

Task: {030C4D65-5770-4883-AAE9-A6EEF09B80CA} - \GoogleUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002UA No Task File <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

AlternateDataStreams: C:\Windows\zoek-delete.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\adtschema.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\aeinv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\aepdu.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\aepic.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\aitstatic.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\apisetschema.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appidapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appidcertstorecheck.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appidpolicyconverter.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appidsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appraiser.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\atmfd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\atmlib.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\audiodg.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AudioEng.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AUDIOKSE.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AudioSes.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\audiosrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\auditpol.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\blackbox.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\credssp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\crypt32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\cryptnet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\cryptsp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\cryptsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\cryptui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\csrsrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dciman32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\devinv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\drmmgrtn.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\drmv2clt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dxmasf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dxtmsft.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dxtrans.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\EncDump.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enppmon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enppui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enpres.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ensppmon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ensppui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enspres.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\escsvc64.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\esdevapp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\evr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\E_GCINST.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\system32\E_YD4BI4E.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\system32\E_YLMI4E.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\system32\fontsub.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\generaltel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ie4uinit.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieapfltr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\iedkcs32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieetwcollector.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieetwcollectorres.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieetwproxystub.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieframe.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\iernonce.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\iertutil.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\iesetup.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieUnatt.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\inetcpl.cpl:$CmdTcID
AlternateDataStreams: C:\Windows\system32\invagent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\JavaScriptCollectionAgent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\jscript9.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\jscript9diag.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\jsproxy.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\kerberos.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\lpk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\lsasrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\lsass.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mferror.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfplat.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfpmp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MpSigStub.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MRT.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msaudite.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msctf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msdxm.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msfeeds.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MshtmlDac.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mshtmled.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mshtmlmedia.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msmmsp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msnetobj.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msobjs.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msrating.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msscp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MsSpellCheckingFacility.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msv1_0.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ncrypt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nlasvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvapi64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcompiler.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcuda.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcuvenc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcuvid.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvd3dumx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispco6434725.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispgenco6434725.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NvFBC64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NvIFR64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvinitx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvoglshim64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvoglv64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvopencl.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvumdshimx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvvsvc.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvwgf2umx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\oleaut32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcadm.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcaevts.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcalua.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcasvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcawrk.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\perftrack.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\powertracker.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\profsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\qdvd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\quartz.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rdpcorets.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RdpGroupPolicyExtension.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rdpudd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rrinstaller.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rstrui.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\scesrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\schannel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\secur32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\setbcdlocale.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\shell32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\smss.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\spwmp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\srclient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\srcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\sspicli.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\sspisrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\TSpkg.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\TSWbPrxy.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ubpm.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\urlmon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wdi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wdigest.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\win32k.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WindowsCodecs.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wininet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winload.efi:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winload.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winresume.efi:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wintrust.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wmdrmsdk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wmp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WMPhoto.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wmploc.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WSDScDrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\adtschema.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\apisetschema.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\appidapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\atmfd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\atmlib.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AudioEng.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AUDIOKSE.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AudioSes.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\auditpol.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\blackbox.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\credssp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\crypt32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\cryptnet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\cryptsp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\cryptsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\cryptui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\D3DX9_42.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dciman32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\drmmgrtn.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\drmv2clt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dxmasf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dxtmsft.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dxtrans.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\evr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\FlashPlayerApp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\fontsub.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\GPhotos.scr:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieapfltr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\iedkcs32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieetwproxystub.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieframe.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\iernonce.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\iertutil.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\iesetup.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieUnatt.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\inetcpl.cpl:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\jscript9.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\jscript9diag.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\jsproxy.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\kerberos.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\lpk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mediarcpt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mferror.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfplat.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfpmp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msaudite.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msctf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msdxm.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msfeeds.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MshtmlDac.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mshtmled.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mshtmlmedia.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msnetobj.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msobjs.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msrating.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msscp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msv1_0.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msvcr71.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ncrypt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ncsi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nlaapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ntkrnlpa.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcompiler.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcuda.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcuvenc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcuvid.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvd3dum.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\NvFBC.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\NvIFR.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvinit.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvoglshim32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvoglv32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvopencl.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvumdshim.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvwgf2um.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\oleaut32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\qdvd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\quartz.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\rrinstaller.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\scesrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\schannel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\secur32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\shell32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\spwmp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\srclient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\sspicli.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\TSpkg.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ubpm.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\urlmon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wdi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wdigest.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WindowsCodecs.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wininet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wintrust.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wmdrmsdk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wmp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WMPhoto.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wmploc.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\anvsnddrv.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\appid.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\cng.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\EsgScanner.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\ksecdd.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\ksecpkg.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mountmgr.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mrxdav.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\nvlddmkm.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\nvpciflt.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\PEAuth.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\usbscan.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\VClone.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\WSDPrint.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\WSDScan.sys:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Drivers\afc.sys:$CmdTcID
AlternateDataStreams: C:\ProgramData\Temp:F169C698
AlternateDataStreams: C:\Users\Ruda\Downloads\7-zip.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\adwcleaner_4.113.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\adwcleaner_4.113.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\ashampoo_getback_photo_18891.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\ashampoo_getback_photo_18891.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\ashampoo_zip_free.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\ashampoo_zip_free.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\avc-ultimate.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\avc-ultimate.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\cc-setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\cc-setup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\cdbxp_setup_4.5.4.5306.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\cdbxp_setup_4.5.4.5306.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\dfsetup219.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\dfsetup219.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\EPSON manual_cs.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\EpsonConnect130.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\EpsonConnect130.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\FirefoxSetup36.0cz.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\FirefoxSetup36.0cz.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\FSViewerSetup53(1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\FSViewerSetup53(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\GoogleEarthWin.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\GoogleEarthWin.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\GPU-Z.0.8.1.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\GPU-Z.0.8.1.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\install_flash_player(1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\install_flash_player(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\install_flash_player_ax.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\install_flash_player_ax.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\InstalRecepty .exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\InstalRecepty .exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\jre-8u31-windows-x64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\jre-8u31-windows-x64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\kontakty.csv:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\kontakty.csv:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\lastpass_x64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\lastpass_x64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\LibreOffice_4.4.1_Win_x86.msi:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\LibreOffice_4.4.1_Win_x86.msi:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\Mapa stredoceskych farnosti.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\Mapa stredoceskych farnosti.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\matriky_prislusnost_obce.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\obce_2014.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\obce_2014.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\paint.net.4.0.5.install.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\Procmon.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\ProgDVB_7.07.1.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\ProgDVB_7.07.1.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\Q-Dir_Installer.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\setup_pdf_converter_pro.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\setup_pdf_converter_pro.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\skype-setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\skype-setup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\spsetup128.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\spsetup128.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\SystemExplorerSetup_640.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\SystemExplorerSetup_640.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\TeamViewer_Setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\TeamViewer_Setup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\ThunderbirdSetup31.4.0 .exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\ThunderbirdSetup31.4.0 .exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\TiskObalek_CZ_3227.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\TiskObalek_CZ_3227.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\vlc-2.2.0-win32.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\vlc-2.2.0-win32.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\vlozeni_certifikatu KB_cz.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\vlozeni_certifikatu KB_cz.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\wlsetup-all.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\wlsetup-all.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\XnView-win.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\AppData\Roaming\inst.exe:$CmdTcID


Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Search Page => value deleted successfully.
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page => value deleted successfully.
HKU\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\SuggestionsURL_JSON http://api.widdit.com/suggestions/?form ... => Value not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\TopResultURLFallback http://search.certified-toolbar.com?si= ... => Value not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{15C4DF55-4B67-495A-A3D3-A497C4A49EE0}" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{15C4DF55-4B67-495A-A3D3-A497C4A49EE0} => Key not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{6A060448-60F9-11D5-A6CD-0002B31F7455}" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{6A060448-60F9-11D5-A6CD-0002B31F7455} => Key not found.
C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi => Moved successfully.
C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\0hfd64x0.default-1423008048081\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi => Moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi => Moved successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl" => Key deleted successfully.
C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx => Moved successfully.
c2cautoupdatesvc => Service deleted successfully.
c2cpnrsvc => Service deleted successfully.
VideoAcceleratorService => Service deleted successfully.
C:\Program Files (x86)\Skype\Toolbars => Moved successfully.
C:\Program Files (x86)\SpeedBit Video Accelerator => Moved successfully.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\zoek => Moved successfully.
C:\zoek-results2015-03-25-101145.log => Moved successfully.
C:\zoek-results2015-03-25-094144.log => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\Ruda\Documents\AdwCleaner[S1].txt => Moved successfully.
C:\Users\Ruda\Downloads\adwcleaner_4.113.exe => Moved successfully.
C:\Windows\setupact.log => Moved successfully.
C:\Windows\PFRO.log => Moved successfully.
C:\Windows\setuperr.log => Moved successfully.
C:\Users\Ruda\Downloads\Procmon.exe => Moved successfully.
C:\Users\Ruda\Downloads\procmon.chm => Moved successfully.
C:\Users\Ruda\Downloads\Eula.txt => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{030C4D65-5770-4883-AAE9-A6EEF09B80CA}" => Key Deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{030C4D65-5770-4883-AAE9-A6EEF09B80CA}" => Key Deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002UA" => Key Deleted successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
"C:\Windows\zoek-delete.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\adtschema.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\aeinv.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\aepdu.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\aepic.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\aitstatic.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\apisetschema.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\appidapi.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\appidcertstorecheck.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\appidpolicyconverter.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\appidsvc.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\appraiser.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\atmfd.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\atmlib.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\audiodg.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\AudioEng.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\AUDIOKSE.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\AudioSes.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\audiosrv.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\auditpol.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\blackbox.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\credssp.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\crypt32.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\cryptnet.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\cryptsp.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\cryptsvc.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\cryptui.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\csrsrv.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\dciman32.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\devinv.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\drmmgrtn.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\drmv2clt.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\dxmasf.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\dxtmsft.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\dxtrans.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\EncDump.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\enppmon.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\enppui.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\enpres.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\ensppmon.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\ensppui.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\enspres.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\escsvc64.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\esdevapp.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\evr.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\E_GCINST.DLL" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\E_YD4BI4E.DLL" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\E_YLMI4E.DLL" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\fontsub.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\generaltel.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\ie4uinit.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\ieapfltr.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\iedkcs32.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\ieetwcollector.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\ieetwcollectorres.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\ieetwproxystub.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\ieframe.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\iernonce.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\iertutil.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\iesetup.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\ieui.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\ieUnatt.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\inetcpl.cpl" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\invagent.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\JavaScriptCollectionAgent.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\jscript9.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\jscript9diag.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\jsproxy.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\kerberos.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\lpk.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\lsasrv.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\lsass.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\mf.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\mferror.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\mfplat.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\mfpmp.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\mfps.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\MpSigStub.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\MRT.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\msaudite.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\msctf.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\msdxm.ocx" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\msfeeds.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\mshtml.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\MshtmlDac.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\mshtmled.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\mshtmlmedia.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\msmmsp.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\msnetobj.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\msobjs.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\msrating.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\msscp.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\MsSpellCheckingFacility.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\msv1_0.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\ncrypt.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\nlasvc.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\ntoskrnl.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\nvapi64.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\nvcompiler.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\nvcuda.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\nvcuvenc.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\nvcuvid.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\nvd3dumx.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\nvdispco6434725.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\nvdispgenco6434725.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\NvFBC64.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\NvIFR64.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\nvinitx.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\nvoglshim64.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\nvoglv64.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\nvopencl.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\nvumdshimx.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\nvvsvc.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\nvwgf2umx.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\oleaut32.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\pcadm.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\pcaevts.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\pcalua.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\pcasvc.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\pcawrk.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\perftrack.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\powertracker.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\profsvc.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\qdvd.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\quartz.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\rdpcorets.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\RdpGroupPolicyExtension.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\rdpudd.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\rrinstaller.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\rstrui.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\scesrv.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\schannel.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\secur32.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\setbcdlocale.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\shell32.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\smss.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\spwmp.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\srclient.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\srcore.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\sspicli.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\sspisrv.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\TSpkg.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\TSWbPrxy.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\ubpm.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\urlmon.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\vbscript.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\wdi.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\wdigest.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\win32k.sys" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\WindowsCodecs.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\wininet.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\winload.efi" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\winload.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\winresume.efi" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\wintrust.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\wmdrmsdk.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\wmp.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\WMPhoto.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\wmploc.DLL" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\WSDScDrv.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\adtschema.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\apisetschema.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\appidapi.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\atmfd.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\atmlib.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\AudioEng.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\AUDIOKSE.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\AudioSes.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\auditpol.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\blackbox.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\credssp.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\crypt32.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\cryptnet.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\cryptsp.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\cryptsvc.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\cryptui.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\D3DX9_42.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\dciman32.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\drmmgrtn.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\drmv2clt.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\dxmasf.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\dxtmsft.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\dxtrans.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\evr.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\FlashPlayerApp.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\fontsub.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\GPhotos.scr" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\ieapfltr.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\iedkcs32.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\ieetwproxystub.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\ieframe.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\iernonce.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\iertutil.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\iesetup.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\ieui.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\ieUnatt.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\inetcpl.cpl" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\jscript9.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\jscript9diag.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\jsproxy.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\kerberos.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\lpk.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\mediarcpt.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\mf.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\mferror.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\mfplat.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\mfpmp.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\mfps.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\msaudite.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\msctf.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\msdxm.ocx" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\msfeeds.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\mshtml.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\MshtmlDac.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\mshtmled.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\mshtmlmedia.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\msnetobj.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\msobjs.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\msrating.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\msscp.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\msv1_0.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\msvcr71.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\ncrypt.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\ncsi.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\nlaapi.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\ntkrnlpa.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\ntoskrnl.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\nvapi.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\nvcompiler.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\nvcuda.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\nvcuvenc.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\nvcuvid.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\nvd3dum.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\NvFBC.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\NvIFR.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\nvinit.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\nvoglshim32.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\nvoglv32.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\nvopencl.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\nvumdshim.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\nvwgf2um.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\oleaut32.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\qdvd.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\quartz.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\rrinstaller.exe" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\scesrv.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\schannel.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\secur32.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\shell32.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\spwmp.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\srclient.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\sspicli.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\TSpkg.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\ubpm.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\urlmon.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\vbscript.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\wdi.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\wdigest.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\WindowsCodecs.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\wininet.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\wintrust.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\wmdrmsdk.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\wmp.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\WMPhoto.dll" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\wmploc.DLL" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\Drivers\anvsnddrv.sys" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\Drivers\appid.sys" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\Drivers\cng.sys" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\Drivers\EsgScanner.sys" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\Drivers\ksecdd.sys" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\Drivers\ksecpkg.sys" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\Drivers\mountmgr.sys" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\Drivers\mrxdav.sys" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\Drivers\nvlddmkm.sys" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\Drivers\nvpciflt.sys" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\Drivers\PEAuth.sys" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\Drivers\usbscan.sys" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\Drivers\VClone.sys" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\Drivers\WSDPrint.sys" => ":$CmdTcID" ADS not found.
"C:\Windows\system32\Drivers\WSDScan.sys" => ":$CmdTcID" ADS not found.
"C:\Windows\SysWOW64\Drivers\afc.sys" => ":$CmdTcID" ADS not found.
C:\ProgramData\Temp => ":F169C698" ADS removed successfully.
C:\Users\Ruda\Downloads\7-zip.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\adwcleaner_4.113.exe" => ":$CmdTcID" ADS not found.
"C:\Users\Ruda\Downloads\adwcleaner_4.113.exe" => ":$CmdZnID" ADS not found.
"C:\Users\Ruda\Downloads\ashampoo_getback_photo_18891.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\ashampoo_getback_photo_18891.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\ashampoo_zip_free.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\ashampoo_zip_free.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\avc-ultimate.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\avc-ultimate.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\cc-setup.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\cc-setup.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\cdbxp_setup_4.5.4.5306.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\cdbxp_setup_4.5.4.5306.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\dfsetup219.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\dfsetup219.exe => ":$CmdZnID" ADS removed successfully.
C:\Users\Ruda\Downloads\EPSON manual_cs.pdf => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\EpsonConnect130.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\EpsonConnect130.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\FirefoxSetup36.0cz.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\FirefoxSetup36.0cz.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\FSViewerSetup53(1).exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\FSViewerSetup53(1).exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\GoogleEarthWin.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\GoogleEarthWin.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\GPU-Z.0.8.1.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\GPU-Z.0.8.1.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\install_flash_player(1).exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\install_flash_player(1).exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\install_flash_player_ax.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\install_flash_player_ax.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\InstalRecepty .exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\InstalRecepty .exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\jre-8u31-windows-x64.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\jre-8u31-windows-x64.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\kontakty.csv" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\kontakty.csv => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\lastpass_x64.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\lastpass_x64.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\LibreOffice_4.4.1_Win_x86.msi" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\LibreOffice_4.4.1_Win_x86.msi => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\Mapa stredoceskych farnosti.pdf" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\Mapa stredoceskych farnosti.pdf => ":$CmdZnID" ADS removed successfully.
C:\Users\Ruda\Downloads\matriky_prislusnost_obce.pdf => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\obce_2014.pdf" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\obce_2014.pdf => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\paint.net.4.0.5.install.exe" => ":$CmdTcID" ADS not found.
"C:\Users\Ruda\Downloads\Procmon.exe" => ":$CmdTcID" ADS not found.
"C:\Users\Ruda\Downloads\ProgDVB_7.07.1.exe" => ":$CmdTcID" ADS not found.
"C:\Users\Ruda\Downloads\ProgDVB_7.07.1.exe" => ":$CmdZnID" ADS not found.
"C:\Users\Ruda\Downloads\Q-Dir_Installer.exe" => ":$CmdTcID" ADS not found.
"C:\Users\Ruda\Downloads\setup_pdf_converter_pro.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\setup_pdf_converter_pro.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\skype-setup.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\skype-setup.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\spsetup128.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\spsetup128.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\SystemExplorerSetup_640.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\SystemExplorerSetup_640.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\TeamViewer_Setup.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\TeamViewer_Setup.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\ThunderbirdSetup31.4.0 .exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\ThunderbirdSetup31.4.0 .exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\TiskObalek_CZ_3227.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\TiskObalek_CZ_3227.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\vlc-2.2.0-win32.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\vlc-2.2.0-win32.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\vlozeni_certifikatu KB_cz.pdf" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\vlozeni_certifikatu KB_cz.pdf => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\Downloads\wlsetup-all.exe" => ":$CmdTcID" ADS not found.
C:\Users\Ruda\Downloads\wlsetup-all.exe => ":$CmdZnID" ADS removed successfully.
C:\Users\Ruda\Downloads\XnView-win.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Ruda\AppData\Roaming\inst.exe" => ":$CmdTcID" ADS not found.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 432.2 MB temporary data.


The system needed a reboot.

==== End of Fixlog 22:13:20 ====

Fajn, jak se chova PC???