Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

gameharbor


  • This topic is locked This topic is locked
3 replies to this topic

#1 ZOONY85

ZOONY85

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:01:32 AM

Posted 16 September 2014 - 01:13 AM

can you please help

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-09-2014
Ran by jan (administrator) on PC on 16-09-2014 07:30:09
Running from C:\Users\jan\Desktop
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Condusiv Technologies) C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe
(TPMX Electronics Ltd.) C:\Program Files\Lenovo\Lenovo Ultraslim Plus Wireless Keyboard & Mouse\Pelico.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Mad Catz) C:\Program Files\Mad Catz\X-55 Rhino\X55_Rhino_Profiler.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\Media Suite\PS.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [41664 2012-08-23] (Hewlett-Packard )
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-06-04] (IDT, Inc.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Lenovo Input Device Main Program] => C:\Program Files\Lenovo\Lenovo Ultraslim Plus Wireless Keyboard & Mouse\Pelico.exe [101888 2013-04-12] (TPMX Electronics Ltd.)
HKLM\...\Run: [Daemon for Mouse Suite] => C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE 30
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5188112 2014-08-25] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [X-55 Rhino] => C:\Program Files\Mad Catz\X-55 Rhino\X55_Rhino_Profiler.exe [86528 2014-04-11] (Mad Catz)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-08-19] (Hewlett-Packard)
HKU\S-1-5-21-3123538698-723933665-3563615097-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3123538698-723933665-3563615097-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3600216 2014-09-02] (Electronic Arts)
HKU\S-1-5-21-3123538698-723933665-3563615097-1001\...\Run: [Akamai NetSession Interface] => "C:\Users\jan\AppData\Local\Akamai\netsession_win.exe"
HKU\S-1-5-21-3123538698-723933665-3563615097-1001\...\Run: [CMD] => cmd.exe /c start http://extendedunlimited.org && exit <===== ATTENTION
HKU\S-1-5-21-3123538698-723933665-3563615097-1001\...\MountPoints2: G - "G:\SETUP.EXE" 
ShellIconOverlayIdentifiers:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=hpdtdfjs
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPDTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPDTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=HPDTDFJS
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPDTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPDTDFJS
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPDTDFJS
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPDTDFJS
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPDTDFJS
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPDTDFJS
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: hp.com/HPDetect -> C:\Users\jan\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll (HP)
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\jan\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-05]
CHR Extension: (Disk Google) - C:\Users\jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-05]
CHR Extension: (YouTube) - C:\Users\jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-05]
CHR Extension: (Vyhledávání Google) - C:\Users\jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-05]
CHR Extension: (Peněženka Google) - C:\Users\jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-05]
CHR Extension: (Gmail) - C:\Users\jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-05]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3242000 2014-08-25] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [289328 2014-08-25] (AVG Technologies CZ, s.r.o.)
R2 CLHNServiceForPowerDVD12; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [89864 2013-06-10] (CyberLink Corp.)
R2 CyberLink PowerDVD 12 Media Server Monitor Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [77576 2013-06-10] (CyberLink)
R2 CyberLink PowerDVD 12 Media Server Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [294664 2013-06-10] (CyberLink)
R2 ExpressCache; C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [107944 2013-01-08] (Condusiv Technologies)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-06-07] (Hewlett-Packard Company) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel® Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-08-24] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2014-08-24] (Intel Corporation)
R3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-22] (Microsoft Corporation)
S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-08-10] (Microsoft Corporation)
S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2014-08-10] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18956064 2014-07-25] (NVIDIA Corporation)
S2 PinnacleUpdateSvc; C:\Program Files (x86)\PowerUp Software\Pinnacle Game Profiler\pinnacle_updater.exe [438272 2014-01-12] (PowerUp Software, LLC) [File not signed]
S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-22] (Microsoft Corporation)
S2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [333824 2013-06-04] (IDT, Inc.) [File not signed]
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-22] (Microsoft Corporation)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-08-10] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-08-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-08-10] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-06-30] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [244504 2014-07-21] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [190744 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [235800 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [328984 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123672 2014-08-06] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [270104 2014-06-30] (AVG Technologies CZ, s.r.o.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-15] (CyberLink)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-08-10] (Disc Soft Ltd)
R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [26024 2013-01-08] (Condusiv Technologies)
R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [112552 2013-01-08] (Condusiv Technologies)
S3 LECs6022; C:\Windows\System32\drivers\LECs6022.sys [17408 2010-11-05] (Primax Electronics Ltd.)
S3 LEMo6022; C:\Windows\System32\drivers\LEMo6022.sys [24064 2012-06-06] (Primax Electronics Ltd.)
S3 LEub6022; C:\Windows\System32\drivers\LEub6022.sys [18432 2011-01-05] (Primax Electronics Ltd.)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2014-08-24] (Intel Corporation)
R2 ntk_PowerDVD12; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys [84168 2013-03-12] (Cyberlink Corp.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-07-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
S3 Said2215; C:\Windows\System32\drivers\Said2215.sys [25280 2014-03-06] (Saitek)
S3 Saida215; C:\Windows\System32\drivers\Saida215.sys [25280 2014-03-06] (Saitek)
S3 SaiG2215; C:\Windows\System32\drivers\SaiG2215.sys [179904 2014-03-06] (Saitek)
S3 SaiGa215; C:\Windows\System32\drivers\SaiGa215.sys [179904 2014-03-06] (Saitek)
S3 SaiK075C; C:\Windows\System32\drivers\SaiK075C.sys [181024 2013-04-30] (Saitek)
R3 SaiK1703; C:\Windows\system32\DRIVERS\SaiK1703.sys [180544 2012-09-20] (Saitek)
S3 SaiK2215; C:\Windows\system32\DRIVERS\SaiK2215.sys [179904 2014-03-06] (Saitek)
S3 SaiKa215; C:\Windows\system32\DRIVERS\SaiKa215.sys [179904 2014-03-06] (Saitek)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [24040 2014-03-06] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [51560 2014-03-06] (Saitek)
R3 SaiU1703; C:\Windows\System32\drivers\SaiU1703.sys [47168 2012-09-20] (Saitek)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-08-10] (Microsoft Corporation)
S3 xb1usb; C:\Windows\System32\drivers\xb1usb.sys [34016 2014-05-27] (Microsoft Corporation)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-08-10] (Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-09-16 07:30 - 2014-09-16 07:30 - 00022643 _____ () C:\Users\jan\Desktop\FRST.txt
2014-09-16 07:30 - 2014-09-16 07:30 - 00000000 ____D () C:\FRST
2014-09-16 07:28 - 2014-09-16 07:19 - 02105856 _____ (Farbar) C:\Users\jan\Desktop\FRST64.exe
2014-09-16 07:24 - 2014-09-16 07:24 - 00112640 _____ (forum.viry.cz) C:\Users\jan\Downloads\Nepotvrzeno 508129.crdownload
2014-09-16 07:24 - 2014-09-16 07:24 - 00112640 _____ (forum.viry.cz) C:\Users\jan\Downloads\Nepotvrzeno 262475.crdownload
2014-09-16 07:18 - 2014-09-16 07:19 - 02105856 _____ (Farbar) C:\Users\jan\Downloads\FRST64.exe
2014-09-16 06:44 - 2014-09-16 06:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Technology
2014-09-16 06:41 - 2014-09-16 06:42 - 129201056 _____ (Mad catz ) C:\Users\jan\Downloads\Smart Technology 7_0_27_13 64Bit.exe
2014-09-16 06:26 - 2014-09-16 06:26 - 07837816 _____ (Mad catz ) C:\Users\jan\Downloads\Range_RAT3_SD7_0_20_0_64Bit_Drivers_NonWHQL.exe
2014-09-10 16:30 - 2014-08-16 04:40 - 23591424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-09-10 16:30 - 2014-08-16 04:04 - 17455104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-09-10 16:30 - 2014-08-16 04:00 - 05833728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-09-10 16:30 - 2014-08-16 04:00 - 02793984 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-09-10 16:30 - 2014-08-16 03:56 - 00547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-09-10 16:30 - 2014-08-16 03:54 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-09-10 16:30 - 2014-08-16 03:45 - 04232704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-09-10 16:30 - 2014-08-16 03:43 - 00758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-09-10 16:30 - 2014-08-16 03:32 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-09-10 16:30 - 2014-08-16 03:25 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-09-10 16:30 - 2014-08-16 03:22 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-09-10 16:30 - 2014-08-16 03:20 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-09-10 16:30 - 2014-08-16 03:19 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-09-10 16:30 - 2014-08-16 03:18 - 02185728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-09-10 16:30 - 2014-08-16 03:18 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-09-10 16:30 - 2014-08-16 03:11 - 00597504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-09-10 16:30 - 2014-08-16 03:06 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-09-10 16:30 - 2014-08-16 03:05 - 00727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-09-10 16:30 - 2014-08-16 03:05 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-09-10 16:30 - 2014-08-16 03:03 - 02104832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-09-10 16:30 - 2014-08-16 03:03 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-09-10 16:30 - 2014-08-16 02:58 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-10 16:30 - 2014-08-16 02:56 - 02310656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-09-10 16:30 - 2014-08-16 02:53 - 13588480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-09-10 16:30 - 2014-08-16 02:53 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-09-10 16:30 - 2014-08-16 02:53 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-09-10 16:30 - 2014-08-16 02:51 - 11769856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-09-10 16:30 - 2014-08-16 02:45 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-09-10 16:30 - 2014-08-16 02:44 - 02014208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-09-10 16:30 - 2014-08-16 02:44 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-09-10 16:30 - 2014-08-16 02:34 - 01447424 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-09-10 16:30 - 2014-08-16 02:20 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-09-10 16:30 - 2014-08-16 02:18 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-09-10 16:30 - 2014-08-16 02:14 - 01190400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-09-10 16:30 - 2014-08-16 02:12 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-09-10 15:55 - 2014-07-24 05:20 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2014-09-10 15:55 - 2014-07-24 05:20 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2014-09-10 15:53 - 2014-09-05 04:36 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2014-09-10 15:53 - 2014-09-05 04:31 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-09-10 15:53 - 2014-09-05 02:48 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-09-10 15:48 - 2014-08-02 02:18 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-09-09 17:00 - 2014-09-09 21:12 - 00071845 _____ () C:\Users\jan\Downloads\war thunder rhino.blk
2014-09-09 04:57 - 2014-09-09 04:57 - 00069207 _____ () C:\Users\jan\Downloads\í)¨¨¨¨.blk
2014-09-09 01:53 - 2014-09-09 01:53 - 00012509 _____ () C:\Users\jan\Downloads\cliffs-of-dover-cz-nastaveni-ovladani-aircraft.txt
2014-09-09 01:39 - 2014-09-09 01:39 - 00000000 ____D () C:\Users\jan\Documents\1C SoftClub
2014-09-09 01:36 - 2014-09-09 01:36 - 00031513 _____ () C:\Users\jan\Downloads\CloDer_v0.0.0.2.7z
2014-09-09 01:30 - 2014-09-09 01:30 - 00000000 ____D () C:\ProgramData\Solidshield
2014-09-09 01:22 - 2014-09-09 01:39 - 00000000 ____D () C:\Program Files (x86)\il-2 sturmovik cliffs of dover
2014-09-09 01:20 - 2014-09-09 01:20 - 00000000 ____D () C:\Users\jan\Desktop\Nová složka
2014-09-09 01:10 - 2014-03-16 20:52 - 00076000 _____ () C:\Users\jan\Downloads\DCS_A10C_X55_Athlonic.pr0
2014-09-09 01:03 - 2014-09-09 01:03 - 00333334 _____ () C:\Users\jan\Downloads\DCS_A10C_X55_Athlonic.zip
2014-09-09 00:51 - 2014-09-09 00:51 - 00023227 _____ () C:\Users\jan\Downloads\[kickass.to]il.2.sturmovik.cliffs.of.dover.2011.pcdvd.multi5.torrent
2014-09-09 00:46 - 2014-09-09 00:46 - 00019359 _____ () C:\Users\jan\Downloads\[kickass.to]il.2.sturmovik.cliffs.of.dover.skidrow.torrent
2014-09-08 02:07 - 2014-09-09 01:10 - 00000000 ____D () C:\Users\jan\Downloads\profilesv3
2014-09-08 02:07 - 2014-09-08 02:07 - 00112336 _____ () C:\Users\jan\Downloads\profilesv3.zip
2014-09-08 00:51 - 2014-09-08 00:51 - 00068483 _____ () C:\Users\jan\Downloads\FRBsetup.blk
2014-09-07 23:21 - 2014-09-07 23:21 - 00007044 _____ () C:\Users\jan\Downloads\The_flow_beginning_of_the_autumn_water.zip
2014-09-07 23:21 - 2014-09-07 23:21 - 00001157 _____ () C:\Users\jan\Downloads\Mig_—_копия.zip
2014-09-07 23:09 - 2014-09-08 21:35 - 00069192 _____ () C:\Users\jan\Downloads\wt x55-real.blk
2014-09-07 09:49 - 2014-09-08 13:50 - 00068014 _____ () C:\Users\jan\Downloads\wt x55-2.blk
2014-09-07 00:59 - 2014-09-08 01:08 - 00068168 _____ () C:\Users\jan\Downloads\wt x55-1.blk
2014-09-07 00:57 - 2013-12-22 10:22 - 00062400 _____ () C:\Users\jan\Downloads\WTconfig137a.blk
2014-09-07 00:55 - 2014-09-07 00:55 - 00009924 _____ () C:\Users\jan\Downloads\WTconfigSST137a.zip
2014-09-06 11:16 - 2014-09-06 11:16 - 00000000 ____D () C:\Users\Public\Documents\Mad Catz
2014-09-06 11:15 - 2014-09-06 11:15 - 10696936 _____ (Mad catz ) C:\Users\jan\Downloads\X55_Rhino_7_0_33_91_x64_Software.exe
2014-09-06 11:15 - 2014-09-06 11:15 - 00003021 _____ () C:\Users\jan\Desktop\X-55 Rhino.lnk
2014-09-06 11:15 - 2014-09-06 11:15 - 00000000 ____D () C:\Program Files\Mad Catz
2014-09-06 11:01 - 2014-09-06 11:01 - 04959400 _____ (Mad catz ) C:\Users\jan\Downloads\X55_Rhino_7_0_32_81_x64_Drivers.exe
2014-09-05 17:25 - 2014-09-05 17:25 - 00000000 ____D () C:\Users\Public\Documents\CyberLink
2014-09-05 16:53 - 2014-09-05 16:53 - 00000000 _____ () C:\WINDOWS\system32\msi_drv_dmp.txt
2014-09-05 15:56 - 2014-09-05 16:37 - 00029184 ___SH () C:\Users\jan\Downloads\Thumbs.db
2014-09-05 15:42 - 2014-09-05 15:42 - 00003158 _____ () C:\WINDOWS\System32\Tasks\{FE550936-6492-4253-8A01-38D3519CDB7C}
2014-09-05 15:42 - 2014-09-05 15:42 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_SaiKa215_01009.Wdf
2014-09-05 15:42 - 2014-09-05 15:42 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_SaiK2215_01009.Wdf
2014-09-05 00:27 - 2014-09-05 00:27 - 00000000 ____D () C:\Users\jan\AppData\Local\DCS
2014-09-05 00:14 - 2014-09-05 00:14 - 00002016 _____ () C:\Users\Public\Desktop\DCS World.lnk
2014-09-05 00:14 - 2014-09-05 00:14 - 00002000 _____ () C:\Users\Public\Desktop\DCS World Multiplayer.lnk
2014-09-05 00:13 - 2014-09-05 00:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eagle Dynamics
2014-09-05 00:01 - 2014-09-05 00:01 - 00000000 ____D () C:\Program Files\Eagle Dynamics
2014-09-04 17:27 - 2014-09-04 17:27 - 00003184 _____ () C:\WINDOWS\System32\Tasks\{F8F11B30-E4D9-4C4B-98CF-842F07743E04}
2014-09-04 16:48 - 2014-09-16 06:25 - 00000000 ____D () C:\Program Files\Lenovo
2014-09-04 16:48 - 2014-09-04 16:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo Ultraslim Plus Wireless Keyboard & Mouse
2014-09-04 16:48 - 2012-06-06 15:32 - 00024064 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\Drivers\LEMo6022.SYS
2014-09-04 16:48 - 2011-01-05 10:30 - 00018432 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\Drivers\LEub6022.SYS
2014-09-04 16:48 - 2010-11-05 09:35 - 00017408 _____ (Primax Electronics Ltd.) C:\WINDOWS\system32\Drivers\LECs6022.sys
2014-09-04 16:48 - 2005-11-17 15:46 - 00414632 _____ (Microsoft Corporation) C:\WINDOWS\difxapi.dll
2014-09-03 18:59 - 2014-09-03 18:59 - 00000000 ____D () C:\Users\jan\AppData\Local\gptv
2014-09-03 16:56 - 2014-09-16 06:16 - 00119296 _____ () C:\WINDOWS\SysWOW64\zlib.dll
2014-09-03 16:56 - 2014-09-03 16:56 - 00002089 _____ () C:\Users\Public\Desktop\Pinnacle Game Profiler.lnk
2014-09-03 16:56 - 2014-09-03 16:56 - 00000000 ____D () C:\Users\jan\AppData\Roaming\PowerUp Software
2014-09-03 16:56 - 2014-09-03 16:56 - 00000000 ____D () C:\ProgramData\PowerUp Software
2014-09-03 16:56 - 2014-09-03 16:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Game Profiler
2014-09-03 16:56 - 2014-09-03 16:56 - 00000000 ____D () C:\Program Files (x86)\PowerUp Software
2014-09-03 16:56 - 2013-12-31 15:11 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dx8vb.dll
2014-09-03 16:56 - 2008-01-13 17:36 - 00091632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsofile.dll
2014-09-03 16:56 - 2007-12-26 23:33 - 00608448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\COMCTL32.OCX
2014-09-03 16:56 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\capicom.dll
2014-09-03 16:56 - 2004-07-14 18:26 - 00152848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.ocx
2014-09-03 16:56 - 2004-03-09 19:45 - 00212240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RICHTX32.OCX
2014-09-03 16:56 - 2003-01-26 14:41 - 00040960 _____ (vbAccelerator) C:\WINDOWS\SysWOW64\SSubTmr6.dll
2014-09-03 16:56 - 2002-08-09 12:18 - 00045056 ____N (Microsoft) C:\WINDOWS\SysWOW64\NTSVC.ocx
2014-09-03 16:56 - 2001-04-05 07:43 - 00094208 ___RS (Microsoft Corporation) C:\WINDOWS\SysWOW64\msstkprp.dll
2014-09-03 16:56 - 2000-12-06 03:00 - 00109248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswinsck.ocx
2014-09-03 16:56 - 2000-04-03 21:52 - 00164144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comct232.ocx
2014-09-03 16:56 - 1999-05-17 14:55 - 00057344 ____N () C:\WINDOWS\SysWOW64\ADsSecurity.dll
2014-09-03 16:56 - 1998-06-18 01:00 - 00089360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB5DB.DLL
2014-09-03 11:25 - 2014-09-03 11:25 - 00000000 ____D () C:\Users\Default\AppData\Roaming\TuneUp Software
2014-09-03 11:25 - 2014-09-03 11:25 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\TuneUp Software
2014-09-03 05:59 - 2014-09-03 05:59 - 00000000 ____D () C:\Users\jan\AppData\Local\your-appname-companyname-folder
2014-09-03 05:59 - 2014-09-03 05:59 - 00000000 ____D () C:\Program Files (x86)\Microsoft XNA
2014-09-03 05:58 - 2014-09-05 15:38 - 00000000 ____D () C:\Program Files (x86)\GamepadTV
2014-09-03 05:50 - 2014-09-09 19:29 - 00000000 ____D () C:\Users\jan\AppData\Roaming\Awesomium
2014-09-03 05:39 - 2014-09-03 05:39 - 00000000 ____D () C:\Users\jan\Documents\Elder Scrolls Online
2014-09-03 05:39 - 2014-09-03 05:39 - 00000000 ____D () C:\ProgramData\Elder Scrolls Online
2014-09-02 23:40 - 2014-09-02 23:40 - 00002128 _____ () C:\Users\jan\Desktop\The Elder Scrolls Online.lnk
2014-09-02 23:40 - 2014-09-02 23:40 - 00000000 ____D () C:\Users\jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Elder Scrolls Online
2014-09-02 23:39 - 2014-09-02 23:40 - 00000000 ____D () C:\WINDOWS\jre
2014-09-02 22:23 - 2014-09-02 23:40 - 00000000 ___HD () C:\Program Files (x86)\Zero G Registry
2014-09-02 22:23 - 2014-09-02 23:40 - 00000000 ____D () C:\Program Files (x86)\Zenimax Online
2014-09-02 22:22 - 2014-09-02 22:22 - 00000000 ___HD () C:\Users\jan\InstallAnywhere
2014-09-02 09:37 - 2014-09-02 09:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\(Default)
2014-09-02 09:37 - 2014-09-02 09:37 - 00000000 ____D () C:\Program Files (x86)\War Thunder
2014-09-01 21:55 - 2014-09-01 21:55 - 00000000 ____D () C:\WINDOWS\pss
2014-08-29 19:20 - 2014-09-01 18:17 - 00000000 ____D () C:\ProgramData\AVG Security Toolbar
2014-08-29 19:20 - 2014-09-01 16:44 - 00000000 ____D () C:\Program Files\AVG SafeGuard toolbar
2014-08-29 18:22 - 2014-08-29 18:22 - 00000000 ____D () C:\Users\jan\AppData\Local\Chromium
2014-08-29 18:21 - 2014-08-29 18:21 - 00000000 ____D () C:\Users\jan\AppData\Local\The Lord of the Rings Online
2014-08-29 07:46 - 2014-09-16 06:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lichdom Battlemage
2014-08-29 07:21 - 2014-08-29 18:25 - 00000000 ____D () C:\Users\jan\Documents\The Lord of the Rings Online
2014-08-29 07:21 - 2014-08-29 07:25 - 00000000 ____D () C:\Users\jan\AppData\Local\Turbine
2014-08-28 22:25 - 2014-09-16 07:07 - 00000330 _____ () C:\WINDOWS\Tasks\HPCeeScheduleForjan.job
2014-08-28 22:25 - 2014-09-16 06:40 - 00003140 _____ () C:\WINDOWS\System32\Tasks\HPCeeScheduleForjan
2014-08-28 22:16 - 2014-08-28 22:54 - 00000000 ____D () C:\Users\jan\Documents\Ubisoft
2014-08-28 22:06 - 2014-08-28 22:06 - 00000000 ____D () C:\Users\jan\AppData\Local\Ubisoft Game Launcher
2014-08-28 21:53 - 2014-08-28 21:53 - 00000000 ____D () C:\Users\jan\AppData\Roaming\HewlettPackard
2014-08-28 12:30 - 2014-08-23 02:42 - 04148224 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-08-28 12:30 - 2014-08-07 04:12 - 01336624 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2014-08-28 12:30 - 2014-08-02 05:56 - 01064448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2014-08-28 05:05 - 2014-08-28 23:23 - 00000000 ____D () C:\Users\jan\AppData\Local\4A Games
2014-08-28 05:05 - 2014-08-28 05:05 - 00000000 ____D () C:\Users\jan\AppData\Roaming\Steam
2014-08-28 01:18 - 2014-09-16 06:29 - 00000000 ____D () C:\Users\jan\AppData\Local\FalloutNV
2014-08-27 21:47 - 2014-08-27 21:47 - 00000000 ____D () C:\Users\jan\AppData\Local\Fallout3
2014-08-27 21:36 - 2014-08-27 21:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\xlive
2014-08-27 21:35 - 2014-08-27 21:35 - 00000436 _____ () C:\Users\jan\Desktop\Tento počítač – zástupce.lnk
2014-08-27 21:29 - 2014-08-27 21:29 - 00000000 ____D () C:\Users\jan\Documents\BioWare
2014-08-27 16:47 - 2014-08-27 16:47 - 00000000 ____D () C:\Users\jan\AppData\Local\Microsoft Game Studios
2014-08-27 14:55 - 2014-08-28 07:10 - 00000000 ____D () C:\Users\jan\Documents\Flight Simulator X Files
2014-08-27 14:42 - 2014-08-27 14:42 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Games
2014-08-27 14:00 - 2014-08-27 23:13 - 00000000 ____D () C:\Program Files (x86)\Microsoft Flight Simulator X
2014-08-27 07:42 - 2014-09-16 06:50 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-08-27 07:42 - 2014-09-09 19:51 - 00003802 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-08-27 07:42 - 2014-08-27 07:42 - 00000000 ____D () C:\ProgramData\McAfee
2014-08-27 07:41 - 2014-08-27 07:44 - 00000000 _____ () C:\WINDOWS\SysWOW64\Access.dat
2014-08-27 05:35 - 2014-08-27 05:35 - 00000000 ____D () C:\ProgramData\Steam
2014-08-27 05:24 - 2014-08-27 05:24 - 00000000 ____D () C:\Users\jan\Documents\Tunngle
2014-08-27 05:24 - 2014-08-27 05:24 - 00000000 ____D () C:\Users\jan\AppData\Roaming\Tunngle
2014-08-27 05:24 - 2009-09-16 07:02 - 00031232 _____ (Tunngle.net) C:\WINDOWS\system32\Drivers\tap0901t.sys
2014-08-26 20:51 - 2014-08-26 20:52 - 00007597 _____ () C:\Users\jan\AppData\Local\resmon.resmoncfg
2014-08-26 20:39 - 2014-08-26 20:39 - 00000000 ____D () C:\Users\jan\AppData\Roaming\AVG2014
2014-08-26 20:38 - 2014-09-03 11:25 - 00000960 _____ () C:\Users\Public\Desktop\AVG 2014.lnk
2014-08-26 20:38 - 2014-09-03 11:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-08-26 20:38 - 2014-08-26 20:39 - 00000000 ____D () C:\ProgramData\AVG2014
2014-08-26 20:38 - 2014-08-26 20:38 - 00000000 ___HD () C:\$AVG
2014-08-26 20:38 - 2014-08-26 20:38 - 00000000 ____D () C:\Users\jan\AppData\Roaming\TuneUp Software
2014-08-26 20:38 - 2014-08-26 20:38 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-08-26 20:37 - 2014-09-15 21:08 - 00000000 ____D () C:\ProgramData\MFAData
2014-08-26 20:37 - 2014-08-26 22:02 - 00000000 ____D () C:\Users\jan\AppData\Local\Avg2014
2014-08-26 20:37 - 2014-08-26 20:37 - 00000000 ____D () C:\Users\jan\AppData\Local\MFAData
2014-08-26 20:35 - 2014-08-26 20:35 - 00000000 ____D () C:\Users\jan\AppData\Roaming\CyberLink
2014-08-26 20:09 - 2014-08-26 20:10 - 00000000 ____D () C:\Users\jan\Documents\StarCitizen
2014-08-26 20:09 - 2014-08-26 20:09 - 00001111 _____ () C:\Users\jan\Desktop\StarCitizen.lnk
2014-08-26 20:09 - 2014-08-26 20:09 - 00000000 ____D () C:\Users\jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StarCitizen
2014-08-26 20:05 - 2014-09-02 21:41 - 00000000 ____D () C:\WINDOWS\SysWOW64\directx
2014-08-26 19:34 - 2014-08-26 19:34 - 00001558 _____ () C:\Users\Public\Desktop\IL-2 Sturmovik Battle of Stalingrad.lnk
2014-08-26 19:34 - 2014-08-26 19:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\1C Game Studios
2014-08-26 19:34 - 2014-08-26 19:34 - 00000000 ____D () C:\Program Files (x86)\1C Game Studios
2014-08-26 17:11 - 2014-08-26 17:11 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_SaiK1703_01009.Wdf
2014-08-26 16:52 - 2014-09-16 06:44 - 00000000 ____D () C:\ProgramData\SmartTechnology
2014-08-26 14:34 - 2014-08-26 14:34 - 00000000 ____D () C:\ProgramData\SystemRequirementsLab
2014-08-26 14:34 - 2014-08-26 14:34 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2014-08-25 19:58 - 2014-08-25 19:58 - 00000000 ____D () C:\Users\jan\AppData\Local\Targem
2014-08-25 19:34 - 2014-08-25 19:58 - 00000000 ____D () C:\Program Files (x86)\Star Conflict
2014-08-25 19:34 - 2014-08-25 19:34 - 00272808 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-08-25 19:34 - 2014-08-25 19:34 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-08-25 19:34 - 2014-08-25 19:34 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-08-25 19:34 - 2014-08-25 19:34 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-08-25 19:34 - 2014-08-25 19:34 - 00001021 _____ () C:\Users\jan\Desktop\ Star Conflict Launcher.lnk
2014-08-25 19:34 - 2014-08-25 19:34 - 00000000 ____D () C:\ProgramData\Sun
2014-08-25 19:34 - 2014-08-25 19:34 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-25 19:34 - 2014-08-25 19:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Star Conflict
2014-08-25 19:34 - 2014-08-25 19:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-25 19:34 - 2014-08-25 19:34 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-25 15:59 - 2014-08-25 15:59 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2014-08-25 14:33 - 2014-08-25 14:33 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-08-25 09:44 - 2014-08-25 09:44 - 00000000 ____D () C:\Users\jan\AppData\Local\SensitivityBreak
2014-08-24 18:22 - 2014-08-24 18:22 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-08-24 18:22 - 2014-08-24 18:22 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-08-24 11:14 - 2014-08-24 11:14 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-08-24 11:12 - 2014-08-24 11:14 - 00000000 ____D () C:\WINDOWS\SysWOW64\sda
2014-08-24 11:12 - 2014-08-24 11:12 - 00816344 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2014-08-24 11:12 - 2014-08-24 11:12 - 00074456 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2014-08-24 11:11 - 2014-08-24 11:11 - 00000000 ____D () C:\Users\jan\Intel
2014-08-24 11:10 - 2014-08-24 11:10 - 00000000 ____D () C:\Users\jan\AppData\Roaming\WinBatch
2014-08-24 11:09 - 2014-08-24 11:09 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2014-08-24 11:09 - 2014-08-24 11:09 - 00099288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2014-08-24 11:09 - 2014-08-24 11:09 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-08-24 11:09 - 2014-08-24 11:09 - 00000000 ____D () C:\Intel
2014-08-23 19:12 - 2014-08-26 18:35 - 00081408 ___SH () C:\Users\jan\Desktop\Thumbs.db
2014-08-23 19:12 - 2014-08-23 19:12 - 00000986 _____ () C:\Users\jan\Desktop\Program Files (x86) – zástupce.lnk
2014-08-23 19:12 - 2014-08-23 19:12 - 00000706 _____ () C:\Users\jan\Desktop\torrents – zástupce.lnk
2014-08-23 18:49 - 2014-08-28 22:16 - 00000000 ____D () C:\ProgramData\Orbit
2014-08-23 18:44 - 2014-08-28 22:40 - 00001184 _____ () C:\Users\jan\Desktop\Uplay.lnk
2014-08-23 18:44 - 2014-08-23 18:44 - 00000000 ____D () C:\Users\jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2014-08-23 18:27 - 2014-09-16 06:38 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2014-08-23 18:17 - 2014-08-23 18:17 - 00000000 ____D () C:\Users\Public\Downloads\Norton
2014-08-17 22:55 - 2014-08-17 22:55 - 00000000 ___RD () C:\WINDOWS\BrowserChoice
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-09-16 07:30 - 2014-09-16 07:30 - 00022643 _____ () C:\Users\jan\Desktop\FRST.txt
2014-09-16 07:30 - 2014-09-16 07:30 - 00000000 ____D () C:\FRST
2014-09-16 07:25 - 2014-08-10 17:19 - 01723334 _____ () C:\WINDOWS\WindowsUpdate.log
2014-09-16 07:24 - 2014-09-16 07:24 - 00112640 _____ (forum.viry.cz) C:\Users\jan\Downloads\Nepotvrzeno 508129.crdownload
2014-09-16 07:24 - 2014-09-16 07:24 - 00112640 _____ (forum.viry.cz) C:\Users\jan\Downloads\Nepotvrzeno 262475.crdownload
2014-09-16 07:19 - 2014-09-16 07:28 - 02105856 _____ (Farbar) C:\Users\jan\Desktop\FRST64.exe
2014-09-16 07:19 - 2014-09-16 07:18 - 02105856 _____ (Farbar) C:\Users\jan\Downloads\FRST64.exe
2014-09-16 07:13 - 2014-03-18 17:33 - 01934988 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-09-16 07:13 - 2014-03-18 16:54 - 00800964 _____ () C:\WINDOWS\system32\perfh005.dat
2014-09-16 07:13 - 2014-03-18 16:54 - 00183494 _____ () C:\WINDOWS\system32\perfc005.dat
2014-09-16 07:12 - 2014-08-05 08:11 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3123538698-723933665-3563615097-1001
2014-09-16 07:09 - 2014-08-05 08:33 - 00002228 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-16 07:08 - 2014-08-10 17:46 - 00000000 ___DO () C:\Users\jan\OneDrive
2014-09-16 07:08 - 2014-08-05 08:33 - 00000948 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-16 07:07 - 2014-08-28 22:25 - 00000330 _____ () C:\WINDOWS\Tasks\HPCeeScheduleForjan.job
2014-09-16 07:07 - 2014-08-10 17:19 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-09-16 07:07 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-09-16 07:07 - 2013-08-22 15:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2014-09-16 07:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-09-16 06:50 - 2014-08-27 07:42 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-09-16 06:46 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-09-16 06:44 - 2014-09-16 06:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Technology
2014-09-16 06:44 - 2014-08-26 16:52 - 00000000 ____D () C:\ProgramData\SmartTechnology
2014-09-16 06:44 - 2014-08-11 22:40 - 00000000 ____D () C:\Program Files\SmartTechnology
2014-09-16 06:42 - 2014-09-16 06:41 - 129201056 _____ (Mad catz ) C:\Users\jan\Downloads\Smart Technology 7_0_27_13 64Bit.exe
2014-09-16 06:40 - 2014-08-28 22:25 - 00003140 _____ () C:\WINDOWS\System32\Tasks\HPCeeScheduleForjan
2014-09-16 06:39 - 2012-07-26 09:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-09-16 06:38 - 2014-08-23 18:27 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2014-09-16 06:38 - 2014-08-05 08:33 - 00000952 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-16 06:37 - 2014-08-13 00:57 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-09-16 06:35 - 2014-03-18 09:20 - 00773992 _____ () C:\WINDOWS\PFRO.log
2014-09-16 06:31 - 2014-08-07 09:27 - 00000000 ____D () C:\Users\jan\Documents\My Games
2014-09-16 06:31 - 2014-05-22 01:43 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-09-16 06:30 - 2014-08-10 17:19 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-09-16 06:29 - 2014-08-28 01:18 - 00000000 ____D () C:\Users\jan\AppData\Local\FalloutNV
2014-09-16 06:28 - 2014-08-29 07:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lichdom Battlemage
2014-09-16 06:28 - 2014-08-13 23:32 - 00003938 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3B769480-0C8B-4641-BC56-BC4172E248E3}
2014-09-16 06:26 - 2014-09-16 06:26 - 07837816 _____ (Mad catz ) C:\Users\jan\Downloads\Range_RAT3_SD7_0_20_0_64Bit_Drivers_NonWHQL.exe
2014-09-16 06:26 - 2013-08-22 16:46 - 00299845 _____ () C:\WINDOWS\setupact.log
2014-09-16 06:25 - 2014-09-04 16:48 - 00000000 ____D () C:\Program Files\Lenovo
2014-09-16 06:25 - 2014-05-22 01:47 - 00000000 ____D () C:\ProgramData\Temp
2014-09-16 06:16 - 2014-09-03 16:56 - 00119296 _____ () C:\WINDOWS\SysWOW64\zlib.dll
2014-09-15 21:08 - 2014-08-26 20:37 - 00000000 ____D () C:\ProgramData\MFAData
2014-09-15 21:08 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-09-15 20:56 - 2014-08-07 19:42 - 00000052 _____ () C:\WINDOWS\SysWOW64\DOErrors.log
2014-09-15 20:56 - 2014-08-07 19:41 - 00000000 _____ () C:\WINDOWS\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-09-15 20:50 - 2014-08-07 09:27 - 00000000 ____D () C:\Program Files (x86)\WarThunder
2014-09-10 23:35 - 2014-08-08 16:30 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-09-10 16:31 - 2014-08-10 18:54 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-09-10 16:30 - 2014-08-10 18:15 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-09-10 16:30 - 2014-08-10 18:15 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-09-10 16:30 - 2014-08-10 18:15 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-09-10 16:30 - 2014-08-10 18:15 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-09-10 16:30 - 2014-08-10 18:15 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-09-10 16:30 - 2014-08-10 18:15 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-09-10 16:30 - 2014-08-10 18:15 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-09-10 16:30 - 2014-08-10 18:15 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-09-10 16:30 - 2014-08-10 18:15 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-09-10 16:30 - 2014-08-10 18:15 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-09-10 16:30 - 2014-08-10 18:15 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-09-10 16:30 - 2014-08-10 18:15 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-09-10 16:30 - 2014-08-10 18:15 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-09-10 16:30 - 2014-08-10 18:15 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-09-10 16:30 - 2014-08-10 18:11 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-09-10 16:30 - 2014-08-10 18:11 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-09-10 16:29 - 2014-08-06 09:59 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-09-10 16:26 - 2014-08-06 09:58 - 101694776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-09-09 21:12 - 2014-09-09 17:00 - 00071845 _____ () C:\Users\jan\Downloads\war thunder rhino.blk
2014-09-09 19:51 - 2014-08-27 07:42 - 00003802 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-09-09 19:29 - 2014-09-03 05:50 - 00000000 ____D () C:\Users\jan\AppData\Roaming\Awesomium
2014-09-09 05:52 - 2014-08-10 15:00 - 00000000 ____D () C:\Users\jan\AppData\Local\Wings of Prey
2014-09-09 04:57 - 2014-09-09 04:57 - 00069207 _____ () C:\Users\jan\Downloads\í)¨¨¨¨.blk
2014-09-09 01:53 - 2014-09-09 01:53 - 00012509 _____ () C:\Users\jan\Downloads\cliffs-of-dover-cz-nastaveni-ovladani-aircraft.txt
2014-09-09 01:39 - 2014-09-09 01:39 - 00000000 ____D () C:\Users\jan\Documents\1C SoftClub
2014-09-09 01:39 - 2014-09-09 01:22 - 00000000 ____D () C:\Program Files (x86)\il-2 sturmovik cliffs of dover
2014-09-09 01:38 - 2014-08-05 09:10 - 00000000 ____D () C:\Users\jan\AppData\Roaming\uTorrent
2014-09-09 01:36 - 2014-09-09 01:36 - 00031513 _____ () C:\Users\jan\Downloads\CloDer_v0.0.0.2.7z
2014-09-09 01:30 - 2014-09-09 01:30 - 00000000 ____D () C:\ProgramData\Solidshield
2014-09-09 01:25 - 2014-05-22 01:55 - 00254359 _____ () C:\WINDOWS\DirectX.log
2014-09-09 01:24 - 2014-08-10 05:26 - 00000015 _____ () C:\Users\jan\AppData\Local\X-Plane_drm.prf
2014-09-09 01:23 - 2014-08-10 03:21 - 00000080 _____ () C:\Users\jan\AppData\Local\X-Plane Installer.prf
2014-09-09 01:22 - 2014-08-10 03:22 - 00000000 ____D () C:\Users\jan\Desktop\X-Plane 10 Demo
2014-09-09 01:21 - 2014-08-10 17:25 - 00000000 ____D () C:\Users\jan
2014-09-09 01:20 - 2014-09-09 01:20 - 00000000 ____D () C:\Users\jan\Desktop\Nová složka
2014-09-09 01:10 - 2014-09-08 02:07 - 00000000 ____D () C:\Users\jan\Downloads\profilesv3
2014-09-09 01:03 - 2014-09-09 01:03 - 00333334 _____ () C:\Users\jan\Downloads\DCS_A10C_X55_Athlonic.zip
2014-09-09 00:52 - 2014-08-05 09:11 - 00000000 ____D () C:\torrents
2014-09-09 00:51 - 2014-09-09 00:51 - 00023227 _____ () C:\Users\jan\Downloads\[kickass.to]il.2.sturmovik.cliffs.of.dover.2011.pcdvd.multi5.torrent
2014-09-09 00:46 - 2014-09-09 00:46 - 00019359 _____ () C:\Users\jan\Downloads\[kickass.to]il.2.sturmovik.cliffs.of.dover.skidrow.torrent
2014-09-08 21:35 - 2014-09-07 23:09 - 00069192 _____ () C:\Users\jan\Downloads\wt x55-real.blk
2014-09-08 13:50 - 2014-09-07 09:49 - 00068014 _____ () C:\Users\jan\Downloads\wt x55-2.blk
2014-09-08 02:07 - 2014-09-08 02:07 - 00112336 _____ () C:\Users\jan\Downloads\profilesv3.zip
2014-09-08 01:08 - 2014-09-07 00:59 - 00068168 _____ () C:\Users\jan\Downloads\wt x55-1.blk
2014-09-08 00:51 - 2014-09-08 00:51 - 00068483 _____ () C:\Users\jan\Downloads\FRBsetup.blk
2014-09-07 23:21 - 2014-09-07 23:21 - 00007044 _____ () C:\Users\jan\Downloads\The_flow_beginning_of_the_autumn_water.zip
2014-09-07 23:21 - 2014-09-07 23:21 - 00001157 _____ () C:\Users\jan\Downloads\Mig_—_копия.zip
2014-09-07 00:55 - 2014-09-07 00:55 - 00009924 _____ () C:\Users\jan\Downloads\WTconfigSST137a.zip
2014-09-06 11:16 - 2014-09-06 11:16 - 00000000 ____D () C:\Users\Public\Documents\Mad Catz
2014-09-06 11:15 - 2014-09-06 11:15 - 10696936 _____ (Mad catz ) C:\Users\jan\Downloads\X55_Rhino_7_0_33_91_x64_Software.exe
2014-09-06 11:15 - 2014-09-06 11:15 - 00003021 _____ () C:\Users\jan\Desktop\X-55 Rhino.lnk
2014-09-06 11:15 - 2014-09-06 11:15 - 00000000 ____D () C:\Program Files\Mad Catz
2014-09-06 11:01 - 2014-09-06 11:01 - 04959400 _____ (Mad catz ) C:\Users\jan\Downloads\X55_Rhino_7_0_32_81_x64_Drivers.exe
2014-09-06 02:37 - 2014-08-05 08:05 - 00000000 ____D () C:\Users\jan\AppData\Local\Packages
2014-09-05 21:29 - 2014-08-07 09:27 - 00000000 ____D () C:\ProgramData\WarThunder
2014-09-05 17:25 - 2014-09-05 17:25 - 00000000 ____D () C:\Users\Public\Documents\CyberLink
2014-09-05 16:53 - 2014-09-05 16:53 - 00000000 _____ () C:\WINDOWS\system32\msi_drv_dmp.txt
2014-09-05 16:37 - 2014-09-05 15:56 - 00029184 ___SH () C:\Users\jan\Downloads\Thumbs.db
2014-09-05 15:42 - 2014-09-05 15:42 - 00003158 _____ () C:\WINDOWS\System32\Tasks\{FE550936-6492-4253-8A01-38D3519CDB7C}
2014-09-05 15:42 - 2014-09-05 15:42 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_SaiKa215_01009.Wdf
2014-09-05 15:42 - 2014-09-05 15:42 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_SaiK2215_01009.Wdf
2014-09-05 15:38 - 2014-09-03 05:58 - 00000000 ____D () C:\Program Files (x86)\GamepadTV
2014-09-05 04:36 - 2014-09-10 15:53 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2014-09-05 04:31 - 2014-09-10 15:53 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-09-05 02:48 - 2014-09-10 15:53 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-09-05 00:27 - 2014-09-05 00:27 - 00000000 ____D () C:\Users\jan\AppData\Local\DCS
2014-09-05 00:14 - 2014-09-05 00:14 - 00002016 _____ () C:\Users\Public\Desktop\DCS World.lnk
2014-09-05 00:14 - 2014-09-05 00:14 - 00002000 _____ () C:\Users\Public\Desktop\DCS World Multiplayer.lnk
2014-09-05 00:14 - 2013-04-03 17:09 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-05 00:13 - 2014-09-05 00:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eagle Dynamics
2014-09-05 00:01 - 2014-09-05 00:01 - 00000000 ____D () C:\Program Files\Eagle Dynamics
2014-09-04 17:27 - 2014-09-04 17:27 - 00003184 _____ () C:\WINDOWS\System32\Tasks\{F8F11B30-E4D9-4C4B-98CF-842F07743E04}
2014-09-04 16:48 - 2014-09-04 16:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo Ultraslim Plus Wireless Keyboard & Mouse
2014-09-03 18:59 - 2014-09-03 18:59 - 00000000 ____D () C:\Users\jan\AppData\Local\gptv
2014-09-03 16:56 - 2014-09-03 16:56 - 00002089 _____ () C:\Users\Public\Desktop\Pinnacle Game Profiler.lnk
2014-09-03 16:56 - 2014-09-03 16:56 - 00000000 ____D () C:\Users\jan\AppData\Roaming\PowerUp Software
2014-09-03 16:56 - 2014-09-03 16:56 - 00000000 ____D () C:\ProgramData\PowerUp Software
2014-09-03 16:56 - 2014-09-03 16:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Game Profiler
2014-09-03 16:56 - 2014-09-03 16:56 - 00000000 ____D () C:\Program Files (x86)\PowerUp Software
2014-09-03 11:25 - 2014-09-03 11:25 - 00000000 ____D () C:\Users\Default\AppData\Roaming\TuneUp Software
2014-09-03 11:25 - 2014-09-03 11:25 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\TuneUp Software
2014-09-03 11:25 - 2014-08-26 20:38 - 00000960 _____ () C:\Users\Public\Desktop\AVG 2014.lnk
2014-09-03 11:25 - 2014-08-26 20:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-09-03 05:59 - 2014-09-03 05:59 - 00000000 ____D () C:\Users\jan\AppData\Local\your-appname-companyname-folder
2014-09-03 05:59 - 2014-09-03 05:59 - 00000000 ____D () C:\Program Files (x86)\Microsoft XNA
2014-09-03 05:39 - 2014-09-03 05:39 - 00000000 ____D () C:\Users\jan\Documents\Elder Scrolls Online
2014-09-03 05:39 - 2014-09-03 05:39 - 00000000 ____D () C:\ProgramData\Elder Scrolls Online
2014-09-02 23:40 - 2014-09-02 23:40 - 00002128 _____ () C:\Users\jan\Desktop\The Elder Scrolls Online.lnk
2014-09-02 23:40 - 2014-09-02 23:40 - 00000000 ____D () C:\Users\jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Elder Scrolls Online
2014-09-02 23:40 - 2014-09-02 23:39 - 00000000 ____D () C:\WINDOWS\jre
2014-09-02 23:40 - 2014-09-02 22:23 - 00000000 ___HD () C:\Program Files (x86)\Zero G Registry
2014-09-02 23:40 - 2014-09-02 22:23 - 00000000 ____D () C:\Program Files (x86)\Zenimax Online
2014-09-02 22:22 - 2014-09-02 22:22 - 00000000 ___HD () C:\Users\jan\InstallAnywhere
2014-09-02 22:06 - 2013-08-22 17:38 - 00706016 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-09-02 22:06 - 2013-08-22 17:38 - 00105440 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-02 21:41 - 2014-08-26 20:05 - 00000000 ____D () C:\WINDOWS\SysWOW64\directx
2014-09-02 21:41 - 2014-08-05 08:37 - 00000000 ___HD () C:\WINDOWS\msdownld.tmp
2014-09-02 21:19 - 2014-08-05 08:05 - 00000000 ____D () C:\Users\jan\AppData\Local\VirtualStore
2014-09-02 10:23 - 2014-08-12 08:23 - 00000000 ____D () C:\ProgramData\Origin
2014-09-02 09:46 - 2014-08-12 08:25 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-09-02 09:37 - 2014-09-02 09:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\(Default)
2014-09-02 09:37 - 2014-09-02 09:37 - 00000000 ____D () C:\Program Files (x86)\War Thunder
2014-09-01 21:55 - 2014-09-01 21:55 - 00000000 ____D () C:\WINDOWS\pss
2014-09-01 18:52 - 2014-08-05 08:37 - 00000000 ____D () C:\Games
2014-09-01 18:17 - 2014-08-29 19:20 - 00000000 ____D () C:\ProgramData\AVG Security Toolbar
2014-09-01 16:44 - 2014-08-29 19:20 - 00000000 ____D () C:\Program Files\AVG SafeGuard toolbar
2014-08-29 18:27 - 2014-08-13 21:32 - 00001330 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk
2014-08-29 18:25 - 2014-08-29 07:21 - 00000000 ____D () C:\Users\jan\Documents\The Lord of the Rings Online
2014-08-29 18:22 - 2014-08-29 18:22 - 00000000 ____D () C:\Users\jan\AppData\Local\Chromium
2014-08-29 18:21 - 2014-08-29 18:21 - 00000000 ____D () C:\Users\jan\AppData\Local\The Lord of the Rings Online
2014-08-29 07:25 - 2014-08-29 07:21 - 00000000 ____D () C:\Users\jan\AppData\Local\Turbine
2014-08-28 23:23 - 2014-08-28 05:05 - 00000000 ____D () C:\Users\jan\AppData\Local\4A Games
2014-08-28 22:54 - 2014-08-28 22:16 - 00000000 ____D () C:\Users\jan\Documents\Ubisoft
2014-08-28 22:40 - 2014-08-23 18:44 - 00001184 _____ () C:\Users\jan\Desktop\Uplay.lnk
2014-08-28 22:16 - 2014-08-23 18:49 - 00000000 ____D () C:\ProgramData\Orbit
2014-08-28 22:06 - 2014-08-28 22:06 - 00000000 ____D () C:\Users\jan\AppData\Local\Ubisoft Game Launcher
2014-08-28 21:53 - 2014-08-28 21:53 - 00000000 ____D () C:\Users\jan\AppData\Roaming\HewlettPackard
2014-08-28 16:15 - 2013-08-22 16:44 - 00495976 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-08-28 07:10 - 2014-08-27 14:55 - 00000000 ____D () C:\Users\jan\Documents\Flight Simulator X Files
2014-08-28 05:05 - 2014-08-28 05:05 - 00000000 ____D () C:\Users\jan\AppData\Roaming\Steam
2014-08-28 04:32 - 2014-08-13 03:06 - 00000000 ____D () C:\Users\jan\Documents\FIFA World
2014-08-27 23:13 - 2014-08-27 14:00 - 00000000 ____D () C:\Program Files (x86)\Microsoft Flight Simulator X
2014-08-27 23:05 - 2014-08-10 03:18 - 00000000 ____D () C:\Users\jan\AppData\Roaming\NVIDIA
2014-08-27 21:47 - 2014-08-27 21:47 - 00000000 ____D () C:\Users\jan\AppData\Local\Fallout3
2014-08-27 21:36 - 2014-08-27 21:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\xlive
2014-08-27 21:35 - 2014-08-27 21:35 - 00000436 _____ () C:\Users\jan\Desktop\Tento počítač – zástupce.lnk
2014-08-27 21:29 - 2014-08-27 21:29 - 00000000 ____D () C:\Users\jan\Documents\BioWare
2014-08-27 16:47 - 2014-08-27 16:47 - 00000000 ____D () C:\Users\jan\AppData\Local\Microsoft Game Studios
2014-08-27 14:42 - 2014-08-27 14:42 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Games
2014-08-27 12:50 - 2014-08-09 21:25 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games
2014-08-27 07:44 - 2014-08-27 07:41 - 00000000 _____ () C:\WINDOWS\SysWOW64\Access.dat
2014-08-27 07:42 - 2014-08-27 07:42 - 00000000 ____D () C:\ProgramData\McAfee
2014-08-27 05:35 - 2014-08-27 05:35 - 00000000 ____D () C:\ProgramData\Steam
2014-08-27 05:24 - 2014-08-27 05:24 - 00000000 ____D () C:\Users\jan\Documents\Tunngle
2014-08-27 05:24 - 2014-08-27 05:24 - 00000000 ____D () C:\Users\jan\AppData\Roaming\Tunngle
2014-08-27 04:13 - 2014-08-13 01:59 - 00280904 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2014-08-26 22:02 - 2014-08-26 20:37 - 00000000 ____D () C:\Users\jan\AppData\Local\Avg2014
2014-08-26 20:52 - 2014-08-26 20:51 - 00007597 _____ () C:\Users\jan\AppData\Local\resmon.resmoncfg
2014-08-26 20:44 - 2014-05-22 01:56 - 00000000 ____D () C:\ProgramData\Norton
2014-08-26 20:39 - 2014-08-26 20:39 - 00000000 ____D () C:\Users\jan\AppData\Roaming\AVG2014
2014-08-26 20:39 - 2014-08-26 20:38 - 00000000 ____D () C:\ProgramData\AVG2014
2014-08-26 20:38 - 2014-08-26 20:38 - 00000000 ___HD () C:\$AVG
2014-08-26 20:38 - 2014-08-26 20:38 - 00000000 ____D () C:\Users\jan\AppData\Roaming\TuneUp Software
2014-08-26 20:38 - 2014-08-26 20:38 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-08-26 20:38 - 2012-07-26 10:12 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP
2014-08-26 20:37 - 2014-08-26 20:37 - 00000000 ____D () C:\Users\jan\AppData\Local\MFAData
2014-08-26 20:35 - 2014-08-26 20:35 - 00000000 ____D () C:\Users\jan\AppData\Roaming\CyberLink
2014-08-26 20:10 - 2014-08-26 20:09 - 00000000 ____D () C:\Users\jan\Documents\StarCitizen
2014-08-26 20:09 - 2014-08-26 20:09 - 00001111 _____ () C:\Users\jan\Desktop\StarCitizen.lnk
2014-08-26 20:09 - 2014-08-26 20:09 - 00000000 ____D () C:\Users\jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StarCitizen
2014-08-26 19:34 - 2014-08-26 19:34 - 00001558 _____ () C:\Users\Public\Desktop\IL-2 Sturmovik Battle of Stalingrad.lnk
2014-08-26 19:34 - 2014-08-26 19:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\1C Game Studios
2014-08-26 19:34 - 2014-08-26 19:34 - 00000000 ____D () C:\Program Files (x86)\1C Game Studios
2014-08-26 18:35 - 2014-08-23 19:12 - 00081408 ___SH () C:\Users\jan\Desktop\Thumbs.db
2014-08-26 17:11 - 2014-08-26 17:11 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_SaiK1703_01009.Wdf
2014-08-26 14:34 - 2014-08-26 14:34 - 00000000 ____D () C:\ProgramData\SystemRequirementsLab
2014-08-26 14:34 - 2014-08-26 14:34 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2014-08-25 19:58 - 2014-08-25 19:58 - 00000000 ____D () C:\Users\jan\AppData\Local\Targem
2014-08-25 19:58 - 2014-08-25 19:34 - 00000000 ____D () C:\Program Files (x86)\Star Conflict
2014-08-25 19:34 - 2014-08-25 19:34 - 00272808 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-08-25 19:34 - 2014-08-25 19:34 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-08-25 19:34 - 2014-08-25 19:34 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-08-25 19:34 - 2014-08-25 19:34 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-08-25 19:34 - 2014-08-25 19:34 - 00001021 _____ () C:\Users\jan\Desktop\ Star Conflict Launcher.lnk
2014-08-25 19:34 - 2014-08-25 19:34 - 00000000 ____D () C:\ProgramData\Sun
2014-08-25 19:34 - 2014-08-25 19:34 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-25 19:34 - 2014-08-25 19:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Star Conflict
2014-08-25 19:34 - 2014-08-25 19:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-25 19:34 - 2014-08-25 19:34 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-25 15:59 - 2014-08-25 15:59 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2014-08-25 14:33 - 2014-08-25 14:33 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-08-25 09:44 - 2014-08-25 09:44 - 00000000 ____D () C:\Users\jan\AppData\Local\SensitivityBreak
2014-08-25 08:05 - 2013-08-22 15:25 - 00000167 _____ () C:\WINDOWS\win.ini
2014-08-25 04:12 - 2014-08-10 13:55 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
2014-08-25 04:12 - 2014-08-10 13:55 - 00002001 _____ () C:\Users\Public\Desktop\Adobe Reader 9.lnk
2014-08-25 04:12 - 2014-08-10 13:55 - 00000000 ____D () C:\ProgramData\Adobe
2014-08-25 00:59 - 2014-08-13 01:26 - 00281688 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2014-08-24 18:22 - 2014-08-24 18:22 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-08-24 18:22 - 2014-08-24 18:22 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-08-24 11:14 - 2014-08-24 11:14 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-08-24 11:14 - 2014-08-24 11:12 - 00000000 ____D () C:\WINDOWS\SysWOW64\sda
2014-08-24 11:14 - 2013-09-25 21:07 - 00000000 ____D () C:\SWSETUP
2014-08-24 11:14 - 2013-03-01 21:28 - 09889352 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RtsUStoricon.dll
2014-08-24 11:14 - 2013-03-01 21:28 - 00263896 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsUStor.sys
2014-08-24 11:12 - 2014-08-24 11:12 - 00816344 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2014-08-24 11:12 - 2014-08-24 11:12 - 00074456 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2014-08-24 11:11 - 2014-08-24 11:11 - 00000000 ____D () C:\Users\jan\Intel
2014-08-24 11:11 - 2014-05-22 01:46 - 00000000 ____D () C:\ProgramData\Intel
2014-08-24 11:11 - 2014-05-22 01:46 - 00000000 ____D () C:\Program Files\Intel
2014-08-24 11:10 - 2014-08-24 11:10 - 00000000 ____D () C:\Users\jan\AppData\Roaming\WinBatch
2014-08-24 11:09 - 2014-08-24 11:09 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2014-08-24 11:09 - 2014-08-24 11:09 - 00099288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2014-08-24 11:09 - 2014-08-24 11:09 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-08-24 11:09 - 2014-08-24 11:09 - 00000000 ____D () C:\Intel
2014-08-24 11:09 - 2014-05-22 01:46 - 00016344 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\IntelMEFWVer.dll
2014-08-23 21:09 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-08-23 19:12 - 2014-08-23 19:12 - 00000986 _____ () C:\Users\jan\Desktop\Program Files (x86) – zástupce.lnk
2014-08-23 19:12 - 2014-08-23 19:12 - 00000706 _____ () C:\Users\jan\Desktop\torrents – zástupce.lnk
2014-08-23 18:49 - 2014-08-13 01:59 - 00000000 ____D () C:\Users\jan\AppData\Local\PunkBuster
2014-08-23 18:44 - 2014-08-23 18:44 - 00000000 ____D () C:\Users\jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2014-08-23 18:17 - 2014-08-23 18:17 - 00000000 ____D () C:\Users\Public\Downloads\Norton
2014-08-23 02:42 - 2014-08-28 12:30 - 04148224 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-08-18 00:26 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-08-18 00:26 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions
2014-08-18 00:26 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-08-18 00:26 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-08-18 00:26 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-08-17 22:55 - 2014-08-17 22:55 - 00000000 ___RD () C:\WINDOWS\BrowserChoice
 
Some content of TEMP:
====================
C:\Users\jan\AppData\Local\Temp\AutoRun.exe
C:\Users\jan\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\jan\AppData\Local\Temp\DSETUP.dll
C:\Users\jan\AppData\Local\Temp\dsetup32.dll
C:\Users\jan\AppData\Local\Temp\DXSETUP.exe
C:\Users\jan\AppData\Local\Temp\Extract.exe
C:\Users\jan\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\jan\AppData\Local\Temp\nvStInst.exe
C:\Users\jan\AppData\Local\Temp\SP64477.exe
C:\Users\jan\AppData\Local\Temp\SP64498.exe
C:\Users\jan\AppData\Local\Temp\SP64769.exe
C:\Users\jan\AppData\Local\Temp\SP66607.exe
C:\Users\jan\AppData\Local\Temp\SP67176.exe
C:\Users\jan\AppData\Local\Temp\SRLDetectionLibrary6509805626522645730.dll
C:\Users\jan\AppData\Local\Temp\UNINSTALL.EXE
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-09-01 11:11
 
==================== End Of Log ============================


BC AdBot (Login to Remove)

 


#2 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:32 AM

Posted 16 September 2014 - 07:36 AM

Hi,

does this fix resolve the problem?


Please download this attached Attached File  fixlist.txt   150bytes   3 downloads and save it in the same directory as FRST.
  • Start FRST with Administrator privileges.
  • Press the Fix button.
  • When finished, a log file (Fixlog.txt) pops up and is saved to the same location the tool was run from.
    Please copy and paste its contents in your next reply.


#3 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:32 AM

Posted 29 September 2014 - 09:09 AM

I haven't heard from you for some time.
Do you still need help?

#4 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:32 AM

Posted 04 October 2014 - 09:27 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users