Dobry den,prosim o preentivni kontrolu logu...Do pocitace se mi dosta jakysi soubor Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦 ,tak chci vedet,zda tam nemam nejaky svinstvo,dekuji:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-11-2016
Ran by Tepan (administrator) on TEPAN-PC (13-11-2016 22:29:35)
Running from C:\Users\Tepan\Desktop
Loaded Profiles: Tepan (Available Profiles: Tepan)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AMD) C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe
(AMD) C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpert.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Prolific Technology Inc.) C:\Windows\SysWOW64\IoctlSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AMD) C:\Windows\SysWOW64\WinMsgBalloonServer.exe
(AMD) C:\Windows\SysWOW64\WinMsgBalloonClient.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(BitTorrent, Inc.) C:\Users\Tepan\AppData\Roaming\uTorrent\utorrent.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13876952 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1610936 2016-09-14] (COMODO)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-10-23] (Oracle Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Restriction <======= ATTENTION
GroupPolicy\User: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{224703BF-4E2B-4984-BECA-D22BB644A342}: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{B7B4C87E-1BE6-4F4F-A6C5-702CD234D949}: [DhcpNameServer] 8.8.8.8 192.168.91.2
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1029120089-3632672932-3177029402-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKU\S-1-5-21-1029120089-3632672932-3177029402-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
HKU\S-1-5-21-1029120089-3632672932-3177029402-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.seznam.cz/?clid=22668
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22] (Eyeo GmbH)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-10-23] (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-23] (Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22] (Eyeo GmbH)
Toolbar: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
FireFox:
========
FF DefaultProfile: wlx3qhhv.default
FF ProfilePath: C:\Users\Tepan\AppData\Roaming\Mozilla\Firefox\Profiles\wlx3qhhv.default [2016-11-13]
FF Homepage: Mozilla\Firefox\Profiles\wlx3qhhv.default -> hxxps://www.seznam.cz/
FF Extension: (NewScrollbars (aka NoiaScrollbars)) - C:\Users\Tepan\AppData\Roaming\Mozilla\Firefox\Profiles\wlx3qhhv.default\Extensions\NoiaScrollbars@ArisT2_Noia4dev.xpi [2016-11-12]
FF Extension: (uBlock Origin) - C:\Users\Tepan\AppData\Roaming\Mozilla\Firefox\Profiles\wlx3qhhv.default\Extensions\uBlock0@raymondhill.net.xpi [2016-11-12]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2014-07-28] [not signed]
FF HKU\S-1-5-21-1029120089-3632672932-3177029402-1001\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-12] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-12] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-10-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll [2011-02-21] (RocketLife, LLP)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1029120089-3632672932-3177029402-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Tepan\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-1029120089-3632672932-3177029402-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Tepan\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-1029120089-3632672932-3177029402-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-06-22] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR HomePage: Default -> hxxp://seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR DefaultSearchURL: Default -> hxxp://play.iprima.cz/sites/all/themes/prima/primaplay/favicon.ico
CHR Profile: C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default [2016-11-13]
CHR Extension: (Prezentace Google) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-12]
CHR Extension: (Dokumenty Google) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-27]
CHR Extension: (Disk Google) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-12]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-11-13]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-11-13]
CHR Extension: (YouTube) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-12]
CHR Extension: (Přístav (29)
Prima PLAY) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjmammaianfcnbbchgeeajdcifiihglj [2015-12-08]
CHR Extension: (uBlock Origin) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2016-11-13]
CHR Extension: (Vyhledávání Google) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-12]
CHR Extension: (Tabulky Google) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-27]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-11-13]
CHR Extension: (Gmail) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-12]
CHR Extension: (Chrome Media Router) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-13]
CHR HKLM-x32\...\Chrome\Extension: [pnooffjhclkocplopffdbcdghmiffhji] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome.XFTHEVSGWAYNGGKTIHVB3OUHNE - C:\Users\Tepan\AppData\Local\Google\Chrome\Application\chrome.exe
Opera:
=======
OPR StartupUrls: "hxxp://www.seznam.cz/"
OPR Extension: (uBlock Origin) - C:\Users\Tepan\AppData\Roaming\Opera Software\Opera Stable\Extensions\kccohkcpppjjkkjppopfnflnebibpida [2016-10-20]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5817256 2016-09-15] (COMODO)
R3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2271928 2016-09-14] (COMODO)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1458368 2016-06-11] (Disc Soft Ltd)
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-04-15] ()
S4 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-07-22] ()
S4 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-07-30] (Razer Inc.)
S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-20] (Mister Group)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5447952 2015-03-25] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 wsaudio; C:\Windows\SysWOW64\wsaudio.dll [367104 2015-05-25] () [File not signed]
S2 HPSLPSVC; C:\Users\Tepan\AppData\Local\Temp\7zS3FA8\hpslpsvc64.dll [X]
S2 Prime95 Service; C:\Program Files (x86)\Prime95\prime95.exe [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2014-08-14] ()
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [31648 2016-08-31] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [830624 2016-08-31] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [56976 2016-08-31] (COMODO)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-06-11] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-06-11] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-09-17] (EnTech Taiwan)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [116248 2016-08-31] (COMODO)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2014-08-14] ()
S3 NTIOLib_1_0_6; C:\Program Files (x86)\Setup Files\Ms7529v470\NTIOLib_X64.sys [11888 2011-01-06] (MSI) [File not signed]
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [394296 2016-06-11] (Duplex Secure Ltd.)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S2 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-13 22:29 - 2016-11-13 22:30 - 00018511 _____ C:\Users\Tepan\Desktop\FRST.txt
2016-11-13 22:25 - 2016-11-13 22:25 - 02411520 _____ (Farbar) C:\Users\Tepan\Desktop\FRST64.exe
2016-11-13 22:23 - 2016-11-13 22:23 - 00001962 _____ C:\Windows\system32\Drivers\fvstore.dat
2016-11-13 22:22 - 2016-11-13 22:22 - 02411520 _____ (Farbar) C:\Users\Tepan\Downloads\FRST64.exe
2016-11-13 00:03 - 2016-11-13 00:03 - 00001888 _____ C:\Users\Public\Desktop\COMODO Internet Security.lnk
2016-11-13 00:03 - 2016-11-13 00:03 - 00000000 ____D C:\Windows\System32\Tasks\COMODO
2016-11-13 00:03 - 2016-11-13 00:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2016-11-13 00:02 - 2016-11-13 22:26 - 00818193 _____ C:\Windows\system32\Drivers\sfi.dat
2016-11-13 00:01 - 2016-11-13 00:01 - 00000000 ____D C:\ProgramData\Shared Space
2016-11-13 00:01 - 2016-11-13 00:01 - 00000000 ____D C:\Program Files\COMODO
2016-11-13 00:00 - 2016-11-13 00:03 - 00000000 ____D C:\ProgramData\Comodo
2016-11-12 21:54 - 2016-11-12 21:54 - 00000768 _____ C:\Windows\SysWOW64\{7995330B-E01F-4645-B702-53481E7CB778}.cmdfile
2016-11-12 21:48 - 2016-11-12 21:48 - 71955456 _____ (COMODO) C:\Users\Tepan\Downloads\cispremium_only_installer.exe
2016-11-12 20:27 - 2016-11-12 20:28 - 00000000 ____D C:\Windows\rescache
2016-11-12 18:40 - 2016-11-12 18:40 - 00000000 ____D C:\Users\Tepan\Desktop\Původní data aplikace Firefox
2016-11-12 18:19 - 2016-11-12 18:19 - 00001123 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-11-12 18:19 - 2016-11-12 18:19 - 00001111 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-11-12 18:19 - 2016-11-12 18:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-12 18:08 - 2016-11-12 18:08 - 01792498 _____ C:\Users\Tepan\Desktop\bookmarks-2016-11-12.json
2016-11-11 09:39 - 2016-11-11 09:39 - 25763328 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 20304896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 13654016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 06047744 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 05547752 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 03944680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 03649536 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 03219456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 02920448 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 02896384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 02444800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 02291712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 02287616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-11-11 09:39 - 2016-11-11 09:39 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-11-11 09:39 - 2016-11-11 09:39 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01543680 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01462272 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2016-11-11 09:39 - 2016-11-11 09:39 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01027584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10.IME
2016-11-11 09:39 - 2016-11-11 09:39 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2016-11-11 09:39 - 2016-11-11 09:39 - 00877056 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-11-11 09:39 - 2016-11-11 09:39 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2016-11-11 09:39 - 2016-11-11 09:39 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-11-11 09:39 - 2016-11-11 09:39 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00457216 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imkr80.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00394440 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00382696 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00370920 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quick.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\phon.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chajei.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-11-11 09:39 - 2016-10-27 20:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-11-11 09:39 - 2016-10-27 19:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-11-11 09:39 - 2016-10-22 18:54 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-11-11 09:39 - 2016-10-22 18:35 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-11-08 02:43 - 2016-11-08 02:43 - 00016886 _____ C:\Users\Tepan\Desktop\KLD tiskopis 2016.ods
2016-11-06 18:13 - 2016-11-06 18:13 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-11-06 18:13 - 2016-11-06 18:13 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2016-11-06 18:13 - 2016-11-06 18:13 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2016-11-06 18:13 - 2016-11-06 18:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-11-06 18:13 - 2016-11-06 18:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-11-06 18:12 - 2016-11-06 18:12 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-10-29 02:09 - 2016-11-13 22:30 - 00000000 ____D C:\Users\Tepan\AppData\Roaming\uTorrent
2016-10-29 02:09 - 2016-10-29 02:09 - 00000950 _____ C:\Users\Tepan\Desktop\µTorrent.lnk
2016-10-23 19:30 - 2016-10-23 19:30 - 03910208 _____ C:\Users\Tepan\Desktop\adwcleaner_6.030.exe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-13 22:29 - 2015-06-23 15:50 - 00000000 ____D C:\FRST
2016-11-13 21:56 - 2015-01-09 19:06 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-11-13 21:56 - 2014-02-25 11:58 - 00000000 ____D C:\Users\Tepan\AppData\Local\CrashDumps
2016-11-13 21:29 - 2009-07-14 05:45 - 00023248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-13 21:29 - 2009-07-14 05:45 - 00023248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-13 21:24 - 2013-03-12 03:07 - 00003970 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{2A515284-680A-45EA-B4C4-72FAA57CC791}
2016-11-13 21:21 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-13 18:31 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-11-13 18:20 - 2014-01-26 10:59 - 00000000 ____D C:\Users\Tepan\Documents\888poker
2016-11-13 00:03 - 2009-07-14 16:18 - 00929148 _____ C:\Windows\system32\perfh005.dat
2016-11-13 00:03 - 2009-07-14 16:18 - 00298986 _____ C:\Windows\system32\perfc005.dat
2016-11-13 00:00 - 2016-03-12 22:42 - 00000000 ___HD C:\VTRoot
2016-11-12 21:30 - 2014-08-17 18:56 - 00000000 ____D C:\Users\Tepan\AppData\Local\Adobe
2016-11-12 21:30 - 2013-01-16 14:40 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-11-12 21:30 - 2013-01-16 14:40 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-11-12 21:30 - 2013-01-16 14:40 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-11-12 21:30 - 2013-01-16 14:40 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-11-12 21:30 - 2013-01-16 14:40 - 00000000 ____D C:\Windows\system32\Macromed
2016-11-12 20:46 - 2015-07-10 19:17 - 00000000 ____D C:\Program Files (x86)\PacificPoker
2016-11-12 20:37 - 2013-01-16 14:28 - 00000000 ____D C:\Users\Tepan\AppData\Roaming\Mozilla
2016-11-12 19:46 - 2015-08-02 11:30 - 00000000 ____D C:\Users\Tepan\AppData\LocalLow\Adblock Plus for IE
2016-11-12 18:19 - 2015-01-19 01:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-12 18:15 - 2013-01-16 14:28 - 00000000 ____D C:\ProgramData\Mozilla
2016-11-11 18:58 - 2009-07-14 06:13 - 01711684 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-11 18:52 - 2009-07-14 05:45 - 00595392 _____ C:\Windows\system32\FNTCACHE.DAT
2016-11-11 09:49 - 2013-08-16 02:00 - 00000000 ____D C:\Windows\system32\MRT
2016-11-11 09:43 - 2013-01-16 15:32 - 141011376 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-11-07 19:17 - 2016-07-23 21:50 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-06 07:21 - 2013-01-16 19:32 - 00000000 ____D C:\Users\Tepan\AppData\Roaming\vlc
2016-11-04 10:18 - 2016-07-23 21:49 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-10-24 03:37 - 2009-07-14 04:20 - 00000000 __RSD C:\Windows\Media
2016-10-23 21:59 - 2016-07-25 00:31 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-10-23 19:54 - 2015-03-10 18:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-10-23 19:54 - 2013-06-25 00:23 - 00000000 ____D C:\Program Files (x86)\Java
2016-10-23 19:53 - 2015-05-14 05:31 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-10-23 19:42 - 2015-01-28 07:31 - 00000000 ____D C:\AdwCleaner
2016-10-23 19:26 - 2013-01-16 15:50 - 00000000 ____D C:\Users\Tepan\AppData\Roaming\DAEMON Tools Lite
2016-10-15 21:58 - 2016-07-23 14:29 - 00000000 ____D C:\Users\Tepan\Desktop\g
==================== Files in the root of some directories =======
2014-04-20 22:40 - 2014-04-20 22:43 - 0003750 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2015-03-19 12:16 - 2015-07-06 18:48 - 0159200 ____T () C:\Users\Tepan\AppData\Roaming\CrashRpt1402.dll
2002-08-29 18:33 - 2002-08-29 18:33 - 0319488 ____R () C:\Users\Tepan\AppData\Roaming\MafiaSetup.exe
2015-04-17 12:51 - 2015-04-17 12:51 - 0000407 _____ () C:\Users\Tepan\AppData\Roaming\wameu_state.xml
2015-04-16 05:31 - 2015-04-16 05:56 - 0001000 _____ () C:\Users\Tepan\AppData\Roaming\__AvidCloudManager.log
2014-01-01 06:22 - 2015-04-16 05:34 - 0004608 _____ () C:\Users\Tepan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-12-10 21:00 - 2014-12-10 21:00 - 0000124 _____ () C:\Users\Tepan\AppData\Local\NetBetCoach_SettingsPath.txt
2014-12-26 00:52 - 2014-12-26 00:52 - 0007664 _____ () C:\Users\Tepan\AppData\Local\Resmon.ResmonCfg
2015-02-06 14:24 - 2015-02-06 14:28 - 53683536 _____ () C:\Users\Tepan\AppData\Local\TempFullTiltPokerEuSetup.exe
2015-07-05 18:13 - 2015-07-05 18:13 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-07-28 10:32 - 2014-12-28 21:03 - 0002240 _____ () C:\ProgramData\hpzinstall.log
Some files in TEMP:
====================
C:\Users\Tepan\AppData\Local\Temp\setup.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-11-08 08:48
==================== End of FRST.txt ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosim o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosim o kontrolu logu
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosim o kontrolu logu
# AdwCleaner v6.030 - Logfile created 15/11/2016 at 19:31:13
# Updated on 19/10/2016 by Malwarebytes
# Database : 2016-11-14.1 [Server]
# Operating System : Windows 7 Home Premium Service Pack 1 (X64)
# Username : Tepan - TEPAN-PC
# Running from : C:\Users\Tepan\Desktop\adwcleaner_6.030.exe
# Mode: Clean
# Support : hxxps://www.malwarebytes.com/support
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
[-] File deleted: C:\Windows\SysWOW64\EsgScanner.sys
[-] File deleted: C:\Windows\SysWOW64\drivers\EsgScanner.sys
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Shortcuts ] *****
***** [ Scheduled Tasks ] *****
***** [ Registry ] *****
***** [ Web browsers ] *****
[-] [C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: slunecnice.cz
*************************
:: "Tracing" keys deleted
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C10].txt - [1801 Bytes] - [18/09/2015 22:29:26]
C:\AdwCleaner\AdwCleaner[C11].txt - [5287 Bytes] - [01/11/2015 21:42:30]
C:\AdwCleaner\AdwCleaner[C12].txt - [2786 Bytes] - [03/01/2016 10:29:57]
C:\AdwCleaner\AdwCleaner[C13].txt - [929 Bytes] - [08/01/2016 16:28:24]
C:\AdwCleaner\AdwCleaner[C14].txt - [3896 Bytes] - [13/08/2016 22:14:03]
C:\AdwCleaner\AdwCleaner[C15].txt - [3920 Bytes] - [10/09/2016 19:55:48]
C:\AdwCleaner\AdwCleaner[C16].txt - [3503 Bytes] - [23/10/2016 19:42:45]
C:\AdwCleaner\AdwCleaner[C17].txt - [1522 Bytes] - [15/11/2016 19:31:13]
C:\AdwCleaner\AdwCleaner[C1].txt - [5734 Bytes] - [06/02/2016 02:13:47]
C:\AdwCleaner\AdwCleaner[C5].txt - [1626 Bytes] - [23/08/2015 08:38:31]
C:\AdwCleaner\AdwCleaner[C6].txt - [897 Bytes] - [31/08/2015 04:38:30]
C:\AdwCleaner\AdwCleaner[C7].txt - [897 Bytes] - [05/09/2015 14:41:34]
C:\AdwCleaner\AdwCleaner[C8].txt - [897 Bytes] - [15/09/2015 03:55:13]
C:\AdwCleaner\AdwCleaner[C9].txt - [1348 Bytes] - [18/09/2015 09:08:41]
C:\AdwCleaner\AdwCleaner[R0].txt - [1366 Bytes] - [20/07/2015 11:17:32]
C:\AdwCleaner\AdwCleaner[R1].txt - [1424 Bytes] - [20/07/2015 11:29:22]
C:\AdwCleaner\AdwCleaner[R2].txt - [3149 Bytes] - [01/08/2015 18:42:33]
C:\AdwCleaner\AdwCleaner[R3].txt - [1647 Bytes] - [03/08/2015 12:32:38]
C:\AdwCleaner\AdwCleaner[R4].txt - [3777 Bytes] - [07/08/2015 09:30:58]
C:\AdwCleaner\AdwCleaner[R5].txt - [7473 Bytes] - [09/08/2015 22:48:58]
C:\AdwCleaner\AdwCleaner[S0].txt - [1479 Bytes] - [20/07/2015 11:38:36]
C:\AdwCleaner\AdwCleaner[S10].txt - [795 Bytes] - [15/09/2015 03:45:18]
C:\AdwCleaner\AdwCleaner[S11].txt - [1200 Bytes] - [18/09/2015 08:54:46]
C:\AdwCleaner\AdwCleaner[S12].txt - [1677 Bytes] - [18/09/2015 22:21:11]
C:\AdwCleaner\AdwCleaner[S13].txt - [4914 Bytes] - [01/11/2015 21:37:56]
C:\AdwCleaner\AdwCleaner[S14].txt - [2568 Bytes] - [03/01/2016 10:00:05]
C:\AdwCleaner\AdwCleaner[S15].txt - [831 Bytes] - [08/01/2016 16:22:36]
C:\AdwCleaner\AdwCleaner[S16].txt - [3958 Bytes] - [13/08/2016 22:10:05]
C:\AdwCleaner\AdwCleaner[S17].txt - [3920 Bytes] - [10/09/2016 19:54:37]
C:\AdwCleaner\AdwCleaner[S18].txt - [3626 Bytes] - [23/10/2016 19:35:51]
C:\AdwCleaner\AdwCleaner[S19].txt - [3868 Bytes] - [15/11/2016 07:58:02]
C:\AdwCleaner\AdwCleaner[S1].txt - [8949 Bytes] - [01/08/2015 18:48:19]
C:\AdwCleaner\AdwCleaner[S2].txt - [3834 Bytes] - [07/08/2015 10:49:07]
C:\AdwCleaner\AdwCleaner[S3].txt - [11790 Bytes] - [09/08/2015 22:53:06]
C:\AdwCleaner\AdwCleaner[S7].txt - [56020 Bytes] - [23/08/2015 08:35:56]
C:\AdwCleaner\AdwCleaner[S8].txt - [794 Bytes] - [31/08/2015 04:26:23]
C:\AdwCleaner\AdwCleaner[S9].txt - [794 Bytes] - [05/09/2015 14:31:39]
########## EOF - C:\AdwCleaner\AdwCleaner[C17].txt - [3718 Bytes] ##########
# Updated on 19/10/2016 by Malwarebytes
# Database : 2016-11-14.1 [Server]
# Operating System : Windows 7 Home Premium Service Pack 1 (X64)
# Username : Tepan - TEPAN-PC
# Running from : C:\Users\Tepan\Desktop\adwcleaner_6.030.exe
# Mode: Clean
# Support : hxxps://www.malwarebytes.com/support
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
[-] File deleted: C:\Windows\SysWOW64\EsgScanner.sys
[-] File deleted: C:\Windows\SysWOW64\drivers\EsgScanner.sys
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Shortcuts ] *****
***** [ Scheduled Tasks ] *****
***** [ Registry ] *****
***** [ Web browsers ] *****
[-] [C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: slunecnice.cz
*************************
:: "Tracing" keys deleted
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C10].txt - [1801 Bytes] - [18/09/2015 22:29:26]
C:\AdwCleaner\AdwCleaner[C11].txt - [5287 Bytes] - [01/11/2015 21:42:30]
C:\AdwCleaner\AdwCleaner[C12].txt - [2786 Bytes] - [03/01/2016 10:29:57]
C:\AdwCleaner\AdwCleaner[C13].txt - [929 Bytes] - [08/01/2016 16:28:24]
C:\AdwCleaner\AdwCleaner[C14].txt - [3896 Bytes] - [13/08/2016 22:14:03]
C:\AdwCleaner\AdwCleaner[C15].txt - [3920 Bytes] - [10/09/2016 19:55:48]
C:\AdwCleaner\AdwCleaner[C16].txt - [3503 Bytes] - [23/10/2016 19:42:45]
C:\AdwCleaner\AdwCleaner[C17].txt - [1522 Bytes] - [15/11/2016 19:31:13]
C:\AdwCleaner\AdwCleaner[C1].txt - [5734 Bytes] - [06/02/2016 02:13:47]
C:\AdwCleaner\AdwCleaner[C5].txt - [1626 Bytes] - [23/08/2015 08:38:31]
C:\AdwCleaner\AdwCleaner[C6].txt - [897 Bytes] - [31/08/2015 04:38:30]
C:\AdwCleaner\AdwCleaner[C7].txt - [897 Bytes] - [05/09/2015 14:41:34]
C:\AdwCleaner\AdwCleaner[C8].txt - [897 Bytes] - [15/09/2015 03:55:13]
C:\AdwCleaner\AdwCleaner[C9].txt - [1348 Bytes] - [18/09/2015 09:08:41]
C:\AdwCleaner\AdwCleaner[R0].txt - [1366 Bytes] - [20/07/2015 11:17:32]
C:\AdwCleaner\AdwCleaner[R1].txt - [1424 Bytes] - [20/07/2015 11:29:22]
C:\AdwCleaner\AdwCleaner[R2].txt - [3149 Bytes] - [01/08/2015 18:42:33]
C:\AdwCleaner\AdwCleaner[R3].txt - [1647 Bytes] - [03/08/2015 12:32:38]
C:\AdwCleaner\AdwCleaner[R4].txt - [3777 Bytes] - [07/08/2015 09:30:58]
C:\AdwCleaner\AdwCleaner[R5].txt - [7473 Bytes] - [09/08/2015 22:48:58]
C:\AdwCleaner\AdwCleaner[S0].txt - [1479 Bytes] - [20/07/2015 11:38:36]
C:\AdwCleaner\AdwCleaner[S10].txt - [795 Bytes] - [15/09/2015 03:45:18]
C:\AdwCleaner\AdwCleaner[S11].txt - [1200 Bytes] - [18/09/2015 08:54:46]
C:\AdwCleaner\AdwCleaner[S12].txt - [1677 Bytes] - [18/09/2015 22:21:11]
C:\AdwCleaner\AdwCleaner[S13].txt - [4914 Bytes] - [01/11/2015 21:37:56]
C:\AdwCleaner\AdwCleaner[S14].txt - [2568 Bytes] - [03/01/2016 10:00:05]
C:\AdwCleaner\AdwCleaner[S15].txt - [831 Bytes] - [08/01/2016 16:22:36]
C:\AdwCleaner\AdwCleaner[S16].txt - [3958 Bytes] - [13/08/2016 22:10:05]
C:\AdwCleaner\AdwCleaner[S17].txt - [3920 Bytes] - [10/09/2016 19:54:37]
C:\AdwCleaner\AdwCleaner[S18].txt - [3626 Bytes] - [23/10/2016 19:35:51]
C:\AdwCleaner\AdwCleaner[S19].txt - [3868 Bytes] - [15/11/2016 07:58:02]
C:\AdwCleaner\AdwCleaner[S1].txt - [8949 Bytes] - [01/08/2015 18:48:19]
C:\AdwCleaner\AdwCleaner[S2].txt - [3834 Bytes] - [07/08/2015 10:49:07]
C:\AdwCleaner\AdwCleaner[S3].txt - [11790 Bytes] - [09/08/2015 22:53:06]
C:\AdwCleaner\AdwCleaner[S7].txt - [56020 Bytes] - [23/08/2015 08:35:56]
C:\AdwCleaner\AdwCleaner[S8].txt - [794 Bytes] - [31/08/2015 04:26:23]
C:\AdwCleaner\AdwCleaner[S9].txt - [794 Bytes] - [05/09/2015 14:31:39]
########## EOF - C:\AdwCleaner\AdwCleaner[C17].txt - [3718 Bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosim o kontrolu logu
Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosim o kontrolu logu
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-11-2016
Ran by Tepan (administrator) on TEPAN-PC (16-11-2016 04:53:30)
Running from C:\Users\Tepan\Desktop
Loaded Profiles: Tepan (Available Profiles: Tepan)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AMD) C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(AMD) C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpert.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Prolific Technology Inc.) C:\Windows\SysWOW64\IoctlSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(AMD) C:\Windows\SysWOW64\WinMsgBalloonServer.exe
(AMD) C:\Windows\SysWOW64\WinMsgBalloonClient.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(VideoLAN) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Microsoft Corporation) C:\Windows\ehome\mcupdate.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13876952 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1610936 2016-09-14] (COMODO)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-10-23] (Oracle Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Restriction <======= ATTENTION
GroupPolicy\User: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{224703BF-4E2B-4984-BECA-D22BB644A342}: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{B7B4C87E-1BE6-4F4F-A6C5-702CD234D949}: [DhcpNameServer] 8.8.8.8 192.168.91.2
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1029120089-3632672932-3177029402-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKU\S-1-5-21-1029120089-3632672932-3177029402-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
HKU\S-1-5-21-1029120089-3632672932-3177029402-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.seznam.cz/?clid=22668
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22] (Eyeo GmbH)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-10-23] (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-23] (Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22] (Eyeo GmbH)
Toolbar: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
FireFox:
========
FF DefaultProfile: wlx3qhhv.default
FF ProfilePath: C:\Users\Tepan\AppData\Roaming\Mozilla\Firefox\Profiles\wlx3qhhv.default [2016-11-16]
FF Homepage: Mozilla\Firefox\Profiles\wlx3qhhv.default -> hxxps://www.seznam.cz/
FF Extension: (NewScrollbars (aka NoiaScrollbars)) - C:\Users\Tepan\AppData\Roaming\Mozilla\Firefox\Profiles\wlx3qhhv.default\Extensions\NoiaScrollbars@ArisT2_Noia4dev.xpi [2016-11-12]
FF Extension: (uBlock Origin) - C:\Users\Tepan\AppData\Roaming\Mozilla\Firefox\Profiles\wlx3qhhv.default\Extensions\uBlock0@raymondhill.net.xpi [2016-11-12]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2014-07-28] [not signed]
FF HKU\S-1-5-21-1029120089-3632672932-3177029402-1001\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-12] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-12] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-10-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll [2011-02-21] (RocketLife, LLP)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1029120089-3632672932-3177029402-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Tepan\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-1029120089-3632672932-3177029402-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Tepan\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-1029120089-3632672932-3177029402-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-06-22] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR HomePage: Default -> hxxp://seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR DefaultSearchURL: Default -> hxxp://play.iprima.cz/sites/all/themes/prima/primaplay/favicon.ico
CHR Profile: C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default [2016-11-15]
CHR Extension: (Prezentace Google) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-12]
CHR Extension: (Dokumenty Google) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-27]
CHR Extension: (Disk Google) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-12]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-11-13]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-11-13]
CHR Extension: (YouTube) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-12]
CHR Extension: (Přístav (29)
Prima PLAY) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjmammaianfcnbbchgeeajdcifiihglj [2015-12-08]
CHR Extension: (uBlock Origin) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2016-11-13]
CHR Extension: (Vyhledávání Google) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-12]
CHR Extension: (Tabulky Google) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-27]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-11-13]
CHR Extension: (Gmail) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-12]
CHR Extension: (Chrome Media Router) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-13]
CHR HKLM-x32\...\Chrome\Extension: [pnooffjhclkocplopffdbcdghmiffhji] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome.XFTHEVSGWAYNGGKTIHVB3OUHNE - C:\Users\Tepan\AppData\Local\Google\Chrome\Application\chrome.exe
Opera:
=======
OPR StartupUrls: "hxxp://www.seznam.cz/"
OPR Extension: (uBlock Origin) - C:\Users\Tepan\AppData\Roaming\Opera Software\Opera Stable\Extensions\kccohkcpppjjkkjppopfnflnebibpida [2016-10-20]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5817256 2016-09-15] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2271928 2016-09-14] (COMODO)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1458368 2016-06-11] (Disc Soft Ltd)
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-04-15] ()
S4 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-07-22] ()
S4 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-07-30] (Razer Inc.)
S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-20] (Mister Group)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5447952 2015-03-25] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 wsaudio; C:\Windows\SysWOW64\wsaudio.dll [367104 2015-05-25] () [File not signed]
S2 HPSLPSVC; C:\Users\Tepan\AppData\Local\Temp\7zS3FA8\hpslpsvc64.dll [X]
S2 Prime95 Service; C:\Program Files (x86)\Prime95\prime95.exe [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2014-08-14] ()
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [31648 2016-08-31] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [830624 2016-08-31] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [56976 2016-08-31] (COMODO)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-06-11] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-06-11] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-09-17] (EnTech Taiwan)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [116248 2016-08-31] (COMODO)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2014-08-14] ()
S3 NTIOLib_1_0_6; C:\Program Files (x86)\Setup Files\Ms7529v470\NTIOLib_X64.sys [11888 2011-01-06] (MSI) [File not signed]
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [394296 2016-06-11] (Duplex Secure Ltd.)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S2 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-13 22:33 - 2016-11-13 22:36 - 00091438 _____ C:\Users\Tepan\Desktop\Addition.txt
2016-11-13 22:29 - 2016-11-16 04:58 - 00018615 _____ C:\Users\Tepan\Desktop\FRST.txt
2016-11-13 22:25 - 2016-11-13 22:25 - 02411520 _____ (Farbar) C:\Users\Tepan\Desktop\FRST64.exe
2016-11-13 22:23 - 2016-11-15 19:31 - 00001776 _____ C:\Windows\system32\Drivers\fvstore.dat
2016-11-13 22:22 - 2016-11-13 22:22 - 02411520 _____ (Farbar) C:\Users\Tepan\Downloads\FRST64.exe
2016-11-13 00:03 - 2016-11-13 00:03 - 00001888 _____ C:\Users\Public\Desktop\COMODO Internet Security.lnk
2016-11-13 00:03 - 2016-11-13 00:03 - 00000000 ____D C:\Windows\System32\Tasks\COMODO
2016-11-13 00:03 - 2016-11-13 00:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2016-11-13 00:02 - 2016-11-16 04:51 - 01178385 _____ C:\Windows\system32\Drivers\sfi.dat
2016-11-13 00:01 - 2016-11-13 00:01 - 00000000 ____D C:\ProgramData\Shared Space
2016-11-13 00:01 - 2016-11-13 00:01 - 00000000 ____D C:\Program Files\COMODO
2016-11-13 00:00 - 2016-11-13 00:03 - 00000000 ____D C:\ProgramData\Comodo
2016-11-12 21:54 - 2016-11-12 21:54 - 00000768 _____ C:\Windows\SysWOW64\{7995330B-E01F-4645-B702-53481E7CB778}.cmdfile
2016-11-12 21:48 - 2016-11-12 21:48 - 71955456 _____ (COMODO) C:\Users\Tepan\Downloads\cispremium_only_installer.exe
2016-11-12 20:27 - 2016-11-12 20:28 - 00000000 ____D C:\Windows\rescache
2016-11-12 18:40 - 2016-11-12 18:40 - 00000000 ____D C:\Users\Tepan\Desktop\Původní data aplikace Firefox
2016-11-12 18:19 - 2016-11-12 18:19 - 00001123 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-11-12 18:19 - 2016-11-12 18:19 - 00001111 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-11-12 18:19 - 2016-11-12 18:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-12 18:08 - 2016-11-12 18:08 - 01792498 _____ C:\Users\Tepan\Desktop\bookmarks-2016-11-12.json
2016-11-11 09:39 - 2016-11-11 09:39 - 25763328 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 20304896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 13654016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 06047744 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 05547752 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 03944680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 03649536 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 03219456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 02920448 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 02896384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 02444800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 02291712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 02287616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-11-11 09:39 - 2016-11-11 09:39 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-11-11 09:39 - 2016-11-11 09:39 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01543680 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01462272 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2016-11-11 09:39 - 2016-11-11 09:39 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01027584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10.IME
2016-11-11 09:39 - 2016-11-11 09:39 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2016-11-11 09:39 - 2016-11-11 09:39 - 00877056 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-11-11 09:39 - 2016-11-11 09:39 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2016-11-11 09:39 - 2016-11-11 09:39 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-11-11 09:39 - 2016-11-11 09:39 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00457216 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imkr80.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00394440 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00382696 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00370920 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quick.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\phon.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chajei.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-11-11 09:39 - 2016-10-27 20:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-11-11 09:39 - 2016-10-27 19:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-11-11 09:39 - 2016-10-22 18:54 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-11-11 09:39 - 2016-10-22 18:35 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-11-08 02:43 - 2016-11-08 02:43 - 00016886 _____ C:\Users\Tepan\Desktop\KLD tiskopis 2016.ods
2016-11-06 18:13 - 2016-11-06 18:13 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-11-06 18:13 - 2016-11-06 18:13 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2016-11-06 18:13 - 2016-11-06 18:13 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2016-11-06 18:13 - 2016-11-06 18:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-11-06 18:13 - 2016-11-06 18:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-11-06 18:12 - 2016-11-06 18:12 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-10-29 02:09 - 2016-11-13 22:42 - 00000000 ____D C:\Users\Tepan\AppData\Roaming\uTorrent
2016-10-29 02:09 - 2016-10-29 02:09 - 00000950 _____ C:\Users\Tepan\Desktop\µTorrent.lnk
2016-10-23 19:30 - 2016-11-15 07:51 - 03910208 _____ C:\Users\Tepan\Desktop\adwcleaner_6.030.exe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-16 04:57 - 2015-01-09 19:06 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-11-16 04:57 - 2014-02-25 11:58 - 00000000 ____D C:\Users\Tepan\AppData\Local\CrashDumps
2016-11-16 04:53 - 2015-06-23 15:50 - 00000000 ____D C:\FRST
2016-11-15 21:54 - 2013-03-12 03:07 - 00003970 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{2A515284-680A-45EA-B4C4-72FAA57CC791}
2016-11-15 19:40 - 2013-01-16 19:32 - 00000000 ____D C:\Users\Tepan\AppData\Roaming\vlc
2016-11-15 19:40 - 2009-07-14 05:45 - 00023248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-15 19:40 - 2009-07-14 05:45 - 00023248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-15 19:32 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-15 19:31 - 2015-01-28 07:31 - 00000000 ____D C:\AdwCleaner
2016-11-13 18:31 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-11-13 18:20 - 2014-01-26 10:59 - 00000000 ____D C:\Users\Tepan\Documents\888poker
2016-11-13 00:03 - 2009-07-14 16:18 - 00929148 _____ C:\Windows\system32\perfh005.dat
2016-11-13 00:03 - 2009-07-14 16:18 - 00298986 _____ C:\Windows\system32\perfc005.dat
2016-11-13 00:00 - 2016-03-12 22:42 - 00000000 ___HD C:\VTRoot
2016-11-12 21:30 - 2014-08-17 18:56 - 00000000 ____D C:\Users\Tepan\AppData\Local\Adobe
2016-11-12 21:30 - 2013-01-16 14:40 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-11-12 21:30 - 2013-01-16 14:40 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-11-12 21:30 - 2013-01-16 14:40 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-11-12 21:30 - 2013-01-16 14:40 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-11-12 21:30 - 2013-01-16 14:40 - 00000000 ____D C:\Windows\system32\Macromed
2016-11-12 20:46 - 2015-07-10 19:17 - 00000000 ____D C:\Program Files (x86)\PacificPoker
2016-11-12 20:37 - 2013-01-16 14:28 - 00000000 ____D C:\Users\Tepan\AppData\Roaming\Mozilla
2016-11-12 19:46 - 2015-08-02 11:30 - 00000000 ____D C:\Users\Tepan\AppData\LocalLow\Adblock Plus for IE
2016-11-12 18:19 - 2015-01-19 01:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-12 18:15 - 2013-01-16 14:28 - 00000000 ____D C:\ProgramData\Mozilla
2016-11-11 18:58 - 2009-07-14 06:13 - 01711684 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-11 18:52 - 2009-07-14 05:45 - 00595392 _____ C:\Windows\system32\FNTCACHE.DAT
2016-11-11 09:49 - 2013-08-16 02:00 - 00000000 ____D C:\Windows\system32\MRT
2016-11-11 09:43 - 2013-01-16 15:32 - 141011376 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-11-07 19:17 - 2016-07-23 21:50 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-04 10:18 - 2016-07-23 21:49 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-10-24 03:37 - 2009-07-14 04:20 - 00000000 __RSD C:\Windows\Media
2016-10-23 21:59 - 2016-07-25 00:31 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-10-23 19:54 - 2015-03-10 18:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-10-23 19:54 - 2013-06-25 00:23 - 00000000 ____D C:\Program Files (x86)\Java
2016-10-23 19:53 - 2015-05-14 05:31 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-10-23 19:26 - 2013-01-16 15:50 - 00000000 ____D C:\Users\Tepan\AppData\Roaming\DAEMON Tools Lite
==================== Files in the root of some directories =======
2014-04-20 22:40 - 2014-04-20 22:43 - 0003750 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2015-03-19 12:16 - 2015-07-06 18:48 - 0159200 ____T () C:\Users\Tepan\AppData\Roaming\CrashRpt1402.dll
2002-08-29 18:33 - 2002-08-29 18:33 - 0319488 ____R () C:\Users\Tepan\AppData\Roaming\MafiaSetup.exe
2015-04-17 12:51 - 2015-04-17 12:51 - 0000407 _____ () C:\Users\Tepan\AppData\Roaming\wameu_state.xml
2015-04-16 05:31 - 2015-04-16 05:56 - 0001000 _____ () C:\Users\Tepan\AppData\Roaming\__AvidCloudManager.log
2014-01-01 06:22 - 2015-04-16 05:34 - 0004608 _____ () C:\Users\Tepan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-12-10 21:00 - 2014-12-10 21:00 - 0000124 _____ () C:\Users\Tepan\AppData\Local\NetBetCoach_SettingsPath.txt
2014-12-26 00:52 - 2014-12-26 00:52 - 0007664 _____ () C:\Users\Tepan\AppData\Local\Resmon.ResmonCfg
2015-02-06 14:24 - 2015-02-06 14:28 - 53683536 _____ () C:\Users\Tepan\AppData\Local\TempFullTiltPokerEuSetup.exe
2015-07-05 18:13 - 2015-07-05 18:13 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-07-28 10:32 - 2014-12-28 21:03 - 0002240 _____ () C:\ProgramData\hpzinstall.log
Some files in TEMP:
====================
C:\Users\Tepan\AppData\Local\Temp\libeay32.dll
C:\Users\Tepan\AppData\Local\Temp\msvcr120.dll
C:\Users\Tepan\AppData\Local\Temp\setup.exe
C:\Users\Tepan\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-11-14 02:21
==================== End of FRST.txt ============================
Ran by Tepan (administrator) on TEPAN-PC (16-11-2016 04:53:30)
Running from C:\Users\Tepan\Desktop
Loaded Profiles: Tepan (Available Profiles: Tepan)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AMD) C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(AMD) C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpert.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Prolific Technology Inc.) C:\Windows\SysWOW64\IoctlSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(AMD) C:\Windows\SysWOW64\WinMsgBalloonServer.exe
(AMD) C:\Windows\SysWOW64\WinMsgBalloonClient.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(VideoLAN) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Microsoft Corporation) C:\Windows\ehome\mcupdate.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13876952 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1610936 2016-09-14] (COMODO)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-10-23] (Oracle Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Restriction <======= ATTENTION
GroupPolicy\User: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{224703BF-4E2B-4984-BECA-D22BB644A342}: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{B7B4C87E-1BE6-4F4F-A6C5-702CD234D949}: [DhcpNameServer] 8.8.8.8 192.168.91.2
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1029120089-3632672932-3177029402-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKU\S-1-5-21-1029120089-3632672932-3177029402-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
HKU\S-1-5-21-1029120089-3632672932-3177029402-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.seznam.cz/?clid=22668
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22] (Eyeo GmbH)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-10-23] (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-23] (Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22] (Eyeo GmbH)
Toolbar: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
FireFox:
========
FF DefaultProfile: wlx3qhhv.default
FF ProfilePath: C:\Users\Tepan\AppData\Roaming\Mozilla\Firefox\Profiles\wlx3qhhv.default [2016-11-16]
FF Homepage: Mozilla\Firefox\Profiles\wlx3qhhv.default -> hxxps://www.seznam.cz/
FF Extension: (NewScrollbars (aka NoiaScrollbars)) - C:\Users\Tepan\AppData\Roaming\Mozilla\Firefox\Profiles\wlx3qhhv.default\Extensions\NoiaScrollbars@ArisT2_Noia4dev.xpi [2016-11-12]
FF Extension: (uBlock Origin) - C:\Users\Tepan\AppData\Roaming\Mozilla\Firefox\Profiles\wlx3qhhv.default\Extensions\uBlock0@raymondhill.net.xpi [2016-11-12]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2014-07-28] [not signed]
FF HKU\S-1-5-21-1029120089-3632672932-3177029402-1001\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-12] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-12] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-10-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll [2011-02-21] (RocketLife, LLP)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1029120089-3632672932-3177029402-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Tepan\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-1029120089-3632672932-3177029402-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Tepan\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-1029120089-3632672932-3177029402-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-06-22] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR HomePage: Default -> hxxp://seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR DefaultSearchURL: Default -> hxxp://play.iprima.cz/sites/all/themes/prima/primaplay/favicon.ico
CHR Profile: C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default [2016-11-15]
CHR Extension: (Prezentace Google) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-12]
CHR Extension: (Dokumenty Google) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-27]
CHR Extension: (Disk Google) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-12]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-11-13]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-11-13]
CHR Extension: (YouTube) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-12]
CHR Extension: (Přístav (29)
Prima PLAY) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjmammaianfcnbbchgeeajdcifiihglj [2015-12-08]
CHR Extension: (uBlock Origin) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2016-11-13]
CHR Extension: (Vyhledávání Google) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-12]
CHR Extension: (Tabulky Google) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-27]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-11-13]
CHR Extension: (Gmail) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-12]
CHR Extension: (Chrome Media Router) - C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-13]
CHR HKLM-x32\...\Chrome\Extension: [pnooffjhclkocplopffdbcdghmiffhji] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome.XFTHEVSGWAYNGGKTIHVB3OUHNE - C:\Users\Tepan\AppData\Local\Google\Chrome\Application\chrome.exe
Opera:
=======
OPR StartupUrls: "hxxp://www.seznam.cz/"
OPR Extension: (uBlock Origin) - C:\Users\Tepan\AppData\Roaming\Opera Software\Opera Stable\Extensions\kccohkcpppjjkkjppopfnflnebibpida [2016-10-20]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5817256 2016-09-15] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2271928 2016-09-14] (COMODO)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1458368 2016-06-11] (Disc Soft Ltd)
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-04-15] ()
S4 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-07-22] ()
S4 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-07-30] (Razer Inc.)
S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-20] (Mister Group)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5447952 2015-03-25] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 wsaudio; C:\Windows\SysWOW64\wsaudio.dll [367104 2015-05-25] () [File not signed]
S2 HPSLPSVC; C:\Users\Tepan\AppData\Local\Temp\7zS3FA8\hpslpsvc64.dll [X]
S2 Prime95 Service; C:\Program Files (x86)\Prime95\prime95.exe [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2014-08-14] ()
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [31648 2016-08-31] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [830624 2016-08-31] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [56976 2016-08-31] (COMODO)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-06-11] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-06-11] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-09-17] (EnTech Taiwan)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [116248 2016-08-31] (COMODO)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2014-08-14] ()
S3 NTIOLib_1_0_6; C:\Program Files (x86)\Setup Files\Ms7529v470\NTIOLib_X64.sys [11888 2011-01-06] (MSI) [File not signed]
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [394296 2016-06-11] (Duplex Secure Ltd.)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S2 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-13 22:33 - 2016-11-13 22:36 - 00091438 _____ C:\Users\Tepan\Desktop\Addition.txt
2016-11-13 22:29 - 2016-11-16 04:58 - 00018615 _____ C:\Users\Tepan\Desktop\FRST.txt
2016-11-13 22:25 - 2016-11-13 22:25 - 02411520 _____ (Farbar) C:\Users\Tepan\Desktop\FRST64.exe
2016-11-13 22:23 - 2016-11-15 19:31 - 00001776 _____ C:\Windows\system32\Drivers\fvstore.dat
2016-11-13 22:22 - 2016-11-13 22:22 - 02411520 _____ (Farbar) C:\Users\Tepan\Downloads\FRST64.exe
2016-11-13 00:03 - 2016-11-13 00:03 - 00001888 _____ C:\Users\Public\Desktop\COMODO Internet Security.lnk
2016-11-13 00:03 - 2016-11-13 00:03 - 00000000 ____D C:\Windows\System32\Tasks\COMODO
2016-11-13 00:03 - 2016-11-13 00:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2016-11-13 00:02 - 2016-11-16 04:51 - 01178385 _____ C:\Windows\system32\Drivers\sfi.dat
2016-11-13 00:01 - 2016-11-13 00:01 - 00000000 ____D C:\ProgramData\Shared Space
2016-11-13 00:01 - 2016-11-13 00:01 - 00000000 ____D C:\Program Files\COMODO
2016-11-13 00:00 - 2016-11-13 00:03 - 00000000 ____D C:\ProgramData\Comodo
2016-11-12 21:54 - 2016-11-12 21:54 - 00000768 _____ C:\Windows\SysWOW64\{7995330B-E01F-4645-B702-53481E7CB778}.cmdfile
2016-11-12 21:48 - 2016-11-12 21:48 - 71955456 _____ (COMODO) C:\Users\Tepan\Downloads\cispremium_only_installer.exe
2016-11-12 20:27 - 2016-11-12 20:28 - 00000000 ____D C:\Windows\rescache
2016-11-12 18:40 - 2016-11-12 18:40 - 00000000 ____D C:\Users\Tepan\Desktop\Původní data aplikace Firefox
2016-11-12 18:19 - 2016-11-12 18:19 - 00001123 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-11-12 18:19 - 2016-11-12 18:19 - 00001111 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-11-12 18:19 - 2016-11-12 18:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-12 18:08 - 2016-11-12 18:08 - 01792498 _____ C:\Users\Tepan\Desktop\bookmarks-2016-11-12.json
2016-11-11 09:39 - 2016-11-11 09:39 - 25763328 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 20304896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 13654016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 06047744 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 05547752 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 03944680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 03649536 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 03219456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 02920448 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 02896384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 02444800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 02291712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 02287616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-11-11 09:39 - 2016-11-11 09:39 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-11-11 09:39 - 2016-11-11 09:39 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01543680 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01462272 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2016-11-11 09:39 - 2016-11-11 09:39 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 01027584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10.IME
2016-11-11 09:39 - 2016-11-11 09:39 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2016-11-11 09:39 - 2016-11-11 09:39 - 00877056 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-11-11 09:39 - 2016-11-11 09:39 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2016-11-11 09:39 - 2016-11-11 09:39 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-11-11 09:39 - 2016-11-11 09:39 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00457216 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imkr80.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00394440 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00382696 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00370920 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quick.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\phon.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chajei.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pintlgnt.ime
2016-11-11 09:39 - 2016-11-11 09:39 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-11-11 09:39 - 2016-11-11 09:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-11-11 09:39 - 2016-11-11 09:39 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-11-11 09:39 - 2016-11-11 09:39 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-11-11 09:39 - 2016-10-27 20:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-11-11 09:39 - 2016-10-27 19:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-11-11 09:39 - 2016-10-22 18:54 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-11-11 09:39 - 2016-10-22 18:35 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-11-08 02:43 - 2016-11-08 02:43 - 00016886 _____ C:\Users\Tepan\Desktop\KLD tiskopis 2016.ods
2016-11-06 18:13 - 2016-11-06 18:13 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-11-06 18:13 - 2016-11-06 18:13 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2016-11-06 18:13 - 2016-11-06 18:13 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2016-11-06 18:13 - 2016-11-06 18:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-11-06 18:13 - 2016-11-06 18:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-11-06 18:12 - 2016-11-06 18:12 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-10-29 02:09 - 2016-11-13 22:42 - 00000000 ____D C:\Users\Tepan\AppData\Roaming\uTorrent
2016-10-29 02:09 - 2016-10-29 02:09 - 00000950 _____ C:\Users\Tepan\Desktop\µTorrent.lnk
2016-10-23 19:30 - 2016-11-15 07:51 - 03910208 _____ C:\Users\Tepan\Desktop\adwcleaner_6.030.exe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-16 04:57 - 2015-01-09 19:06 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-11-16 04:57 - 2014-02-25 11:58 - 00000000 ____D C:\Users\Tepan\AppData\Local\CrashDumps
2016-11-16 04:53 - 2015-06-23 15:50 - 00000000 ____D C:\FRST
2016-11-15 21:54 - 2013-03-12 03:07 - 00003970 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{2A515284-680A-45EA-B4C4-72FAA57CC791}
2016-11-15 19:40 - 2013-01-16 19:32 - 00000000 ____D C:\Users\Tepan\AppData\Roaming\vlc
2016-11-15 19:40 - 2009-07-14 05:45 - 00023248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-15 19:40 - 2009-07-14 05:45 - 00023248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-15 19:32 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-15 19:31 - 2015-01-28 07:31 - 00000000 ____D C:\AdwCleaner
2016-11-13 18:31 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-11-13 18:20 - 2014-01-26 10:59 - 00000000 ____D C:\Users\Tepan\Documents\888poker
2016-11-13 00:03 - 2009-07-14 16:18 - 00929148 _____ C:\Windows\system32\perfh005.dat
2016-11-13 00:03 - 2009-07-14 16:18 - 00298986 _____ C:\Windows\system32\perfc005.dat
2016-11-13 00:00 - 2016-03-12 22:42 - 00000000 ___HD C:\VTRoot
2016-11-12 21:30 - 2014-08-17 18:56 - 00000000 ____D C:\Users\Tepan\AppData\Local\Adobe
2016-11-12 21:30 - 2013-01-16 14:40 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-11-12 21:30 - 2013-01-16 14:40 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-11-12 21:30 - 2013-01-16 14:40 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-11-12 21:30 - 2013-01-16 14:40 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-11-12 21:30 - 2013-01-16 14:40 - 00000000 ____D C:\Windows\system32\Macromed
2016-11-12 20:46 - 2015-07-10 19:17 - 00000000 ____D C:\Program Files (x86)\PacificPoker
2016-11-12 20:37 - 2013-01-16 14:28 - 00000000 ____D C:\Users\Tepan\AppData\Roaming\Mozilla
2016-11-12 19:46 - 2015-08-02 11:30 - 00000000 ____D C:\Users\Tepan\AppData\LocalLow\Adblock Plus for IE
2016-11-12 18:19 - 2015-01-19 01:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-12 18:15 - 2013-01-16 14:28 - 00000000 ____D C:\ProgramData\Mozilla
2016-11-11 18:58 - 2009-07-14 06:13 - 01711684 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-11 18:52 - 2009-07-14 05:45 - 00595392 _____ C:\Windows\system32\FNTCACHE.DAT
2016-11-11 09:49 - 2013-08-16 02:00 - 00000000 ____D C:\Windows\system32\MRT
2016-11-11 09:43 - 2013-01-16 15:32 - 141011376 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-11-07 19:17 - 2016-07-23 21:50 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-04 10:18 - 2016-07-23 21:49 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-10-24 03:37 - 2009-07-14 04:20 - 00000000 __RSD C:\Windows\Media
2016-10-23 21:59 - 2016-07-25 00:31 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-10-23 19:54 - 2015-03-10 18:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-10-23 19:54 - 2013-06-25 00:23 - 00000000 ____D C:\Program Files (x86)\Java
2016-10-23 19:53 - 2015-05-14 05:31 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-10-23 19:26 - 2013-01-16 15:50 - 00000000 ____D C:\Users\Tepan\AppData\Roaming\DAEMON Tools Lite
==================== Files in the root of some directories =======
2014-04-20 22:40 - 2014-04-20 22:43 - 0003750 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2015-03-19 12:16 - 2015-07-06 18:48 - 0159200 ____T () C:\Users\Tepan\AppData\Roaming\CrashRpt1402.dll
2002-08-29 18:33 - 2002-08-29 18:33 - 0319488 ____R () C:\Users\Tepan\AppData\Roaming\MafiaSetup.exe
2015-04-17 12:51 - 2015-04-17 12:51 - 0000407 _____ () C:\Users\Tepan\AppData\Roaming\wameu_state.xml
2015-04-16 05:31 - 2015-04-16 05:56 - 0001000 _____ () C:\Users\Tepan\AppData\Roaming\__AvidCloudManager.log
2014-01-01 06:22 - 2015-04-16 05:34 - 0004608 _____ () C:\Users\Tepan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-12-10 21:00 - 2014-12-10 21:00 - 0000124 _____ () C:\Users\Tepan\AppData\Local\NetBetCoach_SettingsPath.txt
2014-12-26 00:52 - 2014-12-26 00:52 - 0007664 _____ () C:\Users\Tepan\AppData\Local\Resmon.ResmonCfg
2015-02-06 14:24 - 2015-02-06 14:28 - 53683536 _____ () C:\Users\Tepan\AppData\Local\TempFullTiltPokerEuSetup.exe
2015-07-05 18:13 - 2015-07-05 18:13 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-07-28 10:32 - 2014-12-28 21:03 - 0002240 _____ () C:\ProgramData\hpzinstall.log
Some files in TEMP:
====================
C:\Users\Tepan\AppData\Local\Temp\libeay32.dll
C:\Users\Tepan\AppData\Local\Temp\msvcr120.dll
C:\Users\Tepan\AppData\Local\Temp\setup.exe
C:\Users\Tepan\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-11-14 02:21
==================== End of FRST.txt ============================
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosim o kontrolu logu
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-10-23] (Oracle Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Restriction <======= ATTENTION
GroupPolicy\User: Restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
CHR dev: Chrome dev build detected! <======= ATTENTION
C:\ProgramData\DP45977C.lfl
C:\Users\Tepan\AppData\Local\Temp
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosim o kontrolu logu
Fix result of Farbar Recovery Scan Tool (x64) Version: 16-11-2016
Ran by Tepan (17-11-2016 14:15:00) Run:2
Running from C:\Users\Tepan\Desktop
Loaded Profiles: Tepan (Available Profiles: Tepan)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-10-23] (Oracle Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Restriction <======= ATTENTION
GroupPolicy\User: Restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
CHR dev: Chrome dev build detected! <======= ATTENTION
C:\ProgramData\DP45977C.lfl
C:\Users\Tepan\AppData\Local\Temp
EmptyTemp:
End
*****************
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully
C:\Windows\system32\GroupPolicy\User => moved successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-1029120089-3632672932-3177029402-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKU\S-1-5-21-1029120089-3632672932-3177029402-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{47833539-D0C5-4125-9FA8-0819E2EAAC93} => value removed successfully
HKCR\CLSID\{47833539-D0C5-4125-9FA8-0819E2EAAC93} => key not found.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
CHR dev: Chrome dev build detected! <======= ATTENTION => Error: No automatic fix found for this entry.
C:\ProgramData\DP45977C.lfl => moved successfully
"C:\Users\Tepan\AppData\Local\Temp" folder move:
Could not move "C:\Users\Tepan\AppData\Local\Temp" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
BITS transfer queue => 4194304 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14227515 B
Java, Flash, Steam htmlcache => 10325 B
Windows/system/drivers => 3248371 B
Edge => 0 B
Chrome => 12216088 B
Firefox => 395165863 B
Opera => 13534944 B
Temp, IE cache, history, cookies, recent:
Default => 7168 B
Public => 0 B
ProgramData => 0 B
systemprofile => 162430 B
systemprofile32 => 155332 B
LocalService => 0 B
NetworkService => 0 B
Tepan => 144921830 B
RecycleBin => 22852016 B
EmptyTemp: => 582.4 MB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 17-11-2016 14:16:46)
C:\Users\Tepan\AppData\Local\Temp => moved successfully
==== End of Fixlog 14:16:46 ====
Ran by Tepan (17-11-2016 14:15:00) Run:2
Running from C:\Users\Tepan\Desktop
Loaded Profiles: Tepan (Available Profiles: Tepan)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-10-23] (Oracle Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Restriction <======= ATTENTION
GroupPolicy\User: Restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-1029120089-3632672932-3177029402-1001 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
CHR dev: Chrome dev build detected! <======= ATTENTION
C:\ProgramData\DP45977C.lfl
C:\Users\Tepan\AppData\Local\Temp
EmptyTemp:
End
*****************
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully
C:\Windows\system32\GroupPolicy\User => moved successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-1029120089-3632672932-3177029402-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKU\S-1-5-21-1029120089-3632672932-3177029402-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{47833539-D0C5-4125-9FA8-0819E2EAAC93} => value removed successfully
HKCR\CLSID\{47833539-D0C5-4125-9FA8-0819E2EAAC93} => key not found.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
CHR dev: Chrome dev build detected! <======= ATTENTION => Error: No automatic fix found for this entry.
C:\ProgramData\DP45977C.lfl => moved successfully
"C:\Users\Tepan\AppData\Local\Temp" folder move:
Could not move "C:\Users\Tepan\AppData\Local\Temp" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
BITS transfer queue => 4194304 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14227515 B
Java, Flash, Steam htmlcache => 10325 B
Windows/system/drivers => 3248371 B
Edge => 0 B
Chrome => 12216088 B
Firefox => 395165863 B
Opera => 13534944 B
Temp, IE cache, history, cookies, recent:
Default => 7168 B
Public => 0 B
ProgramData => 0 B
systemprofile => 162430 B
systemprofile32 => 155332 B
LocalService => 0 B
NetworkService => 0 B
Tepan => 144921830 B
RecycleBin => 22852016 B
EmptyTemp: => 582.4 MB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 17-11-2016 14:16:46)
C:\Users\Tepan\AppData\Local\Temp => moved successfully
==== End of Fixlog 14:16:46 ====
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosim o kontrolu logu
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosim o kontrolu logu
určitě je počítač stabilnější,rychlejší,nespouští se tolik zbytečných procesů,nicméně mě stále zajímá,co může být toto za soubor :
Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦
jinak za pročištění samozřejmě moooc děkuji
Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦
jinak za pročištění samozřejmě moooc děkuji
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosim o kontrolu logu
Tento soubor jsem v logu nikde nenašel. Co je zač, nevím, "rozsypaný čaj" číst neumím. Kde se nachází (cesta k souboru)? Zatím není zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosim o kontrolu logu
cesta je c:\Users\Tepan\AppData\Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦 piponu nema zadnou
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosim o kontrolu logu
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
c:\Users\Tepan\AppData\Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosim o kontrolu logu
poté,co jsem chtěl poznámkový blok uložit jako fixlist.txt , tak se mi objevila tato hláška...dal jsem pokračovat " ok " .doufám,že to nevadí.
- Přílohy
-
- Bez názvu.png (29.38 KiB) Zobrazeno 2963 x
Re: Prosim o kontrolu logu
Fix result of Farbar Recovery Scan Tool (x64) Version: 16-11-2016
Ran by Tepan (19-11-2016 12:10:39) Run:4
Running from C:\Users\Tepan\Desktop
Loaded Profiles: Tepan (Available Profiles: Tepan)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
c:\Users\Tepan\AppData\Local???????????????????
End
*****************
"c:\Users\Tepan\AppData\Local???????????????????" => not found.
==== End of Fixlog 12:10:39 ====
Ran by Tepan (19-11-2016 12:10:39) Run:4
Running from C:\Users\Tepan\Desktop
Loaded Profiles: Tepan (Available Profiles: Tepan)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
c:\Users\Tepan\AppData\Local???????????????????
End
*****************
"c:\Users\Tepan\AppData\Local???????????????????" => not found.
==== End of Fixlog 12:10:39 ====
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosim o kontrolu logu
V tomhle případě to vadilo, FRST nemazal a soubor nenašel. Podívejte se tam znovu a pokud tam je, zkuste smazat ručně. Pak restartujte a zjistěte, zda se neobnovil.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?