Dobrý večer, prosím o preventivku (PC asi půl roku stál, ještě budu prodlužovat antivir). Posílám první část z důvodu délky:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 23-11-2016
Ran by Petr Martens (administrator) on NEO (25-11-2016 21:16:36)
Running from C:\Users\Petr Martens\Desktop
Loaded Profiles: Petr Martens & NeroMediaHomeUser.4 (Available Profiles: Petr Martens & NeroMediaHomeUser.4 & Admin)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
() C:\Program Files (x86)\Common Files\Acronis\Plán2\schedul2.exe
(ArcSoft, Inc.) C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\AM\dtsslsrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Nero AG) C:\Program Files (x86)\Nero\Nero MediaHome 4\NMMediaServerService.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\nis.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Ulead Systems, Inc.) C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\nis.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
() C:\Program Files (x86)\Common Files\Acronis\Plán2\schedhlp.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Valve Corporation) D:\Games\Mafia II\Steam\Steam.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(ICQ, LLC.) C:\Program Files (x86)\ICQ7.5\ICQ.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Update\GoogleUpdate.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Leadtek Research Inc.) C:\Program Files\WinFast\WFDTV\WFWIZ.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
(Wargaming.net) D:\Games\World_of_Tanks\WargamingGameUpdater.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(German IT Development) C:\Program Files (x86)Advent\Advent.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\Common Files\HP\Digital Imaging\Bin\hpqPhotoCrm.exe
(Analog Devices, Inc.) C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(Research In Motion Limited) C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
(Portrait Displays, Inc) C:\Program Files (x86)\Portrait Displays\HP Display Assistant\dthtml.exe
(Leadtek Research Inc.) C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
() C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(Research In Motion Limited) C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
(Creative Technology Ltd.) C:\Windows\System32\AMBSpiE.exe
(Portrait Displays Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\HookManager.exe
(Valve Corporation) D:\Games\Mafia II\Steam\bin\cef\cef.winxp\steamwebhelper.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
() C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Copyright (c) 2016 Plays.tv, LLC) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\wpCtrl.exe
() C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Floater.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_ep64.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\DP\DPHelper.exe
() C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\DP\DPHelper64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(Leadtek Research Inc.) C:\Program Files\WinFast\WFDTV\LiveUpdate\LiveUpdate.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil64_23_0_0_207_ActiveX.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(forum.viry.cz) C:\Users\Petr Martens\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [Služba Acronis Scheduler2] => C:\Program Files (x86)\Common Files\Acronis\Plán2\schedhlp.exe [362872 2010-06-03] ()
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [3994960 2011-11-17] (O&O Software GmbH)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3113592 2015-08-26] (Logitech, Inc.)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8029576 2016-11-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SoundMAXPnP] => C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [1310720 2009-09-17] (Analog Devices, Inc.)
HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe [241789 2009-07-07] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [NBAgent] => C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1226024 2010-02-22] (Nero AG)
HKLM-x32\...\Run: [Nero MediaHome 4] => C:\Program Files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe [5174568 2010-03-08] (Nero AG)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-03] (Intel Corporation)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5129720 2010-06-03] ()
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.)
HKLM-x32\...\Run: [RIMBBLaunchAgent.exe] => C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [267792 2013-01-17] (Research In Motion Limited)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [PivotSoftware] => C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe [110192 2010-05-13] ()
HKLM-x32\...\Run: [DT HWP] => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe [123248 2012-10-31] (Portrait Displays, Inc.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [WinFastDTV] => C:\Program Files\WinFast\WFDTV\DTVSchdl.exe [103424 2013-07-16] (Leadtek Research Inc.)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58584 2016-09-28] (Raptr, Inc)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2014-07-25] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [PlaysTV] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [51984 2016-11-18] (Copyright (c) 2016 Plays.tv, LLC)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565960 2016-11-11] (LogMeIn Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25673776 2016-11-07] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Steam] => D:\Games\Mafia II\Steam\steam.exe [2860832 2016-10-13] (Valve Corporation)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Nektra OEAPI] => [X]
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [OEXPRESS] => [X]
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [WEBTRAN] => [X]
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Nero MediaHome 4] => C:\Program Files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe [5174568 2010-03-08] (Nero AG)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2736128 2011-06-20] (Hewlett-Packard Company)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [ICQ] => C:\Program Files (x86)\ICQ7.5\ICQ.exe [124216 2011-05-08] (ICQ, LLC.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Google Update] => C:\Users\Petr Martens\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-09-04] (Google Inc.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [2AB3BAEDF74494A270A5183EA5661500323FA729._service_run] => C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe [921192 2016-11-08] (Google Inc.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [WinFast Schedule] => C:\Program Files\WinFast\WFDTV\WFWIZ.exe [2916352 2013-01-09] (Leadtek Research Inc.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1562264 2014-07-25] (Samsung)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [GoogleChromeAutoLaunch_3DF9CDE809951FA0CEE03C489CA9F36C] => C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe [921192 2016-11-08] (Google Inc.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27230168 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9105112 2016-11-15] (Piriform Ltd)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [World of Tanks] => D:\Games\World_of_Tanks\WargamingGameUpdater.exe [3135752 2016-11-18] (Wargaming.net)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [World of Warplanes] => D:\Games\World_of_Warplanes\WargamingGameUpdater.exe [3134728 2016-08-10] (Wargaming.net)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [World of Warships] => D:\Games\World_of_Warships\WargamingGameUpdater.exe [3134216 2016-11-07] (Wargaming.net)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\MountPoints2: {ed9f482c-da03-11df-a2bb-806e6f6e6963} - I:\score.exe
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\MountPoints2: {f0e0dc25-c5a5-11df-a714-00221548b87a} - J:\OblivionLauncher.exe
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\buShell.dll [2016-11-12] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\buShell.dll [2016-11-12] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\buShell.dll [2016-11-12] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-04-10]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TotalMedia Server.lnk [2012-12-24]
ShortcutTarget: TotalMedia Server.lnk -> C:\Program Files (x86)\ArcSoft\TotalMedia Theatre 5\TotalMedia Server\TM Server.exe (ArcSoft Inc.)
Startup: C:\Users\Petr Martens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Advent.lnk [2011-12-06]
ShortcutTarget: Advent.lnk -> C:\Program Files (x86)Advent\Advent.exe (German IT Development)
BootExecute: autocheck autochk * OODBS
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 127.0.0.1 localhost
Tcpip\..\Interfaces\{8E6BBCFE-228A-4212-9633-0E6CA1E61B7B}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> DefaultScope {EF2A5B79-4302-4C56-BEEB-53B507A7B99C} URL = hxxp://www.google.cz/search?q={searchTerms}&rl ... Page}&rlz=
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM ... -SearchBox
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {541BAEFB-59DC-4542-9C23-1869B55E1E5D} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=ie8
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {64216F25-4A10-47EA-8CCD-108E230E4061} URL = hxxp://search.seznam.cz/searchScreen?w={searchTerms}&mod=f
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {A9494FCE-BFEE-487A-AC5B-830F40D13E3A} URL = hxxp://search.microsoft.com/results.aspx?mkt=cs-cz&setlang=cs-cz&q={searchTerms}
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NS&chn=1000170&geo=US&ver=22&locale=cs_US&gct=kwd&qsrc=2869
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {B4471044-A846-4E4F-9482-24F575C561D2} URL = hxxp://search.atlas.cz/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {BDB873FC-9056-4C77-B78C-1A5404B0492E} URL = hxxp://cs.wikipedia.org/w/index.php?title=Speci%C3%A1ln%C3%AD:Search&search={searchTerms}
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {C823572F-3441-4225-8C47-0DBB575B1052} URL = hxxp://search.centrum.cz/index.php?charset=utf-8&q={searchTerms}&mt=2&mts=1&sec=mix&kibitz=0
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {EF2A5B79-4302-4C56-BEEB-53B507A7B99C} URL = hxxp://www.google.cz/search?q={searchTerms}&rl ... Page}&rlz=
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {FF610839-C8A1-416C-A72F-8315D6595E73} URL = hxxp://www.najdi.si/search.jsp?q={searchTerms}&foxsbar=ie
BHO: SnagIt Toolbar Loader -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files (x86)\TechSmith\SnagIt 9\DLLx64\SnagItBHO64.dll [2008-08-29] (TechSmith Corporation)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-11-25] (Google Inc.)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: SnagIt Toolbar Loader -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files (x86)\TechSmith\SnagIt 9\SnagItBHO.dll [2008-08-29] (TechSmith Corporation)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22] (Hewlett-Packard Co.)
BHO-x32: WebTransBHO Class -> {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} -> C:\ProgramData\LangSoft\WebIE.dll [2010-10-03] ()
BHO-x32: GetRight IE Download Helper -> {31FF080D-12A3-439A-A2EF-4BA95A3148E8} -> C:\Program Files (x86)\GetRight\xx2gr.dll [2007-06-21] (Headlight Software, Inc.)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-11-24] (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08] (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-11-25] (Google Inc.)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-24] (Oracle Corporation)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22] (Hewlett-Packard Co.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-11-25] (Google Inc.)
Toolbar: HKLM-x32 - WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll [2010-10-03] ()
Toolbar: HKLM-x32 - SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\SnagIt 9\SnagItIEAddin.dll [2008-08-29] (TechSmith Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-11-25] (Google Inc.)
Toolbar: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> No Name - {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No File
Toolbar: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
IE Session Restore: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> is enabled.
DPF: HKLM-x32 {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} hxxp://download.microsoft.com/download/C/B/F/CBF23A2C-3E55-4664-BC5C-762780D79BA0/OGAControl.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-09-23] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default [2016-11-25]
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\wr7n96de.default -> hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q=
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\wr7n96de.default -> Google
FF Session Restore: Mozilla\Firefox\Profiles\wr7n96de.default -> is enabled.
FF Keyword.URL: Mozilla\Firefox\Profiles\wr7n96de.default -> hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q=
FF Extension: (Better YouTube) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\betteryoutube@ginatrapani.org [2010-09-21] [not signed]
FF Extension: (České slovníky pro kontrolu pravopisu) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\cs@dictionaries.addons.mozilla(2).org [2010-09-21] [not signed]
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\cs@dictionaries.addons.mozilla.org [2016-11-24]
FF Extension: (YouTube Video and Audio Downloader) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack.xpi [2016-11-24]
FF Extension: (HTTPS Everywhere) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\https-everywhere@eff.org.xpi [2016-11-24]
FF Extension: (TrafficLight) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\trafficlight@bitdefender.com.xpi [2016-11-24]
FF Extension: (WebTran) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829} [2010-10-03] [not signed]
FF Extension: (Forecastfox) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3} [2016-11-24]
FF Extension: (AeroFox Basic) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{0F4F7F5C-C791-4951-8D9C-A0847AD03A7B} [2010-09-21] [not signed]
FF Extension: (FlashGot) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2016-11-24]
FF Extension: (Image Zoom) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}.xpi [2016-11-24]
FF Extension: (Microsoft .NET Framework Assistant) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-09-21] [not signed]
FF Extension: (WindowsUpdate) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{35106bca-6c78-48c7-ac28-56df30b51d2b} [2010-09-21] [not signed]
FF Extension: (FEBE) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3} [2016-11-24]
FF Extension: (File Downloader) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{616BD90A-BCFA-11E1-8AE9-CFDC6088709B}.xpi [2016-11-24]
FF Extension: (NoScript) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-11-24]
FF Extension: (IE Tab) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9} [2016-11-24]
FF Extension: (ReloadEvery) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi [2016-11-24]
FF Extension: (MR Tech Toolkit) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{9669CC8F-B388-42FE-86F4-CB5E7F5A8BDC} [2010-09-21] [not signed]
FF Extension: (WOT) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-12-28]
FF Extension: (DictionarySearch) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{a0faa0a4-f1a7-4098-9a74-21efc3a92372}.xpi [2016-11-24]
FF Extension: (Adblock Plus) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24]
FF Extension: (DownThemAll!) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2016-11-24]
FF Extension: (Greasemonkey) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2016-11-24]
FF SearchPlugin: C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\searchplugins\icq-search.xml [2009-10-16]
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.4.24\coFFAddon
FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.4.24\coFFAddon [2016-11-25]
FF HKLM-x32\...\Firefox\Extensions: [{40211632-250D-4B8C-B04E-DA45BAE6DF8C}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn => not found
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2015-10-31] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.4.24\coFFAddon
FF HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2015-04-10] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-24] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2010-09-15] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-24] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1222172.dll [2015-11-19] (Adobe Systems, Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.110.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.138.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll [2012-09-07] (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2016-10-06] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2010-09-15] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [2012-12-13] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-24] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-24] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-850677638-2337762993-1318839679-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Petr Martens\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-24] (Google Inc.)
FF Plugin HKU\S-1-5-21-850677638-2337762993-1318839679-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Petr Martens\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-24] (Google Inc.)
FF Plugin HKU\S-1-5-21-850677638-2337762993-1318839679-1000: sony.com/MediaGoDetector -> C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll [2014-07-10] (Sony Network Entertainment International LLC)
FF Plugin HKU\S-1-5-21-850677638-2337762993-1318839679-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2013-06-02] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxps://user.centrum.cz/?timeout=1&url=http%3A%2F%2Fmail.centrum.cz%2F%3F","hxxp://www.datart.cz/espressa.html?druh-pristr ... .jdeto.de/"
CHR Session Restore: Default -> is enabled.
CHR Plugin: (Native Client) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\pdf.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\gcswf32.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll => No File
CHR Plugin: (Norton Confidential) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.3.7_0\npcoplgn.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => No File
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll => No File
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (RIM Handheld Application Loader) - C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll => No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll => No File
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll => No File
CHR Plugin: (Windows Activation Technologies) - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
CHR Profile: C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default [2016-11-25]
CHR Extension: (YouTube) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (TrafficLight) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfnpidifppmenkapgihekkeednfoenal [2015-10-28]
CHR Extension: (Norton Security Toolbar) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2016-11-24]
CHR Extension: (Vyhledávání Google) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (HTTPS Everywhere) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2016-11-24]
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2012-10-03] [UpdateUrl: hxxp://www.interoperabilitybridges.com/ChromeW ... pdates.xml] <==== ATTENTION
CHR Extension: (Norton Identity Safe) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2015-10-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-24]
CHR Extension: (Gmail) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-02]
CHR Extension: (Chrome Media Router) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-24]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\Exts\Chrome.crx [2016-11-25]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\Exts\Chrome.crx [2016-11-25]
CHR HKLM-x32\...\Chrome\Extension: [ihenkjeihefokohmemphikjnjbmegdik] - "C:\Program Files (x86)\Sony\Media Go\MediaGoDetector.crx" <not found>
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Plán2\schedul2.exe [1055200 2010-06-03] ()
R2 ADExchange; C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [43624 2012-08-14] (ArcSoft, Inc.)
R2 AEADIFilters; C:\Windows\system32\AEADISRV.EXE [111616 2009-09-17] (Andrea Electronics Corporation)
R2 Asset Management Daemon; C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\AM\dtsslsrv.exe [135536 2012-10-31] ()
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1128448 2015-08-02] ()
R3 Blackberry Device Manager; C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [577536 2013-01-18] (Research In Motion Limited) [File not signed]
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2010-09-15] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2010-09-15] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [307200 2009-02-23] (Creative Technology Ltd) [File not signed]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-24] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [42096 2016-11-07] (Dropbox, Inc.)
R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe [139632 2012-10-31] (Portrait Displays, Inc.)
S3 FileZilla Server; C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe [740864 2010-07-18] (FileZilla Project) [File not signed]
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2627080 2016-11-11] (LogMeIn Inc.)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2011-06-20] (Hewlett-Packard Company) [File not signed]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-11-11] (LogMeIn, Inc.)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 NeroMediaHomeService.4; C:\Program Files (x86)\Nero\Nero MediaHome 4\NMMediaServerService.exe [517416 2010-03-08] (Nero AG)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\NIS.exe [289080 2016-11-12] (Symantec Corporation)
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [3273552 2011-11-17] (O&O Software GmbH)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-04-25] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
R2 UleadBurningHelper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2004-12-13] (Ulead Systems, Inc.) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 ArcSec; C:\Windows\System32\drivers\ArcSec.sys [311872 2011-11-10] ()
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [310728 2010-10-16] ()
R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\BASHDefs\20160213.003\BHDrvx64.sys [1665608 2015-10-08] (Symantec Corporation)
R3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [29184 2009-08-13] (CSR, plc)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1608010.00E\ccSetx64.sys [174328 2016-06-02] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [498512 2015-11-18] (Symantec Corporation)
S3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [157520 2015-11-18] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\IPSDefs\20160304.001\IDSvia64.sys [767224 2016-02-13] (Symantec Corporation)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [42696 2010-10-16] ()
S3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()
R3 MCfilt; C:\Windows\System32\drivers\MCfilt64.sys [25600 2009-09-17] (Creative Technology Ltd.)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-05-14] ()
R0 mv61xx; C:\Windows\System32\DRIVERS\mv61xx.sys [178728 2009-05-11] (Marvell Semiconductor, Inc.)
R3 PdiPorts; C:\Windows\System32\DRIVERS\PdiPorts.sys [22384 2012-09-18] (Portrait Displays, Inc.)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [78336 2013-01-03] (Research In Motion Limited)
R3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2010-09-21] () [File not signed]
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1608010.00E\SRTSP64.SYS [784624 2016-11-12] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1608010.00E\SRTSPX64.SYS [49400 2016-11-12] (Symantec Corporation)
R0 SymEFASI; C:\Windows\System32\drivers\NISx64\1608010.00E\SYMEFASI64.SYS [1628888 2016-11-12] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100592 2016-11-25] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1608010.00E\Ironx64.SYS [289520 2016-11-12] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1608010.00E\SYMNETS.SYS [567512 2016-11-12] (Symantec Corporation)
R0 tdrpman258; C:\Windows\System32\DRIVERS\tdrpm258.sys [1477728 2010-10-23] (Acronis)
R3 WFRAPDTT; C:\Windows\System32\drivers\wfrapdtt.sys [275584 2009-08-10] (Leadtek Research Inc.)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
U3 ax0st68a; C:\Windows\System32\Drivers\ax0st68a.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
S3 cpuz130; \??\C:\Users\PETRMA~1\AppData\Local\Temp\cpuz130\cpuz_x64.sys [X]
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 gHidPnp; System32\Drivers\gHidPnp.Sys [X]
S3 gMouUsb; system32\DRIVERS\gMouUsb.sys [X]
S3 NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\VirusDefs\20160305.004\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\VirusDefs\20160305.004\EX64.SYS [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-25 21:16 - 2016-11-25 21:16 - 00063949 _____ C:\Users\Petr Martens\Desktop\FRST.txt
2016-11-25 21:16 - 2016-11-25 21:16 - 00000000 ____D C:\FRST
2016-11-25 21:15 - 2016-11-25 21:15 - 02412032 _____ (Farbar) C:\Users\Petr Martens\Desktop\FRST64.exe
2016-11-25 21:15 - 2016-11-25 21:15 - 00112640 _____ (forum.viry.cz) C:\Users\Petr Martens\Desktop\FRSTLauncher.exe
2016-11-25 20:49 - 2016-11-25 20:49 - 00000000 ___HD C:\OneDriveTemp
2016-11-25 20:45 - 2016-11-25 20:46 - 00000000 ___SD C:\Windows\system32\GWX
2016-11-25 20:45 - 2016-11-25 20:45 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-11-25 20:45 - 2016-11-25 20:45 - 00000000 ____D C:\Program Files\Windows Journal
2016-11-25 18:17 - 2016-11-25 18:17 - 00000000 ____D C:\Windows\System32\Tasks\Norton Internet Security
2016-11-25 18:03 - 2016-11-25 18:03 - 00003234 _____ C:\Windows\System32\Tasks\Norton WSC Integration
2016-11-25 15:41 - 2016-06-10 19:51 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-11-25 15:41 - 2016-06-10 19:51 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-11-25 15:41 - 2016-06-10 19:46 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-11-25 15:41 - 2016-06-10 19:46 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-11-25 15:41 - 2016-06-10 19:46 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-11-25 15:41 - 2016-06-10 19:46 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-11-25 15:41 - 2016-06-10 19:46 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-11-25 15:41 - 2016-06-10 19:46 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-11-25 15:41 - 2016-06-10 19:46 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-11-25 15:41 - 2016-06-10 19:46 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-11-25 15:41 - 2016-06-10 19:46 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-11-25 15:41 - 2016-06-10 19:46 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-11-25 15:41 - 2016-06-10 19:46 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-11-25 15:41 - 2016-06-10 19:46 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-11-25 15:41 - 2016-06-10 19:46 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-11-25 15:41 - 2016-06-10 19:46 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-11-25 15:41 - 2016-06-10 19:46 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-11-25 15:41 - 2016-06-10 19:46 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-11-25 15:41 - 2016-06-10 19:46 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-11-25 15:41 - 2016-06-10 19:46 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-11-25 15:41 - 2016-06-10 16:20 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-11-25 15:41 - 2016-06-10 16:20 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-11-25 15:41 - 2016-06-10 16:20 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-11-25 15:41 - 2016-06-10 16:20 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-11-25 15:41 - 2016-06-10 16:20 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-11-25 15:41 - 2016-06-10 16:20 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-11-25 15:41 - 2016-06-10 16:20 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-11-25 15:41 - 2016-06-10 16:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-11-25 15:41 - 2016-06-10 16:20 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-11-25 15:41 - 2016-06-10 16:20 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-11-25 15:41 - 2016-06-10 16:20 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-11-25 15:41 - 2016-06-10 16:20 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-11-25 15:41 - 2016-06-10 16:20 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-11-25 15:41 - 2016-06-10 16:20 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-11-25 15:41 - 2016-06-10 16:20 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-11-25 15:41 - 2016-06-10 16:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-11-25 15:41 - 2016-06-10 15:58 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-11-25 15:41 - 2016-06-10 15:58 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-11-25 15:41 - 2016-06-10 15:58 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-11-25 15:41 - 2016-06-10 15:57 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-11-25 15:41 - 2016-06-10 15:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-11-25 15:41 - 2016-06-10 15:52 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-11-25 15:41 - 2016-06-06 17:50 - 01483264 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-11-25 15:41 - 2016-06-06 17:50 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-11-25 15:41 - 2016-06-06 17:50 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-11-25 15:41 - 2016-06-06 17:50 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-11-25 15:41 - 2016-06-06 16:23 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-11-25 15:41 - 2016-06-06 16:23 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-11-25 15:41 - 2016-06-06 16:23 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2016-11-25 15:41 - 2016-06-06 16:23 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2016-11-25 15:41 - 2016-05-17 00:22 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-11-25 15:41 - 2016-05-17 00:19 - 05546216 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-11-25 15:41 - 2016-05-17 00:19 - 00706280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-11-25 15:41 - 2016-05-17 00:18 - 03998952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-11-25 15:41 - 2016-05-17 00:18 - 03943144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-11-25 15:41 - 2016-05-17 00:17 - 01732888 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-11-25 15:41 - 2016-05-17 00:16 - 01314136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-11-25 15:41 - 2016-05-17 00:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-11-25 15:41 - 2016-05-16 22:23 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-11-25 15:41 - 2016-05-16 22:23 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-11-25 15:41 - 2016-05-16 22:23 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-11-25 15:41 - 2016-05-16 22:19 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-11-25 15:41 - 2016-05-16 22:19 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-11-25 15:41 - 2016-05-16 22:14 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-11-25 15:41 - 2016-05-16 22:10 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-11-25 15:41 - 2016-05-16 22:10 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-11-25 15:41 - 2016-05-16 22:10 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-11-25 15:41 - 2016-05-16 22:10 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-11-25 15:41 - 2016-05-16 22:09 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-11-25 15:41 - 2016-05-16 22:09 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-25 15:41 - 2016-05-16 22:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-11-25 15:41 - 2016-05-16 22:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-11-25 15:41 - 2016-05-13 23:09 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-11-25 15:41 - 2016-05-13 23:09 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-11-25 15:41 - 2016-05-13 23:09 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-11-25 15:41 - 2016-05-13 23:07 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-11-25 15:41 - 2016-05-13 22:55 - 02607104 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-11-25 15:41 - 2016-05-13 22:53 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-11-25 15:41 - 2016-05-13 22:53 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-11-25 15:41 - 2016-05-13 22:52 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-11-25 15:41 - 2016-05-13 22:52 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-11-25 15:41 - 2016-05-13 22:52 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-11-25 15:41 - 2016-05-13 22:52 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-11-25 15:41 - 2016-05-13 22:50 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-11-25 15:41 - 2016-05-13 22:38 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-11-25 15:41 - 2016-05-13 22:38 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-11-25 15:41 - 2016-05-13 22:38 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-11-25 15:41 - 2016-05-13 22:38 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-11-25 15:41 - 2016-05-12 18:14 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-11-25 15:41 - 2016-05-12 18:14 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-11-25 15:41 - 2016-05-12 16:18 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-11-25 15:41 - 2016-05-12 16:18 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2016-11-25 15:41 - 2016-05-12 16:18 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-11-25 15:41 - 2016-05-12 14:05 - 00459640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-11-25 15:41 - 2016-05-12 14:05 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-11-25 15:41 - 2016-05-12 14:04 - 00249352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-11-25 15:41 - 2016-05-04 18:21 - 00114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-11-25 15:41 - 2016-05-04 18:17 - 03244032 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-11-25 15:41 - 2016-05-04 18:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-11-25 15:41 - 2016-05-04 18:17 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-11-25 15:41 - 2016-05-04 18:17 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-11-25 15:41 - 2016-05-04 18:17 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2016-11-25 15:41 - 2016-05-04 18:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2016-11-25 15:41 - 2016-05-04 18:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2016-11-25 15:41 - 2016-05-04 18:16 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-11-25 15:41 - 2016-05-04 18:16 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-11-25 15:41 - 2016-05-04 16:04 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-11-25 15:41 - 2016-05-04 15:55 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-11-25 15:40 - 2016-07-22 15:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-11-25 15:40 - 2016-07-22 15:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2016-11-25 15:38 - 2016-11-25 15:38 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\{2E271C69-8237-4988-B0F0-9D63E3418319}
2016-11-25 14:50 - 2016-11-25 14:50 - 00003252 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task
2016-11-25 13:54 - 2016-11-25 13:56 - 30659457 _____ C:\Users\Petr Martens\Desktop\Windows6.1-KB3172605-x64.msu
2016-11-25 13:53 - 2016-11-25 13:54 - 09542472 _____ C:\Users\Petr Martens\Desktop\Windows6.1-KB3177467-x64.msu
2016-11-24 22:42 - 2016-11-25 00:10 - 00000000 ____D C:\Users\Petr Martens\SecurityScans
2016-11-24 22:41 - 2016-11-24 22:41 - 00001129 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Baseline Security Analyzer 2.3.lnk
2016-11-24 22:41 - 2016-11-24 22:41 - 00001117 _____ C:\Users\Public\Desktop\Microsoft Baseline Security Analyzer 2.3.lnk
2016-11-24 22:41 - 2016-11-24 22:41 - 00000000 ____D C:\Program Files\Microsoft Baseline Security Analyzer 2
2016-11-24 20:46 - 2016-11-24 20:46 - 00000830 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-11-24 19:11 - 2016-11-24 19:11 - 00000000 ____D C:\Users\Petr Martens\AppData\LocalLow\AMD
2016-11-24 19:03 - 2016-11-24 19:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2016-11-24 19:00 - 2016-11-15 22:20 - 00141280 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2016-11-24 19:00 - 2016-11-15 22:20 - 00125288 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2016-11-24 19:00 - 2016-11-15 22:20 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2016-11-24 19:00 - 2016-11-15 22:20 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2016-11-24 19:00 - 2016-11-15 22:20 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2016-11-24 19:00 - 2016-11-15 22:20 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2016-11-24 19:00 - 2016-11-15 22:19 - 00145400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 02481032 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00520072 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2016-11-24 19:00 - 2016-11-15 22:18 - 00286600 _____ (AMD) C:\Windows\system32\atitmm64.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00281992 _____ C:\Windows\system32\dgtrayicon.exe
2016-11-24 19:00 - 2016-11-15 22:18 - 00275336 _____ C:\Windows\system32\GameManager64.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00136584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00117640 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00110472 _____ (AMD) C:\Windows\system32\atimuixx.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00059784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00020360 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 15728008 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 14318984 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 09926536 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdvlk64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 08065928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdvlk32.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 02163592 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00525704 _____ (AMD) C:\Windows\system32\atieclxx.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00458632 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00402312 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00349064 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00289160 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00230280 _____ C:\Windows\system32\atieah64.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00208264 _____ C:\Windows\SysWOW64\atieah32.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00201608 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00160136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00155016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amduve64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00135048 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00134536 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amduve32.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00129416 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00122760 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00108936 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00107400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00107400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00082824 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmcl64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00078728 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00072072 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00068488 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00067464 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00066952 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00066440 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmcl32.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00065416 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00054664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 48824712 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 27489672 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 09311624 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 07363976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 01333128 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00998280 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00845192 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00679304 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00305544 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2016-11-24 19:00 - 2016-11-15 22:16 - 00269192 _____ C:\Windows\system32\clinfo.exe
2016-11-24 19:00 - 2016-11-15 22:16 - 00267656 _____ C:\Windows\system32\hsa-thunk64.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00248200 _____ C:\Windows\system32\amdgfxinfo64.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00233352 _____ C:\Windows\SysWOW64\hsa-thunk.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00221064 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00112520 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00103304 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-11-24 19:00 - 2016-11-15 22:15 - 33248136 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2016-11-24 19:00 - 2016-11-15 22:15 - 27295624 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2016-11-24 19:00 - 2016-11-15 22:13 - 26560512 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2016-11-24 19:00 - 2016-11-15 21:46 - 00760312 _____ C:\Windows\SysWOW64\atiapfxx.blb
2016-11-24 19:00 - 2016-11-15 21:46 - 00760312 _____ C:\Windows\system32\atiapfxx.blb
2016-11-24 19:00 - 2016-11-15 21:35 - 03437632 _____ C:\Windows\system32\atiumd6a.cap
2016-11-24 19:00 - 2016-11-15 21:31 - 03471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2016-11-24 19:00 - 2016-10-21 19:22 - 00177280 _____ C:\Windows\system32\ativce03.dat
2016-11-24 19:00 - 2016-10-21 19:22 - 00175584 _____ C:\Windows\system32\amde31a.dat
2016-11-24 19:00 - 2016-10-21 18:00 - 00166560 _____ C:\Windows\system32\amde34b.dat
2016-11-24 19:00 - 2016-10-21 18:00 - 00166560 _____ C:\Windows\system32\amde34a.dat
2016-11-24 19:00 - 2016-10-20 17:10 - 00100832 _____ C:\Windows\system32\ativce02.dat
2016-11-24 19:00 - 2016-10-14 20:36 - 00118320 _____ C:\Windows\system32\kapp_ci.sbin
2016-11-24 17:11 - 2016-01-06 20:02 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-11-24 17:11 - 2016-01-06 20:02 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2016-11-24 17:11 - 2016-01-06 19:41 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2016-11-24 17:10 - 2016-01-22 07:18 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-11-24 17:10 - 2016-01-22 07:18 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2016-11-24 17:10 - 2016-01-22 07:17 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-11-24 17:10 - 2016-01-22 07:04 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2016-11-24 17:10 - 2016-01-22 07:04 - 00535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2016-11-24 17:10 - 2016-01-22 07:02 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-11-24 17:10 - 2016-01-22 07:02 - 00114176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-11-24 16:29 - 2016-11-25 20:45 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2016-11-24 16:24 - 2016-11-24 16:24 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-11-24 16:24 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-11-24 16:24 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-11-24 16:24 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-11-24 16:24 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-11-24 15:57 - 2016-11-25 21:16 - 00000920 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-11-24 15:57 - 2016-11-25 20:49 - 00000916 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-11-24 15:57 - 2016-11-24 16:11 - 00003916 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
2016-11-24 15:57 - 2016-11-24 16:11 - 00003664 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
2016-11-24 15:57 - 2016-11-24 15:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-11-24 15:57 - 2016-11-24 15:57 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-11-24 15:56 - 2016-11-24 15:56 - 00690072 _____ (Dropbox, Inc.) C:\Users\Petr Martens\Downloads\DropboxInstaller.exe
2016-11-24 15:55 - 2016-11-25 00:02 - 00000000 ____D C:\Users\Petr Martens\AppData\LocalLow\Mozilla
2016-11-24 15:55 - 2016-11-24 15:55 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-24 15:32 - 2016-11-24 15:32 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2016-11-24 15:32 - 2016-11-24 15:32 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2016-11-24 15:07 - 2016-11-24 15:19 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2016-11-24 15:07 - 2016-11-24 15:19 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2016-11-24 15:07 - 2016-11-24 15:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-11-24 15:07 - 2016-11-24 15:07 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-11-24 15:02 - 2016-11-24 15:02 - 00002156 _____ C:\Users\Public\Desktop\Google Earth.lnk
2016-11-24 15:02 - 2016-11-24 15:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2016-11-07 23:49 - 2016-11-07 23:49 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2016-11-07 23:49 - 2016-11-07 23:49 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2016-11-07 23:49 - 2016-11-07 23:49 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2016-11-07 23:49 - 2016-11-07 23:49 - 00042096 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o preventivní kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Prosím o preventivní kontrolu logu
- Přílohy
-
- Addition.rar
- (13.59 KiB) Staženo 86 x
Re: Prosím o preventivní kontrolu logu
Druhá část logu:
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-25 21:10 - 2009-07-14 05:45 - 00023504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-25 21:10 - 2009-07-14 05:45 - 00023504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-25 21:06 - 2010-10-19 22:12 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\Skype
2016-11-25 20:59 - 2011-02-26 22:52 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-25 20:52 - 2009-07-14 16:18 - 00668882 _____ C:\Windows\system32\perfh005.dat
2016-11-25 20:52 - 2009-07-14 16:18 - 00141542 _____ C:\Windows\system32\perfc005.dat
2016-11-25 20:52 - 2009-07-14 06:13 - 01584626 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-25 20:52 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-11-25 20:50 - 2014-05-04 17:34 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\Raptr
2016-11-25 20:50 - 2011-06-04 09:55 - 00000000 ___RD C:\Users\Petr Martens\Dropbox
2016-11-25 20:49 - 2015-02-22 11:37 - 00000000 ___RD C:\Users\Petr Martens\OneDrive
2016-11-25 20:49 - 2012-06-20 20:37 - 00000000 ____D C:\Users\Petr Martens\Tracing
2016-11-25 20:49 - 2012-04-14 19:55 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\LogMeIn Hamachi
2016-11-25 20:49 - 2011-02-26 22:52 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-25 20:49 - 2010-10-19 21:49 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\ICQ
2016-11-25 20:46 - 2010-09-26 08:27 - 00907433 _____ C:\Windows\system32\oodbs.lor
2016-11-25 20:46 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-25 20:46 - 2009-07-14 05:45 - 05045456 _____ C:\Windows\system32\FNTCACHE.DAT
2016-11-25 20:45 - 2014-12-13 19:13 - 00000000 ____D C:\Windows\system32\appraiser
2016-11-25 20:45 - 2014-04-23 20:41 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-11-25 20:45 - 2009-07-14 16:37 - 00000000 ____D C:\Windows\ShellNew
2016-11-25 20:29 - 2011-07-27 20:39 - 00000990 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000UA.job
2016-11-25 20:29 - 2011-07-27 20:39 - 00000938 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000Core.job
2016-11-25 20:29 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-11-25 20:29 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Dism
2016-11-25 19:25 - 2012-03-30 22:36 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-11-25 19:20 - 2015-08-02 10:45 - 00000000 ____D C:\Windows\System32\Tasks\Remediation
2016-11-25 18:03 - 2015-10-30 23:18 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
2016-11-25 18:03 - 2015-10-28 18:14 - 00002429 _____ C:\Users\Public\Desktop\Norton Internet Security.lnk
2016-11-25 18:03 - 2015-10-28 18:14 - 00000000 ____D C:\Windows\system32\Drivers\NISx64
2016-11-25 18:03 - 2012-05-09 19:11 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-11-25 18:03 - 2012-05-09 19:11 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-11-25 17:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2016-11-25 16:30 - 2013-07-11 19:36 - 00000000 ____D C:\Windows\system32\MRT
2016-11-25 16:30 - 2012-04-18 19:10 - 00000039 _____ C:\Windows\vbaddin.ini
2016-11-25 16:24 - 2010-09-15 16:25 - 141011376 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-11-25 16:14 - 2012-05-09 19:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-11-25 16:12 - 2009-07-14 03:34 - 00000513 _____ C:\Windows\win.ini
2016-11-25 14:50 - 2015-02-22 11:37 - 00002204 _____ C:\Users\Petr Martens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-11-25 01:09 - 2015-10-28 18:14 - 00100592 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2016-11-25 01:09 - 2015-10-28 18:14 - 00008319 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2016-11-25 00:10 - 2009-07-14 05:45 - 00000000 ____D C:\Windows\ServiceProfiles
2016-11-25 00:05 - 2011-04-22 20:57 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-11-24 23:33 - 2013-03-03 16:59 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\uTorrent
2016-11-24 23:33 - 2011-04-22 23:44 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\TeamViewer
2016-11-24 23:33 - 2010-10-17 19:46 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\CrashDumps
2016-11-24 23:33 - 2010-10-12 09:38 - 00000000 ____D C:\Windows\Minidump
2016-11-24 23:33 - 2010-09-14 21:22 - 00000000 ____D C:\Windows\Panther
2016-11-24 23:12 - 2014-04-18 18:34 - 00000000 ____D C:\Users\Petr Martens\Documents\DayZ
2016-11-24 22:42 - 2010-09-14 20:40 - 00000000 ____D C:\Users\Petr Martens
2016-11-24 20:47 - 2010-09-15 20:54 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\ElevatedDiagnostics
2016-11-24 20:46 - 2013-06-05 19:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-11-24 20:42 - 2010-11-27 20:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 2.6
2016-11-24 20:24 - 2011-07-27 20:39 - 00003974 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000UA
2016-11-24 20:24 - 2011-07-27 20:39 - 00003578 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000Core
2016-11-24 19:06 - 2015-11-28 13:39 - 00004224 _____ C:\Windows\System32\Tasks\AMD Updater
2016-11-24 19:03 - 2013-12-27 18:53 - 00000000 ____D C:\Program Files\AMD
2016-11-24 18:59 - 2012-04-22 22:20 - 00000000 ____D C:\AMD
2016-11-24 18:06 - 2015-08-02 10:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-11-24 18:06 - 2014-10-14 20:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2016-11-24 18:06 - 2014-10-14 19:59 - 00000000 ____D C:\Program Files (x86)\Java
2016-11-24 18:06 - 2013-10-19 14:44 - 00000000 ____D C:\ProgramData\Oracle
2016-11-24 18:05 - 2015-08-02 10:45 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-11-24 16:41 - 2015-11-28 13:38 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\AMD
2016-11-24 16:40 - 2016-01-15 22:09 - 00000000 ____D C:\Program Files (x86)\AMD
2016-11-24 16:30 - 2015-06-21 10:49 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\Dropbox
2016-11-24 16:25 - 2012-03-30 22:36 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-11-24 16:25 - 2012-03-30 22:36 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-11-24 16:25 - 2011-11-20 13:37 - 00000000 ____D C:\Windows\system32\Macromed
2016-11-24 16:25 - 2011-05-22 21:14 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-11-24 16:25 - 2010-09-14 22:09 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-11-24 16:16 - 2014-07-18 22:56 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-11-24 16:15 - 2014-07-18 22:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-11-24 16:15 - 2014-07-18 22:55 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-11-24 16:15 - 2011-12-30 22:50 - 00001124 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-11-24 16:01 - 2011-07-27 20:40 - 00002410 _____ C:\Users\Petr Martens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-24 15:58 - 2011-06-04 09:55 - 00001232 _____ C:\Users\Petr Martens\Desktop\Dropbox.lnk
2016-11-24 15:58 - 2011-06-04 09:54 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\Dropbox
2016-11-24 15:53 - 2012-12-14 15:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-24 15:34 - 2010-09-21 20:18 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\vlc
2016-11-24 15:32 - 2011-10-14 21:25 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\TS3Client
2016-11-24 15:32 - 2011-10-14 21:24 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2016-11-24 15:32 - 2011-06-19 08:42 - 00002563 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-11-24 15:30 - 2014-10-14 21:42 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-11-24 15:30 - 2010-10-19 22:12 - 00000000 ____D C:\ProgramData\Skype
2016-11-24 15:26 - 2015-12-06 14:43 - 00000979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-11-24 15:26 - 2015-12-06 14:43 - 00000967 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2016-11-24 15:02 - 2011-02-26 22:52 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-24 14:55 - 2013-03-09 14:30 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2016-11-24 14:54 - 2011-02-26 22:52 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-11-24 14:54 - 2011-02-26 22:52 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-11-24 14:53 - 2014-12-25 15:58 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-24 14:52 - 2009-07-14 06:08 - 00032576 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-11-24 14:49 - 2016-03-06 12:04 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\PlaysTV
2016-11-24 14:49 - 2014-11-23 09:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2016-11-15 22:21 - 2014-12-13 19:57 - 09981352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2016-11-15 22:21 - 2012-03-09 05:35 - 10977392 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2016-11-15 22:20 - 2015-08-02 10:52 - 07213248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2016-11-15 22:20 - 2015-08-02 10:52 - 00123776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2016-11-15 22:20 - 2014-10-07 18:24 - 00139720 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2016-11-15 22:20 - 2012-03-09 05:11 - 08847888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2016-11-15 22:20 - 2012-03-09 04:57 - 00170072 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2016-11-15 22:20 - 2012-03-09 04:56 - 00151056 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2016-11-15 22:19 - 2014-05-04 17:32 - 00124776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2016-11-15 22:18 - 2016-01-15 22:07 - 00240008 _____ C:\Windows\SysWOW64\GameManager32.dll
2016-11-15 22:18 - 2015-08-02 10:52 - 00020360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2016-11-15 22:18 - 2014-10-07 18:24 - 09114104 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2016-11-15 22:18 - 2012-03-09 05:45 - 10965056 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2016-11-15 22:17 - 2014-12-13 19:57 - 00175496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2016-11-15 22:17 - 2012-03-09 06:16 - 01281448 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2016-11-15 22:17 - 2012-03-09 06:14 - 01561632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2016-11-15 22:16 - 2016-09-16 20:40 - 00892296 _____ (AMD) C:\Windows\system32\coinst_16.40.dll
2016-11-15 22:16 - 2015-08-02 10:52 - 21640584 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll
2016-11-15 22:16 - 2014-12-13 19:57 - 38268808 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2016-11-15 22:16 - 2012-04-06 02:11 - 00998280 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2016-11-11 13:47 - 2012-07-08 17:53 - 00034720 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2016-10-26 16:29 - 2010-09-14 20:57 - 00485032 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
==================== Files in the root of some directories =======
2010-11-20 22:59 - 2010-11-20 22:59 - 0000158 _____ () C:\Users\Petr Martens\AppData\Roaming\BBMS_EXCEPTION.txt
2010-11-20 22:27 - 2014-12-14 23:03 - 0002310 _____ () C:\Users\Petr Martens\AppData\Roaming\Rim.Desktop.Exception.log
2010-11-20 22:27 - 2013-03-27 21:06 - 0007461 _____ () C:\Users\Petr Martens\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2011-10-14 23:02 - 2014-12-14 23:03 - 0002233 _____ () C:\Users\Petr Martens\AppData\Roaming\Rim.DesktopHelper.Exception.log
2012-07-01 10:37 - 2012-07-01 10:38 - 0000077 _____ () C:\Users\Petr Martens\AppData\Roaming\Rim.Transcoder.Exception.log
2012-12-24 16:33 - 2012-12-24 16:33 - 3218744 _____ () C:\Users\Petr Martens\AppData\Local\ASbs.ac
2013-05-03 18:28 - 2013-05-04 10:18 - 0000079 _____ () C:\Users\Petr Martens\AppData\Local\CrystalDiskMark30.ini
2010-10-28 20:39 - 2013-01-26 14:04 - 0010240 _____ () C:\Users\Petr Martens\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-04-03 16:51 - 2014-07-06 19:43 - 0003254 _____ () C:\Users\Petr Martens\AppData\Local\mrdownloader.err
2014-04-03 16:22 - 2015-02-13 20:45 - 0001096 _____ () C:\Users\Petr Martens\AppData\Local\mrdownloader.nast
2010-10-25 18:06 - 2012-10-07 20:45 - 0007602 _____ () C:\Users\Petr Martens\AppData\Local\resmon.resmoncfg
2011-05-23 21:57 - 2015-02-13 20:45 - 0220894 _____ () C:\Users\Petr Martens\AppData\Local\SRDownloader.err
2011-05-23 20:49 - 2015-02-13 20:45 - 0001152 _____ () C:\Users\Petr Martens\AppData\Local\SRDownloader.nast
2010-10-16 17:40 - 2015-04-10 20:45 - 0029598 _____ () C:\ProgramData\hpzinstall.log
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000Core.job => C:\Users\Petr Martens\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000UA.job => C:\Users\Petr Martens\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Norton Internet Security (Disabled - Out of date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Disabled - Out of date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
FW: Norton Internet Security (Disabled) {6BFC5632-188D-B806-D13E-C607121B42A0}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Petr Martens\Desktop" je 482 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-25 21:10 - 2009-07-14 05:45 - 00023504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-25 21:10 - 2009-07-14 05:45 - 00023504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-25 21:06 - 2010-10-19 22:12 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\Skype
2016-11-25 20:59 - 2011-02-26 22:52 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-25 20:52 - 2009-07-14 16:18 - 00668882 _____ C:\Windows\system32\perfh005.dat
2016-11-25 20:52 - 2009-07-14 16:18 - 00141542 _____ C:\Windows\system32\perfc005.dat
2016-11-25 20:52 - 2009-07-14 06:13 - 01584626 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-25 20:52 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-11-25 20:50 - 2014-05-04 17:34 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\Raptr
2016-11-25 20:50 - 2011-06-04 09:55 - 00000000 ___RD C:\Users\Petr Martens\Dropbox
2016-11-25 20:49 - 2015-02-22 11:37 - 00000000 ___RD C:\Users\Petr Martens\OneDrive
2016-11-25 20:49 - 2012-06-20 20:37 - 00000000 ____D C:\Users\Petr Martens\Tracing
2016-11-25 20:49 - 2012-04-14 19:55 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\LogMeIn Hamachi
2016-11-25 20:49 - 2011-02-26 22:52 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-25 20:49 - 2010-10-19 21:49 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\ICQ
2016-11-25 20:46 - 2010-09-26 08:27 - 00907433 _____ C:\Windows\system32\oodbs.lor
2016-11-25 20:46 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-25 20:46 - 2009-07-14 05:45 - 05045456 _____ C:\Windows\system32\FNTCACHE.DAT
2016-11-25 20:45 - 2014-12-13 19:13 - 00000000 ____D C:\Windows\system32\appraiser
2016-11-25 20:45 - 2014-04-23 20:41 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-11-25 20:45 - 2009-07-14 16:37 - 00000000 ____D C:\Windows\ShellNew
2016-11-25 20:29 - 2011-07-27 20:39 - 00000990 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000UA.job
2016-11-25 20:29 - 2011-07-27 20:39 - 00000938 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000Core.job
2016-11-25 20:29 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-11-25 20:29 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Dism
2016-11-25 19:25 - 2012-03-30 22:36 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-11-25 19:20 - 2015-08-02 10:45 - 00000000 ____D C:\Windows\System32\Tasks\Remediation
2016-11-25 18:03 - 2015-10-30 23:18 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
2016-11-25 18:03 - 2015-10-28 18:14 - 00002429 _____ C:\Users\Public\Desktop\Norton Internet Security.lnk
2016-11-25 18:03 - 2015-10-28 18:14 - 00000000 ____D C:\Windows\system32\Drivers\NISx64
2016-11-25 18:03 - 2012-05-09 19:11 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-11-25 18:03 - 2012-05-09 19:11 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-11-25 17:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2016-11-25 16:30 - 2013-07-11 19:36 - 00000000 ____D C:\Windows\system32\MRT
2016-11-25 16:30 - 2012-04-18 19:10 - 00000039 _____ C:\Windows\vbaddin.ini
2016-11-25 16:24 - 2010-09-15 16:25 - 141011376 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-11-25 16:14 - 2012-05-09 19:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-11-25 16:12 - 2009-07-14 03:34 - 00000513 _____ C:\Windows\win.ini
2016-11-25 14:50 - 2015-02-22 11:37 - 00002204 _____ C:\Users\Petr Martens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-11-25 01:09 - 2015-10-28 18:14 - 00100592 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2016-11-25 01:09 - 2015-10-28 18:14 - 00008319 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2016-11-25 00:10 - 2009-07-14 05:45 - 00000000 ____D C:\Windows\ServiceProfiles
2016-11-25 00:05 - 2011-04-22 20:57 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-11-24 23:33 - 2013-03-03 16:59 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\uTorrent
2016-11-24 23:33 - 2011-04-22 23:44 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\TeamViewer
2016-11-24 23:33 - 2010-10-17 19:46 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\CrashDumps
2016-11-24 23:33 - 2010-10-12 09:38 - 00000000 ____D C:\Windows\Minidump
2016-11-24 23:33 - 2010-09-14 21:22 - 00000000 ____D C:\Windows\Panther
2016-11-24 23:12 - 2014-04-18 18:34 - 00000000 ____D C:\Users\Petr Martens\Documents\DayZ
2016-11-24 22:42 - 2010-09-14 20:40 - 00000000 ____D C:\Users\Petr Martens
2016-11-24 20:47 - 2010-09-15 20:54 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\ElevatedDiagnostics
2016-11-24 20:46 - 2013-06-05 19:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-11-24 20:42 - 2010-11-27 20:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 2.6
2016-11-24 20:24 - 2011-07-27 20:39 - 00003974 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000UA
2016-11-24 20:24 - 2011-07-27 20:39 - 00003578 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000Core
2016-11-24 19:06 - 2015-11-28 13:39 - 00004224 _____ C:\Windows\System32\Tasks\AMD Updater
2016-11-24 19:03 - 2013-12-27 18:53 - 00000000 ____D C:\Program Files\AMD
2016-11-24 18:59 - 2012-04-22 22:20 - 00000000 ____D C:\AMD
2016-11-24 18:06 - 2015-08-02 10:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-11-24 18:06 - 2014-10-14 20:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2016-11-24 18:06 - 2014-10-14 19:59 - 00000000 ____D C:\Program Files (x86)\Java
2016-11-24 18:06 - 2013-10-19 14:44 - 00000000 ____D C:\ProgramData\Oracle
2016-11-24 18:05 - 2015-08-02 10:45 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-11-24 16:41 - 2015-11-28 13:38 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\AMD
2016-11-24 16:40 - 2016-01-15 22:09 - 00000000 ____D C:\Program Files (x86)\AMD
2016-11-24 16:30 - 2015-06-21 10:49 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\Dropbox
2016-11-24 16:25 - 2012-03-30 22:36 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-11-24 16:25 - 2012-03-30 22:36 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-11-24 16:25 - 2011-11-20 13:37 - 00000000 ____D C:\Windows\system32\Macromed
2016-11-24 16:25 - 2011-05-22 21:14 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-11-24 16:25 - 2010-09-14 22:09 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-11-24 16:16 - 2014-07-18 22:56 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-11-24 16:15 - 2014-07-18 22:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-11-24 16:15 - 2014-07-18 22:55 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-11-24 16:15 - 2011-12-30 22:50 - 00001124 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-11-24 16:01 - 2011-07-27 20:40 - 00002410 _____ C:\Users\Petr Martens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-24 15:58 - 2011-06-04 09:55 - 00001232 _____ C:\Users\Petr Martens\Desktop\Dropbox.lnk
2016-11-24 15:58 - 2011-06-04 09:54 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\Dropbox
2016-11-24 15:53 - 2012-12-14 15:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-24 15:34 - 2010-09-21 20:18 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\vlc
2016-11-24 15:32 - 2011-10-14 21:25 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\TS3Client
2016-11-24 15:32 - 2011-10-14 21:24 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2016-11-24 15:32 - 2011-06-19 08:42 - 00002563 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-11-24 15:30 - 2014-10-14 21:42 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-11-24 15:30 - 2010-10-19 22:12 - 00000000 ____D C:\ProgramData\Skype
2016-11-24 15:26 - 2015-12-06 14:43 - 00000979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-11-24 15:26 - 2015-12-06 14:43 - 00000967 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2016-11-24 15:02 - 2011-02-26 22:52 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-24 14:55 - 2013-03-09 14:30 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2016-11-24 14:54 - 2011-02-26 22:52 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-11-24 14:54 - 2011-02-26 22:52 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-11-24 14:53 - 2014-12-25 15:58 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-24 14:52 - 2009-07-14 06:08 - 00032576 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-11-24 14:49 - 2016-03-06 12:04 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\PlaysTV
2016-11-24 14:49 - 2014-11-23 09:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2016-11-15 22:21 - 2014-12-13 19:57 - 09981352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2016-11-15 22:21 - 2012-03-09 05:35 - 10977392 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2016-11-15 22:20 - 2015-08-02 10:52 - 07213248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2016-11-15 22:20 - 2015-08-02 10:52 - 00123776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2016-11-15 22:20 - 2014-10-07 18:24 - 00139720 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2016-11-15 22:20 - 2012-03-09 05:11 - 08847888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2016-11-15 22:20 - 2012-03-09 04:57 - 00170072 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2016-11-15 22:20 - 2012-03-09 04:56 - 00151056 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2016-11-15 22:19 - 2014-05-04 17:32 - 00124776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2016-11-15 22:18 - 2016-01-15 22:07 - 00240008 _____ C:\Windows\SysWOW64\GameManager32.dll
2016-11-15 22:18 - 2015-08-02 10:52 - 00020360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2016-11-15 22:18 - 2014-10-07 18:24 - 09114104 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2016-11-15 22:18 - 2012-03-09 05:45 - 10965056 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2016-11-15 22:17 - 2014-12-13 19:57 - 00175496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2016-11-15 22:17 - 2012-03-09 06:16 - 01281448 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2016-11-15 22:17 - 2012-03-09 06:14 - 01561632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2016-11-15 22:16 - 2016-09-16 20:40 - 00892296 _____ (AMD) C:\Windows\system32\coinst_16.40.dll
2016-11-15 22:16 - 2015-08-02 10:52 - 21640584 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll
2016-11-15 22:16 - 2014-12-13 19:57 - 38268808 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2016-11-15 22:16 - 2012-04-06 02:11 - 00998280 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2016-11-11 13:47 - 2012-07-08 17:53 - 00034720 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2016-10-26 16:29 - 2010-09-14 20:57 - 00485032 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
==================== Files in the root of some directories =======
2010-11-20 22:59 - 2010-11-20 22:59 - 0000158 _____ () C:\Users\Petr Martens\AppData\Roaming\BBMS_EXCEPTION.txt
2010-11-20 22:27 - 2014-12-14 23:03 - 0002310 _____ () C:\Users\Petr Martens\AppData\Roaming\Rim.Desktop.Exception.log
2010-11-20 22:27 - 2013-03-27 21:06 - 0007461 _____ () C:\Users\Petr Martens\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2011-10-14 23:02 - 2014-12-14 23:03 - 0002233 _____ () C:\Users\Petr Martens\AppData\Roaming\Rim.DesktopHelper.Exception.log
2012-07-01 10:37 - 2012-07-01 10:38 - 0000077 _____ () C:\Users\Petr Martens\AppData\Roaming\Rim.Transcoder.Exception.log
2012-12-24 16:33 - 2012-12-24 16:33 - 3218744 _____ () C:\Users\Petr Martens\AppData\Local\ASbs.ac
2013-05-03 18:28 - 2013-05-04 10:18 - 0000079 _____ () C:\Users\Petr Martens\AppData\Local\CrystalDiskMark30.ini
2010-10-28 20:39 - 2013-01-26 14:04 - 0010240 _____ () C:\Users\Petr Martens\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-04-03 16:51 - 2014-07-06 19:43 - 0003254 _____ () C:\Users\Petr Martens\AppData\Local\mrdownloader.err
2014-04-03 16:22 - 2015-02-13 20:45 - 0001096 _____ () C:\Users\Petr Martens\AppData\Local\mrdownloader.nast
2010-10-25 18:06 - 2012-10-07 20:45 - 0007602 _____ () C:\Users\Petr Martens\AppData\Local\resmon.resmoncfg
2011-05-23 21:57 - 2015-02-13 20:45 - 0220894 _____ () C:\Users\Petr Martens\AppData\Local\SRDownloader.err
2011-05-23 20:49 - 2015-02-13 20:45 - 0001152 _____ () C:\Users\Petr Martens\AppData\Local\SRDownloader.nast
2010-10-16 17:40 - 2015-04-10 20:45 - 0029598 _____ () C:\ProgramData\hpzinstall.log
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000Core.job => C:\Users\Petr Martens\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000UA.job => C:\Users\Petr Martens\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Norton Internet Security (Disabled - Out of date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Disabled - Out of date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
FW: Norton Internet Security (Disabled) {6BFC5632-188D-B806-D13E-C607121B42A0}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Petr Martens\Desktop" je 482 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o preventivní kontrolu logu
Zdravím!
Jak je na tom váš oper. systém s legalitou?
Jak je na tom váš oper. systém s legalitou?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o preventivní kontrolu logu
Zdravím, chápu dotaz kvůli verzi Ulimate (již jsem se s tím setkal:-)). Jsou na tom dobře, mám dvě licence díky dřívějšímu zaměstnavateli:-)
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o preventivní kontrolu logu
OK. Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o preventivní kontrolu logu
Posílám log z adwCleaneru:
# AdwCleaner v6.030 - Log soubor vytvořen 27/11/2016 na 01:07:38
# Aktualizováno dne 19/10/2016 z Malwarebytes
# Databáze : 2016-11-26.2 [Server]
# Operační systém : Windows 7 Ultimate Service Pack 1 (X64)
# Uživatelské jméno : Petr Martens - NEO
# Beží od : C:\Users\Petr Martens\Desktop\adwcleaner_6.030.exe
# Mod: Čištění
# Podpora : hxxps://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Adresáře ] *****
[-] Adresář smazán:C:\Users\Petr Martens\AppData\Local\torch
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupce ] *****
***** [ Plánovač úloh ] *****
***** [ Registry ] *****
[-] Klíč smazán:HKLM\SOFTWARE\Classes\protector_dll.Protector
[-] Klíč smazán:HKLM\SOFTWARE\Classes\protector_dll.Protector.1
[-] Klíč smazán:HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
[-] Klíč smazán:HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\protector_dll.Protector
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\protector_dll.Protector.1
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
[-] Klíč smazán:HKU\S-1-5-21-850677638-2337762993-1318839679-1000\Software\Headlight
[-] Klíč smazán:HKU\S-1-5-21-850677638-2337762993-1318839679-1000\Software\torch
[-] Klíč smazán:HKU\S-1-5-21-850677638-2337762993-1318839679-1000\Software\AppDataLow\Software\Headlight
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-850677638-2337762993-1318839679-1000\Software\Headlight
[-] Klíč smazán:HKU\S-1-5-21-850677638-2337762993-1318839679-1004\Software\Conduit
[-] Klíč smazán:HKU\S-1-5-21-850677638-2337762993-1318839679-1004\Software\Headlight
[-] Klíč smazán:HKU\S-1-5-21-850677638-2337762993-1318839679-1004\Software\AppDataLow\Software\Headlight
[#] Klíč smazán po restartování:HKCU\Software\Headlight
[#] Klíč smazán po restartování:HKCU\Software\torch
[#] Klíč smazán po restartování:HKCU\Software\AppDataLow\Software\Headlight
[-] Klíč smazán:HKLM\SOFTWARE\dt soft\daemon tools toolbar
[-] Klíč smazán:HKLM\SOFTWARE\torch
[-] Klíč smazán:HKLM\SOFTWARE\FutureGames
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-850677638-2337762993-1318839679-1000\Software\Headlight
[#] Klíč smazán po restartování:[x64] HKCU\Software\Headlight
[#] Klíč smazán po restartování:[x64] HKCU\Software\torch
[#] Klíč smazán po restartování:[x64] HKCU\Software\AppDataLow\Software\Headlight
[-] Klíč smazán:HKU\S-1-5-21-850677638-2337762993-1318839679-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\akcniceny.cz
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\azlyrics.com
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\icq.com
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\slunecnice.cz
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\stavebnice-megabloks.heureka.cz
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\wlogin.icq.com
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.akcniceny.cz
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.azlyrics.com
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.slunecnice.cz
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\akcniceny.cz
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\azlyrics.com
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\icq.com
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\slunecnice.cz
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\stavebnice-megabloks.heureka.cz
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\wlogin.icq.com
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.akcniceny.cz
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.azlyrics.com
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.slunecnice.cz
[-] Klíč smazán:HKLM\SOFTWARE\Clients\StartMenuInternet\Torch
***** [ Prohlížeče ] *****
[-] Firefox nastavení vyčištěno:
[-] Firefox nastavení vyčištěno:
[-] Firefox nastavení vyčištěno:"extensions.enabledItems" - "cs@dictionaries.addons.mozilla.org:1.0.2,{003D3EDC-99B9-4a34-9C20-60CB94F7E829}:2010.25.36,{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}:2.2.1,{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.4.8.1,{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}:0.4.6,{20a82645-c095-46ed-80e3-08825760534b}:1.2.1,{35106bca-6c78-48c7-ac28-56df30b51d2b}:1.1.12,{4BBDD651-70CF-4821-84F8-2B918CF89CA3}:6.3.3.2,{73a6fe31-595d-460b-a920-fcc0f8843232}:2.5.4,{888d99e7-e8b5-46a3-851e-1ec45da1e644}:13.0.0,{9669CC8F-B388-42FE-86F4-CB5E7F5A8BDC}:6.0.4,{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20120827,{a0faa0a4-f1a7-4098-9a74-21efc3a92372}:10.0.0,{c50ca3c4-5656-43c2-a061-13e717f73fc8}:4.2.2,{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.10,{DDC359D1-844A-42a7-9AA1-88A850A938A8}:2.0.14,{e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.9.22,smartwebprinting@hp.com:4.5,{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22,{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23,{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24,{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26,{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}:6.0.29,{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}:6.0.31,{BBDA0591-3099-440a-AA10-41764D9DB4DB}:11.1.1.5 - 3,toolbar@ask.com:3.15.2.100013,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.10"
*************************
:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [6826 Bajtů] - [27/11/2016 01:07:38]
C:\AdwCleaner\AdwCleaner[S0].txt - [6117 Bajtů] - [26/11/2016 20:05:21]
C:\AdwCleaner\AdwCleaner[S1].txt - [6191 Bajtů] - [27/11/2016 01:06:58]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [7048 Bajtů] ##########
# AdwCleaner v6.030 - Log soubor vytvořen 27/11/2016 na 01:07:38
# Aktualizováno dne 19/10/2016 z Malwarebytes
# Databáze : 2016-11-26.2 [Server]
# Operační systém : Windows 7 Ultimate Service Pack 1 (X64)
# Uživatelské jméno : Petr Martens - NEO
# Beží od : C:\Users\Petr Martens\Desktop\adwcleaner_6.030.exe
# Mod: Čištění
# Podpora : hxxps://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Adresáře ] *****
[-] Adresář smazán:C:\Users\Petr Martens\AppData\Local\torch
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupce ] *****
***** [ Plánovač úloh ] *****
***** [ Registry ] *****
[-] Klíč smazán:HKLM\SOFTWARE\Classes\protector_dll.Protector
[-] Klíč smazán:HKLM\SOFTWARE\Classes\protector_dll.Protector.1
[-] Klíč smazán:HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
[-] Klíč smazán:HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\protector_dll.Protector
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\protector_dll.Protector.1
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
[-] Klíč smazán:HKU\S-1-5-21-850677638-2337762993-1318839679-1000\Software\Headlight
[-] Klíč smazán:HKU\S-1-5-21-850677638-2337762993-1318839679-1000\Software\torch
[-] Klíč smazán:HKU\S-1-5-21-850677638-2337762993-1318839679-1000\Software\AppDataLow\Software\Headlight
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-850677638-2337762993-1318839679-1000\Software\Headlight
[-] Klíč smazán:HKU\S-1-5-21-850677638-2337762993-1318839679-1004\Software\Conduit
[-] Klíč smazán:HKU\S-1-5-21-850677638-2337762993-1318839679-1004\Software\Headlight
[-] Klíč smazán:HKU\S-1-5-21-850677638-2337762993-1318839679-1004\Software\AppDataLow\Software\Headlight
[#] Klíč smazán po restartování:HKCU\Software\Headlight
[#] Klíč smazán po restartování:HKCU\Software\torch
[#] Klíč smazán po restartování:HKCU\Software\AppDataLow\Software\Headlight
[-] Klíč smazán:HKLM\SOFTWARE\dt soft\daemon tools toolbar
[-] Klíč smazán:HKLM\SOFTWARE\torch
[-] Klíč smazán:HKLM\SOFTWARE\FutureGames
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-850677638-2337762993-1318839679-1000\Software\Headlight
[#] Klíč smazán po restartování:[x64] HKCU\Software\Headlight
[#] Klíč smazán po restartování:[x64] HKCU\Software\torch
[#] Klíč smazán po restartování:[x64] HKCU\Software\AppDataLow\Software\Headlight
[-] Klíč smazán:HKU\S-1-5-21-850677638-2337762993-1318839679-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\akcniceny.cz
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\azlyrics.com
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\icq.com
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\slunecnice.cz
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\stavebnice-megabloks.heureka.cz
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\wlogin.icq.com
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.akcniceny.cz
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.azlyrics.com
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.slunecnice.cz
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\akcniceny.cz
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\azlyrics.com
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\icq.com
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\slunecnice.cz
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\stavebnice-megabloks.heureka.cz
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\wlogin.icq.com
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.akcniceny.cz
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.azlyrics.com
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.slunecnice.cz
[-] Klíč smazán:HKLM\SOFTWARE\Clients\StartMenuInternet\Torch
***** [ Prohlížeče ] *****
[-] Firefox nastavení vyčištěno:
[-] Firefox nastavení vyčištěno:
[-] Firefox nastavení vyčištěno:"extensions.enabledItems" - "cs@dictionaries.addons.mozilla.org:1.0.2,{003D3EDC-99B9-4a34-9C20-60CB94F7E829}:2010.25.36,{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}:2.2.1,{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.4.8.1,{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}:0.4.6,{20a82645-c095-46ed-80e3-08825760534b}:1.2.1,{35106bca-6c78-48c7-ac28-56df30b51d2b}:1.1.12,{4BBDD651-70CF-4821-84F8-2B918CF89CA3}:6.3.3.2,{73a6fe31-595d-460b-a920-fcc0f8843232}:2.5.4,{888d99e7-e8b5-46a3-851e-1ec45da1e644}:13.0.0,{9669CC8F-B388-42FE-86F4-CB5E7F5A8BDC}:6.0.4,{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20120827,{a0faa0a4-f1a7-4098-9a74-21efc3a92372}:10.0.0,{c50ca3c4-5656-43c2-a061-13e717f73fc8}:4.2.2,{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.10,{DDC359D1-844A-42a7-9AA1-88A850A938A8}:2.0.14,{e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.9.22,smartwebprinting@hp.com:4.5,{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22,{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23,{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24,{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26,{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}:6.0.29,{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}:6.0.31,{BBDA0591-3099-440a-AA10-41764D9DB4DB}:11.1.1.5 - 3,toolbar@ask.com:3.15.2.100013,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.10"
*************************
:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [6826 Bajtů] - [27/11/2016 01:07:38]
C:\AdwCleaner\AdwCleaner[S0].txt - [6117 Bajtů] - [26/11/2016 20:05:21]
C:\AdwCleaner\AdwCleaner[S1].txt - [6191 Bajtů] - [27/11/2016 01:06:58]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [7048 Bajtů] ##########
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o preventivní kontrolu logu
Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o preventivní kontrolu logu
Omlouvám se za prodlení v odpovědi a zasílám nový log z FRST (z důvodu délky 1.část):
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-11-2016
Ran by Petr Martens (administrator) on NEO (02-12-2016 22:38:16)
Running from C:\Users\Petr Martens\Desktop
Loaded Profiles: Petr Martens & NeroMediaHomeUser.4 (Available Profiles: Petr Martens & NeroMediaHomeUser.4 & Admin)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
() C:\Program Files (x86)\Common Files\Acronis\Plán2\schedul2.exe
(ArcSoft, Inc.) C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe
() C:\Program Files (x86)\Common Files\Acronis\Plán2\schedhlp.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\AM\dtsslsrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Valve Corporation) D:\Games\Mafia II\Steam\Steam.exe
(Nero AG) C:\Program Files (x86)\Nero\Nero MediaHome 4\NMMediaServerService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(ICQ, LLC.) C:\Program Files (x86)\ICQ7.5\ICQ.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\nis.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Leadtek Research Inc.) C:\Program Files\WinFast\WFDTV\WFWIZ.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\Common Files\HP\Digital Imaging\Bin\hpqPhotoCrm.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
(Wargaming.net) D:\Games\World_of_Tanks\WargamingGameUpdater.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\nis.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Analog Devices, Inc.) C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
(German IT Development) C:\Program Files (x86)Advent\Advent.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Ulead Systems, Inc.) C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(Research In Motion Limited) C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
(Valve Corporation) D:\Games\Mafia II\Steam\bin\cef\cef.winxp\steamwebhelper.exe
(Leadtek Research Inc.) C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
() C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Creative Technology Ltd.) C:\Windows\System32\AMBSpiE.exe
(Portrait Displays, Inc) C:\Program Files (x86)\Portrait Displays\HP Display Assistant\dthtml.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Portrait Displays Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\HookManager.exe
() C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
(Research In Motion Limited) C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\wpCtrl.exe
() C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Floater.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_ep64.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\DP\DPHelper.exe
() C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\DP\DPHelper64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\conathst.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_23_0_0_207.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_23_0_0_207.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Ghisler Software GmbH) C:\Totalcommander\TOTALCMD64.EXE
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil64_23_0_0_207_ActiveX.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\nacl64.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\nacl64.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\conathst.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Petr Martens\Desktop\FRST-OlderVersion\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [Služba Acronis Scheduler2] => C:\Program Files (x86)\Common Files\Acronis\Plán2\schedhlp.exe [362872 2010-06-03] ()
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [3994960 2011-11-17] (O&O Software GmbH)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3113592 2015-08-26] (Logitech, Inc.)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8029576 2016-11-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SoundMAXPnP] => C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [1310720 2009-09-17] (Analog Devices, Inc.)
HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe [241789 2009-07-07] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [NBAgent] => C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1226024 2010-02-22] (Nero AG)
HKLM-x32\...\Run: [Nero MediaHome 4] => C:\Program Files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe [5174568 2010-03-08] (Nero AG)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-03] (Intel Corporation)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5129720 2010-06-03] ()
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.)
HKLM-x32\...\Run: [RIMBBLaunchAgent.exe] => C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [267792 2013-01-17] (Research In Motion Limited)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [PivotSoftware] => C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe [110192 2010-05-13] ()
HKLM-x32\...\Run: [DT HWP] => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe [123248 2012-10-31] (Portrait Displays, Inc.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [WinFastDTV] => C:\Program Files\WinFast\WFDTV\DTVSchdl.exe [103424 2013-07-16] (Leadtek Research Inc.)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58584 2016-09-28] (Raptr, Inc)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2014-07-25] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [PlaysTV] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [51984 2016-11-18] (Copyright (c) 2016 Plays.tv, LLC)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565960 2016-11-11] (LogMeIn Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25838592 2016-11-28] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Steam] => D:\Games\Mafia II\Steam\steam.exe [2860832 2016-10-13] (Valve Corporation)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Nektra OEAPI] => [X]
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [OEXPRESS] => [X]
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [WEBTRAN] => [X]
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Nero MediaHome 4] => C:\Program Files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe [5174568 2010-03-08] (Nero AG)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2736128 2011-06-20] (Hewlett-Packard Company)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [ICQ] => C:\Program Files (x86)\ICQ7.5\ICQ.exe [124216 2011-05-08] (ICQ, LLC.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Google Update] => C:\Users\Petr Martens\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-09-04] (Google Inc.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [2AB3BAEDF74494A270A5183EA5661500323FA729._service_run] => C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe [921192 2016-11-08] (Google Inc.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [WinFast Schedule] => C:\Program Files\WinFast\WFDTV\WFWIZ.exe [2916352 2013-01-09] (Leadtek Research Inc.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1562264 2014-07-25] (Samsung)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [GoogleChromeAutoLaunch_3DF9CDE809951FA0CEE03C489CA9F36C] => C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe [921192 2016-11-08] (Google Inc.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27230168 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9105112 2016-11-15] (Piriform Ltd)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [World of Tanks] => D:\Games\World_of_Tanks\WargamingGameUpdater.exe [3135752 2016-11-18] (Wargaming.net)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [World of Warplanes] => D:\Games\World_of_Warplanes\WargamingGameUpdater.exe [3134728 2016-08-10] (Wargaming.net)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [World of Warships] => D:\Games\World_of_Warships\WargamingGameUpdater.exe [3134216 2016-11-07] (Wargaming.net)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\MountPoints2: {ed9f482c-da03-11df-a2bb-806e6f6e6963} - I:\score.exe
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\MountPoints2: {f0e0dc25-c5a5-11df-a714-00221548b87a} - J:\OblivionLauncher.exe
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\buShell.dll [2016-11-12] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\buShell.dll [2016-11-12] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\buShell.dll [2016-11-12] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-04-10]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TotalMedia Server.lnk [2012-12-24]
ShortcutTarget: TotalMedia Server.lnk -> C:\Program Files (x86)\ArcSoft\TotalMedia Theatre 5\TotalMedia Server\TM Server.exe (ArcSoft Inc.)
Startup: C:\Users\Petr Martens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Advent.lnk [2011-12-06]
ShortcutTarget: Advent.lnk -> C:\Program Files (x86)Advent\Advent.exe (German IT Development)
BootExecute: autocheck autochk * OODBS
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 127.0.0.1 localhost
Tcpip\..\Interfaces\{8E6BBCFE-228A-4212-9633-0E6CA1E61B7B}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> DefaultScope {EF2A5B79-4302-4C56-BEEB-53B507A7B99C} URL = hxxp://www.google.cz/search?q={searchTerms}&rl ... Page}&rlz=
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM ... -SearchBox
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {541BAEFB-59DC-4542-9C23-1869B55E1E5D} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=ie8
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {64216F25-4A10-47EA-8CCD-108E230E4061} URL = hxxp://search.seznam.cz/searchScreen?w={searchTerms}&mod=f
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {A9494FCE-BFEE-487A-AC5B-830F40D13E3A} URL = hxxp://search.microsoft.com/results.aspx?mkt=cs-cz&setlang=cs-cz&q={searchTerms}
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {B4471044-A846-4E4F-9482-24F575C561D2} URL = hxxp://search.atlas.cz/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {BDB873FC-9056-4C77-B78C-1A5404B0492E} URL = hxxp://cs.wikipedia.org/w/index.php?title=Speci%C3%A1ln%C3%AD:Search&search={searchTerms}
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {C823572F-3441-4225-8C47-0DBB575B1052} URL = hxxp://search.centrum.cz/index.php?charset=utf-8&q={searchTerms}&mt=2&mts=1&sec=mix&kibitz=0
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {EF2A5B79-4302-4C56-BEEB-53B507A7B99C} URL = hxxp://www.google.cz/search?q={searchTerms}&rl ... Page}&rlz=
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {FF610839-C8A1-416C-A72F-8315D6595E73} URL = hxxp://www.najdi.si/search.jsp?q={searchTerms}&foxsbar=ie
BHO: SnagIt Toolbar Loader -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files (x86)\TechSmith\SnagIt 9\DLLx64\SnagItBHO64.dll [2008-08-29] (TechSmith Corporation)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-11-25] (Google Inc.)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: SnagIt Toolbar Loader -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files (x86)\TechSmith\SnagIt 9\SnagItBHO.dll [2008-08-29] (TechSmith Corporation)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22] (Hewlett-Packard Co.)
BHO-x32: WebTransBHO Class -> {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} -> C:\ProgramData\LangSoft\WebIE.dll [2010-10-03] ()
BHO-x32: GetRight IE Download Helper -> {31FF080D-12A3-439A-A2EF-4BA95A3148E8} -> C:\Program Files (x86)\GetRight\xx2gr.dll [2007-06-21] (Headlight Software, Inc.)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-11-24] (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08] (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-11-25] (Google Inc.)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-24] (Oracle Corporation)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22] (Hewlett-Packard Co.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-11-25] (Google Inc.)
Toolbar: HKLM-x32 - WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll [2010-10-03] ()
Toolbar: HKLM-x32 - SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\SnagIt 9\SnagItIEAddin.dll [2008-08-29] (TechSmith Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-11-25] (Google Inc.)
Toolbar: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> No Name - {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No File
Toolbar: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
IE Session Restore: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> is enabled.
DPF: HKLM-x32 {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} hxxp://download.microsoft.com/download/C/B/F/CBF23A2C-3E55-4664-BC5C-762780D79BA0/OGAControl.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-09-23] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default [2016-12-02]
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\wr7n96de.default -> hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q=
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\wr7n96de.default -> Google
FF Session Restore: Mozilla\Firefox\Profiles\wr7n96de.default -> is enabled.
FF Keyword.URL: Mozilla\Firefox\Profiles\wr7n96de.default -> hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q=
FF Extension: (Better YouTube) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\betteryoutube@ginatrapani.org [2010-09-21] [not signed]
FF Extension: (České slovníky pro kontrolu pravopisu) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\cs@dictionaries.addons.mozilla(2).org [2010-09-21] [not signed]
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\cs@dictionaries.addons.mozilla.org [2016-11-24]
FF Extension: (YouTube Video and Audio Downloader) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack.xpi [2016-11-24]
FF Extension: (HTTPS Everywhere) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\https-everywhere@eff.org.xpi [2016-11-24]
FF Extension: (TrafficLight) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\trafficlight@bitdefender.com.xpi [2016-11-24]
FF Extension: (WebTran) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829} [2010-10-03] [not signed]
FF Extension: (Forecastfox) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3} [2016-11-24]
FF Extension: (AeroFox Basic) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{0F4F7F5C-C791-4951-8D9C-A0847AD03A7B} [2010-09-21] [not signed]
FF Extension: (FlashGot) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2016-11-24]
FF Extension: (Image Zoom) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}.xpi [2016-11-24]
FF Extension: (Microsoft .NET Framework Assistant) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-09-21] [not signed]
FF Extension: (WindowsUpdate) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{35106bca-6c78-48c7-ac28-56df30b51d2b} [2010-09-21] [not signed]
FF Extension: (FEBE) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3} [2016-11-24]
FF Extension: (File Downloader) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{616BD90A-BCFA-11E1-8AE9-CFDC6088709B}.xpi [2016-11-24]
FF Extension: (NoScript) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-11-24]
FF Extension: (IE Tab) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9} [2016-11-24]
FF Extension: (ReloadEvery) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi [2016-11-24]
FF Extension: (MR Tech Toolkit) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{9669CC8F-B388-42FE-86F4-CB5E7F5A8BDC} [2010-09-21] [not signed]
FF Extension: (WOT) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-12-28]
FF Extension: (DictionarySearch) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{a0faa0a4-f1a7-4098-9a74-21efc3a92372}.xpi [2016-11-24]
FF Extension: (Adblock Plus) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24]
FF Extension: (DownThemAll!) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2016-11-24]
FF Extension: (Greasemonkey) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2016-11-24]
FF SearchPlugin: C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\searchplugins\icq-search.xml [2009-10-16]
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.4.24\coFFAddon
FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.4.24\coFFAddon [2016-11-25]
FF HKLM-x32\...\Firefox\Extensions: [{40211632-250D-4B8C-B04E-DA45BAE6DF8C}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn => not found
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2015-10-31] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.4.24\coFFAddon
FF HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2015-04-10] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-24] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2010-09-15] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-24] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1222172.dll [2015-11-19] (Adobe Systems, Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.110.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.138.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll [2012-09-07] (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2016-10-06] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2010-09-15] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [2012-12-13] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-24] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-24] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-850677638-2337762993-1318839679-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Petr Martens\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-24] (Google Inc.)
FF Plugin HKU\S-1-5-21-850677638-2337762993-1318839679-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Petr Martens\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-24] (Google Inc.)
FF Plugin HKU\S-1-5-21-850677638-2337762993-1318839679-1000: sony.com/MediaGoDetector -> C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll [2014-07-10] (Sony Network Entertainment International LLC)
FF Plugin HKU\S-1-5-21-850677638-2337762993-1318839679-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2013-06-02] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxps://user.centrum.cz/?timeout=1&url=http%3A%2F%2Fmail.centrum.cz%2F%3F","hxxp://www.datart.cz/espressa.html?druh-pristr ... .jdeto.de/"
CHR Session Restore: Default -> is enabled.
CHR Plugin: (Native Client) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\pdf.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\gcswf32.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll => No File
CHR Plugin: (Norton Confidential) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.3.7_0\npcoplgn.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => No File
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll => No File
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (RIM Handheld Application Loader) - C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll => No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll => No File
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll => No File
CHR Plugin: (Windows Activation Technologies) - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
CHR Profile: C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default [2016-12-02]
CHR Extension: (YouTube) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (TrafficLight) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfnpidifppmenkapgihekkeednfoenal [2015-10-28]
CHR Extension: (Norton Security Toolbar) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2016-12-02]
CHR Extension: (Vyhledávání Google) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (HTTPS Everywhere) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2016-12-02]
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2012-10-03] [UpdateUrl: hxxp://www.interoperabilitybridges.com/ChromeW ... pdates.xml] <==== ATTENTION
CHR Extension: (Norton Identity Safe) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2015-10-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-26]
CHR Extension: (Gmail) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-02]
CHR Extension: (Chrome Media Router) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-24]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\Exts\Chrome.crx [2016-11-25]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\Exts\Chrome.crx [2016-11-25]
CHR HKLM-x32\...\Chrome\Extension: [ihenkjeihefokohmemphikjnjbmegdik] - "C:\Program Files (x86)\Sony\Media Go\MediaGoDetector.crx" <not found>
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Plán2\schedul2.exe [1055200 2010-06-03] ()
R2 ADExchange; C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [43624 2012-08-14] (ArcSoft, Inc.)
R2 AEADIFilters; C:\Windows\system32\AEADISRV.EXE [111616 2009-09-17] (Andrea Electronics Corporation)
R2 Asset Management Daemon; C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\AM\dtsslsrv.exe [135536 2012-10-31] ()
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1128448 2015-08-02] ()
R3 Blackberry Device Manager; C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [577536 2013-01-18] (Research In Motion Limited) [File not signed]
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2010-09-15] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2010-09-15] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [307200 2009-02-23] (Creative Technology Ltd) [File not signed]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-24] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [42096 2016-11-28] (Dropbox, Inc.)
R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe [139632 2012-10-31] (Portrait Displays, Inc.)
S3 FileZilla Server; C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe [740864 2010-07-18] (FileZilla Project) [File not signed]
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2627080 2016-11-11] (LogMeIn Inc.)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2011-06-20] (Hewlett-Packard Company) [File not signed]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-11-11] (LogMeIn, Inc.)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 NeroMediaHomeService.4; C:\Program Files (x86)\Nero\Nero MediaHome 4\NMMediaServerService.exe [517416 2010-03-08] (Nero AG)
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\NIS.exe [289080 2016-11-12] (Symantec Corporation)
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [3273552 2011-11-17] (O&O Software GmbH)
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-04-25] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
R2 UleadBurningHelper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2004-12-13] (Ulead Systems, Inc.) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 ArcSec; C:\Windows\System32\drivers\ArcSec.sys [311872 2011-11-10] ()
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [310728 2010-10-16] ()
R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\BASHDefs\20160213.003\BHDrvx64.sys [1665608 2015-10-08] (Symantec Corporation)
R3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [29184 2009-08-13] (CSR, plc)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1608010.00E\ccSetx64.sys [174328 2016-06-02] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [498512 2015-11-18] (Symantec Corporation)
S3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [157520 2015-11-18] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\IPSDefs\20160304.001\IDSvia64.sys [767224 2016-02-13] (Symantec Corporation)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [42696 2010-10-16] ()
S3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()
R3 MCfilt; C:\Windows\System32\drivers\MCfilt64.sys [25600 2009-09-17] (Creative Technology Ltd.)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-05-14] ()
R0 mv61xx; C:\Windows\System32\DRIVERS\mv61xx.sys [178728 2009-05-11] (Marvell Semiconductor, Inc.)
R3 PdiPorts; C:\Windows\System32\DRIVERS\PdiPorts.sys [22384 2012-09-18] (Portrait Displays, Inc.)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [78336 2013-01-03] (Research In Motion Limited)
R3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2010-09-21] () [File not signed]
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1608010.00E\SRTSP64.SYS [784624 2016-11-12] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1608010.00E\SRTSPX64.SYS [49400 2016-11-12] (Symantec Corporation)
R0 SymEFASI; C:\Windows\System32\drivers\NISx64\1608010.00E\SYMEFASI64.SYS [1628888 2016-11-12] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100592 2016-11-25] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1608010.00E\Ironx64.SYS [289520 2016-11-12] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1608010.00E\SYMNETS.SYS [567512 2016-11-12] (Symantec Corporation)
R0 tdrpman258; C:\Windows\System32\DRIVERS\tdrpm258.sys [1477728 2010-10-23] (Acronis)
R3 WFRAPDTT; C:\Windows\System32\drivers\wfrapdtt.sys [275584 2009-08-10] (Leadtek Research Inc.)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
U3 adn5i9vb; C:\Windows\System32\Drivers\adn5i9vb.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
S3 cpuz130; \??\C:\Users\PETRMA~1\AppData\Local\Temp\cpuz130\cpuz_x64.sys [X]
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 gHidPnp; System32\Drivers\gHidPnp.Sys [X]
S3 gMouUsb; system32\DRIVERS\gMouUsb.sys [X]
S3 NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\VirusDefs\20160305.004\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\VirusDefs\20160305.004\EX64.SYS [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-11-2016
Ran by Petr Martens (administrator) on NEO (02-12-2016 22:38:16)
Running from C:\Users\Petr Martens\Desktop
Loaded Profiles: Petr Martens & NeroMediaHomeUser.4 (Available Profiles: Petr Martens & NeroMediaHomeUser.4 & Admin)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
() C:\Program Files (x86)\Common Files\Acronis\Plán2\schedul2.exe
(ArcSoft, Inc.) C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe
() C:\Program Files (x86)\Common Files\Acronis\Plán2\schedhlp.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\AM\dtsslsrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Valve Corporation) D:\Games\Mafia II\Steam\Steam.exe
(Nero AG) C:\Program Files (x86)\Nero\Nero MediaHome 4\NMMediaServerService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(ICQ, LLC.) C:\Program Files (x86)\ICQ7.5\ICQ.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\nis.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Leadtek Research Inc.) C:\Program Files\WinFast\WFDTV\WFWIZ.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\Common Files\HP\Digital Imaging\Bin\hpqPhotoCrm.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
(Wargaming.net) D:\Games\World_of_Tanks\WargamingGameUpdater.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\nis.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Analog Devices, Inc.) C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
(German IT Development) C:\Program Files (x86)Advent\Advent.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Ulead Systems, Inc.) C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(Research In Motion Limited) C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
(Valve Corporation) D:\Games\Mafia II\Steam\bin\cef\cef.winxp\steamwebhelper.exe
(Leadtek Research Inc.) C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
() C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Creative Technology Ltd.) C:\Windows\System32\AMBSpiE.exe
(Portrait Displays, Inc) C:\Program Files (x86)\Portrait Displays\HP Display Assistant\dthtml.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Portrait Displays Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\HookManager.exe
() C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
(Research In Motion Limited) C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\wpCtrl.exe
() C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Floater.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_ep64.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\DP\DPHelper.exe
() C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\DP\DPHelper64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\conathst.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_23_0_0_207.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_23_0_0_207.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Ghisler Software GmbH) C:\Totalcommander\TOTALCMD64.EXE
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil64_23_0_0_207_ActiveX.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\nacl64.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\nacl64.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\conathst.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Petr Martens\Desktop\FRST-OlderVersion\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [Služba Acronis Scheduler2] => C:\Program Files (x86)\Common Files\Acronis\Plán2\schedhlp.exe [362872 2010-06-03] ()
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [3994960 2011-11-17] (O&O Software GmbH)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3113592 2015-08-26] (Logitech, Inc.)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8029576 2016-11-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SoundMAXPnP] => C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [1310720 2009-09-17] (Analog Devices, Inc.)
HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe [241789 2009-07-07] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [NBAgent] => C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1226024 2010-02-22] (Nero AG)
HKLM-x32\...\Run: [Nero MediaHome 4] => C:\Program Files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe [5174568 2010-03-08] (Nero AG)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-03] (Intel Corporation)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5129720 2010-06-03] ()
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.)
HKLM-x32\...\Run: [RIMBBLaunchAgent.exe] => C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [267792 2013-01-17] (Research In Motion Limited)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [PivotSoftware] => C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe [110192 2010-05-13] ()
HKLM-x32\...\Run: [DT HWP] => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe [123248 2012-10-31] (Portrait Displays, Inc.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [WinFastDTV] => C:\Program Files\WinFast\WFDTV\DTVSchdl.exe [103424 2013-07-16] (Leadtek Research Inc.)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58584 2016-09-28] (Raptr, Inc)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2014-07-25] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [PlaysTV] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [51984 2016-11-18] (Copyright (c) 2016 Plays.tv, LLC)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565960 2016-11-11] (LogMeIn Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25838592 2016-11-28] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Steam] => D:\Games\Mafia II\Steam\steam.exe [2860832 2016-10-13] (Valve Corporation)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Nektra OEAPI] => [X]
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [OEXPRESS] => [X]
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [WEBTRAN] => [X]
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Nero MediaHome 4] => C:\Program Files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe [5174568 2010-03-08] (Nero AG)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2736128 2011-06-20] (Hewlett-Packard Company)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [ICQ] => C:\Program Files (x86)\ICQ7.5\ICQ.exe [124216 2011-05-08] (ICQ, LLC.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Google Update] => C:\Users\Petr Martens\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-09-04] (Google Inc.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [2AB3BAEDF74494A270A5183EA5661500323FA729._service_run] => C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe [921192 2016-11-08] (Google Inc.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [WinFast Schedule] => C:\Program Files\WinFast\WFDTV\WFWIZ.exe [2916352 2013-01-09] (Leadtek Research Inc.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1562264 2014-07-25] (Samsung)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [GoogleChromeAutoLaunch_3DF9CDE809951FA0CEE03C489CA9F36C] => C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\chrome.exe [921192 2016-11-08] (Google Inc.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27230168 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9105112 2016-11-15] (Piriform Ltd)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [World of Tanks] => D:\Games\World_of_Tanks\WargamingGameUpdater.exe [3135752 2016-11-18] (Wargaming.net)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [World of Warplanes] => D:\Games\World_of_Warplanes\WargamingGameUpdater.exe [3134728 2016-08-10] (Wargaming.net)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [World of Warships] => D:\Games\World_of_Warships\WargamingGameUpdater.exe [3134216 2016-11-07] (Wargaming.net)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\MountPoints2: {ed9f482c-da03-11df-a2bb-806e6f6e6963} - I:\score.exe
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\MountPoints2: {f0e0dc25-c5a5-11df-a714-00221548b87a} - J:\OblivionLauncher.exe
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\buShell.dll [2016-11-12] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\buShell.dll [2016-11-12] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\buShell.dll [2016-11-12] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-04-10]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TotalMedia Server.lnk [2012-12-24]
ShortcutTarget: TotalMedia Server.lnk -> C:\Program Files (x86)\ArcSoft\TotalMedia Theatre 5\TotalMedia Server\TM Server.exe (ArcSoft Inc.)
Startup: C:\Users\Petr Martens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Advent.lnk [2011-12-06]
ShortcutTarget: Advent.lnk -> C:\Program Files (x86)Advent\Advent.exe (German IT Development)
BootExecute: autocheck autochk * OODBS
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 127.0.0.1 localhost
Tcpip\..\Interfaces\{8E6BBCFE-228A-4212-9633-0E6CA1E61B7B}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> DefaultScope {EF2A5B79-4302-4C56-BEEB-53B507A7B99C} URL = hxxp://www.google.cz/search?q={searchTerms}&rl ... Page}&rlz=
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM ... -SearchBox
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {541BAEFB-59DC-4542-9C23-1869B55E1E5D} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=ie8
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {64216F25-4A10-47EA-8CCD-108E230E4061} URL = hxxp://search.seznam.cz/searchScreen?w={searchTerms}&mod=f
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {A9494FCE-BFEE-487A-AC5B-830F40D13E3A} URL = hxxp://search.microsoft.com/results.aspx?mkt=cs-cz&setlang=cs-cz&q={searchTerms}
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {B4471044-A846-4E4F-9482-24F575C561D2} URL = hxxp://search.atlas.cz/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {BDB873FC-9056-4C77-B78C-1A5404B0492E} URL = hxxp://cs.wikipedia.org/w/index.php?title=Speci%C3%A1ln%C3%AD:Search&search={searchTerms}
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {C823572F-3441-4225-8C47-0DBB575B1052} URL = hxxp://search.centrum.cz/index.php?charset=utf-8&q={searchTerms}&mt=2&mts=1&sec=mix&kibitz=0
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {EF2A5B79-4302-4C56-BEEB-53B507A7B99C} URL = hxxp://www.google.cz/search?q={searchTerms}&rl ... Page}&rlz=
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {FF610839-C8A1-416C-A72F-8315D6595E73} URL = hxxp://www.najdi.si/search.jsp?q={searchTerms}&foxsbar=ie
BHO: SnagIt Toolbar Loader -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files (x86)\TechSmith\SnagIt 9\DLLx64\SnagItBHO64.dll [2008-08-29] (TechSmith Corporation)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-11-25] (Google Inc.)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: SnagIt Toolbar Loader -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files (x86)\TechSmith\SnagIt 9\SnagItBHO.dll [2008-08-29] (TechSmith Corporation)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22] (Hewlett-Packard Co.)
BHO-x32: WebTransBHO Class -> {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} -> C:\ProgramData\LangSoft\WebIE.dll [2010-10-03] ()
BHO-x32: GetRight IE Download Helper -> {31FF080D-12A3-439A-A2EF-4BA95A3148E8} -> C:\Program Files (x86)\GetRight\xx2gr.dll [2007-06-21] (Headlight Software, Inc.)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-11-24] (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08] (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-11-25] (Google Inc.)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-24] (Oracle Corporation)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22] (Hewlett-Packard Co.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-11-25] (Google Inc.)
Toolbar: HKLM-x32 - WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll [2010-10-03] ()
Toolbar: HKLM-x32 - SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\SnagIt 9\SnagItIEAddin.dll [2008-08-29] (TechSmith Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-11-25] (Google Inc.)
Toolbar: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> No Name - {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No File
Toolbar: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
IE Session Restore: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> is enabled.
DPF: HKLM-x32 {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} hxxp://download.microsoft.com/download/C/B/F/CBF23A2C-3E55-4664-BC5C-762780D79BA0/OGAControl.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-09-23] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default [2016-12-02]
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\wr7n96de.default -> hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q=
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\wr7n96de.default -> Google
FF Session Restore: Mozilla\Firefox\Profiles\wr7n96de.default -> is enabled.
FF Keyword.URL: Mozilla\Firefox\Profiles\wr7n96de.default -> hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q=
FF Extension: (Better YouTube) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\betteryoutube@ginatrapani.org [2010-09-21] [not signed]
FF Extension: (České slovníky pro kontrolu pravopisu) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\cs@dictionaries.addons.mozilla(2).org [2010-09-21] [not signed]
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\cs@dictionaries.addons.mozilla.org [2016-11-24]
FF Extension: (YouTube Video and Audio Downloader) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack.xpi [2016-11-24]
FF Extension: (HTTPS Everywhere) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\https-everywhere@eff.org.xpi [2016-11-24]
FF Extension: (TrafficLight) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\trafficlight@bitdefender.com.xpi [2016-11-24]
FF Extension: (WebTran) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829} [2010-10-03] [not signed]
FF Extension: (Forecastfox) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3} [2016-11-24]
FF Extension: (AeroFox Basic) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{0F4F7F5C-C791-4951-8D9C-A0847AD03A7B} [2010-09-21] [not signed]
FF Extension: (FlashGot) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2016-11-24]
FF Extension: (Image Zoom) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}.xpi [2016-11-24]
FF Extension: (Microsoft .NET Framework Assistant) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-09-21] [not signed]
FF Extension: (WindowsUpdate) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{35106bca-6c78-48c7-ac28-56df30b51d2b} [2010-09-21] [not signed]
FF Extension: (FEBE) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3} [2016-11-24]
FF Extension: (File Downloader) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{616BD90A-BCFA-11E1-8AE9-CFDC6088709B}.xpi [2016-11-24]
FF Extension: (NoScript) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-11-24]
FF Extension: (IE Tab) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9} [2016-11-24]
FF Extension: (ReloadEvery) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi [2016-11-24]
FF Extension: (MR Tech Toolkit) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{9669CC8F-B388-42FE-86F4-CB5E7F5A8BDC} [2010-09-21] [not signed]
FF Extension: (WOT) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-12-28]
FF Extension: (DictionarySearch) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{a0faa0a4-f1a7-4098-9a74-21efc3a92372}.xpi [2016-11-24]
FF Extension: (Adblock Plus) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24]
FF Extension: (DownThemAll!) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2016-11-24]
FF Extension: (Greasemonkey) - C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2016-11-24]
FF SearchPlugin: C:\Users\Petr Martens\AppData\Roaming\Mozilla\Firefox\Profiles\wr7n96de.default\searchplugins\icq-search.xml [2009-10-16]
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.4.24\coFFAddon
FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.4.24\coFFAddon [2016-11-25]
FF HKLM-x32\...\Firefox\Extensions: [{40211632-250D-4B8C-B04E-DA45BAE6DF8C}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn => not found
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2015-10-31] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.4.24\coFFAddon
FF HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2015-04-10] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-24] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2010-09-15] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-24] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1222172.dll [2015-11-19] (Adobe Systems, Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.110.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.138.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll [2012-09-07] (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2016-10-06] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2010-09-15] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [2012-12-13] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-24] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-24] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-850677638-2337762993-1318839679-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Petr Martens\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-24] (Google Inc.)
FF Plugin HKU\S-1-5-21-850677638-2337762993-1318839679-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Petr Martens\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-24] (Google Inc.)
FF Plugin HKU\S-1-5-21-850677638-2337762993-1318839679-1000: sony.com/MediaGoDetector -> C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll [2014-07-10] (Sony Network Entertainment International LLC)
FF Plugin HKU\S-1-5-21-850677638-2337762993-1318839679-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2013-06-02] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxps://user.centrum.cz/?timeout=1&url=http%3A%2F%2Fmail.centrum.cz%2F%3F","hxxp://www.datart.cz/espressa.html?druh-pristr ... .jdeto.de/"
CHR Session Restore: Default -> is enabled.
CHR Plugin: (Native Client) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\pdf.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\gcswf32.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll => No File
CHR Plugin: (Norton Confidential) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.3.7_0\npcoplgn.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => No File
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll => No File
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (RIM Handheld Application Loader) - C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll => No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll => No File
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll => No File
CHR Plugin: (Windows Activation Technologies) - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
CHR Profile: C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default [2016-12-02]
CHR Extension: (YouTube) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (TrafficLight) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfnpidifppmenkapgihekkeednfoenal [2015-10-28]
CHR Extension: (Norton Security Toolbar) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2016-12-02]
CHR Extension: (Vyhledávání Google) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (HTTPS Everywhere) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2016-12-02]
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2012-10-03] [UpdateUrl: hxxp://www.interoperabilitybridges.com/ChromeW ... pdates.xml] <==== ATTENTION
CHR Extension: (Norton Identity Safe) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2015-10-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-26]
CHR Extension: (Gmail) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-02]
CHR Extension: (Chrome Media Router) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-24]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\Exts\Chrome.crx [2016-11-25]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\Exts\Chrome.crx [2016-11-25]
CHR HKLM-x32\...\Chrome\Extension: [ihenkjeihefokohmemphikjnjbmegdik] - "C:\Program Files (x86)\Sony\Media Go\MediaGoDetector.crx" <not found>
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Plán2\schedul2.exe [1055200 2010-06-03] ()
R2 ADExchange; C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [43624 2012-08-14] (ArcSoft, Inc.)
R2 AEADIFilters; C:\Windows\system32\AEADISRV.EXE [111616 2009-09-17] (Andrea Electronics Corporation)
R2 Asset Management Daemon; C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\AM\dtsslsrv.exe [135536 2012-10-31] ()
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1128448 2015-08-02] ()
R3 Blackberry Device Manager; C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [577536 2013-01-18] (Research In Motion Limited) [File not signed]
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2010-09-15] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2010-09-15] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [307200 2009-02-23] (Creative Technology Ltd) [File not signed]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-24] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [42096 2016-11-28] (Dropbox, Inc.)
R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe [139632 2012-10-31] (Portrait Displays, Inc.)
S3 FileZilla Server; C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe [740864 2010-07-18] (FileZilla Project) [File not signed]
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2627080 2016-11-11] (LogMeIn Inc.)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2011-06-20] (Hewlett-Packard Company) [File not signed]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-11-11] (LogMeIn, Inc.)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 NeroMediaHomeService.4; C:\Program Files (x86)\Nero\Nero MediaHome 4\NMMediaServerService.exe [517416 2010-03-08] (Nero AG)
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\22.8.1.14\NIS.exe [289080 2016-11-12] (Symantec Corporation)
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [3273552 2011-11-17] (O&O Software GmbH)
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-04-25] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
R2 UleadBurningHelper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2004-12-13] (Ulead Systems, Inc.) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 ArcSec; C:\Windows\System32\drivers\ArcSec.sys [311872 2011-11-10] ()
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [310728 2010-10-16] ()
R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\BASHDefs\20160213.003\BHDrvx64.sys [1665608 2015-10-08] (Symantec Corporation)
R3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [29184 2009-08-13] (CSR, plc)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1608010.00E\ccSetx64.sys [174328 2016-06-02] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [498512 2015-11-18] (Symantec Corporation)
S3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [157520 2015-11-18] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\IPSDefs\20160304.001\IDSvia64.sys [767224 2016-02-13] (Symantec Corporation)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [42696 2010-10-16] ()
S3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()
R3 MCfilt; C:\Windows\System32\drivers\MCfilt64.sys [25600 2009-09-17] (Creative Technology Ltd.)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-05-14] ()
R0 mv61xx; C:\Windows\System32\DRIVERS\mv61xx.sys [178728 2009-05-11] (Marvell Semiconductor, Inc.)
R3 PdiPorts; C:\Windows\System32\DRIVERS\PdiPorts.sys [22384 2012-09-18] (Portrait Displays, Inc.)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [78336 2013-01-03] (Research In Motion Limited)
R3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2010-09-21] () [File not signed]
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1608010.00E\SRTSP64.SYS [784624 2016-11-12] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1608010.00E\SRTSPX64.SYS [49400 2016-11-12] (Symantec Corporation)
R0 SymEFASI; C:\Windows\System32\drivers\NISx64\1608010.00E\SYMEFASI64.SYS [1628888 2016-11-12] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100592 2016-11-25] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1608010.00E\Ironx64.SYS [289520 2016-11-12] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1608010.00E\SYMNETS.SYS [567512 2016-11-12] (Symantec Corporation)
R0 tdrpman258; C:\Windows\System32\DRIVERS\tdrpm258.sys [1477728 2010-10-23] (Acronis)
R3 WFRAPDTT; C:\Windows\System32\drivers\wfrapdtt.sys [275584 2009-08-10] (Leadtek Research Inc.)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
U3 adn5i9vb; C:\Windows\System32\Drivers\adn5i9vb.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
S3 cpuz130; \??\C:\Users\PETRMA~1\AppData\Local\Temp\cpuz130\cpuz_x64.sys [X]
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 gHidPnp; System32\Drivers\gHidPnp.Sys [X]
S3 gMouUsb; system32\DRIVERS\gMouUsb.sys [X]
S3 NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\VirusDefs\20160305.004\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\VirusDefs\20160305.004\EX64.SYS [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- Přílohy
-
- Addition1.rar
- (13.61 KiB) Staženo 59 x
Re: Prosím o preventivní kontrolu logu
2. část logu:
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-12-02 22:38 - 2016-12-02 22:38 - 00067365 _____ C:\Users\Petr Martens\Desktop\FRST.txt
2016-12-02 22:37 - 2016-12-02 22:37 - 00000000 ____D C:\Users\Petr Martens\Desktop\FRST-OlderVersion
2016-12-01 21:58 - 2016-12-01 21:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-11-30 16:09 - 2016-11-30 16:09 - 00000000 ___HD C:\OneDriveTemp
2016-11-30 08:32 - 2016-12-01 19:08 - 00000000 ____D C:\Program Files\Recuva
2016-11-30 08:32 - 2016-11-30 08:32 - 00001664 _____ C:\Users\Public\Desktop\Recuva.lnk
2016-11-30 08:32 - 2016-11-30 08:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2016-11-28 15:05 - 2016-11-28 15:05 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2016-11-28 15:05 - 2016-11-28 15:05 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2016-11-28 15:05 - 2016-11-28 15:05 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2016-11-28 15:05 - 2016-11-28 15:05 - 00042096 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2016-11-27 09:11 - 2016-11-30 08:28 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\{978D6437-0F2E-49C8-83E7-DA0F2697DEBF}
2016-11-27 01:15 - 2016-11-27 01:15 - 00007203 _____ C:\Users\Petr Martens\Desktop\AdwCleaner[C0].txt
2016-11-26 20:03 - 2016-11-27 01:07 - 00000000 ____D C:\AdwCleaner
2016-11-26 20:03 - 2016-11-26 20:03 - 03910208 _____ C:\Users\Petr Martens\Desktop\adwcleaner_6.030.exe
2016-11-26 18:02 - 2016-11-26 18:02 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\Pegasys Inc
2016-11-26 15:39 - 2016-11-26 15:39 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\{96B56145-2213-4905-83A9-E6B0DA423D9A}
2016-11-26 03:38 - 2016-11-26 03:38 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\{179D2F60-2339-4DB4-AF1C-191EDA3A7AEE}
2016-11-25 21:19 - 2016-11-25 21:19 - 00013917 _____ C:\Users\Petr Martens\Desktop\Addition.rar
2016-11-25 21:16 - 2016-11-25 21:16 - 00000000 ____D C:\FRST
2016-11-25 21:15 - 2016-12-02 22:37 - 02411520 _____ (Farbar) C:\Users\Petr Martens\Desktop\FRST64.exe
2016-11-25 18:17 - 2016-11-25 18:17 - 00000000 ____D C:\Windows\System32\Tasks\Norton Internet Security
2016-11-25 18:03 - 2016-11-25 18:03 - 00003234 _____ C:\Windows\System32\Tasks\Norton WSC Integration
2016-11-25 16:06 - 2016-09-12 22:17 - 00077032 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-11-25 16:06 - 2016-09-12 22:08 - 01226752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-11-25 16:06 - 2016-09-09 16:54 - 01629184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-11-25 16:06 - 2016-09-09 16:54 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-11-25 16:06 - 2016-09-09 16:54 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-11-25 16:06 - 2016-09-09 16:54 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-11-25 16:06 - 2016-09-09 16:54 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-11-25 16:06 - 2016-09-09 16:54 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-11-25 16:06 - 2016-09-09 16:54 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-11-25 16:06 - 2016-09-02 16:40 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-11-25 16:06 - 2016-09-02 16:35 - 05548264 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-11-25 16:06 - 2016-09-02 16:35 - 00706280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-11-25 16:06 - 2016-09-02 16:35 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-11-25 16:06 - 2016-09-02 16:35 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-11-25 16:06 - 2016-09-02 16:34 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:21 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-11-25 16:06 - 2016-09-02 16:21 - 03944680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-11-25 16:06 - 2016-09-02 16:18 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:02 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-11-25 16:06 - 2016-09-02 16:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-11-25 16:06 - 2016-09-02 16:02 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-11-25 16:06 - 2016-09-02 16:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-11-25 16:06 - 2016-09-02 15:58 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-11-25 16:06 - 2016-09-02 15:57 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-11-25 16:06 - 2016-09-02 15:55 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-11-25 16:06 - 2016-09-02 15:54 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-11-25 16:06 - 2016-09-02 15:54 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-11-25 16:06 - 2016-09-02 15:53 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-11-25 16:06 - 2016-09-02 15:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-11-25 16:06 - 2016-09-02 15:53 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-11-25 16:06 - 2016-09-02 15:49 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-11-25 16:06 - 2016-09-02 15:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-11-25 16:06 - 2016-09-02 15:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-11-25 16:06 - 2016-09-02 15:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-11-25 16:06 - 2016-09-02 15:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-11-25 16:06 - 2016-09-02 15:48 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 15:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 15:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 15:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-11-25 16:06 - 2016-08-16 18:36 - 01009152 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-11-25 16:06 - 2016-08-16 03:48 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-11-25 16:06 - 2016-08-16 03:35 - 03218432 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-11-25 16:06 - 2016-08-12 17:26 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-11-25 16:06 - 2016-08-12 17:26 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-11-25 16:06 - 2016-08-12 17:26 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-11-25 16:06 - 2016-06-26 01:27 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-11-25 16:06 - 2016-06-26 01:27 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-11-25 16:06 - 2016-06-26 01:27 - 00344576 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2016-11-25 16:06 - 2016-06-26 01:27 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2016-11-25 16:06 - 2016-06-26 01:27 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2016-11-25 16:06 - 2016-06-25 20:54 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2016-11-25 16:06 - 2016-06-25 20:53 - 00297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2016-11-25 16:06 - 2016-06-25 20:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2016-11-25 16:06 - 2016-06-25 20:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2016-11-25 16:06 - 2016-06-25 20:41 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2016-11-25 16:06 - 2016-05-11 18:02 - 00483840 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2016-11-25 16:06 - 2016-05-11 16:19 - 00363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2016-11-25 16:06 - 2016-04-14 14:49 - 00603648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-11-25 16:06 - 2016-04-14 14:21 - 00647680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-11-25 16:06 - 2016-04-09 08:01 - 00986344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-11-25 16:06 - 2016-04-09 08:01 - 00264936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-11-25 16:06 - 2016-04-09 07:57 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-11-25 16:06 - 2016-03-17 23:56 - 02084864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-11-25 16:06 - 2016-03-17 23:28 - 01414144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-11-25 16:06 - 2016-03-16 19:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-11-25 16:06 - 2016-03-16 19:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-11-25 16:06 - 2016-03-16 19:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-11-25 16:06 - 2016-03-16 01:16 - 00760320 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-11-25 16:06 - 2016-03-16 01:16 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-11-25 16:06 - 2016-03-16 00:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2016-11-25 16:06 - 2016-03-06 19:53 - 01885696 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-11-25 16:06 - 2016-03-06 19:53 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2016-11-25 16:06 - 2016-03-06 19:38 - 01240576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-11-25 16:06 - 2016-03-06 19:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2016-11-25 16:06 - 2016-02-09 10:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-11-25 16:06 - 2016-02-05 02:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-11-25 16:06 - 2016-02-04 19:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-11-25 16:06 - 2016-02-03 19:07 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-11-25 16:06 - 2016-02-02 19:57 - 00511488 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2016-11-25 16:06 - 2016-01-21 01:51 - 00073664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2016-11-25 16:06 - 2016-01-11 20:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-11-25 16:06 - 2015-12-20 19:50 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-11-25 16:06 - 2015-12-20 19:50 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2016-11-25 16:06 - 2015-12-20 15:08 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-11-25 16:05 - 2016-08-29 16:31 - 14183424 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-11-25 16:05 - 2016-08-29 16:31 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-11-25 16:05 - 2016-08-29 16:31 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-11-25 16:05 - 2016-08-29 16:12 - 12880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-11-25 16:05 - 2016-08-29 16:12 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-11-25 16:05 - 2016-08-29 16:12 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-11-25 16:05 - 2016-08-29 16:04 - 03229696 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-11-25 16:05 - 2016-08-29 15:55 - 02972672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-11-25 16:05 - 2016-08-16 21:40 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-11-25 16:05 - 2016-08-16 21:40 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2016-11-25 16:05 - 2016-08-16 21:40 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2016-11-25 16:05 - 2016-08-16 21:40 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-11-25 16:05 - 2016-08-16 21:40 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2016-11-25 16:05 - 2016-08-16 21:40 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2016-11-25 16:05 - 2016-08-16 21:40 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2016-11-25 16:05 - 2016-07-07 16:36 - 01896168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-11-25 16:05 - 2016-07-07 16:36 - 00377576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2016-11-25 16:05 - 2016-07-07 16:36 - 00287976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2016-11-25 16:05 - 2016-07-07 16:08 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2016-11-25 16:05 - 2016-07-01 16:31 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-11-25 16:05 - 2016-07-01 16:31 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-11-25 16:05 - 2016-07-01 16:13 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-11-25 16:05 - 2016-07-01 16:13 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2016-11-25 16:05 - 2016-05-12 18:15 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2016-11-25 16:05 - 2016-05-12 18:14 - 00794624 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-11-25 16:05 - 2016-05-12 18:14 - 00793088 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2016-11-25 16:05 - 2016-05-12 18:14 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2016-11-25 16:05 - 2016-05-12 18:14 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2016-11-25 16:05 - 2016-05-12 18:14 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2016-11-25 16:05 - 2016-05-12 18:14 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2016-11-25 16:05 - 2016-05-12 18:14 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2016-11-25 16:05 - 2016-05-12 16:18 - 00591872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2016-11-25 16:05 - 2016-05-12 16:18 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2016-11-25 16:05 - 2016-05-12 16:18 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2016-11-25 16:05 - 2016-05-12 16:18 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll
2016-11-25 16:05 - 2016-05-12 16:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2016-11-25 16:05 - 2016-05-12 16:06 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe
2016-11-25 16:05 - 2016-05-12 15:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll
2016-11-25 16:05 - 2016-05-12 15:57 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.exe
2016-11-25 16:05 - 2016-05-11 18:02 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-11-25 16:05 - 2016-05-11 18:02 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-11-25 16:05 - 2016-05-11 18:02 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-11-25 16:05 - 2016-05-11 16:19 - 00351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-11-25 16:05 - 2016-05-11 16:19 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-11-25 16:05 - 2016-05-11 16:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2016-11-25 16:05 - 2016-05-11 16:11 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2016-11-25 16:05 - 2016-05-11 16:01 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
2016-11-25 16:05 - 2016-05-11 15:58 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2016-11-25 16:01 - 2016-05-18 17:10 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-11-25 16:01 - 2016-05-18 17:09 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-11-25 16:00 - 2016-03-09 20:00 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-11-25 16:00 - 2016-03-09 19:54 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-11-25 16:00 - 2016-03-09 19:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-11-25 16:00 - 2016-03-09 19:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2016-11-25 15:54 - 2016-04-09 05:20 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-11-25 15:54 - 2016-04-09 04:52 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-11-25 15:41 - 2016-06-06 17:50 - 01483264 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-11-25 15:41 - 2016-06-06 17:50 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-11-25 15:41 - 2016-06-06 17:50 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-11-25 15:41 - 2016-06-06 17:50 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-11-25 15:41 - 2016-06-06 16:23 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-11-25 15:41 - 2016-06-06 16:23 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-11-25 15:41 - 2016-06-06 16:23 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2016-11-25 15:41 - 2016-06-06 16:23 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2016-11-25 15:41 - 2016-05-13 23:09 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-11-25 15:41 - 2016-05-13 23:09 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-11-25 15:41 - 2016-05-13 23:09 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-11-25 15:41 - 2016-05-13 23:07 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-11-25 15:41 - 2016-05-13 22:55 - 02607104 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-11-25 15:41 - 2016-05-13 22:53 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-11-25 15:41 - 2016-05-13 22:53 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-11-25 15:41 - 2016-05-13 22:52 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-11-25 15:41 - 2016-05-13 22:52 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-11-25 15:41 - 2016-05-13 22:52 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-11-25 15:41 - 2016-05-13 22:52 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-11-25 15:41 - 2016-05-13 22:50 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-11-25 15:41 - 2016-05-13 22:38 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-11-25 15:41 - 2016-05-13 22:38 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-11-25 15:41 - 2016-05-13 22:38 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-11-25 15:41 - 2016-05-13 22:38 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-11-25 15:41 - 2016-05-12 18:14 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-11-25 15:41 - 2016-05-12 18:14 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-11-25 15:41 - 2016-05-12 16:18 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-11-25 15:41 - 2016-05-12 16:18 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2016-11-25 15:41 - 2016-05-12 16:18 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-11-25 15:41 - 2016-05-12 14:05 - 00459640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-11-25 15:41 - 2016-05-12 14:05 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-11-25 15:41 - 2016-05-12 14:04 - 00249352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-11-25 15:41 - 2016-05-04 18:21 - 00114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-11-25 15:41 - 2016-05-04 18:17 - 03244032 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-11-25 15:41 - 2016-05-04 18:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-11-25 15:41 - 2016-05-04 18:17 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-11-25 15:41 - 2016-05-04 18:17 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2016-11-25 15:41 - 2016-05-04 18:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2016-11-25 15:41 - 2016-05-04 18:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2016-11-25 15:41 - 2016-05-04 18:16 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-11-25 15:41 - 2016-05-04 16:04 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-11-25 15:41 - 2016-05-04 15:55 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-11-25 15:40 - 2016-07-22 15:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-11-25 15:40 - 2016-07-22 15:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2016-11-25 15:38 - 2016-11-25 15:38 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\{2E271C69-8237-4988-B0F0-9D63E3418319}
2016-11-25 14:50 - 2016-11-25 14:50 - 00003252 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task
2016-11-25 13:54 - 2016-11-25 13:56 - 30659457 _____ C:\Users\Petr Martens\Desktop\Windows6.1-KB3172605-x64.msu
2016-11-25 13:53 - 2016-11-25 13:54 - 09542472 _____ C:\Users\Petr Martens\Desktop\Windows6.1-KB3177467-x64.msu
2016-11-24 22:42 - 2016-11-25 00:10 - 00000000 ____D C:\Users\Petr Martens\SecurityScans
2016-11-24 22:41 - 2016-11-24 22:41 - 00001129 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Baseline Security Analyzer 2.3.lnk
2016-11-24 22:41 - 2016-11-24 22:41 - 00001117 _____ C:\Users\Public\Desktop\Microsoft Baseline Security Analyzer 2.3.lnk
2016-11-24 22:41 - 2016-11-24 22:41 - 00000000 ____D C:\Program Files\Microsoft Baseline Security Analyzer 2
2016-11-24 20:46 - 2016-11-24 20:46 - 00000830 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-11-24 19:11 - 2016-11-24 19:11 - 00000000 ____D C:\Users\Petr Martens\AppData\LocalLow\AMD
2016-11-24 19:03 - 2016-11-24 19:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2016-11-24 19:00 - 2016-11-15 22:20 - 00141280 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2016-11-24 19:00 - 2016-11-15 22:20 - 00125288 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2016-11-24 19:00 - 2016-11-15 22:20 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2016-11-24 19:00 - 2016-11-15 22:20 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2016-11-24 19:00 - 2016-11-15 22:20 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2016-11-24 19:00 - 2016-11-15 22:20 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2016-11-24 19:00 - 2016-11-15 22:19 - 00145400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 02481032 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00520072 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2016-11-24 19:00 - 2016-11-15 22:18 - 00286600 _____ (AMD) C:\Windows\system32\atitmm64.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00281992 _____ C:\Windows\system32\dgtrayicon.exe
2016-11-24 19:00 - 2016-11-15 22:18 - 00275336 _____ C:\Windows\system32\GameManager64.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00136584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00117640 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00110472 _____ (AMD) C:\Windows\system32\atimuixx.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00059784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00020360 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 15728008 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 14318984 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 09926536 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdvlk64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 08065928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdvlk32.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 02163592 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00525704 _____ (AMD) C:\Windows\system32\atieclxx.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00458632 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00402312 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00349064 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00289160 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00230280 _____ C:\Windows\system32\atieah64.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00208264 _____ C:\Windows\SysWOW64\atieah32.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00201608 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00160136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00155016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amduve64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00135048 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00134536 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amduve32.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00129416 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00122760 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00108936 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00107400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00107400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00082824 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmcl64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00078728 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00072072 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00068488 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00067464 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00066952 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00066440 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmcl32.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00065416 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00054664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 48824712 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 27489672 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 09311624 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 07363976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 01333128 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00998280 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00845192 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00679304 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00305544 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2016-11-24 19:00 - 2016-11-15 22:16 - 00269192 _____ C:\Windows\system32\clinfo.exe
2016-11-24 19:00 - 2016-11-15 22:16 - 00267656 _____ C:\Windows\system32\hsa-thunk64.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00248200 _____ C:\Windows\system32\amdgfxinfo64.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00233352 _____ C:\Windows\SysWOW64\hsa-thunk.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00221064 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00112520 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00103304 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-11-24 19:00 - 2016-11-15 22:15 - 33248136 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2016-11-24 19:00 - 2016-11-15 22:15 - 27295624 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2016-11-24 19:00 - 2016-11-15 22:13 - 26560512 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2016-11-24 19:00 - 2016-11-15 21:46 - 00760312 _____ C:\Windows\SysWOW64\atiapfxx.blb
2016-11-24 19:00 - 2016-11-15 21:46 - 00760312 _____ C:\Windows\system32\atiapfxx.blb
2016-11-24 19:00 - 2016-11-15 21:35 - 03437632 _____ C:\Windows\system32\atiumd6a.cap
2016-11-24 19:00 - 2016-11-15 21:31 - 03471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2016-11-24 19:00 - 2016-10-21 19:22 - 00177280 _____ C:\Windows\system32\ativce03.dat
2016-11-24 19:00 - 2016-10-21 19:22 - 00175584 _____ C:\Windows\system32\amde31a.dat
2016-11-24 19:00 - 2016-10-21 18:00 - 00166560 _____ C:\Windows\system32\amde34b.dat
2016-11-24 19:00 - 2016-10-21 18:00 - 00166560 _____ C:\Windows\system32\amde34a.dat
2016-11-24 19:00 - 2016-10-20 17:10 - 00100832 _____ C:\Windows\system32\ativce02.dat
2016-11-24 19:00 - 2016-10-14 20:36 - 00118320 _____ C:\Windows\system32\kapp_ci.sbin
2016-11-24 17:10 - 2016-01-22 07:18 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-11-24 17:10 - 2016-01-22 07:18 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2016-11-24 17:10 - 2016-01-22 07:04 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2016-11-24 17:10 - 2016-01-22 07:04 - 00535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2016-11-24 16:29 - 2016-11-30 15:56 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2016-11-24 16:24 - 2016-11-24 16:24 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-11-24 16:24 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-11-24 16:24 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-11-24 16:24 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-11-24 16:24 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-11-24 15:57 - 2016-12-02 22:34 - 00000920 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-11-24 15:57 - 2016-12-02 08:34 - 00000916 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-11-24 15:57 - 2016-12-01 21:58 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-11-24 15:57 - 2016-11-30 08:29 - 00003916 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
2016-11-24 15:57 - 2016-11-30 08:29 - 00003664 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
2016-11-24 15:56 - 2016-11-24 15:56 - 00690072 _____ (Dropbox, Inc.) C:\Users\Petr Martens\Downloads\DropboxInstaller.exe
2016-11-24 15:55 - 2016-11-30 18:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-24 15:55 - 2016-11-30 18:25 - 00000000 ____D C:\Users\Petr Martens\AppData\LocalLow\Mozilla
2016-11-24 15:32 - 2016-11-24 15:32 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2016-11-24 15:32 - 2016-11-24 15:32 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2016-11-24 15:07 - 2016-11-24 15:19 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2016-11-24 15:07 - 2016-11-24 15:19 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2016-11-24 15:07 - 2016-11-24 15:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-11-24 15:07 - 2016-11-24 15:07 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-11-24 15:02 - 2016-11-24 15:02 - 00002156 _____ C:\Users\Public\Desktop\Google Earth.lnk
2016-11-24 15:02 - 2016-11-24 15:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-12-02 22:29 - 2011-07-27 20:39 - 00000990 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000UA.job
2016-12-02 22:26 - 2010-10-19 22:12 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\Skype
2016-12-02 22:25 - 2012-03-30 22:36 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-12-02 21:59 - 2011-02-26 22:52 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-12-02 20:29 - 2011-07-27 20:39 - 00000938 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000Core.job
2016-12-02 20:24 - 2014-05-04 17:34 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\Raptr
2016-12-02 19:34 - 2012-04-14 19:55 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\LogMeIn Hamachi
2016-12-02 18:42 - 2010-09-21 20:18 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\vlc
2016-12-02 17:27 - 2011-02-26 22:52 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\Google
2016-12-02 14:59 - 2011-02-26 22:52 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-12-02 12:48 - 2009-07-14 16:18 - 00668882 _____ C:\Windows\system32\perfh005.dat
2016-12-02 12:48 - 2009-07-14 16:18 - 00141542 _____ C:\Windows\system32\perfc005.dat
2016-12-02 12:48 - 2009-07-14 06:13 - 01584626 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-02 12:48 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-12-02 12:26 - 2010-09-14 20:40 - 00000000 ____D C:\Users\Petr Martens
2016-12-02 11:59 - 2015-08-02 10:45 - 00000000 ____D C:\Windows\System32\Tasks\Remediation
2016-12-02 03:54 - 2009-07-14 05:45 - 00023504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-02 03:54 - 2009-07-14 05:45 - 00023504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-01 21:58 - 2011-06-04 09:55 - 00000000 ___RD C:\Users\Petr Martens\Dropbox
2016-11-30 16:09 - 2015-02-22 11:37 - 00000000 ___RD C:\Users\Petr Martens\OneDrive
2016-11-30 16:09 - 2012-06-20 20:37 - 00000000 ____D C:\Users\Petr Martens\Tracing
2016-11-30 16:09 - 2010-10-19 21:49 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\ICQ
2016-11-30 16:09 - 2010-09-26 08:27 - 00949541 _____ C:\Windows\system32\oodbs.lor
2016-11-30 16:09 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-30 11:52 - 2011-04-22 20:57 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-11-27 01:07 - 2010-10-17 19:46 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\CrashDumps
2016-11-26 21:13 - 2014-12-02 23:02 - 00000000 ____D C:\Users\Petr Martens\Desktop\narozkazkrale
2016-11-26 20:53 - 2010-10-26 18:03 - 00000000 ____D C:\Users\Petr Martens\Documents\SMS
2016-11-26 18:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2016-11-26 14:52 - 2009-07-14 05:45 - 05045456 _____ C:\Windows\system32\FNTCACHE.DAT
2016-11-26 14:50 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-11-26 14:50 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Dism
2016-11-26 13:49 - 2011-04-22 23:44 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\TeamViewer
2016-11-26 10:45 - 2013-09-21 09:29 - 01559340 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-11-26 10:39 - 2014-12-13 19:13 - 00000000 ____D C:\Windows\system32\appraiser
2016-11-26 10:39 - 2014-04-23 20:41 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-11-26 09:43 - 2009-07-14 16:37 - 00000000 ____D C:\Windows\ShellNew
2016-11-25 18:03 - 2015-10-30 23:18 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
2016-11-25 18:03 - 2015-10-28 18:14 - 00002429 _____ C:\Users\Public\Desktop\Norton Internet Security.lnk
2016-11-25 18:03 - 2015-10-28 18:14 - 00000000 ____D C:\Windows\system32\Drivers\NISx64
2016-11-25 18:03 - 2012-05-09 19:11 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-11-25 18:03 - 2012-05-09 19:11 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-11-25 16:30 - 2013-07-11 19:36 - 00000000 ____D C:\Windows\system32\MRT
2016-11-25 16:30 - 2012-04-18 19:10 - 00000039 _____ C:\Windows\vbaddin.ini
2016-11-25 16:24 - 2010-09-15 16:25 - 141011376 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-11-25 16:14 - 2012-05-09 19:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-11-25 16:12 - 2009-07-14 03:34 - 00000513 _____ C:\Windows\win.ini
2016-11-25 14:50 - 2015-02-22 11:37 - 00002204 _____ C:\Users\Petr Martens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-11-25 01:09 - 2015-10-28 18:14 - 00100592 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2016-11-25 01:09 - 2015-10-28 18:14 - 00008319 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2016-11-25 00:10 - 2009-07-14 05:45 - 00000000 ____D C:\Windows\ServiceProfiles
2016-11-24 23:33 - 2013-03-03 16:59 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\uTorrent
2016-11-24 23:33 - 2010-10-12 09:38 - 00000000 ____D C:\Windows\Minidump
2016-11-24 23:33 - 2010-09-14 21:22 - 00000000 ____D C:\Windows\Panther
2016-11-24 23:12 - 2014-04-18 18:34 - 00000000 ____D C:\Users\Petr Martens\Documents\DayZ
2016-11-24 20:47 - 2010-09-15 20:54 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\ElevatedDiagnostics
2016-11-24 20:46 - 2013-06-05 19:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-11-24 20:42 - 2010-11-27 20:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 2.6
2016-11-24 20:24 - 2011-07-27 20:39 - 00003974 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000UA
2016-11-24 20:24 - 2011-07-27 20:39 - 00003578 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000Core
2016-11-24 19:06 - 2015-11-28 13:39 - 00004224 _____ C:\Windows\System32\Tasks\AMD Updater
2016-11-24 19:03 - 2013-12-27 18:53 - 00000000 ____D C:\Program Files\AMD
2016-11-24 18:59 - 2012-04-22 22:20 - 00000000 ____D C:\AMD
2016-11-24 18:06 - 2015-08-02 10:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-11-24 18:06 - 2014-10-14 20:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2016-11-24 18:06 - 2014-10-14 19:59 - 00000000 ____D C:\Program Files (x86)\Java
2016-11-24 18:06 - 2013-10-19 14:44 - 00000000 ____D C:\ProgramData\Oracle
2016-11-24 18:05 - 2015-08-02 10:45 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-11-24 16:41 - 2015-11-28 13:38 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\AMD
2016-11-24 16:40 - 2016-01-15 22:09 - 00000000 ____D C:\Program Files (x86)\AMD
2016-11-24 16:30 - 2015-06-21 10:49 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\Dropbox
2016-11-24 16:25 - 2012-03-30 22:36 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-11-24 16:25 - 2012-03-30 22:36 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-11-24 16:25 - 2011-11-20 13:37 - 00000000 ____D C:\Windows\system32\Macromed
2016-11-24 16:25 - 2011-05-22 21:14 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-11-24 16:25 - 2010-09-14 22:09 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-11-24 16:16 - 2014-07-18 22:56 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-11-24 16:15 - 2014-07-18 22:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-11-24 16:15 - 2014-07-18 22:55 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-11-24 16:15 - 2011-12-30 22:50 - 00001124 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-11-24 16:01 - 2011-07-27 20:40 - 00002410 _____ C:\Users\Petr Martens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-24 15:58 - 2011-06-04 09:55 - 00001232 _____ C:\Users\Petr Martens\Desktop\Dropbox.lnk
2016-11-24 15:58 - 2011-06-04 09:54 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\Dropbox
2016-11-24 15:53 - 2012-12-14 15:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-24 15:32 - 2011-10-14 21:25 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\TS3Client
2016-11-24 15:32 - 2011-10-14 21:24 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2016-11-24 15:32 - 2011-06-19 08:42 - 00002563 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-11-24 15:30 - 2014-10-14 21:42 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-11-24 15:30 - 2010-10-19 22:12 - 00000000 ____D C:\ProgramData\Skype
2016-11-24 15:26 - 2015-12-06 14:43 - 00000979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-11-24 15:26 - 2015-12-06 14:43 - 00000967 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2016-11-24 15:02 - 2011-02-26 22:52 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-24 14:55 - 2013-03-09 14:30 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2016-11-24 14:54 - 2011-02-26 22:52 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-11-24 14:54 - 2011-02-26 22:52 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-11-24 14:53 - 2014-12-25 15:58 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-24 14:52 - 2009-07-14 06:08 - 00032576 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-11-24 14:49 - 2016-03-06 12:04 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\PlaysTV
2016-11-24 14:49 - 2014-11-23 09:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2016-11-15 22:21 - 2014-12-13 19:57 - 09981352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2016-11-15 22:21 - 2012-03-09 05:35 - 10977392 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2016-11-15 22:20 - 2015-08-02 10:52 - 07213248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2016-11-15 22:20 - 2015-08-02 10:52 - 00123776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2016-11-15 22:20 - 2014-10-07 18:24 - 00139720 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2016-11-15 22:20 - 2012-03-09 05:11 - 08847888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2016-11-15 22:20 - 2012-03-09 04:57 - 00170072 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2016-11-15 22:20 - 2012-03-09 04:56 - 00151056 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2016-11-15 22:19 - 2014-05-04 17:32 - 00124776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2016-11-15 22:18 - 2016-01-15 22:07 - 00240008 _____ C:\Windows\SysWOW64\GameManager32.dll
2016-11-15 22:18 - 2015-08-02 10:52 - 00020360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2016-11-15 22:18 - 2014-10-07 18:24 - 09114104 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2016-11-15 22:18 - 2012-03-09 05:45 - 10965056 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2016-11-15 22:17 - 2014-12-13 19:57 - 00175496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2016-11-15 22:17 - 2012-03-09 06:16 - 01281448 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2016-11-15 22:17 - 2012-03-09 06:14 - 01561632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2016-11-15 22:16 - 2016-09-16 20:40 - 00892296 _____ (AMD) C:\Windows\system32\coinst_16.40.dll
2016-11-15 22:16 - 2015-08-02 10:52 - 21640584 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll
2016-11-15 22:16 - 2014-12-13 19:57 - 38268808 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2016-11-15 22:16 - 2012-04-06 02:11 - 00998280 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2016-11-11 13:47 - 2012-07-08 17:53 - 00034720 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
==================== Files in the root of some directories =======
2010-11-20 22:59 - 2010-11-20 22:59 - 0000158 _____ () C:\Users\Petr Martens\AppData\Roaming\BBMS_EXCEPTION.txt
2010-11-20 22:27 - 2014-12-14 23:03 - 0002310 _____ () C:\Users\Petr Martens\AppData\Roaming\Rim.Desktop.Exception.log
2010-11-20 22:27 - 2013-03-27 21:06 - 0007461 _____ () C:\Users\Petr Martens\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2011-10-14 23:02 - 2014-12-14 23:03 - 0002233 _____ () C:\Users\Petr Martens\AppData\Roaming\Rim.DesktopHelper.Exception.log
2012-07-01 10:37 - 2012-07-01 10:38 - 0000077 _____ () C:\Users\Petr Martens\AppData\Roaming\Rim.Transcoder.Exception.log
2012-12-24 16:33 - 2012-12-24 16:33 - 3218744 _____ () C:\Users\Petr Martens\AppData\Local\ASbs.ac
2013-05-03 18:28 - 2013-05-04 10:18 - 0000079 _____ () C:\Users\Petr Martens\AppData\Local\CrystalDiskMark30.ini
2010-10-28 20:39 - 2013-01-26 14:04 - 0010240 _____ () C:\Users\Petr Martens\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-04-03 16:51 - 2014-07-06 19:43 - 0003254 _____ () C:\Users\Petr Martens\AppData\Local\mrdownloader.err
2014-04-03 16:22 - 2015-02-13 20:45 - 0001096 _____ () C:\Users\Petr Martens\AppData\Local\mrdownloader.nast
2010-10-25 18:06 - 2012-10-07 20:45 - 0007602 _____ () C:\Users\Petr Martens\AppData\Local\resmon.resmoncfg
2011-05-23 21:57 - 2015-02-13 20:45 - 0220894 _____ () C:\Users\Petr Martens\AppData\Local\SRDownloader.err
2011-05-23 20:49 - 2015-02-13 20:45 - 0001152 _____ () C:\Users\Petr Martens\AppData\Local\SRDownloader.nast
2010-10-16 17:40 - 2015-04-10 20:45 - 0029598 _____ () C:\ProgramData\hpzinstall.log
Some files in TEMP:
====================
C:\Users\Petr Martens\AppData\Local\Temp\libeay32.dll
C:\Users\Petr Martens\AppData\Local\Temp\msvcr120.dll
C:\Users\Petr Martens\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000Core.job => C:\Users\Petr Martens\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000UA.job => C:\Users\Petr Martens\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Norton Internet Security (Disabled - Out of date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Disabled - Out of date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
FW: Norton Internet Security (Disabled) {6BFC5632-188D-B806-D13E-C607121B42A0}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Petr Martens\Desktop" je 488 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-12-02 22:38 - 2016-12-02 22:38 - 00067365 _____ C:\Users\Petr Martens\Desktop\FRST.txt
2016-12-02 22:37 - 2016-12-02 22:37 - 00000000 ____D C:\Users\Petr Martens\Desktop\FRST-OlderVersion
2016-12-01 21:58 - 2016-12-01 21:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-11-30 16:09 - 2016-11-30 16:09 - 00000000 ___HD C:\OneDriveTemp
2016-11-30 08:32 - 2016-12-01 19:08 - 00000000 ____D C:\Program Files\Recuva
2016-11-30 08:32 - 2016-11-30 08:32 - 00001664 _____ C:\Users\Public\Desktop\Recuva.lnk
2016-11-30 08:32 - 2016-11-30 08:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2016-11-28 15:05 - 2016-11-28 15:05 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2016-11-28 15:05 - 2016-11-28 15:05 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2016-11-28 15:05 - 2016-11-28 15:05 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2016-11-28 15:05 - 2016-11-28 15:05 - 00042096 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2016-11-27 09:11 - 2016-11-30 08:28 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\{978D6437-0F2E-49C8-83E7-DA0F2697DEBF}
2016-11-27 01:15 - 2016-11-27 01:15 - 00007203 _____ C:\Users\Petr Martens\Desktop\AdwCleaner[C0].txt
2016-11-26 20:03 - 2016-11-27 01:07 - 00000000 ____D C:\AdwCleaner
2016-11-26 20:03 - 2016-11-26 20:03 - 03910208 _____ C:\Users\Petr Martens\Desktop\adwcleaner_6.030.exe
2016-11-26 18:02 - 2016-11-26 18:02 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\Pegasys Inc
2016-11-26 15:39 - 2016-11-26 15:39 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\{96B56145-2213-4905-83A9-E6B0DA423D9A}
2016-11-26 03:38 - 2016-11-26 03:38 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\{179D2F60-2339-4DB4-AF1C-191EDA3A7AEE}
2016-11-25 21:19 - 2016-11-25 21:19 - 00013917 _____ C:\Users\Petr Martens\Desktop\Addition.rar
2016-11-25 21:16 - 2016-11-25 21:16 - 00000000 ____D C:\FRST
2016-11-25 21:15 - 2016-12-02 22:37 - 02411520 _____ (Farbar) C:\Users\Petr Martens\Desktop\FRST64.exe
2016-11-25 18:17 - 2016-11-25 18:17 - 00000000 ____D C:\Windows\System32\Tasks\Norton Internet Security
2016-11-25 18:03 - 2016-11-25 18:03 - 00003234 _____ C:\Windows\System32\Tasks\Norton WSC Integration
2016-11-25 16:06 - 2016-09-12 22:17 - 00077032 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-11-25 16:06 - 2016-09-12 22:08 - 01226752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-11-25 16:06 - 2016-09-09 16:54 - 01629184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-11-25 16:06 - 2016-09-09 16:54 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-11-25 16:06 - 2016-09-09 16:54 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-11-25 16:06 - 2016-09-09 16:54 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-11-25 16:06 - 2016-09-09 16:54 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-11-25 16:06 - 2016-09-09 16:54 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-11-25 16:06 - 2016-09-09 16:54 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-11-25 16:06 - 2016-09-02 16:40 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-11-25 16:06 - 2016-09-02 16:35 - 05548264 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-11-25 16:06 - 2016-09-02 16:35 - 00706280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-11-25 16:06 - 2016-09-02 16:35 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-11-25 16:06 - 2016-09-02 16:35 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-11-25 16:06 - 2016-09-02 16:34 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-11-25 16:06 - 2016-09-02 16:31 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:21 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-11-25 16:06 - 2016-09-02 16:21 - 03944680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-11-25 16:06 - 2016-09-02 16:18 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 16:02 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-11-25 16:06 - 2016-09-02 16:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-11-25 16:06 - 2016-09-02 16:02 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-11-25 16:06 - 2016-09-02 16:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-11-25 16:06 - 2016-09-02 15:58 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-11-25 16:06 - 2016-09-02 15:57 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-11-25 16:06 - 2016-09-02 15:55 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-11-25 16:06 - 2016-09-02 15:54 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-11-25 16:06 - 2016-09-02 15:54 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-11-25 16:06 - 2016-09-02 15:53 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-11-25 16:06 - 2016-09-02 15:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-11-25 16:06 - 2016-09-02 15:53 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-11-25 16:06 - 2016-09-02 15:49 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-11-25 16:06 - 2016-09-02 15:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-11-25 16:06 - 2016-09-02 15:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-11-25 16:06 - 2016-09-02 15:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-11-25 16:06 - 2016-09-02 15:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-11-25 16:06 - 2016-09-02 15:48 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 15:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 15:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-11-25 16:06 - 2016-09-02 15:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-11-25 16:06 - 2016-08-16 18:36 - 01009152 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-11-25 16:06 - 2016-08-16 03:48 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-11-25 16:06 - 2016-08-16 03:35 - 03218432 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-11-25 16:06 - 2016-08-12 17:26 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-11-25 16:06 - 2016-08-12 17:26 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-11-25 16:06 - 2016-08-12 17:26 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-11-25 16:06 - 2016-06-26 01:27 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-11-25 16:06 - 2016-06-26 01:27 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-11-25 16:06 - 2016-06-26 01:27 - 00344576 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2016-11-25 16:06 - 2016-06-26 01:27 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2016-11-25 16:06 - 2016-06-26 01:27 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2016-11-25 16:06 - 2016-06-25 20:54 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2016-11-25 16:06 - 2016-06-25 20:53 - 00297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2016-11-25 16:06 - 2016-06-25 20:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2016-11-25 16:06 - 2016-06-25 20:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2016-11-25 16:06 - 2016-06-25 20:41 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2016-11-25 16:06 - 2016-05-11 18:02 - 00483840 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2016-11-25 16:06 - 2016-05-11 16:19 - 00363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2016-11-25 16:06 - 2016-04-14 14:49 - 00603648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-11-25 16:06 - 2016-04-14 14:21 - 00647680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-11-25 16:06 - 2016-04-09 08:01 - 00986344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-11-25 16:06 - 2016-04-09 08:01 - 00264936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-11-25 16:06 - 2016-04-09 07:57 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-11-25 16:06 - 2016-03-17 23:56 - 02084864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-11-25 16:06 - 2016-03-17 23:28 - 01414144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-11-25 16:06 - 2016-03-16 19:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-11-25 16:06 - 2016-03-16 19:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-11-25 16:06 - 2016-03-16 19:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-11-25 16:06 - 2016-03-16 01:16 - 00760320 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-11-25 16:06 - 2016-03-16 01:16 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-11-25 16:06 - 2016-03-16 00:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2016-11-25 16:06 - 2016-03-06 19:53 - 01885696 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-11-25 16:06 - 2016-03-06 19:53 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2016-11-25 16:06 - 2016-03-06 19:38 - 01240576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-11-25 16:06 - 2016-03-06 19:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2016-11-25 16:06 - 2016-02-09 10:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-11-25 16:06 - 2016-02-05 02:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-11-25 16:06 - 2016-02-04 19:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-11-25 16:06 - 2016-02-03 19:07 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-11-25 16:06 - 2016-02-02 19:57 - 00511488 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2016-11-25 16:06 - 2016-01-21 01:51 - 00073664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2016-11-25 16:06 - 2016-01-11 20:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-11-25 16:06 - 2015-12-20 19:50 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-11-25 16:06 - 2015-12-20 19:50 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2016-11-25 16:06 - 2015-12-20 15:08 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-11-25 16:06 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-11-25 16:05 - 2016-08-29 16:31 - 14183424 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-11-25 16:05 - 2016-08-29 16:31 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-11-25 16:05 - 2016-08-29 16:31 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-11-25 16:05 - 2016-08-29 16:12 - 12880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-11-25 16:05 - 2016-08-29 16:12 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-11-25 16:05 - 2016-08-29 16:12 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-11-25 16:05 - 2016-08-29 16:04 - 03229696 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-11-25 16:05 - 2016-08-29 15:55 - 02972672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-11-25 16:05 - 2016-08-16 21:40 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-11-25 16:05 - 2016-08-16 21:40 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2016-11-25 16:05 - 2016-08-16 21:40 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2016-11-25 16:05 - 2016-08-16 21:40 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-11-25 16:05 - 2016-08-16 21:40 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2016-11-25 16:05 - 2016-08-16 21:40 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2016-11-25 16:05 - 2016-08-16 21:40 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2016-11-25 16:05 - 2016-07-07 16:36 - 01896168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-11-25 16:05 - 2016-07-07 16:36 - 00377576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2016-11-25 16:05 - 2016-07-07 16:36 - 00287976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2016-11-25 16:05 - 2016-07-07 16:08 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2016-11-25 16:05 - 2016-07-01 16:31 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-11-25 16:05 - 2016-07-01 16:31 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-11-25 16:05 - 2016-07-01 16:13 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-11-25 16:05 - 2016-07-01 16:13 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2016-11-25 16:05 - 2016-05-12 18:15 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2016-11-25 16:05 - 2016-05-12 18:14 - 00794624 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-11-25 16:05 - 2016-05-12 18:14 - 00793088 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2016-11-25 16:05 - 2016-05-12 18:14 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2016-11-25 16:05 - 2016-05-12 18:14 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2016-11-25 16:05 - 2016-05-12 18:14 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2016-11-25 16:05 - 2016-05-12 18:14 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2016-11-25 16:05 - 2016-05-12 18:14 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2016-11-25 16:05 - 2016-05-12 16:18 - 00591872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2016-11-25 16:05 - 2016-05-12 16:18 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2016-11-25 16:05 - 2016-05-12 16:18 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2016-11-25 16:05 - 2016-05-12 16:18 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll
2016-11-25 16:05 - 2016-05-12 16:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2016-11-25 16:05 - 2016-05-12 16:06 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe
2016-11-25 16:05 - 2016-05-12 15:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll
2016-11-25 16:05 - 2016-05-12 15:57 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.exe
2016-11-25 16:05 - 2016-05-11 18:02 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-11-25 16:05 - 2016-05-11 18:02 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-11-25 16:05 - 2016-05-11 18:02 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-11-25 16:05 - 2016-05-11 16:19 - 00351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-11-25 16:05 - 2016-05-11 16:19 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-11-25 16:05 - 2016-05-11 16:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2016-11-25 16:05 - 2016-05-11 16:11 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2016-11-25 16:05 - 2016-05-11 16:01 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
2016-11-25 16:05 - 2016-05-11 15:58 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2016-11-25 16:01 - 2016-05-18 17:10 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-11-25 16:01 - 2016-05-18 17:09 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-11-25 16:00 - 2016-03-09 20:00 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-11-25 16:00 - 2016-03-09 19:54 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-11-25 16:00 - 2016-03-09 19:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-11-25 16:00 - 2016-03-09 19:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2016-11-25 15:54 - 2016-04-09 05:20 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-11-25 15:54 - 2016-04-09 04:52 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-11-25 15:41 - 2016-06-06 17:50 - 01483264 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-11-25 15:41 - 2016-06-06 17:50 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-11-25 15:41 - 2016-06-06 17:50 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-11-25 15:41 - 2016-06-06 17:50 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-11-25 15:41 - 2016-06-06 16:23 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-11-25 15:41 - 2016-06-06 16:23 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-11-25 15:41 - 2016-06-06 16:23 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2016-11-25 15:41 - 2016-06-06 16:23 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2016-11-25 15:41 - 2016-05-13 23:09 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-11-25 15:41 - 2016-05-13 23:09 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-11-25 15:41 - 2016-05-13 23:09 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-11-25 15:41 - 2016-05-13 23:07 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-11-25 15:41 - 2016-05-13 22:55 - 02607104 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-11-25 15:41 - 2016-05-13 22:53 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-11-25 15:41 - 2016-05-13 22:53 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-11-25 15:41 - 2016-05-13 22:52 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-11-25 15:41 - 2016-05-13 22:52 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-11-25 15:41 - 2016-05-13 22:52 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-11-25 15:41 - 2016-05-13 22:52 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-11-25 15:41 - 2016-05-13 22:50 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-11-25 15:41 - 2016-05-13 22:38 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-11-25 15:41 - 2016-05-13 22:38 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-11-25 15:41 - 2016-05-13 22:38 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-11-25 15:41 - 2016-05-13 22:38 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-11-25 15:41 - 2016-05-12 18:14 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-11-25 15:41 - 2016-05-12 18:14 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-11-25 15:41 - 2016-05-12 16:18 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-11-25 15:41 - 2016-05-12 16:18 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2016-11-25 15:41 - 2016-05-12 16:18 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-11-25 15:41 - 2016-05-12 14:05 - 00459640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-11-25 15:41 - 2016-05-12 14:05 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-11-25 15:41 - 2016-05-12 14:04 - 00249352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-11-25 15:41 - 2016-05-04 18:21 - 00114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-11-25 15:41 - 2016-05-04 18:17 - 03244032 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-11-25 15:41 - 2016-05-04 18:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-11-25 15:41 - 2016-05-04 18:17 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-11-25 15:41 - 2016-05-04 18:17 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2016-11-25 15:41 - 2016-05-04 18:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2016-11-25 15:41 - 2016-05-04 18:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2016-11-25 15:41 - 2016-05-04 18:16 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-11-25 15:41 - 2016-05-04 16:04 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-11-25 15:41 - 2016-05-04 15:55 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-11-25 15:40 - 2016-07-22 15:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-11-25 15:40 - 2016-07-22 15:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2016-11-25 15:38 - 2016-11-25 15:38 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\{2E271C69-8237-4988-B0F0-9D63E3418319}
2016-11-25 14:50 - 2016-11-25 14:50 - 00003252 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task
2016-11-25 13:54 - 2016-11-25 13:56 - 30659457 _____ C:\Users\Petr Martens\Desktop\Windows6.1-KB3172605-x64.msu
2016-11-25 13:53 - 2016-11-25 13:54 - 09542472 _____ C:\Users\Petr Martens\Desktop\Windows6.1-KB3177467-x64.msu
2016-11-24 22:42 - 2016-11-25 00:10 - 00000000 ____D C:\Users\Petr Martens\SecurityScans
2016-11-24 22:41 - 2016-11-24 22:41 - 00001129 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Baseline Security Analyzer 2.3.lnk
2016-11-24 22:41 - 2016-11-24 22:41 - 00001117 _____ C:\Users\Public\Desktop\Microsoft Baseline Security Analyzer 2.3.lnk
2016-11-24 22:41 - 2016-11-24 22:41 - 00000000 ____D C:\Program Files\Microsoft Baseline Security Analyzer 2
2016-11-24 20:46 - 2016-11-24 20:46 - 00000830 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-11-24 19:11 - 2016-11-24 19:11 - 00000000 ____D C:\Users\Petr Martens\AppData\LocalLow\AMD
2016-11-24 19:03 - 2016-11-24 19:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2016-11-24 19:00 - 2016-11-15 22:20 - 00141280 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2016-11-24 19:00 - 2016-11-15 22:20 - 00125288 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2016-11-24 19:00 - 2016-11-15 22:20 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2016-11-24 19:00 - 2016-11-15 22:20 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2016-11-24 19:00 - 2016-11-15 22:20 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2016-11-24 19:00 - 2016-11-15 22:20 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2016-11-24 19:00 - 2016-11-15 22:19 - 00145400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 02481032 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00520072 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2016-11-24 19:00 - 2016-11-15 22:18 - 00286600 _____ (AMD) C:\Windows\system32\atitmm64.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00281992 _____ C:\Windows\system32\dgtrayicon.exe
2016-11-24 19:00 - 2016-11-15 22:18 - 00275336 _____ C:\Windows\system32\GameManager64.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00136584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00117640 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00110472 _____ (AMD) C:\Windows\system32\atimuixx.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00059784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2016-11-24 19:00 - 2016-11-15 22:18 - 00020360 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 15728008 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 14318984 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 09926536 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdvlk64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 08065928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdvlk32.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 02163592 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00525704 _____ (AMD) C:\Windows\system32\atieclxx.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00458632 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00402312 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00349064 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00289160 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00230280 _____ C:\Windows\system32\atieah64.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00208264 _____ C:\Windows\SysWOW64\atieah32.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00201608 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00160136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00155016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amduve64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00135048 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00134536 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amduve32.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00129416 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00122760 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00108936 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00107400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00107400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00082824 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmcl64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00078728 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00072072 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00068488 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00067464 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2016-11-24 19:00 - 2016-11-15 22:17 - 00066952 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00066440 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmcl32.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00065416 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2016-11-24 19:00 - 2016-11-15 22:17 - 00054664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 48824712 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 27489672 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 09311624 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 07363976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 01333128 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00998280 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00845192 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00679304 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00305544 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2016-11-24 19:00 - 2016-11-15 22:16 - 00269192 _____ C:\Windows\system32\clinfo.exe
2016-11-24 19:00 - 2016-11-15 22:16 - 00267656 _____ C:\Windows\system32\hsa-thunk64.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00248200 _____ C:\Windows\system32\amdgfxinfo64.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00233352 _____ C:\Windows\SysWOW64\hsa-thunk.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00221064 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00112520 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-11-24 19:00 - 2016-11-15 22:16 - 00103304 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-11-24 19:00 - 2016-11-15 22:15 - 33248136 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2016-11-24 19:00 - 2016-11-15 22:15 - 27295624 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2016-11-24 19:00 - 2016-11-15 22:13 - 26560512 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2016-11-24 19:00 - 2016-11-15 21:46 - 00760312 _____ C:\Windows\SysWOW64\atiapfxx.blb
2016-11-24 19:00 - 2016-11-15 21:46 - 00760312 _____ C:\Windows\system32\atiapfxx.blb
2016-11-24 19:00 - 2016-11-15 21:35 - 03437632 _____ C:\Windows\system32\atiumd6a.cap
2016-11-24 19:00 - 2016-11-15 21:31 - 03471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2016-11-24 19:00 - 2016-10-21 19:22 - 00177280 _____ C:\Windows\system32\ativce03.dat
2016-11-24 19:00 - 2016-10-21 19:22 - 00175584 _____ C:\Windows\system32\amde31a.dat
2016-11-24 19:00 - 2016-10-21 18:00 - 00166560 _____ C:\Windows\system32\amde34b.dat
2016-11-24 19:00 - 2016-10-21 18:00 - 00166560 _____ C:\Windows\system32\amde34a.dat
2016-11-24 19:00 - 2016-10-20 17:10 - 00100832 _____ C:\Windows\system32\ativce02.dat
2016-11-24 19:00 - 2016-10-14 20:36 - 00118320 _____ C:\Windows\system32\kapp_ci.sbin
2016-11-24 17:10 - 2016-01-22 07:18 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-11-24 17:10 - 2016-01-22 07:18 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2016-11-24 17:10 - 2016-01-22 07:04 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2016-11-24 17:10 - 2016-01-22 07:04 - 00535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2016-11-24 16:29 - 2016-11-30 15:56 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2016-11-24 16:24 - 2016-11-24 16:24 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-11-24 16:24 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-11-24 16:24 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-11-24 16:24 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-11-24 16:24 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-11-24 15:57 - 2016-12-02 22:34 - 00000920 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-11-24 15:57 - 2016-12-02 08:34 - 00000916 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-11-24 15:57 - 2016-12-01 21:58 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-11-24 15:57 - 2016-11-30 08:29 - 00003916 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
2016-11-24 15:57 - 2016-11-30 08:29 - 00003664 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
2016-11-24 15:56 - 2016-11-24 15:56 - 00690072 _____ (Dropbox, Inc.) C:\Users\Petr Martens\Downloads\DropboxInstaller.exe
2016-11-24 15:55 - 2016-11-30 18:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-24 15:55 - 2016-11-30 18:25 - 00000000 ____D C:\Users\Petr Martens\AppData\LocalLow\Mozilla
2016-11-24 15:32 - 2016-11-24 15:32 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2016-11-24 15:32 - 2016-11-24 15:32 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2016-11-24 15:07 - 2016-11-24 15:19 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2016-11-24 15:07 - 2016-11-24 15:19 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2016-11-24 15:07 - 2016-11-24 15:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-11-24 15:07 - 2016-11-24 15:07 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-11-24 15:02 - 2016-11-24 15:02 - 00002156 _____ C:\Users\Public\Desktop\Google Earth.lnk
2016-11-24 15:02 - 2016-11-24 15:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-12-02 22:29 - 2011-07-27 20:39 - 00000990 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000UA.job
2016-12-02 22:26 - 2010-10-19 22:12 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\Skype
2016-12-02 22:25 - 2012-03-30 22:36 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-12-02 21:59 - 2011-02-26 22:52 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-12-02 20:29 - 2011-07-27 20:39 - 00000938 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000Core.job
2016-12-02 20:24 - 2014-05-04 17:34 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\Raptr
2016-12-02 19:34 - 2012-04-14 19:55 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\LogMeIn Hamachi
2016-12-02 18:42 - 2010-09-21 20:18 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\vlc
2016-12-02 17:27 - 2011-02-26 22:52 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\Google
2016-12-02 14:59 - 2011-02-26 22:52 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-12-02 12:48 - 2009-07-14 16:18 - 00668882 _____ C:\Windows\system32\perfh005.dat
2016-12-02 12:48 - 2009-07-14 16:18 - 00141542 _____ C:\Windows\system32\perfc005.dat
2016-12-02 12:48 - 2009-07-14 06:13 - 01584626 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-02 12:48 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-12-02 12:26 - 2010-09-14 20:40 - 00000000 ____D C:\Users\Petr Martens
2016-12-02 11:59 - 2015-08-02 10:45 - 00000000 ____D C:\Windows\System32\Tasks\Remediation
2016-12-02 03:54 - 2009-07-14 05:45 - 00023504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-02 03:54 - 2009-07-14 05:45 - 00023504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-01 21:58 - 2011-06-04 09:55 - 00000000 ___RD C:\Users\Petr Martens\Dropbox
2016-11-30 16:09 - 2015-02-22 11:37 - 00000000 ___RD C:\Users\Petr Martens\OneDrive
2016-11-30 16:09 - 2012-06-20 20:37 - 00000000 ____D C:\Users\Petr Martens\Tracing
2016-11-30 16:09 - 2010-10-19 21:49 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\ICQ
2016-11-30 16:09 - 2010-09-26 08:27 - 00949541 _____ C:\Windows\system32\oodbs.lor
2016-11-30 16:09 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-30 11:52 - 2011-04-22 20:57 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-11-27 01:07 - 2010-10-17 19:46 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\CrashDumps
2016-11-26 21:13 - 2014-12-02 23:02 - 00000000 ____D C:\Users\Petr Martens\Desktop\narozkazkrale
2016-11-26 20:53 - 2010-10-26 18:03 - 00000000 ____D C:\Users\Petr Martens\Documents\SMS
2016-11-26 18:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2016-11-26 14:52 - 2009-07-14 05:45 - 05045456 _____ C:\Windows\system32\FNTCACHE.DAT
2016-11-26 14:50 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-11-26 14:50 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Dism
2016-11-26 13:49 - 2011-04-22 23:44 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\TeamViewer
2016-11-26 10:45 - 2013-09-21 09:29 - 01559340 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-11-26 10:39 - 2014-12-13 19:13 - 00000000 ____D C:\Windows\system32\appraiser
2016-11-26 10:39 - 2014-04-23 20:41 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-11-26 09:43 - 2009-07-14 16:37 - 00000000 ____D C:\Windows\ShellNew
2016-11-25 18:03 - 2015-10-30 23:18 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
2016-11-25 18:03 - 2015-10-28 18:14 - 00002429 _____ C:\Users\Public\Desktop\Norton Internet Security.lnk
2016-11-25 18:03 - 2015-10-28 18:14 - 00000000 ____D C:\Windows\system32\Drivers\NISx64
2016-11-25 18:03 - 2012-05-09 19:11 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-11-25 18:03 - 2012-05-09 19:11 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-11-25 16:30 - 2013-07-11 19:36 - 00000000 ____D C:\Windows\system32\MRT
2016-11-25 16:30 - 2012-04-18 19:10 - 00000039 _____ C:\Windows\vbaddin.ini
2016-11-25 16:24 - 2010-09-15 16:25 - 141011376 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-11-25 16:14 - 2012-05-09 19:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-11-25 16:12 - 2009-07-14 03:34 - 00000513 _____ C:\Windows\win.ini
2016-11-25 14:50 - 2015-02-22 11:37 - 00002204 _____ C:\Users\Petr Martens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-11-25 01:09 - 2015-10-28 18:14 - 00100592 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2016-11-25 01:09 - 2015-10-28 18:14 - 00008319 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2016-11-25 00:10 - 2009-07-14 05:45 - 00000000 ____D C:\Windows\ServiceProfiles
2016-11-24 23:33 - 2013-03-03 16:59 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\uTorrent
2016-11-24 23:33 - 2010-10-12 09:38 - 00000000 ____D C:\Windows\Minidump
2016-11-24 23:33 - 2010-09-14 21:22 - 00000000 ____D C:\Windows\Panther
2016-11-24 23:12 - 2014-04-18 18:34 - 00000000 ____D C:\Users\Petr Martens\Documents\DayZ
2016-11-24 20:47 - 2010-09-15 20:54 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\ElevatedDiagnostics
2016-11-24 20:46 - 2013-06-05 19:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-11-24 20:42 - 2010-11-27 20:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 2.6
2016-11-24 20:24 - 2011-07-27 20:39 - 00003974 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000UA
2016-11-24 20:24 - 2011-07-27 20:39 - 00003578 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000Core
2016-11-24 19:06 - 2015-11-28 13:39 - 00004224 _____ C:\Windows\System32\Tasks\AMD Updater
2016-11-24 19:03 - 2013-12-27 18:53 - 00000000 ____D C:\Program Files\AMD
2016-11-24 18:59 - 2012-04-22 22:20 - 00000000 ____D C:\AMD
2016-11-24 18:06 - 2015-08-02 10:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-11-24 18:06 - 2014-10-14 20:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2016-11-24 18:06 - 2014-10-14 19:59 - 00000000 ____D C:\Program Files (x86)\Java
2016-11-24 18:06 - 2013-10-19 14:44 - 00000000 ____D C:\ProgramData\Oracle
2016-11-24 18:05 - 2015-08-02 10:45 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-11-24 16:41 - 2015-11-28 13:38 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\AMD
2016-11-24 16:40 - 2016-01-15 22:09 - 00000000 ____D C:\Program Files (x86)\AMD
2016-11-24 16:30 - 2015-06-21 10:49 - 00000000 ____D C:\Users\Petr Martens\AppData\Local\Dropbox
2016-11-24 16:25 - 2012-03-30 22:36 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-11-24 16:25 - 2012-03-30 22:36 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-11-24 16:25 - 2011-11-20 13:37 - 00000000 ____D C:\Windows\system32\Macromed
2016-11-24 16:25 - 2011-05-22 21:14 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-11-24 16:25 - 2010-09-14 22:09 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-11-24 16:16 - 2014-07-18 22:56 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-11-24 16:15 - 2014-07-18 22:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-11-24 16:15 - 2014-07-18 22:55 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-11-24 16:15 - 2011-12-30 22:50 - 00001124 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-11-24 16:01 - 2011-07-27 20:40 - 00002410 _____ C:\Users\Petr Martens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-24 15:58 - 2011-06-04 09:55 - 00001232 _____ C:\Users\Petr Martens\Desktop\Dropbox.lnk
2016-11-24 15:58 - 2011-06-04 09:54 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\Dropbox
2016-11-24 15:53 - 2012-12-14 15:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-24 15:32 - 2011-10-14 21:25 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\TS3Client
2016-11-24 15:32 - 2011-10-14 21:24 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2016-11-24 15:32 - 2011-06-19 08:42 - 00002563 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-11-24 15:30 - 2014-10-14 21:42 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-11-24 15:30 - 2010-10-19 22:12 - 00000000 ____D C:\ProgramData\Skype
2016-11-24 15:26 - 2015-12-06 14:43 - 00000979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-11-24 15:26 - 2015-12-06 14:43 - 00000967 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2016-11-24 15:02 - 2011-02-26 22:52 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-24 14:55 - 2013-03-09 14:30 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2016-11-24 14:54 - 2011-02-26 22:52 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-11-24 14:54 - 2011-02-26 22:52 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-11-24 14:53 - 2014-12-25 15:58 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-24 14:52 - 2009-07-14 06:08 - 00032576 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-11-24 14:49 - 2016-03-06 12:04 - 00000000 ____D C:\Users\Petr Martens\AppData\Roaming\PlaysTV
2016-11-24 14:49 - 2014-11-23 09:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2016-11-15 22:21 - 2014-12-13 19:57 - 09981352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2016-11-15 22:21 - 2012-03-09 05:35 - 10977392 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2016-11-15 22:20 - 2015-08-02 10:52 - 07213248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2016-11-15 22:20 - 2015-08-02 10:52 - 00123776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2016-11-15 22:20 - 2014-10-07 18:24 - 00139720 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2016-11-15 22:20 - 2012-03-09 05:11 - 08847888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2016-11-15 22:20 - 2012-03-09 04:57 - 00170072 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2016-11-15 22:20 - 2012-03-09 04:56 - 00151056 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2016-11-15 22:19 - 2014-05-04 17:32 - 00124776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2016-11-15 22:18 - 2016-01-15 22:07 - 00240008 _____ C:\Windows\SysWOW64\GameManager32.dll
2016-11-15 22:18 - 2015-08-02 10:52 - 00020360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2016-11-15 22:18 - 2014-10-07 18:24 - 09114104 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2016-11-15 22:18 - 2012-03-09 05:45 - 10965056 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2016-11-15 22:17 - 2014-12-13 19:57 - 00175496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2016-11-15 22:17 - 2012-03-09 06:16 - 01281448 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2016-11-15 22:17 - 2012-03-09 06:14 - 01561632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2016-11-15 22:16 - 2016-09-16 20:40 - 00892296 _____ (AMD) C:\Windows\system32\coinst_16.40.dll
2016-11-15 22:16 - 2015-08-02 10:52 - 21640584 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll
2016-11-15 22:16 - 2014-12-13 19:57 - 38268808 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2016-11-15 22:16 - 2012-04-06 02:11 - 00998280 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2016-11-11 13:47 - 2012-07-08 17:53 - 00034720 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
==================== Files in the root of some directories =======
2010-11-20 22:59 - 2010-11-20 22:59 - 0000158 _____ () C:\Users\Petr Martens\AppData\Roaming\BBMS_EXCEPTION.txt
2010-11-20 22:27 - 2014-12-14 23:03 - 0002310 _____ () C:\Users\Petr Martens\AppData\Roaming\Rim.Desktop.Exception.log
2010-11-20 22:27 - 2013-03-27 21:06 - 0007461 _____ () C:\Users\Petr Martens\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2011-10-14 23:02 - 2014-12-14 23:03 - 0002233 _____ () C:\Users\Petr Martens\AppData\Roaming\Rim.DesktopHelper.Exception.log
2012-07-01 10:37 - 2012-07-01 10:38 - 0000077 _____ () C:\Users\Petr Martens\AppData\Roaming\Rim.Transcoder.Exception.log
2012-12-24 16:33 - 2012-12-24 16:33 - 3218744 _____ () C:\Users\Petr Martens\AppData\Local\ASbs.ac
2013-05-03 18:28 - 2013-05-04 10:18 - 0000079 _____ () C:\Users\Petr Martens\AppData\Local\CrystalDiskMark30.ini
2010-10-28 20:39 - 2013-01-26 14:04 - 0010240 _____ () C:\Users\Petr Martens\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-04-03 16:51 - 2014-07-06 19:43 - 0003254 _____ () C:\Users\Petr Martens\AppData\Local\mrdownloader.err
2014-04-03 16:22 - 2015-02-13 20:45 - 0001096 _____ () C:\Users\Petr Martens\AppData\Local\mrdownloader.nast
2010-10-25 18:06 - 2012-10-07 20:45 - 0007602 _____ () C:\Users\Petr Martens\AppData\Local\resmon.resmoncfg
2011-05-23 21:57 - 2015-02-13 20:45 - 0220894 _____ () C:\Users\Petr Martens\AppData\Local\SRDownloader.err
2011-05-23 20:49 - 2015-02-13 20:45 - 0001152 _____ () C:\Users\Petr Martens\AppData\Local\SRDownloader.nast
2010-10-16 17:40 - 2015-04-10 20:45 - 0029598 _____ () C:\ProgramData\hpzinstall.log
Some files in TEMP:
====================
C:\Users\Petr Martens\AppData\Local\Temp\libeay32.dll
C:\Users\Petr Martens\AppData\Local\Temp\msvcr120.dll
C:\Users\Petr Martens\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000Core.job => C:\Users\Petr Martens\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000UA.job => C:\Users\Petr Martens\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Norton Internet Security (Disabled - Out of date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Disabled - Out of date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
FW: Norton Internet Security (Disabled) {6BFC5632-188D-B806-D13E-C607121B42A0}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Petr Martens\Desktop" je 488 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o preventivní kontrolu logu
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000UA.job
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000Core.job
C:\Users\Petr Martens\AppData\Local\CrystalDiskMark30.ini
C:\Users\Petr Martens\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Petr Martens\AppData\Local\Temp
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Nektra OEAPI] => [X]
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [OEXPRESS] => [X]
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [WEBTRAN] => [X]
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\MountPoints2: {ed9f482c-da03-11df-a2bb-806e6f6e6963} - I:\score.exe
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\MountPoints2: {f0e0dc25-c5a5-11df-a714-00221548b87a} - J:\OblivionLauncher.exe
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM ... -SearchBox
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> DefaultScope value is missing
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-11-25] (Google Inc.)
C:\Program Files (x86)\Google\Google Toolbar
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-11-25] (Google Inc.)
Toolbar: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> No Name - {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No File
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\wr7n96de.default -> hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q=
FF Keyword.URL: Mozilla\Firefox\Profiles\wr7n96de.default -> hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q=
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\pdf.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\gcswf32.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll => No File
CHR Plugin: (Norton Confidential) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.3.7_0\npcoplgn.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => No File
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll => No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll => No File
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll => No File
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2012-10-03] [UpdateUrl: hxxp://www.interoperabilitybridges.com/ ... pdates.xml] <==== ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [ihenkjeihefokohmemphikjnjbmegdik] - "C:\Program Files (x86)\Sony\Media Go\MediaGoDetector.crx" <not found>
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
EmptyTemp
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o preventivní kontrolu logu
Děkuji, posílám log:
Fix result of Farbar Recovery Scan Tool (x64) Version: 02-12-2016
Ran by Petr Martens (03-12-2016 20:10:09) Run:1
Running from C:\Users\Petr Martens\Desktop
Loaded Profiles: Petr Martens & NeroMediaHomeUser.4 (Available Profiles: Petr Martens & NeroMediaHomeUser.4 & Admin)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000UA.job
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000Core.job
C:\Users\Petr Martens\AppData\Local\CrystalDiskMark30.ini
C:\Users\Petr Martens\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Petr Martens\AppData\Local\Temp
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Nektra OEAPI] => [X]
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [OEXPRESS] => [X]
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [WEBTRAN] => [X]
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\MountPoints2: {ed9f482c-da03-11df-a2bb-806e6f6e6963} - I:\score.exe
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\MountPoints2: {f0e0dc25-c5a5-11df-a714-00221548b87a} - J:\OblivionLauncher.exe
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM ... -SearchBox
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> DefaultScope value is missing
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-11-25] (Google Inc.)
C:\Program Files (x86)\Google\Google Toolbar
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-11-25] (Google Inc.)
Toolbar: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> No Name - {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No File
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\wr7n96de.default -> hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q=
FF Keyword.URL: Mozilla\Firefox\Profiles\wr7n96de.default -> hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q=
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\pdf.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\gcswf32.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll => No File
CHR Plugin: (Norton Confidential) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.3.7_0\npcoplgn.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => No File
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll => No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll => No File
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll => No File
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2012-10-03] [UpdateUrl: hxxp://www.interoperabilitybridges.com/ ... pdates.xml] <==== ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [ihenkjeihefokohmemphikjnjbmegdik] - "C:\Program Files (x86)\Sony\Media Go\MediaGoDetector.crx" <not found>
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
EmptyTemp
End
*****************
C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => moved successfully
C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA => moved successfully
C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000UA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000Core.job => moved successfully
C:\Users\Petr Martens\AppData\Local\CrystalDiskMark30.ini => moved successfully
C:\Users\Petr Martens\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
"C:\Users\Petr Martens\AppData\Local\Temp" folder move:
Could not move "C:\Users\Petr Martens\AppData\Local\Temp" => Scheduled to move on reboot.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Nektra OEAPI => value removed successfully
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\Software\Microsoft\Windows\CurrentVersion\Run\\OEXPRESS => value removed successfully
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\Software\Microsoft\Windows\CurrentVersion\Run\\WEBTRAN => value removed successfully
"HKU\S-1-5-21-850677638-2337762993-1318839679-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ed9f482c-da03-11df-a2bb-806e6f6e6963}" => key removed successfully
HKCR\CLSID\{ed9f482c-da03-11df-a2bb-806e6f6e6963} => key not found.
"HKU\S-1-5-21-850677638-2337762993-1318839679-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f0e0dc25-c5a5-11df-a714-00221548b87a}" => key removed successfully
HKCR\CLSID\{f0e0dc25-c5a5-11df-a714-00221548b87a} => key not found.
"HKU\S-1-5-21-850677638-2337762993-1318839679-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value removed successfully
"HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => key removed successfully
C:\Program Files (x86)\Google\Google Toolbar => moved successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value removed successfully
"HKCR\Wow6432Node\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => key removed successfully
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} => value removed successfully
HKCR\CLSID\{8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} => key not found.
Firefox DefaultSearchUrl removed successfully
Firefox "Keyword.URL" removed successfully
C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\pdf.dll => not found.
C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\gcswf32.dll => not found.
C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll => not found.
C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.3.7_0\npcoplgn.dll => not found.
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => not found.
C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll => not found.
C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll => not found.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => not found.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => not found.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => not found.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => not found.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => not found.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => not found.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => not found.
C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll => not found.
C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll => not found.
C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => not found.
C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll => not found.
C:\Windows\system32\Adobe\Director\np32dsw.dll => not found.
C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak <==== ATTENTION => not found
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ihenkjeihefokohmemphikjnjbmegdik" => key removed successfully
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) => Error: No automatic fix found for this entry.
EmptyTemp => Error: No automatic fix found for this entry.
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 03-12-2016 20:12:08)
C:\Users\Petr Martens\AppData\Local\Temp => moved successfully
==== End of Fixlog 20:12:08 ====
Fix result of Farbar Recovery Scan Tool (x64) Version: 02-12-2016
Ran by Petr Martens (03-12-2016 20:10:09) Run:1
Running from C:\Users\Petr Martens\Desktop
Loaded Profiles: Petr Martens & NeroMediaHomeUser.4 (Available Profiles: Petr Martens & NeroMediaHomeUser.4 & Admin)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000UA.job
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000Core.job
C:\Users\Petr Martens\AppData\Local\CrystalDiskMark30.ini
C:\Users\Petr Martens\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Petr Martens\AppData\Local\Temp
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [Nektra OEAPI] => [X]
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [OEXPRESS] => [X]
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\Run: [WEBTRAN] => [X]
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\MountPoints2: {ed9f482c-da03-11df-a2bb-806e6f6e6963} - I:\score.exe
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\...\MountPoints2: {f0e0dc25-c5a5-11df-a714-00221548b87a} - J:\OblivionLauncher.exe
SearchScopes: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM ... -SearchBox
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> DefaultScope value is missing
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-11-25] (Google Inc.)
C:\Program Files (x86)\Google\Google Toolbar
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-11-25] (Google Inc.)
Toolbar: HKU\S-1-5-21-850677638-2337762993-1318839679-1000 -> No Name - {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No File
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\wr7n96de.default -> hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q=
FF Keyword.URL: Mozilla\Firefox\Profiles\wr7n96de.default -> hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q=
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\pdf.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\gcswf32.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll => No File
CHR Plugin: (Norton Confidential) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.3.7_0\npcoplgn.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => No File
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll => No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll => No File
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll => No File
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2012-10-03] [UpdateUrl: hxxp://www.interoperabilitybridges.com/ ... pdates.xml] <==== ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [ihenkjeihefokohmemphikjnjbmegdik] - "C:\Program Files (x86)\Sony\Media Go\MediaGoDetector.crx" <not found>
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
EmptyTemp
End
*****************
C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => moved successfully
C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA => moved successfully
C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000UA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850677638-2337762993-1318839679-1000Core.job => moved successfully
C:\Users\Petr Martens\AppData\Local\CrystalDiskMark30.ini => moved successfully
C:\Users\Petr Martens\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
"C:\Users\Petr Martens\AppData\Local\Temp" folder move:
Could not move "C:\Users\Petr Martens\AppData\Local\Temp" => Scheduled to move on reboot.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Nektra OEAPI => value removed successfully
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\Software\Microsoft\Windows\CurrentVersion\Run\\OEXPRESS => value removed successfully
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\Software\Microsoft\Windows\CurrentVersion\Run\\WEBTRAN => value removed successfully
"HKU\S-1-5-21-850677638-2337762993-1318839679-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ed9f482c-da03-11df-a2bb-806e6f6e6963}" => key removed successfully
HKCR\CLSID\{ed9f482c-da03-11df-a2bb-806e6f6e6963} => key not found.
"HKU\S-1-5-21-850677638-2337762993-1318839679-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f0e0dc25-c5a5-11df-a714-00221548b87a}" => key removed successfully
HKCR\CLSID\{f0e0dc25-c5a5-11df-a714-00221548b87a} => key not found.
"HKU\S-1-5-21-850677638-2337762993-1318839679-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value removed successfully
"HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => key removed successfully
C:\Program Files (x86)\Google\Google Toolbar => moved successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value removed successfully
"HKCR\Wow6432Node\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => key removed successfully
HKU\S-1-5-21-850677638-2337762993-1318839679-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} => value removed successfully
HKCR\CLSID\{8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} => key not found.
Firefox DefaultSearchUrl removed successfully
Firefox "Keyword.URL" removed successfully
C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\pdf.dll => not found.
C:\Users\Petr Martens\AppData\Local\Google\Chrome\Application\54.0.2840.99\gcswf32.dll => not found.
C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll => not found.
C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.3.7_0\npcoplgn.dll => not found.
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => not found.
C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll => not found.
C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll => not found.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => not found.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => not found.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => not found.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => not found.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => not found.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => not found.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => not found.
C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll => not found.
C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll => not found.
C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => not found.
C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll => not found.
C:\Windows\system32\Adobe\Director\np32dsw.dll => not found.
C:\Users\Petr Martens\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak <==== ATTENTION => not found
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ihenkjeihefokohmemphikjnjbmegdik" => key removed successfully
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) => Error: No automatic fix found for this entry.
EmptyTemp => Error: No automatic fix found for this entry.
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 03-12-2016 20:12:08)
C:\Users\Petr Martens\AppData\Local\Temp => moved successfully
==== End of Fixlog 20:12:08 ====
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o preventivní kontrolu logu
Log by již měl být čistý.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o preventivní kontrolu logu
Výborně, moc děkuji a přeji krásné svátky Vánoční 
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o preventivní kontrolu logu
Vám přeji to samé a nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?