Dobrý den , mohl bych poprosit i kontrolu?
Prohlížeš dost často přesměrovává na nechtěné stránky a obtěžuje s nainstalování reimage repair pro windows
Díky moc
RSIT:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-01-2017
Ran by TOMAS (administrator) on TOMMY (30-01-2017 11:03:16)
Running from C:\Users\TOMAS\Desktop
Loaded Profiles: TOMAS (Available Profiles: TOMAS)
Platform: Windows 8.1 (Update) (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() C:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Valve Corporation) D:\HRY_INST\Steam.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Valve Corporation) D:\HRY_INST\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKU\S-1-5-21-3411145103-2489914840-3626605955-1001\...\Run: [Google Update] => C:\Users\TOMAS\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [601752 2016-12-17] (Google Inc.)
HKU\S-1-5-21-3411145103-2489914840-3626605955-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3411145103-2489914840-3626605955-1001\...\Run: [Steam] => D:\HRY_INST\steam.exe [2881824 2017-01-19] (Valve Corporation)
HKU\S-1-5-21-3411145103-2489914840-3626605955-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2016-12-22] (Disc Soft Ltd)
HKU\S-1-5-21-3411145103-2489914840-3626605955-1001\...\MountPoints2: {68507187-d696-11e6-826d-d43d7e2c0c90} - "H:\setup.exe"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 83.240.0.215 83.240.0.136
Tcpip\..\Interfaces\{10B7722F-5A5E-4867-8D18-BCE10B32C1EC}: [DhcpNameServer] 83.240.0.215 83.240.0.136
Internet Explorer:
==================
FireFox:
========
FF HKU\S-1-5-21-3411145103-2489914840-3626605955-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\TOMAS\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi
FF Extension: (Ace Stream Web Extension) - C:\Users\TOMAS\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi [2015-12-18]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-11] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-11] (NVIDIA Corporation)
FF Plugin HKU\S-1-5-21-3411145103-2489914840-3626605955-1001: @acestream.net/acestreamplugin,version=3.1.7 -> C:\Users\TOMAS\AppData\Roaming\ACEStream\player\npace_plugin.dll [2015-08-06] (Innovative Digital Technologies)
FF Plugin HKU\S-1-5-21-3411145103-2489914840-3626605955-1001: @tools.google.com/Google Update;version=3 -> C:\Users\TOMAS\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin HKU\S-1-5-21-3411145103-2489914840-3626605955-1001: @tools.google.com/Google Update;version=9 -> C:\Users\TOMAS\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://idnes.cz/
CHR StartupUrls: Default -> "hxxp://seznam.cz/","hxxp://www.google.com/","hxxps://www.google.com/"
CHR Profile: C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default [2017-01-30]
CHR Extension: (Překladač Google) - C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2016-09-25]
CHR Extension: (Disk Google) - C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-25]
CHR Extension: (YouTube) - C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-25]
CHR Extension: (Spotify - Music for every moment) - C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnkjkdjlofllcpbemipjbcpfnglbgieh [2016-10-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-18]
CHR Extension: (Perfect Zoom) - C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdicoajnpnojinjhdolfmfdeeghdgfak [2017-01-16]
CHR Extension: (Gmail) - C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-09-25]
CHR Extension: (Chrome Media Router) - C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-15]
CHR HKU\S-1-5-21-3411145103-2489914840-3626605955-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2016-12-22] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [395024 2016-12-27] (EasyAntiCheat Ltd)
R2 mi-raysat_3dsmax2014_64; C:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe [86016 2013-10-27] () [File not signed]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-13] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-13] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-12-11] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-12-13] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2016-12-13] (NVIDIA Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10351856 2016-12-15] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
S2 ZAMSvc; "C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe" /service [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2017-01-09] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2017-01-09] (Disc Soft Ltd)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-12-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [46016 2016-12-13] (NVIDIA Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X]
S1 ZAM_Guard; \??\C:\Windows\System32\drivers\zamguard64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-01-30 11:03 - 2017-01-30 11:03 - 00011066 _____ C:\Users\TOMAS\Desktop\FRST.txt
2017-01-30 11:03 - 2017-01-30 11:03 - 00000000 ____D C:\FRST
2017-01-30 11:00 - 2017-01-30 11:00 - 00112640 _____ (forum.viry.cz) C:\Users\TOMAS\Downloads\FRSTLauncher.exe
2017-01-30 11:00 - 2017-01-30 11:00 - 00112640 _____ (forum.viry.cz) C:\Users\TOMAS\Desktop\FRSTLauncher.exe
2017-01-30 10:59 - 2017-01-30 10:59 - 02420736 _____ (Farbar) C:\Users\TOMAS\Downloads\FRST64.exe
2017-01-30 10:59 - 2017-01-30 10:59 - 02420736 _____ (Farbar) C:\Users\TOMAS\Desktop\FRST64.exe
2017-01-26 20:04 - 2017-01-28 11:12 - 00000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2017-01-26 20:04 - 2017-01-26 20:18 - 00008854 _____ C:\Windows\ZAM_Guard.krnl.trace
2017-01-26 20:04 - 2017-01-26 20:11 - 00011883 _____ C:\Windows\ZAM.krnl.trace
2017-01-26 20:04 - 2017-01-26 20:04 - 05483584 _____ ( ) C:\Users\TOMAS\Downloads\Zemana.AntiMalware.Setup.exe
2017-01-26 20:04 - 2017-01-26 20:04 - 00000000 ____D C:\Users\TOMAS\AppData\Local\Zemana
2017-01-26 19:55 - 2017-01-26 19:55 - 00000000 ____D C:\Users\TOMAS\Desktop\Cimrmani
2017-01-26 18:44 - 2017-01-26 18:55 - 1549791232 _____ C:\Users\TOMAS\Downloads\Zúčtování The Accountant (2016) BDRip CZ dabing.avi
2017-01-26 18:44 - 2017-01-26 18:55 - 1458040842 _____ C:\Users\TOMAS\Downloads\Ve jménu krve Blood Father (2016) BDRip CZ dabing.avi
2017-01-26 18:44 - 2017-01-26 18:52 - 1316609936 _____ C:\Users\TOMAS\Downloads\Boj za svobodu (2016) CZ Dabing.avi
2017-01-26 12:29 - 2017-01-26 12:29 - 00000076 _____ C:\Users\TOMAS\Desktop\bergfex- Webcam Bad Hofgastein - Ski amade Skizentrum Angertal - Cam - Livecam.url
2017-01-22 09:27 - 2017-01-22 09:27 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-01-19 16:54 - 2016-12-27 10:23 - 00395024 _____ (EasyAntiCheat Ltd) C:\Windows\SysWOW64\EasyAntiCheat.exe
2017-01-19 16:52 - 2017-01-19 16:52 - 00000877 _____ C:\Users\Public\Desktop\Watch_Dogs 2.lnk
2017-01-19 16:52 - 2017-01-19 16:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Watch_Dogs 2
2017-01-17 15:26 - 2017-01-17 15:28 - 804120764 _____ C:\Users\TOMAS\Downloads\Sherlock S04E03.(2017).CZdabing.TVRip.avi
2017-01-12 19:55 - 2017-01-12 19:59 - 1261590932 _____ C:\Users\TOMAS\Downloads\NOVINKA--Sherlock-S04E02-Skomirajici-detektiv-CZ.avi
2017-01-09 20:30 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2017-01-09 20:30 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2017-01-09 20:30 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2017-01-09 20:30 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2017-01-09 20:30 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2017-01-09 20:30 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2017-01-09 20:30 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2017-01-09 20:30 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2017-01-09 20:30 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2017-01-09 20:30 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2017-01-09 20:30 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2017-01-09 20:30 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2017-01-09 20:30 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2017-01-09 20:30 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2017-01-09 20:30 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2017-01-09 20:30 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2017-01-09 20:30 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2017-01-09 20:30 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2017-01-09 20:30 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2017-01-09 20:30 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2017-01-09 20:30 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2017-01-09 20:30 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2017-01-09 20:30 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2017-01-09 20:30 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2017-01-09 20:30 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2017-01-09 20:30 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2017-01-09 20:30 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2017-01-09 20:30 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2017-01-09 20:30 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2017-01-09 20:30 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2017-01-09 20:30 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2017-01-09 20:30 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2017-01-09 20:30 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2017-01-09 20:30 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2017-01-09 20:30 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2017-01-09 20:30 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2017-01-09 20:29 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2017-01-09 20:29 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2017-01-09 20:29 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2017-01-09 20:29 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2017-01-09 20:29 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2017-01-09 20:29 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2017-01-09 20:29 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2017-01-09 20:29 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2017-01-09 20:29 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2017-01-09 20:29 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2017-01-09 20:29 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2017-01-09 20:29 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2017-01-09 20:29 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2017-01-09 20:29 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2017-01-09 20:29 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2017-01-09 20:29 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2017-01-09 20:29 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2017-01-09 20:29 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2017-01-09 20:29 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2017-01-09 20:29 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2017-01-09 20:29 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2017-01-09 20:29 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2017-01-09 20:29 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2017-01-09 20:29 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2017-01-09 20:29 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2017-01-09 20:29 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2017-01-09 20:29 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2017-01-09 20:29 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2017-01-09 20:29 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2017-01-09 20:29 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2017-01-09 20:29 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2017-01-09 20:29 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2017-01-09 20:29 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2017-01-09 20:29 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2017-01-09 20:29 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2017-01-09 20:29 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2017-01-09 20:29 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2017-01-09 20:29 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2017-01-09 20:29 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2017-01-09 20:29 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2017-01-09 20:29 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2017-01-09 20:29 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2017-01-09 20:29 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2017-01-09 20:29 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2017-01-09 20:29 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2017-01-09 20:29 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2017-01-09 20:29 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2017-01-09 20:29 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2017-01-09 20:29 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2017-01-09 20:29 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2017-01-09 20:29 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2017-01-09 20:29 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2017-01-09 20:29 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2017-01-09 20:29 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2017-01-09 20:29 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2017-01-09 20:29 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2017-01-09 20:29 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2017-01-09 20:29 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2017-01-09 20:29 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2017-01-09 20:29 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2017-01-09 20:29 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2017-01-09 20:29 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2017-01-09 20:29 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2017-01-09 20:29 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2017-01-09 20:29 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2017-01-09 20:29 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2017-01-09 20:29 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2017-01-09 20:29 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2017-01-09 20:29 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2017-01-09 20:29 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2017-01-09 20:29 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2017-01-09 20:29 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2017-01-09 20:29 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2017-01-09 20:29 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2017-01-09 20:29 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2017-01-09 20:29 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2017-01-09 20:29 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2017-01-09 20:29 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2017-01-09 20:29 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2017-01-09 20:29 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2017-01-09 20:29 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2017-01-09 20:29 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2017-01-09 20:29 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2017-01-09 20:29 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2017-01-09 20:29 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2017-01-09 20:29 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2017-01-09 20:29 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2017-01-09 20:29 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2017-01-09 20:29 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2017-01-09 20:29 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2017-01-09 20:29 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2017-01-09 20:29 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2017-01-09 20:29 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2017-01-09 20:29 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2017-01-09 20:29 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2017-01-09 20:29 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2017-01-09 20:29 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2017-01-09 20:29 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2017-01-09 20:29 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2017-01-09 20:29 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2017-01-09 20:29 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2017-01-09 20:29 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2017-01-09 20:29 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2017-01-09 20:29 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2017-01-09 20:29 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2017-01-09 20:29 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2017-01-09 20:29 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2017-01-09 20:29 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2017-01-09 20:29 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2017-01-09 20:29 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2017-01-09 20:29 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2017-01-09 20:29 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2017-01-09 20:29 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2017-01-09 20:29 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2017-01-09 20:29 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2017-01-09 20:29 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2017-01-09 20:29 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2017-01-09 20:29 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2017-01-09 20:29 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2017-01-09 20:29 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2017-01-09 20:29 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2017-01-09 20:29 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2017-01-09 20:29 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2017-01-09 20:29 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2017-01-09 20:29 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2017-01-09 20:29 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2017-01-09 20:29 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2017-01-09 20:29 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2017-01-09 20:29 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2017-01-09 20:29 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2017-01-09 20:29 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2017-01-09 20:29 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2017-01-09 20:29 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2017-01-09 20:29 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2017-01-09 20:29 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2017-01-09 20:29 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2017-01-09 20:29 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2017-01-09 20:29 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2017-01-09 20:29 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2017-01-09 20:29 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2017-01-09 20:29 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2017-01-09 20:29 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2017-01-09 20:29 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2017-01-09 20:29 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2017-01-09 20:29 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2017-01-09 20:29 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2017-01-09 19:42 - 2017-01-09 19:42 - 00000000 ____D C:\Users\TOMAS\Documents\CPY_SAVES
2017-01-09 19:24 - 2017-01-09 19:24 - 00000881 _____ C:\Users\Public\Desktop\Far Cry Primal.lnk
2017-01-09 19:24 - 2017-01-09 19:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Far Cry Primal
2017-01-09 19:03 - 2017-01-09 19:17 - 00000000 ____D C:\Users\TOMAS\AppData\Roaming\DAEMON Tools Lite
2017-01-09 19:03 - 2017-01-09 19:03 - 00047672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys
2017-01-09 19:03 - 2017-01-09 19:03 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2017-01-09 19:03 - 2017-01-09 19:03 - 00000000 ____D C:\Users\TOMAS\AppData\Local\Disc_Soft_Ltd
2017-01-09 19:03 - 2017-01-09 19:03 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2017-01-09 19:02 - 2017-01-09 19:03 - 00000000 ____D C:\Program Files\DAEMON Tools Lite
2017-01-09 19:02 - 2017-01-09 19:02 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2017-01-07 20:25 - 2017-01-07 20:27 - 00000000 ____D C:\Users\TOMAS\AppData\Local\Apps\Windows 7 USB DVD Download Tool
2017-01-07 20:25 - 2017-01-07 20:25 - 00000000 ____D C:\Users\TOMAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2017-01-05 15:44 - 2017-01-05 15:47 - 1073909052 _____ C:\Users\TOMAS\Downloads\Sherlock S04E01 Šest Železných dam (2017).avi
2017-01-04 21:54 - 2017-01-12 18:26 - 00000000 ____D C:\Users\TOMAS\Downloads\UT
2017-01-03 20:56 - 2017-01-03 20:56 - 00000000 ____D C:\Users\TOMAS\Documents\Frontier Developments
2017-01-03 20:56 - 2017-01-03 20:56 - 00000000 ____D C:\Users\TOMAS\AppData\Roaming\Frontier Developments
2017-01-03 20:56 - 2017-01-03 20:56 - 00000000 ____D C:\Users\TOMAS\AppData\Local\Frontier Developments
2017-01-03 20:42 - 2017-01-03 20:42 - 00000205 _____ C:\Users\TOMAS\Desktop\Planet Coaster.url
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-01-30 11:01 - 2016-12-18 09:11 - 00006605 _____ C:\ProgramData\NvTelemetryContainer.log_backup1
2017-01-30 11:01 - 2016-09-25 08:56 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-30 11:01 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-01-30 11:01 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2017-01-30 10:52 - 2016-09-29 15:27 - 00000000 ____D C:\Users\TOMAS\AppData\Roaming\vlc
2017-01-30 10:11 - 2016-10-17 16:11 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-01-28 12:19 - 2016-10-17 16:11 - 00000958 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2017-01-28 11:51 - 2016-09-25 08:56 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3411145103-2489914840-3626605955-1001
2017-01-28 11:18 - 2014-03-18 16:33 - 01745984 _____ C:\Windows\system32\PerfStringBackup.INI
2017-01-28 11:18 - 2014-03-18 15:54 - 00738682 _____ C:\Windows\system32\perfh005.dat
2017-01-28 11:18 - 2014-03-18 15:54 - 00151404 _____ C:\Windows\system32\perfc005.dat
2017-01-28 11:18 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\Inf
2017-01-28 11:12 - 2016-10-01 18:47 - 00000000 ____D C:\Users\TOMAS\AppData\Local\CrashDumps
2017-01-26 20:05 - 2016-09-25 08:51 - 00000000 ____D C:\Users\TOMAS
2017-01-22 19:29 - 2016-10-01 12:48 - 00000000 ____D C:\Users\TOMAS\AppData\Roaming\.ACEStream
2017-01-22 19:27 - 2016-10-01 12:48 - 00000000 ___HD C:\_acestream_cache_
2017-01-22 11:31 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\LiveKernelReports
2017-01-22 10:20 - 2013-08-22 15:45 - 00000000 ____D C:\Windows\Setup
2017-01-21 21:34 - 2016-10-04 17:19 - 00000000 ____D C:\Users\TOMAS\AppData\Roaming\uTorrent
2017-01-19 16:54 - 2016-09-25 12:49 - 00000000 ____D C:\Users\TOMAS\Documents\My Games
2017-01-19 16:33 - 2016-10-01 17:44 - 00000000 ____D C:\Program Files (x86)\FastShare
2017-01-19 09:47 - 2016-11-07 15:48 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-01-19 09:42 - 2016-10-16 17:40 - 00257024 ___SH C:\Users\TOMAS\Desktop\Thumbs.db
2017-01-12 19:59 - 2016-10-01 13:48 - 00323584 ___SH C:\Users\TOMAS\Downloads\Thumbs.db
2017-01-11 20:25 - 2013-08-22 16:20 - 00000000 ____D C:\Windows\CbsTemp
2017-01-11 20:24 - 2016-09-25 10:14 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-11 20:24 - 2016-09-25 10:14 - 00000000 ____D C:\Windows\system32\MRT
2017-01-11 16:11 - 2016-10-17 16:11 - 00003916 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-01-11 16:11 - 2016-10-17 16:11 - 00003802 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-01-11 16:11 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-01-08 18:00 - 2016-11-07 15:49 - 00000000 ____D C:\Users\TOMAS\AppData\Roaming\TeamViewer
2017-01-01 18:27 - 2016-12-30 15:45 - 00000000 ____D C:\Users\TOMAS\AppData\Local\Battle.net
==================== Files in the root of some directories =======
2016-11-03 17:49 - 2016-11-03 17:49 - 0000132 _____ () C:\Users\TOMAS\AppData\Roaming\Adobe OpenEXR Format CS6 Prefs
2016-12-18 09:11 - 2017-01-30 11:01 - 0002938 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-18 09:11 - 2017-01-30 11:01 - 0006605 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1
Some files in TEMP:
====================
2017-01-25 13:42 - 2017-01-21 12:22 - 7095408 _____ (Spotify Ltd) C:\Users\TOMAS\AppData\Local\Temp\SpotifyUninstall.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-01-22 10:30
==================== End of FRST.txt ============================
adition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-01-2017
Ran by TOMAS (30-01-2017 11:03:31)
Running from C:\Users\TOMAS\Desktop
Windows 8.1 (Update) (X64) (2016-09-25 07:51:17)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3411145103-2489914840-3626605955-500 - Administrator - Disabled)
Guest (S-1-5-21-3411145103-2489914840-3626605955-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3411145103-2489914840-3626605955-1003 - Limited - Enabled)
TOMAS (S-1-5-21-3411145103-2489914840-3626605955-1001 - Administrator - Enabled) => C:\Users\TOMAS
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-3411145103-2489914840-3626605955-1001\...\uTorrent) (Version: 3.4.9.43085 - BitTorrent Inc.)
Ace Stream Media 3.1.7 (HKU\S-1-5-21-3411145103-2489914840-3626605955-1001\...\AceStream) (Version: 3.1.7 - Ace Stream Media) <==== ATTENTION
Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Player 24 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated)
Aktualizace NVIDIA 23.1.0.0 (Version: 23.1.0.0 - NVIDIA Corporation) Hidden
Ansel (Version: 376.33 - NVIDIA Corporation) Hidden
Autodesk 3ds Max 2014 English Documentation (HKLM-x32\...\{2277CDAC-95D8-4A3B-AEE0-E2341E86C2A0}) (Version: 16.0 - Autodesk)
Autodesk 3ds Max Design 2014 (HKLM\...\Autodesk 3ds Max Design 2014) (Version: 16.5.277.0 - Autodesk)
Autodesk 3ds Max Design 2014 (Version: 16.5.277.0 - Autodesk) Hidden
Autodesk 3ds Max Design 2014 64-bit Populate Data (HKLM\...\{2BCAFE22-BE25-4437-815C-54596D630397}) (Version: 1.0.0.1 - Autodesk)
Autodesk 3ds Max Design 2014 SP3 (Version: 16.5.277.0 - Autodesk) Hidden
Autodesk 3ds Max Design 2014 SP5 (HKLM\...\Autodesk 3ds Max Design 2014 SP4) (Version: 16.5.277.0 - Autodesk)
Autodesk Composite 2014 (HKLM\...\Autodesk Composite 2014) (Version: 9.0.0.0 - Autodesk)
Autodesk Composite 2014 (Version: 9.0.0.0 - Autodesk) Hidden
Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.32.600 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.32.600 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2014 (HKLM-x32\...\{A0633D4E-5AF2-4E3E-A70A-FE9C2BD8A958}) (Version: 4.0.32.600 - Autodesk)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.22 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.0.0222 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Dying Light (HKLM\...\Steam App 239140) (Version: - Techland)
eM Client (HKLM-x32\...\{2A4CAF55-4B18-4B61-BE9E-94A54209F547}) (Version: 7.0.27943.0 - eM Client Inc.)
Far Cry Primal (HKLM-x32\...\{80BD47AF-CF13-49B2-99BF-7E78FBA26124}_is1) (Version: - Ubisoft)
FastShare.cz verze 2.3.1 (HKLM-x32\...\FastShare.cz_is1) (Version: 2.3.1 - )
Google Chrome (HKU\S-1-5-21-3411145103-2489914840-3626605955-1001\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Just Cause 3 (HKLM\...\Steam App 225540) (Version: - Avalanche Studios)
Mafia III (HKLM\...\Steam App 360430) (Version: - Hangar 13)
Marvelous Designer 4 Enterprise (HKLM-x32\...\Marvelous Designer 4 Enterprise) (Version: - CLO Virtual Fashion Inc.)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
NVIDIA GeForce Experience 3.2.0.96 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.2.0.96 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.33 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.33 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA Virtuální audio Miracast 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 376.33 - NVIDIA Corporation)
NvNodejs (Version: 3.2.0.96 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.0.0.0 - NVIDIA Corporation) Hidden
Ovládací panel NVIDIA 376.33 (Version: 376.33 - NVIDIA Corporation) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Planet Coaster (HKLM\...\Steam App 493340) (Version: - Frontier Developments)
SHIELD Streaming (Version: 7.1.0350 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.2.0.96 - NVIDIA Corporation) Hidden
Skype™ 7.29 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.29.102 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.72365 - TeamViewer)
Titan Quest - Anniversary Edition (HKLM-x32\...\1196955511_is1) (Version: 2.3.0.5 - GOG.com)
Uplay (HKLM-x32\...\Uplay) (Version: 23.0 - Ubisoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
V-Ray for 3dsmax 2014 for x64 (HKLM\...\V-Ray for 3dsmax 2014 for x64) (Version: 3.00.03 - Chaos Software Ltd)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Watch_Dogs 2 (HKLM-x32\...\{B0E33297-78B1-4B37-B8C1-39150F2DEE43}_is1) (Version: - Ubisoft)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3411145103-2489914840-3626605955-1001_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\TOMAS\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3411145103-2489914840-3626605955-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\TOMAS\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll (Google Inc.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {057F9B71-1AB8-4A41-8459-32CF5E98C066} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {142681D4-5C58-4B2C-83D0-1E8644189CA1} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-12-13] (NVIDIA Corporation)
Task: {1970733F-20A3-4D4C-A60E-226B8B62B950} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {3939B514-C718-4228-9659-28DF4FC9D1D9} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3411145103-2489914840-3626605955-1001UA => C:\Users\TOMAS\AppData\Local\Google\Update\GoogleUpdate.exe [2016-09-25] (Google Inc.)
Task: {42B1DB70-D1E8-411F-8F18-C8C298DFEBD8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-11] (Adobe Systems Incorporated)
Task: {4400F79D-9919-4435-900D-F10599C146B9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {515AB161-2CC1-4285-A9F8-94211DFBF365} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_24_0_0_194_pepper.exe [2017-01-11] (Adobe Systems Incorporated)
Task: {57502B31-49A2-4F19-A8FC-D464B193937B} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-12-13] (NVIDIA Corporation)
Task: {61D535CC-EF12-4FDA-BCF8-FA6BDF22CC70} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3411145103-2489914840-3626605955-1001Core => C:\Users\TOMAS\AppData\Local\Google\Update\GoogleUpdate.exe [2016-09-25] (Google Inc.)
Task: {64D624E8-B75C-4792-8DE2-32D00FC68D07} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-26] (Piriform Ltd)
Task: {A0901A89-4F52-4CF5-BB9F-2104FC98018E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2016-12-13] (NVIDIA Corporation)
Task: {FE50BEAA-FC8A-4784-9934-5796E7F46F40} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_24_0_0_194_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2013-10-27 13:00 - 2013-10-27 13:00 - 00086016 _____ () C:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
2016-10-09 09:59 - 2016-12-13 00:36 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-10-09 09:59 - 2016-12-13 00:35 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-10-09 09:59 - 2016-12-13 00:35 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-10-09 09:59 - 2016-12-13 00:35 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-10-09 09:59 - 2016-12-13 00:35 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-01-22 07:29 - 2016-12-23 19:28 - 00657184 _____ () D:\HRY_INST\SDL2.dll
2016-10-15 05:24 - 2016-09-01 02:02 - 04969248 _____ () D:\HRY_INST\v8.dll
2017-01-22 07:29 - 2017-01-19 02:30 - 02327840 _____ () D:\HRY_INST\video.dll
2016-10-15 05:24 - 2016-09-01 02:02 - 01563936 _____ () D:\HRY_INST\icui18n.dll
2016-10-15 05:24 - 2016-09-01 02:02 - 01195296 _____ () D:\HRY_INST\icuuc.dll
2016-10-15 05:24 - 2016-01-27 08:49 - 02549760 _____ () D:\HRY_INST\libavcodec-56.dll
2016-10-15 05:24 - 2016-01-27 08:49 - 00491008 _____ () D:\HRY_INST\libavformat-56.dll
2016-10-15 05:24 - 2016-01-27 08:49 - 00332800 _____ () D:\HRY_INST\libavresample-2.dll
2016-10-15 05:24 - 2016-01-27 08:49 - 00442880 _____ () D:\HRY_INST\libavutil-54.dll
2016-10-15 05:24 - 2016-01-27 08:49 - 00485888 _____ () D:\HRY_INST\libswscale-3.dll
2017-01-22 07:29 - 2017-01-19 02:30 - 00838432 _____ () D:\HRY_INST\bin\chromehtml.DLL
2016-10-15 05:24 - 2016-07-04 23:17 - 00266560 _____ () D:\HRY_INST\openvr_api.dll
2017-01-22 07:29 - 2017-01-05 04:12 - 68813088 _____ () D:\HRY_INST\bin\cef\cef.win7\libcef.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3411145103-2489914840-3626605955-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 83.240.0.215 - 83.240.0.136
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKU\S-1-5-21-3411145103-2489914840-3626605955-1001\...\StartupApproved\Run: => "AdobeBridge"
HKU\S-1-5-21-3411145103-2489914840-3626605955-1001\...\StartupApproved\Run: => "Google Update"
HKU\S-1-5-21-3411145103-2489914840-3626605955-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-3411145103-2489914840-3626605955-1001\...\StartupApproved\Run: => "Spotify"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [TCP Query User{44D08340-4FD2-4AE8-B75A-16517C34804A}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{57FD7161-F649-42CB-8283-A96FD8BEEC61}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{AF83C147-3AC2-4512-98FB-22EE5331AB79}C:\gog games\titan quest - anniversary edition\tq.exe] => C:\gog games\titan quest - anniversary edition\tq.exe
FirewallRules: [UDP Query User{01FD604F-3000-4204-A09B-CA5BD281FFDB}C:\gog games\titan quest - anniversary edition\tq.exe] => C:\gog games\titan quest - anniversary edition\tq.exe
FirewallRules: [TCP Query User{13182811-B513-42FA-861F-3B6CBA8420D6}C:\users\tomas\appdata\roaming\acestream\engine\ace_engine.exe] => C:\users\tomas\appdata\roaming\acestream\engine\ace_engine.exe
FirewallRules: [UDP Query User{67B26CCC-F057-4BAC-BDBB-A211D0FB4388}C:\users\tomas\appdata\roaming\acestream\engine\ace_engine.exe] => C:\users\tomas\appdata\roaming\acestream\engine\ace_engine.exe
FirewallRules: [{A8074317-7FBD-4757-85EE-4FAA3A5EDFBF}] => D:\HRY_INST\Steam.exe
FirewallRules: [{1E045BDF-AA07-4FBA-856A-E9C1BBA97C5D}] => D:\HRY_INST\Steam.exe
FirewallRules: [{31BBF835-F652-45C9-9F6D-A18DCBCD3BD7}] => D:\HRY_INST\steamapps\common\Mafia III\launcher.exe
FirewallRules: [{318E22C7-5A86-4C81-AEE9-38F9DD13B712}] => D:\HRY_INST\steamapps\common\Mafia III\launcher.exe
FirewallRules: [{480867AD-4839-4537-A3A8-6D0EFE1DD87D}] => D:\HRY_INST\steamapps\common\Dying Light\DyingLightGame.exe
FirewallRules: [{3AC0CE8A-1EBE-48CE-B7A8-DB43EBA3DB4D}] => D:\HRY_INST\steamapps\common\Dying Light\DyingLightGame.exe
FirewallRules: [{CD10F1B6-0950-4086-8E51-8E60B065A9E3}] => C:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
FirewallRules: [{7DFDF510-2955-490E-9302-E1B19839EFC5}] => C:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
FirewallRules: [{7E4603C0-AAEA-42FA-A020-1EA3D582AFEE}] => C:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64.exe
FirewallRules: [{83F91C68-73FF-4A42-8B39-9B29C8ADCAA7}] => C:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64.exe
FirewallRules: [{BA3FE813-0146-44C1-A16F-C9324A11A27D}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{8F531BD9-CBE5-4A55-9953-D46DAA8696D6}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{3D952D3C-0F70-46C3-B841-9D1BEAAB16A7}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1920BDFB-9A5B-412A-AAE2-EFA3408F368D}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{192D8A3E-2860-4E63-8C55-CCB3C24AAF09}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{12D8C4A6-20D7-4601-8780-84B5E96CA4F6}] => D:\HRY_INST\steamapps\common\Just Cause 3\JustCause3.exe
FirewallRules: [{6A5A725F-81CA-444C-A515-B40CBDE1CF06}] => D:\HRY_INST\steamapps\common\Just Cause 3\JustCause3.exe
FirewallRules: [{D9157DC6-AE70-46DB-800A-C716568DAA09}] => D:\HRY_INST\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{AC68B605-8D3D-47E9-9A1B-596D098BBEFE}] => D:\HRY_INST\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{1DF53EAB-7A92-4E62-BBDE-EF42F41BAE99}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{84315EAE-5946-4B6B-AAC3-5AC792F02F29}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{77D1F3D9-D010-4CCF-8C03-8F1098DE1FF5}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{9534E0DF-7BBA-424A-B662-DE4CD2A7AF23}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{575FB93B-949F-4033-B20B-6D6D31221F61}] => C:\Users\TOMAS\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{AFA4C801-4D30-457A-BDD5-44ECB3923ED7}] => C:\Users\TOMAS\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2B63CD02-9018-4BE5-9D59-FC64FAFA3DD5}] => C:\Users\TOMAS\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{485E4844-D765-4F5B-AD3C-405E72191069}] => C:\Users\TOMAS\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{5F0DA4B3-49F8-4175-B3B2-5CCA13AAB633}] => C:\Users\TOMAS\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{B44409D1-DFBD-48F0-99F3-8A420A98114F}] => C:\Users\TOMAS\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{91B1737D-2FF0-46C7-ACF7-95FC7F21D442}D:\hry_inst\diablo iii\diablo iii.exe] => D:\hry_inst\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{AA1F4EBE-7B37-422A-B46E-584D42A8761B}D:\hry_inst\diablo iii\diablo iii.exe] => D:\hry_inst\diablo iii\diablo iii.exe
FirewallRules: [{70235BD1-5B8F-457C-A2D6-2B845F7FE22C}] => D:\HRY_INST\steamapps\common\Planet Coaster\PlanetCoaster.exe
FirewallRules: [{52788D73-BB0C-42EF-B090-94D245D5077D}] => D:\HRY_INST\steamapps\common\Planet Coaster\PlanetCoaster.exe
FirewallRules: [TCP Query User{0A3978C2-C5AC-4E44-96B0-B8EF7E6A0AD6}D:\hry_inst\far cry primal\bin\fcprimal.exe] => D:\hry_inst\far cry primal\bin\fcprimal.exe
FirewallRules: [UDP Query User{55A9A32F-74BF-4EF7-8C14-EA874D2BFBFF}D:\hry_inst\far cry primal\bin\fcprimal.exe] => D:\hry_inst\far cry primal\bin\fcprimal.exe
FirewallRules: [TCP Query User{B73BE20C-3CFE-4809-8ADF-B201D80FF71B}C:\users\tomas\appdata\roaming\spotify\spotify.exe] => C:\users\tomas\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{10FF0EFF-51B8-420D-BC3C-DEAD14FB60F0}C:\users\tomas\appdata\roaming\spotify\spotify.exe] => C:\users\tomas\appdata\roaming\spotify\spotify.exe
FirewallRules: [{E7321221-893C-42D5-BDF7-ABF45B954EC8}] => D:\HRY_INST\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{6854A019-FB34-4127-98D4-9374AD19B7F8}] => D:\HRY_INST\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
==================== Restore Points =========================
09-01-2017 20:29:22 Nainstalováno rozhraní DirectX
19-01-2017 09:03:03 Naplánovaný kontrolní bod
26-01-2017 19:00:21 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (01/28/2017 11:12:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbam.exe, verze: 2.3.173.0, časové razítko: 0x56e065b4
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x44746365
ID chybujícího procesu: 0x5c4
Čas spuštění chybující aplikace: 0x01d2794f0f7d4f76
Cesta k chybující aplikaci: C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 553eb30c-e542-11e6-8272-d43d7e2c0c90
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/26/2017 08:10:58 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro c:\program files\autodesk\composite2014\python\lib\distutils\command\wininst-8_d.exe se nezdařilo.
Závislé sestavení Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (01/26/2017 08:05:46 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro c:\program files\autodesk\composite2014\python\lib\distutils\command\wininst-8_d.exe se nezdařilo.
Závislé sestavení Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (01/26/2017 07:00:19 PM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Svazek Rezervováno systémem nebyl optimalizován, protože byla zjištěna chyba: Parametr není správný. (0x80070057).
Error: (01/25/2017 05:30:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: 3dsmax.exe, verze: 16.5.277.0, časové razítko: 0x531589b9
Název chybujícího modulu: vray2014.dll_unloaded, verze: 2.40.1.0, časové razítko: 0x53012788
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000ec33a
ID chybujícího procesu: 0x284
Čas spuštění chybující aplikace: 0x01d277264c073944
Cesta k chybující aplikaci: C:\Program Files\Autodesk\3ds Max Design 2014\3dsmax.exe
Cesta k chybujícímu modulu: vray2014.dll
ID zprávy: a513867c-e31b-11e6-8271-d43d7e2c0c90
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/22/2017 10:31:19 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Svazek Rezervováno systémem nebyl optimalizován, protože byla zjištěna chyba: Parametr není správný. (0x80070057).
Error: (01/22/2017 10:21:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbam.exe, verze: 2.3.173.0, časové razítko: 0x56e065b4
Název chybujícího modulu: Qt5Widgets.dll, verze: 5.4.1.0, časové razítko: 0x555bbfbd
Kód výjimky: 0xc0000005
Posun chyby: 0x0018f3ed
ID chybujícího procesu: 0x790
Čas spuštění chybující aplikace: 0x01d27490d3eeb134
Cesta k chybující aplikaci: C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Malwarebytes Anti-Malware\Qt5Widgets.dll
ID zprávy: 20111ae4-e084-11e6-8271-d43d7e2c0c90
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/22/2017 09:28:42 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro c:\program files\autodesk\composite2014\python\lib\distutils\command\wininst-8_d.exe se nezdařilo.
Závislé sestavení Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (01/21/2017 10:51:11 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro c:\program files\autodesk\composite2014\python\lib\distutils\command\wininst-8_d.exe se nezdařilo.
Závislé sestavení Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (01/19/2017 04:55:06 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro c:\program files\autodesk\composite2014\python\lib\distutils\command\wininst-8_d.exe se nezdařilo.
Závislé sestavení Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
System errors:
=============
Error: (01/28/2017 11:52:19 AM) (Source: DCOM) (EventID: 10010) (User: TOMMY)
Description: Server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/28/2017 11:51:49 AM) (Source: DCOM) (EventID: 10010) (User: TOMMY)
Description: Server {1B1F472E-3221-4826-97DB-2C2324D389AE} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/28/2017 11:14:51 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba Windows Media Player Network Sharing závisí na službě Windows Search, která neuspěla při spuštění v důsledku následující chyby:
Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
Error: (01/26/2017 06:58:15 PM) (Source: DCOM) (EventID: 10010) (User: TOMMY)
Description: Server {1B1F472E-3221-4826-97DB-2C2324D389AE} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/26/2017 06:57:45 PM) (Source: DCOM) (EventID: 10010) (User: TOMMY)
Description: Server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/25/2017 09:07:04 AM) (Source: DCOM) (EventID: 10010) (User: TOMMY)
Description: Server {1B1F472E-3221-4826-97DB-2C2324D389AE} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/25/2017 09:06:34 AM) (Source: DCOM) (EventID: 10010) (User: TOMMY)
Description: Server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/22/2017 07:30:11 PM) (Source: DCOM) (EventID: 10010) (User: TOMMY)
Description: Server {5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/22/2017 07:30:11 PM) (Source: DCOM) (EventID: 10010) (User: TOMMY)
Description: Server {5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/22/2017 07:30:11 PM) (Source: DCOM) (EventID: 10010) (User: TOMMY)
Description: Server {5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C} se v daném časovém limitu neregistroval u služby DCOM.
CodeIntegrity:
===================================
Date: 2016-12-30 13:26:21.820
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-12-30 13:26:21.679
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-12-30 13:26:21.539
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-12-28 18:44:02.971
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-12-28 18:44:02.832
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-12-28 18:44:02.677
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-12-28 14:50:52.434
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-12-28 14:50:52.293
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-12-28 14:50:52.168
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-12-28 14:50:50.309
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz
Percentage of memory in use: 15%
Total physical RAM: 8136.89 MB
Available physical RAM: 6852.02 MB
Total Virtual: 9352.89 MB
Available Virtual: 8114.24 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.54 GB) (Free:128.8 GB) NTFS
Drive d: (WD) (Fixed) (Total:931.51 GB) (Free:331.44 GB) NTFS
Drive h: (FarCryPrimal) (CDROM) (Total:16.65 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 6B40C068)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 74AD2432)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.5 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
přesměrování na reimage a jiná vyskakovací okna
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
tomascupak
- Návštěvník
- Příspěvky: 15
- Registrován: 30 dub 2015 08:31
Re: přesměrování na reimage a jiná vyskakovací okna
ahoj,
1. vycisti PC s CCleanerom, vcetne registrov
restart
2. vycisti PC s MBAM
1. vycisti PC s CCleanerom, vcetne registrov
restart
2. vycisti PC s MBAM
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
-
tomascupak
- Návštěvník
- Příspěvky: 15
- Registrován: 30 dub 2015 08:31
Re: přesměrování na reimage a jiná vyskakovací okna
Díky za odpověď, ccleaner jsem použil a mbam také, nenašlo to žádnou hrozbu. Teď ještě navíc vyskakuje pořád v rohu vpravo dole, viz obrázek (s vždy jinou doménou)
- Přílohy
-
- 01.png (48.1 KiB) Zobrazeno 1700 x
Re: přesměrování na reimage a jiná vyskakovací okna
pouzi navod kolegu http://forum.viry.cz/viewtopic.php?f=13 ... e#p1472827
oba kroky
oba kroky
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
-
tomascupak
- Návštěvník
- Příspěvky: 15
- Registrován: 30 dub 2015 08:31
Re: přesměrování na reimage a jiná vyskakovací okna
Zoek.exe v5.0.0.1 Updated 19-September-2016
Tool run by TOMAS on po 30. 01. 2017 at 13:16:28,94.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\TOMAS\Downloads\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
30. 1. 2017 13:16:44 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Empty Folders Check ======================
C:\PROGRA~2\Zemana AntiMalware deleted successfully
C:\PROGRA~3\regid.1986-12.com.adobe deleted successfully
C:\Users\TOMAS\AppData\Local\Skyrim Special Edition deleted successfully
C:\Users\TOMAS\AppData\Local\VirtualStore deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-3411145103-2489914840-3626605955-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5C0D11B8-C5F6-4be3-AD2C-2B1A3EB94AB6} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== Deleting Files \ Folders ======================
C:\PROGRA~2\Zemana AntiMalware not found
C:\Users\TOMAS\AppData\Roaming\.ACEStream deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
==== Firefox Extensions Registry ======================
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"acewebextension_unlisted@acestream.org"="C:\Users\TOMAS\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi" [18. 12. 2015 12:56]
==== Chromium Look ======================
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
mjbepbhonbojpoaenhckjocchgfiaofo - No path found[]
Spotify - Music for every moment - TOMAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnkjkdjlofllcpbemipjbcpfnglbgieh
Perfect Zoom - TOMAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdicoajnpnojinjhdolfmfdeeghdgfak
Chrome Media Router - TOMAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
==== Chromium Fix ======================
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_adexchangeprediction.com_0.localstorage deleted successfully
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_adexchangeprediction.com_0.localstorage-journal deleted successfully
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_superdeals.aliexpress.com_0.localstorage deleted successfully
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_superdeals.aliexpress.com_0.localstorage-journal deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
==== All HKLM and HKCU SearchScopes ======================
HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IESR02
==== Reset Google Chrome ======================
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Web Data will be reset at reboot
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal will be reset at reboot
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\TOMAS\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\TOMAS\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\TOMAS\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\TOMAS\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Cache will be emptied at reboot
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=114 folders=55 45354651 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\TOMAS\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\TOMAS\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Web Data" not found
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal" not found
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0" deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1" deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2" deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3" deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Cache\index" deleted
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\MpCmdRun.log" not found
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.donation-tools.org_0.localstorage" not deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.donation-tools.org_0.localstorage-journal" not deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d10lpsik1i8c69.cloudfront.net_0.localstorage" not deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d10lpsik1i8c69.cloudfront.net_0.localstorage-journal" not deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.davebestdeals.com_0.localstorage" not deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.davebestdeals.com_0.localstorage-journal" not deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.davebestdeals.com_0.localstorage" not deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.davebestdeals.com_0.localstorage-journal" not deleted
==== EOF on po 30. 01. 2017 at 13:24:37,50 ======================
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.0 (12.05.2016)
Operating System: Windows 8.1 x64
Ran by TOMAS (Administrator) on po 30. 01. 2017 at 13:26:13,45
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 1
Successfully deleted: C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} (Task)
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 30. 01. 2017 at 13:27:37,07
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Tool run by TOMAS on po 30. 01. 2017 at 13:16:28,94.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\TOMAS\Downloads\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
30. 1. 2017 13:16:44 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Empty Folders Check ======================
C:\PROGRA~2\Zemana AntiMalware deleted successfully
C:\PROGRA~3\regid.1986-12.com.adobe deleted successfully
C:\Users\TOMAS\AppData\Local\Skyrim Special Edition deleted successfully
C:\Users\TOMAS\AppData\Local\VirtualStore deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-3411145103-2489914840-3626605955-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5C0D11B8-C5F6-4be3-AD2C-2B1A3EB94AB6} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== Deleting Files \ Folders ======================
C:\PROGRA~2\Zemana AntiMalware not found
C:\Users\TOMAS\AppData\Roaming\.ACEStream deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
==== Firefox Extensions Registry ======================
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"acewebextension_unlisted@acestream.org"="C:\Users\TOMAS\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi" [18. 12. 2015 12:56]
==== Chromium Look ======================
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
mjbepbhonbojpoaenhckjocchgfiaofo - No path found[]
Spotify - Music for every moment - TOMAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnkjkdjlofllcpbemipjbcpfnglbgieh
Perfect Zoom - TOMAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdicoajnpnojinjhdolfmfdeeghdgfak
Chrome Media Router - TOMAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
==== Chromium Fix ======================
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_adexchangeprediction.com_0.localstorage deleted successfully
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_adexchangeprediction.com_0.localstorage-journal deleted successfully
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_superdeals.aliexpress.com_0.localstorage deleted successfully
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_superdeals.aliexpress.com_0.localstorage-journal deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
==== All HKLM and HKCU SearchScopes ======================
HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IESR02
==== Reset Google Chrome ======================
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Web Data will be reset at reboot
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal will be reset at reboot
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\TOMAS\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\TOMAS\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\TOMAS\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\TOMAS\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Cache will be emptied at reboot
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=114 folders=55 45354651 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\TOMAS\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\TOMAS\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Web Data" not found
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal" not found
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0" deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1" deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2" deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3" deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Cache\index" deleted
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\MpCmdRun.log" not found
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.donation-tools.org_0.localstorage" not deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.donation-tools.org_0.localstorage-journal" not deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d10lpsik1i8c69.cloudfront.net_0.localstorage" not deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d10lpsik1i8c69.cloudfront.net_0.localstorage-journal" not deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.davebestdeals.com_0.localstorage" not deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.davebestdeals.com_0.localstorage-journal" not deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.davebestdeals.com_0.localstorage" not deleted
"C:\Users\TOMAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.davebestdeals.com_0.localstorage-journal" not deleted
==== EOF on po 30. 01. 2017 at 13:24:37,50 ======================
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.0 (12.05.2016)
Operating System: Windows 8.1 x64
Ran by TOMAS (Administrator) on po 30. 01. 2017 at 13:26:13,45
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 1
Successfully deleted: C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} (Task)
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 30. 01. 2017 at 13:27:37,07
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Re: přesměrování na reimage a jiná vyskakovací okna
citat:
•Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
•Oznacte jen moznost "Remove disinfection tools"
•kliknete na Run
a malo by byt hotovo
•Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
•Oznacte jen moznost "Remove disinfection tools"
•kliknete na Run
a malo by byt hotovo
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
-
tomascupak
- Návštěvník
- Příspěvky: 15
- Registrován: 30 dub 2015 08:31
Re: přesměrování na reimage a jiná vyskakovací okna
vypadá to vpořádku, super, díky moc 
Re: přesměrování na reimage a jiná vyskakovací okna
tolko radosti 
rado sa stalo
rado sa stalo
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?