1. Addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-01-2017
Ran by Jan (04-02-2017 11:15:32)
Running from C:\Users\Jan\Desktop
Windows 8.1 Pro (Update) (X64) (2016-09-08 22:05:35)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1071189237-3862994071-2567526139-500 - Administrator - Disabled)
Guest (S-1-5-21-1071189237-3862994071-2567526139-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1071189237-3862994071-2567526139-1003 - Limited - Enabled)
Jan (S-1-5-21-1071189237-3862994071-2567526139-1001 - Administrator - Enabled) => C:\Users\Jan
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1.25534 - emc, uTorrent.CZ)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Content Viewer (HKLM-x32\...\com.adobe.dmp.contentviewer) (Version: 1.4.0 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Illustrator CS6 (HKLM-x32\...\{4869414E-7AEA-4C8E-BE1C-8D40977FD517}) (Version: 16.0 - Adobe Systems Incorporated)
Adobe InDesign CS5.5 (HKLM-x32\...\{857CC5F0-040E-1016-A173-D55ADD80C260}) (Version: 7.5 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Photoshop CS5 (HKLM-x32\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.19) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.19 - Adobe Systems Incorporated)
AirDroid 3.3.4.0 (HKLM-x32\...\AirDroid) (Version: 3.3.4.0 - Sand Studio)
Ansel (Version: 376.33 - NVIDIA Corporation) Hidden
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.22 - Piriform)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
Counter-Strike: Source (HKLM\...\Steam App 240) (Version: - Valve)
CPUID CPU-Z MSI 1.76 (HKLM\...\CPUID CPU-Z MSI_is1) (Version: 1.76 - CPUID, Inc.)
Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform)
DiRT Rally v1.1 (HKLM\...\ZGlydHJhbGx5_is1) (Version: 1 - )
Dropbox (HKLM-x32\...\Dropbox) (Version: 13.4.21 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.51.1 - Dropbox, Inc.) Hidden
ePER (HKLM-x32\...\{BB224962-A37E-4E24-87E2-BD0F47B6A8F5}) (Version: 8.40.0 - Fiat)
F1 2016 (HKLM\...\Steam App 391040) (Version: - Codemasters)
Far Cry 4 (HKLM-x32\...\Uplay Install 420) (Version: - Ubisoft)
FileZilla Client 3.23.0.2 (HKLM-x32\...\FileZilla Client) (Version: 3.23.0.2 - Tim Kosse)
Google Drive (HKLM-x32\...\{07A12123-B717-496B-B471-48AF6407B433}) (Version: 1.32.4066.7445 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
HWiNFO64 Version 5.42 (HKLM\...\HWiNFO64_is1) (Version: 5.42 - Martin Malík - REALiX)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.63.1519.7 - Intel Corporation)
Intel(R) USB 3.0 Host Controller Adaptation Driver (HKLM\...\{9472AEE5-5D4D-4329-8BD8-B282FD33B8E0}) (Version: 1.0.1.45 - Intel Corporation)
Intel® Chipset Device Software (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{554C62C7-E6BB-40F1-892B-F0AE02D3C135}) (Version: 12.5.3.17 - Apple Inc.)
JPEG Resampler Vs 5.99.99 (HKLM-x32\...\JPEG Resampler_is1) (Version: - David Macek)
Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32\...\{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32\...\{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 - Microsoft Corporation)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.0.0.21 - MSI)
MXGP - The Official Motocross Videogame (HKLM\...\Steam App 256370) (Version: - Milestone S.r.l.)
MXGP2 (HKLM-x32\...\MXGP2_is1) (Version: - )
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
NVIDIA Ovladač HD audia 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.33 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA Virtuální audio Miracast 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 376.33 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.3.3.1921 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 376.33 (Version: 376.33 - NVIDIA Corporation) Hidden
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.)
Project CARS Game Of The Year Edition (HKLM\...\cHJvamVjdGNhcnM_is1) (Version: 1 - )
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.6.1.2730 - Jan Fiala)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.46.422.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7960 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.0.8 - Rockstar Games)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Smart Organizing Monitor (HKLM-x32\...\{77534F47-08D5-4A50-8249-403C9ECE9840}) (Version: 1.00.0000 - RICOH)
Sound Blaster Tactic(3D) (HKLM-x32\...\{92000C16-939B-44CA-802F-0D552019D7C8}) (Version: 1.0 - Creative Technology Limited)
Splinter Cell Blacklist (HKLM-x32\...\Uplay Install 91) (Version: - Ubisoft)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
Tom Clancy's Ghost Recon Future Soldier (HKLM-x32\...\Uplay Install 53) (Version: - Ubisoft)
Tom Clancy's The Division (HKLM-x32\...\Uplay Install 568) (Version: - Ubisoft)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.52a - Ghisler Software GmbH)
TP-LINK TL-WN821N Driver (HKLM-x32\...\{03468BE2-4451-416D-B045-60F2101122D4}) (Version: 1.3.1 - TP-LINK)
TrackMania Nations Forever (HKLM\...\Steam App 11020) (Version: - Nadeo)
Update for Skype for Business 2015 (KB3039776) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0405-0000-0000000FF1CE}_Office15.PROPLUS_{AED52533-C34E-47F3-B905-68662D338FA0}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3141468) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{0BA3C700-ABED-4994-BB60-2FD66DFAF674}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3141468) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.PROPLUS_{0BA3C700-ABED-4994-BB60-2FD66DFAF674}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3141468) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0405-0000-0000000FF1CE}_Office15.PROPLUS_{0BA3C700-ABED-4994-BB60-2FD66DFAF674}) (Version: - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 22.2 - Ubisoft)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1071189237-3862994071-2567526139-1001_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files (x86)\PSPad editor\pspshellx64.dll ()
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {014C7E99-DBC8-41BB-839A-D36634391FC1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-21] (Microsoft Corporation)
Task: {08341A50-7D0F-4361-B019-36F0502A7908} - System32\Tasks\Speedfan\SpeedFab => C:\Program Files (x86)\SpeedFan\speedfan.exe [2016-06-29] ()
Task: {0DACC310-15CC-4A96-9C34-0429D65B25AF} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {194E9148-34BE-4B56-9CCA-6318EB4CC640} - System32\Tasks\MSIOSDx86_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe [2016-07-28] (Micro-Star INT'L CO., LTD.)
Task: {24501622-1D45-4DC1-A3D5-BE72EBD44AD7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {2A90330C-C6D8-4352-BF4B-AD954F99E3D2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-09] (Google Inc.)
Task: {2C75F966-D6F0-4BF2-896C-F445C3857A52} - System32\Tasks\MSIOSDx64_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe [2016-07-28] (Micro-Star INT'L CO., LTD.)
Task: {6560136E-3D6E-4465-8D66-3A680E9C33B0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-21] (Microsoft Corporation)
Task: {7B9EDEF5-ACDB-4C01-B1DC-2B96BDAA49DD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-26] (Piriform Ltd)
Task: {7BA7EE78-69CE-4589-A549-1EB7C811E062} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-09-09] (Dropbox, Inc.)
Task: {88ED48C7-994E-4C19-AD42-86F60651A752} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-09] (Google Inc.)
Task: {B00B3832-BF8E-4CE4-A0AA-B0973C9A2C2C} - System32\Tasks\EVGAPrecisionX => C:\Program Files (x86)\EVGA\Precision XOC\PrecisionX_x64.exe
Task: {BFBA0AEF-6A7A-45E6-A2E6-DA6C43F9E603} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {D2008BC6-6304-438B-8669-9773F5A120FA} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-09-09] (Dropbox, Inc.)
Task: {F4EBA58F-A68D-4457-A767-048D085961D4} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [2015-08-18] (MSI)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\AirMirror.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=macmgoeeggnlnmpiojbcniblabkdjphe
ShortcutWithArgument: C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Pocket.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=mjcnijlhddpbdemagnpefmlkjdagkogk
==================== Loaded Modules (Whitelisted) ==============
2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-01-13 13:56 - 2016-10-05 18:17 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-11-26 14:53 - 2016-12-02 23:21 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2016-09-09 11:28 - 2016-06-14 15:35 - 00187392 _____ () C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\D3D11FontDraw.dll
2016-06-29 19:01 - 2016-06-29 19:01 - 08166536 _____ () C:\Program Files (x86)\SpeedFan\speedfan.exe
2016-09-09 11:28 - 2016-06-14 15:35 - 00163328 _____ () C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\D3D11FontDraw.dll
2017-02-04 10:35 - 2017-02-04 10:35 - 00098816 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\win32api.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00110080 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\pywintypes27.dll
2017-02-04 10:35 - 2017-02-04 10:35 - 00364544 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\pythoncom27.dll
2017-02-04 10:35 - 2017-02-04 10:35 - 00320512 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\win32com.shell.shell.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00914432 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\_hashlib.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 01176576 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\wx._core_.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00806400 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\wx._gdi_.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00816128 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\wx._windows_.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 01067008 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\wx._controls_.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00733184 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\wx._misc_.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00682496 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\pysqlite2._sqlite.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00088064 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\_ctypes.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00686080 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\unicodedata.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00119808 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\win32file.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00108544 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\win32security.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00007168 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\hashobjs_ext.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00017920 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\thumbnails_ext.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00088064 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\usb_ext.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00012800 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\common.time34.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00018432 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\win32event.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00167936 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\win32gui.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00046080 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\_socket.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 01303552 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\_ssl.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00128512 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\_elementtree.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00127488 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\pyexpat.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00038912 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\win32inet.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00036864 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\_psutil_windows.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00524248 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\windows._lib_cacheinvalidation.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00011264 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\win32crypt.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00123392 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\wx._wizard.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00077312 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\wx._html2.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00027648 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\_multiprocessing.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00020480 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\_yappi.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00035840 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\win32process.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00078848 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\wx._animate.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00024064 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\win32pipe.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00010240 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\select.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00025600 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\win32pdh.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00017408 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\win32profile.pyd
2017-02-04 10:35 - 2017-02-04 10:35 - 00022528 ____R () C:\Users\Jan\AppData\Local\Temp\_MEI49602\win32ts.pyd
2017-02-04 10:37 - 2017-02-04 10:37 - 00158720 _____ () C:\Users\Jan\AppData\Local\Temp\sfareca00001.dll
2016-09-08 23:29 - 2017-02-04 10:37 - 00192512 _____ () C:\Users\Jan\AppData\Local\Temp\sfamcc00001.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1071189237-3862994071-2567526139-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Jan\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\sunrise-in-space.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "AdobeCS5ServiceManager"
HKLM\...\StartupApproved\Run32: => "AdobeCS5.5ServiceManager"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "eperjavaapp"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKU\S-1-5-21-1071189237-3862994071-2567526139-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1071189237-3862994071-2567526139-1001\...\StartupApproved\Run: => "AdobeBridge"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [{1A7ECCB8-6663-4579-A3C8-4E76AF3DE80D}] => D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A3BD00EC-3EF3-4EFD-B442-14448D9EED5B}] => D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1F6627BE-98D1-4FE7-B666-B5B8E10FD3AE}] => D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{1CBB4902-AB75-4288-9CFD-7EB8AEA7CB51}] => D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{3A64CEF3-7F9C-43AA-A738-C07035C255A6}D:\program files\mxgp2\mxgp_2x64.exe] => D:\program files\mxgp2\mxgp_2x64.exe
FirewallRules: [UDP Query User{914DE14C-D14F-4FB5-9009-3E4CEEC56EE6}D:\program files\mxgp2\mxgp_2x64.exe] => D:\program files\mxgp2\mxgp_2x64.exe
FirewallRules: [TCP Query User{CD272339-CD13-487A-BD4F-5A718C28DEA5}C:\users\jan\appdata\local\temp\utlite0\utorrent.exe] => C:\users\jan\appdata\local\temp\utlite0\utorrent.exe
FirewallRules: [UDP Query User{758013E6-60BF-4E0B-AFF4-71CAF96678E4}C:\users\jan\appdata\local\temp\utlite0\utorrent.exe] => C:\users\jan\appdata\local\temp\utlite0\utorrent.exe
FirewallRules: [TCP Query User{7FAC0823-965E-48B7-8DC8-B965C9848A43}C:\users\jan\appdata\local\temp\rar$exa0.247\utorrent.exe] => C:\users\jan\appdata\local\temp\rar$exa0.247\utorrent.exe
FirewallRules: [UDP Query User{13E0BE77-0E28-444E-931B-84824469AFA6}C:\users\jan\appdata\local\temp\rar$exa0.247\utorrent.exe] => C:\users\jan\appdata\local\temp\rar$exa0.247\utorrent.exe
FirewallRules: [TCP Query User{F89C0AC2-26F3-4678-8F32-D878A9A72413}C:\users\jan\appdata\local\temp\rar$exa0.493\utorrent.exe] => C:\users\jan\appdata\local\temp\rar$exa0.493\utorrent.exe
FirewallRules: [UDP Query User{AE6AC04C-DC67-49D4-AB23-AE1AE4E841CC}C:\users\jan\appdata\local\temp\rar$exa0.493\utorrent.exe] => C:\users\jan\appdata\local\temp\rar$exa0.493\utorrent.exe
FirewallRules: [{3B46EC01-3C54-4CE5-B2E9-601920CEEEDC}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C41E5D6B-3169-4C50-BA1F-3065004F5E23}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4A442E06-3D12-4B80-A9C2-5FB3F030765C}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{5F9451E7-13DB-4D2E-8FAA-4C1AD2F69541}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{3A99F1A9-F73B-4335-94E8-6F777E6130FA}D:\program files\rockstar games\grand theft auto v\gta5.exe] => D:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{EF71C562-B080-41FA-A3B0-8DCFDC2B5794}D:\program files\rockstar games\grand theft auto v\gta5.exe] => D:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [{E3C5A56D-2554-4E62-AFB5-CBDCB9DE7B4D}] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Splinter Cell Blacklist\src\SYSTEM\Blacklist_game.exe
FirewallRules: [{CEA1E636-6B56-4C7A-8360-0630C51C36F0}] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Splinter Cell Blacklist\src\SYSTEM\Blacklist_game.exe
FirewallRules: [{89A34170-522B-4E84-9993-ABDFE53BD213}] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Splinter Cell Blacklist\src\SYSTEM\Blacklist_DX11_game.exe
FirewallRules: [{D1AF987D-3922-47DA-8A1A-1F86A4C58190}] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Splinter Cell Blacklist\src\SYSTEM\Blacklist_DX11_game.exe
FirewallRules: [{CB5D2E74-7809-4B7E-B962-C49AFBF9E985}] => D:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{C6D8EC05-BFEB-4E00-ADC5-1F1525C7D661}] => D:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{E67E18B1-F4C4-426D-8A64-9126DB51EEDC}] => D:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{948555A9-283B-4566-A481-25E2CEEE0B8F}] => D:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{4C9C8414-26FB-4D8D-A986-5227914507FD}D:\program files (x86)\fiat\eper\j2sdk1.4.1\bin\javaw.exe] => D:\program files (x86)\fiat\eper\j2sdk1.4.1\bin\javaw.exe
FirewallRules: [UDP Query User{60A13813-84FF-4CF1-9561-8D96F2CA53AE}D:\program files (x86)\fiat\eper\j2sdk1.4.1\bin\javaw.exe] => D:\program files (x86)\fiat\eper\j2sdk1.4.1\bin\javaw.exe
FirewallRules: [{2CFD43B3-3532-4C3A-8B2F-05FD53701341}] => D:\Program Files (x86)\Steam\steamapps\common\MXGP\MXGP.exe
FirewallRules: [{C00A1607-08C1-4086-AB69-9C847B8249FE}] => D:\Program Files (x86)\Steam\steamapps\common\MXGP\MXGP.exe
FirewallRules: [TCP Query User{C4C50E1C-2289-46B7-8B94-ECDC3A955F4C}C:\program files (x86)\airdroid\airdroid.exe] => C:\program files (x86)\airdroid\airdroid.exe
FirewallRules: [UDP Query User{76BE5591-9DB9-4569-AAAC-E85664C2CD52}C:\program files (x86)\airdroid\airdroid.exe] => C:\program files (x86)\airdroid\airdroid.exe
FirewallRules: [TCP Query User{7A8C393C-9DAF-4657-8AEA-C7D44E4131CC}C:\program files\utorrent\utorrent.exe] => C:\program files\utorrent\utorrent.exe
FirewallRules: [UDP Query User{1904AD68-9865-4A9D-8552-4C4F319AB248}C:\program files\utorrent\utorrent.exe] => C:\program files\utorrent\utorrent.exe
FirewallRules: [{0B23AA3D-3C79-4D93-A7E5-42062B08FDDC}] => C:\Program Files\uTorrent\utorrent.exe
FirewallRules: [{76D05D0D-D2C4-4F02-82BE-989436C013E6}] => C:\Program Files\uTorrent\utorrent.exe
FirewallRules: [TCP Query User{11930759-5249-48F4-841A-0C9F898C2124}C:\users\jan\appdata\local\utorrent\utorrent.exe] => C:\users\jan\appdata\local\utorrent\utorrent.exe
FirewallRules: [UDP Query User{2D38A2F2-04B7-4405-9747-C6C500C74AFA}C:\users\jan\appdata\local\utorrent\utorrent.exe] => C:\users\jan\appdata\local\utorrent\utorrent.exe
FirewallRules: [{A2835518-CD4A-428E-A013-42D049B22223}] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{8648DAC0-6D4C-4976-9699-A91A1AE427EB}] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{C77C887B-FD96-4CC9-B98F-DEA0D8998E82}] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{D6C0F6FF-9364-4A27-9AF7-9866E1E93467}] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [TCP Query User{067CCFA3-2818-46AD-B96C-70C0324AFE51}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{CF177521-5436-464C-A37C-3D79DDE1A1F5}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{A1043321-BDA3-4B07-A4F4-B00708384251}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{063AD7B6-65BE-4751-9337-2D675EA7176E}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{EBF876CF-A219-41F8-99E1-B43E16B34381}D:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 4\bin\farcry4.exe] => D:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{3870B08D-5329-4A5F-8DEC-38C741E43DB7}D:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 4\bin\farcry4.exe] => D:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 4\bin\farcry4.exe
FirewallRules: [TCP Query User{CA0154B2-95FF-4473-80AE-9EBE1C16B469}D:\program files\mxgp2\mxgp_2x64.exe] => D:\program files\mxgp2\mxgp_2x64.exe
FirewallRules: [UDP Query User{5E179715-6802-4B10-8187-71B646032FC4}D:\program files\mxgp2\mxgp_2x64.exe] => D:\program files\mxgp2\mxgp_2x64.exe
FirewallRules: [TCP Query User{D633C62E-A895-4841-AFFB-7B8626F1E204}C:\users\jan\appdata\local\utorrent\utorrent.exe] => C:\users\jan\appdata\local\utorrent\utorrent.exe
FirewallRules: [UDP Query User{F814EAF7-6D09-45AC-924E-EA4C355109FC}C:\users\jan\appdata\local\utorrent\utorrent.exe] => C:\users\jan\appdata\local\utorrent\utorrent.exe
FirewallRules: [{883CB653-6C8A-459E-80E2-1649DA4DABF1}] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [TCP Query User{6A51097C-3CB4-42FD-B6BA-2B2E96A1D07E}D:\program files\rockstar games\grand theft auto v\gta5.exe] => D:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{A572F6BD-D394-4E4F-A94C-0A977EAAF418}D:\program files\rockstar games\grand theft auto v\gta5.exe] => D:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{FCB9444F-DD07-4B00-9405-4FEDE949B425}D:\program files (x86)\fiat\eper\j2sdk1.4.1\bin\javaw.exe] => D:\program files (x86)\fiat\eper\j2sdk1.4.1\bin\javaw.exe
FirewallRules: [UDP Query User{FE4D3899-D22D-4C1F-96A2-1C43DD8ACF4C}D:\program files (x86)\fiat\eper\j2sdk1.4.1\bin\javaw.exe] => D:\program files (x86)\fiat\eper\j2sdk1.4.1\bin\javaw.exe
FirewallRules: [{799DFA32-77ED-403A-9C49-A8757002D009}] => D:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForever.exe
FirewallRules: [{37C4FE50-57CF-4071-8AE2-6B4EDF898702}] => D:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForever.exe
FirewallRules: [{DC338236-A563-4DB8-81EA-D8251A4110A6}] => D:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForeverLauncher.exe
FirewallRules: [{B5EE2CFA-CBDE-4EC3-9C82-0610D2C60FA6}] => D:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForeverLauncher.exe
FirewallRules: [{9871A957-C39B-405A-871B-56AD154F0BF3}] => C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{6617064C-EBBF-41D8-992A-1A63F134D76E}] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Ghost Recon Future Soldier\Future Soldier DX11.exe
FirewallRules: [{BB81F0A9-412C-49CE-8E60-786C6629AB42}] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Ghost Recon Future Soldier\Future Soldier DX11.exe
FirewallRules: [{D6C2373B-4369-4C73-943E-4503C5159EC7}] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Ghost Recon Future Soldier\Future Soldier DX9.exe
FirewallRules: [{58DE3297-999E-412E-B3D7-CA02B33CA270}] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Ghost Recon Future Soldier\Future Soldier DX9.exe
FirewallRules: [{351AAFB1-0A77-4A00-8F1E-F30B6A3DE739}] => C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{41BB6848-9792-4E20-B9BA-210BCF880C3B}] => C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{E128C9C8-57D6-4291-B8F9-8B75E869D204}] => C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{64120F2C-3E72-4DBF-B657-A76633FD38C3}] => C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3FDDC18C-E6CC-4255-81B4-DE7F9C320727}] => D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{68343B63-D545-41B0-B000-CF61B9CDDDF4}] => D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [TCP Query User{11B3891C-6495-4CB3-926C-80301FC114AC}C:\program files (x86)\airdroid\airdroid.exe] => C:\program files (x86)\airdroid\airdroid.exe
FirewallRules: [UDP Query User{3C5BD02D-3C8F-4EBC-97D1-22B5415F5E57}C:\program files (x86)\airdroid\airdroid.exe] => C:\program files (x86)\airdroid\airdroid.exe
FirewallRules: [{8C6925B1-7A89-4919-B6A7-778FE68B99DC}] => D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{CC848C51-0258-4973-969B-A64B5A3A9E84}] => D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{88DBE454-44F5-4B39-92F6-C71593C0C32F}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{1747AF65-ADB8-418B-87C7-CA179C2540AB}] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's The Division\TheDivision.exe
FirewallRules: [{DFB8B043-7BCB-450E-9F1E-12E6F031C811}] => LPort=26789
FirewallRules: [{614B8C9A-3F9A-4D4B-9E28-3CBFC2F60C09}] => D:\Program Files (x86)\Steam\steamapps\common\F1 2016\F1_2016.exe
FirewallRules: [{AC27EAD9-C386-4A83-B35E-C5397973149E}] => D:\Program Files (x86)\Steam\steamapps\common\F1 2016\F1_2016.exe
==================== Restore Points =========================
27-01-2017 15:27:07 Restore Point Created by FRST
01-02-2017 21:13:09 Operace obnovení
04-02-2017 10:16:03 Removed EVGA Precision XOC.
==================== Faulty Device Manager Devices =============
Name: Standardní klávesnice PS/2
Description: Standardní klávesnice PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardní klávesnice)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Myš Microsoft pro port PS/2
Description: Myš Microsoft pro port PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (02/04/2017 11:15:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TOTALCMD64.EXE, verze: 8.5.2.1, časové razítko: 0x00000000
Název chybujícího modulu: nvapi64.dll_unloaded, verze: 21.21.13.7633, časové razítko: 0x584d92ec
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000002841dc
ID chybujícího procesu: 0x1058
Čas spuštění chybující aplikace: 0x01d27ecf83d00172
Cesta k chybující aplikaci: C:\Program Files\Totalcmd\TOTALCMD64.EXE
Cesta k chybujícímu modulu: nvapi64.dll
ID zprávy: c92bc520-eac2-11e6-8283-4ccc6a4b6ba2
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/04/2017 11:14:58 AM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Total Commander.
Program: Total Commander
Soubor:
Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.
Další údaje
Hodnota chyby: 00000000
Typ disku: 0
Error: (02/04/2017 11:14:58 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TOTALCMD64.EXE, verze: 8.5.2.1, časové razítko: 0x00000000
Název chybujícího modulu: nvapi64.dll, verze: 21.21.13.7633, časové razítko: 0x584d92ec
Kód výjimky: 0xc000001d
Posun chyby: 0x000000000000a63d
ID chybujícího procesu: 0x1058
Čas spuštění chybující aplikace: 0x01d27ecf83d00172
Cesta k chybující aplikaci: C:\Program Files\Totalcmd\TOTALCMD64.EXE
Cesta k chybujícímu modulu: C:\Windows\system32\nvapi64.dll
ID zprávy: c75f8f08-eac2-11e6-8283-4ccc6a4b6ba2
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/04/2017 11:14:57 AM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Total Commander.
Program: Total Commander
Soubor:
Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.
Další údaje
Hodnota chyby: 00000000
Typ disku: 0
Error: (02/04/2017 11:14:57 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TOTALCMD64.EXE, verze: 8.5.2.1, časové razítko: 0x00000000
Název chybujícího modulu: nvapi64.dll, verze: 21.21.13.7633, časové razítko: 0x584d92ec
Kód výjimky: 0xc000001d
Posun chyby: 0x000000000000a63d
ID chybujícího procesu: 0x1058
Čas spuštění chybující aplikace: 0x01d27ecf83d00172
Cesta k chybující aplikaci: C:\Program Files\Totalcmd\TOTALCMD64.EXE
Cesta k chybujícímu modulu: C:\Windows\system32\nvapi64.dll
ID zprávy: c742f209-eac2-11e6-8283-4ccc6a4b6ba2
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/04/2017 11:14:57 AM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Total Commander.
Program: Total Commander
Soubor:
Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.
Další údaje
Hodnota chyby: 00000000
Typ disku: 0
Error: (02/04/2017 11:14:57 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TOTALCMD64.EXE, verze: 8.5.2.1, časové razítko: 0x00000000
Název chybujícího modulu: nvapi64.dll, verze: 21.21.13.7633, časové razítko: 0x584d92ec
Kód výjimky: 0xc000001d
Posun chyby: 0x000000000000a63d
ID chybujícího procesu: 0x1058
Čas spuštění chybující aplikace: 0x01d27ecf83d00172
Cesta k chybující aplikaci: C:\Program Files\Totalcmd\TOTALCMD64.EXE
Cesta k chybujícímu modulu: C:\Windows\system32\nvapi64.dll
ID zprávy: c71f2dc8-eac2-11e6-8283-4ccc6a4b6ba2
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/04/2017 11:14:57 AM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Total Commander.
Program: Total Commander
Soubor:
Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.
Další údaje
Hodnota chyby: 00000000
Typ disku: 0
Error: (02/04/2017 11:14:57 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TOTALCMD64.EXE, verze: 8.5.2.1, časové razítko: 0x00000000
Název chybujícího modulu: nvapi64.dll, verze: 21.21.13.7633, časové razítko: 0x584d92ec
Kód výjimky: 0xc000001d
Posun chyby: 0x000000000000a63d
ID chybujícího procesu: 0x1058
Čas spuštění chybující aplikace: 0x01d27ecf83d00172
Cesta k chybující aplikaci: C:\Program Files\Totalcmd\TOTALCMD64.EXE
Cesta k chybujícímu modulu: C:\Windows\system32\nvapi64.dll
ID zprávy: c704f339-eac2-11e6-8283-4ccc6a4b6ba2
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/04/2017 11:14:57 AM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Total Commander.
Program: Total Commander
Soubor:
Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.
Další údaje
Hodnota chyby: 00000000
Typ disku: 0
System errors:
=============
Error: (02/04/2017 10:35:11 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba MSI_Driver_Service přestala během spouštění reagovat.
Error: (02/04/2017 10:35:11 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba MSI_ActiveX_Service přestala během spouštění reagovat.
Error: (02/04/2017 10:35:11 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba GamingApp_Service přestala během spouštění reagovat.
Error: (02/04/2017 10:34:20 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Origin Web Helper Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (02/04/2017 10:34:20 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Origin Web Helper Service bylo dosaženo časového limitu (60000 ms).
Error: (02/04/2017 10:33:15 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN se nepodařilo spustit.
Cesta k modulu: C:\Windows\system32\Rtlihvs.dll
Kód chyby: 126
Error: (02/04/2017 10:32:10 AM) (Source: DCOM) (EventID: 10010) (User: PC-I5)
Description: Server {4545DEA0-2DFC-4906-A728-6D986BA399A9} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/04/2017 10:32:10 AM) (Source: DCOM) (EventID: 10010) (User: PC-I5)
Description: Server {4545DEA0-2DFC-4906-A728-6D986BA399A9} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/04/2017 10:32:04 AM) (Source: DCOM) (EventID: 10010) (User: PC-I5)
Description: Server {4545DEA0-2DFC-4906-A728-6D986BA399A9} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/04/2017 10:32:04 AM) (Source: DCOM) (EventID: 10010) (User: PC-I5)
Description: Server {4545DEA0-2DFC-4906-A728-6D986BA399A9} se v daném časovém limitu neregistroval u služby DCOM.
CodeIntegrity:
===================================
Date: 2017-02-04 11:10:21.998
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-04 11:10:21.748
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-04 11:10:21.600
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-04 11:10:21.447
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-04 11:10:21.235
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-04 11:10:21.091
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-04 11:10:20.665
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-04 11:10:20.524
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-04 11:10:20.292
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-04 11:10:19.861
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-6500 CPU @ 3.20GHz
Percentage of memory in use: 14%
Total physical RAM: 16348.15 MB
Available physical RAM: 14047.66 MB
Total Virtual: 32732.15 MB
Available Virtual: 30437.08 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:194.8 GB) (Free:91.74 GB) NTFS
Drive d: (Data) (Fixed) (Total:736.2 GB) (Free:387.27 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: D60014E3)
Partition: GPT.
==================== End of Addition.txt ============================
2. FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-01-2017
Ran by Jan (administrator) on PC-I5 (04-02-2017 11:15:08)
Running from C:\Users\Jan\Desktop
Loaded Profiles: Jan (Available Profiles: Jan)
Platform: Windows 8.1 Pro (Update) (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
(MSI) C:\Program Files (x86)\MSI\MSI OC Kit\Driver_Service\MSI_Driver_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe
(MSI) C:\Windows\SysWOW64\muachost.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Tactic(3D)\Sound Blaster Tactic(3D) Control Panel\Tactic3D.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Tactic(3D)\Sound Blaster Tactic(3D) Control Panel\CTHKSvr.exe
(Creative Technology Ltd.) C:\Program Files (x86)\Creative\ShareDLL\CADI\NotiMan.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
() C:\Program Files (x86)\SpeedFan\speedfan.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-11-01] (Apple Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9037832 2016-10-21] (Realtek Semiconductor)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25424008 2016-10-24] (Dropbox, Inc.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [eperjavaapp] => D:\Program Files (x86)\Fiat\ePER\j2sdk1.4.1 injavaw.exe
HKLM-x32\...\Run: [Sound Blaster Tactic3D Control Panel] => C:\Program Files (x86)\Creative\Sound Blaster Tactic(3D)\Sound Blaster Tactic(3D) Control Panel\Tactic3D.exe [2091008 2014-07-03] (Creative Technology Ltd)
HKU\S-1-5-21-1071189237-3862994071-2567526139-1001\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [2881824 2017-01-19] (Valve Corporation)
HKU\S-1-5-21-1071189237-3862994071-2567526139-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23818360 2016-11-30] (Google)
HKU\S-1-5-21-1071189237-3862994071-2567526139-1001\...\Run: [TomTom MySports Connect.exe] => C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe [638464 2016-12-05] (TomTom)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
GroupPolicy: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8DCDC419-E440-4A8D-B179-2EF574A08CBE}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{9D6ED7C4-D86A-4066-ABAC-6D69CD3940E3}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{E3134B6A-FFB8-4059-AF38-2A3B297C9D5E}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-1071189237-3862994071-2567526139-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://adisepo.mfcr.cz/adistc/adis/idpr_epo/epo2/uvod/vstup.faces
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-15] (Microsoft Corporation)
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
FireFox:
========
FF ProfilePath: C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\1cChxAJa.default [2016-09-08]
FF Extension: (Avira Browser Safety) - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\1cChxAJa.default\Extensions\
abs@avira.com [2016-09-08]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-12-17] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://
www.google.com/
CHR Profile: C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default [2017-02-04]
CHR Extension: (Prezentace Google) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-09]
CHR Extension: (Dokumenty Google) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-09-09]
CHR Extension: (Disk Google) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-09]
CHR Extension: (Web Developer) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2016-09-09]
CHR Extension: (James White) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkeidgmehkdjmpjodpjkepolokanalkm [2016-09-09]
CHR Extension: (YouTube) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-09]
CHR Extension: (Tabulky Google) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-09]
CHR Extension: (Avira Browser Safety) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-09-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-09]
CHR Extension: (AdBlock) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-02-01]
CHR Extension: (Uložit na Disk Google) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2016-09-09]
CHR Extension: (Mapy Google) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2016-09-09]
CHR Extension: (AirMirror) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\macmgoeeggnlnmpiojbcniblabkdjphe [2016-09-09]
CHR Extension: (Pocket) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjcnijlhddpbdemagnpefmlkjdagkogk [2016-09-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-01]
CHR Extension: (Gmail) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-09-09]
CHR Extension: (Chrome Media Router) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-15]
CHR Profile: C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-02-01]
CHR Extension: (Prezentace Google) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-19]
CHR Extension: (Dokumenty Google) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-09-19]
CHR Extension: (Disk Google) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-19]
CHR Extension: (YouTube) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-19]
CHR Extension: (Tabulky Google) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-19]
CHR Extension: (AdBlock) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-02-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-01]
CHR Extension: (Gmail) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-09-19]
CHR Extension: (Chrome Media Router) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-26]
CHR Profile: C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 2 [2016-12-30]
CHR Extension: (Prezentace Google) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-24]
CHR Extension: (Dokumenty Google) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-24]
CHR Extension: (Disk Google) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-24]
CHR Extension: (YouTube) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-24]
CHR Extension: (Tabulky Google) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-27]
CHR Extension: (AdBlock) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-11-24]
CHR Extension: (Mapy Google) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2016-11-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-24]
CHR Extension: (Spořič dat) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pfmgfdlgomnbgkofeojodiodmgpgmkac [2016-11-24]
CHR Extension: (Gmail) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-24]
CHR Extension: (Chrome Media Router) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-24]
CHR Profile: C:\Users\Jan\AppData\Local\Google\Chrome\User Data\System Profile [2016-12-30]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1071189237-3862994071-2567526139-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [423424 2011-10-19] (Creative Technology Ltd) [File not signed]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-09] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-09] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [41576 2016-10-24] (Dropbox, Inc.)
R2 GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [45008 2016-08-25] (Micro-Star Int'l Co., Ltd.)
R2 GamingHotkey_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2019792 2016-05-16] (Micro-Star INT'L CO., LTD.)
R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [58296 2016-08-12] (Micro-Star INT'L CO., LTD.)
R2 MSI_Driver_Service; C:\Program Files (x86)\MSI\MSI OC Kit\Driver_Service\MSI_Driver_Service.exe [54880 2016-09-08] (MSI)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-12-11] (NVIDIA Corporation)
S3 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [2119688 2016-12-16] (Electronic Arts)
S2 Origin Web Helper Service; D:\Program Files (x86)\Origin\OriginWebHelperService.exe [2180624 2016-12-16] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-12-02] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [27552 2016-09-16] (REALiX(tm))
R3 I2cHkBurn; C:\Windows\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (FINTEK Corp.)
S3 iaLPSS2_GPIO2; C:\Windows\system32\DRIVERS\iaLPSS2_GPIO2.sys [88376 2016-09-20] (Intel Corporation)
S3 iaLPSS2_I2C; C:\Windows\system32\DRIVERS\iaLPSS2_I2C.sys [185144 2016-09-20] (Intel Corporation)
S3 iaLPSS2_UART2; C:\Windows\system32\DRIVERS\iaLPSS2_UART2.sys [281400 2016-09-20] (Intel Corporation)
R3 iusb3adp; C:\Windows\System32\drivers\iusb3adp.sys [37672 2015-07-31] (Intel)
R3 NTIOLib_ACTIVE_X; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\NTIOLib_X64.sys [13776 2016-04-12] (MSI)
R3 NTIOLib_OCKit_MB; C:\Program Files (x86)\MSI\MSI OC Kit\Driver_Service\NTIOLib_X64.sys [13776 2016-09-08] (MSI)
S3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56376 2016-08-26] (NVIDIA Corporation)
R3 RtlWlanu; C:\Windows\system32\DRIVERS\rtwlanu.sys [4664072 2015-12-22] (Realtek Semiconductor Corporation )
R3 UHSfiltv; C:\Windows\system32\drivers\UHSfiltv.sys [23552 2013-05-31] (Creative Technology Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\EVGA\Precision XOC\WinRing0\WinRing0x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-02-04 11:13 - 2017-02-04 11:14 - 02420736 _____ (Farbar) C:\Users\Jan\Desktop\FRST64.exe
2017-02-04 11:08 - 2017-02-04 11:09 - 04669119 _____ C:\Users\Jan\Downloads\CrystalDiskInfo6_7_5.zip
2017-02-04 10:16 - 2017-02-04 10:16 - 01109937 _____ C:\Users\Jan\Downloads\imageusb.zip
2017-02-04 10:10 - 2017-02-04 10:11 - 00000412 __RSH C:\ProgramData\ntuser.pol
2017-02-04 10:09 - 2017-02-04 10:10 - 00949880 _____ (Akeo Consulting (hxxp://akeo.ie)) C:\Users\Jan\Downloads\rufus-2.12.exe
2017-02-04 10:09 - 2017-02-04 10:09 - 01473404 _____ C:\Users\Jan\Downloads\BootableUSB.zip
2017-02-04 10:08 - 2017-02-04 10:09 - 08867840 _____ C:\Users\Jan\Downloads\SeaToolsDOS223ALL (1).ISO
2017-02-03 22:06 - 2017-02-03 22:06 - 00047215 _____ C:\Users\Jan\Desktop\Minidump.zip
2017-02-03 22:06 - 2017-02-03 22:06 - 00000000 ____D C:\Users\Jan\Desktop\Minidump
2017-02-03 11:11 - 2017-02-03 11:11 - 00121069 _____ C:\Users\Jan\Downloads\memtest86+-5.01.usb.installer.zip
2017-02-03 11:11 - 2013-08-23 13:57 - 00147334 _____ C:\Users\Jan\Desktop\Memtest86+ USB Installer.exe
2017-02-02 23:10 - 2017-02-02 23:11 - 08867840 _____ C:\Users\Jan\Downloads\SeaToolsDOS223ALL.ISO
2017-02-01 21:35 - 2017-02-01 21:35 - 00035328 _____ C:\Users\Jan\Downloads\zadost (1).dot
2017-02-01 21:33 - 2017-02-01 21:33 - 00035328 _____ C:\Users\Jan\Downloads\zadost.dot
2017-02-01 20:41 - 2017-02-01 20:43 - 00000000 ____D C:\Users\TEMP.PC-I5.000\AppData\Local\Google
2017-02-01 20:41 - 2017-02-01 20:43 - 00000000 ____D C:\Users\TEMP.PC-I5.000
2017-01-31 16:58 - 2017-01-31 16:58 - 00000000 ___RD C:\Users\TEMP.PC-I5\OneDrive
2017-01-31 16:57 - 2017-02-01 21:24 - 00000000 ____D C:\Users\TEMP.PC-I5
2017-01-31 16:57 - 2017-01-31 17:04 - 00000000 ____D C:\Users\TEMP.PC-I5\AppData\Local\Packages
2017-01-31 16:57 - 2017-01-31 16:57 - 00000000 _SHDL C:\Users\TEMP.PC-I5\Šablony
2017-01-31 16:57 - 2017-01-31 16:57 - 00000000 _SHDL C:\Users\TEMP.PC-I5\Soubory cookie
2017-01-31 16:57 - 2017-01-31 16:57 - 00000000 _SHDL C:\Users\TEMP.PC-I5\Poslední
2017-01-31 16:57 - 2017-01-31 16:57 - 00000000 _SHDL C:\Users\TEMP.PC-I5\Okolní tiskárny
2017-01-31 16:57 - 2017-01-31 16:57 - 00000000 _SHDL C:\Users\TEMP.PC-I5\Okolní síť
2017-01-31 16:57 - 2017-01-31 16:57 - 00000000 _SHDL C:\Users\TEMP.PC-I5\Nabídka Start
2017-01-31 16:57 - 2017-01-31 16:57 - 00000000 _SHDL C:\Users\TEMP.PC-I5\Dokumenty
2017-01-31 16:57 - 2017-01-31 16:57 - 00000000 _SHDL C:\Users\TEMP.PC-I5\Documents\Obrázky
2017-01-31 16:57 - 2017-01-31 16:57 - 00000000 _SHDL C:\Users\TEMP.PC-I5\Documents\Hudba
2017-01-31 16:57 - 2017-01-31 16:57 - 00000000 _SHDL C:\Users\TEMP.PC-I5\Documents\Filmy
2017-01-31 16:57 - 2017-01-31 16:57 - 00000000 _SHDL C:\Users\TEMP.PC-I5\Data aplikací
2017-01-31 16:57 - 2017-01-31 16:57 - 00000000 _SHDL C:\Users\TEMP.PC-I5\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-01-31 16:57 - 2017-01-31 16:57 - 00000000 _SHDL C:\Users\TEMP.PC-I5\AppData\Local\Data aplikací
2017-01-31 16:38 - 2017-01-31 16:38 - 00000000 ____D C:\Users\TEMP\AppData\Local\Dropbox
2017-01-31 16:38 - 2017-01-31 16:38 - 00000000 ____D C:\Users\TEMP\AppData\Local\Creative
2017-01-31 16:38 - 2017-01-31 16:38 - 00000000 ____D C:\Users\TEMP\AppData\Local\Adobe
2017-01-31 16:37 - 2017-02-01 21:24 - 00000000 ____D C:\Users\TEMP
2017-01-31 16:37 - 2017-01-31 16:39 - 00000000 __RDO C:\Users\TEMP\OneDrive
2017-01-31 16:37 - 2017-01-31 16:37 - 00000000 _SHDL C:\Users\TEMP\Šablony
2017-01-31 16:37 - 2017-01-31 16:37 - 00000000 _SHDL C:\Users\TEMP\Soubory cookie
2017-01-31 16:37 - 2017-01-31 16:37 - 00000000 _SHDL C:\Users\TEMP\Poslední
2017-01-31 16:37 - 2017-01-31 16:37 - 00000000 _SHDL C:\Users\TEMP\Okolní tiskárny
2017-01-31 16:37 - 2017-01-31 16:37 - 00000000 _SHDL C:\Users\TEMP\Okolní síť
2017-01-31 16:37 - 2017-01-31 16:37 - 00000000 _SHDL C:\Users\TEMP\Nabídka Start
2017-01-31 16:37 - 2017-01-31 16:37 - 00000000 _SHDL C:\Users\TEMP\Dokumenty
2017-01-31 16:37 - 2017-01-31 16:37 - 00000000 _SHDL C:\Users\TEMP\Documents\Obrázky
2017-01-31 16:37 - 2017-01-31 16:37 - 00000000 _SHDL C:\Users\TEMP\Documents\Hudba
2017-01-31 16:37 - 2017-01-31 16:37 - 00000000 _SHDL C:\Users\TEMP\Documents\Filmy
2017-01-31 16:37 - 2017-01-31 16:37 - 00000000 _SHDL C:\Users\TEMP\Data aplikací
2017-01-31 16:37 - 2017-01-31 16:37 - 00000000 _SHDL C:\Users\TEMP\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-01-31 16:37 - 2017-01-31 16:37 - 00000000 _SHDL C:\Users\TEMP\AppData\Local\Data aplikací
2017-01-31 16:37 - 2017-01-31 16:37 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\Adobe
2017-01-31 16:37 - 2017-01-31 16:37 - 00000000 ____D C:\Users\TEMP\AppData\Local\Packages
2017-01-31 16:37 - 2017-01-31 16:37 - 00000000 ____D C:\Users\TEMP\AppData\Local\Google
2017-01-31 16:37 - 2016-09-13 18:11 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\Macromedia
2017-01-31 16:37 - 2016-09-10 02:00 - 00000000 ____D C:\Users\TEMP\AppData\Local\Microsoft Help
2017-01-31 11:35 - 2017-01-31 11:35 - 00001462 _____ C:\Users\Jan\Desktop\1.txt
2017-01-30 20:26 - 2017-01-30 20:26 - 00166400 _____ C:\Users\Jan\Downloads\NAB Jan Šefl 20170130.xls
2017-01-30 20:12 - 2017-01-30 20:12 - 00000000 ____D C:\Users\Jan\AppData\Roaming\NVIDIA
2017-01-30 20:12 - 2017-01-30 20:12 - 00000000 ____D C:\Users\Jan\AppData\Local\TeamSpeak 3
2017-01-30 20:12 - 2017-01-30 20:12 - 00000000 ____D C:\Users\Jan\.TeamSpeak 3
2017-01-30 20:12 - 2017-01-30 20:12 - 00000000 ____D C:\Users\Jan\.QtWebEngineProcess
2017-01-30 20:09 - 2017-01-30 20:09 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-01-30 20:09 - 2017-01-30 20:09 - 00000000 ____D C:\Program Files\Malwarebytes
2017-01-27 21:03 - 2016-12-12 03:37 - 19947472 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2017-01-27 21:03 - 2016-12-12 03:37 - 03941536 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-01-27 15:39 - 2017-01-27 15:39 - 00000000 ____D C:\NVIDIA
2017-01-27 15:27 - 2017-01-27 15:30 - 00001776 _____ C:\Users\Jan\Desktop\Fixlog.txt
2017-01-15 00:08 - 2017-01-15 00:08 - 00056002 _____ C:\Users\Jan\Desktop\Addition.txt
2017-01-15 00:07 - 2017-02-04 11:15 - 00023382 _____ C:\Users\Jan\Desktop\FRST.txt
2017-01-15 00:07 - 2017-02-04 11:15 - 00000000 ____D C:\FRST
2017-01-13 17:40 - 2017-01-13 17:40 - 00000017 _____ C:\Users\Jan\AppData\Local\resmon.resmoncfg
2017-01-13 14:02 - 2017-01-13 14:02 - 00000000 ____D C:\ProgramData\Audyssey Labs
2017-01-12 23:26 - 2017-01-12 23:26 - 869083832 _____ C:\Windows\MEMORY.DMP
2017-01-12 23:26 - 2017-01-12 23:26 - 00414440 _____ C:\Windows\Minidump\011217-26968-01.dmp
2017-01-12 23:26 - 2017-01-12 23:26 - 00000000 ____D C:\Windows\Minidump
2017-01-12 19:01 - 2017-01-12 19:01 - 03778320 _____ (Martin Malík - REALiX ) C:\Users\Jan\Downloads\hw64_542.exe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-02-04 11:15 - 2016-09-18 07:55 - 00000000 ____D C:\Users\Jan\AppData\Local\CrashDumps
2017-02-04 11:01 - 2016-09-09 07:41 - 00000914 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-02-04 10:59 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2017-02-04 10:55 - 2016-09-08 23:20 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1071189237-3862994071-2567526139-1001
2017-02-04 10:40 - 2014-11-21 05:13 - 01745984 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-04 10:40 - 2014-11-21 04:17 - 00738682 _____ C:\Windows\system32\perfh005.dat
2017-02-04 10:40 - 2014-11-21 04:17 - 00151404 _____ C:\Windows\system32\perfc005.dat
2017-02-04 10:40 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\Inf
2017-02-04 10:37 - 2016-09-08 23:29 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2017-02-04 10:36 - 2016-09-08 23:11 - 00000000 ____D C:\Users\Jan\OneDrive
2017-02-04 10:35 - 2016-09-09 13:01 - 00000000 ___RD C:\Users\Jan\Disk Google
2017-02-04 10:35 - 2016-09-09 07:41 - 00000910 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-02-04 10:33 - 2016-09-09 07:13 - 00000000 ____D C:\ProgramData\NVIDIA
2017-02-04 10:33 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-04 10:19 - 2013-08-22 15:44 - 05034480 _____ C:\Windows\system32\FNTCACHE.DAT
2017-02-04 10:11 - 2016-09-08 23:32 - 00000000 ____D C:\Program Files (x86)\Avira
2017-02-04 10:11 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2017-02-04 10:10 - 2013-08-22 16:36 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2017-02-04 10:10 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2017-02-04 10:09 - 2016-09-08 23:13 - 00000000 ____D C:\ProgramData\Package Cache
2017-02-03 22:13 - 2016-09-09 07:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2017-02-03 22:12 - 2016-09-10 02:06 - 00000000 ____D C:\Windows\system32\MRT
2017-02-03 22:12 - 2013-08-22 16:20 - 00000000 ____D C:\Windows\CbsTemp
2017-02-03 22:12 - 2013-08-22 14:25 - 00000167 _____ C:\Windows\win.ini
2017-02-03 22:09 - 2016-09-10 02:05 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-02-01 21:23 - 2016-11-25 19:30 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2017-02-01 21:23 - 2016-11-25 19:30 - 00000000 ____D C:\Program Files\Realtek
2017-02-01 21:23 - 2016-11-18 18:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2017-02-01 21:23 - 2016-11-18 18:40 - 00000000 ____D C:\Program Files\iTunes
2017-02-01 21:23 - 2016-10-28 08:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-02-01 21:23 - 2016-09-17 12:35 - 00000000 ____D C:\Program Files\CCleaner
2017-02-01 21:23 - 2016-09-16 18:53 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2017-02-01 21:23 - 2016-09-16 09:48 - 00000000 ____D C:\Program Files\HWiNFO64
2017-02-01 21:23 - 2016-09-13 18:23 - 00000000 ____D C:\ProgramData\Apple Computer
2017-02-01 21:23 - 2016-09-13 18:22 - 00000000 ____D C:\Program Files\Common Files\Apple
2017-02-01 21:23 - 2016-09-10 07:38 - 00000000 ____D C:\Windows\system32\appraiser
2017-02-01 21:23 - 2016-09-09 15:32 - 00000000 ____D C:\Users\Jan\AppData\Roaming\PSpad
2017-02-01 21:23 - 2016-09-09 08:04 - 00000000 ____D C:\Windows\system32\DAX2
2017-02-01 21:23 - 2016-09-09 07:32 - 00000000 ____D C:\Users\Jan\Documents\AirDroid
2017-02-01 21:23 - 2016-09-09 07:13 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-02-01 21:23 - 2016-09-09 07:11 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-02-01 21:23 - 2016-09-09 07:09 - 00000000 ____D C:\Users\Jan\AppData\Roaming\GHISLER
2017-02-01 21:23 - 2016-09-09 06:37 - 00000000 ____D C:\Users\Jan\AppData\Local\ElevatedDiagnostics
2017-02-01 21:23 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries
2017-02-01 21:23 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\WinStore
2017-02-01 21:23 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\Help
2017-02-01 21:23 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\Sysprep
2017-02-01 21:21 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2017-02-01 21:19 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\registration
2017-02-01 21:17 - 2016-09-22 17:03 - 00000000 ____D C:\Users\Jan\Documents\My Games
2017-02-01 21:17 - 2016-09-09 07:48 - 00000000 ___RD C:\Users\Jan\Dropbox
2017-02-01 21:17 - 2016-09-09 07:33 - 00000000 ____D C:\Users\Jan\Documents\Ubisoft
2017-02-01 21:17 - 2016-09-08 23:05 - 00000000 ____D C:\Users\Jan\AppData\Local\Packages
2017-02-01 21:17 - 2016-09-08 23:05 - 00000000 ____D C:\Users\Jan
2017-02-01 21:16 - 2016-12-16 13:28 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-02-01 21:16 - 2016-11-18 18:40 - 00000000 ____D C:\Program Files\iPod
2017-02-01 21:16 - 2016-09-09 07:28 - 00000000 ____D C:\Program Files\Rockstar Games
2017-02-01 21:16 - 2016-09-09 07:28 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2017-02-01 21:16 - 2016-09-09 07:24 - 00000000 ____D C:\Program Files (x86)\Realtek
2017-02-01 21:16 - 2016-09-08 23:13 - 00000000 ____D C:\ProgramData\Intel
2017-02-01 21:16 - 2016-09-08 23:13 - 00000000 ____D C:\Program Files\Intel
2017-02-01 21:15 - 2016-09-09 08:11 - 00000000 ____D C:\Program Files (x86)\Intel
2017-02-01 21:15 - 2016-09-09 07:45 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-02-01 21:15 - 2016-09-09 07:41 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-02-01 21:15 - 2016-09-09 07:24 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-02-01 21:15 - 2016-09-08 23:40 - 00000000 ____D C:\MSI
2017-02-01 21:12 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\AppReadiness
2017-01-31 13:50 - 2016-09-15 02:37 - 00000000 ____D C:\Users\Jan\AppData\Local\Ubisoft Game Launcher
2017-01-30 23:21 - 2016-09-16 18:53 - 00000000 ____D C:\Users\Jan\AppData\Roaming\TS3Client
2017-01-29 22:31 - 2016-09-09 07:13 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-01-27 15:27 - 2016-11-24 21:42 - 00000000 ____D C:\Users\Jan\AppData\LocalLow\Temp
2017-01-13 14:02 - 2016-09-09 08:03 - 00000000 ___HD C:\Program Files (x86)\Temp
2017-01-12 23:25 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\NDF
2017-01-12 20:30 - 2016-12-30 12:21 - 00000000 ____D C:\Program Files\trend micro
2017-01-12 19:40 - 2016-09-13 18:29 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2017-01-12 19:27 - 2016-09-13 18:56 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-01-12 19:02 - 2016-09-16 09:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
==================== Files in the root of some directories =======
2016-09-19 16:53 - 2016-09-19 16:59 - 0000132 _____ () C:\Users\Jan\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
2016-09-13 18:36 - 2016-12-26 12:56 - 0000186 _____ () C:\Users\Jan\AppData\Roaming\COPA_Last_Connected_Device.ini
2016-09-13 18:27 - 2016-10-29 19:55 - 0000098 _____ () C:\Users\Jan\AppData\Roaming\SDC_Path.ini
2017-01-13 17:40 - 2017-01-13 17:40 - 0000017 _____ () C:\Users\Jan\AppData\Local\resmon.resmoncfg
2016-09-09 08:04 - 2016-09-09 08:04 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
2016-09-08 23:29 - 2017-02-04 10:37 - 0192512 _____ () C:\Users\Jan\AppData\Local\Temp\sfamcc00001.dll
2017-02-04 10:37 - 2017-02-04 10:37 - 0158720 _____ () C:\Users\Jan\AppData\Local\Temp\sfareca00001.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-02-01 21:03
==================== End of FRST.txt ============================
SeaTools for DOS 