Kontrola PC
Napsal: 07 lis 2015 13:29
Zdravím, po dlouhé době, chtěl bych si nechat zkontrolovat od vás počítač prosím... děkuju za odpověď.
Log: Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-11-2015
Ran by aaa (administrator) on AAA-PC (07-11-2015 13:19:00)
Running from C:\Users\aaa\Desktop
Loaded Profiles: aaa & (Available Profiles: aaa & DefaultAppPool)
Platform: Windows 10 Home (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Maxthon) C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(AMD) C:\Windows\System32\atieclxx.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\odscanui.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1695744 2015-06-12] (Bitdefender)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-09-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5579624 2015-08-06] (LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2292912 2015-09-17] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-07-15] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000\...\Run: [Flvto YouTube Downloader] => C:\Users\aaa\AppData\Local\Flvto YouTube Downloader\FlvtoYoutubeDownloader.exe [529920 2015-07-21] (Hotger)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000\...\Run: [Bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-06-12] (Bitdefender)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000\...\Run: [Vectir] => C:\Program Files (x86)\Vectir\Vectir.exe [2248776 2015-11-07] (Incendo Technology)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000\...\Run: [AceUpdater] => C:\Users\aaa\AppData\Roaming\ACEStream\updater\ace_update.exe [22824 2014-10-01] ()
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000\...\Run: [AceWebExtensionUpdater] => C:\Users\aaa\AppData\Roaming\AceWebExtension\updater\ace_web_extension.exe [22824 2015-02-28] ()
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000\...\Run: [AceStream] => C:\Users\aaa\AppData\Roaming\ACEStream\engine\ace_engine.exe [27000 2015-09-24] ()
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Flvto YouTube Downloader] => C:\Users\aaa\AppData\Local\Flvto YouTube Downloader\FlvtoYoutubeDownloader.exe [529920 2015-07-21] (Hotger)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-06-12] (Bitdefender)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Vectir] => C:\Program Files (x86)\Vectir\Vectir.exe [2248776 2015-11-07] (Incendo Technology)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [AceUpdater] => C:\Users\aaa\AppData\Roaming\ACEStream\updater\ace_update.exe [22824 2014-10-01] ()
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [AceWebExtensionUpdater] => C:\Users\aaa\AppData\Roaming\AceWebExtension\updater\ace_web_extension.exe [22824 2015-02-28] ()
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [AceStream] => C:\Users\aaa\AppData\Roaming\ACEStream\engine\ace_engine.exe [27000 2015-09-24] ()
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-09-11] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-09-11] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-09-11] ()
ShellIconOverlayIdentifiers: [0WinSecurityProvider] -> {F76FA5C2-3B6A-451E-8CA5-34C8D0AE0637} => No File
ShellIconOverlayIdentifiers: [__SafeBox1] -> {152C96EB-288E-4EDC-B7C6-D21F8250ADF3} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)
ShellIconOverlayIdentifiers: [__SafeBox2] -> {342DAA0B-D796-460D-8566-901E08A1CCAD} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)
ShellIconOverlayIdentifiers: [__SafeBox3] -> {57595DAE-1AE1-4D97-A49E-67CBB53B52DF} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)
ShellIconOverlayIdentifiers: [__SafeBox4] -> {33816773-98AE-4723-ADE0-EBE54C8B5A67} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)
Startup: C:\Users\aaa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Registrace NHL™ 09.lnk [2015-08-16]
ShortcutTarget: Registrace NHL™ 09.lnk -> C:\Program Files (x86)\EA Sports\NHL 09\Support\EAregister.exe (Leader Technologies)
GroupPolicyScripts: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{253c0461-57e6-465d-939c-e01cde7a38e3}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-04-03] (Bitdefender)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-22] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-22] (Oracle Corporation)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-04-03] (Bitdefender)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-10-22] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-22] (Oracle Corporation)
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-04-03] (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-04-03] (Bitdefender)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\aaa\AppData\Roaming\Mozilla\Firefox\Profiles\lfqfhb9s.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-11-07] ()
FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-22] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-09-17] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-11-07] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1220162.dll [2015-08-31] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-22] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-09-17] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3615886306-2406785515-2520708895-1000: @acestream.net/acestreamplugin,version=3.0.12 -> C:\Users\aaa\AppData\Roaming\ACEStream\player\npace_plugin.dll [2015-09-24] (Innovative Digital Technologies)
FF Plugin HKU\S-1-5-21-3615886306-2406785515-2520708895-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\aaa\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-08] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @acestream.net/acestreamplugin,version=3.0.12 -> C:\Users\aaa\AppData\Roaming\ACEStream\player\npace_plugin.dll [2015-09-24] (Innovative Digital Technologies)
FF Plugin HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\aaa\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-08] (Unity Technologies ApS)
FF Extension: AS Magic Player - C:\Users\aaa\AppData\Roaming\Mozilla\Firefox\Profiles\lfqfhb9s.default\Extensions\magicplayer@acestream.org [2015-10-04] [not signed]
FF HKLM\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\bdwteff [2015-06-22] [not signed]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2015-06-22] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2015-06-22] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
Chrome:
=======
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR Profile: C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-28]
CHR Extension: (Beautiful landscape) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ambfimhigppdidfmelpjmojccbfdoeig [2015-08-06]
CHR Extension: (Dokumenty Google) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-28]
CHR Extension: (Disk Google) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Vyhledávání Google) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Qualys BrowserCheck for Windows) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejhnkognlohdkpjkjongioociddgoibk [2015-11-01]
CHR Extension: (Bitdefender Wallet) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\fabcmochhfpldjekobfaaggijgohadih [2015-11-04]
CHR Extension: (Tabulky Google) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-04]
CHR Extension: (AdBlock) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-10-14]
CHR Extension: (WhatFont) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2015-08-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25]
CHR Extension: (ImTranslator: Překladač, Slovník, Hlas) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\noaijdpnepcgjemiklgfkcfbkokogabh [2015-10-29]
CHR Extension: (Gmail) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR HKLM-x32\...\Chrome\Extension: [fabcmochhfpldjekobfaaggijgohadih] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [669872 2015-09-15] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2015936 2015-09-29] (Adobe Systems, Incorporated)
S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [78144 2014-12-09] (Bitdefender)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-08-06] (LogMeIn, Inc.)
R4 MaxthonUpdateSvc; C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [1871784 2015-08-25] (Maxthon)
S4 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-06] (Microsoft Corporation)
S4 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2007-01-15] (Nero AG) [File not signed]
S4 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-03-12] (Nero AG)
R2 OneSyncSvc_Session11; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session11; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2099208 2015-10-23] (Electronic Arts)
R3 PimIndexMaintenanceSvc_Session11; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R3 PimIndexMaintenanceSvc_Session11; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2015-09-17] ()
S4 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [94624 2013-07-08] (Bitdefender)
S4 sfrem01; C:\Windows\system32\sfrem01.exe [601208 2006-07-05] (Protection Technology (StarForce))
S4 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5613328 2015-07-29] (TeamViewer GmbH)
R3 UnistoreSvc_Session11; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R3 UnistoreSvc_Session11; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-10-27] (Bitdefender)
R3 UserDataSvc_Session11; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R3 UserDataSvc_Session11; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 vsserv; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1545376 2015-06-18] (Bitdefender)
S3 VSStandardCollectorService140; C:\Program Files (x86)\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [52968 2015-07-06] (Microsoft Corporation)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-06] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-06] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1369288 2015-05-28] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [271272 2015-05-29] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [747120 2015-05-28] (BitDefender)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [98768 2014-12-15] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107008 2013-07-29] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\WINDOWS\system32\drivers\bdsandbox.sys [82824 2015-01-09] (BitDefender SRL)
R1 BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys [79192 2013-07-30] (BitDefender)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-02-22] (Disc Soft Ltd)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [160032 2015-04-29] (BitDefender LLC)
R3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2015-11-07] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-06] (Microsoft Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
R3 RTL8023x64; C:\Windows\System32\drivers\Rtnic64.sys [51712 2015-07-10] (Realtek Semiconductor Corporation )
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [214016 2015-07-10] (Microsoft Corporation)
R0 sfdrv01a; C:\Windows\System32\drivers\sfdrv01a.sys [77688 2006-07-05] (Protection Technology (StarForce))
R0 sfsync04; C:\Windows\System32\drivers\sfsync04.sys [78208 2006-08-11] (Protection Technology (StarForce))
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [477272 2015-06-02] (BitDefender S.R.L.)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
R3 vectirhid; C:\Windows\System32\drivers\vectirhid.sys [19184 2014-11-28] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [35880 2015-09-16] (Wellbia.com Co., Ltd.)
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-07 13:19 - 2015-11-07 13:22 - 00027627 _____ C:\Users\aaa\Desktop\FRST.txt
2015-11-07 13:18 - 2015-11-07 13:19 - 00000000 ____D C:\FRST
2015-11-07 13:17 - 2015-11-07 13:18 - 02198528 _____ (Farbar) C:\Users\aaa\Desktop\FRST64.exe
2015-11-07 13:11 - 2015-11-07 13:11 - 00000000 ____D C:\ProgramData\ATI
2015-11-07 11:16 - 2015-11-07 11:16 - 00016148 _____ C:\WINDOWS\system32\AAA-PC_aaa_HistoryPrediction.bin
2015-11-07 07:40 - 2015-11-07 07:43 - 00000020 _____ C:\WINDOWS\capsys184523.log
2015-11-07 07:38 - 2015-11-07 07:38 - 00002112 _____ C:\Users\Public\Desktop\Action!.lnk
2015-11-07 07:24 - 2014-11-28 15:06 - 00019184 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\vectirhid.sys
2015-11-07 07:24 - 2014-11-28 15:06 - 00014576 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\hidkmdf.sys
2015-11-05 19:04 - 2015-11-05 19:04 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-11-05 19:04 - 2015-11-05 19:04 - 00000000 _____ C:\WINDOWS\setupact.log
2015-11-05 16:17 - 2015-11-07 12:57 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-01 10:16 - 2015-11-01 10:16 - 00000000 ____D C:\Users\aaa\Documents\Tunngle
2015-11-01 09:24 - 2015-11-01 09:24 - 00061701 _____ C:\WINDOWS\SysWOW64\CCCInstall_201511010924159866.log
2015-11-01 09:23 - 2015-11-01 09:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-10-31 14:08 - 2015-10-31 14:08 - 00000000 ____D C:\Users\aaa\Documents\Action!
2015-10-30 07:35 - 2015-10-28 00:38 - 21871616 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-10-30 07:35 - 2015-10-21 13:00 - 24595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-10-30 07:34 - 2015-10-28 00:16 - 18801664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-10-30 07:34 - 2015-10-21 13:45 - 00541024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-10-30 07:34 - 2015-10-21 13:44 - 00459104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-10-30 07:34 - 2015-10-21 13:43 - 01392480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-10-30 07:34 - 2015-10-21 13:39 - 03621248 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-10-30 07:34 - 2015-10-21 13:00 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-10-30 07:34 - 2015-10-21 12:59 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-10-30 07:34 - 2015-10-21 12:57 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-30 07:34 - 2015-10-21 12:52 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-10-30 07:34 - 2015-10-21 12:50 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-10-30 07:34 - 2015-10-21 12:48 - 01068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-10-30 07:34 - 2015-10-21 12:47 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-10-30 07:34 - 2015-10-21 12:46 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-30 07:34 - 2015-10-21 12:46 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-10-30 07:34 - 2015-10-21 12:44 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-10-30 07:34 - 2015-10-21 12:44 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-10-30 07:34 - 2015-10-21 12:43 - 02675200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-10-30 07:34 - 2015-10-21 12:42 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-10-30 07:34 - 2015-10-21 12:41 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-30 07:34 - 2015-10-21 12:40 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-10-30 07:34 - 2015-10-21 12:38 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-10-30 07:34 - 2015-10-21 06:53 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-10-30 07:34 - 2015-10-21 06:49 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-10-30 07:34 - 2015-10-21 06:13 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-10-30 07:34 - 2015-10-21 06:11 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-10-30 07:34 - 2015-10-21 06:08 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-10-30 07:34 - 2015-10-21 06:05 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-10-30 07:34 - 2015-10-21 06:03 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-10-30 07:34 - 2015-10-21 06:03 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-10-30 07:34 - 2015-10-21 05:58 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2015-10-30 07:34 - 2015-10-21 05:58 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-10-30 07:34 - 2015-10-21 05:55 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2015-10-28 19:40 - 2015-10-28 19:40 - 00683066 _____ () C:\WINDOWS\unins000.exe
2015-10-28 19:40 - 2015-10-28 19:40 - 00001656 _____ C:\WINDOWS\unins000.dat
2015-10-28 07:55 - 2015-10-31 08:20 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-10-27 19:12 - 2015-10-27 19:12 - 00001302 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2015-10-27 19:09 - 2015-10-29 18:31 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-10-27 19:09 - 2015-10-27 19:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-10-27 19:09 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-10-27 19:09 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-10-27 19:09 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-10-27 18:35 - 2015-11-01 08:10 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-10-25 12:25 - 2015-10-25 12:25 - 00000786 _____ C:\Users\aaa\Dokumenty – zástupce.lnk
2015-10-24 20:55 - 2015-10-24 20:55 - 00000347 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pool Nation.lnk
2015-10-24 20:44 - 2015-10-24 20:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2015-10-24 19:24 - 2012-08-28 13:35 - 15453832 _____ (Microsoft Corporation) C:\WINDOWS\system32\xlive.dll
2015-10-24 19:03 - 2015-10-24 19:18 - 00000000 ____D C:\Users\aaa\Documents\Visual Studio 2015
2015-10-24 18:46 - 2015-10-24 18:46 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2015-10-24 18:45 - 2015-10-24 18:45 - 00000000 ____D C:\ProgramData\PreEmptive Solutions
2015-10-24 18:45 - 2015-10-24 18:45 - 00000000 ____D C:\Program Files (x86)\ShellDir
2015-10-24 18:45 - 2015-10-24 18:45 - 00000000 ____D C:\Program Files (x86)\PreEmptive Solutions
2015-10-24 18:44 - 2015-10-24 18:44 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET
2015-10-24 18:41 - 2015-10-24 18:41 - 00000000 ____D C:\ProgramData\Microsoft DNX
2015-10-24 18:41 - 2015-10-24 18:41 - 00000000 ____D C:\Program Files\Microsoft DNX
2015-10-24 18:34 - 2015-10-24 18:40 - 00000000 ____D C:\Program Files (x86)\Microsoft Web Tools
2015-10-24 18:26 - 2015-10-24 18:27 - 00000000 ____D C:\Program Files\IIS Express
2015-10-24 18:26 - 2015-10-24 18:27 - 00000000 ____D C:\Program Files (x86)\IIS Express
2015-10-24 18:25 - 2015-10-24 18:25 - 00000000 ____D C:\Program Files (x86)\AppInsights
2015-10-24 18:24 - 2015-10-24 18:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Office365 Tools
2015-10-24 18:19 - 2015-10-24 18:19 - 00000000 ____D C:\ProgramData\NuGet
2015-10-24 18:19 - 2015-10-24 18:19 - 00000000 ____D C:\Program Files (x86)\NuGet
2015-10-24 18:19 - 2015-10-24 18:19 - 00000000 ____D C:\Program Files (x86)\Microsoft WCF Data Services
2015-10-24 18:18 - 2015-10-24 18:18 - 00000000 ____D C:\Program Files\IIS
2015-10-24 18:18 - 2015-10-24 18:18 - 00000000 ____D C:\Program Files (x86)\IIS
2015-10-24 18:15 - 2015-10-24 18:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
2015-10-24 18:14 - 2015-10-24 18:15 - 00000000 ____D C:\Program Files (x86)\JavaScript
2015-10-24 18:13 - 2015-10-24 18:13 - 00001221 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2015.lnk
2015-10-24 18:13 - 2015-10-24 18:13 - 00000000 ____D C:\Program Files (x86)\DesignTools
2015-10-24 18:10 - 2015-10-24 18:10 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 12.0
2015-10-24 18:10 - 2015-10-24 18:10 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0
2015-10-24 18:09 - 2015-10-24 18:09 - 00000000 ____D C:\Program Files (x86)\DIA SDK
2015-10-24 18:06 - 2015-10-24 18:19 - 00000000 ____D C:\Program Files (x86)\Licenses
2015-10-24 18:06 - 2015-10-24 18:11 - 00000000 ____D C:\Program Files (x86)\VC
2015-10-24 18:06 - 2015-10-24 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015
2015-10-24 18:06 - 2015-10-24 18:06 - 00000000 ____D C:\Program Files (x86)\lib
2015-10-24 18:05 - 2015-10-24 18:46 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2015-10-24 18:05 - 2015-10-24 18:08 - 00000000 ____D C:\Program Files (x86)\Web
2015-10-24 18:05 - 2015-10-24 18:08 - 00000000 ____D C:\Program Files (x86)\VC#
2015-10-24 18:05 - 2015-10-24 18:08 - 00000000 ____D C:\Program Files (x86)\VB
2015-10-24 18:05 - 2015-10-24 18:05 - 00000000 ____D C:\WINDOWS\symbols
2015-10-24 18:05 - 2015-10-24 18:05 - 00000000 ____D C:\Program Files (x86)\Visual Studio Tools for Office
2015-10-24 18:05 - 2015-10-24 18:05 - 00000000 ____D C:\Program Files (x86)\Silverlight
2015-10-24 18:05 - 2015-10-24 18:05 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer
2015-10-24 18:05 - 2015-10-24 18:05 - 00000000 ____D C:\Program Files (x86)\ImportProjects
2015-10-24 18:00 - 2015-07-09 20:53 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxToolsReportGenerator.dll
2015-10-24 18:00 - 2015-07-09 20:36 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxToolsReportGenerator.dll
2015-10-24 18:00 - 2015-07-09 19:49 - 01133056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11_3SDKLayers.dll
2015-10-24 18:00 - 2015-07-09 19:49 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2015-10-24 18:00 - 2015-07-09 19:48 - 06365696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCaptureReplay.dll
2015-10-24 18:00 - 2015-07-09 19:40 - 01460736 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11_3SDKLayers.dll
2015-10-24 18:00 - 2015-07-09 19:40 - 00875008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2015-10-24 18:00 - 2015-07-09 19:39 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf_gputiming.dll
2015-10-24 18:00 - 2015-07-09 19:38 - 08244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCaptureReplay.dll
2015-10-24 18:00 - 2015-07-09 19:31 - 03597312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsRemoteEngine.exe
2015-10-24 18:00 - 2015-07-09 19:30 - 03680768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe
2015-10-24 18:00 - 2015-07-09 19:28 - 02439168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12warp.dll
2015-10-24 18:00 - 2015-07-09 19:28 - 00916480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsExperiment.dll
2015-10-24 18:00 - 2015-07-09 19:28 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsOfflineAnalysis.dll
2015-10-24 18:00 - 2015-07-09 19:28 - 00647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCap.exe
2015-10-24 18:00 - 2015-07-09 19:28 - 00308224 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf_gputiming.dll
2015-10-24 18:00 - 2015-07-09 19:27 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1debug3.dll
2015-10-24 18:00 - 2015-07-09 19:27 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsMonitor.dll
2015-10-24 18:00 - 2015-07-09 19:27 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsCapture.dll
2015-10-24 18:00 - 2015-07-09 19:27 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsReporting.dll
2015-10-24 18:00 - 2015-07-09 19:27 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARPDebug.dll
2015-10-24 18:00 - 2015-07-09 19:27 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARP12Debug.dll
2015-10-24 18:00 - 2015-07-09 19:27 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsProxyStub.dll
2015-10-24 18:00 - 2015-07-09 19:26 - 00346624 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2015-10-24 18:00 - 2015-07-09 19:24 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXGIDebug.dll
2015-10-24 18:00 - 2015-07-09 19:21 - 04656128 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe
2015-10-24 18:00 - 2015-07-09 19:20 - 04751872 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2015-10-24 18:00 - 2015-07-09 19:18 - 03257856 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12warp.dll
2015-10-24 18:00 - 2015-07-09 19:18 - 01069568 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll
2015-10-24 18:00 - 2015-07-09 19:18 - 00877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCap.exe
2015-10-24 18:00 - 2015-07-09 19:17 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsExperiment.dll
2015-10-24 18:00 - 2015-07-09 19:17 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1debug3.dll
2015-10-24 18:00 - 2015-07-09 19:17 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsMonitor.dll
2015-10-24 18:00 - 2015-07-09 19:17 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsReporting.dll
2015-10-24 18:00 - 2015-07-09 19:17 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsCapture.dll
2015-10-24 18:00 - 2015-07-09 19:17 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsProxyStub.dll
2015-10-24 18:00 - 2015-07-09 19:16 - 00366592 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2015-10-24 18:00 - 2015-07-09 19:16 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARP12Debug.dll
2015-10-24 18:00 - 2015-07-09 19:16 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARPDebug.dll
2015-10-24 18:00 - 2015-07-09 19:13 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXGIDebug.dll
2015-10-24 17:57 - 2015-10-24 18:47 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2015-10-24 17:57 - 2015-10-24 18:46 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2015-10-24 17:57 - 2015-10-24 18:08 - 00000000 ____D C:\WINDOWS\SysWOW64\1033
2015-10-24 17:57 - 2015-10-24 17:57 - 00001230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015.lnk
2015-10-24 17:56 - 2015-10-24 18:08 - 00000000 ____D C:\Program Files (x86)\Xml
2015-10-24 17:56 - 2015-10-24 18:05 - 00000000 ____D C:\Program Files (x86)\SDK
2015-10-24 17:56 - 2015-10-24 17:56 - 00000000 ____D C:\Program Files (x86)\shell
2015-10-24 17:56 - 2015-10-24 17:56 - 00000000 ____D C:\Program Files (x86)\Setup
2015-10-24 11:28 - 2015-10-24 17:58 - 00000000 ____D C:\WINDOWS\system32\1033
2015-10-24 11:26 - 2015-10-24 18:49 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2015-10-24 11:26 - 2015-10-24 18:06 - 00000000 ____D C:\Program Files (x86)\Team Tools
2015-10-24 11:26 - 2015-10-24 18:05 - 00000000 ____D C:\Program Files (x86)\Common7
2015-10-24 11:26 - 2015-10-24 11:26 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_SensorsSimulatorDriver_01_11_00.Wdf
2015-10-24 10:58 - 2015-10-24 19:08 - 00000000 ____D C:\ProgramData\VsTelemetry
2015-10-24 08:38 - 2015-10-24 08:38 - 00000000 ____D C:\Users\aaa\AppData\Roaming\qualys
2015-10-24 08:37 - 2015-10-24 08:37 - 00000000 ____D C:\Program Files (x86)\Qualys
2015-10-23 17:23 - 2009-09-16 07:02 - 00031232 _____ (Tunngle.net) C:\WINDOWS\system32\Drivers\tap0901t.sys
2015-10-21 14:19 - 2015-11-07 13:06 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-10-21 14:19 - 2015-11-07 10:14 - 00003900 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-10-20 18:21 - 2015-10-22 19:05 - 00110176 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-10-20 18:21 - 2015-10-22 19:05 - 00000000 ____D C:\Program Files\Java
2015-10-19 19:58 - 2015-10-23 16:55 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-17 14:06 - 2015-10-17 14:06 - 00000000 ____D C:\ProgramData\RealHideIP
2015-10-17 13:14 - 2015-10-17 13:14 - 00000000 ____D C:\ProgramData\AutoHideIP
2015-10-17 12:53 - 2015-10-17 14:16 - 00000000 ____D C:\Program Files (x86)\Hide ALL IP
2015-10-17 12:53 - 2015-10-17 12:53 - 00437616 _____ (Network Tunnel Lab) C:\WINDOWS\SysWOW64\networkdlllsp.dll
2015-10-17 09:44 - 2015-10-17 09:44 - 00003642 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-mrannix99@gmail.com
2015-10-17 09:43 - 2015-10-17 09:43 - 00000034 _____ C:\Users\aaa\AppData\Roaming\AdobeWLCMCache.dat
2015-10-14 15:49 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-10-14 15:49 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-10-14 15:49 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-10-14 15:49 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-10-14 15:49 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-10-14 15:49 - 2015-09-25 03:38 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-10-14 15:49 - 2015-09-25 03:38 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-10-14 15:49 - 2015-09-25 03:38 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-10-14 15:49 - 2015-09-25 03:38 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-10-14 15:49 - 2015-09-25 03:37 - 00766976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-10-14 15:49 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-10-14 15:49 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-14 15:49 - 2015-09-25 03:36 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-10-14 15:49 - 2015-09-25 03:36 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-10-14 15:49 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-10-14 15:49 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-10-14 15:49 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-10-14 15:49 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-10-14 15:49 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-10-14 15:49 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-10-14 15:49 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-10-14 15:49 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-10-14 15:47 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-10-14 15:47 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-10-14 15:47 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-14 15:47 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-14 15:47 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-14 15:47 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-14 15:47 - 2015-09-25 04:02 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-10-14 15:47 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-14 15:47 - 2015-09-25 04:01 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-14 15:47 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-14 15:47 - 2015-09-25 04:00 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-14 15:47 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-14 15:47 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-14 15:47 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-14 15:47 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-14 15:47 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-14 15:47 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-14 15:47 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-14 15:46 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-14 15:46 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-14 15:46 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-10-14 15:46 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-10-14 15:46 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-10-14 15:46 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-10-14 15:46 - 2015-10-01 05:00 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-14 15:46 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-10-14 15:46 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-10-14 15:46 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-10-14 15:46 - 2015-09-25 04:09 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-10-14 15:46 - 2015-09-25 04:04 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-10-14 15:46 - 2015-09-25 04:04 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-14 15:46 - 2015-09-25 04:03 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-10-14 15:46 - 2015-09-25 04:02 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-14 15:46 - 2015-09-25 04:01 - 04792320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-14 15:46 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-14 15:46 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-10-12 18:48 - 2015-10-12 18:54 - 00000000 ____D C:\Users\aaa\Desktop\BACKUP
2015-10-12 18:11 - 2015-10-12 18:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Active@ ISO Burner
2015-10-12 17:40 - 2015-10-17 14:16 - 00000000 ____D C:\Program Files (x86)\LSoft Technologies
2015-10-11 15:08 - 2015-10-11 15:08 - 00001540 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2014.lnk
2015-10-11 15:08 - 2015-10-11 15:08 - 00000000 ____D C:\ProgramData\ALM
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-07 13:24 - 2015-02-19 16:09 - 00000000 ____D C:\Users\aaa\AppData\Roaming\Skype
2015-11-07 13:10 - 2015-04-03 06:48 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-11-07 13:03 - 2015-09-21 16:55 - 00011893 _____ C:\WINDOWS\system32\Drivers\etc\hosts.tmp
2015-11-07 12:47 - 2015-03-28 07:19 - 00000974 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-07 12:26 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-11-07 12:19 - 2015-02-17 16:34 - 00000000 ____D C:\Users\aaa\AppData\Local\Adobe
2015-11-07 10:17 - 2015-02-17 16:01 - 00000000 ___RD C:\Users\aaa\Desktop\PSDs
2015-11-07 09:15 - 2015-08-06 07:57 - 00000000 ____D C:\Users\aaa
2015-11-07 08:48 - 2015-03-31 18:45 - 00000132 _____ C:\Users\aaa\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2015-11-07 08:48 - 2015-02-21 12:15 - 00000000 ____D C:\Users\aaa\AppData\Roaming\.minecraft
2015-11-07 07:46 - 2015-02-17 15:49 - 00000000 ____D C:\Users\aaa\AppData\Roaming\uTorrent
2015-11-07 07:38 - 2015-03-03 19:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
2015-11-07 07:36 - 2015-08-05 09:58 - 00000000 ____D C:\Users\aaa\Desktop\MEME
2015-11-07 07:25 - 2015-02-01 19:47 - 00004190 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{50BEB57B-27F7-47FB-A23E-4EB9122A8894}
2015-11-07 07:24 - 2015-08-24 09:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vectir
2015-11-07 07:24 - 2015-08-24 09:17 - 00000000 ____D C:\Program Files (x86)\Vectir
2015-11-07 07:24 - 2015-04-06 08:15 - 00000000 ____D C:\Users\aaa\Desktop\NEFAKTY
2015-11-07 07:22 - 2015-06-03 19:09 - 00000354 _____ C:\WINDOWS\Tasks\DriverToolkit Autorun.job
2015-11-07 07:22 - 2015-03-28 07:19 - 00000970 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-06 16:51 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-05 15:24 - 2015-09-11 14:40 - 00000000 ____D C:\Users\aaa\AppData\Local\LogMeIn Hamachi
2015-11-05 15:24 - 2015-02-22 10:41 - 00000000 ____D C:\Users\aaa\AppData\Roaming\DAEMON Tools Lite
2015-11-03 17:15 - 2015-03-29 17:27 - 00000000 ___HD C:\_acestream_cache_
2015-11-03 17:15 - 2015-03-29 17:26 - 00000000 ____D C:\Users\aaa\AppData\Roaming\.ACEStream
2015-11-01 12:52 - 2015-03-22 10:37 - 00000000 ____D C:\Users\aaa\Desktop\Prográmky
2015-11-01 10:39 - 2015-03-03 19:37 - 00000000 ____D C:\Program Files (x86)\Mirillis
2015-11-01 10:30 - 2015-02-26 08:33 - 00000000 ____D C:\Program Files (x86)\Gomez
2015-11-01 09:42 - 2015-08-15 07:33 - 00000000 ____D C:\WINDOWS\Minidump
2015-11-01 09:42 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\Offline Web Pages
2015-11-01 09:24 - 2015-02-20 14:07 - 00000000 ____D C:\ProgramData\BDLogging
2015-11-01 09:23 - 2015-02-18 15:08 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2015-11-01 09:23 - 2015-02-18 14:56 - 00000000 ____D C:\Program Files\ATI Technologies
2015-11-01 09:22 - 2015-03-14 09:32 - 00000000 ____D C:\ProgramData\Package Cache
2015-11-01 09:21 - 2015-02-18 15:42 - 00000000 ____D C:\AMD
2015-11-01 08:10 - 2015-02-18 15:51 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-10-31 22:58 - 2015-02-17 15:38 - 00000000 ____D C:\ProgramData\Origin
2015-10-30 19:02 - 2015-08-06 07:55 - 02038992 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-30 19:02 - 2015-07-10 17:02 - 00842288 _____ C:\WINDOWS\system32\perfh005.dat
2015-10-30 19:02 - 2015-07-10 17:02 - 00192552 _____ C:\WINDOWS\system32\perfc005.dat
2015-10-30 18:57 - 2015-07-10 10:05 - 00065536 ___SH C:\WINDOWS\system32\config\ELAM
2015-10-30 18:55 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-30 11:23 - 2015-07-10 10:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-10-30 11:22 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-10-30 07:38 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-10-29 18:29 - 2015-07-17 16:53 - 00000000 ____D C:\Program Files\FlatOut2
2015-10-28 10:28 - 2015-02-22 19:32 - 00000000 ___RD C:\Users\aaa\Desktop\GAMES
2015-10-28 07:55 - 2015-02-17 16:34 - 00000000 ____D C:\ProgramData\Adobe
2015-10-28 07:55 - 2015-02-17 15:53 - 00000000 ____D C:\Users\aaa\AppData\Roaming\Adobe
2015-10-27 22:55 - 2015-02-19 16:17 - 00000000 ____D C:\Users\aaa\Documents\FIFA 14
2015-10-27 20:26 - 2015-08-16 10:37 - 00000000 ____D C:\Users\aaa\Documents\NHL09
2015-10-27 19:38 - 2015-02-19 14:52 - 00000000 ____D C:\Users\aaa\Documents\My Games
2015-10-27 19:20 - 2015-03-22 18:58 - 00000000 ____D C:\Users\aaa\AppData\Roaming\vlc
2015-10-27 19:10 - 2015-02-17 16:45 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-10-27 19:06 - 2015-02-17 15:58 - 00000000 ____D C:\Users\aaa\Desktop\Intro & Outro
2015-10-27 19:00 - 2015-08-18 19:04 - 00000000 ____D C:\AdwCleaner
2015-10-27 16:44 - 2015-10-04 11:10 - 00000000 ____D C:\Program Files\CCleaner
2015-10-26 16:52 - 2015-09-06 12:37 - 00000000 ____D C:\Program Files (x86)\Steam
2015-10-25 20:22 - 2015-02-19 20:40 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2015-10-25 17:21 - 2015-02-19 16:09 - 00000000 ____D C:\ProgramData\Skype
2015-10-24 20:44 - 2015-09-06 09:27 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2015-10-24 18:46 - 2015-03-11 21:00 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2015-10-24 18:06 - 2015-08-06 08:35 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-10-24 11:31 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-10-24 08:45 - 2015-05-24 05:26 - 00003650 _____ C:\WINDOWS\System32\Tasks\Maxthon Update
2015-10-24 08:06 - 2015-03-07 08:39 - 00000000 ____D C:\WINDOWS\pss
2015-10-24 08:04 - 2015-08-18 09:24 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2015-10-24 07:21 - 2015-07-10 13:20 - 05042472 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-10-23 17:25 - 2015-08-16 10:21 - 00000000 ____D C:\Users\aaa\AppData\Roaming\Tunngle
2015-10-23 16:55 - 2015-09-18 19:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-23 14:02 - 2015-04-02 10:54 - 00000000 ____D C:\Program Files (x86)\Origin
2015-10-22 19:13 - 2015-02-21 18:03 - 00000000 ____D C:\ProgramData\Oracle
2015-10-22 19:05 - 2015-09-28 06:54 - 00000000 ____D C:\Users\aaa\.oracle_jre_usage
2015-10-22 19:05 - 2015-02-21 18:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-10-22 19:04 - 2015-02-21 18:03 - 00000000 ____D C:\Program Files (x86)\Java
2015-10-17 14:22 - 2015-04-16 18:34 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-10-17 07:36 - 2015-09-05 08:47 - 00000000 ____D C:\Program Files (x86)\S.W.A.T. 4
2015-10-16 04:10 - 2015-07-10 12:06 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-10-16 04:10 - 2015-07-10 12:06 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-14 16:57 - 2015-02-19 16:09 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-10-14 16:41 - 2015-02-14 12:33 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-10-14 16:39 - 2009-07-14 03:34 - 00000478 _____ C:\WINDOWS\win.ini
2015-10-13 15:29 - 2015-05-19 05:56 - 00002562 _____ C:\WINDOWS\diagwrn.xml
2015-10-13 15:29 - 2015-05-19 05:56 - 00001908 _____ C:\WINDOWS\diagerr.xml
2015-10-12 17:39 - 2015-06-03 14:51 - 00000000 ____D C:\Users\aaa\AppData\Local\Ahead
2015-10-11 15:08 - 2015-04-03 09:45 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-10-11 15:08 - 2015-02-17 16:54 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2015-10-11 15:07 - 2015-04-03 09:53 - 00000000 ____D C:\Program Files\Adobe
==================== Files in the root of some directories =======
2015-03-31 18:45 - 2015-11-07 08:48 - 0000132 _____ () C:\Users\aaa\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2015-10-17 09:43 - 2015-10-17 09:43 - 0000034 _____ () C:\Users\aaa\AppData\Roaming\AdobeWLCMCache.dat
2015-03-31 20:42 - 2015-03-31 20:42 - 0001480 _____ () C:\Users\aaa\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2015-08-16 08:43 - 2015-08-16 08:43 - 0730384 _____ () C:\ProgramData\1439710125.bdinstall.bin
2015-08-06 07:53 - 2015-08-06 07:53 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-05-11 16:20 - 2015-05-12 17:10 - 0000193 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
Some files in TEMP:
====================
C:\Users\aaa\AppData\Local\Temp\VectirUpdate.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-11-01 20:27
==================== End of FRST.txt ============================
Log: Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-11-2015
Ran by aaa (administrator) on AAA-PC (07-11-2015 13:19:00)
Running from C:\Users\aaa\Desktop
Loaded Profiles: aaa & (Available Profiles: aaa & DefaultAppPool)
Platform: Windows 10 Home (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Maxthon) C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(AMD) C:\Windows\System32\atieclxx.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\odscanui.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1695744 2015-06-12] (Bitdefender)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-09-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5579624 2015-08-06] (LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2292912 2015-09-17] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-07-15] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000\...\Run: [Flvto YouTube Downloader] => C:\Users\aaa\AppData\Local\Flvto YouTube Downloader\FlvtoYoutubeDownloader.exe [529920 2015-07-21] (Hotger)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000\...\Run: [Bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-06-12] (Bitdefender)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000\...\Run: [Vectir] => C:\Program Files (x86)\Vectir\Vectir.exe [2248776 2015-11-07] (Incendo Technology)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000\...\Run: [AceUpdater] => C:\Users\aaa\AppData\Roaming\ACEStream\updater\ace_update.exe [22824 2014-10-01] ()
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000\...\Run: [AceWebExtensionUpdater] => C:\Users\aaa\AppData\Roaming\AceWebExtension\updater\ace_web_extension.exe [22824 2015-02-28] ()
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000\...\Run: [AceStream] => C:\Users\aaa\AppData\Roaming\ACEStream\engine\ace_engine.exe [27000 2015-09-24] ()
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Flvto YouTube Downloader] => C:\Users\aaa\AppData\Local\Flvto YouTube Downloader\FlvtoYoutubeDownloader.exe [529920 2015-07-21] (Hotger)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-06-12] (Bitdefender)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Vectir] => C:\Program Files (x86)\Vectir\Vectir.exe [2248776 2015-11-07] (Incendo Technology)
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [AceUpdater] => C:\Users\aaa\AppData\Roaming\ACEStream\updater\ace_update.exe [22824 2014-10-01] ()
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [AceWebExtensionUpdater] => C:\Users\aaa\AppData\Roaming\AceWebExtension\updater\ace_web_extension.exe [22824 2015-02-28] ()
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [AceStream] => C:\Users\aaa\AppData\Roaming\ACEStream\engine\ace_engine.exe [27000 2015-09-24] ()
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-09-11] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-09-11] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-09-11] ()
ShellIconOverlayIdentifiers: [0WinSecurityProvider] -> {F76FA5C2-3B6A-451E-8CA5-34C8D0AE0637} => No File
ShellIconOverlayIdentifiers: [__SafeBox1] -> {152C96EB-288E-4EDC-B7C6-D21F8250ADF3} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)
ShellIconOverlayIdentifiers: [__SafeBox2] -> {342DAA0B-D796-460D-8566-901E08A1CCAD} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)
ShellIconOverlayIdentifiers: [__SafeBox3] -> {57595DAE-1AE1-4D97-A49E-67CBB53B52DF} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)
ShellIconOverlayIdentifiers: [__SafeBox4] -> {33816773-98AE-4723-ADE0-EBE54C8B5A67} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)
Startup: C:\Users\aaa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Registrace NHL™ 09.lnk [2015-08-16]
ShortcutTarget: Registrace NHL™ 09.lnk -> C:\Program Files (x86)\EA Sports\NHL 09\Support\EAregister.exe (Leader Technologies)
GroupPolicyScripts: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{253c0461-57e6-465d-939c-e01cde7a38e3}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-04-03] (Bitdefender)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-22] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-22] (Oracle Corporation)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-04-03] (Bitdefender)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-10-22] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-22] (Oracle Corporation)
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-04-03] (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-04-03] (Bitdefender)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\aaa\AppData\Roaming\Mozilla\Firefox\Profiles\lfqfhb9s.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-11-07] ()
FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-22] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-09-17] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-11-07] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1220162.dll [2015-08-31] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-22] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-09-17] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3615886306-2406785515-2520708895-1000: @acestream.net/acestreamplugin,version=3.0.12 -> C:\Users\aaa\AppData\Roaming\ACEStream\player\npace_plugin.dll [2015-09-24] (Innovative Digital Technologies)
FF Plugin HKU\S-1-5-21-3615886306-2406785515-2520708895-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\aaa\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-08] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @acestream.net/acestreamplugin,version=3.0.12 -> C:\Users\aaa\AppData\Roaming\ACEStream\player\npace_plugin.dll [2015-09-24] (Innovative Digital Technologies)
FF Plugin HKU\S-1-5-21-3615886306-2406785515-2520708895-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\aaa\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-08] (Unity Technologies ApS)
FF Extension: AS Magic Player - C:\Users\aaa\AppData\Roaming\Mozilla\Firefox\Profiles\lfqfhb9s.default\Extensions\magicplayer@acestream.org [2015-10-04] [not signed]
FF HKLM\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\bdwteff [2015-06-22] [not signed]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2015-06-22] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2015-06-22] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
Chrome:
=======
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR Profile: C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-28]
CHR Extension: (Beautiful landscape) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ambfimhigppdidfmelpjmojccbfdoeig [2015-08-06]
CHR Extension: (Dokumenty Google) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-28]
CHR Extension: (Disk Google) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Vyhledávání Google) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Qualys BrowserCheck for Windows) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejhnkognlohdkpjkjongioociddgoibk [2015-11-01]
CHR Extension: (Bitdefender Wallet) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\fabcmochhfpldjekobfaaggijgohadih [2015-11-04]
CHR Extension: (Tabulky Google) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-04]
CHR Extension: (AdBlock) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-10-14]
CHR Extension: (WhatFont) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2015-08-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25]
CHR Extension: (ImTranslator: Překladač, Slovník, Hlas) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\noaijdpnepcgjemiklgfkcfbkokogabh [2015-10-29]
CHR Extension: (Gmail) - C:\Users\aaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR HKLM-x32\...\Chrome\Extension: [fabcmochhfpldjekobfaaggijgohadih] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [669872 2015-09-15] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2015936 2015-09-29] (Adobe Systems, Incorporated)
S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [78144 2014-12-09] (Bitdefender)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-08-06] (LogMeIn, Inc.)
R4 MaxthonUpdateSvc; C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [1871784 2015-08-25] (Maxthon)
S4 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-06] (Microsoft Corporation)
S4 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2007-01-15] (Nero AG) [File not signed]
S4 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-03-12] (Nero AG)
R2 OneSyncSvc_Session11; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session11; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2099208 2015-10-23] (Electronic Arts)
R3 PimIndexMaintenanceSvc_Session11; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R3 PimIndexMaintenanceSvc_Session11; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2015-09-17] ()
S4 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [94624 2013-07-08] (Bitdefender)
S4 sfrem01; C:\Windows\system32\sfrem01.exe [601208 2006-07-05] (Protection Technology (StarForce))
S4 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5613328 2015-07-29] (TeamViewer GmbH)
R3 UnistoreSvc_Session11; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R3 UnistoreSvc_Session11; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-10-27] (Bitdefender)
R3 UserDataSvc_Session11; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R3 UserDataSvc_Session11; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 vsserv; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1545376 2015-06-18] (Bitdefender)
S3 VSStandardCollectorService140; C:\Program Files (x86)\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [52968 2015-07-06] (Microsoft Corporation)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-06] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-06] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1369288 2015-05-28] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [271272 2015-05-29] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [747120 2015-05-28] (BitDefender)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [98768 2014-12-15] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107008 2013-07-29] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\WINDOWS\system32\drivers\bdsandbox.sys [82824 2015-01-09] (BitDefender SRL)
R1 BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys [79192 2013-07-30] (BitDefender)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-02-22] (Disc Soft Ltd)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [160032 2015-04-29] (BitDefender LLC)
R3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2015-11-07] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-06] (Microsoft Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
R3 RTL8023x64; C:\Windows\System32\drivers\Rtnic64.sys [51712 2015-07-10] (Realtek Semiconductor Corporation )
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [214016 2015-07-10] (Microsoft Corporation)
R0 sfdrv01a; C:\Windows\System32\drivers\sfdrv01a.sys [77688 2006-07-05] (Protection Technology (StarForce))
R0 sfsync04; C:\Windows\System32\drivers\sfsync04.sys [78208 2006-08-11] (Protection Technology (StarForce))
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [477272 2015-06-02] (BitDefender S.R.L.)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
R3 vectirhid; C:\Windows\System32\drivers\vectirhid.sys [19184 2014-11-28] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [35880 2015-09-16] (Wellbia.com Co., Ltd.)
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-07 13:19 - 2015-11-07 13:22 - 00027627 _____ C:\Users\aaa\Desktop\FRST.txt
2015-11-07 13:18 - 2015-11-07 13:19 - 00000000 ____D C:\FRST
2015-11-07 13:17 - 2015-11-07 13:18 - 02198528 _____ (Farbar) C:\Users\aaa\Desktop\FRST64.exe
2015-11-07 13:11 - 2015-11-07 13:11 - 00000000 ____D C:\ProgramData\ATI
2015-11-07 11:16 - 2015-11-07 11:16 - 00016148 _____ C:\WINDOWS\system32\AAA-PC_aaa_HistoryPrediction.bin
2015-11-07 07:40 - 2015-11-07 07:43 - 00000020 _____ C:\WINDOWS\capsys184523.log
2015-11-07 07:38 - 2015-11-07 07:38 - 00002112 _____ C:\Users\Public\Desktop\Action!.lnk
2015-11-07 07:24 - 2014-11-28 15:06 - 00019184 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\vectirhid.sys
2015-11-07 07:24 - 2014-11-28 15:06 - 00014576 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\hidkmdf.sys
2015-11-05 19:04 - 2015-11-05 19:04 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-11-05 19:04 - 2015-11-05 19:04 - 00000000 _____ C:\WINDOWS\setupact.log
2015-11-05 16:17 - 2015-11-07 12:57 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-01 10:16 - 2015-11-01 10:16 - 00000000 ____D C:\Users\aaa\Documents\Tunngle
2015-11-01 09:24 - 2015-11-01 09:24 - 00061701 _____ C:\WINDOWS\SysWOW64\CCCInstall_201511010924159866.log
2015-11-01 09:23 - 2015-11-01 09:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-10-31 14:08 - 2015-10-31 14:08 - 00000000 ____D C:\Users\aaa\Documents\Action!
2015-10-30 07:35 - 2015-10-28 00:38 - 21871616 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-10-30 07:35 - 2015-10-21 13:00 - 24595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-10-30 07:34 - 2015-10-28 00:16 - 18801664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-10-30 07:34 - 2015-10-21 13:45 - 00541024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-10-30 07:34 - 2015-10-21 13:44 - 00459104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-10-30 07:34 - 2015-10-21 13:43 - 01392480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-10-30 07:34 - 2015-10-21 13:39 - 03621248 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-10-30 07:34 - 2015-10-21 13:00 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-10-30 07:34 - 2015-10-21 12:59 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-10-30 07:34 - 2015-10-21 12:57 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-30 07:34 - 2015-10-21 12:52 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-10-30 07:34 - 2015-10-21 12:50 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-10-30 07:34 - 2015-10-21 12:48 - 01068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-10-30 07:34 - 2015-10-21 12:47 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-10-30 07:34 - 2015-10-21 12:46 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-30 07:34 - 2015-10-21 12:46 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-10-30 07:34 - 2015-10-21 12:44 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-10-30 07:34 - 2015-10-21 12:44 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-10-30 07:34 - 2015-10-21 12:43 - 02675200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-10-30 07:34 - 2015-10-21 12:42 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-10-30 07:34 - 2015-10-21 12:41 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-30 07:34 - 2015-10-21 12:40 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-10-30 07:34 - 2015-10-21 12:38 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-10-30 07:34 - 2015-10-21 06:53 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-10-30 07:34 - 2015-10-21 06:49 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-10-30 07:34 - 2015-10-21 06:13 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-10-30 07:34 - 2015-10-21 06:11 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-10-30 07:34 - 2015-10-21 06:08 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-10-30 07:34 - 2015-10-21 06:05 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-10-30 07:34 - 2015-10-21 06:03 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-10-30 07:34 - 2015-10-21 06:03 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-10-30 07:34 - 2015-10-21 05:58 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2015-10-30 07:34 - 2015-10-21 05:58 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-10-30 07:34 - 2015-10-21 05:55 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2015-10-28 19:40 - 2015-10-28 19:40 - 00683066 _____ () C:\WINDOWS\unins000.exe
2015-10-28 19:40 - 2015-10-28 19:40 - 00001656 _____ C:\WINDOWS\unins000.dat
2015-10-28 07:55 - 2015-10-31 08:20 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-10-27 19:12 - 2015-10-27 19:12 - 00001302 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2015-10-27 19:09 - 2015-10-29 18:31 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-10-27 19:09 - 2015-10-27 19:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-10-27 19:09 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-10-27 19:09 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-10-27 19:09 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-10-27 18:35 - 2015-11-01 08:10 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-10-25 12:25 - 2015-10-25 12:25 - 00000786 _____ C:\Users\aaa\Dokumenty – zástupce.lnk
2015-10-24 20:55 - 2015-10-24 20:55 - 00000347 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pool Nation.lnk
2015-10-24 20:44 - 2015-10-24 20:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2015-10-24 19:24 - 2012-08-28 13:35 - 15453832 _____ (Microsoft Corporation) C:\WINDOWS\system32\xlive.dll
2015-10-24 19:03 - 2015-10-24 19:18 - 00000000 ____D C:\Users\aaa\Documents\Visual Studio 2015
2015-10-24 18:46 - 2015-10-24 18:46 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2015-10-24 18:45 - 2015-10-24 18:45 - 00000000 ____D C:\ProgramData\PreEmptive Solutions
2015-10-24 18:45 - 2015-10-24 18:45 - 00000000 ____D C:\Program Files (x86)\ShellDir
2015-10-24 18:45 - 2015-10-24 18:45 - 00000000 ____D C:\Program Files (x86)\PreEmptive Solutions
2015-10-24 18:44 - 2015-10-24 18:44 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET
2015-10-24 18:41 - 2015-10-24 18:41 - 00000000 ____D C:\ProgramData\Microsoft DNX
2015-10-24 18:41 - 2015-10-24 18:41 - 00000000 ____D C:\Program Files\Microsoft DNX
2015-10-24 18:34 - 2015-10-24 18:40 - 00000000 ____D C:\Program Files (x86)\Microsoft Web Tools
2015-10-24 18:26 - 2015-10-24 18:27 - 00000000 ____D C:\Program Files\IIS Express
2015-10-24 18:26 - 2015-10-24 18:27 - 00000000 ____D C:\Program Files (x86)\IIS Express
2015-10-24 18:25 - 2015-10-24 18:25 - 00000000 ____D C:\Program Files (x86)\AppInsights
2015-10-24 18:24 - 2015-10-24 18:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Office365 Tools
2015-10-24 18:19 - 2015-10-24 18:19 - 00000000 ____D C:\ProgramData\NuGet
2015-10-24 18:19 - 2015-10-24 18:19 - 00000000 ____D C:\Program Files (x86)\NuGet
2015-10-24 18:19 - 2015-10-24 18:19 - 00000000 ____D C:\Program Files (x86)\Microsoft WCF Data Services
2015-10-24 18:18 - 2015-10-24 18:18 - 00000000 ____D C:\Program Files\IIS
2015-10-24 18:18 - 2015-10-24 18:18 - 00000000 ____D C:\Program Files (x86)\IIS
2015-10-24 18:15 - 2015-10-24 18:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
2015-10-24 18:14 - 2015-10-24 18:15 - 00000000 ____D C:\Program Files (x86)\JavaScript
2015-10-24 18:13 - 2015-10-24 18:13 - 00001221 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2015.lnk
2015-10-24 18:13 - 2015-10-24 18:13 - 00000000 ____D C:\Program Files (x86)\DesignTools
2015-10-24 18:10 - 2015-10-24 18:10 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 12.0
2015-10-24 18:10 - 2015-10-24 18:10 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0
2015-10-24 18:09 - 2015-10-24 18:09 - 00000000 ____D C:\Program Files (x86)\DIA SDK
2015-10-24 18:06 - 2015-10-24 18:19 - 00000000 ____D C:\Program Files (x86)\Licenses
2015-10-24 18:06 - 2015-10-24 18:11 - 00000000 ____D C:\Program Files (x86)\VC
2015-10-24 18:06 - 2015-10-24 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015
2015-10-24 18:06 - 2015-10-24 18:06 - 00000000 ____D C:\Program Files (x86)\lib
2015-10-24 18:05 - 2015-10-24 18:46 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2015-10-24 18:05 - 2015-10-24 18:08 - 00000000 ____D C:\Program Files (x86)\Web
2015-10-24 18:05 - 2015-10-24 18:08 - 00000000 ____D C:\Program Files (x86)\VC#
2015-10-24 18:05 - 2015-10-24 18:08 - 00000000 ____D C:\Program Files (x86)\VB
2015-10-24 18:05 - 2015-10-24 18:05 - 00000000 ____D C:\WINDOWS\symbols
2015-10-24 18:05 - 2015-10-24 18:05 - 00000000 ____D C:\Program Files (x86)\Visual Studio Tools for Office
2015-10-24 18:05 - 2015-10-24 18:05 - 00000000 ____D C:\Program Files (x86)\Silverlight
2015-10-24 18:05 - 2015-10-24 18:05 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer
2015-10-24 18:05 - 2015-10-24 18:05 - 00000000 ____D C:\Program Files (x86)\ImportProjects
2015-10-24 18:00 - 2015-07-09 20:53 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxToolsReportGenerator.dll
2015-10-24 18:00 - 2015-07-09 20:36 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxToolsReportGenerator.dll
2015-10-24 18:00 - 2015-07-09 19:49 - 01133056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11_3SDKLayers.dll
2015-10-24 18:00 - 2015-07-09 19:49 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2015-10-24 18:00 - 2015-07-09 19:48 - 06365696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCaptureReplay.dll
2015-10-24 18:00 - 2015-07-09 19:40 - 01460736 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11_3SDKLayers.dll
2015-10-24 18:00 - 2015-07-09 19:40 - 00875008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2015-10-24 18:00 - 2015-07-09 19:39 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf_gputiming.dll
2015-10-24 18:00 - 2015-07-09 19:38 - 08244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCaptureReplay.dll
2015-10-24 18:00 - 2015-07-09 19:31 - 03597312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsRemoteEngine.exe
2015-10-24 18:00 - 2015-07-09 19:30 - 03680768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe
2015-10-24 18:00 - 2015-07-09 19:28 - 02439168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12warp.dll
2015-10-24 18:00 - 2015-07-09 19:28 - 00916480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsExperiment.dll
2015-10-24 18:00 - 2015-07-09 19:28 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsOfflineAnalysis.dll
2015-10-24 18:00 - 2015-07-09 19:28 - 00647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCap.exe
2015-10-24 18:00 - 2015-07-09 19:28 - 00308224 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf_gputiming.dll
2015-10-24 18:00 - 2015-07-09 19:27 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1debug3.dll
2015-10-24 18:00 - 2015-07-09 19:27 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsMonitor.dll
2015-10-24 18:00 - 2015-07-09 19:27 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsCapture.dll
2015-10-24 18:00 - 2015-07-09 19:27 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsReporting.dll
2015-10-24 18:00 - 2015-07-09 19:27 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARPDebug.dll
2015-10-24 18:00 - 2015-07-09 19:27 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARP12Debug.dll
2015-10-24 18:00 - 2015-07-09 19:27 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsProxyStub.dll
2015-10-24 18:00 - 2015-07-09 19:26 - 00346624 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2015-10-24 18:00 - 2015-07-09 19:24 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXGIDebug.dll
2015-10-24 18:00 - 2015-07-09 19:21 - 04656128 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe
2015-10-24 18:00 - 2015-07-09 19:20 - 04751872 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2015-10-24 18:00 - 2015-07-09 19:18 - 03257856 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12warp.dll
2015-10-24 18:00 - 2015-07-09 19:18 - 01069568 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll
2015-10-24 18:00 - 2015-07-09 19:18 - 00877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCap.exe
2015-10-24 18:00 - 2015-07-09 19:17 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsExperiment.dll
2015-10-24 18:00 - 2015-07-09 19:17 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1debug3.dll
2015-10-24 18:00 - 2015-07-09 19:17 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsMonitor.dll
2015-10-24 18:00 - 2015-07-09 19:17 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsReporting.dll
2015-10-24 18:00 - 2015-07-09 19:17 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsCapture.dll
2015-10-24 18:00 - 2015-07-09 19:17 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsProxyStub.dll
2015-10-24 18:00 - 2015-07-09 19:16 - 00366592 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2015-10-24 18:00 - 2015-07-09 19:16 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARP12Debug.dll
2015-10-24 18:00 - 2015-07-09 19:16 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARPDebug.dll
2015-10-24 18:00 - 2015-07-09 19:13 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXGIDebug.dll
2015-10-24 17:57 - 2015-10-24 18:47 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2015-10-24 17:57 - 2015-10-24 18:46 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2015-10-24 17:57 - 2015-10-24 18:08 - 00000000 ____D C:\WINDOWS\SysWOW64\1033
2015-10-24 17:57 - 2015-10-24 17:57 - 00001230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015.lnk
2015-10-24 17:56 - 2015-10-24 18:08 - 00000000 ____D C:\Program Files (x86)\Xml
2015-10-24 17:56 - 2015-10-24 18:05 - 00000000 ____D C:\Program Files (x86)\SDK
2015-10-24 17:56 - 2015-10-24 17:56 - 00000000 ____D C:\Program Files (x86)\shell
2015-10-24 17:56 - 2015-10-24 17:56 - 00000000 ____D C:\Program Files (x86)\Setup
2015-10-24 11:28 - 2015-10-24 17:58 - 00000000 ____D C:\WINDOWS\system32\1033
2015-10-24 11:26 - 2015-10-24 18:49 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2015-10-24 11:26 - 2015-10-24 18:06 - 00000000 ____D C:\Program Files (x86)\Team Tools
2015-10-24 11:26 - 2015-10-24 18:05 - 00000000 ____D C:\Program Files (x86)\Common7
2015-10-24 11:26 - 2015-10-24 11:26 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_SensorsSimulatorDriver_01_11_00.Wdf
2015-10-24 10:58 - 2015-10-24 19:08 - 00000000 ____D C:\ProgramData\VsTelemetry
2015-10-24 08:38 - 2015-10-24 08:38 - 00000000 ____D C:\Users\aaa\AppData\Roaming\qualys
2015-10-24 08:37 - 2015-10-24 08:37 - 00000000 ____D C:\Program Files (x86)\Qualys
2015-10-23 17:23 - 2009-09-16 07:02 - 00031232 _____ (Tunngle.net) C:\WINDOWS\system32\Drivers\tap0901t.sys
2015-10-21 14:19 - 2015-11-07 13:06 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-10-21 14:19 - 2015-11-07 10:14 - 00003900 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-10-20 18:21 - 2015-10-22 19:05 - 00110176 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-10-20 18:21 - 2015-10-22 19:05 - 00000000 ____D C:\Program Files\Java
2015-10-19 19:58 - 2015-10-23 16:55 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-17 14:06 - 2015-10-17 14:06 - 00000000 ____D C:\ProgramData\RealHideIP
2015-10-17 13:14 - 2015-10-17 13:14 - 00000000 ____D C:\ProgramData\AutoHideIP
2015-10-17 12:53 - 2015-10-17 14:16 - 00000000 ____D C:\Program Files (x86)\Hide ALL IP
2015-10-17 12:53 - 2015-10-17 12:53 - 00437616 _____ (Network Tunnel Lab) C:\WINDOWS\SysWOW64\networkdlllsp.dll
2015-10-17 09:44 - 2015-10-17 09:44 - 00003642 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-mrannix99@gmail.com
2015-10-17 09:43 - 2015-10-17 09:43 - 00000034 _____ C:\Users\aaa\AppData\Roaming\AdobeWLCMCache.dat
2015-10-14 15:49 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-10-14 15:49 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-10-14 15:49 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-10-14 15:49 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-10-14 15:49 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-10-14 15:49 - 2015-09-25 03:38 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-10-14 15:49 - 2015-09-25 03:38 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-10-14 15:49 - 2015-09-25 03:38 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-10-14 15:49 - 2015-09-25 03:38 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-10-14 15:49 - 2015-09-25 03:37 - 00766976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-10-14 15:49 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-10-14 15:49 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-14 15:49 - 2015-09-25 03:36 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-10-14 15:49 - 2015-09-25 03:36 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-10-14 15:49 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-10-14 15:49 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-10-14 15:49 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-10-14 15:49 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-10-14 15:49 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-10-14 15:49 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-10-14 15:49 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-10-14 15:49 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-10-14 15:47 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-10-14 15:47 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-10-14 15:47 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-14 15:47 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-14 15:47 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-14 15:47 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-14 15:47 - 2015-09-25 04:02 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-10-14 15:47 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-14 15:47 - 2015-09-25 04:01 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-14 15:47 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-14 15:47 - 2015-09-25 04:00 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-14 15:47 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-14 15:47 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-14 15:47 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-14 15:47 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-14 15:47 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-14 15:47 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-14 15:47 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-14 15:46 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-14 15:46 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-14 15:46 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-10-14 15:46 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-10-14 15:46 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-10-14 15:46 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-10-14 15:46 - 2015-10-01 05:00 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-14 15:46 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-10-14 15:46 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-10-14 15:46 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-10-14 15:46 - 2015-09-25 04:09 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-10-14 15:46 - 2015-09-25 04:04 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-10-14 15:46 - 2015-09-25 04:04 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-14 15:46 - 2015-09-25 04:03 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-10-14 15:46 - 2015-09-25 04:02 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-14 15:46 - 2015-09-25 04:01 - 04792320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-14 15:46 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-14 15:46 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-10-12 18:48 - 2015-10-12 18:54 - 00000000 ____D C:\Users\aaa\Desktop\BACKUP
2015-10-12 18:11 - 2015-10-12 18:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Active@ ISO Burner
2015-10-12 17:40 - 2015-10-17 14:16 - 00000000 ____D C:\Program Files (x86)\LSoft Technologies
2015-10-11 15:08 - 2015-10-11 15:08 - 00001540 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2014.lnk
2015-10-11 15:08 - 2015-10-11 15:08 - 00000000 ____D C:\ProgramData\ALM
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-07 13:24 - 2015-02-19 16:09 - 00000000 ____D C:\Users\aaa\AppData\Roaming\Skype
2015-11-07 13:10 - 2015-04-03 06:48 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-11-07 13:03 - 2015-09-21 16:55 - 00011893 _____ C:\WINDOWS\system32\Drivers\etc\hosts.tmp
2015-11-07 12:47 - 2015-03-28 07:19 - 00000974 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-07 12:26 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-11-07 12:19 - 2015-02-17 16:34 - 00000000 ____D C:\Users\aaa\AppData\Local\Adobe
2015-11-07 10:17 - 2015-02-17 16:01 - 00000000 ___RD C:\Users\aaa\Desktop\PSDs
2015-11-07 09:15 - 2015-08-06 07:57 - 00000000 ____D C:\Users\aaa
2015-11-07 08:48 - 2015-03-31 18:45 - 00000132 _____ C:\Users\aaa\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2015-11-07 08:48 - 2015-02-21 12:15 - 00000000 ____D C:\Users\aaa\AppData\Roaming\.minecraft
2015-11-07 07:46 - 2015-02-17 15:49 - 00000000 ____D C:\Users\aaa\AppData\Roaming\uTorrent
2015-11-07 07:38 - 2015-03-03 19:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
2015-11-07 07:36 - 2015-08-05 09:58 - 00000000 ____D C:\Users\aaa\Desktop\MEME
2015-11-07 07:25 - 2015-02-01 19:47 - 00004190 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{50BEB57B-27F7-47FB-A23E-4EB9122A8894}
2015-11-07 07:24 - 2015-08-24 09:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vectir
2015-11-07 07:24 - 2015-08-24 09:17 - 00000000 ____D C:\Program Files (x86)\Vectir
2015-11-07 07:24 - 2015-04-06 08:15 - 00000000 ____D C:\Users\aaa\Desktop\NEFAKTY
2015-11-07 07:22 - 2015-06-03 19:09 - 00000354 _____ C:\WINDOWS\Tasks\DriverToolkit Autorun.job
2015-11-07 07:22 - 2015-03-28 07:19 - 00000970 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-06 16:51 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-05 15:24 - 2015-09-11 14:40 - 00000000 ____D C:\Users\aaa\AppData\Local\LogMeIn Hamachi
2015-11-05 15:24 - 2015-02-22 10:41 - 00000000 ____D C:\Users\aaa\AppData\Roaming\DAEMON Tools Lite
2015-11-03 17:15 - 2015-03-29 17:27 - 00000000 ___HD C:\_acestream_cache_
2015-11-03 17:15 - 2015-03-29 17:26 - 00000000 ____D C:\Users\aaa\AppData\Roaming\.ACEStream
2015-11-01 12:52 - 2015-03-22 10:37 - 00000000 ____D C:\Users\aaa\Desktop\Prográmky
2015-11-01 10:39 - 2015-03-03 19:37 - 00000000 ____D C:\Program Files (x86)\Mirillis
2015-11-01 10:30 - 2015-02-26 08:33 - 00000000 ____D C:\Program Files (x86)\Gomez
2015-11-01 09:42 - 2015-08-15 07:33 - 00000000 ____D C:\WINDOWS\Minidump
2015-11-01 09:42 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\Offline Web Pages
2015-11-01 09:24 - 2015-02-20 14:07 - 00000000 ____D C:\ProgramData\BDLogging
2015-11-01 09:23 - 2015-02-18 15:08 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2015-11-01 09:23 - 2015-02-18 14:56 - 00000000 ____D C:\Program Files\ATI Technologies
2015-11-01 09:22 - 2015-03-14 09:32 - 00000000 ____D C:\ProgramData\Package Cache
2015-11-01 09:21 - 2015-02-18 15:42 - 00000000 ____D C:\AMD
2015-11-01 08:10 - 2015-02-18 15:51 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-10-31 22:58 - 2015-02-17 15:38 - 00000000 ____D C:\ProgramData\Origin
2015-10-30 19:02 - 2015-08-06 07:55 - 02038992 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-30 19:02 - 2015-07-10 17:02 - 00842288 _____ C:\WINDOWS\system32\perfh005.dat
2015-10-30 19:02 - 2015-07-10 17:02 - 00192552 _____ C:\WINDOWS\system32\perfc005.dat
2015-10-30 18:57 - 2015-07-10 10:05 - 00065536 ___SH C:\WINDOWS\system32\config\ELAM
2015-10-30 18:55 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-30 11:23 - 2015-07-10 10:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-10-30 11:22 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-10-30 07:38 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-10-29 18:29 - 2015-07-17 16:53 - 00000000 ____D C:\Program Files\FlatOut2
2015-10-28 10:28 - 2015-02-22 19:32 - 00000000 ___RD C:\Users\aaa\Desktop\GAMES
2015-10-28 07:55 - 2015-02-17 16:34 - 00000000 ____D C:\ProgramData\Adobe
2015-10-28 07:55 - 2015-02-17 15:53 - 00000000 ____D C:\Users\aaa\AppData\Roaming\Adobe
2015-10-27 22:55 - 2015-02-19 16:17 - 00000000 ____D C:\Users\aaa\Documents\FIFA 14
2015-10-27 20:26 - 2015-08-16 10:37 - 00000000 ____D C:\Users\aaa\Documents\NHL09
2015-10-27 19:38 - 2015-02-19 14:52 - 00000000 ____D C:\Users\aaa\Documents\My Games
2015-10-27 19:20 - 2015-03-22 18:58 - 00000000 ____D C:\Users\aaa\AppData\Roaming\vlc
2015-10-27 19:10 - 2015-02-17 16:45 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-10-27 19:06 - 2015-02-17 15:58 - 00000000 ____D C:\Users\aaa\Desktop\Intro & Outro
2015-10-27 19:00 - 2015-08-18 19:04 - 00000000 ____D C:\AdwCleaner
2015-10-27 16:44 - 2015-10-04 11:10 - 00000000 ____D C:\Program Files\CCleaner
2015-10-26 16:52 - 2015-09-06 12:37 - 00000000 ____D C:\Program Files (x86)\Steam
2015-10-25 20:22 - 2015-02-19 20:40 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2015-10-25 17:21 - 2015-02-19 16:09 - 00000000 ____D C:\ProgramData\Skype
2015-10-24 20:44 - 2015-09-06 09:27 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2015-10-24 18:46 - 2015-03-11 21:00 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2015-10-24 18:06 - 2015-08-06 08:35 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-10-24 11:31 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-10-24 08:45 - 2015-05-24 05:26 - 00003650 _____ C:\WINDOWS\System32\Tasks\Maxthon Update
2015-10-24 08:06 - 2015-03-07 08:39 - 00000000 ____D C:\WINDOWS\pss
2015-10-24 08:04 - 2015-08-18 09:24 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2015-10-24 07:21 - 2015-07-10 13:20 - 05042472 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-10-23 17:25 - 2015-08-16 10:21 - 00000000 ____D C:\Users\aaa\AppData\Roaming\Tunngle
2015-10-23 16:55 - 2015-09-18 19:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-23 14:02 - 2015-04-02 10:54 - 00000000 ____D C:\Program Files (x86)\Origin
2015-10-22 19:13 - 2015-02-21 18:03 - 00000000 ____D C:\ProgramData\Oracle
2015-10-22 19:05 - 2015-09-28 06:54 - 00000000 ____D C:\Users\aaa\.oracle_jre_usage
2015-10-22 19:05 - 2015-02-21 18:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-10-22 19:04 - 2015-02-21 18:03 - 00000000 ____D C:\Program Files (x86)\Java
2015-10-17 14:22 - 2015-04-16 18:34 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-10-17 07:36 - 2015-09-05 08:47 - 00000000 ____D C:\Program Files (x86)\S.W.A.T. 4
2015-10-16 04:10 - 2015-07-10 12:06 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-10-16 04:10 - 2015-07-10 12:06 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-14 16:57 - 2015-02-19 16:09 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-10-14 16:41 - 2015-02-14 12:33 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-10-14 16:39 - 2009-07-14 03:34 - 00000478 _____ C:\WINDOWS\win.ini
2015-10-13 15:29 - 2015-05-19 05:56 - 00002562 _____ C:\WINDOWS\diagwrn.xml
2015-10-13 15:29 - 2015-05-19 05:56 - 00001908 _____ C:\WINDOWS\diagerr.xml
2015-10-12 17:39 - 2015-06-03 14:51 - 00000000 ____D C:\Users\aaa\AppData\Local\Ahead
2015-10-11 15:08 - 2015-04-03 09:45 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-10-11 15:08 - 2015-02-17 16:54 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2015-10-11 15:07 - 2015-04-03 09:53 - 00000000 ____D C:\Program Files\Adobe
==================== Files in the root of some directories =======
2015-03-31 18:45 - 2015-11-07 08:48 - 0000132 _____ () C:\Users\aaa\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2015-10-17 09:43 - 2015-10-17 09:43 - 0000034 _____ () C:\Users\aaa\AppData\Roaming\AdobeWLCMCache.dat
2015-03-31 20:42 - 2015-03-31 20:42 - 0001480 _____ () C:\Users\aaa\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2015-08-16 08:43 - 2015-08-16 08:43 - 0730384 _____ () C:\ProgramData\1439710125.bdinstall.bin
2015-08-06 07:53 - 2015-08-06 07:53 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-05-11 16:20 - 2015-05-12 17:10 - 0000193 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
Some files in TEMP:
====================
C:\Users\aaa\AppData\Local\Temp\VectirUpdate.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-11-01 20:27
==================== End of FRST.txt ============================
