VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Podezřelé chování

https://forum.viry.cz:443/viewtopic.php?t=147063

Stránka 1 z 1

Podezřelé chování

Napsal: 03 pro 2015 11:01
od messtor
Dobrý den, už nějakou dobu si můj počítač dělá trochu co chce. Občas zamrzá, občas nejdou spustit programy, občas mi klávesnice píše nesmyslné znaky, jakoby byla přemapovaná (nejedná se o změnu jazyka) atd. Moc prosím o kontrolu logu, případně rady, děkuju!

Vkládám log s FRST:

can result of Farbar Recovery Scan Tool (FRST) (x64) Version:01-12-2015
Ran by Ivanek (administrator) on IVAN-PC (03-12-2015 10:57:29)
Running from C:\Users\Ivanek\Downloads
Loaded Profiles: Ivanek (Available Profiles: Ivanek)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Software602 a.s.) C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Akamai Technologies, Inc.) C:\Users\Ivanek\AppData\Local\Akamai\netsession_win.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Akamai Technologies, Inc.) C:\Users\Ivanek\AppData\Local\Akamai\netsession_win.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
() C:\Windows\SysWOW64\XSrvSetup.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
() C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Nalpeiron Ltd.) C:\Windows\System32\nlsInterface.EXE
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(pdfforge GbR) C:\Program Files (x86)\PDF Architect\HelperService.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(pdfforge GbR) C:\Program Files (x86)\PDF Architect\ConversionService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(X-Rite Inc.) C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Joyent, Inc) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Joyent, Inc) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(C. Ghisler & Co.) C:\totalcmd\TOTALCMD.EXE


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10135584 2010-03-26] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-10-30] (Adobe Systems Incorporated)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1275608 2014-03-25] (COMODO)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2716216 2009-11-16] (ESET)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-10-16] (Apple Inc.)
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [85160 2009-06-17] (Elaborate Bytes AG)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Tilt] => C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe [724992 2009-06-26] ()
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60688 2015-10-13] (Apple Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2304688 2015-11-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\Run: [EPSON SX235 Series] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHLE.EXE [232448 2012-01-04] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\Run: [Epson Stylus SX235(Síe)] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHLE.EXE [232448 2012-01-04] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Ivanek\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [60688 2015-10-21] (Apple Inc.)
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [61200 2015-10-21] (Apple Inc.)
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7404312 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\Run: [Viber] => C:\Users\Ivanek\AppData\Local\Viber\Viber.exe [51657424 2015-11-09] ()
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\MountPoints2: F - F:\SETUP.EXE
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\MountPoints2: {c03e8ad1-d2f6-11df-8232-1c6f653c3894} - Q:\setup.exe
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> (None)
HKU\S-1-5-18\...\RunOnce: [iCloud] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe [60688 2015-10-21] (Apple Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-11-14] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-11-14] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-11-14] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{1C34E092-7E90-436F-9863-8BCE47DFE39F}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3BB458ED-6675-47DB-8B77-235970FBCCE0}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{7BE4E267-555D-4817-81F0-6146B57B1476}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{C2340DD6-9A9E-4429-97C2-37210A195EA3}: [DhcpNameServer] 172.20.10.1

Internet Explorer:
==================
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24] (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: PDF Architect Helper -> {3A2D5EBA-F86D-4BD3-A177-019765996711} -> C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-01-09] (pdfforge GbR)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-11-05] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-11-05] (Oracle Corporation)
Toolbar: HKLM - No Name - {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24] (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM-x32 - PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll [2013-01-09] (pdfforge GbR)
Toolbar: HKU\S-1-5-21-3041121131-3184122690-1646572021-1000 -> No Name - {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Ivanek\AppData\Roaming\Mozilla\Firefox\Profiles\mff2fsk7.default-1403165634159
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-11] ()
FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\Windows\system32\npDeployJava1.dll [2013-01-24] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.2 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-11-25] (Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-11] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-08] ()
FF Plugin-x32: @esn/esnlaunch,version=1.116.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.122.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll [2012-05-11] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.3 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll [2013-02-28] (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2014-11-05] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-11-05] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [No File]
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.2 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-11-25] (Adobe Systems)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin HKU\S-1-5-21-3041121131-3184122690-1646572021-1000: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2015-10-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2015-10-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2015-10-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2015-10-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2015-10-06] (Apple Inc.)
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt [2013-01-23] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: Eset Plugin - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010-10-25] [not signed]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-05]
CHR Extension: (Disk Google) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (Brushed) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfjgbcjfpbbfepcccpaffkjofcmglifg [2014-05-31]
CHR Extension: (YouTube) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Adblock Plus) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-11-26]
CHR Extension: (Entanglement) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmnpffgfpcohhpoddjankjanolcekbni [2015-08-01]
CHR Extension: (Vyhledávání Google) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Dokumenty Google offline) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-19]
CHR Extension: (AdBlock) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-11-24]
CHR Extension: (TinEye Reverse Image Search) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl [2014-05-31]
CHR Extension: (RevEye Reverse Image Search) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\keaaclcjhehbbapnphnmpiklalfhelgf [2015-05-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25]
CHR Extension: (Gmail) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [683696 2015-11-16] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2016448 2015-11-25] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6817544 2014-04-16] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2264280 2014-03-25] (COMODO)
S3 EhttpSrv; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [23296 2009-11-16] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [735960 2009-11-16] (ESET)
R2 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [File not signed]
R2 hasplms; C:\Windows\system32\hasplms.exe [3750400 2009-12-16] (SafeNet Inc.)
R2 JMB36X; C:\Windows\SysWOW64\XSrvSetup.exe [72280 2010-09-07] ()
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation)
S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation)
R2 nlscc; C:\Windows\system32\nlsInterface.exe [72192 2010-11-01] (Nalpeiron Ltd.) [File not signed]
R2 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [61440 2010-11-01] (Nalpeiron Ltd.) [File not signed]
S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [96184 2013-12-09] (Overwolf)
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1324104 2013-01-09] (pdfforge GbR)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [795208 2013-01-09] (pdfforge GbR)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [671512 2014-12-22] (Wacom Technology, Corp.)
R2 xrdd.exe; C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe [203088 2011-10-11] (X-Rite Inc.)
S2 .EsetTrialReset; C:\Windows\system32\regedt32.exe /s C:\Windows\esettrialreset.reg

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21544 2010-04-27] ()
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2014-04-16] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [738472 2014-04-16] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [48360 2014-04-16] (COMODO)
R2 eamon; C:\Windows\System32\DRIVERS\eamon.sys [145336 2009-11-16] (ESET)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [136584 2009-11-16] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [123200 2009-11-16] (ESET)
S3 EyeOneDisplay; C:\Windows\System32\Drivers\i1display_x64.sys [7808 2005-12-13] (GretagMacbeth LLC)
S3 GeneStor; C:\Windows\System32\DRIVERS\GeneStor.sys [104960 2014-07-07] (GenesysLogic) [File not signed]
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [31648 2014-01-19] (REALiX(tm))
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [105552 2014-04-16] (COMODO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation)
S3 RSUSBCCID; C:\Windows\System32\DRIVERS\RtsUCcid.sys [50176 2009-08-10] (Realtek Semiconductor Corp.)
R3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [2978520 2013-11-15] (Realtek Semiconductor Corporation )
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2010-10-01] () [File not signed]
S3 trufos; C:\Windows\System32\drivers\trufos.sys [350160 2013-08-30] (BitDefender S.R.L.)
R3 vhidmini; C:\Windows\System32\DRIVERS\vjoy.sys [15104 2012-10-15] (Headsoft)
R2 WinI2C-DDC; C:\Windows\system32\drivers\DDCDrv.sys [20832 2011-11-10] (Nicomsoft Ltd.)
R2 WinI2C-DDC; C:\Windows\SysWOW64\drivers\DDCDrv.sys [10240 2011-11-10] (Nicomsoft Ltd.) [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-03 10:57 - 2015-12-03 10:57 - 00027541 _____ C:\Users\Ivanek\Downloads\FRST.txt
2015-12-03 10:56 - 2015-12-03 10:57 - 00000000 ____D C:\FRST
2015-12-03 10:54 - 2015-12-03 10:54 - 00112640 _____ (forum.viry.cz) C:\Users\Ivanek\Downloads\Nepotvrzeno 889061.crdownload
2015-12-03 10:54 - 2015-12-03 10:54 - 00112640 _____ (forum.viry.cz) C:\Users\Ivanek\Downloads\Nepotvrzeno 393024.crdownload
2015-12-03 10:52 - 2015-12-03 10:53 - 02350080 _____ (Farbar) C:\Users\Ivanek\Downloads\FRST64.exe
2015-12-03 10:30 - 2015-12-03 10:44 - 00000894 _____ C:\Users\Public\ExceptionHappened.txt
2015-12-01 19:58 - 2015-12-01 19:58 - 00390826 _____ C:\Users\Ivanek\Downloads\photo (1).htm
2015-12-01 19:58 - 2015-12-01 19:58 - 00390533 _____ C:\Users\Ivanek\Downloads\photo.htm
2015-11-28 10:52 - 2015-11-28 10:52 - 00001173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2015-11-28 10:52 - 2015-11-28 10:52 - 00001161 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2015-11-27 11:25 - 2015-11-27 11:25 - 11685025 _____ C:\Users\Ivanek\Downloads\DSC_0343.NEF
2015-11-27 11:25 - 2015-11-27 11:25 - 10834894 _____ C:\Users\Ivanek\Downloads\DSC_0347.NEF
2015-11-26 10:33 - 2015-11-26 10:33 - 00066151 _____ C:\Users\Ivanek\Downloads\invoice.pdf
2015-11-26 09:32 - 2015-11-26 09:35 - 00281318 _____ C:\Windows\ntbtlog.txt
2015-11-25 13:52 - 2015-11-25 13:53 - 02775442 _____ C:\Users\Ivanek\Downloads\OneDrive-2015-11-25.zip
2015-11-24 19:00 - 2015-11-24 19:00 - 39523172 _____ C:\Users\Ivanek\Downloads\trojhran_bossi_pizzy.zip
2015-11-18 13:33 - 2015-12-03 10:51 - 00000000 ____D C:\Users\Ivanek\AppData\Roaming\ViberPC
2015-11-18 13:33 - 2015-12-03 10:23 - 00000000 ____D C:\Users\Ivanek\Documents\ViberDownloads
2015-11-18 13:33 - 2015-11-18 13:33 - 00000968 _____ C:\Users\Ivanek\AppData\Roaming\Microsoft\Windows\Start Menu\Viber.lnk
2015-11-18 13:33 - 2015-11-18 13:33 - 00000966 _____ C:\Users\Ivanek\Desktop\Viber.lnk
2015-11-18 13:33 - 2015-11-18 13:33 - 00000000 ____D C:\Users\Ivanek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viber
2015-11-18 13:33 - 2015-11-18 13:33 - 00000000 ____D C:\Users\Ivanek\AppData\Local\Viber
2015-11-18 13:32 - 2015-11-18 13:32 - 00000000 ____D C:\Users\Ivanek\AppData\Local\Package Cache
2015-11-18 13:18 - 2015-11-18 13:19 - 101213136 _____ (Viber Media Inc.) C:\Users\Ivanek\Downloads\ViberSetup.exe
2015-11-12 10:36 - 2015-11-12 10:36 - 05909354 _____ C:\Users\Ivanek\Downloads\firebrushes_GUA.abr
2015-11-12 10:35 - 2015-11-12 10:35 - 12575626 _____ C:\Users\Ivanek\Downloads\flame_brushes_by_sugarbreezy.abr
2015-11-12 09:40 - 2015-11-03 18:55 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-11-11 09:09 - 2015-10-20 19:42 - 03168768 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-11-11 09:09 - 2015-10-20 19:42 - 02608128 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-11-11 09:09 - 2015-10-20 19:42 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-11-11 09:09 - 2015-10-20 19:42 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-11-11 09:09 - 2015-10-20 19:42 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-11-11 09:09 - 2015-10-20 19:42 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-11-11 09:09 - 2015-10-20 19:42 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-11-11 09:09 - 2015-10-20 19:41 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-11-11 09:09 - 2015-10-20 19:41 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-11-11 09:09 - 2015-10-20 19:41 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-11-11 09:09 - 2015-10-20 19:41 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-11-11 09:09 - 2015-10-20 18:46 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-11-11 09:09 - 2015-10-20 18:46 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-11-11 09:09 - 2015-10-20 18:46 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-11-11 09:09 - 2015-10-20 18:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-11-11 09:09 - 2015-10-20 18:45 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-11-11 09:08 - 2015-11-03 23:10 - 00390344 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-11-11 09:08 - 2015-11-03 22:51 - 00342728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-11-11 09:08 - 2015-10-31 00:46 - 25818624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-11-11 09:08 - 2015-10-31 00:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-11-11 09:08 - 2015-10-31 00:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-11-11 09:08 - 2015-10-31 00:25 - 02886656 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-11-11 09:08 - 2015-10-31 00:25 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-11-11 09:08 - 2015-10-31 00:25 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-11-11 09:08 - 2015-10-31 00:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-11-11 09:08 - 2015-10-31 00:24 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-11-11 09:08 - 2015-10-31 00:24 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-11-11 09:08 - 2015-10-31 00:17 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-11-11 09:08 - 2015-10-31 00:16 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-11-11 09:08 - 2015-10-31 00:13 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-11-11 09:08 - 2015-10-31 00:12 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-11-11 09:08 - 2015-10-31 00:12 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-11-11 09:08 - 2015-10-31 00:11 - 05990912 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-11-11 09:08 - 2015-10-31 00:11 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-11-11 09:08 - 2015-10-31 00:11 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-11-11 09:08 - 2015-10-31 00:04 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-11-11 09:08 - 2015-10-31 00:01 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-11-11 09:08 - 2015-10-30 23:58 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-11-11 09:08 - 2015-10-30 23:53 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-11-11 09:08 - 2015-10-30 23:52 - 20331520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-11-11 09:08 - 2015-10-30 23:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-11-11 09:08 - 2015-10-30 23:49 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-11-11 09:08 - 2015-10-30 23:47 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-11-11 09:08 - 2015-10-30 23:46 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-11-11 09:08 - 2015-10-30 23:46 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-11-11 09:08 - 2015-10-30 23:45 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-11-11 09:08 - 2015-10-30 23:45 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-11-11 09:08 - 2015-10-30 23:44 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-11-11 09:08 - 2015-10-30 23:44 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-11-11 09:08 - 2015-10-30 23:42 - 02279936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-11-11 09:08 - 2015-10-30 23:39 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-11-11 09:08 - 2015-10-30 23:39 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-11-11 09:08 - 2015-10-30 23:37 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-11-11 09:08 - 2015-10-30 23:36 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-11-11 09:08 - 2015-10-30 23:36 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-11-11 09:08 - 2015-10-30 23:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-11-11 09:08 - 2015-10-30 23:34 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-11-11 09:08 - 2015-10-30 23:32 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-11-11 09:08 - 2015-10-30 23:31 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-11-11 09:08 - 2015-10-30 23:29 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-11-11 09:08 - 2015-10-30 23:29 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-11-11 09:08 - 2015-10-30 23:28 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-11-11 09:08 - 2015-10-30 23:23 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-11-11 09:08 - 2015-10-30 23:22 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-11-11 09:08 - 2015-10-30 23:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-11-11 09:08 - 2015-10-30 23:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-11-11 09:08 - 2015-10-30 23:18 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-11-11 09:08 - 2015-10-30 23:17 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-11-11 09:08 - 2015-10-30 23:17 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-11-11 09:08 - 2015-10-30 23:16 - 04527616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-11-11 09:08 - 2015-10-30 23:11 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-11-11 09:08 - 2015-10-30 23:10 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-11-11 09:08 - 2015-10-30 23:09 - 12854272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-11-11 09:08 - 2015-10-30 23:09 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-11-11 09:08 - 2015-10-30 23:09 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-11-11 09:08 - 2015-10-30 23:04 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-11-11 09:08 - 2015-10-30 22:53 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-11-11 09:08 - 2015-10-30 22:51 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-11-11 09:08 - 2015-10-30 22:48 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-11-11 09:08 - 2015-10-30 22:46 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-11-11 09:08 - 2015-10-29 18:50 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-11-11 09:08 - 2015-10-29 18:50 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-11-11 09:08 - 2015-10-29 18:50 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-11-11 09:08 - 2015-10-29 18:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-11-11 09:08 - 2015-10-29 18:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-11-11 09:08 - 2015-10-29 18:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-11-11 09:08 - 2015-10-29 18:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-11-11 09:08 - 2015-10-20 02:12 - 05570496 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-11-11 09:08 - 2015-10-20 02:12 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-11-11 09:08 - 2015-10-20 02:12 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-11-11 09:08 - 2015-10-20 02:09 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-11-11 09:08 - 2015-10-20 02:06 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-11-11 09:08 - 2015-10-20 02:06 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-11-11 09:08 - 2015-10-20 02:06 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-11-11 09:08 - 2015-10-20 02:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-11-11 09:08 - 2015-10-20 02:05 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-11-11 09:08 - 2015-10-20 02:05 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-11-11 09:08 - 2015-10-20 02:04 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-11-11 09:08 - 2015-10-20 02:04 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-11-11 09:08 - 2015-10-20 02:04 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-11-11 09:08 - 2015-10-20 02:00 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-11-11 09:08 - 2015-10-20 01:59 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:52 - 03991488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-11-11 09:08 - 2015-10-20 01:52 - 03935680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-11-11 09:08 - 2015-10-20 01:48 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-11-11 09:08 - 2015-10-20 01:45 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-11-11 09:08 - 2015-10-20 01:44 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-11-11 09:08 - 2015-10-20 01:44 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-11-11 09:08 - 2015-10-20 01:44 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-11-11 09:08 - 2015-10-20 01:44 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-11-11 09:08 - 2015-10-20 01:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-11-11 09:08 - 2015-10-20 01:44 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-11-11 09:08 - 2015-10-20 01:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-11-11 09:08 - 2015-10-20 01:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 00:41 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-11-11 09:08 - 2015-10-20 00:40 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-11-11 09:08 - 2015-10-20 00:40 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-11-11 09:08 - 2015-10-20 00:29 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-11-11 09:08 - 2015-10-20 00:29 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-11-11 09:08 - 2015-10-20 00:27 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 00:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 00:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 00:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-11-11 09:08 - 2015-10-13 17:41 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-11-11 09:08 - 2015-10-13 17:40 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-11-11 09:08 - 2015-10-13 05:57 - 00950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-11-11 09:08 - 2015-10-01 19:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-11-11 09:08 - 2015-10-01 19:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-11-11 09:08 - 2015-10-01 18:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-11-11 09:08 - 2015-09-23 14:15 - 00460776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-11-11 09:08 - 2015-09-23 14:15 - 00299632 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2015-11-11 09:08 - 2015-09-23 14:09 - 00251000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2015-11-10 15:39 - 2015-11-10 15:40 - 39197280 _____ C:\Users\Ivanek\Downloads\TIME-2016-data.pdf
2015-11-10 13:22 - 2015-11-10 13:22 - 00000000 ____D C:\Users\Ivanek\Downloads\Windows 7 64bit
2015-11-10 13:16 - 2015-11-10 13:22 - 05645367 _____ C:\Users\Ivanek\Downloads\Archer_T4U_V1_140402.zip
2015-11-10 13:04 - 2013-11-15 08:50 - 00020184 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\system32\rtlCoInst.dll
2015-11-10 13:04 - 2013-11-15 08:50 - 00008099 _____ C:\Windows\system32\rtlCoInst.dat
2015-11-09 18:00 - 2015-11-10 14:10 - 00000000 ____D C:\Users\Ivanek\AppData\Roaming\WTablet
2015-11-09 17:58 - 2015-11-09 17:58 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wacom Tablet
2015-11-09 17:57 - 2014-10-25 21:52 - 00100664 _____ (Wacom Technology) C:\Windows\system32\Drivers\wachidrouter.sys
2015-11-09 17:57 - 2014-10-25 21:52 - 00015160 _____ (Wacom Technology) C:\Windows\system32\Drivers\wacomrouterfilter.sys
2015-11-09 17:57 - 2014-10-25 21:52 - 00014136 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\hidkmdf.sys
2015-11-09 17:56 - 2015-11-09 17:57 - 00000000 ____D C:\Program Files\Tablet
2015-11-09 17:56 - 2014-12-22 21:42 - 02029336 _____ (Wacom Technology, Corp.) C:\Windows\system32\WacomMT.dll
2015-11-09 17:56 - 2014-12-22 21:42 - 01997592 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wacom_Tablet.dll
2015-11-09 17:56 - 2014-12-22 21:42 - 01990936 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wacom_Touch_Tablet.dll
2015-11-09 17:56 - 2014-12-22 21:42 - 01863960 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wintab32.dll
2015-11-09 17:56 - 2014-12-22 21:42 - 01626392 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\WacomMT.dll
2015-11-09 17:56 - 2014-12-22 21:42 - 01618712 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wacom_Tablet.dll
2015-11-09 17:56 - 2014-12-22 21:42 - 01612056 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wacom_Touch_Tablet.dll
2015-11-09 17:56 - 2014-12-22 21:42 - 01497368 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wintab32.dll
2015-11-09 17:45 - 2015-11-09 17:53 - 147029152 _____ C:\Users\Ivanek\Downloads\WacomTablet_6.3.11w3.exe
2015-11-08 11:00 - 2015-11-08 11:00 - 00000000 ____D C:\Users\Ivanek\AppData\Local\CEF
2015-11-08 10:33 - 2015-11-27 08:13 - 00002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-11-08 10:33 - 2015-11-08 10:33 - 00002061 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2015-11-07 19:36 - 2015-11-07 19:36 - 00000000 ____D C:\Users\Ivanek\Documents\Rigs of Rods 0.38
2015-11-07 19:36 - 2015-11-07 19:36 - 00000000 ____D C:\Users\Ivanek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rigs of Rods 0.38.67
2015-11-07 19:35 - 2015-11-07 19:36 - 00000000 ____D C:\Program Files (x86)\Rigs of Rods 0.38
2015-11-07 15:22 - 2015-11-07 15:24 - 139017086 _____ (www.rigsofrods.com) C:\Users\Ivanek\Downloads\RoR-Setup-0.38.67.exe
2015-11-05 16:51 - 2015-11-05 16:51 - 00000000 ____D C:\Users\Ivanek\Downloads\syngo_fv-02184790
2015-11-05 16:48 - 2015-11-05 16:49 - 18043422 _____ C:\Users\Ivanek\Downloads\syngo_fv-02184790.zip
2015-11-04 13:56 - 2015-11-04 13:56 - 00187300 _____ C:\Users\Ivanek\Downloads\sauna_cenik.pdf
2015-11-04 10:17 - 2015-11-04 10:17 - 04566468 _____ C:\Users\Ivanek\Downloads\TIME-2016.zip
2015-11-03 17:17 - 2015-11-03 17:18 - 65798891 _____ C:\Users\Ivanek\Downloads\BS video TIME final.mp4
2015-11-03 14:52 - 2015-11-03 14:53 - 65786270 _____ C:\Users\Ivanek\Downloads\BS video TIME 1.mp4
2015-11-03 10:01 - 2015-11-03 10:01 - 00062335 _____ C:\Users\Ivanek\Downloads\153500871_99900353PR.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-03 10:57 - 2009-07-14 05:45 - 00023264 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-12-03 10:57 - 2009-07-14 05:45 - 00023264 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-12-03 10:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2015-12-03 10:50 - 2014-11-03 12:17 - 00000000 ___RD C:\Users\Ivanek\Creative Cloud Files
2015-12-03 10:50 - 2012-12-02 17:56 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-12-03 10:50 - 2010-10-01 09:42 - 00000000 ____D C:\Users\Ivanek\AppData\Local\Adobe
2015-12-03 10:48 - 2010-12-18 13:52 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-03 10:48 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-03 10:40 - 2010-12-18 13:52 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-03 10:19 - 2012-08-20 19:13 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-12-03 08:42 - 2013-01-24 09:36 - 00002191 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-12-01 16:37 - 2013-08-30 16:32 - 00000056 _____ C:\Windows\Lic.xxx
2015-12-01 16:29 - 2009-07-14 03:34 - 00000955 _____ C:\Windows\win.ini
2015-12-01 15:47 - 2014-08-08 17:04 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-11-30 10:39 - 2015-09-08 17:17 - 00003350 _____ C:\Windows\System32\Tasks\ESET Windows 10 upgrade – Refresh settings
2015-11-28 10:51 - 2010-10-01 09:23 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-11-26 10:23 - 2014-08-08 17:02 - 00001128 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-11-26 10:23 - 2014-08-08 17:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-26 10:23 - 2014-08-08 17:02 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-11-24 18:15 - 2010-10-01 09:42 - 00000000 ____D C:\Users\Ivanek\AppData\Roaming\Adobe
2015-11-23 08:44 - 2009-07-14 16:18 - 00677576 _____ C:\Windows\system32\perfh005.dat
2015-11-23 08:44 - 2009-07-14 16:18 - 00146494 _____ C:\Windows\system32\perfc005.dat
2015-11-23 08:44 - 2009-07-14 06:13 - 01611912 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-23 08:44 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2015-11-20 14:03 - 2010-10-02 20:29 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2015-11-20 10:58 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries
2015-11-20 10:42 - 2010-10-03 20:08 - 00000000 ____D C:\Users\Ivanek\kbpki
2015-11-18 15:45 - 2010-10-02 19:09 - 00000000 ____D C:\Users\Ivanek\AppData\Local\GHISLER
2015-11-14 08:53 - 2009-07-14 05:45 - 05182360 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-12 13:08 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2015-11-12 09:34 - 2012-03-01 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-11-12 09:34 - 2012-03-01 16:17 - 00000000 ____D C:\Program Files (x86)\Origin
2015-11-12 09:33 - 2012-03-01 16:21 - 00000000 ____D C:\ProgramData\Origin
2015-11-11 17:53 - 2013-08-12 08:03 - 00000000 ____D C:\Windows\system32\MRT
2015-11-11 17:45 - 2010-10-04 20:53 - 145617392 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-11-11 17:45 - 2010-10-01 10:07 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-11-11 17:37 - 2010-11-01 20:56 - 01586626 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2015-11-11 17:33 - 2009-07-14 16:37 - 00000000 ____D C:\Program Files\Windows Journal
2015-11-11 16:19 - 2012-08-20 19:13 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-11-11 16:19 - 2012-04-19 10:06 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-11 16:19 - 2011-05-18 15:41 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-10 23:50 - 2010-10-03 10:58 - 00000000 ____D C:\Users\Ivanek\AppData\Roaming\uTorrent
2015-11-10 13:58 - 2015-10-18 11:30 - 00000000 ____D C:\Users\Ivanek\AppData\LocalLow\uTorrent
2015-11-08 10:33 - 2014-12-26 18:42 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-11-08 10:33 - 2010-10-01 09:23 - 00000000 ____D C:\ProgramData\Adobe
2015-11-05 17:49 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2015-11-03 15:01 - 2011-01-10 20:06 - 00000000 ____D C:\Users\Ivanek\AppData\Roaming\vlc
2015-11-03 08:59 - 2014-10-03 06:50 - 00000000 ____D C:\Users\Ivanek\AppData\Local\E411C589-934F-4C39-B89A-4D89E1A5A63F.aplzod

==================== Files in the root of some directories =======

2013-04-16 18:07 - 2013-11-17 10:12 - 0000132 _____ () C:\Users\Ivanek\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
2010-10-25 20:42 - 2010-10-25 20:42 - 0000000 _____ () C:\Users\Ivanek\AppData\Roaming\chrtmp
2010-10-14 17:15 - 2011-02-20 12:20 - 0000157 _____ () C:\Users\Ivanek\AppData\Roaming\default.rss
2011-10-18 20:56 - 2011-10-18 21:10 - 0000132 _____ () C:\Users\Ivanek\AppData\Roaming\Filtr IIIExport Adobe CS5 – předvolby
2014-04-26 19:43 - 2014-04-27 14:07 - 0000132 _____ () C:\Users\Ivanek\AppData\Roaming\Formát BMP Adobe CC – předvolby
2013-12-01 18:55 - 2014-06-12 14:43 - 0000132 _____ () C:\Users\Ivanek\AppData\Roaming\Formát PNG Adobe CC – předvolby
2010-10-05 19:24 - 2011-02-16 20:01 - 0001480 _____ () C:\Users\Ivanek\AppData\Local\Adobe Uložit pro web 12.0 Prefs
2014-08-08 11:22 - 2015-09-01 11:49 - 0001480 _____ () C:\Users\Ivanek\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2010-11-02 17:18 - 2010-12-10 22:18 - 0000094 _____ () C:\Users\Ivanek\AppData\Local\fusioncache.dat
2010-10-02 19:32 - 2015-10-22 11:04 - 0007660 _____ () C:\Users\Ivanek\AppData\Local\resmon.resmoncfg
2013-11-27 14:55 - 2013-11-27 15:03 - 0103424 _____ () C:\Users\Ivanek\AppData\Local\SageThumbs.db3

Some files in TEMP:
====================
C:\Users\Ivanek\AppData\Local\Temp\avcuf32.dll
C:\Users\Ivanek\AppData\Local\Temp\avcuf64.dll
C:\Users\Ivanek\AppData\Local\Temp\avxdisk.dll
C:\Users\Ivanek\AppData\Local\Temp\bdc.exe
C:\Users\Ivanek\AppData\Local\Temp\bdcore.dll
C:\Users\Ivanek\AppData\Local\Temp\bdfltlib2k.dll
C:\Users\Ivanek\AppData\Local\Temp\bdnimbus32.dll
C:\Users\Ivanek\AppData\Local\Temp\bdnimbus64.dll
C:\Users\Ivanek\AppData\Local\Temp\bdupdateservice.dll
C:\Users\Ivanek\AppData\Local\Temp\DEVCON.EXE
C:\Users\Ivanek\AppData\Local\Temp\eEmpty.exe
C:\Users\Ivanek\AppData\Local\Temp\encdec.dll
C:\Users\Ivanek\AppData\Local\Temp\esupdate.exe
C:\Users\Ivanek\AppData\Local\Temp\FSSync.dll
C:\Users\Ivanek\AppData\Local\Temp\Getvlist.exe
C:\Users\Ivanek\AppData\Local\Temp\ikave.dll
C:\Users\Ivanek\AppData\Local\Temp\ipc.dll
C:\Users\Ivanek\AppData\Local\Temp\kave.dll
C:\Users\Ivanek\AppData\Local\Temp\kavvlg.dll
C:\Users\Ivanek\AppData\Local\Temp\msvclnt.dll
C:\Users\Ivanek\AppData\Local\Temp\msvcp80.dll
C:\Users\Ivanek\AppData\Local\Temp\msvcr80.dll
C:\Users\Ivanek\AppData\Local\Temp\msvl64.dll
C:\Users\Ivanek\AppData\Local\Temp\msvlclnt.dll
C:\Users\Ivanek\AppData\Local\Temp\mwavdwnl.exe
C:\Users\Ivanek\AppData\Local\Temp\MWAVL.exe
C:\Users\Ivanek\AppData\Local\Temp\mwavscan.exe
C:\Users\Ivanek\AppData\Local\Temp\mwunzip.dll
C:\Users\Ivanek\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Ivanek\AppData\Local\Temp\nvSCPAPISvr.exe
C:\Users\Ivanek\AppData\Local\Temp\nvStInst.exe
C:\Users\Ivanek\AppData\Local\Temp\prLoader.dll
C:\Users\Ivanek\AppData\Local\Temp\red32.dll
C:\Users\Ivanek\AppData\Local\Temp\Reload.exe
C:\Users\Ivanek\AppData\Local\Temp\scan.dll
C:\Users\Ivanek\AppData\Local\Temp\ScanningProcess.exe
C:\Users\Ivanek\AppData\Local\Temp\setpriv.exe
C:\Users\Ivanek\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Ivanek\AppData\Local\Temp\test2.exe
C:\Users\Ivanek\AppData\Local\Temp\trufos.dll
C:\Users\Ivanek\AppData\Local\Temp\unregx.exe
C:\Users\Ivanek\AppData\Local\Temp\UPDLL10.DLL
C:\Users\Ivanek\AppData\Local\Temp\viewtcp.exe


Some zero byte size files/folders:
==========================
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\VDLL.DLL
C:\Windows\SysWOW64\runouce.exe

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-11-30 12:00

==================== End of FRST.txt ============================

Re: Podezřelé chování

Napsal: 03 pro 2015 11:03
od messtor
Soubor Addition.txt mi nejde poslat jako příloha, píše to, že přípona txt není povolena, přikládám proto opět sem:

Additional scan result of Farbar Recovery Scan Tool (x64) Version:01-12-2015
Ran by Ivanek (2015-12-03 10:58:09)
Running from C:\Users\Ivanek\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2010-10-01 07:35:20)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3041121131-3184122690-1646572021-500 - Administrator - Disabled)
Guest (S-1-5-21-3041121131-3184122690-1646572021-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-3041121131-3184122690-1646572021-1026 - Limited - Enabled)
Ivanek (S-1-5-21-3041121131-3184122690-1646572021-1000 - Administrator - Enabled) => C:\Users\Ivanek

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET NOD32 Antivirus 4.0 (Disabled - Up to date) {CB0F8167-5331-BA19-698E-64816B6801A5}
AV: Microsoft Security Essentials (Disabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: ESET NOD32 Antivirus 4.0 (Disabled - Up to date) {706E6083-750B-B597-533E-5FF310EF4B18}
AS: Microsoft Security Essentials (Disabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: COMODO Antivirus (Disabled - Out of date) {0C2D2636-923D-EE52-2A83-E643204A8275}
FW: COMODO Firewall (Enabled) {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
4Videosoft Free PDF to JPEG Converter (HKLM-x32\...\4Videosoft Free PDF to JPEG Converter_is1) (Version: - )
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.3.0.3670 - Adobe Systems Incorporated)
Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.1.1 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.5.23 - Adobe Systems Incorporated.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.4.1.181 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.3 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0.1 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\Akamai) (Version: - Akamai Technologies, Inc)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.0.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.1.3 - EA Digital Illusions CE AB)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Call of Duty: Modern Warfare 3 - Multiplayer (HKLM-x32\...\Steam App 42690) (Version: - Infinity Ward - Sledgehammer Games)
Canon MovieEdit Task for ZoomBrowser EX (HKLM-x32\...\MovieEditTask) (Version: 3.4.1.9 - Canon Inc.)
Canon Utilities Digital Photo Professional 3.8 (HKLM-x32\...\DPP) (Version: 3.8.0.0 - Canon Inc.)
Canon Utilities EOS Utility (HKLM-x32\...\EOS Utility) (Version: 2.8.1.0 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.22.46 - Canon Inc.)
Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.7.0.0 - Canon Inc.)
Canon Utilities ZoomBrowser EX (HKLM-x32\...\ZoomBrowser EX) (Version: 6.5.1.15 - Canon Inc.)
Canon ZoomBrowser EX Memory Card Utility (HKLM-x32\...\ZoomBrowser EX Memory Card Utility) (Version: 1.3.0.4 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
Color Efex Pro 3.0 Complete (HKLM-x32\...\Color Efex Pro 3.0 Complete Stand-Alone) (Version: 3.1.1.0 - Nik Software, Inc.)
COMODO Internet Security (HKLM\...\{FD8E178D-8B4E-42DA-B434-EFF270329B1C}) (Version: 5.0.32580.1142 - COMODO Group Inc.)
DeepMeta (HKLM-x32\...\{9651BB12-3732-4F2B-B0AE-5E796902DE29}) (Version: 1.4.1227 - Eazign)
EOSCount ActiveX control (HKLM-x32\...\{63B230BF-D745-4ECC-B773-EA25A9AFDC36}) (Version: 2.3.5 - Sergey Vasilevskiy)
EOSInfo (HKLM-x32\...\{CC23FF9A-989C-4DEB-8970-50E6E4862315}) (Version: 0.2.0 - astrojargon.net)
Epson Easy Photo Print 2 (HKLM-x32\...\{A02D7029-C4EF-44C1-9FD4-C0D3CA518113}) (Version: 2.2.4.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON SX235 Series Printer Uninstall (HKLM\...\EPSON SX235 Series) (Version: - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
ESET NOD32 Antivirus (HKLM\...\{57B012C9-5EAD-441B-9925-6B560B543D87}) (Version: 4.0.474.0 - ESET, spol s r. o.)
Eye-One Match 3.6.2 (HKLM-x32\...\Eye-One Match_is1) (Version: 3.6.2 - GretagMacbeth)
F1 2010 (HKLM-x32\...\GFWL_{434D0831-3E0C-4D03-A5D4-5E1000008400}) (Version: 1.0.0000.132 - Codemasters)
F1 2010 (x32 Version: 1.0.0000.132 - Codemasters) Hidden
F1 2010 (x32 Version: 1.0.0001.132 - Codemasters) Hidden
FastStone Image Viewer 4.2 (HKLM-x32\...\FastStone Image Viewer) (Version: 4.2 - FastStone Soft)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Genuine Fractals 6.0.8 Professional Edition (HKLM-x32\...\{FCADA4FF-142C-42A8-B73C-0A54A7F83345}) (Version: 6.0.8 - onOne Software)
GHOST (HKLM-x32\...\{AC968B0F-024A-4323-BD6B-C2A85D183F34}) (Version: 1.00.0000 - Název společnosti:)
Gigabyte Raid Configurer (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.17.59.0 - GIGABYTE Technologies, Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Earth Pro (HKLM-x32\...\{44FC61F0-2F8A-11E3-8CAE-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.73 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Hamachi 1.0.2.5 (HKLM-x32\...\Hamachi) (Version: - )
Helicon Focus 5.3.14 (HKLM-x32\...\Helicon Focus_is1) (Version: - Helicon Soft Ltd.)
HWiNFO64 Version 4.30 (HKLM\...\HWiNFO64_is1) (Version: 4.30 - Martin Malík - REALiX)
HyperLobby client (HKLM-x32\...\{6592866A-D35A-44BE-AE8F-2AABE6C1D765}) (Version: 4.3.4 - Jiri Fojtasek)
i1_driver_installer_utility_i1Match version 1.0 (HKLM-x32\...\i1_driver_installer_utility_i1Match_is1) (Version: - X-Rite)
iCloud (HKLM\...\{B33C558F-772F-4308-A059-390FBF9BAAAE}) (Version: 5.0.2.61 - Apple Inc.)
Imagenomic Noiseware 4.2 Professional Plug-in (build 4205) (HKLM\...\ImagenomicNoisewareProPlugin) (Version: - )
Imagenomic Portraiture 2.3 Plug-in (build 2308) (HKLM\...\ImagenomicPortraiturePlugin) (Version: - )
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.7.0 - LIGHTNING UK!)
inSSIDer Home (HKLM-x32\...\{9E54E4AE-B67A-4925-8E92-0E1F9817FD73}) (Version: 3.1.2.1 - MetaGeek, LLC)
Intel(R) IPP Run-Time Installer 5.3 Update 4 for Windows* on IA-32 (HKLM-x32\...\{754854DC-2E0A-49D8-A1A1-426C1F9B1459}) (Version: 5.3.4.087 - Intel Corporation)
iTunes (HKLM\...\{E690A491-702F-4DEC-9977-C015D1DBB57C}) (Version: 12.3.1.23 - Apple Inc.)
Java 7 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.250 - Oracle)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Kolor Autopano Giga 2.5 (HKLM\...\AutopanoGiga2.5) (Version: V2.5.0 - Kolor)
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Manažer napájení (HKLM-x32\...\{F5663E7F-79CA-4022-8B39-D855A4E0BF58}) (Version: 1.1.0 - David Čapek)
Media Player Classic - Home Cinema v1.4.2499.0 x64 (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.4.2499.0 - MPC-HC Team)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Camera Codec Pack (HKLM\...\{F3A7E92F-A426-49B4-86A6-5ADB152DCB6B}) (Version: 16.0.0652.0621 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft PowerPoint Home and Student 2010 (HKLM-x32\...\Office14.POWERPOINTR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 31.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 cs)) (Version: 31.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
NaturalPoint USB Drivers x64 (HKLM\...\{B408139D-04D6-4464-A979-D335E48F7063}) (Version: 2.50.0000 - NaturalPoint)
NVIDIA Ovladače grafiky 358.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 358.50 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
ON_OFF Charge B10.0427.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
OpenOffice.org 3.2 (HKLM-x32\...\{FAB43061-FEFB-46E8-A159-96710395DB5E}) (Version: 3.2.9505 - OpenOffice.org)
Overwolf (HKLM-x32\...\{030F4BB3-F3C3-4A74-905C-44672D1ECB76}) (Version: 0.47.284 - Overwolf)
Ovládací panel NVIDIA 358.50 (Version: 358.50 - NVIDIA Corporation) Hidden
Pantone Color Manager 1.0.0 (HKLM-x32\...\Pantone Color Manager_is1) (Version: - PANTONE)
PDF Architect (HKLM-x32\...\{80A07844-CA64-4DE4-AB61-D37DDBE8074F}) (Version: 1.0.52.8917 - pdfforge)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.6.2 - pdfforge)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{0DE0A178-AC7B-4650-806C-CF226DE03766}) (Version: 4.1 - Apple Inc.)
Příručka pro síť EPSON SX235 Series (HKLM-x32\...\EPSON SX235 Series Netg) (Version: - )
PSD Codec by Ardfry Imaging, LLC (32 bit) (x32 Version: 1.0.15.0 - Ardfry Imaging, LLC) Hidden
PSD Codec by Ardfry Imaging, LLC (64 bit) (Version: 1.0.15.0 - Ardfry Imaging, LLC) Hidden
PSD CODEC Version 1.6.1.0 (HKLM\...\Ardfry PSD CODEC_is1) (Version: 1.6.1.0 - Ardfry Imaging, LLC)
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: - Jan Fiala)
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.)
rajče verze 58 sestavení 205 (HKLM-x32\...\rajče.net_is1) (Version: - rajče.net)
RarZilla Free Unrar (HKLM-x32\...\RarZilla Free Unrar) (Version: 2.54 - Philipp Winterberg)
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.17.304.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6077 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.00042 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
RegUtility version 4.1 (HKLM-x32\...\RegUtility_is1) (Version: 4.1 - )
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.30.0 - Renesas Electronics Corporation) Hidden
Rigs of Rods 0.38.67 (HKLM-x32\...\Rigs of Rods 0.38.67) (Version: 0.38.67 - Rigs of Rods Team)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINTR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Silver Efex Pro (HKLM-x32\...\Silver Efex Pro for Stand-Alone) (Version: 1.0.0.7 - Nik Software, Inc.)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Software602 Form Filler (HKLM-x32\...\{DE3B6562-0A58-49E0-836F-B895F3985958}) (Version: 4.52 - Software602 a.s.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
StrongDC++ 2.41 (HKLM-x32\...\StrongDC++) (Version: 2.41 - Big Muscle)
Sweet Home 3D version 3.4 (HKLM-x32\...\Sweet Home 3D_is1) (Version: - eTeks)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.44109 - TeamViewer)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: - )
Ulož.to File Manager verze 1.6 (HKLM-x32\...\{8190420D-F4BA-4744-8940-A466F81AF89C}_is1) (Version: 1.6 - Nodus Technologies s.r.o.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Uživatelská příručka EPSON SX235 Series (HKLM-x32\...\EPSON SX235 Series Useg) (Version: - )
Vegas Movie Studio HD Platinum 11.0 (HKLM-x32\...\{49D19440-759A-11E0-85FD-0013D3D69929}) (Version: 11.0.220 - Sony)
Viber (HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\{7de2db6a-6f4b-4b45-82b9-57d5d7f1c952}) (Version: 5.4.0.1664 - Viber Media Inc.)
Viber (x32 Version: 5.4.0.1664 - Viber Media Inc.) Hidden
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: - Elaborate Bytes)
Viveza 2 (HKLM-x32\...\Viveza 2) (Version: 2.0.0.3 - Nik Software, Inc.)
VJoy Virtual Joystick Driver 1.2 (HKLM-x32\...\VJoy Virtual Joystick Driver_is1) (Version: - Headsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.11w3 - Wacom Technology Corp.)
War Thunder Launcher 1.0.1.252 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - 2013 Gaijin Entertainment Corporation)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WinRAR 4.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
XRD i1d3 (x32 Version: 1.0.135 - X-Rite) Hidden
X-Rite Device Services Manager (HKLM-x32\...\{8778BE05-73CF-405D-BA1B-AC380C738FEE}) (Version: 2.1.14 - X-Rite)
Yawcam 0.4.1 (HKLM-x32\...\{8FE96B14-E1F9-47BF-8BA1-A81467CD259B}_is1) (Version: - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3041121131-3184122690-1646572021-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)

==================== Restore Points =========================

26-11-2015 08:28:50 Windows Update
29-11-2015 09:36:19 Windows Update
02-12-2015 20:13:09 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {14C5F02D-94FC-443B-B9AF-A34B61F57A74} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {1D875FB2-287A-4783-9267-75275CF59872} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-26] (Apple Inc.)
Task: {22921084-6E6E-40E4-89C2-AC84243FD193} - System32\Tasks\{88AB8881-0B87-4D34-8DE5-7898BA14A0AC} => pcalua.exe -a C:\Users\Ivanek\Downloads\moviestudiope100.exe -d C:\Users\Ivanek\Downloads
Task: {286C4DF5-91D3-4681-AC41-C53445B8035C} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {3B9EE3E4-4351-49AD-A56F-92B4274C3D9C} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {45EDC3D4-19A0-40B8-A895-6F49C4BA62F5} - \YourFile DownloaderUpdate -> No File <==== ATTENTION
Task: {518EFF3C-8B7D-47B0-98B7-D5745B50F263} - System32\Tasks\{D95B80B6-3D5C-4D04-B244-35E84F171BBC} => pcalua.exe -a "C:\Users\Ivanek\Downloads\Total Commander 7.03\tcmdr703.exe" -d "C:\Users\Ivanek\Downloads\Total Commander 7.03"
Task: {594A4EF5-5E51-4726-9BB9-9C8BDDF18B1F} - System32\Tasks\{BFE339EF-7ACD-47C8-BA96-3481B84C2811} => pcalua.exe -a F:\setup.exe -d F:\
Task: {67D6DB30-046D-442D-8C3A-25C5B45F0119} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {7193DB93-40D2-4B65-BA0E-FE9C1696D272} - System32\Tasks\{20A70208-9457-49BC-8B01-42DB52BF7627} => pcalua.exe -a Q:\INSTALL.EXE -d Q:\
Task: {722F3C96-9EB2-44CF-AE7E-C990AC8D3278} - System32\Tasks\{740CE5AE-2EE1-4411-A45A-E734D99CDC4A} => pcalua.exe -a "C:\Program Files (x86)\DAEMON Tools Lite\uninst.exe" -d "C:\Program Files (x86)\DAEMON Tools Lite"
Task: {73D56B0A-BE00-4028-A69C-4739F9FF4444} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {8E49FEB2-15C7-4784-AD1F-6C66DF4786D7} - System32\Tasks\{E59D8FC0-A831-4976-A45D-ACE48C0EBAF3} => pcalua.exe -a "C:\Program Files (x86)\YourFileDownloader Updater\uninstall.exe"
Task: {9C88ACC3-BB8F-4250-AE2D-9E5711ED6B85} - System32\Tasks\{8266732F-02ED-4236-A775-039A841CECE2} => pcalua.exe -a C:\Users\Ivanek\Downloads\Il2_412_2_INT.exe -d C:\Users\Ivanek\Downloads
Task: {B069AE10-2BB0-46D5-8AA9-078A4A37CEBB} - System32\Tasks\{4AB959A3-31FF-48F3-A2BF-E146C31CFFD2} => pcalua.exe -a M:\setup.exe -d M:\
Task: {BEBDC5AF-82A0-4FCA-A991-E4491FBE7D01} - System32\Tasks\{F829EBBB-8D62-49D7-8F66-462E8F391370} => pcalua.exe -a C:\Users\Ivanek\Downloads\dxwebsetup(1).exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {C7942483-3A4D-4DC7-A52D-5CA9ECFE02BA} - System32\Tasks\{1A977117-CF9C-4B00-94B2-A626F29B1B86} => pcalua.exe -a "C:\Program Files (x86)\Steam\steam.exe" -c steam://uninstall/42690
Task: {D881280D-88B7-42D6-9E41-911CA0DDF892} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd)
Task: {DABDDC39-9CAA-4951-A69D-34121DF31B35} - System32\Tasks\AdobeAAMUpdater-1.0-Ivanek-PC-Ivanek => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-10-30] (Adobe Systems Incorporated)
Task: {E1731602-4424-43CA-BED7-1EBB75B0FFD1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-11] (Adobe Systems Incorporated)
Task: {F551F827-361A-4627-8860-288CFC5EF015} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {F86A3407-1B95-477F-8916-11CC49328978} - System32\Tasks\{92E7913B-ABB1-43D4-BCE4-D749C80FCDB0} => pcalua.exe -a "C:\Users\Ivanek\AppData\Local\Temp\Temp1_Genuine_Fractals_6.0.8_PE(2).zip\Genuine Fractals 6.0.8 Professional Edition.exe"
Task: {FF8EFA7E-23FF-4A5F-A0F0-8A80B146CF5F} - System32\Tasks\ESET Windows 10 upgrade – Refresh settings => C:\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe [2015-11-23] (ESET)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2013-08-28 16:41 - 2015-10-03 03:49 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-11-28 10:49 - 2015-11-14 04:23 - 00553120 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2015-01-20 22:35 - 2015-01-20 22:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-10-13 05:45 - 2015-10-13 05:45 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-01-21 03:06 - 2015-01-21 03:06 - 00053248 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2010-10-01 08:52 - 2010-09-07 10:46 - 00072280 _____ () C:\Windows\SysWOW64\XSrvSetup.exe
2009-06-26 06:17 - 2009-06-26 06:17 - 00724992 _____ () C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe
2015-11-28 10:49 - 2015-11-14 04:22 - 31401120 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2015-11-09 17:56 - 2014-12-22 21:42 - 01356568 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2015-10-13 05:46 - 2015-10-13 05:46 - 01040144 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2015-10-13 05:45 - 2015-10-13 05:45 - 00237328 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2011-10-11 14:46 - 2011-10-11 14:46 - 01588560 _____ () C:\Program Files (x86)\X-Rite\Devices\rm200\GoldenEye.dll
2011-10-11 14:45 - 2011-10-11 14:45 - 00902992 _____ () C:\Program Files (x86)\X-Rite\Devices\i1pro\i1Fun.dll
2011-10-11 14:46 - 2011-10-11 14:46 - 02639696 _____ () C:\Program Files (x86)\X-Rite\Devices\colormunki\colormunki.dll
2015-11-25 19:35 - 2015-11-25 19:35 - 00124416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2015-11-25 19:35 - 2015-11-25 19:35 - 00188416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2015-11-25 19:35 - 2015-11-25 19:35 - 00121344 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2015-11-25 19:35 - 2015-11-25 19:35 - 00129536 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2015-11-25 13:22 - 2015-11-25 13:22 - 00089264 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\native\ProxyResolverWin7.dll
2015-11-25 19:35 - 2015-11-25 19:35 - 00081408 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2015-11-25 19:48 - 2015-11-25 19:48 - 00124416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\fs-ext\build\Release\fs-ext.node
2015-11-25 19:48 - 2015-11-25 19:48 - 00121344 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ref\build\Release\binding.node
2015-11-25 19:48 - 2015-11-25 19:48 - 00129536 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ffi\build\Release\ffi_bindings.node
2015-11-25 19:48 - 2015-11-25 19:48 - 00188416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2015-11-25 13:15 - 2015-11-25 13:15 - 00089264 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-ProxyResolver\native\ProxyResolverWin7.dll
2015-11-25 19:48 - 2015-11-25 19:48 - 00085504 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ws\build\Release\bufferutil.node
2015-11-25 19:48 - 2015-11-25 19:48 - 00086016 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ws\build\Release\validation.node
2015-11-25 19:48 - 2015-11-25 19:48 - 00081408 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\idle-gc\build\Release\idle-gc.node
2015-12-03 08:42 - 2015-11-24 09:00 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\libglesv2.dll
2015-12-03 08:42 - 2015-11-24 09:00 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\libegl.dll
2014-09-19 18:32 - 2014-09-19 18:32 - 03800688 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2011-03-14 18:58 - 2011-03-02 12:40 - 00140288 _____ () C:\Program Files\WinRAR\rarext32.dll
2012-01-20 10:26 - 2009-11-16 20:31 - 00069632 _____ () C:\Program Files (x86)\PSPad editor\PSPadShell.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows:AstInfo
AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\Users\Ivanek\AppData\Local\desktop.ini:3a96398c0f384e4adf5faa1736aeaf96

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\mojebanka.cz -> hxxps://etrading.mojebanka.cz

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Ivanek\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{29E7435D-119F-47BA-9DBD-810A685EC629}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe
FirewallRules: [UDP Query User{C400E1D4-D312-4639-A57B-38A24709863A}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe
FirewallRules: [TCP Query User{C7EEF8E8-25EF-4803-B456-B11F96212E84}C:\program files (x86)\vlc\vlc.exe] => (Allow) C:\program files (x86)\vlc\vlc.exe
FirewallRules: [UDP Query User{A69484E8-8A02-4595-881B-9C6B0923288D}C:\program files (x86)\vlc\vlc.exe] => (Allow) C:\program files (x86)\vlc\vlc.exe
FirewallRules: [{3DD818BE-A198-4D74-A467-E2992AD9B1F1}] => (Allow) C:\Program Files (x86)\Codemasters\F1 2010\F1_2010_game.exe
FirewallRules: [{3B75EE82-3071-40E2-A532-C6FB939E6C98}] => (Allow) C:\Program Files (x86)\Codemasters\F1 2010\F1_2010_game.exe
FirewallRules: [TCP Query User{F8BABB3F-1686-417F-8551-CE5256AADF16}C:\program files (x86)\google\google earth\client\googleearth.exe] => (Allow) C:\program files (x86)\google\google earth\client\googleearth.exe
FirewallRules: [UDP Query User{38741B7E-058C-417F-8444-C91F05BF6AD7}C:\program files (x86)\google\google earth\client\googleearth.exe] => (Allow) C:\program files (x86)\google\google earth\client\googleearth.exe
FirewallRules: [{05FA9BDD-355A-4F21-868E-2E54921EBDE9}] => (Allow) C:\Program Files (x86)\Codemasters\F1 2010\F1_2010_game.exe
FirewallRules: [{059AEABE-9752-4479-9851-513FBC66BA5B}] => (Allow) C:\Program Files (x86)\Codemasters\F1 2010\F1_2010_game.exe
FirewallRules: [TCP Query User{6857E0B0-4AF3-4E65-9FCB-9D9D6FD5CF0F}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{6AF34342-80AE-404A-B690-8D29E475B58E}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [TCP Query User{89671DA3-4DE2-43D3-826A-F267AEE44845}C:\program files (x86)\activision\call of duty - black ops\blackops.exe] => (Allow) C:\program files (x86)\activision\call of duty - black ops\blackops.exe
FirewallRules: [UDP Query User{DA2FAC6E-C4DC-47D9-858F-88D5DFC4CF87}C:\program files (x86)\activision\call of duty - black ops\blackops.exe] => (Allow) C:\program files (x86)\activision\call of duty - black ops\blackops.exe
FirewallRules: [TCP Query User{9FFCADAE-1271-4FFA-9448-FAFDD2887EEC}C:\program files (x86)\activision\call of duty - black ops\blackopsmp.exe] => (Allow) C:\program files (x86)\activision\call of duty - black ops\blackopsmp.exe
FirewallRules: [UDP Query User{64BAADC0-D2F6-400B-8515-EABB76F79E6D}C:\program files (x86)\activision\call of duty - black ops\blackopsmp.exe] => (Allow) C:\program files (x86)\activision\call of duty - black ops\blackopsmp.exe
FirewallRules: [{8B0F863E-5B69-4A74-9965-CE3310A6A0CF}] => (Allow) C:\Program Files (x86)\Pantone Color Manager\PantoneColorManager.exe
FirewallRules: [{97E4C414-2A22-4018-B7F4-763C69CD825A}] => (Allow) C:\Program Files (x86)\Pantone Color Manager\PantoneColorManager.exe
FirewallRules: [{451A87C7-2D03-40A1-8631-CE4483058007}] => (Allow) LPort=5454
FirewallRules: [{592ADA7D-8DDC-44B0-A547-D612F7FB7D88}] => (Allow) C:\Windows\System32\hasplms.exe
FirewallRules: [{DD8633B5-48B0-45EF-83AC-418DA88EDDAB}] => (Allow) C:\Windows\System32\hasplms.exe
FirewallRules: [{CD24EC87-6D1A-4A45-BFE2-4424E302D6CB}] => (Allow) F:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [{070D2302-0B93-412D-A65C-23A749E96F7A}] => (Allow) F:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [TCP Query User{94376CA0-3EB0-441E-8B6E-B0F494A64232}C:\program files\strongdc++\strongdc.exe] => (Allow) C:\program files\strongdc++\strongdc.exe
FirewallRules: [UDP Query User{B7FA0C1F-2483-4C63-B49B-B22640BA22B2}C:\program files\strongdc++\strongdc.exe] => (Allow) C:\program files\strongdc++\strongdc.exe
FirewallRules: [{06A8D7F7-09E5-44CD-AD18-8A61441BF770}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{5B7E1CD1-36FD-43C3-AD89-CDFF2678411B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C5337F78-FC11-476F-8B90-0DAEFFDDBEC3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{36D6CE1C-5A5D-4A3D-A1FB-AD43B6372280}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [{B628B85F-6EBE-44E0-9CBC-B4C1800E61BE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [{709AB838-32A4-438E-A556-FD50C013C7B5}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{E87C1261-1F93-41AB-AE0A-B0824F6067BD}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{F1324E86-25E0-4977-AEFA-232C4C642661}] => (Allow) C:\Program Files (x86)\War Thunder\launcher.exe
FirewallRules: [{C66215C9-FD57-46C4-87C0-A97C5FD9274A}] => (Allow) C:\Program Files (x86)\War Thunder\launcher.exe
FirewallRules: [{4CF805C8-C2EB-4237-BC33-011D88B5DCF1}] => (Allow) C:\Program Files (x86)\War Thunder\aces.exe
FirewallRules: [{43419C00-7C29-4491-9D0A-15BFA03B1BDE}] => (Allow) C:\Program Files (x86)\War Thunder\aces.exe
FirewallRules: [{504DE397-E884-44D4-9515-6C5E9AFD1BF1}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe
FirewallRules: [{1736D9F7-5B6E-469B-982A-B60C5B4887FD}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe
FirewallRules: [{1437EE8E-5C7F-482E-9CE6-D17C7EE881CC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{0B83E2C8-8D9D-4014-8280-335D69234542}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A36C7A1F-3F09-47F6-853C-57908FE21181}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{5708D74D-27AD-4C3B-BCCA-2D317106FEC2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{5AA36602-7FE7-4440-8AD3-CE8A13137566}] => (Allow) C:\Users\Ivanek\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4F3684C7-D48B-47C8-B185-0B414A9AE12A}] => (Allow) C:\Users\Ivanek\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{7A4F417C-C7C6-45D5-A4AF-18FD88A7E26E}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{FE90D204-220A-4BEA-9525-108CF8191C28}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{B233B801-662A-4E90-8E87-A17AAC87AF66}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{8BE7E92B-D8E3-4C2B-BEA4-A2DFDAC2A39E}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{AB13C1D8-310E-4140-9941-06467EEEAAFA}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{298392E1-5F53-467B-9D72-3F310B2A0FAF}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{2F3BD7A7-5E70-4BF8-AA76-F90FB0E5CE98}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{EB1ABA87-8C4F-4AC1-9025-176D84DAFBD2}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{D265DC49-8747-432D-B2CB-1C820E550B27}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{08703F0F-E33D-4300-B452-EAFACF72C473}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9996439D-BE5F-4E19-B66F-D2E71F68DA1C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{9EB4F77B-0ADE-418A-89DA-A8559E3E58B5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{1D2C3EFF-478F-4A9F-BCFC-8D7C264E7F6F}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{DFCDBB77-A864-4790-8B47-BDDF2E5B0EE2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/03/2015 10:44:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: inSSIDerHome.exe, verze: 3.1.2.1, časové razítko: 0x52a6717a
Název chybujícího modulu: KERNELBASE.dll, verze: 6.1.7601.19045, časové razítko: 0x56258f05
Kód výjimky: 0xe0434352
Posun chyby: 0x0000c42d
ID chybujícího procesu: 0x1d44
Čas spuštění chybující aplikace: 0xinSSIDerHome.exe0
Cesta k chybující aplikaci: inSSIDerHome.exe1
Cesta k chybujícímu modulu: inSSIDerHome.exe2
ID zprávy: inSSIDerHome.exe3

Error: (12/03/2015 10:44:16 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: inSSIDerHome.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.OutOfMemoryException
Zásobník:
na MS.Win32.Penimc.IPimcManager.GetTabletCount(UInt32 ByRef)
na System.Windows.Input.PenThreadWorker+WorkerOperationGetTabletsInfo.OnDoWork()
na System.Windows.Input.PenThreadWorker+WorkerOperation.DoWork()
na System.Windows.Input.PenThreadWorker.ThreadProc()
na System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
na System.Threading.ThreadHelper.ThreadStart()

Error: (12/03/2015 10:31:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: inSSIDerHome.exe, verze: 3.1.2.1, časové razítko: 0x52a6717a
Název chybujícího modulu: KERNELBASE.dll, verze: 6.1.7601.19045, časové razítko: 0x56258f05
Kód výjimky: 0xe0434352
Posun chyby: 0x0000c42d
ID chybujícího procesu: 0x185c
Čas spuštění chybující aplikace: 0xinSSIDerHome.exe0
Cesta k chybující aplikaci: inSSIDerHome.exe1
Cesta k chybujícímu modulu: inSSIDerHome.exe2
ID zprávy: inSSIDerHome.exe3

Error: (12/03/2015 10:31:30 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: inSSIDerHome.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.OutOfMemoryException
Zásobník:
na MS.Win32.Penimc.IPimcManager.GetTabletCount(UInt32 ByRef)
na System.Windows.Input.PenThreadWorker+WorkerOperationGetTabletsInfo.OnDoWork()
na System.Windows.Input.PenThreadWorker+WorkerOperation.DoWork()
na System.Windows.Input.PenThreadWorker.ThreadProc()
na System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
na System.Threading.ThreadHelper.ThreadStart()

Error: (12/03/2015 10:30:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: inSSIDerHome.exe, verze: 3.1.2.1, časové razítko: 0x52a6717a
Název chybujícího modulu: KERNELBASE.dll, verze: 6.1.7601.19045, časové razítko: 0x56258f05
Kód výjimky: 0xe0434352
Posun chyby: 0x0000c42d
ID chybujícího procesu: 0x1f00
Čas spuštění chybující aplikace: 0xinSSIDerHome.exe0
Cesta k chybující aplikaci: inSSIDerHome.exe1
Cesta k chybujícímu modulu: inSSIDerHome.exe2
ID zprávy: inSSIDerHome.exe3

Error: (12/03/2015 10:30:27 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: inSSIDerHome.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.OutOfMemoryException
Zásobník:
na MS.Win32.Penimc.IPimcManager.GetTabletCount(UInt32 ByRef)
na System.Windows.Input.PenThreadWorker+WorkerOperationGetTabletsInfo.OnDoWork()
na System.Windows.Input.PenThreadWorker+WorkerOperation.DoWork()
na System.Windows.Input.PenThreadWorker.ThreadProc()
na System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
na System.Threading.ThreadHelper.ThreadStart()

Error: (12/02/2015 09:10:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: lightroom.exe, verze: 6.3.0.10, časové razítko: 0x564260ef
Název chybujícího modulu: Vulcan.dll, verze: 6.3.0.10, časové razítko: 0x56426020
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000003bc8
ID chybujícího procesu: 0x36bc
Čas spuštění chybující aplikace: 0xlightroom.exe0
Cesta k chybující aplikaci: lightroom.exe1
Cesta k chybujícímu modulu: lightroom.exe2
ID zprávy: lightroom.exe3

Error: (12/02/2015 04:13:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Photoshop.exe, verze: 16.0.1.168, časové razítko: 0x55af6140
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.19045, časové razítko: 0x56259295
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000026e0b
ID chybujícího procesu: 0x1fa8
Čas spuštění chybující aplikace: 0xPhotoshop.exe0
Cesta k chybující aplikaci: Photoshop.exe1
Cesta k chybujícímu modulu: Photoshop.exe2
ID zprávy: Photoshop.exe3

Error: (12/02/2015 00:11:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: lightroom.exe, verze: 6.3.0.10, časové razítko: 0x564260ef
Název chybujícího modulu: Vulcan.dll, verze: 6.3.0.10, časové razítko: 0x56426020
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000003bc8
ID chybujícího procesu: 0xb64
Čas spuštění chybující aplikace: 0xlightroom.exe0
Cesta k chybující aplikaci: lightroom.exe1
Cesta k chybujícímu modulu: lightroom.exe2
ID zprávy: lightroom.exe3

Error: (12/02/2015 09:45:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Adobe Desktop Service.exe, verze: 3.4.1.181, časové razítko: 0x56561d50
Název chybujícího modulu: ANSClient.dll, verze: 3.4.0.175, časové razítko: 0x564a8206
Kód výjimky: 0xc0000005
Posun chyby: 0x0007453c
ID chybujícího procesu: 0x1068
Čas spuštění chybující aplikace: 0xAdobe Desktop Service.exe0
Cesta k chybující aplikaci: Adobe Desktop Service.exe1
Cesta k chybujícímu modulu: Adobe Desktop Service.exe2
ID zprávy: Adobe Desktop Service.exe3


System errors:
=============
Error: (12/03/2015 10:48:39 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Eset Trial Reset neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (12/03/2015 10:48:39 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Eset Trial Reset bylo dosaženo časového limitu (30000 ms).

Error: (12/03/2015 10:48:37 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN se nepodařilo spustit.

Cesta k modulu: C:\Windows\system32\Rtlihvs.dll
Kód chyby: 126

Error: (12/03/2015 10:26:20 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {3C5E2B20-B911-44E2-A2DD-9F05E7B5E775}

Error: (12/03/2015 09:38:19 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba COMODO Internet Security Helper Service byla neočekávaně ukončena. Tento stav nastal již 4krát.

Error: (12/03/2015 08:53:19 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba COMODO Internet Security Helper Service byla neočekávaně ukončena. Tento stav nastal již 3krát.

Error: (12/03/2015 08:48:50 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba COMODO Internet Security Helper Service byla neočekávaně ukončena. Tento stav nastal již 2krát.

Error: (12/03/2015 08:48:23 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba COMODO Internet Security Helper Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/03/2015 08:38:18 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Eset Trial Reset neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (12/03/2015 08:38:18 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Eset Trial Reset bylo dosaženo časového limitu (30000 ms).


CodeIntegrity:
===================================
Date: 2015-11-18 12:38:32.501
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe because the set of per-page image hashes could not be found on the system.

Date: 2015-11-18 12:38:32.375
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe because the set of per-page image hashes could not be found on the system.

Date: 2015-11-18 12:38:32.219
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe because the set of per-page image hashes could not be found on the system.

Date: 2015-11-14 09:13:46.737
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe because the set of per-page image hashes could not be found on the system.

Date: 2015-11-14 09:13:46.613
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe because the set of per-page image hashes could not be found on the system.

Date: 2015-11-14 09:13:46.472
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe because the set of per-page image hashes could not be found on the system.

Date: 2015-11-12 11:11:16.161
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe because the set of per-page image hashes could not be found on the system.

Date: 2015-11-12 11:11:16.013
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe because the set of per-page image hashes could not be found on the system.

Date: 2015-11-12 11:11:15.856
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz
Percentage of memory in use: 25%
Total physical RAM: 16375.43 MB
Available physical RAM: 12207.89 MB
Total Virtual: 32749.07 MB
Available Virtual: 28035.16 MB

==================== Drives ================================

Drive c: (System) (Fixed) (Total:390.53 GB) (Free:92.35 GB) NTFS
Drive d: (Data) (Fixed) (Total:1863.01 GB) (Free:377.92 GB) NTFS
Drive e: (Zalohy) (Fixed) (Total:540.89 GB) (Free:70.69 GB) NTFS
Drive h: (ZAKAZKY) (Fixed) (Total:2794.39 GB) (Free:675.11 GB) NTFS
Drive k: (WD_320) (Fixed) (Total:298.09 GB) (Free:112.93 GB) NTFS
Drive s: (EOS_DIGITAL) (Removable) (Total:29.71 GB) (Free:20.55 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 2794.5 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 298.1 GB) (Disk ID: 8D1DD9EE)
Partition 1: (Not Active) - (Size=298.1 GB) - (Type=42)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 7DCADF99)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=390.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=540.9 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 7DCADFAF)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

========================================================
Disk: 6 (Size: 29.7 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================

Re: Podezřelé chování

Napsal: 03 pro 2015 11:33
od JaRon
zacneme bezpecnostou:
AV: ESET NOD32 Antivirus 4.0 (Disabled - Up to date) {CB0F8167-5331-BA19-698E-64816B6801A5}
AV: Microsoft Security Essentials (Disabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: ESET NOD32 Antivirus 4.0 (Disabled - Up to date) {706E6083-750B-B597-533E-5FF310EF4B18}
AS: Microsoft Security Essentials (Disabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: COMODO Antivirus (Disabled - Out of date) {0C2D2636-923D-EE52-2A83-E643204A8275}
FW: COMODO Firewall (Enabled) {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}


vsetky tri produkty odinstaluj a vycisti PC s CCleanerom
ESET mas cracknuty
MSE stoji za prd
Comodo je tiez nejako blbo nakonfigurovane

potom nainstaluj nejaky AV Free >> Avast, BitDefender, Avira = iba jeden :) a prescanuj PC

Re: Podezřelé chování

Napsal: 03 pro 2015 12:30
od messtor
Provedu, zatim díky!

Re: Podezřelé chování

Napsal: 03 pro 2015 13:09
od messtor
Vše odinstalováno, vyčištěno CCleanerem,a nainstalována Avira. Zde jsou opět oba logy:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:01-12-2015
Ran by Ivanek (administrator) on IVAN-PC (03-12-2015 13:06:46)
Running from C:\Users\Ivanek\Downloads
Loaded Profiles: Ivanek (Available Profiles: Ivanek)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Software602 a.s.) C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
() C:\Windows\SysWOW64\XSrvSetup.exe
(Nalpeiron Ltd.) C:\Windows\System32\nlsInterface.EXE
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(pdfforge GbR) C:\Program Files (x86)\PDF Architect\HelperService.exe
(pdfforge GbR) C:\Program Files (x86)\PDF Architect\ConversionService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Akamai Technologies, Inc.) C:\Users\Ivanek\AppData\Local\Akamai\netsession_win.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
() C:\Users\Ivanek\AppData\Local\Viber\Viber.exe
(Akamai Technologies, Inc.) C:\Users\Ivanek\AppData\Local\Akamai\netsession_win.exe
(X-Rite Inc.) C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
() C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Joyent, Inc) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Joyent, Inc) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(C. Ghisler & Co.) C:\totalcmd\TOTALCMD.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.SpeedupService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.Systray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10135584 2010-03-26] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-10-30] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-10-16] (Apple Inc.)
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [85160 2009-06-17] (Elaborate Bytes AG)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Tilt] => C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe [724992 2009-06-26] ()
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60688 2015-10-13] (Apple Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2304688 2015-11-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-11-18] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [803200 2015-11-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [14408 2015-11-19] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\Run: [EPSON SX235 Series] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHLE.EXE [232448 2012-01-04] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\Run: [Epson Stylus SX235(Síe)] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHLE.EXE [232448 2012-01-04] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Ivanek\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [60688 2015-10-21] (Apple Inc.)
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [61200 2015-10-21] (Apple Inc.)
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8591272 2015-11-16] (Piriform Ltd)
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\Run: [Viber] => C:\Users\Ivanek\AppData\Local\Viber\Viber.exe [51657424 2015-11-09] ()
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\MountPoints2: F - F:\SETUP.EXE
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\MountPoints2: {c03e8ad1-d2f6-11df-8232-1c6f653c3894} - Q:\setup.exe
HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> (None)
HKU\S-1-5-18\...\RunOnce: [iCloud] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe [60688 2015-10-21] (Apple Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-11-14] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-11-14] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-11-14] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{1C34E092-7E90-436F-9863-8BCE47DFE39F}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3BB458ED-6675-47DB-8B77-235970FBCCE0}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{7BE4E267-555D-4817-81F0-6146B57B1476}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{C2340DD6-9A9E-4429-97C2-37210A195EA3}: [DhcpNameServer] 172.20.10.1

Internet Explorer:
==================
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24] (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: PDF Architect Helper -> {3A2D5EBA-F86D-4BD3-A177-019765996711} -> C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-01-09] (pdfforge GbR)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-11-05] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: AviraBrowserSafety.BrowserSafety -> {c3c77255-42c0-499f-b664-6e981a0b1647} -> C:\Windows\SysWOW64\mscoree.dll [2010-11-05] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-11-05] (Oracle Corporation)
Toolbar: HKLM - No Name - {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24] (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM-x32 - PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll [2013-01-09] (pdfforge GbR)
Toolbar: HKU\S-1-5-21-3041121131-3184122690-1646572021-1000 -> No Name - {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: abs - {E00957BD-D0E1-4eb9-A025-7743FDC8B27B} - C:\Windows\SysWOW64\mscoree.dll [2010-11-05] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Ivanek\AppData\Roaming\Mozilla\Firefox\Profiles\mff2fsk7.default-1403165634159
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-11] ()
FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\Windows\system32\npDeployJava1.dll [2013-01-24] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.2 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-11-25] (Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-11] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-08] ()
FF Plugin-x32: @esn/esnlaunch,version=1.116.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.122.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll [2012-05-11] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.3 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll [2013-02-28] (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2014-11-05] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-11-05] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [No File]
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.2 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-11-25] (Adobe Systems)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin HKU\S-1-5-21-3041121131-3184122690-1646572021-1000: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2015-10-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2015-10-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2015-10-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2015-10-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2015-10-06] (Apple Inc.)
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt [2013-01-23] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => not found

Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-05]
CHR Extension: (Disk Google) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (Brushed) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfjgbcjfpbbfepcccpaffkjofcmglifg [2014-05-31]
CHR Extension: (YouTube) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Adblock Plus) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-11-26]
CHR Extension: (Entanglement) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmnpffgfpcohhpoddjankjanolcekbni [2015-08-01]
CHR Extension: (Vyhledávání Google) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Dokumenty Google offline) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-19]
CHR Extension: (AdBlock) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-11-24]
CHR Extension: (TinEye Reverse Image Search) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl [2014-05-31]
CHR Extension: (RevEye Reverse Image Search) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\keaaclcjhehbbapnphnmpiklalfhelgf [2015-05-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25]
CHR Extension: (Gmail) - C:\Users\Ivanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [683696 2015-11-16] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2016448 2015-11-25] (Adobe Systems, Incorporated)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [948392 2015-11-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [466408 2015-11-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [466408 2015-11-20] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1418560 2015-11-20] (Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [250648 2015-11-18] (Avira Operations GmbH & Co. KG)
R2 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [File not signed]
R2 hasplms; C:\Windows\system32\hasplms.exe [3750400 2009-12-16] (SafeNet Inc.)
R2 JMB36X; C:\Windows\SysWOW64\XSrvSetup.exe [72280 2010-09-07] ()
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 nlscc; C:\Windows\system32\nlsInterface.exe [72192 2010-11-01] (Nalpeiron Ltd.) [File not signed]
R2 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [61440 2010-11-01] (Nalpeiron Ltd.) [File not signed]
S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [96184 2013-12-09] (Overwolf)
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1324104 2013-01-09] (pdfforge GbR)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [795208 2013-01-09] (pdfforge GbR)
R2 SpeedupService; C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.SpeedupService.exe [18016 2015-11-19] (Avira Operations GmbH & Co. KG)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [671512 2014-12-22] (Wacom Technology, Corp.)
R2 xrdd.exe; C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe [203088 2011-10-11] (X-Rite Inc.)
S2 .EsetTrialReset; C:\Windows\system32\regedt32.exe /s C:\Windows\esettrialreset.reg

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21544 2010-04-27] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [162072 2015-11-20] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [140448 2015-11-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2015-11-20] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [75472 2015-11-20] (Avira Operations GmbH & Co. KG)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 EyeOneDisplay; C:\Windows\System32\Drivers\i1display_x64.sys [7808 2005-12-13] (GretagMacbeth LLC)
S3 GeneStor; C:\Windows\System32\DRIVERS\GeneStor.sys [104960 2014-07-07] (GenesysLogic) [File not signed]
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [31648 2014-01-19] (REALiX(tm))
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)
S3 RSUSBCCID; C:\Windows\System32\DRIVERS\RtsUCcid.sys [50176 2009-08-10] (Realtek Semiconductor Corp.)
R3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [2978520 2013-11-15] (Realtek Semiconductor Corporation )
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2010-10-01] () [File not signed]
S3 trufos; C:\Windows\System32\drivers\trufos.sys [350160 2013-08-30] (BitDefender S.R.L.)
R3 vhidmini; C:\Windows\System32\DRIVERS\vjoy.sys [15104 2012-10-15] (Headsoft)
R2 WinI2C-DDC; C:\Windows\system32\drivers\DDCDrv.sys [20832 2011-11-10] (Nicomsoft Ltd.)
R2 WinI2C-DDC; C:\Windows\SysWOW64\drivers\DDCDrv.sys [10240 2011-11-10] (Nicomsoft Ltd.) [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-03 13:04 - 2015-12-03 13:04 - 00001167 _____ C:\Users\Public\Desktop\Avira System Speedup.lnk
2015-12-03 13:03 - 2015-12-03 13:04 - 00000000 ____D C:\Users\Public\Speedup Sessions
2015-12-03 13:03 - 2015-12-03 13:03 - 00003432 _____ C:\Windows\System32\Tasks\Avira Browser Safety Updater Task
2015-12-03 13:03 - 2015-12-03 13:03 - 00003364 _____ C:\Windows\System32\Tasks\Avira System Speedup Tray
2015-12-03 13:03 - 2015-12-03 13:03 - 00000805 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2015-12-03 13:03 - 2015-12-03 13:03 - 00000000 ____D C:\Users\Ivanek\AppData\Roaming\Avira
2015-12-03 13:02 - 2015-11-20 15:35 - 00162072 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2015-12-03 13:02 - 2015-11-20 15:35 - 00140448 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2015-12-03 13:02 - 2015-11-20 15:35 - 00075472 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2015-12-03 13:02 - 2015-11-20 15:35 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2015-12-03 12:59 - 2015-12-03 13:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-12-03 12:59 - 2015-12-03 13:03 - 00000000 ____D C:\ProgramData\Avira
2015-12-03 12:59 - 2015-12-03 13:03 - 00000000 ____D C:\Program Files (x86)\Avira
2015-12-03 12:59 - 2015-12-03 12:59 - 04588512 _____ (Avira Operations GmbH & Co. KG) C:\Users\Ivanek\Downloads\avira_en_av_56602e92def41__ws.exe
2015-12-03 12:59 - 2015-12-03 12:59 - 00001220 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2015-12-03 12:56 - 2015-12-03 12:56 - 06805512 _____ (Piriform Ltd) C:\Users\Ivanek\Downloads\ccsetup512pro.exe
2015-12-03 12:45 - 2015-12-03 12:45 - 00003290 _____ C:\Windows\System32\Tasks\CIS_{15198508-521A-4D69-8E5B-B94A6CCFF805}
2015-12-03 12:45 - 2014-04-16 22:12 - 05181144 _____ (COMODO) C:\ProgramData\cisFFB2.exe
2015-12-03 12:45 - 2014-04-16 22:12 - 05181144 _____ (COMODO) C:\ProgramData\cis11FB.exe
2015-12-03 10:57 - 2015-12-03 13:07 - 00028089 _____ C:\Users\Ivanek\Downloads\FRST.txt
2015-12-03 10:56 - 2015-12-03 13:06 - 00000000 ____D C:\FRST
2015-12-03 10:54 - 2015-12-03 10:54 - 00112640 _____ (forum.viry.cz) C:\Users\Ivanek\Downloads\Nepotvrzeno 889061.crdownload
2015-12-03 10:54 - 2015-12-03 10:54 - 00112640 _____ (forum.viry.cz) C:\Users\Ivanek\Downloads\Nepotvrzeno 393024.crdownload
2015-12-03 10:52 - 2015-12-03 10:53 - 02350080 _____ (Farbar) C:\Users\Ivanek\Downloads\FRST64.exe
2015-12-03 10:30 - 2015-12-03 10:44 - 00000894 _____ C:\Users\Public\ExceptionHappened.txt
2015-12-01 19:58 - 2015-12-01 19:58 - 00390826 _____ C:\Users\Ivanek\Downloads\photo (1).htm
2015-12-01 19:58 - 2015-12-01 19:58 - 00390533 _____ C:\Users\Ivanek\Downloads\photo.htm
2015-11-28 10:52 - 2015-11-28 10:52 - 00001173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2015-11-28 10:52 - 2015-11-28 10:52 - 00001161 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2015-11-27 11:25 - 2015-11-27 11:25 - 11685025 _____ C:\Users\Ivanek\Downloads\DSC_0343.NEF
2015-11-27 11:25 - 2015-11-27 11:25 - 10834894 _____ C:\Users\Ivanek\Downloads\DSC_0347.NEF
2015-11-26 10:33 - 2015-11-26 10:33 - 00066151 _____ C:\Users\Ivanek\Downloads\invoice.pdf
2015-11-25 13:52 - 2015-11-25 13:53 - 02775442 _____ C:\Users\Ivanek\Downloads\OneDrive-2015-11-25.zip
2015-11-24 19:00 - 2015-11-24 19:00 - 39523172 _____ C:\Users\Ivanek\Downloads\trojhran_bossi_pizzy.zip
2015-11-18 13:33 - 2015-12-03 12:52 - 00000000 ____D C:\Users\Ivanek\AppData\Roaming\ViberPC
2015-11-18 13:33 - 2015-12-03 10:23 - 00000000 ____D C:\Users\Ivanek\Documents\ViberDownloads
2015-11-18 13:33 - 2015-11-18 13:33 - 00000968 _____ C:\Users\Ivanek\AppData\Roaming\Microsoft\Windows\Start Menu\Viber.lnk
2015-11-18 13:33 - 2015-11-18 13:33 - 00000966 _____ C:\Users\Ivanek\Desktop\Viber.lnk
2015-11-18 13:33 - 2015-11-18 13:33 - 00000000 ____D C:\Users\Ivanek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viber
2015-11-18 13:33 - 2015-11-18 13:33 - 00000000 ____D C:\Users\Ivanek\AppData\Local\Viber
2015-11-18 13:32 - 2015-11-18 13:32 - 00000000 ____D C:\Users\Ivanek\AppData\Local\Package Cache
2015-11-18 13:18 - 2015-11-18 13:19 - 101213136 _____ (Viber Media Inc.) C:\Users\Ivanek\Downloads\ViberSetup.exe
2015-11-12 10:36 - 2015-11-12 10:36 - 05909354 _____ C:\Users\Ivanek\Downloads\firebrushes_GUA.abr
2015-11-12 10:35 - 2015-11-12 10:35 - 12575626 _____ C:\Users\Ivanek\Downloads\flame_brushes_by_sugarbreezy.abr
2015-11-12 09:40 - 2015-11-03 18:55 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-11-11 09:09 - 2015-10-20 19:42 - 03168768 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-11-11 09:09 - 2015-10-20 19:42 - 02608128 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-11-11 09:09 - 2015-10-20 19:42 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-11-11 09:09 - 2015-10-20 19:42 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-11-11 09:09 - 2015-10-20 19:42 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-11-11 09:09 - 2015-10-20 19:42 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-11-11 09:09 - 2015-10-20 19:42 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-11-11 09:09 - 2015-10-20 19:41 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-11-11 09:09 - 2015-10-20 19:41 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-11-11 09:09 - 2015-10-20 19:41 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-11-11 09:09 - 2015-10-20 19:41 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-11-11 09:09 - 2015-10-20 18:46 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-11-11 09:09 - 2015-10-20 18:46 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-11-11 09:09 - 2015-10-20 18:46 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-11-11 09:09 - 2015-10-20 18:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-11-11 09:09 - 2015-10-20 18:45 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-11-11 09:08 - 2015-11-03 23:10 - 00390344 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-11-11 09:08 - 2015-11-03 22:51 - 00342728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-11-11 09:08 - 2015-10-31 00:46 - 25818624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-11-11 09:08 - 2015-10-31 00:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-11-11 09:08 - 2015-10-31 00:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-11-11 09:08 - 2015-10-31 00:25 - 02886656 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-11-11 09:08 - 2015-10-31 00:25 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-11-11 09:08 - 2015-10-31 00:25 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-11-11 09:08 - 2015-10-31 00:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-11-11 09:08 - 2015-10-31 00:24 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-11-11 09:08 - 2015-10-31 00:24 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-11-11 09:08 - 2015-10-31 00:17 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-11-11 09:08 - 2015-10-31 00:16 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-11-11 09:08 - 2015-10-31 00:13 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-11-11 09:08 - 2015-10-31 00:12 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-11-11 09:08 - 2015-10-31 00:12 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-11-11 09:08 - 2015-10-31 00:11 - 05990912 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-11-11 09:08 - 2015-10-31 00:11 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-11-11 09:08 - 2015-10-31 00:11 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-11-11 09:08 - 2015-10-31 00:04 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-11-11 09:08 - 2015-10-31 00:01 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-11-11 09:08 - 2015-10-30 23:58 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-11-11 09:08 - 2015-10-30 23:53 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-11-11 09:08 - 2015-10-30 23:52 - 20331520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-11-11 09:08 - 2015-10-30 23:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-11-11 09:08 - 2015-10-30 23:49 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-11-11 09:08 - 2015-10-30 23:47 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-11-11 09:08 - 2015-10-30 23:46 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-11-11 09:08 - 2015-10-30 23:46 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-11-11 09:08 - 2015-10-30 23:45 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-11-11 09:08 - 2015-10-30 23:45 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-11-11 09:08 - 2015-10-30 23:44 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-11-11 09:08 - 2015-10-30 23:44 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-11-11 09:08 - 2015-10-30 23:42 - 02279936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-11-11 09:08 - 2015-10-30 23:39 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-11-11 09:08 - 2015-10-30 23:39 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-11-11 09:08 - 2015-10-30 23:37 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-11-11 09:08 - 2015-10-30 23:36 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-11-11 09:08 - 2015-10-30 23:36 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-11-11 09:08 - 2015-10-30 23:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-11-11 09:08 - 2015-10-30 23:34 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-11-11 09:08 - 2015-10-30 23:32 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-11-11 09:08 - 2015-10-30 23:31 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-11-11 09:08 - 2015-10-30 23:29 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-11-11 09:08 - 2015-10-30 23:29 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-11-11 09:08 - 2015-10-30 23:28 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-11-11 09:08 - 2015-10-30 23:23 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-11-11 09:08 - 2015-10-30 23:22 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-11-11 09:08 - 2015-10-30 23:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-11-11 09:08 - 2015-10-30 23:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-11-11 09:08 - 2015-10-30 23:18 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-11-11 09:08 - 2015-10-30 23:17 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-11-11 09:08 - 2015-10-30 23:17 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-11-11 09:08 - 2015-10-30 23:16 - 04527616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-11-11 09:08 - 2015-10-30 23:11 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-11-11 09:08 - 2015-10-30 23:10 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-11-11 09:08 - 2015-10-30 23:09 - 12854272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-11-11 09:08 - 2015-10-30 23:09 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-11-11 09:08 - 2015-10-30 23:09 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-11-11 09:08 - 2015-10-30 23:04 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-11-11 09:08 - 2015-10-30 22:53 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-11-11 09:08 - 2015-10-30 22:51 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-11-11 09:08 - 2015-10-30 22:48 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-11-11 09:08 - 2015-10-30 22:46 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-11-11 09:08 - 2015-10-29 18:50 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-11-11 09:08 - 2015-10-29 18:50 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-11-11 09:08 - 2015-10-29 18:50 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-11-11 09:08 - 2015-10-29 18:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-11-11 09:08 - 2015-10-29 18:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-11-11 09:08 - 2015-10-29 18:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-11-11 09:08 - 2015-10-29 18:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-11-11 09:08 - 2015-10-20 02:12 - 05570496 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-11-11 09:08 - 2015-10-20 02:12 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-11-11 09:08 - 2015-10-20 02:12 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-11-11 09:08 - 2015-10-20 02:09 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-11-11 09:08 - 2015-10-20 02:06 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-11-11 09:08 - 2015-10-20 02:06 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-11-11 09:08 - 2015-10-20 02:06 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-11-11 09:08 - 2015-10-20 02:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-11-11 09:08 - 2015-10-20 02:05 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-11-11 09:08 - 2015-10-20 02:05 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-11-11 09:08 - 2015-10-20 02:05 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-11-11 09:08 - 2015-10-20 02:04 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-11-11 09:08 - 2015-10-20 02:04 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-11-11 09:08 - 2015-10-20 02:04 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-11-11 09:08 - 2015-10-20 02:00 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-11-11 09:08 - 2015-10-20 01:59 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:52 - 03991488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-11-11 09:08 - 2015-10-20 01:52 - 03935680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-11-11 09:08 - 2015-10-20 01:48 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-11-11 09:08 - 2015-10-20 01:45 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-11-11 09:08 - 2015-10-20 01:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-11-11 09:08 - 2015-10-20 01:44 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-11-11 09:08 - 2015-10-20 01:44 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-11-11 09:08 - 2015-10-20 01:44 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-11-11 09:08 - 2015-10-20 01:44 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-11-11 09:08 - 2015-10-20 01:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-11-11 09:08 - 2015-10-20 01:44 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-11-11 09:08 - 2015-10-20 01:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-11-11 09:08 - 2015-10-20 01:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 00:41 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-11-11 09:08 - 2015-10-20 00:40 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-11-11 09:08 - 2015-10-20 00:40 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-11-11 09:08 - 2015-10-20 00:29 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-11-11 09:08 - 2015-10-20 00:29 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-11-11 09:08 - 2015-10-20 00:27 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 00:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 00:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-11-11 09:08 - 2015-10-20 00:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-11-11 09:08 - 2015-10-13 17:41 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-11-11 09:08 - 2015-10-13 17:40 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-11-11 09:08 - 2015-10-13 05:57 - 00950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-11-11 09:08 - 2015-10-01 19:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-11-11 09:08 - 2015-10-01 19:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-11-11 09:08 - 2015-10-01 18:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-11-11 09:08 - 2015-09-23 14:15 - 00460776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-11-11 09:08 - 2015-09-23 14:15 - 00299632 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2015-11-11 09:08 - 2015-09-23 14:09 - 00251000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2015-11-10 15:39 - 2015-11-10 15:40 - 39197280 _____ C:\Users\Ivanek\Downloads\TIME-2016-data.pdf
2015-11-10 13:22 - 2015-11-10 13:22 - 00000000 ____D C:\Users\Ivanek\Downloads\Windows 7 64bit
2015-11-10 13:16 - 2015-11-10 13:22 - 05645367 _____ C:\Users\Ivanek\Downloads\Archer_T4U_V1_140402.zip
2015-11-10 13:04 - 2013-11-15 08:50 - 00020184 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\system32\rtlCoInst.dll
2015-11-10 13:04 - 2013-11-15 08:50 - 00008099 _____ C:\Windows\system32\rtlCoInst.dat
2015-11-09 18:00 - 2015-11-10 14:10 - 00000000 ____D C:\Users\Ivanek\AppData\Roaming\WTablet
2015-11-09 17:58 - 2015-11-09 17:58 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wacom Tablet
2015-11-09 17:57 - 2014-10-25 21:52 - 00100664 _____ (Wacom Technology) C:\Windows\system32\Drivers\wachidrouter.sys
2015-11-09 17:57 - 2014-10-25 21:52 - 00015160 _____ (Wacom Technology) C:\Windows\system32\Drivers\wacomrouterfilter.sys
2015-11-09 17:57 - 2014-10-25 21:52 - 00014136 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\hidkmdf.sys
2015-11-09 17:56 - 2015-11-09 17:57 - 00000000 ____D C:\Program Files\Tablet
2015-11-09 17:56 - 2014-12-22 21:42 - 02029336 _____ (Wacom Technology, Corp.) C:\Windows\system32\WacomMT.dll
2015-11-09 17:56 - 2014-12-22 21:42 - 01997592 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wacom_Tablet.dll
2015-11-09 17:56 - 2014-12-22 21:42 - 01990936 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wacom_Touch_Tablet.dll
2015-11-09 17:56 - 2014-12-22 21:42 - 01863960 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wintab32.dll
2015-11-09 17:56 - 2014-12-22 21:42 - 01626392 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\WacomMT.dll
2015-11-09 17:56 - 2014-12-22 21:42 - 01618712 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wacom_Tablet.dll
2015-11-09 17:56 - 2014-12-22 21:42 - 01612056 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wacom_Touch_Tablet.dll
2015-11-09 17:56 - 2014-12-22 21:42 - 01497368 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wintab32.dll
2015-11-09 17:45 - 2015-11-09 17:53 - 147029152 _____ C:\Users\Ivanek\Downloads\WacomTablet_6.3.11w3.exe
2015-11-08 11:00 - 2015-11-08 11:00 - 00000000 ____D C:\Users\Ivanek\AppData\Local\CEF
2015-11-08 10:33 - 2015-11-27 08:13 - 00002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-11-08 10:33 - 2015-11-08 10:33 - 00002061 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2015-11-07 19:36 - 2015-11-07 19:36 - 00000000 ____D C:\Users\Ivanek\Documents\Rigs of Rods 0.38
2015-11-07 19:36 - 2015-11-07 19:36 - 00000000 ____D C:\Users\Ivanek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rigs of Rods 0.38.67
2015-11-07 19:35 - 2015-11-07 19:36 - 00000000 ____D C:\Program Files (x86)\Rigs of Rods 0.38
2015-11-07 15:22 - 2015-11-07 15:24 - 139017086 _____ (www.rigsofrods.com) C:\Users\Ivanek\Downloads\RoR-Setup-0.38.67.exe
2015-11-05 16:51 - 2015-11-05 16:51 - 00000000 ____D C:\Users\Ivanek\Downloads\syngo_fv-02184790
2015-11-05 16:48 - 2015-11-05 16:49 - 18043422 _____ C:\Users\Ivanek\Downloads\syngo_fv-02184790.zip
2015-11-04 13:56 - 2015-11-04 13:56 - 00187300 _____ C:\Users\Ivanek\Downloads\sauna_cenik.pdf
2015-11-04 10:17 - 2015-11-04 10:17 - 04566468 _____ C:\Users\Ivanek\Downloads\TIME-2016.zip
2015-11-03 17:17 - 2015-11-03 17:18 - 65798891 _____ C:\Users\Ivanek\Downloads\BS video TIME final.mp4
2015-11-03 14:52 - 2015-11-03 14:53 - 65786270 _____ C:\Users\Ivanek\Downloads\BS video TIME 1.mp4
2015-11-03 10:01 - 2015-11-03 10:01 - 00062335 _____ C:\Users\Ivanek\Downloads\153500871_99900353PR.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-03 13:06 - 2010-10-01 09:25 - 00139336 _____ C:\Users\Ivanek\AppData\Local\GDIPFONTCACHEV1.DAT
2015-12-03 13:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2015-12-03 12:59 - 2014-03-22 17:39 - 00000000 ____D C:\ProgramData\Package Cache
2015-12-03 12:58 - 2013-08-29 11:16 - 00000000 ____D C:\Windows\Minidump
2015-12-03 12:58 - 2010-10-03 10:58 - 00000000 ____D C:\Users\Ivanek\AppData\Roaming\uTorrent
2015-12-03 12:58 - 2009-07-14 05:45 - 00023264 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-12-03 12:58 - 2009-07-14 05:45 - 00023264 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-12-03 12:58 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2015-12-03 12:57 - 2010-11-11 22:42 - 00000830 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-12-03 12:57 - 2010-11-11 22:42 - 00000000 ____D C:\Program Files\CCleaner
2015-12-03 12:52 - 2014-11-03 12:17 - 00000000 ___RD C:\Users\Ivanek\Creative Cloud Files
2015-12-03 12:52 - 2012-12-02 17:56 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-12-03 12:52 - 2010-10-01 09:42 - 00000000 ____D C:\Users\Ivanek\AppData\Local\Adobe
2015-12-03 12:49 - 2010-12-18 13:52 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-03 12:49 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-03 12:47 - 2011-01-26 20:01 - 00001912 _____ C:\Windows\epplauncher.mif
2015-12-03 12:39 - 2010-10-01 08:35 - 00000000 ____D C:\Users\Ivanek
2015-12-03 12:19 - 2012-08-20 19:13 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-12-03 11:40 - 2010-12-18 13:52 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-03 08:42 - 2013-01-24 09:36 - 00002191 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-12-01 16:37 - 2013-08-30 16:32 - 00000056 _____ C:\Windows\Lic.xxx
2015-12-01 16:29 - 2009-07-14 03:34 - 00000955 _____ C:\Windows\win.ini
2015-12-01 15:47 - 2014-08-08 17:04 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-11-30 10:39 - 2015-09-08 17:17 - 00003350 _____ C:\Windows\System32\Tasks\ESET Windows 10 upgrade – Refresh settings
2015-11-28 10:51 - 2010-10-01 09:23 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-11-26 10:23 - 2014-08-08 17:02 - 00001128 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-11-26 10:23 - 2014-08-08 17:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-26 10:23 - 2014-08-08 17:02 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-11-24 18:15 - 2010-10-01 09:42 - 00000000 ____D C:\Users\Ivanek\AppData\Roaming\Adobe
2015-11-23 08:44 - 2009-07-14 16:18 - 00677576 _____ C:\Windows\system32\perfh005.dat
2015-11-23 08:44 - 2009-07-14 16:18 - 00146494 _____ C:\Windows\system32\perfc005.dat
2015-11-23 08:44 - 2009-07-14 06:13 - 01611912 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-20 14:03 - 2010-10-02 20:29 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2015-11-20 10:58 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries
2015-11-20 10:42 - 2010-10-03 20:08 - 00000000 ____D C:\Users\Ivanek\kbpki
2015-11-18 15:45 - 2010-10-02 19:09 - 00000000 ____D C:\Users\Ivanek\AppData\Local\GHISLER
2015-11-14 08:53 - 2009-07-14 05:45 - 05182360 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-12 13:08 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2015-11-12 09:34 - 2012-03-01 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-11-12 09:34 - 2012-03-01 16:17 - 00000000 ____D C:\Program Files (x86)\Origin
2015-11-12 09:33 - 2012-03-01 16:21 - 00000000 ____D C:\ProgramData\Origin
2015-11-11 17:53 - 2013-08-12 08:03 - 00000000 ____D C:\Windows\system32\MRT
2015-11-11 17:45 - 2010-10-04 20:53 - 145617392 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-11-11 17:45 - 2010-10-01 10:07 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-11-11 17:37 - 2010-11-01 20:56 - 01586626 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2015-11-11 17:33 - 2009-07-14 16:37 - 00000000 ____D C:\Program Files\Windows Journal
2015-11-11 16:19 - 2012-08-20 19:13 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-11-11 16:19 - 2012-04-19 10:06 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-11 16:19 - 2011-05-18 15:41 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-10 13:58 - 2015-10-18 11:30 - 00000000 ____D C:\Users\Ivanek\AppData\LocalLow\uTorrent
2015-11-08 10:33 - 2014-12-26 18:42 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-11-08 10:33 - 2010-10-01 09:23 - 00000000 ____D C:\ProgramData\Adobe
2015-11-05 17:49 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2015-11-03 15:01 - 2011-01-10 20:06 - 00000000 ____D C:\Users\Ivanek\AppData\Roaming\vlc
2015-11-03 08:59 - 2014-10-03 06:50 - 00000000 ____D C:\Users\Ivanek\AppData\Local\E411C589-934F-4C39-B89A-4D89E1A5A63F.aplzod

==================== Files in the root of some directories =======

2013-04-16 18:07 - 2013-11-17 10:12 - 0000132 _____ () C:\Users\Ivanek\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
2010-10-25 20:42 - 2010-10-25 20:42 - 0000000 _____ () C:\Users\Ivanek\AppData\Roaming\chrtmp
2010-10-14 17:15 - 2011-02-20 12:20 - 0000157 _____ () C:\Users\Ivanek\AppData\Roaming\default.rss
2011-10-18 20:56 - 2011-10-18 21:10 - 0000132 _____ () C:\Users\Ivanek\AppData\Roaming\Filtr IIIExport Adobe CS5 – předvolby
2014-04-26 19:43 - 2014-04-27 14:07 - 0000132 _____ () C:\Users\Ivanek\AppData\Roaming\Formát BMP Adobe CC – předvolby
2013-12-01 18:55 - 2014-06-12 14:43 - 0000132 _____ () C:\Users\Ivanek\AppData\Roaming\Formát PNG Adobe CC – předvolby
2010-10-05 19:24 - 2011-02-16 20:01 - 0001480 _____ () C:\Users\Ivanek\AppData\Local\Adobe Uložit pro web 12.0 Prefs
2014-08-08 11:22 - 2015-09-01 11:49 - 0001480 _____ () C:\Users\Ivanek\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2010-11-02 17:18 - 2010-12-10 22:18 - 0000094 _____ () C:\Users\Ivanek\AppData\Local\fusioncache.dat
2010-10-02 19:32 - 2015-10-22 11:04 - 0007660 _____ () C:\Users\Ivanek\AppData\Local\resmon.resmoncfg
2013-11-27 14:55 - 2013-11-27 15:03 - 0103424 _____ () C:\Users\Ivanek\AppData\Local\SageThumbs.db3
2015-12-03 12:45 - 2014-04-16 22:12 - 5181144 _____ (COMODO) C:\ProgramData\cis11FB.exe
2015-12-03 12:45 - 2014-04-16 22:12 - 5181144 _____ (COMODO) C:\ProgramData\cisFFB2.exe

Files to move or delete:
====================
C:\ProgramData\cis11FB.exe
C:\ProgramData\cisFFB2.exe


Some files in TEMP:
====================
C:\Users\Ivanek\AppData\Local\Temp\avgnt.exe


Some zero byte size files/folders:
==========================
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\VDLL.DLL
C:\Windows\SysWOW64\runouce.exe

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-11-30 12:00

==================== End of FRST.txt ============================

Re: Podezřelé chování

Napsal: 03 pro 2015 13:09
od messtor
Additional scan result of Farbar Recovery Scan Tool (x64) Version:01-12-2015
Ran by Ivanek (2015-12-03 13:07:23)
Running from C:\Users\Ivanek\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2010-10-01 07:35:20)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3041121131-3184122690-1646572021-500 - Administrator - Disabled)
Guest (S-1-5-21-3041121131-3184122690-1646572021-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-3041121131-3184122690-1646572021-1026 - Limited - Enabled)
Ivanek (S-1-5-21-3041121131-3184122690-1646572021-1000 - Administrator - Enabled) => C:\Users\Ivanek

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
4Videosoft Free PDF to JPEG Converter (HKLM-x32\...\4Videosoft Free PDF to JPEG Converter_is1) (Version: - )
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.3.0.3670 - Adobe Systems Incorporated)
Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.1.1 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.5.23 - Adobe Systems Incorporated.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.4.1.181 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.3 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0.1 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\Akamai) (Version: - Akamai Technologies, Inc)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.15.125 - Avira Operations GmbH & Co. KG)
Avira Browser Safety (HKLM-x32\...\{9E10EA90-5E97-43B7-A246-FC7B4F5E9493}) (Version: 1.4.5.509 - Avira Operations GmbH & Co KG)
Avira Launcher (HKLM-x32\...\{5b07d59f-99e0-4c52-ad25-965f7e38d6ac}) (Version: 1.1.51.19070 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.51.19070 - Avira Operations GmbH & Co. KG) Hidden
Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 2.0.4.810 - Avira Operations GmbH & Co. KG)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.0.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.1.3 - EA Digital Illusions CE AB)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Call of Duty: Modern Warfare 3 - Multiplayer (HKLM-x32\...\Steam App 42690) (Version: - Infinity Ward - Sledgehammer Games)
Canon MovieEdit Task for ZoomBrowser EX (HKLM-x32\...\MovieEditTask) (Version: 3.4.1.9 - Canon Inc.)
Canon Utilities Digital Photo Professional 3.8 (HKLM-x32\...\DPP) (Version: 3.8.0.0 - Canon Inc.)
Canon Utilities EOS Utility (HKLM-x32\...\EOS Utility) (Version: 2.8.1.0 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.22.46 - Canon Inc.)
Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.7.0.0 - Canon Inc.)
Canon Utilities ZoomBrowser EX (HKLM-x32\...\ZoomBrowser EX) (Version: 6.5.1.15 - Canon Inc.)
Canon ZoomBrowser EX Memory Card Utility (HKLM-x32\...\ZoomBrowser EX Memory Card Utility) (Version: 1.3.0.4 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
Color Efex Pro 3.0 Complete (HKLM-x32\...\Color Efex Pro 3.0 Complete Stand-Alone) (Version: 3.1.1.0 - Nik Software, Inc.)
DeepMeta (HKLM-x32\...\{9651BB12-3732-4F2B-B0AE-5E796902DE29}) (Version: 1.4.1227 - Eazign)
EOSCount ActiveX control (HKLM-x32\...\{63B230BF-D745-4ECC-B773-EA25A9AFDC36}) (Version: 2.3.5 - Sergey Vasilevskiy)
EOSInfo (HKLM-x32\...\{CC23FF9A-989C-4DEB-8970-50E6E4862315}) (Version: 0.2.0 - astrojargon.net)
Epson Easy Photo Print 2 (HKLM-x32\...\{A02D7029-C4EF-44C1-9FD4-C0D3CA518113}) (Version: 2.2.4.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON SX235 Series Printer Uninstall (HKLM\...\EPSON SX235 Series) (Version: - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
Eye-One Match 3.6.2 (HKLM-x32\...\Eye-One Match_is1) (Version: 3.6.2 - GretagMacbeth)
F1 2010 (HKLM-x32\...\GFWL_{434D0831-3E0C-4D03-A5D4-5E1000008400}) (Version: 1.0.0000.132 - Codemasters)
F1 2010 (x32 Version: 1.0.0000.132 - Codemasters) Hidden
F1 2010 (x32 Version: 1.0.0001.132 - Codemasters) Hidden
FastStone Image Viewer 4.2 (HKLM-x32\...\FastStone Image Viewer) (Version: 4.2 - FastStone Soft)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Genuine Fractals 6.0.8 Professional Edition (HKLM-x32\...\{FCADA4FF-142C-42A8-B73C-0A54A7F83345}) (Version: 6.0.8 - onOne Software)
GHOST (HKLM-x32\...\{AC968B0F-024A-4323-BD6B-C2A85D183F34}) (Version: 1.00.0000 - Název společnosti:)
Gigabyte Raid Configurer (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.17.59.0 - GIGABYTE Technologies, Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Earth Pro (HKLM-x32\...\{44FC61F0-2F8A-11E3-8CAE-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.73 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Hamachi 1.0.2.5 (HKLM-x32\...\Hamachi) (Version: - )
Helicon Focus 5.3.14 (HKLM-x32\...\Helicon Focus_is1) (Version: - Helicon Soft Ltd.)
HWiNFO64 Version 4.30 (HKLM\...\HWiNFO64_is1) (Version: 4.30 - Martin Malík - REALiX)
HyperLobby client (HKLM-x32\...\{6592866A-D35A-44BE-AE8F-2AABE6C1D765}) (Version: 4.3.4 - Jiri Fojtasek)
i1_driver_installer_utility_i1Match version 1.0 (HKLM-x32\...\i1_driver_installer_utility_i1Match_is1) (Version: - X-Rite)
iCloud (HKLM\...\{B33C558F-772F-4308-A059-390FBF9BAAAE}) (Version: 5.0.2.61 - Apple Inc.)
Imagenomic Noiseware 4.2 Professional Plug-in (build 4205) (HKLM\...\ImagenomicNoisewareProPlugin) (Version: - )
Imagenomic Portraiture 2.3 Plug-in (build 2308) (HKLM\...\ImagenomicPortraiturePlugin) (Version: - )
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.7.0 - LIGHTNING UK!)
inSSIDer Home (HKLM-x32\...\{9E54E4AE-B67A-4925-8E92-0E1F9817FD73}) (Version: 3.1.2.1 - MetaGeek, LLC)
Intel(R) IPP Run-Time Installer 5.3 Update 4 for Windows* on IA-32 (HKLM-x32\...\{754854DC-2E0A-49D8-A1A1-426C1F9B1459}) (Version: 5.3.4.087 - Intel Corporation)
iTunes (HKLM\...\{E690A491-702F-4DEC-9977-C015D1DBB57C}) (Version: 12.3.1.23 - Apple Inc.)
Java 7 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.250 - Oracle)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Kolor Autopano Giga 2.5 (HKLM\...\AutopanoGiga2.5) (Version: V2.5.0 - Kolor)
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Manažer napájení (HKLM-x32\...\{F5663E7F-79CA-4022-8B39-D855A4E0BF58}) (Version: 1.1.0 - David Čapek)
Media Player Classic - Home Cinema v1.4.2499.0 x64 (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.4.2499.0 - MPC-HC Team)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Camera Codec Pack (HKLM\...\{F3A7E92F-A426-49B4-86A6-5ADB152DCB6B}) (Version: 16.0.0652.0621 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft PowerPoint Home and Student 2010 (HKLM-x32\...\Office14.POWERPOINTR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 31.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 cs)) (Version: 31.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
NaturalPoint USB Drivers x64 (HKLM\...\{B408139D-04D6-4464-A979-D335E48F7063}) (Version: 2.50.0000 - NaturalPoint)
NVIDIA Ovladače grafiky 358.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 358.50 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
ON_OFF Charge B10.0427.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
OpenOffice.org 3.2 (HKLM-x32\...\{FAB43061-FEFB-46E8-A159-96710395DB5E}) (Version: 3.2.9505 - OpenOffice.org)
Overwolf (HKLM-x32\...\{030F4BB3-F3C3-4A74-905C-44672D1ECB76}) (Version: 0.47.284 - Overwolf)
Ovládací panel NVIDIA 358.50 (Version: 358.50 - NVIDIA Corporation) Hidden
Pantone Color Manager 1.0.0 (HKLM-x32\...\Pantone Color Manager_is1) (Version: - PANTONE)
PDF Architect (HKLM-x32\...\{80A07844-CA64-4DE4-AB61-D37DDBE8074F}) (Version: 1.0.52.8917 - pdfforge)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.6.2 - pdfforge)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{0DE0A178-AC7B-4650-806C-CF226DE03766}) (Version: 4.1 - Apple Inc.)
Příručka pro síť EPSON SX235 Series (HKLM-x32\...\EPSON SX235 Series Netg) (Version: - )
PSD Codec by Ardfry Imaging, LLC (32 bit) (x32 Version: 1.0.15.0 - Ardfry Imaging, LLC) Hidden
PSD Codec by Ardfry Imaging, LLC (64 bit) (Version: 1.0.15.0 - Ardfry Imaging, LLC) Hidden
PSD CODEC Version 1.6.1.0 (HKLM\...\Ardfry PSD CODEC_is1) (Version: 1.6.1.0 - Ardfry Imaging, LLC)
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: - Jan Fiala)
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.)
rajče verze 58 sestavení 205 (HKLM-x32\...\rajče.net_is1) (Version: - rajče.net)
RarZilla Free Unrar (HKLM-x32\...\RarZilla Free Unrar) (Version: 2.54 - Philipp Winterberg)
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.17.304.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6077 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.00042 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
RegUtility version 4.1 (HKLM-x32\...\RegUtility_is1) (Version: 4.1 - )
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.30.0 - Renesas Electronics Corporation) Hidden
Rigs of Rods 0.38.67 (HKLM-x32\...\Rigs of Rods 0.38.67) (Version: 0.38.67 - Rigs of Rods Team)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINTR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Silver Efex Pro (HKLM-x32\...\Silver Efex Pro for Stand-Alone) (Version: 1.0.0.7 - Nik Software, Inc.)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Software602 Form Filler (HKLM-x32\...\{DE3B6562-0A58-49E0-836F-B895F3985958}) (Version: 4.52 - Software602 a.s.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
StrongDC++ 2.41 (HKLM-x32\...\StrongDC++) (Version: 2.41 - Big Muscle)
Sweet Home 3D version 3.4 (HKLM-x32\...\Sweet Home 3D_is1) (Version: - eTeks)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.44109 - TeamViewer)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: - )
Ulož.to File Manager verze 1.6 (HKLM-x32\...\{8190420D-F4BA-4744-8940-A466F81AF89C}_is1) (Version: 1.6 - Nodus Technologies s.r.o.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Uživatelská příručka EPSON SX235 Series (HKLM-x32\...\EPSON SX235 Series Useg) (Version: - )
Vegas Movie Studio HD Platinum 11.0 (HKLM-x32\...\{49D19440-759A-11E0-85FD-0013D3D69929}) (Version: 11.0.220 - Sony)
Viber (HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\{7de2db6a-6f4b-4b45-82b9-57d5d7f1c952}) (Version: 5.4.0.1664 - Viber Media Inc.)
Viber (x32 Version: 5.4.0.1664 - Viber Media Inc.) Hidden
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: - Elaborate Bytes)
Viveza 2 (HKLM-x32\...\Viveza 2) (Version: 2.0.0.3 - Nik Software, Inc.)
VJoy Virtual Joystick Driver 1.2 (HKLM-x32\...\VJoy Virtual Joystick Driver_is1) (Version: - Headsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.11w3 - Wacom Technology Corp.)
War Thunder Launcher 1.0.1.252 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - 2013 Gaijin Entertainment Corporation)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WinRAR 4.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
XRD i1d3 (x32 Version: 1.0.135 - X-Rite) Hidden
X-Rite Device Services Manager (HKLM-x32\...\{8778BE05-73CF-405D-BA1B-AC380C738FEE}) (Version: 2.1.14 - X-Rite)
Yawcam 0.4.1 (HKLM-x32\...\{8FE96B14-E1F9-47BF-8BA1-A81467CD259B}_is1) (Version: - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3041121131-3184122690-1646572021-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)

==================== Restore Points =========================

26-11-2015 08:28:50 Windows Update
29-11-2015 09:36:19 Windows Update
02-12-2015 20:13:09 Windows Update
03-12-2015 12:32:37 Removed COMODO Internet Security
03-12-2015 13:04:02 Avira System Speedup 2.0.4

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {117050D3-B85C-4702-BD46-581895EA9F0B} - System32\Tasks\CIS_{15198508-521A-4D69-8E5B-B94A6CCFF805} => C:\ProgramData\cisFFB2.exe [2014-04-16] (COMODO) <==== ATTENTION
Task: {14C5F02D-94FC-443B-B9AF-A34B61F57A74} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {1D875FB2-287A-4783-9267-75275CF59872} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-26] (Apple Inc.)
Task: {22921084-6E6E-40E4-89C2-AC84243FD193} - System32\Tasks\{88AB8881-0B87-4D34-8DE5-7898BA14A0AC} => pcalua.exe -a C:\Users\Ivanek\Downloads\moviestudiope100.exe -d C:\Users\Ivanek\Downloads
Task: {29599E33-7ECC-4038-8BE2-9E161C30AAB3} - System32\Tasks\Avira System Speedup Tray => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.Systray.exe [2015-11-19] (Avira Operations GmbH & Co. KG)
Task: {45EDC3D4-19A0-40B8-A895-6F49C4BA62F5} - \YourFile DownloaderUpdate -> No File <==== ATTENTION
Task: {518EFF3C-8B7D-47B0-98B7-D5745B50F263} - System32\Tasks\{D95B80B6-3D5C-4D04-B244-35E84F171BBC} => pcalua.exe -a "C:\Users\Ivanek\Downloads\Total Commander 7.03\tcmdr703.exe" -d "C:\Users\Ivanek\Downloads\Total Commander 7.03"
Task: {594A4EF5-5E51-4726-9BB9-9C8BDDF18B1F} - System32\Tasks\{BFE339EF-7ACD-47C8-BA96-3481B84C2811} => pcalua.exe -a F:\setup.exe -d F:\
Task: {67D6DB30-046D-442D-8C3A-25C5B45F0119} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {7193DB93-40D2-4B65-BA0E-FE9C1696D272} - System32\Tasks\{20A70208-9457-49BC-8B01-42DB52BF7627} => pcalua.exe -a Q:\INSTALL.EXE -d Q:\
Task: {722F3C96-9EB2-44CF-AE7E-C990AC8D3278} - System32\Tasks\{740CE5AE-2EE1-4411-A45A-E734D99CDC4A} => pcalua.exe -a "C:\Program Files (x86)\DAEMON Tools Lite\uninst.exe" -d "C:\Program Files (x86)\DAEMON Tools Lite"
Task: {73D56B0A-BE00-4028-A69C-4739F9FF4444} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {8E49FEB2-15C7-4784-AD1F-6C66DF4786D7} - System32\Tasks\{E59D8FC0-A831-4976-A45D-ACE48C0EBAF3} => pcalua.exe -a "C:\Program Files (x86)\YourFileDownloader Updater\uninstall.exe"
Task: {8F8CC9EC-EA4B-4289-9C17-7B4AF35D7282} - System32\Tasks\Avira Browser Safety Updater Task => C:\Program Files (x86)\Avira\Browser Safety\AviraBrowserSafetyUpdater.exe [2015-03-11] (Avira Operations GmbH & Co. KG)
Task: {9C88ACC3-BB8F-4250-AE2D-9E5711ED6B85} - System32\Tasks\{8266732F-02ED-4236-A775-039A841CECE2} => pcalua.exe -a C:\Users\Ivanek\Downloads\Il2_412_2_INT.exe -d C:\Users\Ivanek\Downloads
Task: {B069AE10-2BB0-46D5-8AA9-078A4A37CEBB} - System32\Tasks\{4AB959A3-31FF-48F3-A2BF-E146C31CFFD2} => pcalua.exe -a M:\setup.exe -d M:\
Task: {BEBDC5AF-82A0-4FCA-A991-E4491FBE7D01} - System32\Tasks\{F829EBBB-8D62-49D7-8F66-462E8F391370} => pcalua.exe -a C:\Users\Ivanek\Downloads\dxwebsetup(1).exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {C7942483-3A4D-4DC7-A52D-5CA9ECFE02BA} - System32\Tasks\{1A977117-CF9C-4B00-94B2-A626F29B1B86} => pcalua.exe -a "C:\Program Files (x86)\Steam\steam.exe" -c steam://uninstall/42690
Task: {D881280D-88B7-42D6-9E41-911CA0DDF892} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {DABDDC39-9CAA-4951-A69D-34121DF31B35} - System32\Tasks\AdobeAAMUpdater-1.0-Ivanek-PC-Ivanek => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-10-30] (Adobe Systems Incorporated)
Task: {E1731602-4424-43CA-BED7-1EBB75B0FFD1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-11] (Adobe Systems Incorporated)
Task: {F551F827-361A-4627-8860-288CFC5EF015} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {F86A3407-1B95-477F-8916-11CC49328978} - System32\Tasks\{92E7913B-ABB1-43D4-BCE4-D749C80FCDB0} => pcalua.exe -a "C:\Users\Ivanek\AppData\Local\Temp\Temp1_Genuine_Fractals_6.0.8_PE(2).zip\Genuine Fractals 6.0.8 Professional Edition.exe"
Task: {FF8EFA7E-23FF-4A5F-A0F0-8A80B146CF5F} - System32\Tasks\ESET Windows 10 upgrade – Refresh settings => C:\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe [2015-11-23] (ESET)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2013-08-28 16:41 - 2015-10-03 03:49 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-11-28 10:49 - 2015-11-14 04:23 - 00553120 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2015-01-20 22:35 - 2015-01-20 22:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-10-13 05:45 - 2015-10-13 05:45 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2010-10-01 08:52 - 2010-09-07 10:46 - 00072280 _____ () C:\Windows\SysWOW64\XSrvSetup.exe
2015-11-09 13:26 - 2015-11-09 13:26 - 51657424 _____ () C:\Users\Ivanek\AppData\Local\Viber\Viber.exe
2009-06-26 06:17 - 2009-06-26 06:17 - 00724992 _____ () C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe
2015-11-28 10:49 - 2015-11-14 04:22 - 31401120 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2015-11-09 17:56 - 2014-12-22 21:42 - 01356568 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2015-08-26 08:44 - 2015-08-26 08:44 - 00055576 _____ () C:\Program Files\CCleaner\branding.dll
2015-11-16 17:55 - 2015-11-16 17:55 - 00047104 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2015-10-13 05:46 - 2015-10-13 05:46 - 01040144 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2015-10-13 05:45 - 2015-10-13 05:45 - 00237328 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2015-11-09 13:19 - 2015-11-09 13:19 - 00089088 _____ () C:\Users\Ivanek\AppData\Local\Viber\qfacebook.dll
2015-11-09 13:19 - 2015-11-09 13:19 - 00389632 _____ () C:\Users\Ivanek\AppData\Local\Viber\imageformats\qsvg.dll
2015-09-29 04:58 - 2015-09-29 04:58 - 00012288 _____ () C:\Users\Ivanek\AppData\Local\Viber\QtQuick.2\qtquick2plugin.dll
2015-09-29 17:25 - 2015-09-29 17:25 - 00690176 _____ () C:\Users\Ivanek\AppData\Local\Viber\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-09-29 17:26 - 2015-09-29 17:26 - 00057856 _____ () C:\Users\Ivanek\AppData\Local\Viber\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-09-29 05:04 - 2015-09-29 05:04 - 00184320 _____ () C:\Users\Ivanek\AppData\Local\Viber\QtMultimedia\declarative_multimedia.dll
2015-09-29 04:58 - 2015-09-29 04:58 - 00012288 _____ () C:\Users\Ivanek\AppData\Local\Viber\QtQuick\Window.2\windowplugin.dll
2015-09-29 17:34 - 2015-09-29 17:34 - 00425984 _____ () C:\Users\Ivanek\AppData\Local\Viber\QtLocation\declarative_location.dll
2015-09-29 05:03 - 2015-09-29 05:03 - 00065024 _____ () C:\Users\Ivanek\AppData\Local\Viber\QtPositioning\declarative_positioning.dll
2015-09-29 04:58 - 2015-09-29 04:58 - 00012288 _____ () C:\Users\Ivanek\AppData\Local\Viber\QtQml\Models.2\modelsplugin.dll
2015-09-29 04:58 - 2015-09-29 04:58 - 00044032 _____ () C:\Users\Ivanek\AppData\Local\Viber\QtQml\StateMachine\qtqmlstatemachine.dll
2011-10-11 14:46 - 2011-10-11 14:46 - 01588560 _____ () C:\Program Files (x86)\X-Rite\Devices\rm200\GoldenEye.dll
2011-10-11 14:45 - 2011-10-11 14:45 - 00902992 _____ () C:\Program Files (x86)\X-Rite\Devices\i1pro\i1Fun.dll
2011-10-11 14:46 - 2011-10-11 14:46 - 02639696 _____ () C:\Program Files (x86)\X-Rite\Devices\colormunki\colormunki.dll
2015-11-25 19:35 - 2015-11-25 19:35 - 00124416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2015-11-25 19:35 - 2015-11-25 19:35 - 00188416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2015-11-25 19:35 - 2015-11-25 19:35 - 00121344 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2015-11-25 19:35 - 2015-11-25 19:35 - 00129536 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2015-11-25 13:22 - 2015-11-25 13:22 - 00089264 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\native\ProxyResolverWin7.dll
2015-11-25 19:35 - 2015-11-25 19:35 - 00081408 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2015-11-25 19:48 - 2015-11-25 19:48 - 00124416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\fs-ext\build\Release\fs-ext.node
2015-11-25 19:48 - 2015-11-25 19:48 - 00121344 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ref\build\Release\binding.node
2015-11-25 19:48 - 2015-11-25 19:48 - 00129536 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ffi\build\Release\ffi_bindings.node
2015-11-25 19:48 - 2015-11-25 19:48 - 00188416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2015-11-25 13:15 - 2015-11-25 13:15 - 00089264 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-ProxyResolver\native\ProxyResolverWin7.dll
2015-11-25 19:48 - 2015-11-25 19:48 - 00085504 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ws\build\Release\bufferutil.node
2015-11-25 19:48 - 2015-11-25 19:48 - 00086016 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ws\build\Release\validation.node
2015-11-25 19:48 - 2015-11-25 19:48 - 00081408 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\idle-gc\build\Release\idle-gc.node
2015-12-03 08:42 - 2015-11-24 09:00 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\libglesv2.dll
2015-12-03 08:42 - 2015-11-24 09:00 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\libegl.dll
2011-03-14 18:58 - 2011-03-02 12:40 - 00140288 _____ () C:\Program Files\WinRAR\rarext32.dll
2012-01-20 10:26 - 2009-11-16 20:31 - 00069632 _____ () C:\Program Files (x86)\PSPad editor\PSPadShell.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows:AstInfo
AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\Users\Ivanek\AppData\Local\desktop.ini:3a96398c0f384e4adf5faa1736aeaf96

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\...\mojebanka.cz -> hxxps://etrading.mojebanka.cz

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3041121131-3184122690-1646572021-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Ivanek\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{29E7435D-119F-47BA-9DBD-810A685EC629}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe
FirewallRules: [UDP Query User{C400E1D4-D312-4639-A57B-38A24709863A}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe
FirewallRules: [TCP Query User{C7EEF8E8-25EF-4803-B456-B11F96212E84}C:\program files (x86)\vlc\vlc.exe] => (Allow) C:\program files (x86)\vlc\vlc.exe
FirewallRules: [UDP Query User{A69484E8-8A02-4595-881B-9C6B0923288D}C:\program files (x86)\vlc\vlc.exe] => (Allow) C:\program files (x86)\vlc\vlc.exe
FirewallRules: [{3DD818BE-A198-4D74-A467-E2992AD9B1F1}] => (Allow) C:\Program Files (x86)\Codemasters\F1 2010\F1_2010_game.exe
FirewallRules: [{3B75EE82-3071-40E2-A532-C6FB939E6C98}] => (Allow) C:\Program Files (x86)\Codemasters\F1 2010\F1_2010_game.exe
FirewallRules: [TCP Query User{F8BABB3F-1686-417F-8551-CE5256AADF16}C:\program files (x86)\google\google earth\client\googleearth.exe] => (Allow) C:\program files (x86)\google\google earth\client\googleearth.exe
FirewallRules: [UDP Query User{38741B7E-058C-417F-8444-C91F05BF6AD7}C:\program files (x86)\google\google earth\client\googleearth.exe] => (Allow) C:\program files (x86)\google\google earth\client\googleearth.exe
FirewallRules: [{05FA9BDD-355A-4F21-868E-2E54921EBDE9}] => (Allow) C:\Program Files (x86)\Codemasters\F1 2010\F1_2010_game.exe
FirewallRules: [{059AEABE-9752-4479-9851-513FBC66BA5B}] => (Allow) C:\Program Files (x86)\Codemasters\F1 2010\F1_2010_game.exe
FirewallRules: [TCP Query User{6857E0B0-4AF3-4E65-9FCB-9D9D6FD5CF0F}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{6AF34342-80AE-404A-B690-8D29E475B58E}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [TCP Query User{89671DA3-4DE2-43D3-826A-F267AEE44845}C:\program files (x86)\activision\call of duty - black ops\blackops.exe] => (Allow) C:\program files (x86)\activision\call of duty - black ops\blackops.exe
FirewallRules: [UDP Query User{DA2FAC6E-C4DC-47D9-858F-88D5DFC4CF87}C:\program files (x86)\activision\call of duty - black ops\blackops.exe] => (Allow) C:\program files (x86)\activision\call of duty - black ops\blackops.exe
FirewallRules: [TCP Query User{9FFCADAE-1271-4FFA-9448-FAFDD2887EEC}C:\program files (x86)\activision\call of duty - black ops\blackopsmp.exe] => (Allow) C:\program files (x86)\activision\call of duty - black ops\blackopsmp.exe
FirewallRules: [UDP Query User{64BAADC0-D2F6-400B-8515-EABB76F79E6D}C:\program files (x86)\activision\call of duty - black ops\blackopsmp.exe] => (Allow) C:\program files (x86)\activision\call of duty - black ops\blackopsmp.exe
FirewallRules: [{8B0F863E-5B69-4A74-9965-CE3310A6A0CF}] => (Allow) C:\Program Files (x86)\Pantone Color Manager\PantoneColorManager.exe
FirewallRules: [{97E4C414-2A22-4018-B7F4-763C69CD825A}] => (Allow) C:\Program Files (x86)\Pantone Color Manager\PantoneColorManager.exe
FirewallRules: [{451A87C7-2D03-40A1-8631-CE4483058007}] => (Allow) LPort=5454
FirewallRules: [{592ADA7D-8DDC-44B0-A547-D612F7FB7D88}] => (Allow) C:\Windows\System32\hasplms.exe
FirewallRules: [{DD8633B5-48B0-45EF-83AC-418DA88EDDAB}] => (Allow) C:\Windows\System32\hasplms.exe
FirewallRules: [{CD24EC87-6D1A-4A45-BFE2-4424E302D6CB}] => (Allow) F:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [{070D2302-0B93-412D-A65C-23A749E96F7A}] => (Allow) F:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [TCP Query User{94376CA0-3EB0-441E-8B6E-B0F494A64232}C:\program files\strongdc++\strongdc.exe] => (Allow) C:\program files\strongdc++\strongdc.exe
FirewallRules: [UDP Query User{B7FA0C1F-2483-4C63-B49B-B22640BA22B2}C:\program files\strongdc++\strongdc.exe] => (Allow) C:\program files\strongdc++\strongdc.exe
FirewallRules: [{06A8D7F7-09E5-44CD-AD18-8A61441BF770}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{5B7E1CD1-36FD-43C3-AD89-CDFF2678411B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C5337F78-FC11-476F-8B90-0DAEFFDDBEC3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{36D6CE1C-5A5D-4A3D-A1FB-AD43B6372280}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [{B628B85F-6EBE-44E0-9CBC-B4C1800E61BE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [{709AB838-32A4-438E-A556-FD50C013C7B5}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{E87C1261-1F93-41AB-AE0A-B0824F6067BD}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{F1324E86-25E0-4977-AEFA-232C4C642661}] => (Allow) C:\Program Files (x86)\War Thunder\launcher.exe
FirewallRules: [{C66215C9-FD57-46C4-87C0-A97C5FD9274A}] => (Allow) C:\Program Files (x86)\War Thunder\launcher.exe
FirewallRules: [{4CF805C8-C2EB-4237-BC33-011D88B5DCF1}] => (Allow) C:\Program Files (x86)\War Thunder\aces.exe
FirewallRules: [{43419C00-7C29-4491-9D0A-15BFA03B1BDE}] => (Allow) C:\Program Files (x86)\War Thunder\aces.exe
FirewallRules: [{504DE397-E884-44D4-9515-6C5E9AFD1BF1}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe
FirewallRules: [{1736D9F7-5B6E-469B-982A-B60C5B4887FD}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe
FirewallRules: [{1437EE8E-5C7F-482E-9CE6-D17C7EE881CC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{0B83E2C8-8D9D-4014-8280-335D69234542}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A36C7A1F-3F09-47F6-853C-57908FE21181}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{5708D74D-27AD-4C3B-BCCA-2D317106FEC2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{5AA36602-7FE7-4440-8AD3-CE8A13137566}] => (Allow) C:\Users\Ivanek\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4F3684C7-D48B-47C8-B185-0B414A9AE12A}] => (Allow) C:\Users\Ivanek\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{7A4F417C-C7C6-45D5-A4AF-18FD88A7E26E}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{FE90D204-220A-4BEA-9525-108CF8191C28}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{B233B801-662A-4E90-8E87-A17AAC87AF66}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{8BE7E92B-D8E3-4C2B-BEA4-A2DFDAC2A39E}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{AB13C1D8-310E-4140-9941-06467EEEAAFA}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{298392E1-5F53-467B-9D72-3F310B2A0FAF}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{2F3BD7A7-5E70-4BF8-AA76-F90FB0E5CE98}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{EB1ABA87-8C4F-4AC1-9025-176D84DAFBD2}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{D265DC49-8747-432D-B2CB-1C820E550B27}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{08703F0F-E33D-4300-B452-EAFACF72C473}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9996439D-BE5F-4E19-B66F-D2E71F68DA1C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{9EB4F77B-0ADE-418A-89DA-A8559E3E58B5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{1D2C3EFF-478F-4A9F-BCFC-8D7C264E7F6F}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{DFCDBB77-A864-4790-8B47-BDDF2E5B0EE2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/03/2015 00:45:05 PM) (Source: MsiInstaller) (EventID: 11705) (User: IVAN-PC)
Description: Produkt: COMODO Internet Security - Chyba 1705 Probíhá předcházející instalace tohoto produktu. Chcete-li pokračovat, je nutné vrátit zpět změny provedené při této předchozí instalaci. Chcete tyto změny vrátit zpět?

Error: (12/03/2015 00:41:37 PM) (Source: Microsoft Security Client Setup) (EventID: 100) (User: IVAN-PC)
Description: HRESULT:0x8004FF11
Description:Can’t install Microsoft Security Essentials on a computer running in safe mode. Your computer is currently running in safe mode. To install Security Essentials, your computer must be running in normal mode. Please restart your computer in normal mode, and then try to run the Security Essentials Setup Wizard again. Error code:0x8004FF11.

Error: (12/03/2015 00:41:31 PM) (Source: Microsoft Security Client Setup) (EventID: 100) (User: IVAN-PC)
Description: HRESULT:0x8004FF11
Description:Can’t install Microsoft Security Essentials on a computer running in safe mode. Your computer is currently running in safe mode. To install Security Essentials, your computer must be running in normal mode. Please restart your computer in normal mode, and then try to run the Security Essentials Setup Wizard again. Error code:0x8004FF11.

Error: (12/03/2015 10:44:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: inSSIDerHome.exe, verze: 3.1.2.1, časové razítko: 0x52a6717a
Název chybujícího modulu: KERNELBASE.dll, verze: 6.1.7601.19045, časové razítko: 0x56258f05
Kód výjimky: 0xe0434352
Posun chyby: 0x0000c42d
ID chybujícího procesu: 0x1d44
Čas spuštění chybující aplikace: 0xinSSIDerHome.exe0
Cesta k chybující aplikaci: inSSIDerHome.exe1
Cesta k chybujícímu modulu: inSSIDerHome.exe2
ID zprávy: inSSIDerHome.exe3

Error: (12/03/2015 10:44:16 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: inSSIDerHome.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.OutOfMemoryException
Zásobník:
na MS.Win32.Penimc.IPimcManager.GetTabletCount(UInt32 ByRef)
na System.Windows.Input.PenThreadWorker+WorkerOperationGetTabletsInfo.OnDoWork()
na System.Windows.Input.PenThreadWorker+WorkerOperation.DoWork()
na System.Windows.Input.PenThreadWorker.ThreadProc()
na System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
na System.Threading.ThreadHelper.ThreadStart()

Error: (12/03/2015 10:31:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: inSSIDerHome.exe, verze: 3.1.2.1, časové razítko: 0x52a6717a
Název chybujícího modulu: KERNELBASE.dll, verze: 6.1.7601.19045, časové razítko: 0x56258f05
Kód výjimky: 0xe0434352
Posun chyby: 0x0000c42d
ID chybujícího procesu: 0x185c
Čas spuštění chybující aplikace: 0xinSSIDerHome.exe0
Cesta k chybující aplikaci: inSSIDerHome.exe1
Cesta k chybujícímu modulu: inSSIDerHome.exe2
ID zprávy: inSSIDerHome.exe3

Error: (12/03/2015 10:31:30 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: inSSIDerHome.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.OutOfMemoryException
Zásobník:
na MS.Win32.Penimc.IPimcManager.GetTabletCount(UInt32 ByRef)
na System.Windows.Input.PenThreadWorker+WorkerOperationGetTabletsInfo.OnDoWork()
na System.Windows.Input.PenThreadWorker+WorkerOperation.DoWork()
na System.Windows.Input.PenThreadWorker.ThreadProc()
na System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
na System.Threading.ThreadHelper.ThreadStart()

Error: (12/03/2015 10:30:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: inSSIDerHome.exe, verze: 3.1.2.1, časové razítko: 0x52a6717a
Název chybujícího modulu: KERNELBASE.dll, verze: 6.1.7601.19045, časové razítko: 0x56258f05
Kód výjimky: 0xe0434352
Posun chyby: 0x0000c42d
ID chybujícího procesu: 0x1f00
Čas spuštění chybující aplikace: 0xinSSIDerHome.exe0
Cesta k chybující aplikaci: inSSIDerHome.exe1
Cesta k chybujícímu modulu: inSSIDerHome.exe2
ID zprávy: inSSIDerHome.exe3

Error: (12/03/2015 10:30:27 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: inSSIDerHome.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.OutOfMemoryException
Zásobník:
na MS.Win32.Penimc.IPimcManager.GetTabletCount(UInt32 ByRef)
na System.Windows.Input.PenThreadWorker+WorkerOperationGetTabletsInfo.OnDoWork()
na System.Windows.Input.PenThreadWorker+WorkerOperation.DoWork()
na System.Windows.Input.PenThreadWorker.ThreadProc()
na System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
na System.Threading.ThreadHelper.ThreadStart()

Error: (12/02/2015 09:10:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: lightroom.exe, verze: 6.3.0.10, časové razítko: 0x564260ef
Název chybujícího modulu: Vulcan.dll, verze: 6.3.0.10, časové razítko: 0x56426020
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000003bc8
ID chybujícího procesu: 0x36bc
Čas spuštění chybující aplikace: 0xlightroom.exe0
Cesta k chybující aplikaci: lightroom.exe1
Cesta k chybujícímu modulu: lightroom.exe2
ID zprávy: lightroom.exe3


System errors:
=============
Error: (12/03/2015 00:49:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Eset Trial Reset neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (12/03/2015 00:49:45 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Eset Trial Reset bylo dosaženo časového limitu (30000 ms).

Error: (12/03/2015 00:49:44 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN se nepodařilo spustit.

Cesta k modulu: C:\Windows\system32\Rtlihvs.dll
Kód chyby: 126

Error: (12/03/2015 00:43:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Eset Trial Reset neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (12/03/2015 00:43:17 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Eset Trial Reset bylo dosaženo časového limitu (30000 ms).

Error: (12/03/2015 00:43:15 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN se nepodařilo spustit.

Cesta k modulu: C:\Windows\system32\Rtlihvs.dll
Kód chyby: 126

Error: (12/03/2015 00:42:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba COMODO Internet Security Helper Service neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (12/03/2015 00:42:58 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby COMODO Internet Security Helper Service bylo dosaženo časového limitu (30000 ms).

Error: (12/03/2015 00:39:49 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Prohledávání počítačů závisí na službě Server, která neuspěla při spuštění v důsledku následující chyby:
%%1068

Error: (12/03/2015 00:39:49 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Prohledávání počítačů závisí na službě Server, která neuspěla při spuštění v důsledku následující chyby:
%%1068


CodeIntegrity:
===================================
Date: 2015-11-18 12:38:32.501
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe because the set of per-page image hashes could not be found on the system.

Date: 2015-11-18 12:38:32.375
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe because the set of per-page image hashes could not be found on the system.

Date: 2015-11-18 12:38:32.219
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe because the set of per-page image hashes could not be found on the system.

Date: 2015-11-14 09:13:46.737
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe because the set of per-page image hashes could not be found on the system.

Date: 2015-11-14 09:13:46.613
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe because the set of per-page image hashes could not be found on the system.

Date: 2015-11-14 09:13:46.472
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe because the set of per-page image hashes could not be found on the system.

Date: 2015-11-12 11:11:16.161
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe because the set of per-page image hashes could not be found on the system.

Date: 2015-11-12 11:11:16.013
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe because the set of per-page image hashes could not be found on the system.

Date: 2015-11-12 11:11:15.856
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\AV\ESET NOD32 Antivirus 4.0\upgrade.exe because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz
Percentage of memory in use: 24%
Total physical RAM: 16375.43 MB
Available physical RAM: 12436.12 MB
Total Virtual: 32749.07 MB
Available Virtual: 28412.83 MB

==================== Drives ================================

Drive c: (System) (Fixed) (Total:390.53 GB) (Free:94.67 GB) NTFS
Drive d: (Data) (Fixed) (Total:1863.01 GB) (Free:373.17 GB) NTFS
Drive e: (Zalohy) (Fixed) (Total:540.89 GB) (Free:70.69 GB) NTFS
Drive h: (ZAKAZKY) (Fixed) (Total:2794.39 GB) (Free:675.1 GB) NTFS
Drive k: (WD_320) (Fixed) (Total:298.09 GB) (Free:112.93 GB) NTFS
Drive s: (EOS_DIGITAL) (Removable) (Total:29.71 GB) (Free:20.55 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 2794.5 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 298.1 GB) (Disk ID: 8D1DD9EE)
Partition 1: (Not Active) - (Size=298.1 GB) - (Type=42)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 7DCADF99)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=390.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=540.9 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 7DCADFAF)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

========================================================
Disk: 6 (Size: 29.7 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================

Re: Podezřelé chování

Napsal: 03 pro 2015 13:25
od JaRon
citat:
Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.

a napis, ci je to lepsie :???:

Re: Podezřelé chování

Napsal: 03 pro 2015 13:38
od messtor
Zde je zmiňovaný log. Zkusím chvíli pracovat a uvidím, jestli nastane nějaká změna. Určitě sem poreferuju ještě. Díky moc!

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.1 (11.24.2015)
Operating System: Windows 7 Home Premium x64
Ran by Ivanek (Administrator) on źt 03.12.2015 at 13:33:41,29
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 12

Successfully deleted: C:\ProgramData\hitsblender (Folder)
Successfully deleted: C:\ProgramData\trymedia (Folder)
Successfully deleted: C:\Users\Ivanek\AppData\Local\{13D6F8AC-D84A-45DE-80AD-B5FA56D04CE4} (Empty Folder)
Successfully deleted: C:\Users\Ivanek\AppData\Local\{559740EF-3AFF-4BDD-A5FB-F7D0D5ADAFAC} (Empty Folder)
Successfully deleted: C:\Users\Ivanek\AppData\Local\{68874410-D50F-4115-9CAF-F11D7C3B6D82} (Empty Folder)
Successfully deleted: C:\Users\Ivanek\AppData\Local\{D421854B-0560-45CD-AE95-AA712955A208} (Empty Folder)
Successfully deleted: C:\Users\Ivanek\AppData\Local\hitsblender (Folder)
Successfully deleted: C:\Users\Ivanek\AppData\Local\tempdir (Folder)
Successfully deleted: C:\Users\Ivanek\AppData\Roaming\pdfforge (Folder)
Successfully deleted: C:\Users\Ivanek\AppData\Roaming\yourfiledownloader (Folder)
Successfully deleted: C:\Windows\system32\Tasks\Avira System Speedup Tray (Task)
Successfully deleted: C:\Program Files (x86)\daemon tools toolbar (Folder)



Registry: 2

Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} (Registry Value)
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 03.12.2015 at 13:35:49,37
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Re: Podezřelé chování

Napsal: 03 pro 2015 13:43
od JaRon
OKi
a nemas zac :)

Re: Podezřelé chování

Napsal: 03 pro 2015 14:14
od messtor
Přesně naopak, ani netušíte, jak záslužnou práci tady odvádíte! ;)
Ještě se zeptám, u té Aviry jsem někde četl, že by se měla používat s dobrým firewallem...je to nutné? Případně doporučíte mi nějaký dobrý free firewall?

Re: Podezřelé chování

Napsal: 03 pro 2015 14:24
od JaRon
no to s FW platilo skor za doby XP - FW pri w7 a vyssie je dostacujuci
skor by si popri Avire doporucil 1x za 2 mesiace kontrolu s MBAM

Re: Podezřelé chování

Napsal: 03 pro 2015 14:32
od messtor
OK, MBAM mám, občas to projedu. Díky
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz