Problém - "Yahoo"
Napsal: 09 kvě 2016 14:20
Dobrý deň, mám menší problém. Keď zadám dopyt do Googlu, na začiatku sa mi vždy zobrazia odkazy, ktoré sa tvária ako Yahoo, no v skutočnosti ma po kliknutí na ne presmeruje na nejaké reklamné stránky. (viď prílohu) Počítač som prebehol Eset Smart Security aj Malwarebytes, nepomohlo. Posielam log z FRST. Vedel by sa mi na to niekto pozrieť, prosím? Ďakujem vopred.
FRST.txt
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-05-2016
Ran by Jakubko (administrator) on JAKUB (09-05-2016 14:57:38)
Running from C:\Users\Jakubko\Downloads
Loaded Profiles: Jakubko (Available Profiles: Jakubko & Free)
Platform: Windows 8 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(ANDREA VACONDIO) C:\ProgramData\ANDREA VACONDIO\PDFsam Manager\PDFsam Enhanced\PDFsam Manager.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Filipe Lourenço) C:\Program Files (x86)\BatteryCare\BatteryCare.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
() C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\ace_engine.exe
() C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\ace_update.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(BitTorrent Inc.) C:\Users\Jakubko\AppData\Roaming\uTorrent\uTorrent.exe
(BitTorrent Inc.) C:\Users\Jakubko\AppData\Roaming\uTorrent\updates\3.4.6_42094\utorrentie.exe
(BitTorrent Inc.) C:\Users\Jakubko\AppData\Roaming\uTorrent\updates\3.4.6_42094\utorrentie.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\WINWORD.EXE
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Jakubko\Downloads\FRST64 (2).exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5595848 2015-07-08] (ESET)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2016-04-05] (LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\Run: [RocketDock] => "C:\Program Files\RocketDock\RocketDock.exe"
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\Run: [DU Meter] => "C:\Program Files (x86)\DU Meter\DUMeter.exe" /autostart
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\Run: [BatteryCare] => C:\Program Files (x86)\BatteryCare\BatteryCare.exe [796160 2015-10-25] (Filipe Lourenço)
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\RunOnce: [Uninstall C:\Users\Jakubko\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jakubko\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64"
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\RunOnce: [Uninstall C:\Users\Jakubko\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jakubko\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64"
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\MountPoints2: {303d40f4-261a-11e5-bec4-b8763f0ffd04} - "G:\LG_PC_Programs.exe"
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\MountPoints2: {412c5d44-2201-11e3-be77-b8763f0ffd04} - "G:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\MountPoints2: {692bc9db-5d11-11e3-be7a-b8763f0ffd04} - "G:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
Startup: C:\Users\Jakubko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-02-25]
ShortcutTarget: Dropbox.lnk -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{B19DAFF3-11D7-491A-B8B8-3C62919F0E54}: [DhcpNameServer] 158.195.6.2 158.195.6.3 158.195.4.3
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKU\S-1-5-21-303898890-2447975317-2344255173-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-303898890-2447975317-2344255173-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-303898890-2447975317-2344255173-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-04-27] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-27] (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-27] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-27] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Jakubko\AppData\Roaming\Mozilla\Firefox\Profiles\vidg21l8.default
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-27] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-27] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-03] (Adobe Systems)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-27] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin-x32: @veetle.com/veetleCorePlugin,version=0.9.19 -> C:\Program Files (x86)\Veetle\plugins\npVeetle.dll [2012-01-14] (Veetle Inc)
FF Plugin-x32: @veetle.com/veetlePlayerPlugin,version=0.9.18 -> C:\Program Files (x86)\Veetle\Player\npvlc.dll [2012-01-14] (Veetle Inc)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-12-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-12-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2013-09-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-03] (Adobe Systems)
FF Plugin HKU\S-1-5-21-303898890-2447975317-2344255173-1001: @acestream.net/acestreamplugin,version=2.2.2-next -> C:\Users\Jakubko\AppData\Roaming\ACEStream\player\npace_plugin.dll [2014-07-09] (Innovative Digital Technologies)
FF Plugin HKU\S-1-5-21-303898890-2447975317-2344255173-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Jakubko\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-303898890-2447975317-2344255173-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Jakubko\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-303898890-2447975317-2344255173-1001: anvisoft.com/AdblockPlugin -> C:\ProgramData\Anvisoft\Anvi Smart Defender 2\extensions\npAdblockPlugin.dll [No File]
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)
FF Extension: Gmail panel - C:\Users\Jakubko\AppData\Roaming\Mozilla\Firefox\Profiles\vidg21l8.default\extensions\gmail_panel@alejandrobrizuela.com.ar.xpi [2016-01-14]
FF Extension: Fasterfox - C:\Users\Jakubko\AppData\Roaming\Mozilla\Firefox\Profiles\vidg21l8.default\extensions\{c36177c0-224a-11da-8cd6-0800200c9a91}.xpi [2016-01-14]
FF Extension: Adblock Plus - C:\Users\Jakubko\AppData\Roaming\Mozilla\Firefox\Profiles\vidg21l8.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-01-14]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\Firefox\Extensions: [magicplayer@torrentstream.org] - C:\Users\Jakubko\AppData\Roaming\ACEStream\extensions\firefox\magicplayer@torrentstream.org
FF Extension: TS Magic Player - C:\Users\Jakubko\AppData\Roaming\ACEStream\extensions\firefox\magicplayer@torrentstream.org [2014-09-13] [not signed]
FF HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi => not found
Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\PepperFlash\pepflashplayer.dll => No File
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll => No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (McAfee SecurityCenter) - c:\progra~2\mcafee\msc\npmcsn~1.dll => No File
CHR Profile: C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-14]
CHR Extension: (Google Search) - C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-14]
CHR Extension: (Gmail™ Notifier) - C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcjichoefijpinlfnjghokpkojhlhkgl [2016-03-17]
CHR Extension: (Nepi Jano!) - C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmiebaglkdeebobffhbomapifjjjjakj [2016-04-17]
CHR Extension: (Invite All (for Facebook)) - C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default\Extensions\eopekjehpibhfpjjcokfmhcaeiclddih [2016-05-01]
CHR Extension: (AdBlock) - C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-04-17]
CHR Extension: (F.B Purity-Clean Up Facebook) - C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncdlagniojmheiklojdcpdaeepochckl [2016-05-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-01]
CHR Extension: (Gmail) - C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-14]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found>
CHR HKU\S-1-5-21-303898890-2447975317-2344255173-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kpckgflgdapkpabemgkielbefdildaio] - C:\Users\Jakubko\AppData\Roaming\ACEStream\extensions\chrome_new\magicplayer.crx [2014-01-28]
CHR HKLM-x32\...\Chrome\Extension: [lhmiofmipcpmhgihiecmpiekcacigpgb] - C:\ProgramData\Anvisoft\Anvi Smart Defender 2\extensions\chrome.crx <not found>
StartMenuInternet: chrome.exe - C:\Users\Jakubko\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated)
R3 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1578496 2012-08-14] (IVT Corporation) [File not signed]
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [138752 2012-08-14] (IVT Corporation) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1353720 2015-07-08] (ESET)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R3 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
R3 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2016-04-05] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 PDFsam Manager; C:\ProgramData\ANDREA VACONDIO\PDFsam Manager\PDFsam Enhanced\PDFsam Manager.exe [1050224 2015-11-13] (ANDREA VACONDIO)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
S2 mcbootdelaystartsvc; "C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe" /McCoreSvc [X]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 Apowersoft_AudioDevice; C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (Wondershare)
S3 ATP; C:\Windows\System32\drivers\AsusTP.sys [65784 2013-01-16] (ASUS Corporation)
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
U4 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [117632 2013-06-01] (Microsoft Corporation)
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [48736 2012-08-14] (Ralink Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2013-10-10] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [255240 2015-07-14] (ESET)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-11-23] (Broadcom Corporation)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [251632 2015-07-14] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [178520 2015-07-14] (ESET)
R2 epfw; C:\Windows\system32\DRIVERS\epfw.sys [231520 2015-07-14] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [53360 2015-07-14] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [72400 2015-07-14] (ESET)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2016-04-05] (LogMeIn Inc.)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-05-09] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [695392 2012-08-14] (Ralink Technology, Corp.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-10-10] (Duplex Secure Ltd.)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [36288 2013-07-02] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [247216 2013-07-02] (Microsoft Corporation)
S3 WinRing0_1_2_0; C:\Program Files (x86)\BatteryCare\WinRing0x64.sys [14544 2014-03-22] (OpenLibSys.org)
U3 auldm72o; C:\Windows\System32\Drivers\auldm72o.sys [0 ] (Intel Corporation) <==== ATTENTION (zero byte File/Folder)
S3 avchv; \SystemRoot\system32\DRIVERS\avchv.sys [X]
U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
S3 DUMeterDrv; \??\C:\Program Files (x86)\DU Meter\DUMETR64.SYS [X]
U0 msahci; no ImagePath
S3 vmci; \SystemRoot\System32\drivers\vmci.sys [X]
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-05-09 14:57 - 2016-05-09 14:59 - 00028360 _____ C:\Users\Jakubko\Downloads\FRST.txt
2016-05-09 14:56 - 2016-05-09 14:56 - 02379264 _____ (Farbar) C:\Users\Jakubko\Downloads\FRST64 (2).exe
2016-05-09 14:55 - 2016-05-09 14:55 - 00112640 _____ (forum.viry.cz) C:\Users\Jakubko\Downloads\Nepotvrdené 535686.crdownload
2016-05-09 12:26 - 2016-05-09 12:26 - 00001104 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-05-09 12:24 - 2016-05-09 12:24 - 22851472 _____ (Malwarebytes ) C:\Users\Jakubko\Downloads\mbam-setup-2.2.1.1043.exe
2016-05-08 22:41 - 2016-05-08 22:41 - 13618688 _____ C:\Users\Jakubko\Downloads\TAX-HAVENS-1 (1).ppt
2016-05-08 22:06 - 2016-05-08 22:06 - 13618688 _____ C:\Users\Jakubko\Downloads\TAX-HAVENS-1.ppt
2016-05-08 19:56 - 2016-05-08 19:56 - 02448928 _____ C:\Users\Jakubko\Downloads\0c96053bcc163aaefd000000.pdf
2016-05-07 15:34 - 2016-05-07 15:35 - 10297641 _____ C:\Users\Jakubko\Downloads\13121300_1016151945132799_2142642289_n.mp4
2016-05-05 19:21 - 2016-05-05 19:21 - 01380712 _____ C:\Users\Jakubko\Downloads\SteamSetup.exe
2016-05-05 17:39 - 2016-05-05 17:39 - 00023106 _____ C:\Users\Jakubko\Downloads\medzinarodne_vztahy_3.roc..odt
2016-05-03 20:18 - 2016-05-05 11:32 - 07846978 _____ C:\Users\Jakubko\Desktop\Leto 2016.psd
2016-05-03 07:39 - 2016-05-03 07:39 - 00283848 _____ C:\Windows\Minidump\050316-33234-01.dmp
2016-05-01 18:08 - 2016-05-01 18:09 - 11061387 _____ C:\Users\Jakubko\Downloads\13075303_1110584919008738_1123811804_n.mp4
2016-05-01 16:01 - 2016-05-01 16:01 - 00184320 _____ C:\Users\Jakubko\Downloads\LP_v_EU_final.ppt
2016-05-01 07:22 - 2016-05-01 07:22 - 00283848 _____ C:\Windows\Minidump\050116-37421-01.dmp
2016-04-30 18:14 - 2016-04-30 18:14 - 02872127 _____ C:\Users\Jakubko\Downloads\DTEOxaWn4JUcMlWu.mp4
2016-04-30 16:09 - 2016-04-30 16:09 - 01198609 _____ C:\Users\Jakubko\Downloads\civil_justice_guide_EU_sk.pdf
2016-04-30 14:27 - 2016-04-30 14:29 - 37481429 _____ C:\Users\Jakubko\Downloads\13008152_926709747450433_999622784_n.mp4
2016-04-30 08:12 - 2016-05-08 21:34 - 00588316 _____ C:\Users\Jakubko\Desktop\Fakt.psd
2016-04-29 21:42 - 2016-05-04 17:56 - 00000000 ____D C:\Users\Jakubko\Desktop\Futbal
2016-04-29 13:30 - 2016-04-29 13:30 - 00092048 _____ C:\Users\Jakubko\Downloads\552.pdf
2016-04-28 15:41 - 2016-04-28 15:41 - 00185344 _____ C:\Users\Jakubko\Downloads\Volný pohyb sluzieb.ppt
2016-04-27 16:47 - 2016-05-09 06:07 - 00000000 ____D C:\Users\Jakubko\AppData\LocalLow\uTorrent
2016-04-27 16:27 - 2016-04-27 16:27 - 07186992 _____ (Microsoft Corporation) C:\Users\Jakubko\Downloads\vcredist_x64.exe
2016-04-27 10:31 - 2016-04-27 10:31 - 00266706 _____ C:\Users\Jakubko\Downloads\vypis_ucet_SK0502000000003109393251.pdf
2016-04-27 09:09 - 2016-04-27 09:09 - 00270688 _____ C:\Users\Jakubko\Downloads\Oznámenie komisie (329 kB) zverejnené v Ústrednom vestníku Európskej únie, týkajúce sa článku 4 ods (1).pdf
2016-04-27 09:08 - 2016-04-27 09:08 - 00270688 _____ C:\Users\Jakubko\Downloads\Oznámenie komisie (329 kB) zverejnené v Ústrednom vestníku Európskej únie, týkajúce sa článku 4 ods.pdf
2016-04-27 09:08 - 2016-04-27 09:08 - 00229011 _____ C:\Users\Jakubko\Downloads\kontaktné miesta 2016.pdf
2016-04-27 07:42 - 2016-04-27 07:39 - 00110144 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-64.dll
2016-04-27 07:42 - 2016-04-27 07:38 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-04-27 07:40 - 2016-04-27 07:39 - 00110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-04-27 07:27 - 2016-04-27 07:27 - 00283848 _____ C:\Windows\Minidump\042716-52468-01.dmp
2016-04-26 21:25 - 2016-04-26 21:25 - 00269836 _____ C:\Users\Jakubko\Downloads\menova_sustava.pdf
2016-04-24 21:55 - 2016-04-24 21:55 - 00000000 _____ C:\Users\Jakubko\Desktop\OBLEK.txt
2016-04-23 20:43 - 2016-04-23 20:43 - 00015838 _____ C:\Users\Jakubko\Downloads\int organisatons 15_16 evaluation.xlsx
2016-04-22 19:09 - 2016-04-22 19:09 - 02393289 _____ C:\Users\Jakubko\Downloads\statnice.zip
2016-04-20 12:11 - 2016-04-20 12:15 - 00162817 _____ C:\Users\Jakubko\Desktop\SV-BA.pdf
2016-04-20 07:43 - 2016-05-01 08:43 - 00000000 ____D C:\Users\Jakubko\Desktop\NR SR
2016-04-19 14:02 - 2016-04-19 14:02 - 08099096 _____ C:\Users\Jakubko\Downloads\Zranený zubor v opatere sninského zverolekára.mp4
2016-04-18 14:11 - 2016-04-18 14:12 - 37153768 _____ C:\Users\Jakubko\Downloads\Obvinili ukrajinských pašerákov...mp4
2016-04-17 20:37 - 2016-04-17 20:37 - 01959424 _____ (BitTorrent Inc.) C:\Users\Jakubko\Downloads\uTorrent.exe
2016-04-17 19:21 - 2016-04-17 19:21 - 02375680 _____ (Farbar) C:\Users\Jakubko\Downloads\FRST64 (1).exe
2016-04-17 10:09 - 2016-04-17 10:09 - 00283848 _____ C:\Windows\Minidump\041716-51390-01.dmp
2016-04-16 19:11 - 2016-04-16 19:11 - 00000000 ____D C:\rsit
2016-04-16 19:11 - 2016-04-16 19:11 - 00000000 ____D C:\Program Files\trend micro
2016-04-16 19:10 - 2016-04-16 19:10 - 01222144 _____ C:\Users\Jakubko\Downloads\RSITx64.exe
2016-04-16 19:10 - 2016-04-16 19:10 - 00029696 _____ C:\Users\Jakubko\AppData\Local\MSGBOX.EXE
2016-04-16 19:09 - 2016-04-16 19:10 - 00112640 _____ (forum.viry.cz) C:\Users\Jakubko\Downloads\FRSTLauncher.exe
2016-04-16 17:56 - 2016-04-16 17:56 - 01726464 _____ (Farbar) C:\Users\Jakubko\Downloads\FRST.exe
2016-04-16 17:55 - 2016-04-16 17:55 - 02375168 _____ (Farbar) C:\Users\Jakubko\Downloads\FRST64.exe
2016-04-13 20:59 - 2016-04-13 20:59 - 00003145 _____ C:\Users\Jakubko\Desktop\VLC.lnk
2016-04-10 07:08 - 2016-05-03 07:39 - 378782606 _____ C:\Windows\MEMORY.DMP
2016-04-10 07:08 - 2016-04-10 07:08 - 00283904 _____ C:\Windows\Minidump\041016-37625-01.dmp
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-12-01 11:16 - 2013-09-16 14:12 - 00045056 _____ C:\Windows\SysWOW64\acovcnt.exe
2016-12-01 10:48 - 2014-08-26 15:18 - 00003490 _____ C:\Windows\System32\Tasks\AutoKMS
2016-05-09 15:01 - 2013-09-16 17:40 - 00000000 ____D C:\Users\Jakubko\AppData\Roaming\uTorrent
2016-05-09 14:58 - 2013-09-16 16:59 - 10586112 ___SH C:\Users\Jakubko\Desktop\Thumbs.db
2016-05-09 14:56 - 2016-03-09 22:53 - 00000000 ____D C:\FRST
2016-05-09 14:52 - 2016-03-28 13:38 - 00000000 ____D C:\Users\Jakubko\Desktop\Štátnice
2016-05-09 14:11 - 2013-09-16 11:36 - 00000000 ____D C:\Users\Jakubko\AppData\Local\Packages
2016-05-09 14:07 - 2016-01-14 14:43 - 00000956 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-05-09 13:00 - 2016-03-09 22:37 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-05-09 12:28 - 2013-09-16 14:17 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-303898890-2447975317-2344255173-1001
2016-05-09 12:26 - 2016-03-09 22:35 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-05-09 12:25 - 2014-07-12 15:20 - 00000948 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-303898890-2447975317-2344255173-1001UA.job
2016-05-09 09:07 - 2016-01-14 14:43 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-09 07:42 - 2014-06-02 21:25 - 00000000 ____D C:\Users\Jakubko\AppData\Roaming\vlc
2016-05-09 06:51 - 2012-07-26 09:28 - 00848230 _____ C:\Windows\system32\PerfStringBackup.INI
2016-05-09 06:51 - 2012-07-26 07:37 - 00000000 ____D C:\Windows\Inf
2016-05-09 06:08 - 2015-10-13 09:02 - 00000000 ____D C:\Users\Jakubko\Desktop\Download
2016-05-09 06:05 - 2012-08-15 18:46 - 00000739 _____ C:\Windows\SysWOW64\bscs.ini
2016-05-09 06:02 - 2013-03-31 10:44 - 00004268 _____ C:\Windows\SysWOW64\LOCALSERVICE.INI
2016-05-09 06:02 - 2013-03-31 10:44 - 00000043 _____ C:\Windows\SysWOW64\LOCALDEVICE.INI
2016-05-09 00:22 - 2013-10-29 10:22 - 00000427 _____ C:\Windows\SysWOW64\REMOTEDEVICE.INI
2016-05-08 22:41 - 2015-11-24 16:53 - 00000000 ____D C:\Users\Jakubko\Desktop\BC
2016-05-08 21:51 - 2013-09-17 11:46 - 00000132 _____ C:\Users\Jakubko\AppData\Roaming\Adobe PNG Format CS5 Prefs
2016-05-08 18:50 - 2014-03-23 15:40 - 00000000 ____D C:\Users\Jakubko\AppData\Roaming\.ACEStream
2016-05-08 18:48 - 2013-10-23 18:05 - 00000000 ___HD C:\_acestream_cache_
2016-05-08 15:25 - 2014-07-12 15:20 - 00000926 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-303898890-2447975317-2344255173-1001Core.job
2016-05-08 07:47 - 2015-12-03 20:02 - 00127673 _____ C:\Users\Jakubko\Desktop\Dresy.xlsx
2016-05-07 15:35 - 2013-10-13 15:38 - 06547456 ___SH C:\Users\Jakubko\Downloads\Thumbs.db
2016-05-04 07:08 - 2015-12-19 18:23 - 00000000 ____D C:\Users\Jakubko\AppData\Local\LogMeIn Hamachi
2016-05-03 09:21 - 2016-02-27 13:23 - 00000000 ____D C:\Users\Jakubko\Desktop\Holokaust
2016-05-03 08:13 - 2016-01-14 14:44 - 00002209 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-03 07:46 - 2013-09-16 16:36 - 00000408 _____ C:\Users\Jakubko\AppData\Roaming\sp_data.sys
2016-05-03 07:46 - 2013-03-31 10:47 - 00003056 _____ C:\Windows\System32\Tasks\ASUS P4G
2016-05-03 07:46 - 2013-03-31 10:47 - 00003028 _____ C:\Windows\System32\Tasks\ASUS USB Charger Plus
2016-05-03 07:39 - 2014-11-08 14:37 - 00000000 ____D C:\Windows\Minidump
2016-05-03 07:39 - 2012-07-26 09:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-05-02 12:07 - 2014-06-30 11:17 - 00005551 _____ C:\Users\Jakubko\Desktop\Neviem.txt
2016-05-02 10:14 - 2015-07-17 14:31 - 00000000 ____D C:\Users\Jakubko\Desktop\Weby
2016-04-30 11:07 - 2016-02-26 16:19 - 00000000 ____D C:\Users\Jakubko\Desktop\KOMP
2016-04-29 13:22 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent
2016-04-29 13:21 - 2012-07-26 10:12 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-27 07:50 - 2013-09-26 10:36 - 00000000 ____D C:\ProgramData\Oracle
2016-04-27 07:42 - 2014-10-16 17:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-04-27 07:42 - 2014-10-16 17:33 - 00000000 ____D C:\Program Files (x86)\Java
2016-04-27 07:41 - 2016-04-01 12:28 - 00000000 ____D C:\Program Files\Java
2016-04-27 07:40 - 2015-08-28 18:26 - 00000000 ____D C:\Users\Jakubko\.oracle_jre_usage
2016-04-17 23:15 - 2016-01-25 09:45 - 00000000 ____D C:\Users\Jakubko\Desktop\TO
2016-04-16 19:15 - 2016-01-14 20:51 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-04-09 21:52 - 2016-03-19 10:50 - 00000000 ____D C:\Users\Jakubko\Documents\NHL09
2016-04-09 21:01 - 2013-10-10 12:23 - 00000000 ____D C:\Users\Jakubko\AppData\Roaming\DAEMON Tools Lite
==================== Files in the root of some directories =======
2013-11-11 21:43 - 2014-07-20 14:08 - 0000132 _____ () C:\Users\Jakubko\AppData\Roaming\Adobe GIF Format CS5 Prefs
2013-09-17 11:46 - 2016-05-08 21:51 - 0000132 _____ () C:\Users\Jakubko\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-04-25 15:22 - 2014-04-25 16:05 - 0000000 _____ () C:\Users\Jakubko\AppData\Roaming\FileIn.cns
2014-04-25 15:22 - 2014-04-25 16:05 - 0000000 _____ () C:\Users\Jakubko\AppData\Roaming\FileOut.cns
2013-09-16 16:36 - 2016-05-03 07:46 - 0000408 _____ () C:\Users\Jakubko\AppData\Roaming\sp_data.sys
2013-11-12 12:44 - 2016-01-15 17:42 - 0001456 _____ () C:\Users\Jakubko\AppData\Local\Adobe Save for Web 12.0 Prefs
2016-04-16 19:10 - 2016-04-16 19:10 - 0029696 _____ () C:\Users\Jakubko\AppData\Local\MSGBOX.EXE
2014-10-31 20:48 - 2014-10-31 20:48 - 0007605 _____ () C:\Users\Jakubko\AppData\Local\Resmon.ResmonCfg
2012-11-23 15:06 - 2012-09-07 13:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2012-11-23 15:06 - 2009-07-22 12:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2012-11-23 15:06 - 2012-09-07 13:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS
Some files in TEMP:
====================
C:\Users\Jakubko\AppData\Local\Temp\bc3a874f-12ca-4096-8773-7988f1694d29.exe
C:\Users\Jakubko\AppData\Local\Temp\d58cc570-8cad-410d-bdb2-83db06b22aad.exe
C:\Users\Jakubko\AppData\Local\Temp\drm_dyndata_7370012.dll
C:\Users\Jakubko\AppData\Local\Temp\f543cfae-6636-4e67-b1aa-8ef34fc68906.exe
C:\Users\Jakubko\AppData\Local\Temp\jre-8u77-windows-au.exe
C:\Users\Jakubko\AppData\Local\Temp\jre-8u91-windows-au.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-05-07 13:52
==================== End of FRST.txt ============================
Addition.txt
Additional scan result of Farbar Recovery Scan Tool (x64) Version:07-05-2016
Ran by Jakubko (2016-05-09 15:07:08)
Running from C:\Users\Jakubko\Downloads
Windows 8 (X64) (2013-09-16 09:36:12)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-303898890-2447975317-2344255173-500 - Administrator - Disabled)
Free (S-1-5-21-303898890-2447975317-2344255173-1005 - Limited - Enabled) => C:\Users\Free.Jakub
Guest (S-1-5-21-303898890-2447975317-2344255173-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-303898890-2447975317-2344255173-1003 - Limited - Enabled)
Jakubko (S-1-5-21-303898890-2447975317-2344255173-1001 - Administrator - Enabled) => C:\Users\Jakubko
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Smart Security 8.0 (Disabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personálny Firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\uTorrent) (Version: 3.4.6.42094 - BitTorrent Inc.)
Ace Stream Media 2.2.2-next (HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\AceStream) (Version: 2.2.2-next - Ace Stream Media) <==== ATTENTION
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 17.0.0.144 - Adobe Systems Incorporated)
Adobe Digital Editions 4.0 (HKLM-x32\...\Adobe Digital Editions 4.0) (Version: 4.0 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Illustrator CS6 (HKLM-x32\...\{4869414E-7AEA-4C8E-BE1C-8D40977FD517}) (Version: 16.0 - Adobe Systems Incorporated)
Adobe Photoshop CS5 (HKLM-x32\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Reader X (10.1.8) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.8 - Adobe Systems Incorporated)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.9 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 2.0.4 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.03.0004 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.5 - ASUS)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Atheros Communications Inc.)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0023 - ASUS)
BatteryCare 0.9.26.0 (HKLM-x32\...\{C6A6036D-FBD0-4324-BEAA-C0845257160C}_is1) (Version: 0.9.26.0 - Filipe Lourenço)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.66.1075 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.10 - Piriform)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0337 - Disc Soft Ltd)
Dropbox (HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\Dropbox) (Version: 3.2.6 - Dropbox, Inc.)
ESET Smart Security (HKLM\...\{8B56A9EA-22AD-4DA8-9744-E63DCEEFA6C6}) (Version: 8.0.319.1 - ESET, spol s r. o.)
f.lux (HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\Flux) (Version: - )
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
FastStone Photo Resizer 3.3 (HKLM-x32\...\FastStone Photo Resizer) (Version: 3.3 - FastStone Soft.)
Fotogaléria (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Free Video Cutter Joiner 10.4 (HKLM-x32\...\{8C5A4758-C782-4200-B337-DB3466D33ADD}}_is1) (Version: 10.4 - DVDVideoMedia, Inc.)
Free Video Volume Booster v1.9 (HKLM-x32\...\Free Video Volume Booster_is1) (Version: 1.9.0.0 - DVDAVITools)
Galeria fotografii (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Gephi 0.8.2 (HKLM-x32\...\{51722911-C391-4118-97BF-B50100D2AB15}_is1) (Version: - Gephi)
GIF Movie Gear 4.2.3 (HKLM-x32\...\GIF Movie Gear_is1) (Version: - gamani productions)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.94 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2867 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
JuiceboxBuilder-Lite (HKLM-x32\...\JuiceboxBuilder-Lite) (Version: 1.4.4 - SimpleViewer Inc)
JuiceboxBuilder-Lite (x32 Version: 1.4.4 - SimpleViewer Inc) Hidden
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.422 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.422 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware verzia 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Manager (x32 Version: 3.0.7.25771 - ANDREA VACONDIO) Hidden
Microsoft Office 2013 Professional Plus (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\SkyDriveSetup.exe) (Version: 17.0.2003.1112 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 43.0.4 (x86 sk) (HKLM-x32\...\Mozilla Firefox 43.0.4 (x86 sk)) (Version: 43.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.4 - Mozilla)
MyBitCast 2.0 (HKLM-x32\...\MyBitCast) (Version: 2.0 - ASUS)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PDFsam Basic (HKLM-x32\...\{96ABFF50-88F5-426E-96CC-80C98F198C4D}) (Version: 3.0.20.0 - Andrea Vacondio)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Podstawowe programy Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.5.7.2450 - Jan Fiala)
R for Windows 3.0.2 (HKLM\...\R for Windows 3.0.2_is1) (Version: 3.0.2 - R Core Team)
Ralink Bluetooth Stack64 (HKLM\...\{ED818A3C-3DF5-CDCF-3DB2-A646D7B31A16}) (Version: 9.0.717.0 - Ralink Corporation)
Ralink RT2860 Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}) (Version: 1.2.0.41 - Ralink)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6798 - Realtek Semiconductor Corp.)
RStudio (HKLM-x32\...\RStudio) (Version: 0.98.501 - RStudio)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SopCast 3.8.3 (HKLM-x32\...\SopCast) (Version: 3.8.3 - www.sopcast.com)
System Requirements Lab CYRI (HKLM-x32\...\{1110A014-1471-4B66-BFDC-E8EED120CC59}) (Version: 6.0.20.0 - Husdawg, LLC)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
Unity Web Player (HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Veetle TV (HKLM-x32\...\Veetle TV) (Version: 0.9.19 - Veetle, Inc)
Vegas Pro 12.0 (64-bit) (HKLM\...\{A7500970-FE98-11E1-B560-F04DA23A5C58}) (Version: 12.0.367 - Sony)
Video Download Capture version 5.1.1 (HKLM-x32\...\{3C9D008D-3716-4C3F-90CD-38ED57568FAB}_is1) (Version: 5.1.1 - APOWERSOFT LIMITED)
VLC media player 2.0.5 (HKLM-x32\...\VLC media player) (Version: 2.0.5 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.1 - ASUS)
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{724FE766-71C2-4E6E-8379-CD0EF5E51BDD}\InprocServer32 -> C:\Users\Jakubko\AppData\Local\Google\Update\1.3.28.17\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1B4268FE-D24B-4571-87E9-4173B73B71E0} - System32\Tasks\{BA8C1A9E-9B9F-400E-9057-1A688487C3A4} => pcalua.exe -a C:\Users\Jakubko\Desktop\dopiči\MF3200_MFDrivers_Win_x32_EN_7\Setup.exe -d C:\Users\Jakubko\Desktop\dopiči\MF3200_MFDrivers_Win_x32_EN_7
Task: {2C38D3FF-112B-4253-BEB3-22C08EC0AC5F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-14] (Google Inc.)
Task: {4D357D5C-DA23-49D6-BCC7-EE68B4321C27} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-303898890-2447975317-2344255173-1001UA => C:\Users\Jakubko\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-07-12] (Facebook Inc.)
Task: {62879AEE-AE55-448E-92E1-CE65E539A703} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {6DAF74FF-D8B8-4B20-A95C-32C18DEB1B9F} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-09-18] (ASUSTek Computer Inc.)
Task: {8CAE2F8E-AFBD-4445-A039-7C64D8F5F74D} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-303898890-2447975317-2344255173-1001Core => C:\Users\Jakubko\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-07-12] (Facebook Inc.)
Task: {93CA7E2E-50C8-48FE-8C3F-C01CFC012169} - System32\Tasks\GoogleUpdateTaskMachineUA1cf4c2f423ca369 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-14] (Google Inc.)
Task: {9AFE28A3-D2EC-4D7A-AF0B-6991ED612E3D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-09-16] (Piriform Ltd)
Task: {9EB09F25-39DD-40BC-937A-1CC15C028071} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-08-24] (ASUS)
Task: {AAE875CB-D382-4D22-B271-CCBE7B60FE46} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {C4C08318-827F-4728-B645-199D3154BD19} - System32\Tasks\{3A16869A-98D7-455E-AE62-FD6425EB19EC} => pcalua.exe -a "C:\Program Files (x86)\Counter-Strike 1.6\Uninstal.exe"
Task: {DDE1001E-9E6A-44F6-B902-D34E264C61CC} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {E8D8864E-D0CD-44DE-A69E-38D4192856E1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-14] (Google Inc.)
Task: {ED82DCAC-7631-4E57-ABDE-4CBCBFB7214B} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2013-11-05] ()
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-303898890-2447975317-2344255173-1001Core.job => C:\Users\Jakubko\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-303898890-2447975317-2344255173-1001UA.job => C:\Users\Jakubko\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2012-08-14 15:13 - 2012-08-14 15:13 - 00009728 _____ () C:\Windows\system32\BsHelpCSps.dll
2010-07-15 06:44 - 2010-07-15 06:44 - 00020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2012-08-15 18:20 - 2012-08-15 18:20 - 00356352 _____ () C:\Windows\system32\BsExtendFunc.dll
2012-08-14 15:11 - 2012-08-14 15:11 - 00022528 _____ () C:\Windows\system32\BsTrace.dll
2012-08-14 15:13 - 2012-08-14 15:13 - 00052736 _____ () C:\Windows\system32\BlueSoleilCSps.dll
2014-01-04 01:17 - 2014-03-22 14:08 - 00252928 _____ () C:\Program Files (x86)\BatteryCare\OpenHardwareMonitorLib.dll
2013-01-18 08:38 - 2012-10-15 06:09 - 00094208 _____ () C:\Windows\system32\IccLibDll_x64.dll
2012-08-24 18:26 - 2012-08-24 18:26 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2014-03-18 13:36 - 2014-09-25 13:57 - 00027904 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\ace_engine.exe
2013-03-29 13:18 - 2013-03-29 13:18 - 00026744 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\ace_update.exe
2012-08-14 15:11 - 2012-08-14 15:11 - 00022528 _____ () C:\Windows\SYSTEM32\BsTrace.dll
2012-08-14 15:13 - 2012-08-14 15:13 - 00009728 _____ () C:\Windows\SYSTEM32\BsHelpCSps.dll
2012-08-14 15:13 - 2012-08-14 15:13 - 00052736 _____ () C:\Windows\SYSTEM32\BlueSoleilCSps.dll
2012-08-14 11:24 - 2012-08-14 11:24 - 00323648 _____ () C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\USB\tl_filter.dll
2012-05-02 18:28 - 2012-05-02 18:28 - 00012800 _____ () C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\AMP\IVTAMPRL.dll
2013-03-31 10:31 - 2012-06-25 11:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2012-08-24 18:17 - 2012-08-24 18:17 - 00009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2012-08-14 15:16 - 2012-08-14 15:16 - 00072192 _____ () C:\Windows\SYSTEM32\BsProfilefunc.dll
2012-08-15 18:20 - 2012-08-15 18:20 - 00356352 _____ () C:\Windows\SYSTEM32\BsExtendFunc.dll
2014-03-18 13:37 - 2014-11-28 14:46 - 00249856 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\acestreamengine.Core.pyd
2011-06-12 15:09 - 2011-06-12 15:09 - 00038400 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\_socket.pyd
2011-06-12 15:09 - 2011-06-12 15:09 - 00720896 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\_ssl.pyd
2013-11-27 17:50 - 2013-11-27 17:50 - 00018944 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\acestreamengine.pycompat.pyd
2011-06-12 15:06 - 2011-06-12 15:06 - 00287232 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\_hashlib.pyd
2014-03-17 18:26 - 2014-11-28 14:46 - 01732096 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\acestreamengine.live.pyd
2014-01-23 13:37 - 2014-01-23 13:37 - 00036352 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\_psutil_mswindows.pyd
2013-12-21 15:20 - 2013-12-21 15:20 - 00053248 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\_blist.pyd
2011-06-12 15:06 - 2011-06-12 15:06 - 00106496 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\_ctypes.pyd
2013-12-21 15:20 - 2013-12-21 15:20 - 00040448 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\bitarray._bitarray.pyd
2011-06-12 15:06 - 2011-06-12 15:06 - 00011776 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\select.pyd
2011-01-18 23:56 - 2011-01-18 23:56 - 00334336 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\M2Crypto.__m2crypto.pyd
2011-06-12 15:06 - 2011-06-12 15:06 - 00152576 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\pyexpat.pyd
2011-02-13 17:02 - 2011-02-13 17:02 - 00031232 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\Crypto.Cipher.AES.pyd
2014-03-18 13:47 - 2014-11-28 14:46 - 03083264 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\acestreamengine.CoreApp.pyd
2012-02-07 18:37 - 2012-02-07 18:37 - 00098816 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\win32api.pyd
2012-02-07 18:35 - 2012-02-07 18:35 - 00110080 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\pywintypes27.dll
2012-02-07 18:38 - 2012-02-07 18:38 - 00358912 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\pythoncom27.dll
2012-02-07 18:36 - 2012-02-07 18:36 - 00111616 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\win32file.pyd
2012-02-07 18:36 - 2012-02-07 18:36 - 00024064 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\win32pdh.pyd
2010-10-11 00:23 - 2010-10-11 00:23 - 00723968 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\apsw.pyd
2013-01-29 18:20 - 2013-01-29 18:20 - 00082944 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\cpyamf.util.pyd
2011-07-15 21:37 - 2011-07-15 21:37 - 00981504 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\wx._core_.pyd
2011-07-15 21:38 - 2011-07-15 21:38 - 00746496 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\wx._gdi_.pyd
2011-07-15 21:38 - 2011-07-15 21:38 - 00670720 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\wx._windows_.pyd
2011-07-15 21:38 - 2011-07-15 21:38 - 00966144 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\wx._controls_.pyd
2011-07-15 21:38 - 2011-07-15 21:38 - 00674816 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\wx._misc_.pyd
2011-06-12 15:06 - 2011-06-12 15:06 - 00688128 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\unicodedata.pyd
2013-12-21 15:02 - 2013-12-21 15:02 - 00061952 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\miniupnpc.pyd
2013-01-29 18:20 - 2013-01-29 18:20 - 00066048 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\cpyamf.amf0.pyd
2011-06-12 15:09 - 2011-06-12 15:09 - 00038400 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\_socket.pyd
2011-06-12 15:09 - 2011-06-12 15:09 - 00720896 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\_ssl.pyd
2011-07-15 21:37 - 2011-07-15 21:37 - 00981504 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\wx._core_.pyd
2011-07-15 21:38 - 2011-07-15 21:38 - 00746496 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\wx._gdi_.pyd
2011-07-15 21:38 - 2011-07-15 21:38 - 00670720 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\wx._windows_.pyd
2011-07-15 21:38 - 2011-07-15 21:38 - 00966144 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\wx._controls_.pyd
2011-07-15 21:38 - 2011-07-15 21:38 - 00674816 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\wx._misc_.pyd
2011-06-12 15:06 - 2011-06-12 15:06 - 00287232 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\_hashlib.pyd
2011-01-18 23:56 - 2011-01-18 23:56 - 00334336 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\M2Crypto.__m2crypto.pyd
2011-06-12 15:06 - 2011-06-12 15:06 - 00011776 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\select.pyd
2011-06-12 15:06 - 2011-06-12 15:06 - 00152576 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\pyexpat.pyd
2012-02-07 18:37 - 2012-02-07 18:37 - 00098816 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\win32api.pyd
2012-02-07 18:35 - 2012-02-07 18:35 - 00110080 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\pywintypes27.dll
2012-02-07 18:38 - 2012-02-07 18:38 - 00358912 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\pythoncom27.dll
2012-02-07 18:36 - 2012-02-07 18:36 - 00111616 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\win32file.pyd
2012-02-07 18:36 - 2012-02-07 18:36 - 00024064 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\win32pdh.pyd
2014-07-27 17:06 - 2014-09-25 13:57 - 00642680 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\ctools.dll
2016-05-03 08:13 - 2016-04-28 01:25 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\libglesv2.dll
2016-05-03 08:13 - 2016-04-28 01:25 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\libegl.dll
2016-05-03 08:13 - 2016-04-28 01:25 - 17536664 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2012-07-26 07:26 - 2013-09-24 22:58 - 00003037 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 hl2rcv.adobe.com
127.0.0.1 adobeereg.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-1.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 adobe-dns-4.adobe.com
127.0.0.1 adobe-dns-5.adobe.com
127.0.0.1 hh-software.com
127.0.0.1 www.hh-software.com
127.0.0.1 activate.adobe.de
127.0.0.1 practivate.adobe.de
127.0.0.1 ereg.adobe.de
127.0.0.1 activate.wip3.adobe.de
127.0.0.1 wip3.adobe.de
127.0.0.1 3dns-3.adobe.de
There are 39 more lines.
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Jakubko\AppData\Roaming\Microsoft\Windows Photo Viewer\Tapeta programu Windows Photo Viewer.jpg
DNS Servers: 158.195.6.2 - 158.195.6.3
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\startupreg: ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: ASUSPRP => "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
MSCONFIG\startupreg: ASUSWebStorage => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\AsusWSPanel.exe /S
MSCONFIG\startupreg: BtTray => "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
MSCONFIG\startupreg: DisableS3S4 => c:\windows\temp\DisableS3S464\sethigh.cmd
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
MSCONFIG\startupreg: mcui_exe => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
MSCONFIG\startupreg: RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX3
MSCONFIG\startupreg: RTHDVCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\StartupApproved\StartupFolder: => "Dropbox.lnk"
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\StartupApproved\Run: => "RocketDock"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{EE1E9DB0-229C-4E4D-AB74-642FAA08F87E}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{D0FA0F34-2B11-4B51-BE43-943BD88E7185}] => (Allow) LPort=2869
FirewallRules: [{43A4B368-FEBD-4F53-870A-9EB533D56567}] => (Allow) LPort=1900
FirewallRules: [{B2C50186-6B9C-42D9-AB4C-23814EA2AD78}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{962ACE11-2124-4FC8-9751-3B5000789E54}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{35AF1BC6-4F6B-4E45-BD1B-BADD4CB46C29}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{92A343F8-4D46-4160-8ACE-8705C5A41A6A}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{90084849-4E3F-4049-AAE8-6F5FAAD78237}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{63AFFFB7-5086-4A96-A24C-CD137CC49BA4}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{EAE86642-BA34-4B2D-AEBD-5B042F6284D1}] => (Allow) C:\Users\Jakubko\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{16A88E04-34F6-44F1-9717-B6C002522867}] => (Allow) C:\Users\Jakubko\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{52154D9D-2DD6-4AF8-A9BB-A8A60604880C}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{0AC0A9C5-39DD-4424-904C-AD1C8B3ABD7A}] => (Allow) C:\Users\Jakubko\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{BFDBA048-E2AA-4CCF-9615-866C7A1D5134}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{271F0FFD-C8AE-4F41-A5A1-C816FE14273E}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{790DE34A-AB1F-40F6-8F9C-5F786B53E10C}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{51AF1B0D-9ACB-44F8-A350-C309ECB483FF}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{A97101E6-77CA-4708-B7EA-8E616E81CDED}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{6AB331AA-E048-471F-9E92-2D2742E61F40}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{BDFB7F34-C644-4447-8B09-CFA9E130C8DB}] => (Allow) C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 2011\pes2011.exe
FirewallRules: [{347BE201-83ED-4160-B4B6-631CEE8885D7}] => (Allow) C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 2011\pes2011.exe
FirewallRules: [{5A00DF8A-BED5-41F1-8AB6-5FE422DF2A9E}] => (Allow) C:\Program Files (x86)\Veetle\Player\VeetleNet.exe
FirewallRules: [{A2B9353A-134F-418C-8699-8EA748F5A3D2}] => (Allow) C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\ace_engine.exe
FirewallRules: [{C5764DFA-C8BB-4A2A-9EB7-385E2197238A}] => (Allow) C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\ace_engine.exe
FirewallRules: [{B37B7A6F-3E50-4E38-A734-6A26D8A25DA5}] => (Allow) C:\Users\Jakubko\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{EA46C1AC-BC07-4189-B366-26C038D9056F}] => (Allow) C:\Users\Jakubko\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{41AF77E6-4AE5-41C0-A4FE-75C427ACBC86}] => (Allow) C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Season 2012\PCM.exe
FirewallRules: [{9CFDD269-AAC5-4F9C-AE7A-B5F4197C4911}] => (Allow) C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Season 2012\PCM.exe
FirewallRules: [{9A9546DC-BDB7-4365-9136-08276340B7B9}] => (Allow) C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Season 2012\Autorun\Exe\Autorun.exe
FirewallRules: [{BB7C63E6-6D8E-460C-A1DB-0603DE9635B8}] => (Allow) C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Season 2012\Autorun\Exe\Autorun.exe
FirewallRules: [{04174E7E-F995-48B6-B1BD-5928ECA8C8CD}] => (Allow) C:\Users\Jakubko\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{4C087849-F7D5-4B74-A540-09A30D69652E}] => (Allow) C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{D3C945AD-03EE-4FA4-910F-392F29CC27F9}] => (Allow) C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{05F16999-D37F-4784-BA8B-D916193C650E}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe
FirewallRules: [{3E765FB9-CB83-4138-AB93-A8F43F571B79}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe
FirewallRules: [{6D6666CC-67FC-4298-8A5D-829C9A45A6A0}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll
FirewallRules: [{5B1278D3-8F3C-4244-9FC9-D574BF3406B6}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll
FirewallRules: [{C46FB8A6-B3EF-449F-ACF8-692C3804F7B2}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll
FirewallRules: [{35DA6D62-A917-40A4-A85F-C7E768FB79E8}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll
FirewallRules: [{F6EE3438-164B-4969-B90A-549DA3E16967}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll
FirewallRules: [{48D1E8C7-E0EC-41D4-9488-598695280C7F}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll
FirewallRules: [{E14166CA-222F-499D-ACE6-93CAD4F3DA27}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll
FirewallRules: [{564F4FDE-66D0-4638-89B7-450FB75BC29A}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll
FirewallRules: [{4F47FC3F-32D9-4E28-A880-FE72DD5D8DF8}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll
FirewallRules: [{40D4BE79-A395-4308-91C6-DF6702008AF9}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll
FirewallRules: [{A68E97FF-CCFF-4BFB-AE1E-1D2429E77703}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll
FirewallRules: [{9BF175E2-59C7-4015-BDD3-02226622B059}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll
FirewallRules: [{B8904D72-3216-4B8E-A252-580DCDE50863}] => (Allow) C:\Program Files (x86)\Sports Interactive\Football Manager 2010\fm.exe
FirewallRules: [{8E1D27BB-C763-42D1-9DF2-94BD65717002}] => (Allow) C:\Program Files (x86)\Sports Interactive\Football Manager 2010\fm.exe
FirewallRules: [{FAC2659C-D6F9-428A-A4D8-F7F1A59438A9}] => (Allow) C:\Program Files (x86)\Sports Interactive\Football Manager 2010\fm.exe
FirewallRules: [{8182F881-9135-4D4A-890A-ACB5B496CB10}] => (Allow) C:\Program Files (x86)\Sports Interactive\Football Manager 2010\fm.exe
FirewallRules: [{6E41534F-F798-4174-BDB3-9CD690A95752}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{DADD6C06-2365-476D-BF84-E0E9AE276FD7}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{281D4F1A-2DFB-4F66-8828-ECC7DB768E30}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{1C7A8F6A-A8CC-4721-AC64-214D531F7E20}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{0310FAAA-4CF1-437F-A353-3588DA5BA06F}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{3D862089-81E0-47CF-8A71-4C7E444A46D9}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{88A4971E-6E8F-46F3-BCDA-204352005137}] => (Allow) C:\Users\Jakubko\AppData\Local\Temp\Setup.exe
FirewallRules: [{19D49D13-9FF4-431A-A513-6E075C01F8C2}] => (Allow) C:\Users\Jakubko\AppData\Local\Temp\Setup.exe
FirewallRules: [{BC89FCE8-B47E-47BE-9023-7EAE0A0D7598}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BF4EF942-8BE9-4147-B1C4-F9DBF499140B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2C4D318B-2398-468F-ADC3-CFE339F4B3DD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{FC6E3B47-872F-456F-82DB-A4F58A0B096D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{35CD9394-5F94-41D3-B6DC-770DD37832B9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{BC37413D-E90C-4AF9-BA1D-542C6460BFAD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{9A954222-7F78-4026-87EB-D77FD18A9EB3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Restore Points =========================
18-04-2016 06:46:41 Scheduled Checkpoint
25-04-2016 15:08:11 Scheduled Checkpoint
27-04-2016 16:28:08 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
06-05-2016 08:07:10 Scheduled Checkpoint
==================== Faulty Device Manager Devices =============
Name: BT1502 Stereo
Description: Bluetooth Stereo
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthA2DP
Problem: : A driver (service) for this device has been disabled. An alternate driver may be providing this functionality (Code 32)
Resolution: The start type for this driver is set to disabled in the registry.
Uninstall the driver from Device Manager, and then scan for new hardware to install the driver again. If this does not work, you might have to change the device start type parameter in the registry.
Name: BT1502 Audio/Video Remote Control HID
Description: Bluetooth Audio/Video Remote Control HID
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service: BthAvrcpTg
Problem: : A driver (service) for this device has been disabled. An alternate driver may be providing this functionality (Code 32)
Resolution: The start type for this driver is set to disabled in the registry.
Uninstall the driver from Device Manager, and then scan for new hardware to install the driver again. If this does not work, you might have to change the device start type parameter in the registry.
==================== Event log errors: =========================
Application errors:
==================
Error: (05/09/2016 06:51:36 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (05/09/2016 06:51:36 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (05/09/2016 06:37:33 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "x64" of attribute "processorArchitecture" in element "assemblyIdentity" is invalid.
Error: (05/09/2016 06:34:22 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "x64" of attribute "processorArchitecture" in element "assemblyIdentity" is invalid.
Error: (05/09/2016 06:05:10 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c04ed6bf-55c8-4b47-9f8e-5a1f31ceee60;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (05/08/2016 08:07:15 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c04ed6bf-55c8-4b47-9f8e-5a1f31ceee60;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (05/08/2016 07:07:41 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c04ed6bf-55c8-4b47-9f8e-5a1f31ceee60;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (05/07/2016 01:55:02 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "x64" of attribute "processorArchitecture" in element "assemblyIdentity" is invalid.
Error: (05/07/2016 11:41:00 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c04ed6bf-55c8-4b47-9f8e-5a1f31ceee60;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (05/07/2016 11:40:42 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c04ed6bf-55c8-4b47-9f8e-5a1f31ceee60;NotificationInterval=1440;Trigger=NetworkAvailable
System errors:
=============
Error: (05/09/2016 02:11:25 PM) (Source: DCOM) (EventID: 10016) (User: Jakub)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}JakubJakubkoS-1-5-21-303898890-2447975317-2344255173-1001LocalHost (Using LRPC)UnavailableS-1-15-2-4207732781-172938799-553667421-1688404213-3431886802-1328152158-789232590
Error: (05/09/2016 02:10:06 PM) (Source: DCOM) (EventID: 10016) (User: Jakub)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}JakubJakubkoS-1-5-21-303898890-2447975317-2344255173-1001LocalHost (Using LRPC)UnavailableS-1-15-2-4207732781-172938799-553667421-1688404213-3431886802-1328152158-789232590
Error: (05/09/2016 06:02:08 AM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "7A79197FDCCE" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.
Error: (05/09/2016 06:02:08 AM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "7A79197FDCCE" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.
Error: (05/04/2016 03:28:00 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "JAKUB :0" could not be registered on the interface with IP address 158.195.226.252.
The computer with the IP address 158.195.224.91 did not allow the name to be claimed by
this computer.
Error: (05/04/2016 03:28:00 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "JAKUB :20" could not be registered on the interface with IP address 158.195.226.252.
The computer with the IP address 158.195.224.91 did not allow the name to be claimed by
this computer.
Error: (05/04/2016 03:28:00 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{B19DAFF3-11D7-491A-B8B8-3C62919F0E54} because another computer on the network has the same name. The server could not start.
Error: (05/04/2016 02:34:46 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "JAKUB :0" could not be registered on the interface with IP address 158.195.226.252.
The computer with the IP address 158.195.224.91 did not allow the name to be claimed by
this computer.
Error: (05/04/2016 02:34:44 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "JAKUB :0" could not be registered on the interface with IP address 158.195.226.252.
The computer with the IP address 158.195.224.91 did not allow the name to be claimed by
this computer.
Error: (05/04/2016 02:34:40 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "JAKUB :0" could not be registered on the interface with IP address 158.195.226.252.
The computer with the IP address 158.195.224.91 did not allow the name to be claimed by
this computer.
==================== Memory info ===========================
Processor: Intel(R) Pentium(R) CPU 987 @ 1.50GHz
Percentage of memory in use: 62%
Total physical RAM: 3979.72 MB
Available physical RAM: 1501.8 MB
Total Virtual: 8075.72 MB
Available Virtual: 4385.2 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:186.3 GB) (Free:29.27 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (DATA) (Fixed) (Total:258.15 GB) (Free:255.85 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: C2B20764)
Partition: GPT.
==================== End of Addition.txt ============================
FRST.txt
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-05-2016
Ran by Jakubko (administrator) on JAKUB (09-05-2016 14:57:38)
Running from C:\Users\Jakubko\Downloads
Loaded Profiles: Jakubko (Available Profiles: Jakubko & Free)
Platform: Windows 8 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(ANDREA VACONDIO) C:\ProgramData\ANDREA VACONDIO\PDFsam Manager\PDFsam Enhanced\PDFsam Manager.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Filipe Lourenço) C:\Program Files (x86)\BatteryCare\BatteryCare.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
() C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\ace_engine.exe
() C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\ace_update.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(BitTorrent Inc.) C:\Users\Jakubko\AppData\Roaming\uTorrent\uTorrent.exe
(BitTorrent Inc.) C:\Users\Jakubko\AppData\Roaming\uTorrent\updates\3.4.6_42094\utorrentie.exe
(BitTorrent Inc.) C:\Users\Jakubko\AppData\Roaming\uTorrent\updates\3.4.6_42094\utorrentie.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\WINWORD.EXE
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Jakubko\Downloads\FRST64 (2).exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5595848 2015-07-08] (ESET)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2016-04-05] (LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\Run: [RocketDock] => "C:\Program Files\RocketDock\RocketDock.exe"
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\Run: [DU Meter] => "C:\Program Files (x86)\DU Meter\DUMeter.exe" /autostart
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\Run: [BatteryCare] => C:\Program Files (x86)\BatteryCare\BatteryCare.exe [796160 2015-10-25] (Filipe Lourenço)
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\RunOnce: [Uninstall C:\Users\Jakubko\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jakubko\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64"
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\RunOnce: [Uninstall C:\Users\Jakubko\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jakubko\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64"
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\MountPoints2: {303d40f4-261a-11e5-bec4-b8763f0ffd04} - "G:\LG_PC_Programs.exe"
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\MountPoints2: {412c5d44-2201-11e3-be77-b8763f0ffd04} - "G:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\MountPoints2: {692bc9db-5d11-11e3-be7a-b8763f0ffd04} - "G:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
Startup: C:\Users\Jakubko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-02-25]
ShortcutTarget: Dropbox.lnk -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{B19DAFF3-11D7-491A-B8B8-3C62919F0E54}: [DhcpNameServer] 158.195.6.2 158.195.6.3 158.195.4.3
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKU\S-1-5-21-303898890-2447975317-2344255173-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-303898890-2447975317-2344255173-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-303898890-2447975317-2344255173-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-04-27] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-27] (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-27] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-27] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Jakubko\AppData\Roaming\Mozilla\Firefox\Profiles\vidg21l8.default
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-27] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-27] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-03] (Adobe Systems)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-27] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin-x32: @veetle.com/veetleCorePlugin,version=0.9.19 -> C:\Program Files (x86)\Veetle\plugins\npVeetle.dll [2012-01-14] (Veetle Inc)
FF Plugin-x32: @veetle.com/veetlePlayerPlugin,version=0.9.18 -> C:\Program Files (x86)\Veetle\Player\npvlc.dll [2012-01-14] (Veetle Inc)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-12-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-12-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2013-09-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-03] (Adobe Systems)
FF Plugin HKU\S-1-5-21-303898890-2447975317-2344255173-1001: @acestream.net/acestreamplugin,version=2.2.2-next -> C:\Users\Jakubko\AppData\Roaming\ACEStream\player\npace_plugin.dll [2014-07-09] (Innovative Digital Technologies)
FF Plugin HKU\S-1-5-21-303898890-2447975317-2344255173-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Jakubko\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-303898890-2447975317-2344255173-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Jakubko\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-303898890-2447975317-2344255173-1001: anvisoft.com/AdblockPlugin -> C:\ProgramData\Anvisoft\Anvi Smart Defender 2\extensions\npAdblockPlugin.dll [No File]
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)
FF Extension: Gmail panel - C:\Users\Jakubko\AppData\Roaming\Mozilla\Firefox\Profiles\vidg21l8.default\extensions\gmail_panel@alejandrobrizuela.com.ar.xpi [2016-01-14]
FF Extension: Fasterfox - C:\Users\Jakubko\AppData\Roaming\Mozilla\Firefox\Profiles\vidg21l8.default\extensions\{c36177c0-224a-11da-8cd6-0800200c9a91}.xpi [2016-01-14]
FF Extension: Adblock Plus - C:\Users\Jakubko\AppData\Roaming\Mozilla\Firefox\Profiles\vidg21l8.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-01-14]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\Firefox\Extensions: [magicplayer@torrentstream.org] - C:\Users\Jakubko\AppData\Roaming\ACEStream\extensions\firefox\magicplayer@torrentstream.org
FF Extension: TS Magic Player - C:\Users\Jakubko\AppData\Roaming\ACEStream\extensions\firefox\magicplayer@torrentstream.org [2014-09-13] [not signed]
FF HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi => not found
Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\PepperFlash\pepflashplayer.dll => No File
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll => No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (McAfee SecurityCenter) - c:\progra~2\mcafee\msc\npmcsn~1.dll => No File
CHR Profile: C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-14]
CHR Extension: (Google Search) - C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-14]
CHR Extension: (Gmail™ Notifier) - C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcjichoefijpinlfnjghokpkojhlhkgl [2016-03-17]
CHR Extension: (Nepi Jano!) - C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmiebaglkdeebobffhbomapifjjjjakj [2016-04-17]
CHR Extension: (Invite All (for Facebook)) - C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default\Extensions\eopekjehpibhfpjjcokfmhcaeiclddih [2016-05-01]
CHR Extension: (AdBlock) - C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-04-17]
CHR Extension: (F.B Purity-Clean Up Facebook) - C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncdlagniojmheiklojdcpdaeepochckl [2016-05-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-01]
CHR Extension: (Gmail) - C:\Users\Jakubko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-14]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found>
CHR HKU\S-1-5-21-303898890-2447975317-2344255173-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kpckgflgdapkpabemgkielbefdildaio] - C:\Users\Jakubko\AppData\Roaming\ACEStream\extensions\chrome_new\magicplayer.crx [2014-01-28]
CHR HKLM-x32\...\Chrome\Extension: [lhmiofmipcpmhgihiecmpiekcacigpgb] - C:\ProgramData\Anvisoft\Anvi Smart Defender 2\extensions\chrome.crx <not found>
StartMenuInternet: chrome.exe - C:\Users\Jakubko\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated)
R3 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1578496 2012-08-14] (IVT Corporation) [File not signed]
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [138752 2012-08-14] (IVT Corporation) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1353720 2015-07-08] (ESET)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R3 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
R3 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2016-04-05] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 PDFsam Manager; C:\ProgramData\ANDREA VACONDIO\PDFsam Manager\PDFsam Enhanced\PDFsam Manager.exe [1050224 2015-11-13] (ANDREA VACONDIO)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
S2 mcbootdelaystartsvc; "C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe" /McCoreSvc [X]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 Apowersoft_AudioDevice; C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (Wondershare)
S3 ATP; C:\Windows\System32\drivers\AsusTP.sys [65784 2013-01-16] (ASUS Corporation)
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
U4 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [117632 2013-06-01] (Microsoft Corporation)
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [48736 2012-08-14] (Ralink Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2013-10-10] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [255240 2015-07-14] (ESET)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-11-23] (Broadcom Corporation)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [251632 2015-07-14] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [178520 2015-07-14] (ESET)
R2 epfw; C:\Windows\system32\DRIVERS\epfw.sys [231520 2015-07-14] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [53360 2015-07-14] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [72400 2015-07-14] (ESET)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2016-04-05] (LogMeIn Inc.)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-05-09] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [695392 2012-08-14] (Ralink Technology, Corp.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-10-10] (Duplex Secure Ltd.)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [36288 2013-07-02] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [247216 2013-07-02] (Microsoft Corporation)
S3 WinRing0_1_2_0; C:\Program Files (x86)\BatteryCare\WinRing0x64.sys [14544 2014-03-22] (OpenLibSys.org)
U3 auldm72o; C:\Windows\System32\Drivers\auldm72o.sys [0 ] (Intel Corporation) <==== ATTENTION (zero byte File/Folder)
S3 avchv; \SystemRoot\system32\DRIVERS\avchv.sys [X]
U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
S3 DUMeterDrv; \??\C:\Program Files (x86)\DU Meter\DUMETR64.SYS [X]
U0 msahci; no ImagePath
S3 vmci; \SystemRoot\System32\drivers\vmci.sys [X]
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-05-09 14:57 - 2016-05-09 14:59 - 00028360 _____ C:\Users\Jakubko\Downloads\FRST.txt
2016-05-09 14:56 - 2016-05-09 14:56 - 02379264 _____ (Farbar) C:\Users\Jakubko\Downloads\FRST64 (2).exe
2016-05-09 14:55 - 2016-05-09 14:55 - 00112640 _____ (forum.viry.cz) C:\Users\Jakubko\Downloads\Nepotvrdené 535686.crdownload
2016-05-09 12:26 - 2016-05-09 12:26 - 00001104 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-05-09 12:24 - 2016-05-09 12:24 - 22851472 _____ (Malwarebytes ) C:\Users\Jakubko\Downloads\mbam-setup-2.2.1.1043.exe
2016-05-08 22:41 - 2016-05-08 22:41 - 13618688 _____ C:\Users\Jakubko\Downloads\TAX-HAVENS-1 (1).ppt
2016-05-08 22:06 - 2016-05-08 22:06 - 13618688 _____ C:\Users\Jakubko\Downloads\TAX-HAVENS-1.ppt
2016-05-08 19:56 - 2016-05-08 19:56 - 02448928 _____ C:\Users\Jakubko\Downloads\0c96053bcc163aaefd000000.pdf
2016-05-07 15:34 - 2016-05-07 15:35 - 10297641 _____ C:\Users\Jakubko\Downloads\13121300_1016151945132799_2142642289_n.mp4
2016-05-05 19:21 - 2016-05-05 19:21 - 01380712 _____ C:\Users\Jakubko\Downloads\SteamSetup.exe
2016-05-05 17:39 - 2016-05-05 17:39 - 00023106 _____ C:\Users\Jakubko\Downloads\medzinarodne_vztahy_3.roc..odt
2016-05-03 20:18 - 2016-05-05 11:32 - 07846978 _____ C:\Users\Jakubko\Desktop\Leto 2016.psd
2016-05-03 07:39 - 2016-05-03 07:39 - 00283848 _____ C:\Windows\Minidump\050316-33234-01.dmp
2016-05-01 18:08 - 2016-05-01 18:09 - 11061387 _____ C:\Users\Jakubko\Downloads\13075303_1110584919008738_1123811804_n.mp4
2016-05-01 16:01 - 2016-05-01 16:01 - 00184320 _____ C:\Users\Jakubko\Downloads\LP_v_EU_final.ppt
2016-05-01 07:22 - 2016-05-01 07:22 - 00283848 _____ C:\Windows\Minidump\050116-37421-01.dmp
2016-04-30 18:14 - 2016-04-30 18:14 - 02872127 _____ C:\Users\Jakubko\Downloads\DTEOxaWn4JUcMlWu.mp4
2016-04-30 16:09 - 2016-04-30 16:09 - 01198609 _____ C:\Users\Jakubko\Downloads\civil_justice_guide_EU_sk.pdf
2016-04-30 14:27 - 2016-04-30 14:29 - 37481429 _____ C:\Users\Jakubko\Downloads\13008152_926709747450433_999622784_n.mp4
2016-04-30 08:12 - 2016-05-08 21:34 - 00588316 _____ C:\Users\Jakubko\Desktop\Fakt.psd
2016-04-29 21:42 - 2016-05-04 17:56 - 00000000 ____D C:\Users\Jakubko\Desktop\Futbal
2016-04-29 13:30 - 2016-04-29 13:30 - 00092048 _____ C:\Users\Jakubko\Downloads\552.pdf
2016-04-28 15:41 - 2016-04-28 15:41 - 00185344 _____ C:\Users\Jakubko\Downloads\Volný pohyb sluzieb.ppt
2016-04-27 16:47 - 2016-05-09 06:07 - 00000000 ____D C:\Users\Jakubko\AppData\LocalLow\uTorrent
2016-04-27 16:27 - 2016-04-27 16:27 - 07186992 _____ (Microsoft Corporation) C:\Users\Jakubko\Downloads\vcredist_x64.exe
2016-04-27 10:31 - 2016-04-27 10:31 - 00266706 _____ C:\Users\Jakubko\Downloads\vypis_ucet_SK0502000000003109393251.pdf
2016-04-27 09:09 - 2016-04-27 09:09 - 00270688 _____ C:\Users\Jakubko\Downloads\Oznámenie komisie (329 kB) zverejnené v Ústrednom vestníku Európskej únie, týkajúce sa článku 4 ods (1).pdf
2016-04-27 09:08 - 2016-04-27 09:08 - 00270688 _____ C:\Users\Jakubko\Downloads\Oznámenie komisie (329 kB) zverejnené v Ústrednom vestníku Európskej únie, týkajúce sa článku 4 ods.pdf
2016-04-27 09:08 - 2016-04-27 09:08 - 00229011 _____ C:\Users\Jakubko\Downloads\kontaktné miesta 2016.pdf
2016-04-27 07:42 - 2016-04-27 07:39 - 00110144 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-64.dll
2016-04-27 07:42 - 2016-04-27 07:38 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-04-27 07:40 - 2016-04-27 07:39 - 00110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-04-27 07:27 - 2016-04-27 07:27 - 00283848 _____ C:\Windows\Minidump\042716-52468-01.dmp
2016-04-26 21:25 - 2016-04-26 21:25 - 00269836 _____ C:\Users\Jakubko\Downloads\menova_sustava.pdf
2016-04-24 21:55 - 2016-04-24 21:55 - 00000000 _____ C:\Users\Jakubko\Desktop\OBLEK.txt
2016-04-23 20:43 - 2016-04-23 20:43 - 00015838 _____ C:\Users\Jakubko\Downloads\int organisatons 15_16 evaluation.xlsx
2016-04-22 19:09 - 2016-04-22 19:09 - 02393289 _____ C:\Users\Jakubko\Downloads\statnice.zip
2016-04-20 12:11 - 2016-04-20 12:15 - 00162817 _____ C:\Users\Jakubko\Desktop\SV-BA.pdf
2016-04-20 07:43 - 2016-05-01 08:43 - 00000000 ____D C:\Users\Jakubko\Desktop\NR SR
2016-04-19 14:02 - 2016-04-19 14:02 - 08099096 _____ C:\Users\Jakubko\Downloads\Zranený zubor v opatere sninského zverolekára.mp4
2016-04-18 14:11 - 2016-04-18 14:12 - 37153768 _____ C:\Users\Jakubko\Downloads\Obvinili ukrajinských pašerákov...mp4
2016-04-17 20:37 - 2016-04-17 20:37 - 01959424 _____ (BitTorrent Inc.) C:\Users\Jakubko\Downloads\uTorrent.exe
2016-04-17 19:21 - 2016-04-17 19:21 - 02375680 _____ (Farbar) C:\Users\Jakubko\Downloads\FRST64 (1).exe
2016-04-17 10:09 - 2016-04-17 10:09 - 00283848 _____ C:\Windows\Minidump\041716-51390-01.dmp
2016-04-16 19:11 - 2016-04-16 19:11 - 00000000 ____D C:\rsit
2016-04-16 19:11 - 2016-04-16 19:11 - 00000000 ____D C:\Program Files\trend micro
2016-04-16 19:10 - 2016-04-16 19:10 - 01222144 _____ C:\Users\Jakubko\Downloads\RSITx64.exe
2016-04-16 19:10 - 2016-04-16 19:10 - 00029696 _____ C:\Users\Jakubko\AppData\Local\MSGBOX.EXE
2016-04-16 19:09 - 2016-04-16 19:10 - 00112640 _____ (forum.viry.cz) C:\Users\Jakubko\Downloads\FRSTLauncher.exe
2016-04-16 17:56 - 2016-04-16 17:56 - 01726464 _____ (Farbar) C:\Users\Jakubko\Downloads\FRST.exe
2016-04-16 17:55 - 2016-04-16 17:55 - 02375168 _____ (Farbar) C:\Users\Jakubko\Downloads\FRST64.exe
2016-04-13 20:59 - 2016-04-13 20:59 - 00003145 _____ C:\Users\Jakubko\Desktop\VLC.lnk
2016-04-10 07:08 - 2016-05-03 07:39 - 378782606 _____ C:\Windows\MEMORY.DMP
2016-04-10 07:08 - 2016-04-10 07:08 - 00283904 _____ C:\Windows\Minidump\041016-37625-01.dmp
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-12-01 11:16 - 2013-09-16 14:12 - 00045056 _____ C:\Windows\SysWOW64\acovcnt.exe
2016-12-01 10:48 - 2014-08-26 15:18 - 00003490 _____ C:\Windows\System32\Tasks\AutoKMS
2016-05-09 15:01 - 2013-09-16 17:40 - 00000000 ____D C:\Users\Jakubko\AppData\Roaming\uTorrent
2016-05-09 14:58 - 2013-09-16 16:59 - 10586112 ___SH C:\Users\Jakubko\Desktop\Thumbs.db
2016-05-09 14:56 - 2016-03-09 22:53 - 00000000 ____D C:\FRST
2016-05-09 14:52 - 2016-03-28 13:38 - 00000000 ____D C:\Users\Jakubko\Desktop\Štátnice
2016-05-09 14:11 - 2013-09-16 11:36 - 00000000 ____D C:\Users\Jakubko\AppData\Local\Packages
2016-05-09 14:07 - 2016-01-14 14:43 - 00000956 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-05-09 13:00 - 2016-03-09 22:37 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-05-09 12:28 - 2013-09-16 14:17 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-303898890-2447975317-2344255173-1001
2016-05-09 12:26 - 2016-03-09 22:35 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-05-09 12:25 - 2014-07-12 15:20 - 00000948 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-303898890-2447975317-2344255173-1001UA.job
2016-05-09 09:07 - 2016-01-14 14:43 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-09 07:42 - 2014-06-02 21:25 - 00000000 ____D C:\Users\Jakubko\AppData\Roaming\vlc
2016-05-09 06:51 - 2012-07-26 09:28 - 00848230 _____ C:\Windows\system32\PerfStringBackup.INI
2016-05-09 06:51 - 2012-07-26 07:37 - 00000000 ____D C:\Windows\Inf
2016-05-09 06:08 - 2015-10-13 09:02 - 00000000 ____D C:\Users\Jakubko\Desktop\Download
2016-05-09 06:05 - 2012-08-15 18:46 - 00000739 _____ C:\Windows\SysWOW64\bscs.ini
2016-05-09 06:02 - 2013-03-31 10:44 - 00004268 _____ C:\Windows\SysWOW64\LOCALSERVICE.INI
2016-05-09 06:02 - 2013-03-31 10:44 - 00000043 _____ C:\Windows\SysWOW64\LOCALDEVICE.INI
2016-05-09 00:22 - 2013-10-29 10:22 - 00000427 _____ C:\Windows\SysWOW64\REMOTEDEVICE.INI
2016-05-08 22:41 - 2015-11-24 16:53 - 00000000 ____D C:\Users\Jakubko\Desktop\BC
2016-05-08 21:51 - 2013-09-17 11:46 - 00000132 _____ C:\Users\Jakubko\AppData\Roaming\Adobe PNG Format CS5 Prefs
2016-05-08 18:50 - 2014-03-23 15:40 - 00000000 ____D C:\Users\Jakubko\AppData\Roaming\.ACEStream
2016-05-08 18:48 - 2013-10-23 18:05 - 00000000 ___HD C:\_acestream_cache_
2016-05-08 15:25 - 2014-07-12 15:20 - 00000926 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-303898890-2447975317-2344255173-1001Core.job
2016-05-08 07:47 - 2015-12-03 20:02 - 00127673 _____ C:\Users\Jakubko\Desktop\Dresy.xlsx
2016-05-07 15:35 - 2013-10-13 15:38 - 06547456 ___SH C:\Users\Jakubko\Downloads\Thumbs.db
2016-05-04 07:08 - 2015-12-19 18:23 - 00000000 ____D C:\Users\Jakubko\AppData\Local\LogMeIn Hamachi
2016-05-03 09:21 - 2016-02-27 13:23 - 00000000 ____D C:\Users\Jakubko\Desktop\Holokaust
2016-05-03 08:13 - 2016-01-14 14:44 - 00002209 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-03 07:46 - 2013-09-16 16:36 - 00000408 _____ C:\Users\Jakubko\AppData\Roaming\sp_data.sys
2016-05-03 07:46 - 2013-03-31 10:47 - 00003056 _____ C:\Windows\System32\Tasks\ASUS P4G
2016-05-03 07:46 - 2013-03-31 10:47 - 00003028 _____ C:\Windows\System32\Tasks\ASUS USB Charger Plus
2016-05-03 07:39 - 2014-11-08 14:37 - 00000000 ____D C:\Windows\Minidump
2016-05-03 07:39 - 2012-07-26 09:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-05-02 12:07 - 2014-06-30 11:17 - 00005551 _____ C:\Users\Jakubko\Desktop\Neviem.txt
2016-05-02 10:14 - 2015-07-17 14:31 - 00000000 ____D C:\Users\Jakubko\Desktop\Weby
2016-04-30 11:07 - 2016-02-26 16:19 - 00000000 ____D C:\Users\Jakubko\Desktop\KOMP
2016-04-29 13:22 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent
2016-04-29 13:21 - 2012-07-26 10:12 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-27 07:50 - 2013-09-26 10:36 - 00000000 ____D C:\ProgramData\Oracle
2016-04-27 07:42 - 2014-10-16 17:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-04-27 07:42 - 2014-10-16 17:33 - 00000000 ____D C:\Program Files (x86)\Java
2016-04-27 07:41 - 2016-04-01 12:28 - 00000000 ____D C:\Program Files\Java
2016-04-27 07:40 - 2015-08-28 18:26 - 00000000 ____D C:\Users\Jakubko\.oracle_jre_usage
2016-04-17 23:15 - 2016-01-25 09:45 - 00000000 ____D C:\Users\Jakubko\Desktop\TO
2016-04-16 19:15 - 2016-01-14 20:51 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-04-09 21:52 - 2016-03-19 10:50 - 00000000 ____D C:\Users\Jakubko\Documents\NHL09
2016-04-09 21:01 - 2013-10-10 12:23 - 00000000 ____D C:\Users\Jakubko\AppData\Roaming\DAEMON Tools Lite
==================== Files in the root of some directories =======
2013-11-11 21:43 - 2014-07-20 14:08 - 0000132 _____ () C:\Users\Jakubko\AppData\Roaming\Adobe GIF Format CS5 Prefs
2013-09-17 11:46 - 2016-05-08 21:51 - 0000132 _____ () C:\Users\Jakubko\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-04-25 15:22 - 2014-04-25 16:05 - 0000000 _____ () C:\Users\Jakubko\AppData\Roaming\FileIn.cns
2014-04-25 15:22 - 2014-04-25 16:05 - 0000000 _____ () C:\Users\Jakubko\AppData\Roaming\FileOut.cns
2013-09-16 16:36 - 2016-05-03 07:46 - 0000408 _____ () C:\Users\Jakubko\AppData\Roaming\sp_data.sys
2013-11-12 12:44 - 2016-01-15 17:42 - 0001456 _____ () C:\Users\Jakubko\AppData\Local\Adobe Save for Web 12.0 Prefs
2016-04-16 19:10 - 2016-04-16 19:10 - 0029696 _____ () C:\Users\Jakubko\AppData\Local\MSGBOX.EXE
2014-10-31 20:48 - 2014-10-31 20:48 - 0007605 _____ () C:\Users\Jakubko\AppData\Local\Resmon.ResmonCfg
2012-11-23 15:06 - 2012-09-07 13:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2012-11-23 15:06 - 2009-07-22 12:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2012-11-23 15:06 - 2012-09-07 13:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS
Some files in TEMP:
====================
C:\Users\Jakubko\AppData\Local\Temp\bc3a874f-12ca-4096-8773-7988f1694d29.exe
C:\Users\Jakubko\AppData\Local\Temp\d58cc570-8cad-410d-bdb2-83db06b22aad.exe
C:\Users\Jakubko\AppData\Local\Temp\drm_dyndata_7370012.dll
C:\Users\Jakubko\AppData\Local\Temp\f543cfae-6636-4e67-b1aa-8ef34fc68906.exe
C:\Users\Jakubko\AppData\Local\Temp\jre-8u77-windows-au.exe
C:\Users\Jakubko\AppData\Local\Temp\jre-8u91-windows-au.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-05-07 13:52
==================== End of FRST.txt ============================
Addition.txt
Additional scan result of Farbar Recovery Scan Tool (x64) Version:07-05-2016
Ran by Jakubko (2016-05-09 15:07:08)
Running from C:\Users\Jakubko\Downloads
Windows 8 (X64) (2013-09-16 09:36:12)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-303898890-2447975317-2344255173-500 - Administrator - Disabled)
Free (S-1-5-21-303898890-2447975317-2344255173-1005 - Limited - Enabled) => C:\Users\Free.Jakub
Guest (S-1-5-21-303898890-2447975317-2344255173-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-303898890-2447975317-2344255173-1003 - Limited - Enabled)
Jakubko (S-1-5-21-303898890-2447975317-2344255173-1001 - Administrator - Enabled) => C:\Users\Jakubko
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Smart Security 8.0 (Disabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personálny Firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\uTorrent) (Version: 3.4.6.42094 - BitTorrent Inc.)
Ace Stream Media 2.2.2-next (HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\AceStream) (Version: 2.2.2-next - Ace Stream Media) <==== ATTENTION
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 17.0.0.144 - Adobe Systems Incorporated)
Adobe Digital Editions 4.0 (HKLM-x32\...\Adobe Digital Editions 4.0) (Version: 4.0 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Illustrator CS6 (HKLM-x32\...\{4869414E-7AEA-4C8E-BE1C-8D40977FD517}) (Version: 16.0 - Adobe Systems Incorporated)
Adobe Photoshop CS5 (HKLM-x32\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Reader X (10.1.8) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.8 - Adobe Systems Incorporated)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.9 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 2.0.4 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.03.0004 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.5 - ASUS)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Atheros Communications Inc.)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0023 - ASUS)
BatteryCare 0.9.26.0 (HKLM-x32\...\{C6A6036D-FBD0-4324-BEAA-C0845257160C}_is1) (Version: 0.9.26.0 - Filipe Lourenço)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.66.1075 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.10 - Piriform)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0337 - Disc Soft Ltd)
Dropbox (HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\Dropbox) (Version: 3.2.6 - Dropbox, Inc.)
ESET Smart Security (HKLM\...\{8B56A9EA-22AD-4DA8-9744-E63DCEEFA6C6}) (Version: 8.0.319.1 - ESET, spol s r. o.)
f.lux (HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\Flux) (Version: - )
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
FastStone Photo Resizer 3.3 (HKLM-x32\...\FastStone Photo Resizer) (Version: 3.3 - FastStone Soft.)
Fotogaléria (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Free Video Cutter Joiner 10.4 (HKLM-x32\...\{8C5A4758-C782-4200-B337-DB3466D33ADD}}_is1) (Version: 10.4 - DVDVideoMedia, Inc.)
Free Video Volume Booster v1.9 (HKLM-x32\...\Free Video Volume Booster_is1) (Version: 1.9.0.0 - DVDAVITools)
Galeria fotografii (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Gephi 0.8.2 (HKLM-x32\...\{51722911-C391-4118-97BF-B50100D2AB15}_is1) (Version: - Gephi)
GIF Movie Gear 4.2.3 (HKLM-x32\...\GIF Movie Gear_is1) (Version: - gamani productions)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.94 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2867 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
JuiceboxBuilder-Lite (HKLM-x32\...\JuiceboxBuilder-Lite) (Version: 1.4.4 - SimpleViewer Inc)
JuiceboxBuilder-Lite (x32 Version: 1.4.4 - SimpleViewer Inc) Hidden
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.422 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.422 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware verzia 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Manager (x32 Version: 3.0.7.25771 - ANDREA VACONDIO) Hidden
Microsoft Office 2013 Professional Plus (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\SkyDriveSetup.exe) (Version: 17.0.2003.1112 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 43.0.4 (x86 sk) (HKLM-x32\...\Mozilla Firefox 43.0.4 (x86 sk)) (Version: 43.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.4 - Mozilla)
MyBitCast 2.0 (HKLM-x32\...\MyBitCast) (Version: 2.0 - ASUS)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PDFsam Basic (HKLM-x32\...\{96ABFF50-88F5-426E-96CC-80C98F198C4D}) (Version: 3.0.20.0 - Andrea Vacondio)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Podstawowe programy Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.5.7.2450 - Jan Fiala)
R for Windows 3.0.2 (HKLM\...\R for Windows 3.0.2_is1) (Version: 3.0.2 - R Core Team)
Ralink Bluetooth Stack64 (HKLM\...\{ED818A3C-3DF5-CDCF-3DB2-A646D7B31A16}) (Version: 9.0.717.0 - Ralink Corporation)
Ralink RT2860 Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}) (Version: 1.2.0.41 - Ralink)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6798 - Realtek Semiconductor Corp.)
RStudio (HKLM-x32\...\RStudio) (Version: 0.98.501 - RStudio)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SopCast 3.8.3 (HKLM-x32\...\SopCast) (Version: 3.8.3 - www.sopcast.com)
System Requirements Lab CYRI (HKLM-x32\...\{1110A014-1471-4B66-BFDC-E8EED120CC59}) (Version: 6.0.20.0 - Husdawg, LLC)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
Unity Web Player (HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Veetle TV (HKLM-x32\...\Veetle TV) (Version: 0.9.19 - Veetle, Inc)
Vegas Pro 12.0 (64-bit) (HKLM\...\{A7500970-FE98-11E1-B560-F04DA23A5C58}) (Version: 12.0.367 - Sony)
Video Download Capture version 5.1.1 (HKLM-x32\...\{3C9D008D-3716-4C3F-90CD-38ED57568FAB}_is1) (Version: 5.1.1 - APOWERSOFT LIMITED)
VLC media player 2.0.5 (HKLM-x32\...\VLC media player) (Version: 2.0.5 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.1 - ASUS)
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{724FE766-71C2-4E6E-8379-CD0EF5E51BDD}\InprocServer32 -> C:\Users\Jakubko\AppData\Local\Google\Update\1.3.28.17\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-303898890-2447975317-2344255173-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1B4268FE-D24B-4571-87E9-4173B73B71E0} - System32\Tasks\{BA8C1A9E-9B9F-400E-9057-1A688487C3A4} => pcalua.exe -a C:\Users\Jakubko\Desktop\dopiči\MF3200_MFDrivers_Win_x32_EN_7\Setup.exe -d C:\Users\Jakubko\Desktop\dopiči\MF3200_MFDrivers_Win_x32_EN_7
Task: {2C38D3FF-112B-4253-BEB3-22C08EC0AC5F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-14] (Google Inc.)
Task: {4D357D5C-DA23-49D6-BCC7-EE68B4321C27} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-303898890-2447975317-2344255173-1001UA => C:\Users\Jakubko\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-07-12] (Facebook Inc.)
Task: {62879AEE-AE55-448E-92E1-CE65E539A703} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {6DAF74FF-D8B8-4B20-A95C-32C18DEB1B9F} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-09-18] (ASUSTek Computer Inc.)
Task: {8CAE2F8E-AFBD-4445-A039-7C64D8F5F74D} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-303898890-2447975317-2344255173-1001Core => C:\Users\Jakubko\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-07-12] (Facebook Inc.)
Task: {93CA7E2E-50C8-48FE-8C3F-C01CFC012169} - System32\Tasks\GoogleUpdateTaskMachineUA1cf4c2f423ca369 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-14] (Google Inc.)
Task: {9AFE28A3-D2EC-4D7A-AF0B-6991ED612E3D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-09-16] (Piriform Ltd)
Task: {9EB09F25-39DD-40BC-937A-1CC15C028071} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-08-24] (ASUS)
Task: {AAE875CB-D382-4D22-B271-CCBE7B60FE46} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {C4C08318-827F-4728-B645-199D3154BD19} - System32\Tasks\{3A16869A-98D7-455E-AE62-FD6425EB19EC} => pcalua.exe -a "C:\Program Files (x86)\Counter-Strike 1.6\Uninstal.exe"
Task: {DDE1001E-9E6A-44F6-B902-D34E264C61CC} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {E8D8864E-D0CD-44DE-A69E-38D4192856E1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-14] (Google Inc.)
Task: {ED82DCAC-7631-4E57-ABDE-4CBCBFB7214B} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2013-11-05] ()
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-303898890-2447975317-2344255173-1001Core.job => C:\Users\Jakubko\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-303898890-2447975317-2344255173-1001UA.job => C:\Users\Jakubko\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2012-08-14 15:13 - 2012-08-14 15:13 - 00009728 _____ () C:\Windows\system32\BsHelpCSps.dll
2010-07-15 06:44 - 2010-07-15 06:44 - 00020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2012-08-15 18:20 - 2012-08-15 18:20 - 00356352 _____ () C:\Windows\system32\BsExtendFunc.dll
2012-08-14 15:11 - 2012-08-14 15:11 - 00022528 _____ () C:\Windows\system32\BsTrace.dll
2012-08-14 15:13 - 2012-08-14 15:13 - 00052736 _____ () C:\Windows\system32\BlueSoleilCSps.dll
2014-01-04 01:17 - 2014-03-22 14:08 - 00252928 _____ () C:\Program Files (x86)\BatteryCare\OpenHardwareMonitorLib.dll
2013-01-18 08:38 - 2012-10-15 06:09 - 00094208 _____ () C:\Windows\system32\IccLibDll_x64.dll
2012-08-24 18:26 - 2012-08-24 18:26 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2014-03-18 13:36 - 2014-09-25 13:57 - 00027904 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\ace_engine.exe
2013-03-29 13:18 - 2013-03-29 13:18 - 00026744 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\ace_update.exe
2012-08-14 15:11 - 2012-08-14 15:11 - 00022528 _____ () C:\Windows\SYSTEM32\BsTrace.dll
2012-08-14 15:13 - 2012-08-14 15:13 - 00009728 _____ () C:\Windows\SYSTEM32\BsHelpCSps.dll
2012-08-14 15:13 - 2012-08-14 15:13 - 00052736 _____ () C:\Windows\SYSTEM32\BlueSoleilCSps.dll
2012-08-14 11:24 - 2012-08-14 11:24 - 00323648 _____ () C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\USB\tl_filter.dll
2012-05-02 18:28 - 2012-05-02 18:28 - 00012800 _____ () C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\AMP\IVTAMPRL.dll
2013-03-31 10:31 - 2012-06-25 11:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2012-08-24 18:17 - 2012-08-24 18:17 - 00009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2012-08-14 15:16 - 2012-08-14 15:16 - 00072192 _____ () C:\Windows\SYSTEM32\BsProfilefunc.dll
2012-08-15 18:20 - 2012-08-15 18:20 - 00356352 _____ () C:\Windows\SYSTEM32\BsExtendFunc.dll
2014-03-18 13:37 - 2014-11-28 14:46 - 00249856 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\acestreamengine.Core.pyd
2011-06-12 15:09 - 2011-06-12 15:09 - 00038400 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\_socket.pyd
2011-06-12 15:09 - 2011-06-12 15:09 - 00720896 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\_ssl.pyd
2013-11-27 17:50 - 2013-11-27 17:50 - 00018944 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\acestreamengine.pycompat.pyd
2011-06-12 15:06 - 2011-06-12 15:06 - 00287232 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\_hashlib.pyd
2014-03-17 18:26 - 2014-11-28 14:46 - 01732096 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\acestreamengine.live.pyd
2014-01-23 13:37 - 2014-01-23 13:37 - 00036352 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\_psutil_mswindows.pyd
2013-12-21 15:20 - 2013-12-21 15:20 - 00053248 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\_blist.pyd
2011-06-12 15:06 - 2011-06-12 15:06 - 00106496 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\_ctypes.pyd
2013-12-21 15:20 - 2013-12-21 15:20 - 00040448 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\bitarray._bitarray.pyd
2011-06-12 15:06 - 2011-06-12 15:06 - 00011776 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\select.pyd
2011-01-18 23:56 - 2011-01-18 23:56 - 00334336 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\M2Crypto.__m2crypto.pyd
2011-06-12 15:06 - 2011-06-12 15:06 - 00152576 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\pyexpat.pyd
2011-02-13 17:02 - 2011-02-13 17:02 - 00031232 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\Crypto.Cipher.AES.pyd
2014-03-18 13:47 - 2014-11-28 14:46 - 03083264 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\acestreamengine.CoreApp.pyd
2012-02-07 18:37 - 2012-02-07 18:37 - 00098816 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\win32api.pyd
2012-02-07 18:35 - 2012-02-07 18:35 - 00110080 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\pywintypes27.dll
2012-02-07 18:38 - 2012-02-07 18:38 - 00358912 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\pythoncom27.dll
2012-02-07 18:36 - 2012-02-07 18:36 - 00111616 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\win32file.pyd
2012-02-07 18:36 - 2012-02-07 18:36 - 00024064 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\win32pdh.pyd
2010-10-11 00:23 - 2010-10-11 00:23 - 00723968 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\apsw.pyd
2013-01-29 18:20 - 2013-01-29 18:20 - 00082944 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\cpyamf.util.pyd
2011-07-15 21:37 - 2011-07-15 21:37 - 00981504 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\wx._core_.pyd
2011-07-15 21:38 - 2011-07-15 21:38 - 00746496 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\wx._gdi_.pyd
2011-07-15 21:38 - 2011-07-15 21:38 - 00670720 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\wx._windows_.pyd
2011-07-15 21:38 - 2011-07-15 21:38 - 00966144 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\wx._controls_.pyd
2011-07-15 21:38 - 2011-07-15 21:38 - 00674816 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\wx._misc_.pyd
2011-06-12 15:06 - 2011-06-12 15:06 - 00688128 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\unicodedata.pyd
2013-12-21 15:02 - 2013-12-21 15:02 - 00061952 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\miniupnpc.pyd
2013-01-29 18:20 - 2013-01-29 18:20 - 00066048 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\cpyamf.amf0.pyd
2011-06-12 15:09 - 2011-06-12 15:09 - 00038400 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\_socket.pyd
2011-06-12 15:09 - 2011-06-12 15:09 - 00720896 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\_ssl.pyd
2011-07-15 21:37 - 2011-07-15 21:37 - 00981504 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\wx._core_.pyd
2011-07-15 21:38 - 2011-07-15 21:38 - 00746496 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\wx._gdi_.pyd
2011-07-15 21:38 - 2011-07-15 21:38 - 00670720 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\wx._windows_.pyd
2011-07-15 21:38 - 2011-07-15 21:38 - 00966144 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\wx._controls_.pyd
2011-07-15 21:38 - 2011-07-15 21:38 - 00674816 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\wx._misc_.pyd
2011-06-12 15:06 - 2011-06-12 15:06 - 00287232 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\_hashlib.pyd
2011-01-18 23:56 - 2011-01-18 23:56 - 00334336 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\M2Crypto.__m2crypto.pyd
2011-06-12 15:06 - 2011-06-12 15:06 - 00011776 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\select.pyd
2011-06-12 15:06 - 2011-06-12 15:06 - 00152576 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\pyexpat.pyd
2012-02-07 18:37 - 2012-02-07 18:37 - 00098816 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\win32api.pyd
2012-02-07 18:35 - 2012-02-07 18:35 - 00110080 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\pywintypes27.dll
2012-02-07 18:38 - 2012-02-07 18:38 - 00358912 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\pythoncom27.dll
2012-02-07 18:36 - 2012-02-07 18:36 - 00111616 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\win32file.pyd
2012-02-07 18:36 - 2012-02-07 18:36 - 00024064 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\updater\lib\win32pdh.pyd
2014-07-27 17:06 - 2014-09-25 13:57 - 00642680 _____ () C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\lib\ctools.dll
2016-05-03 08:13 - 2016-04-28 01:25 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\libglesv2.dll
2016-05-03 08:13 - 2016-04-28 01:25 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\libegl.dll
2016-05-03 08:13 - 2016-04-28 01:25 - 17536664 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2012-07-26 07:26 - 2013-09-24 22:58 - 00003037 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 hl2rcv.adobe.com
127.0.0.1 adobeereg.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-1.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 adobe-dns-4.adobe.com
127.0.0.1 adobe-dns-5.adobe.com
127.0.0.1 hh-software.com
127.0.0.1 www.hh-software.com
127.0.0.1 activate.adobe.de
127.0.0.1 practivate.adobe.de
127.0.0.1 ereg.adobe.de
127.0.0.1 activate.wip3.adobe.de
127.0.0.1 wip3.adobe.de
127.0.0.1 3dns-3.adobe.de
There are 39 more lines.
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Jakubko\AppData\Roaming\Microsoft\Windows Photo Viewer\Tapeta programu Windows Photo Viewer.jpg
DNS Servers: 158.195.6.2 - 158.195.6.3
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\startupreg: ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: ASUSPRP => "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
MSCONFIG\startupreg: ASUSWebStorage => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\AsusWSPanel.exe /S
MSCONFIG\startupreg: BtTray => "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
MSCONFIG\startupreg: DisableS3S4 => c:\windows\temp\DisableS3S464\sethigh.cmd
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
MSCONFIG\startupreg: mcui_exe => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
MSCONFIG\startupreg: RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX3
MSCONFIG\startupreg: RTHDVCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\StartupApproved\StartupFolder: => "Dropbox.lnk"
HKU\S-1-5-21-303898890-2447975317-2344255173-1001\...\StartupApproved\Run: => "RocketDock"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{EE1E9DB0-229C-4E4D-AB74-642FAA08F87E}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{D0FA0F34-2B11-4B51-BE43-943BD88E7185}] => (Allow) LPort=2869
FirewallRules: [{43A4B368-FEBD-4F53-870A-9EB533D56567}] => (Allow) LPort=1900
FirewallRules: [{B2C50186-6B9C-42D9-AB4C-23814EA2AD78}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{962ACE11-2124-4FC8-9751-3B5000789E54}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{35AF1BC6-4F6B-4E45-BD1B-BADD4CB46C29}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{92A343F8-4D46-4160-8ACE-8705C5A41A6A}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{90084849-4E3F-4049-AAE8-6F5FAAD78237}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{63AFFFB7-5086-4A96-A24C-CD137CC49BA4}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{EAE86642-BA34-4B2D-AEBD-5B042F6284D1}] => (Allow) C:\Users\Jakubko\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{16A88E04-34F6-44F1-9717-B6C002522867}] => (Allow) C:\Users\Jakubko\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{52154D9D-2DD6-4AF8-A9BB-A8A60604880C}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{0AC0A9C5-39DD-4424-904C-AD1C8B3ABD7A}] => (Allow) C:\Users\Jakubko\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{BFDBA048-E2AA-4CCF-9615-866C7A1D5134}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{271F0FFD-C8AE-4F41-A5A1-C816FE14273E}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{790DE34A-AB1F-40F6-8F9C-5F786B53E10C}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{51AF1B0D-9ACB-44F8-A350-C309ECB483FF}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{A97101E6-77CA-4708-B7EA-8E616E81CDED}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{6AB331AA-E048-471F-9E92-2D2742E61F40}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{BDFB7F34-C644-4447-8B09-CFA9E130C8DB}] => (Allow) C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 2011\pes2011.exe
FirewallRules: [{347BE201-83ED-4160-B4B6-631CEE8885D7}] => (Allow) C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 2011\pes2011.exe
FirewallRules: [{5A00DF8A-BED5-41F1-8AB6-5FE422DF2A9E}] => (Allow) C:\Program Files (x86)\Veetle\Player\VeetleNet.exe
FirewallRules: [{A2B9353A-134F-418C-8699-8EA748F5A3D2}] => (Allow) C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\ace_engine.exe
FirewallRules: [{C5764DFA-C8BB-4A2A-9EB7-385E2197238A}] => (Allow) C:\Users\Jakubko\AppData\Roaming\ACEStream\engine\ace_engine.exe
FirewallRules: [{B37B7A6F-3E50-4E38-A734-6A26D8A25DA5}] => (Allow) C:\Users\Jakubko\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{EA46C1AC-BC07-4189-B366-26C038D9056F}] => (Allow) C:\Users\Jakubko\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{41AF77E6-4AE5-41C0-A4FE-75C427ACBC86}] => (Allow) C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Season 2012\PCM.exe
FirewallRules: [{9CFDD269-AAC5-4F9C-AE7A-B5F4197C4911}] => (Allow) C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Season 2012\PCM.exe
FirewallRules: [{9A9546DC-BDB7-4365-9136-08276340B7B9}] => (Allow) C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Season 2012\Autorun\Exe\Autorun.exe
FirewallRules: [{BB7C63E6-6D8E-460C-A1DB-0603DE9635B8}] => (Allow) C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Season 2012\Autorun\Exe\Autorun.exe
FirewallRules: [{04174E7E-F995-48B6-B1BD-5928ECA8C8CD}] => (Allow) C:\Users\Jakubko\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{4C087849-F7D5-4B74-A540-09A30D69652E}] => (Allow) C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{D3C945AD-03EE-4FA4-910F-392F29CC27F9}] => (Allow) C:\Users\Jakubko\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{05F16999-D37F-4784-BA8B-D916193C650E}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe
FirewallRules: [{3E765FB9-CB83-4138-AB93-A8F43F571B79}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe
FirewallRules: [{6D6666CC-67FC-4298-8A5D-829C9A45A6A0}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll
FirewallRules: [{5B1278D3-8F3C-4244-9FC9-D574BF3406B6}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll
FirewallRules: [{C46FB8A6-B3EF-449F-ACF8-692C3804F7B2}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll
FirewallRules: [{35DA6D62-A917-40A4-A85F-C7E768FB79E8}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll
FirewallRules: [{F6EE3438-164B-4969-B90A-549DA3E16967}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll
FirewallRules: [{48D1E8C7-E0EC-41D4-9488-598695280C7F}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll
FirewallRules: [{E14166CA-222F-499D-ACE6-93CAD4F3DA27}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll
FirewallRules: [{564F4FDE-66D0-4638-89B7-450FB75BC29A}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll
FirewallRules: [{4F47FC3F-32D9-4E28-A880-FE72DD5D8DF8}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll
FirewallRules: [{40D4BE79-A395-4308-91C6-DF6702008AF9}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll
FirewallRules: [{A68E97FF-CCFF-4BFB-AE1E-1D2429E77703}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll
FirewallRules: [{9BF175E2-59C7-4015-BDD3-02226622B059}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll
FirewallRules: [{B8904D72-3216-4B8E-A252-580DCDE50863}] => (Allow) C:\Program Files (x86)\Sports Interactive\Football Manager 2010\fm.exe
FirewallRules: [{8E1D27BB-C763-42D1-9DF2-94BD65717002}] => (Allow) C:\Program Files (x86)\Sports Interactive\Football Manager 2010\fm.exe
FirewallRules: [{FAC2659C-D6F9-428A-A4D8-F7F1A59438A9}] => (Allow) C:\Program Files (x86)\Sports Interactive\Football Manager 2010\fm.exe
FirewallRules: [{8182F881-9135-4D4A-890A-ACB5B496CB10}] => (Allow) C:\Program Files (x86)\Sports Interactive\Football Manager 2010\fm.exe
FirewallRules: [{6E41534F-F798-4174-BDB3-9CD690A95752}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{DADD6C06-2365-476D-BF84-E0E9AE276FD7}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{281D4F1A-2DFB-4F66-8828-ECC7DB768E30}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{1C7A8F6A-A8CC-4721-AC64-214D531F7E20}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{0310FAAA-4CF1-437F-A353-3588DA5BA06F}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{3D862089-81E0-47CF-8A71-4C7E444A46D9}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{88A4971E-6E8F-46F3-BCDA-204352005137}] => (Allow) C:\Users\Jakubko\AppData\Local\Temp\Setup.exe
FirewallRules: [{19D49D13-9FF4-431A-A513-6E075C01F8C2}] => (Allow) C:\Users\Jakubko\AppData\Local\Temp\Setup.exe
FirewallRules: [{BC89FCE8-B47E-47BE-9023-7EAE0A0D7598}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BF4EF942-8BE9-4147-B1C4-F9DBF499140B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2C4D318B-2398-468F-ADC3-CFE339F4B3DD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{FC6E3B47-872F-456F-82DB-A4F58A0B096D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{35CD9394-5F94-41D3-B6DC-770DD37832B9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{BC37413D-E90C-4AF9-BA1D-542C6460BFAD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{9A954222-7F78-4026-87EB-D77FD18A9EB3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Restore Points =========================
18-04-2016 06:46:41 Scheduled Checkpoint
25-04-2016 15:08:11 Scheduled Checkpoint
27-04-2016 16:28:08 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
06-05-2016 08:07:10 Scheduled Checkpoint
==================== Faulty Device Manager Devices =============
Name: BT1502 Stereo
Description: Bluetooth Stereo
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthA2DP
Problem: : A driver (service) for this device has been disabled. An alternate driver may be providing this functionality (Code 32)
Resolution: The start type for this driver is set to disabled in the registry.
Uninstall the driver from Device Manager, and then scan for new hardware to install the driver again. If this does not work, you might have to change the device start type parameter in the registry.
Name: BT1502 Audio/Video Remote Control HID
Description: Bluetooth Audio/Video Remote Control HID
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service: BthAvrcpTg
Problem: : A driver (service) for this device has been disabled. An alternate driver may be providing this functionality (Code 32)
Resolution: The start type for this driver is set to disabled in the registry.
Uninstall the driver from Device Manager, and then scan for new hardware to install the driver again. If this does not work, you might have to change the device start type parameter in the registry.
==================== Event log errors: =========================
Application errors:
==================
Error: (05/09/2016 06:51:36 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (05/09/2016 06:51:36 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (05/09/2016 06:37:33 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "x64" of attribute "processorArchitecture" in element "assemblyIdentity" is invalid.
Error: (05/09/2016 06:34:22 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "x64" of attribute "processorArchitecture" in element "assemblyIdentity" is invalid.
Error: (05/09/2016 06:05:10 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c04ed6bf-55c8-4b47-9f8e-5a1f31ceee60;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (05/08/2016 08:07:15 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c04ed6bf-55c8-4b47-9f8e-5a1f31ceee60;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (05/08/2016 07:07:41 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c04ed6bf-55c8-4b47-9f8e-5a1f31ceee60;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (05/07/2016 01:55:02 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "x64" of attribute "processorArchitecture" in element "assemblyIdentity" is invalid.
Error: (05/07/2016 11:41:00 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c04ed6bf-55c8-4b47-9f8e-5a1f31ceee60;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (05/07/2016 11:40:42 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c04ed6bf-55c8-4b47-9f8e-5a1f31ceee60;NotificationInterval=1440;Trigger=NetworkAvailable
System errors:
=============
Error: (05/09/2016 02:11:25 PM) (Source: DCOM) (EventID: 10016) (User: Jakub)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}JakubJakubkoS-1-5-21-303898890-2447975317-2344255173-1001LocalHost (Using LRPC)UnavailableS-1-15-2-4207732781-172938799-553667421-1688404213-3431886802-1328152158-789232590
Error: (05/09/2016 02:10:06 PM) (Source: DCOM) (EventID: 10016) (User: Jakub)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}JakubJakubkoS-1-5-21-303898890-2447975317-2344255173-1001LocalHost (Using LRPC)UnavailableS-1-15-2-4207732781-172938799-553667421-1688404213-3431886802-1328152158-789232590
Error: (05/09/2016 06:02:08 AM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "7A79197FDCCE" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.
Error: (05/09/2016 06:02:08 AM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "7A79197FDCCE" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.
Error: (05/04/2016 03:28:00 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "JAKUB :0" could not be registered on the interface with IP address 158.195.226.252.
The computer with the IP address 158.195.224.91 did not allow the name to be claimed by
this computer.
Error: (05/04/2016 03:28:00 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "JAKUB :20" could not be registered on the interface with IP address 158.195.226.252.
The computer with the IP address 158.195.224.91 did not allow the name to be claimed by
this computer.
Error: (05/04/2016 03:28:00 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{B19DAFF3-11D7-491A-B8B8-3C62919F0E54} because another computer on the network has the same name. The server could not start.
Error: (05/04/2016 02:34:46 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "JAKUB :0" could not be registered on the interface with IP address 158.195.226.252.
The computer with the IP address 158.195.224.91 did not allow the name to be claimed by
this computer.
Error: (05/04/2016 02:34:44 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "JAKUB :0" could not be registered on the interface with IP address 158.195.226.252.
The computer with the IP address 158.195.224.91 did not allow the name to be claimed by
this computer.
Error: (05/04/2016 02:34:40 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "JAKUB :0" could not be registered on the interface with IP address 158.195.226.252.
The computer with the IP address 158.195.224.91 did not allow the name to be claimed by
this computer.
==================== Memory info ===========================
Processor: Intel(R) Pentium(R) CPU 987 @ 1.50GHz
Percentage of memory in use: 62%
Total physical RAM: 3979.72 MB
Available physical RAM: 1501.8 MB
Total Virtual: 8075.72 MB
Available Virtual: 4385.2 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:186.3 GB) (Free:29.27 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (DATA) (Fixed) (Total:258.15 GB) (Free:255.85 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: C2B20764)
Partition: GPT.
==================== End of Addition.txt ============================
