VIRY.CZ

Dobrý den,

Před chvíli jsem zjistil že mám v PC keylogger, snažil jsem se jej odstranil(netuším jestli úspěšně) proto píšu sem a potřebuju zjistit, zda-li v počítači furt něco zbylo, nebo ho mám rovnou přeinstalovat. Jsem úplný nováček v těchto věcech tak jsem našel tento web a zavítal pro radu, tak doufám, že se zde najdou ochotní lidé co pomůžou.

Děkuji mnohokrát

S pozdravem Lox1k

Zdravím!
Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-07-2016
Ran by Martin (administrator) on MARTIN-PC (24-07-2016 19:04:44)
Running from D:\Download
Loaded Profiles: Martin (Available Profiles: Martin)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices) C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(Valve Corporation) D:\Programy\Steam\Steam.exe
(MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\Live Update.exe
(Portrait Displays, Inc) C:\Program Files (x86)\BenQ\Display Pilot\dthtml.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Portrait Displays Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\HookManager.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) D:\Programy\Steam\bin\steamwebhelper.exe
() C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\wpCtrl.exe
() C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Floater.exe
() C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\DP\DPHelper.exe
() C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\DP\DPHelper64.exe
(TeamSpeak Systems GmbH) E:\CSGO věci\TeamSpeak 3 Client\ts3client_win64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Blizzard Entertainment) D:\Hry\WoW TBC\Wow.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8822528 2016-07-01] (Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5595336 2014-10-01] (ESET)
HKLM\...\Run: [ISCT Tray] => C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [5860656 2014-08-25] (Intel Corporation)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [5006536 2016-03-21] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-09-16] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-03-24] (Intel Corporation)
HKLM-x32\...\Run: [SSD Tweaker] => C:\SSD Tweaker\SSD Tweaker.exe -reboot
HKLM-x32\...\Run: [PivotSoftware] => C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe [112424 2013-06-18] ()
HKLM-x32\...\Run: [DT BEN] => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe [122384 2013-11-12] (Portrait Displays, Inc.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [11340752 2016-06-28] (Micro-Star INT'L CO., LTD.)
HKU\S-1-5-21-3906232614-693120502-1999264316-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2016-02-18] (Google Inc.)
HKU\S-1-5-21-3906232614-693120502-1999264316-1000\...\Run: [Steam] => D:\Programy\Steam\steam.exe [2856528 2016-07-13] (Valve Corporation)
HKU\S-1-5-21-3906232614-693120502-1999264316-1000\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\Bluestacks\HD-Agent.exe
HKU\S-1-5-21-3906232614-693120502-1999264316-1000\...\Run: [GoogleChromeAutoLaunch_B3FBEF5462B7ECF3CF8933E4FE9764B6] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [941720 2016-06-15] (Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2016-02-19]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.88.1
Tcpip\..\Interfaces\{9FE044E1-CD16-43F7-AAB3-AD51B4023994}: [DhcpNameServer] 192.168.88.1

Internet Explorer:
==================
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-3906232614-693120502-1999264316-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\pdf.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll => No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Steam inventory helper) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2016-07-21]
CHR Extension: (AdBlock) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-07-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Chrome Media Router) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-07-24]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ADATA ToolBox Service; C:\Program Files (x86)\ADATA\SSD ToolBox\ToolBoxSvc.exe [2257920 2015-10-15] () [File not signed]
R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2016-03-21] (Advanced Micro Devices) [File not signed]
R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe [138768 2013-11-12] (Portrait Displays, Inc.)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [232208 2016-06-20] (EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1349576 2014-10-01] (ESET)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
S3 intelsba; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [54976 2014-03-27] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-08-25] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2934048 2015-10-09] (IObit)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2247120 2016-06-28] (Micro-Star INT'L CO., LTD.)
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD.)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4307704 2016-02-25] (INCA Internet Co., Ltd.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 amdacpksd; C:\Windows\system32\drivers\amdacpksd.sys [305032 2016-07-10] (Advanced Micro Devices)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-10-10] (ESET)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [241368 2014-10-10] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [169280 2014-10-10] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [222280 2014-10-10] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44632 2014-10-10] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [63160 2014-10-10] (ESET)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2016-02-19] (REALiX(tm))
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [31712 2016-07-01] (Intel Corporation)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [22216 2014-05-27] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [22728 2014-05-27] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-05-27] ()
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2016-02-19] ()
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [181304 2016-07-10] (Intel Corporation)
S3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [32936 2016-02-19] (Synaptics Incorporated)
R3 ssdevfactory; C:\Windows\System32\DRIVERS\ssdevfactory.sys [32792 2015-09-29] (SteelSeries ApS)
R3 sshid; C:\Windows\System32\DRIVERS\sshid.sys [51400 2016-02-02] (SteelSeries ApS)
S3 BioNTDrv; \??\C:\Program Files (x86)\Paragon Software\Migrate OS to SSD\program\BioNTDrv.SYS [X]
S3 gkernel; \??\C:\Users\Martin\AppData\Local\Temp\gkernel.sys [X]
S3 MSICDSetup; \??\F:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\F:\NTIOLib_X64.sys [X]
S3 X6va062; \??\C:\Windows\SysWOW64\Drivers\X6va062 [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-24 19:04 - 2016-07-24 19:04 - 00000000 ____D C:\FRST
2016-07-24 18:11 - 2016-07-24 18:11 - 00000000 ____D C:\rsit
2016-07-24 18:11 - 2016-07-24 18:11 - 00000000 ____D C:\Program Files\trend micro
2016-07-24 16:27 - 2016-07-24 16:27 - 00000000 ____D C:\Program Files (x86)\PC Tools
2016-07-24 16:25 - 2016-07-24 18:04 - 00000000 ____D C:\ProgramData\PC Tools
2016-07-24 16:25 - 2016-07-24 16:25 - 02468442 _____ C:\Windows\system32\Drivers\Cat.DB
2016-07-24 16:25 - 2016-07-24 16:25 - 00000000 ____D C:\Users\Martin\AppData\Roaming\TestApp
2016-07-24 16:25 - 2012-11-01 15:35 - 00253256 _____ (PC Tools) C:\Windows\system32\Drivers\PCTSD64.sys
2016-07-18 10:49 - 2016-07-18 10:49 - 00000938 _____ C:\Users\Martin\Desktop\Wow – zástupce.lnk
2016-07-18 10:22 - 2016-07-18 10:22 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-07-16 16:52 - 2016-06-11 08:57 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-07-16 16:52 - 2016-06-11 06:48 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-07-16 16:52 - 2016-06-10 23:38 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-07-16 16:52 - 2016-06-10 23:38 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-07-16 16:52 - 2016-06-10 23:20 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-07-16 16:52 - 2016-06-10 23:19 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-07-16 16:52 - 2016-06-10 23:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-07-16 16:52 - 2016-06-10 23:18 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-07-16 16:52 - 2016-06-10 23:18 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-07-16 16:52 - 2016-06-10 23:17 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-07-16 16:52 - 2016-06-10 23:10 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-07-16 16:52 - 2016-06-10 23:08 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-07-16 16:52 - 2016-06-10 23:05 - 25814016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-07-16 16:52 - 2016-06-10 23:04 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-07-16 16:52 - 2016-06-10 23:03 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-07-16 16:52 - 2016-06-10 23:03 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-07-16 16:52 - 2016-06-10 23:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-07-16 16:52 - 2016-06-10 23:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-07-16 16:52 - 2016-06-10 22:53 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-07-16 16:52 - 2016-06-10 22:50 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-07-16 16:52 - 2016-06-10 22:49 - 06047744 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-07-16 16:52 - 2016-06-10 22:40 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-07-16 16:52 - 2016-06-10 22:38 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-07-16 16:52 - 2016-06-10 22:35 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-07-16 16:52 - 2016-06-10 22:34 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-07-16 16:52 - 2016-06-10 22:31 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-07-16 16:52 - 2016-06-10 22:28 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-07-16 16:52 - 2016-06-10 22:15 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-07-16 16:52 - 2016-06-10 22:13 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-07-16 16:52 - 2016-06-10 22:12 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-07-16 16:52 - 2016-06-10 22:11 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-07-16 16:52 - 2016-06-10 22:10 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-07-16 16:52 - 2016-06-10 21:45 - 15409664 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-07-16 16:52 - 2016-06-10 21:44 - 02869248 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-07-16 16:52 - 2016-06-10 21:30 - 01550848 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-07-16 16:52 - 2016-06-10 21:21 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-07-16 16:52 - 2016-06-10 21:09 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-07-16 16:52 - 2016-06-10 20:54 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-07-16 16:52 - 2016-06-10 20:53 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-07-16 16:52 - 2016-06-10 20:53 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-07-16 16:52 - 2016-06-10 20:53 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-07-16 16:52 - 2016-06-10 20:52 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-07-16 16:52 - 2016-06-10 20:47 - 02287104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-07-16 16:52 - 2016-06-10 20:46 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-07-16 16:52 - 2016-06-10 20:45 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-07-16 16:52 - 2016-06-10 20:42 - 20348928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-07-16 16:52 - 2016-06-10 20:42 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-07-16 16:52 - 2016-06-10 20:41 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-07-16 16:52 - 2016-06-10 20:41 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-07-16 16:52 - 2016-06-10 20:41 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-07-16 16:52 - 2016-06-10 20:32 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-07-16 16:52 - 2016-06-10 20:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-07-16 16:52 - 2016-06-10 20:26 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-07-16 16:52 - 2016-06-10 20:24 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-07-16 16:52 - 2016-06-10 20:23 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-07-16 16:52 - 2016-06-10 20:21 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-07-16 16:52 - 2016-06-10 20:19 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-07-16 16:52 - 2016-06-10 20:14 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-07-16 16:52 - 2016-06-10 20:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-07-16 16:52 - 2016-06-10 20:10 - 00692736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-07-16 16:52 - 2016-06-10 20:09 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-07-16 16:52 - 2016-06-10 20:09 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-07-16 16:52 - 2016-06-10 19:58 - 13806080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-07-16 16:52 - 2016-06-10 19:45 - 02392576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-07-16 16:52 - 2016-06-10 19:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-07-16 16:52 - 2016-06-10 19:41 - 01315840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-07-16 16:51 - 2016-06-26 02:27 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-07-16 16:51 - 2016-06-26 02:27 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-07-16 16:51 - 2016-06-26 02:27 - 00344576 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2016-07-16 16:51 - 2016-06-26 02:27 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2016-07-16 16:51 - 2016-06-26 02:27 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2016-07-16 16:51 - 2016-06-25 21:54 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2016-07-16 16:51 - 2016-06-25 21:53 - 00297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2016-07-16 16:51 - 2016-06-25 21:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2016-07-16 16:51 - 2016-06-25 21:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2016-07-16 16:51 - 2016-06-25 21:41 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2016-07-16 16:51 - 2016-06-14 17:03 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-07-15 09:18 - 2016-07-15 09:17 - 01065671 _____ C:\Users\Martin\Documents\com.incorporateapps.fakegps.v4.6-siakbary.my.id.apk
2016-07-15 09:08 - 2016-07-15 08:38 - 60878833 _____ C:\Users\Martin\Documents\Pokémon GO_v0.29.2_apkpure.com.apk
2016-07-15 08:40 - 2016-07-18 13:00 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2016-07-15 08:40 - 2016-07-15 08:40 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Mozilla
2016-07-15 08:40 - 2016-07-15 08:40 - 00000000 ____D C:\Users\Martin\AppData\Local\Macromedia
2016-07-15 08:39 - 2016-07-15 08:39 - 00000000 ____D C:\Users\Martin\AppData\Local\Bluestacks
2016-07-11 11:24 - 2016-07-11 11:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2016-07-11 11:24 - 2016-07-01 17:32 - 00000000 ____D C:\Windows\SysWOW64\LiveUpdate
2016-07-11 11:24 - 2016-06-28 17:06 - 00012443 _____ C:\Windows\SysWOW64\ReleaseNote.txt
2016-07-10 19:26 - 2016-07-10 19:26 - 48616960 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 38098944 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 30188032 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 27433472 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 27003904 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2016-07-10 19:26 - 2016-07-10 19:26 - 24836096 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 21600768 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 15711744 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 14302720 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 09798560 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 08888016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 08865344 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 08815104 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdvlk64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 08577456 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 07059968 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdvlk32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 07000520 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 06965248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 05643776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 03471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2016-07-10 19:26 - 2016-07-10 19:26 - 03437632 _____ C:\Windows\system32\atiumd6a.cap
2016-07-10 19:26 - 2016-07-10 19:26 - 01245416 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00875613 _____ C:\Windows\system32\amdicdxx.dat
2016-07-10 19:26 - 2016-07-10 19:26 - 00732160 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00720104 _____ C:\Windows\SysWOW64\atiapfxx.blb
2016-07-10 19:26 - 2016-07-10 19:26 - 00720104 _____ C:\Windows\system32\atiapfxx.blb
2016-07-10 19:26 - 2016-07-10 19:26 - 00607744 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00498176 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2016-07-10 19:26 - 2016-07-10 19:26 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00385536 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2016-07-10 19:26 - 2016-07-10 19:26 - 00368416 _____ C:\Windows\system32\ativvaxy_el_nd.dat
2016-07-10 19:26 - 2016-07-10 19:26 - 00305032 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2016-07-10 19:26 - 2016-07-10 19:26 - 00274432 _____ C:\Windows\system32\dgtrayicon.exe
2016-07-10 19:26 - 2016-07-10 19:26 - 00270784 _____ C:\Windows\system32\ativvaxy_stn_nd.dat
2016-07-10 19:26 - 2016-07-10 19:26 - 00270336 _____ (AMD) C:\Windows\system32\atitmm64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00258560 _____ C:\Windows\system32\GameManager64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00252928 _____ C:\Windows\system32\clinfo.exe
2016-07-10 19:26 - 2016-07-10 19:26 - 00251392 _____ C:\Windows\system32\hsa-thunk64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00230912 _____ C:\Windows\system32\amdgfxinfo64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00217088 _____ C:\Windows\SysWOW64\hsa-thunk.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00212480 _____ C:\Windows\system32\atieah64.exe
2016-07-10 19:26 - 2016-07-10 19:26 - 00202752 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00190464 _____ C:\Windows\SysWOW64\atieah32.exe
2016-07-10 19:26 - 2016-07-10 19:26 - 00185344 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00159232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00150544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00142336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00141280 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00141280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00137136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00125288 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00123776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00122704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00119808 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00117760 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00113152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00106496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00101376 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00096256 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00093696 _____ (AMD) C:\Windows\system32\atimuixx.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00092160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00091136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00091136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00087040 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00050688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00038400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2016-07-10 19:25 - 2016-07-10 19:25 - 01030400 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2016-07-10 19:25 - 2016-07-10 19:25 - 00103424 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll
2016-07-10 19:25 - 2016-07-10 19:25 - 00096256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW76.sys
2016-07-10 19:25 - 2016-07-10 19:25 - 00082544 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2016-07-10 19:24 - 2016-07-10 19:24 - 00181304 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2016-07-10 19:09 - 2016-07-10 19:09 - 00000064 _____ C:\Users\Martin\Desktop\aaa.txt
2016-07-01 08:05 - 2016-07-01 08:05 - 05989809 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-07-01 08:05 - 2016-07-01 08:05 - 05085952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-07-01 08:05 - 2016-07-01 08:05 - 03283248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 03282544 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 03199232 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 03094704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 02895104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-07-01 08:05 - 2016-07-01 08:05 - 02060032 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 02050176 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 01978608 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO264.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 01745160 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO232.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 01355616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00689888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00574760 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00532384 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00410032 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00387320 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00330568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00221976 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00214832 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00209544 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00192984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00166208 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00122328 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00110984 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00088352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00041088 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys
2016-07-01 08:05 - 2016-07-01 08:05 - 00023696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-07-01 08:04 - 2016-07-01 08:04 - 00000775 _____ C:\Users\Public\Desktop\Heroes of the Storm.lnk
2016-07-01 08:04 - 2016-07-01 08:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2016-07-01 08:03 - 2016-07-10 19:26 - 00974336 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2016-07-01 08:03 - 2016-07-10 19:26 - 00865280 _____ (AMD) C:\Windows\system32\coinst_16.20.dll
2016-07-01 08:03 - 2016-07-01 08:03 - 00322996 _____ C:\Windows\system32\ativvaxy_vi.dat
2016-07-01 08:03 - 2016-07-01 08:03 - 00322736 _____ C:\Windows\system32\ativvaxy_vi_nd.dat
2016-07-01 08:03 - 2016-07-01 08:03 - 00266688 _____ C:\Windows\system32\ativvaxy_cz_nd.dat
2016-07-01 08:03 - 2016-07-01 08:03 - 00260852 _____ C:\Windows\system32\ativvaxy_FJ.dat
2016-07-01 08:03 - 2016-07-01 08:03 - 00257872 _____ C:\Windows\system32\ativvaxy_FJ_nd.dat
2016-07-01 08:03 - 2016-07-01 08:03 - 00177280 _____ C:\Windows\system32\ativce03.dat
2016-07-01 08:03 - 2016-07-01 08:03 - 00175584 _____ C:\Windows\system32\amde31a.dat
2016-07-01 08:03 - 2016-07-01 08:03 - 00166624 _____ C:\Windows\system32\amde34b.dat
2016-07-01 08:03 - 2016-07-01 08:03 - 00166624 _____ C:\Windows\system32\amde34a.dat
2016-07-01 08:03 - 2016-07-01 08:03 - 00012893 _____ C:\Windows\system32\AMDKernelEvents.man
2016-07-01 08:02 - 2016-07-01 08:02 - 01469952 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2016-07-01 08:02 - 2016-07-01 08:02 - 00031712 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2016-07-01 07:57 - 2016-07-22 13:03 - 00003348 _____ C:\Windows\System32\Tasks\ESET Windows 10 upgrade – Refresh settings
2016-07-01 07:57 - 2016-07-01 07:57 - 00000000 ____D C:\Program Files\Common Files\AV
2016-06-26 16:26 - 2016-06-26 16:26 - 00000933 _____ C:\Users\Public\Desktop\Metin2.lnk
2016-06-26 16:26 - 2016-06-26 16:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metin2
2016-06-26 16:16 - 2016-06-26 16:16 - 00000000 ____D C:\Users\Martin\AppData\Local\Gameforge4d
2016-06-26 16:15 - 2016-06-26 16:15 - 00000677 _____ C:\Users\Public\Desktop\Gameforge Live.lnk
2016-06-26 16:15 - 2016-06-26 16:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2016-06-25 15:49 - 2016-06-25 15:49 - 00000559 _____ C:\Users\Martin\Desktop\izi (2).txt

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-24 18:55 - 2016-05-10 22:50 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d1aafda3b48b71.job
2016-07-24 18:55 - 2016-02-18 22:42 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-24 18:40 - 2016-02-19 00:12 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-07-24 18:15 - 2009-07-14 06:45 - 00031504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-24 18:15 - 2009-07-14 06:45 - 00031504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-24 18:13 - 2010-11-21 11:27 - 00668768 _____ C:\Windows\system32\perfh005.dat
2016-07-24 18:13 - 2010-11-21 11:27 - 00141428 _____ C:\Windows\system32\perfc005.dat
2016-07-24 18:13 - 2009-07-14 07:13 - 01584138 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-24 18:13 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-07-24 18:11 - 2016-02-19 00:00 - 00003246 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler
2016-07-24 18:11 - 2016-02-19 00:00 - 00002878 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Martin)
2016-07-24 18:07 - 2016-05-10 22:50 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1aafda3a23bad.job
2016-07-24 18:07 - 2016-02-18 22:42 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-24 18:07 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-24 18:06 - 2016-02-19 00:53 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2016-07-24 18:04 - 2016-02-19 17:06 - 00000000 ____D C:\ProgramData\TEMP
2016-07-24 18:03 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries
2016-07-22 12:54 - 2016-02-19 00:01 - 00000000 ____D C:\ProgramData\ProductData
2016-07-17 10:23 - 2009-07-14 06:45 - 00288664 _____ C:\Windows\system32\FNTCACHE.DAT
2016-07-16 20:01 - 2016-02-20 22:39 - 00000000 ____D C:\Windows\system32\MRT
2016-07-16 19:59 - 2016-02-20 22:39 - 144749672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-07-15 08:30 - 2016-05-17 19:56 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-07-15 08:29 - 2016-05-17 19:56 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-07-11 11:24 - 2016-02-19 16:44 - 00001977 _____ C:\Users\Public\Desktop\MSI Live Update 6.lnk
2016-07-10 19:28 - 2016-02-19 00:00 - 00002168 _____ C:\Users\Public\Desktop\Driver Booster 3.lnk
2016-07-10 19:26 - 2016-02-19 00:09 - 10706496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2016-07-10 19:26 - 2016-02-19 00:09 - 01515312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2016-07-10 19:26 - 2016-02-19 00:09 - 00166488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2016-07-10 19:26 - 2016-02-03 17:16 - 00588288 _____ (AMD) C:\Windows\system32\atieclxx.exe
2016-07-10 19:26 - 2016-02-03 17:16 - 00306688 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2016-07-10 19:26 - 2016-02-03 17:16 - 00223744 _____ C:\Windows\SysWOW64\GameManager32.dll
2016-07-10 19:26 - 2016-02-03 17:11 - 01306624 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2016-07-10 19:26 - 2016-02-03 17:10 - 00974336 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2016-07-10 19:25 - 2016-02-18 22:40 - 00116304 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2016-07-10 17:56 - 2016-02-19 00:36 - 00000000 ____D C:\Users\Martin\AppData\Local\ElevatedDiagnostics
2016-07-10 17:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2016-07-01 13:08 - 2016-04-12 20:02 - 00000000 ____D C:\Users\Martin\AppData\Local\Battle.net
2016-07-01 08:15 - 2016-05-07 20:01 - 00000000 ____D C:\Users\Martin\Documents\Heroes of the Storm
2016-07-01 08:15 - 2016-04-12 20:02 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2016-07-01 08:06 - 2016-02-19 00:12 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-07-01 08:06 - 2016-02-19 00:12 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-07-01 08:06 - 2016-02-19 00:12 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-07-01 08:06 - 2016-02-18 22:41 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-06-28 11:02 - 2016-05-04 19:47 - 00000000 ____D C:\Users\Martin\Downloads\Gameforge Live
2016-06-25 17:58 - 2016-02-19 17:54 - 00000000 ____D C:\Users\Martin\AppData\Roaming\steelseries-engine-3-client
2016-06-25 17:40 - 2016-04-23 16:54 - 00000000 ____D C:\Users\Martin\Desktop\Songy

==================== Files in the root of some directories =======

2016-04-04 14:52 - 2016-04-04 14:52 - 0000044 _____ () C:\Users\Martin\AppData\Roaming\twow_sysprepdt.dat

Some files in TEMP:
====================
C:\Users\Martin\AppData\Local\Temp\BluestacksUninstaller.exe
C:\Users\Martin\AppData\Local\Temp\HD-LibraryHandler.dll
C:\Users\Martin\AppData\Local\Temp\HD-Logger-Native.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-07-10 21:25

==================== End of FRST.txt ============================

Teď spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

# AdwCleaner v5.201 - Log vytvořen 24/07/2016 v 19:10:54
# Aktualizováno 30/06/2016 by ToolsLib
# Databáze : 2016-07-21.2 [Server]
# Operační system : Windows 7 Professional Service Pack 1 (X64)
# Uživatelské jméno : Martin - MARTIN-PC
# Spuštěno z : C:\Users\Martin\Desktop\adwcleaner_5.201.exe
# Nastavení : Sken
# Podpora : https://toolslib.net/forum

***** [ Služby ] *****


***** [ Složky ] *****


***** [ Soubory ] *****

Soubor Nalezeno : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
Soubor Nalezeno : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal

***** [ DLL ] *****


***** [ WMI ] *****


***** [ Zástupci ] *****


***** [ Naplánované úlohy ] *****


***** [ Registry ] *****

Klíč Nalezeno : HKLM\SOFTWARE\Classes\protector_dll.Protector
Klíč Nalezeno : HKLM\SOFTWARE\Classes\protector_dll.Protector.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho
Klíč Nalezeno : HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
Klíč Nalezeno : HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1

***** [ Prohlížeče ] *****


*************************

C:\AdwCleaner\AdwCleaner[S1].txt - [1357 bytů] - [24/07/2016 19:10:54]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1430 bytů] ##########

Neklikl jste na mazání (3. tlačítko zleva). ADW nemazal. Zkuste ještě jednou.

AdwCleaner v5.201 - Log vytvořen 24/07/2016 v 19:56:50
# Aktualizováno 30/06/2016 by ToolsLib
# Databáze : 2016-07-21.2 [Server]
# Operační system : Windows 7 Professional Service Pack 1 (X64)
# Uživatelské jméno : Martin - MARTIN-PC
# Spuštěno z : C:\Users\Martin\Desktop\adwcleaner_5.201.exe
# Nastavení : Sken
# Podpora : https://toolslib.net/forum

***** [ Služby ] *****


***** [ Složky ] *****


***** [ Soubory ] *****


***** [ DLL ] *****


***** [ WMI ] *****


***** [ Zástupci ] *****


***** [ Naplánované úlohy ] *****


***** [ Registry ] *****


***** [ Prohlížeče ] *****


*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [1720 bytů] - [24/07/2016 19:31:45]
C:\AdwCleaner\AdwCleaner[S1].txt - [1509 bytů] - [24/07/2016 19:10:54]
C:\AdwCleaner\AdwCleaner[S2].txt - [825 bytů] - [24/07/2016 19:56:50]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [897 bytů] ##########

Pokud je toto log po smazání, dejte nový log FRST.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-07-2016
Ran by Martin (administrator) on MARTIN-PC (24-07-2016 21:04:31)
Running from D:\Download
Loaded Profiles: Martin (Available Profiles: Martin)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices) C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(Valve Corporation) D:\Programy\Steam\Steam.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\Live Update.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Portrait Displays, Inc) C:\Program Files (x86)\BenQ\Display Pilot\dthtml.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Portrait Displays Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\HookManager.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) D:\Programy\Steam\bin\steamwebhelper.exe
() C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\wpCtrl.exe
() C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Floater.exe
() C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\DP\DPHelper.exe
() C:\Program Files (x86)\Common Files\Portrait Displays\Plugins\DP\DPHelper64.exe
(TeamSpeak Systems GmbH) E:\CSGO věci\TeamSpeak 3 Client\ts3client_win64.exe
(Blizzard Entertainment) D:\Hry\WoW TBC\Wow.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8822528 2016-07-01] (Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5595336 2014-10-01] (ESET)
HKLM\...\Run: [ISCT Tray] => C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [5860656 2014-08-25] (Intel Corporation)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [5006536 2016-03-21] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-09-16] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-03-24] (Intel Corporation)
HKLM-x32\...\Run: [SSD Tweaker] => C:\SSD Tweaker\SSD Tweaker.exe -reboot
HKLM-x32\...\Run: [PivotSoftware] => C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe [112424 2013-06-18] ()
HKLM-x32\...\Run: [DT BEN] => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe [122384 2013-11-12] (Portrait Displays, Inc.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [11340752 2016-06-28] (Micro-Star INT'L CO., LTD.)
HKU\S-1-5-21-3906232614-693120502-1999264316-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2016-02-18] (Google Inc.)
HKU\S-1-5-21-3906232614-693120502-1999264316-1000\...\Run: [Steam] => D:\Programy\Steam\steam.exe [2856528 2016-07-13] (Valve Corporation)
HKU\S-1-5-21-3906232614-693120502-1999264316-1000\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\Bluestacks\HD-Agent.exe
HKU\S-1-5-21-3906232614-693120502-1999264316-1000\...\Run: [GoogleChromeAutoLaunch_B3FBEF5462B7ECF3CF8933E4FE9764B6] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [941720 2016-06-15] (Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2016-02-19]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.88.1
Tcpip\..\Interfaces\{9FE044E1-CD16-43F7-AAB3-AD51B4023994}: [DhcpNameServer] 192.168.88.1

Internet Explorer:
==================
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-3906232614-693120502-1999264316-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\pdf.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll => No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Steam inventory helper) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2016-07-21]
CHR Extension: (AdBlock) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-07-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Chrome Media Router) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-07-24]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ADATA ToolBox Service; C:\Program Files (x86)\ADATA\SSD ToolBox\ToolBoxSvc.exe [2257920 2015-10-15] () [File not signed]
R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2016-03-21] (Advanced Micro Devices) [File not signed]
R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe [138768 2013-11-12] (Portrait Displays, Inc.)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [232208 2016-06-20] (EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1349576 2014-10-01] (ESET)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
S3 intelsba; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [54976 2014-03-27] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-08-25] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2934048 2015-10-09] (IObit)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2247120 2016-06-28] (Micro-Star INT'L CO., LTD.)
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD.)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4307704 2016-02-25] (INCA Internet Co., Ltd.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 amdacpksd; C:\Windows\system32\drivers\amdacpksd.sys [305032 2016-07-10] (Advanced Micro Devices)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-10-10] (ESET)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [241368 2014-10-10] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [169280 2014-10-10] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [222280 2014-10-10] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44632 2014-10-10] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [63160 2014-10-10] (ESET)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2016-02-19] (REALiX(tm))
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [31712 2016-07-01] (Intel Corporation)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [22216 2014-05-27] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [22728 2014-05-27] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-05-27] ()
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2016-02-19] ()
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [181304 2016-07-10] (Intel Corporation)
S3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [32936 2016-02-19] (Synaptics Incorporated)
R3 ssdevfactory; C:\Windows\System32\DRIVERS\ssdevfactory.sys [32792 2015-09-29] (SteelSeries ApS)
R3 sshid; C:\Windows\System32\DRIVERS\sshid.sys [51400 2016-02-02] (SteelSeries ApS)
S3 BioNTDrv; \??\C:\Program Files (x86)\Paragon Software\Migrate OS to SSD\program\BioNTDrv.SYS [X]
S3 gkernel; \??\C:\Users\Martin\AppData\Local\Temp\gkernel.sys [X]
S3 MSICDSetup; \??\F:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\F:\NTIOLib_X64.sys [X]
S3 X6va062; \??\C:\Windows\SysWOW64\Drivers\X6va062 [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-24 19:10 - 2016-07-24 19:56 - 00000000 ____D C:\AdwCleaner
2016-07-24 19:09 - 2016-07-24 19:09 - 03712064 _____ C:\Users\Martin\Desktop\adwcleaner_5.201.exe
2016-07-24 19:04 - 2016-07-24 21:04 - 00000000 ____D C:\FRST
2016-07-24 18:11 - 2016-07-24 18:11 - 00000000 ____D C:\rsit
2016-07-24 18:11 - 2016-07-24 18:11 - 00000000 ____D C:\Program Files\trend micro
2016-07-24 16:27 - 2016-07-24 16:27 - 00000000 ____D C:\Program Files (x86)\PC Tools
2016-07-24 16:25 - 2016-07-24 18:04 - 00000000 ____D C:\ProgramData\PC Tools
2016-07-24 16:25 - 2016-07-24 16:25 - 02468442 _____ C:\Windows\system32\Drivers\Cat.DB
2016-07-24 16:25 - 2016-07-24 16:25 - 00000000 ____D C:\Users\Martin\AppData\Roaming\TestApp
2016-07-24 16:25 - 2012-11-01 15:35 - 00253256 _____ (PC Tools) C:\Windows\system32\Drivers\PCTSD64.sys
2016-07-18 10:49 - 2016-07-18 10:49 - 00000938 _____ C:\Users\Martin\Desktop\Wow – zástupce.lnk
2016-07-18 10:22 - 2016-07-18 10:22 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-07-16 16:52 - 2016-06-11 08:57 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-07-16 16:52 - 2016-06-11 06:48 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-07-16 16:52 - 2016-06-10 23:38 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-07-16 16:52 - 2016-06-10 23:38 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-07-16 16:52 - 2016-06-10 23:20 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-07-16 16:52 - 2016-06-10 23:19 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-07-16 16:52 - 2016-06-10 23:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-07-16 16:52 - 2016-06-10 23:18 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-07-16 16:52 - 2016-06-10 23:18 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-07-16 16:52 - 2016-06-10 23:17 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-07-16 16:52 - 2016-06-10 23:10 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-07-16 16:52 - 2016-06-10 23:08 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-07-16 16:52 - 2016-06-10 23:05 - 25814016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-07-16 16:52 - 2016-06-10 23:04 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-07-16 16:52 - 2016-06-10 23:03 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-07-16 16:52 - 2016-06-10 23:03 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-07-16 16:52 - 2016-06-10 23:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-07-16 16:52 - 2016-06-10 23:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-07-16 16:52 - 2016-06-10 22:53 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-07-16 16:52 - 2016-06-10 22:50 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-07-16 16:52 - 2016-06-10 22:49 - 06047744 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-07-16 16:52 - 2016-06-10 22:40 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-07-16 16:52 - 2016-06-10 22:38 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-07-16 16:52 - 2016-06-10 22:35 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-07-16 16:52 - 2016-06-10 22:34 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-07-16 16:52 - 2016-06-10 22:31 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-07-16 16:52 - 2016-06-10 22:28 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-07-16 16:52 - 2016-06-10 22:15 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-07-16 16:52 - 2016-06-10 22:13 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-07-16 16:52 - 2016-06-10 22:12 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-07-16 16:52 - 2016-06-10 22:11 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-07-16 16:52 - 2016-06-10 22:10 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-07-16 16:52 - 2016-06-10 21:45 - 15409664 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-07-16 16:52 - 2016-06-10 21:44 - 02869248 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-07-16 16:52 - 2016-06-10 21:30 - 01550848 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-07-16 16:52 - 2016-06-10 21:21 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-07-16 16:52 - 2016-06-10 21:09 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-07-16 16:52 - 2016-06-10 20:54 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-07-16 16:52 - 2016-06-10 20:53 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-07-16 16:52 - 2016-06-10 20:53 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-07-16 16:52 - 2016-06-10 20:53 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-07-16 16:52 - 2016-06-10 20:52 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-07-16 16:52 - 2016-06-10 20:47 - 02287104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-07-16 16:52 - 2016-06-10 20:46 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-07-16 16:52 - 2016-06-10 20:45 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-07-16 16:52 - 2016-06-10 20:42 - 20348928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-07-16 16:52 - 2016-06-10 20:42 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-07-16 16:52 - 2016-06-10 20:41 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-07-16 16:52 - 2016-06-10 20:41 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-07-16 16:52 - 2016-06-10 20:41 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-07-16 16:52 - 2016-06-10 20:32 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-07-16 16:52 - 2016-06-10 20:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-07-16 16:52 - 2016-06-10 20:26 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-07-16 16:52 - 2016-06-10 20:24 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-07-16 16:52 - 2016-06-10 20:23 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-07-16 16:52 - 2016-06-10 20:21 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-07-16 16:52 - 2016-06-10 20:19 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-07-16 16:52 - 2016-06-10 20:14 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-07-16 16:52 - 2016-06-10 20:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-07-16 16:52 - 2016-06-10 20:10 - 00692736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-07-16 16:52 - 2016-06-10 20:09 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-07-16 16:52 - 2016-06-10 20:09 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-07-16 16:52 - 2016-06-10 19:58 - 13806080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-07-16 16:52 - 2016-06-10 19:45 - 02392576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-07-16 16:52 - 2016-06-10 19:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-07-16 16:52 - 2016-06-10 19:41 - 01315840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-07-16 16:51 - 2016-06-26 02:27 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-07-16 16:51 - 2016-06-26 02:27 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-07-16 16:51 - 2016-06-26 02:27 - 00344576 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2016-07-16 16:51 - 2016-06-26 02:27 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2016-07-16 16:51 - 2016-06-26 02:27 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2016-07-16 16:51 - 2016-06-25 21:54 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2016-07-16 16:51 - 2016-06-25 21:53 - 00297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2016-07-16 16:51 - 2016-06-25 21:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2016-07-16 16:51 - 2016-06-25 21:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2016-07-16 16:51 - 2016-06-25 21:41 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2016-07-16 16:51 - 2016-06-14 17:03 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-07-15 09:18 - 2016-07-15 09:17 - 01065671 _____ C:\Users\Martin\Documents\com.incorporateapps.fakegps.v4.6-siakbary.my.id.apk
2016-07-15 09:08 - 2016-07-15 08:38 - 60878833 _____ C:\Users\Martin\Documents\Pokémon GO_v0.29.2_apkpure.com.apk
2016-07-15 08:40 - 2016-07-18 13:00 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2016-07-15 08:40 - 2016-07-15 08:40 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Mozilla
2016-07-15 08:40 - 2016-07-15 08:40 - 00000000 ____D C:\Users\Martin\AppData\Local\Macromedia
2016-07-15 08:39 - 2016-07-15 08:39 - 00000000 ____D C:\Users\Martin\AppData\Local\Bluestacks
2016-07-11 11:24 - 2016-07-11 11:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2016-07-11 11:24 - 2016-07-01 17:32 - 00000000 ____D C:\Windows\SysWOW64\LiveUpdate
2016-07-11 11:24 - 2016-06-28 17:06 - 00012443 _____ C:\Windows\SysWOW64\ReleaseNote.txt
2016-07-10 19:26 - 2016-07-10 19:26 - 48616960 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 38098944 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 30188032 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 27433472 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 27003904 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2016-07-10 19:26 - 2016-07-10 19:26 - 24836096 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 21600768 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 15711744 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 14302720 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 09798560 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 08888016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 08865344 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 08815104 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdvlk64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 08577456 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 07059968 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdvlk32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 07000520 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 06965248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 05643776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 03471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2016-07-10 19:26 - 2016-07-10 19:26 - 03437632 _____ C:\Windows\system32\atiumd6a.cap
2016-07-10 19:26 - 2016-07-10 19:26 - 01245416 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00875613 _____ C:\Windows\system32\amdicdxx.dat
2016-07-10 19:26 - 2016-07-10 19:26 - 00732160 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00720104 _____ C:\Windows\SysWOW64\atiapfxx.blb
2016-07-10 19:26 - 2016-07-10 19:26 - 00720104 _____ C:\Windows\system32\atiapfxx.blb
2016-07-10 19:26 - 2016-07-10 19:26 - 00607744 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00498176 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2016-07-10 19:26 - 2016-07-10 19:26 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00385536 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2016-07-10 19:26 - 2016-07-10 19:26 - 00368416 _____ C:\Windows\system32\ativvaxy_el_nd.dat
2016-07-10 19:26 - 2016-07-10 19:26 - 00305032 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2016-07-10 19:26 - 2016-07-10 19:26 - 00274432 _____ C:\Windows\system32\dgtrayicon.exe
2016-07-10 19:26 - 2016-07-10 19:26 - 00270784 _____ C:\Windows\system32\ativvaxy_stn_nd.dat
2016-07-10 19:26 - 2016-07-10 19:26 - 00270336 _____ (AMD) C:\Windows\system32\atitmm64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00258560 _____ C:\Windows\system32\GameManager64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00252928 _____ C:\Windows\system32\clinfo.exe
2016-07-10 19:26 - 2016-07-10 19:26 - 00251392 _____ C:\Windows\system32\hsa-thunk64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00230912 _____ C:\Windows\system32\amdgfxinfo64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00217088 _____ C:\Windows\SysWOW64\hsa-thunk.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00212480 _____ C:\Windows\system32\atieah64.exe
2016-07-10 19:26 - 2016-07-10 19:26 - 00202752 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00190464 _____ C:\Windows\SysWOW64\atieah32.exe
2016-07-10 19:26 - 2016-07-10 19:26 - 00185344 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00159232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00150544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00142336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00141280 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00141280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00137136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00125288 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00123776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00122704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00119808 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00117760 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00113152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00106496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00101376 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00096256 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00093696 _____ (AMD) C:\Windows\system32\atimuixx.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00092160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00091136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00091136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00087040 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00050688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2016-07-10 19:26 - 2016-07-10 19:26 - 00038400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2016-07-10 19:25 - 2016-07-10 19:25 - 01030400 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2016-07-10 19:25 - 2016-07-10 19:25 - 00103424 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll
2016-07-10 19:25 - 2016-07-10 19:25 - 00096256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW76.sys
2016-07-10 19:25 - 2016-07-10 19:25 - 00082544 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2016-07-10 19:24 - 2016-07-10 19:24 - 00181304 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2016-07-10 19:09 - 2016-07-10 19:09 - 00000064 _____ C:\Users\Martin\Desktop\aaa.txt
2016-07-01 08:05 - 2016-07-01 08:05 - 05989809 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-07-01 08:05 - 2016-07-01 08:05 - 05085952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-07-01 08:05 - 2016-07-01 08:05 - 03283248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 03282544 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 03199232 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 03094704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 02895104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-07-01 08:05 - 2016-07-01 08:05 - 02060032 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 02050176 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 01978608 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO264.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 01745160 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO232.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 01355616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00689888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00574760 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00532384 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00410032 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00387320 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00330568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00221976 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00214832 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00209544 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00192984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00166208 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00122328 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00110984 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00088352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-07-01 08:05 - 2016-07-01 08:05 - 00041088 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys
2016-07-01 08:05 - 2016-07-01 08:05 - 00023696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-07-01 08:04 - 2016-07-01 08:04 - 00000775 _____ C:\Users\Public\Desktop\Heroes of the Storm.lnk
2016-07-01 08:04 - 2016-07-01 08:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2016-07-01 08:03 - 2016-07-10 19:26 - 00974336 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2016-07-01 08:03 - 2016-07-10 19:26 - 00865280 _____ (AMD) C:\Windows\system32\coinst_16.20.dll
2016-07-01 08:03 - 2016-07-01 08:03 - 00322996 _____ C:\Windows\system32\ativvaxy_vi.dat
2016-07-01 08:03 - 2016-07-01 08:03 - 00322736 _____ C:\Windows\system32\ativvaxy_vi_nd.dat
2016-07-01 08:03 - 2016-07-01 08:03 - 00266688 _____ C:\Windows\system32\ativvaxy_cz_nd.dat
2016-07-01 08:03 - 2016-07-01 08:03 - 00260852 _____ C:\Windows\system32\ativvaxy_FJ.dat
2016-07-01 08:03 - 2016-07-01 08:03 - 00257872 _____ C:\Windows\system32\ativvaxy_FJ_nd.dat
2016-07-01 08:03 - 2016-07-01 08:03 - 00177280 _____ C:\Windows\system32\ativce03.dat
2016-07-01 08:03 - 2016-07-01 08:03 - 00175584 _____ C:\Windows\system32\amde31a.dat
2016-07-01 08:03 - 2016-07-01 08:03 - 00166624 _____ C:\Windows\system32\amde34b.dat
2016-07-01 08:03 - 2016-07-01 08:03 - 00166624 _____ C:\Windows\system32\amde34a.dat
2016-07-01 08:03 - 2016-07-01 08:03 - 00012893 _____ C:\Windows\system32\AMDKernelEvents.man
2016-07-01 08:02 - 2016-07-01 08:02 - 01469952 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2016-07-01 08:02 - 2016-07-01 08:02 - 00031712 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2016-07-01 07:57 - 2016-07-22 13:03 - 00003348 _____ C:\Windows\System32\Tasks\ESET Windows 10 upgrade – Refresh settings
2016-07-01 07:57 - 2016-07-01 07:57 - 00000000 ____D C:\Program Files\Common Files\AV
2016-06-26 16:26 - 2016-06-26 16:26 - 00000933 _____ C:\Users\Public\Desktop\Metin2.lnk
2016-06-26 16:26 - 2016-06-26 16:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metin2
2016-06-26 16:16 - 2016-06-26 16:16 - 00000000 ____D C:\Users\Martin\AppData\Local\Gameforge4d
2016-06-26 16:15 - 2016-06-26 16:15 - 00000677 _____ C:\Users\Public\Desktop\Gameforge Live.lnk
2016-06-26 16:15 - 2016-06-26 16:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2016-06-25 15:49 - 2016-06-25 15:49 - 00000559 _____ C:\Users\Martin\Desktop\izi (2).txt

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-24 20:55 - 2016-05-10 22:50 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d1aafda3b48b71.job
2016-07-24 20:55 - 2016-02-18 22:42 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-24 20:40 - 2016-02-19 00:12 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-07-24 19:38 - 2010-11-21 11:27 - 00668768 _____ C:\Windows\system32\perfh005.dat
2016-07-24 19:38 - 2010-11-21 11:27 - 00141428 _____ C:\Windows\system32\perfc005.dat
2016-07-24 19:38 - 2009-07-14 07:13 - 01584138 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-24 19:38 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-07-24 19:37 - 2009-07-14 06:45 - 00031504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-24 19:37 - 2009-07-14 06:45 - 00031504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-24 19:36 - 2016-02-19 00:00 - 00003246 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler
2016-07-24 19:36 - 2016-02-19 00:00 - 00002878 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Martin)
2016-07-24 19:32 - 2016-05-10 22:50 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1aafda3a23bad.job
2016-07-24 19:32 - 2016-02-19 00:53 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2016-07-24 19:32 - 2016-02-18 22:42 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-24 19:32 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-24 18:04 - 2016-02-19 17:06 - 00000000 ____D C:\ProgramData\TEMP
2016-07-24 18:03 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries
2016-07-22 12:54 - 2016-02-19 00:01 - 00000000 ____D C:\ProgramData\ProductData
2016-07-17 10:23 - 2009-07-14 06:45 - 00288664 _____ C:\Windows\system32\FNTCACHE.DAT
2016-07-16 20:01 - 2016-02-20 22:39 - 00000000 ____D C:\Windows\system32\MRT
2016-07-16 19:59 - 2016-02-20 22:39 - 144749672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-07-15 08:30 - 2016-05-17 19:56 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-07-15 08:29 - 2016-05-17 19:56 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-07-11 11:24 - 2016-02-19 16:44 - 00001977 _____ C:\Users\Public\Desktop\MSI Live Update 6.lnk
2016-07-10 19:28 - 2016-02-19 00:00 - 00002168 _____ C:\Users\Public\Desktop\Driver Booster 3.lnk
2016-07-10 19:26 - 2016-02-19 00:09 - 10706496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2016-07-10 19:26 - 2016-02-19 00:09 - 01515312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2016-07-10 19:26 - 2016-02-19 00:09 - 00166488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2016-07-10 19:26 - 2016-02-03 17:16 - 00588288 _____ (AMD) C:\Windows\system32\atieclxx.exe
2016-07-10 19:26 - 2016-02-03 17:16 - 00306688 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2016-07-10 19:26 - 2016-02-03 17:16 - 00223744 _____ C:\Windows\SysWOW64\GameManager32.dll
2016-07-10 19:26 - 2016-02-03 17:11 - 01306624 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2016-07-10 19:26 - 2016-02-03 17:10 - 00974336 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2016-07-10 19:25 - 2016-02-18 22:40 - 00116304 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2016-07-10 17:56 - 2016-02-19 00:36 - 00000000 ____D C:\Users\Martin\AppData\Local\ElevatedDiagnostics
2016-07-10 17:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2016-07-01 13:08 - 2016-04-12 20:02 - 00000000 ____D C:\Users\Martin\AppData\Local\Battle.net
2016-07-01 08:15 - 2016-05-07 20:01 - 00000000 ____D C:\Users\Martin\Documents\Heroes of the Storm
2016-07-01 08:15 - 2016-04-12 20:02 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2016-07-01 08:06 - 2016-02-19 00:12 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-07-01 08:06 - 2016-02-19 00:12 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-07-01 08:06 - 2016-02-19 00:12 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-07-01 08:06 - 2016-02-18 22:41 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-06-28 11:02 - 2016-05-04 19:47 - 00000000 ____D C:\Users\Martin\Downloads\Gameforge Live
2016-06-25 17:58 - 2016-02-19 17:54 - 00000000 ____D C:\Users\Martin\AppData\Roaming\steelseries-engine-3-client
2016-06-25 17:40 - 2016-04-23 16:54 - 00000000 ____D C:\Users\Martin\Desktop\Songy

==================== Files in the root of some directories =======

2016-04-04 14:52 - 2016-04-04 14:52 - 0000044 _____ () C:\Users\Martin\AppData\Roaming\twow_sysprepdt.dat

Some files in TEMP:
====================
C:\Users\Martin\AppData\Local\Temp\BluestacksUninstaller.exe
C:\Users\Martin\AppData\Local\Temp\HD-LibraryHandler.dll
C:\Users\Martin\AppData\Local\Temp\HD-Logger-Native.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-07-10 21:25

==================== End of FRST.txt ============================

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKU\S-1-5-21-3906232614-693120502-1999264316-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2016-02-18] (Google Inc.)
C:\Program Files (x86)\Google\GoogleToolbarNotifier
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-3906232614-693120502-1999264316-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
C:\Program Files (x86)\Google\Google Toolbar
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll [No File]
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\pdf.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll => No File
S3 X6va062; \??\C:\Windows\SysWOW64\Drivers\X6va062 [X]
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d1aafda3b48b71.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1aafda3a23bad.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Martin\AppData\Local\Temp
End

Uložte do D:\Download jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Scan Tool (x64) Version: 24-07-2016
Ran by Martin (2016-07-24 22:13:09) Run:1
Running from D:\Download
Loaded Profiles: Martin (Available Profiles: Martin)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKU\S-1-5-21-3906232614-693120502-1999264316-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2016-02-18] (Google Inc.)
C:\Program Files (x86)\Google\GoogleToolbarNotifier
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-3906232614-693120502-1999264316-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
C:\Program Files (x86)\Google\Google Toolbar
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll [No File]
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\pdf.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll => No File
S3 X6va062; \??\C:\Windows\SysWOW64\Drivers\X6va062 [X]
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d1aafda3b48b71.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1aafda3a23bad.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Martin\AppData\Local\Temp
End
*****************

HKU\S-1-5-21-3906232614-693120502-1999264316-1000\Software\Microsoft\Windows\CurrentVersion\Run\\swg => value removed successfully
C:\Program Files (x86)\Google\GoogleToolbarNotifier => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
"HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value removed successfully
"HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value removed successfully
"HKCR\Wow6432Node\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => key removed successfully
HKU\S-1-5-21-3906232614-693120502-1999264316-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value removed successfully
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found.
C:\Program Files (x86)\Google\Google Toolbar => moved successfully
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@t.garena.com/garenatalk" => key removed successfully
C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\ppGoogleNaClPluginChrome.dll => not found.
C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\pdf.dll => not found.
C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll => not found.
X6va062 => service removed successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d1aafda3b48b71.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1aafda3a23bad.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully

"C:\Users\Martin\AppData\Local\Temp" folder move:

Could not move "C:\Users\Martin\AppData\Local\Temp" => Scheduled to move on reboot.


Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2016-07-24 22:14:33)

C:\Users\Martin\AppData\Local\Temp => moved successfully

==== End of Fixlog 22:14:33 ====

Smazáno. Pro jistotu to ještě proskenujte kompletním skenem MBAM: http://www.malwarebytes.org/mbam.php . Dejte log, předem nic nemažte.

Myslím, že vše už bude v pořádku, děkuji mnohokrát za pomoc



Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 24.7.2016
Čas skenování: 22:34
Protokol: here.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.07.24.06
Databáze rootkitů: v2016.05.27.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Martin

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 286498
Uplynulý čas: 2 min, 35 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 0
(Nenalezeny žádné škodlivé položky)

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

Ano, vypadá to tak, log je čistý. Rádo se stalo!