Facebook nefunguje ve Firefoxu a Chrome
Napsal: 15 srp 2016 11:27
Zdravím všechny, chtěl bych poprosit o vyřešení tohoto problému. Od včera přestal mi jet Facebook na Chrome a Firefox. Všechny ostatní stránky normálně jedou. Na Edge mi sice jede, ale je to dosti nepraktické. Děkuji za veškerou pomoc.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-08-2016
Ran by mrann (administrator) on JANDEL (15-08-2016 12:11:27)
Running from C:\Users\mrann\Desktop
Loaded Profiles: mrann (Available Profiles: mrann)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Sandboxie Holdings, LLC) D:\Program Files (x86)\SbieSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
() C:\Windows\syswow64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Valve Corporation) D:\Steam\Steam.exe
(Valve Corporation) D:\Steam\bin\steamwebhelper.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\avp.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\avpui.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1605.1582.0_x64__8wekyb3d8bbwe\Calculator.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-03-22] (Adobe Systems Incorporated)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2013-04-09] (Pixart Imaging Inc)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2313408 2016-04-07] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation)
HKU\S-1-5-21-880011721-1610224351-1570539116-1001\...\Run: [Steam] => D:\Steam\steam.exe [2857248 2016-08-13] (Valve Corporation)
HKU\S-1-5-21-880011721-1610224351-1570539116-1001\...\Run: [EADM] => D:\Origin\Origin.exe [3639280 2016-06-11] (Electronic Arts)
HKU\S-1-5-21-880011721-1610224351-1570539116-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-880011721-1610224351-1570539116-1001\...\Run: [SandboxieControl] => D:\Program Files (x86)\SbieCtrl.exe [797328 2016-06-15] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-880011721-1610224351-1570539116-1001\...\Run: [AceStream] => C:\Users\mrann\AppData\Roaming\ACEStream\engine\ace_engine.exe [27000 2016-07-11] ()
HKU\S-1-5-21-880011721-1610224351-1570539116-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29502592 2016-07-14] (Skype Technologies S.A.)
HKU\S-1-5-21-880011721-1610224351-1570539116-1001\...\Run: [DAEMON Tools Lite Automount] => D:\Program Files (x86)\DAEMON Tools Lite\DTAgent.exe [4299968 2016-06-22] (Disc Soft Ltd)
HKU\S-1-5-21-880011721-1610224351-1570539116-1001\...\MountPoints2: {b009931c-dd58-11e5-b312-002127c7876b} - "H:\.autorun\autorun.exe"
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] ()
Startup: C:\Users\mrann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Defraggler.lnk [2016-02-19]
ShortcutTarget: Defraggler.lnk -> C:\Program Files\Defraggler\Defraggler64.exe (Piriform Ltd)
Startup: C:\Users\mrann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Registrace NHL™ 09.lnk [2016-03-24]
ShortcutTarget: Registrace NHL™ 09.lnk -> D:\Program Files (x86)\NHL\Support\EAregister.exe (No File)
GroupPolicyScripts: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a672fe58-546a-4566-8cf4-771015742309}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-880011721-1610224351-1570539116-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_101\bin\ssv.dll [2016-07-27] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\x64\IEExt\ie_plugin.dll [2015-04-28] (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-07-27] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-07-27] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\IEExt\ie_plugin.dll [2015-04-28] (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-07-27] (Oracle Corporation)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\x64\IEExt\ie_plugin.dll [2015-04-28] (Kaspersky Lab ZAO)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\IEExt\ie_plugin.dll [2015-04-28] (Kaspersky Lab ZAO)
FireFox:
========
FF ProfilePath: C:\Users\mrann\AppData\Roaming\Mozilla\Firefox\Profiles\iymh1gry.default
FF Plugin: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-07-27] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-07-27] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-04-07] (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect -> D:\Photoshop\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-02] (Adobe Systems)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-07-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-07-27] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2013-08-20] (Nero AG)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> D:\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> D:\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> D:\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-04-07] (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> D:\Photoshop\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-02] (Adobe Systems)
FF Plugin HKU\S-1-5-21-880011721-1610224351-1570539116-1001: @acestream.net/acestreamplugin,version=3.1.2 -> C:\Users\mrann\AppData\Roaming\ACEStream\player\npace_plugin.dll [2015-08-06] (Innovative Digital Technologies)
FF Plugin HKU\S-1-5-21-880011721-1610224351-1570539116-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\mrann\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-03-11] (Unity Technologies ApS)
FF Extension: Czech (CZ) Language Pack - C:\Users\mrann\AppData\Roaming\Mozilla\Firefox\Profiles\iymh1gry.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2016-08-07]
FF Extension: Adblock Plus - C:\Users\mrann\AppData\Roaming\Mozilla\Firefox\Profiles\iymh1gry.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-06-27]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\FFExt\light_plugin_firefox
FF Extension: Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\FFExt\light_plugin_firefox [2016-08-14] [not signed]
FF HKU\S-1-5-21-880011721-1610224351-1570539116-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\mrann\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi
FF Extension: Ace Stream Web Extension - C:\Users\mrann\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi [2015-12-18]
Chrome:
=======
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.yoursearching.com/?type=hp&ts=14512 ... xx4ls09n13"
CHR Profile: C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-17]
CHR Extension: (Beautiful landscape) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ambfimhigppdidfmelpjmojccbfdoeig [2016-02-17]
CHR Extension: (Dokumenty Google) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-17]
CHR Extension: (Disk Google) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-17]
CHR Extension: (YouTube) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-17]
CHR Extension: (Steam inventory helper) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2016-08-10]
CHR Extension: (Vyhledávání Google) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-17]
CHR Extension: (Tabulky Google) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-07-28]
CHR Extension: (Appspector) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\homgcnaoacgigpkkljjjekpignblkeae [2016-02-17]
CHR Extension: (Messenger Counter) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhdoikdlijgmpbbbclhdobhpegobbnah [2016-04-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-01]
CHR Extension: (ImTranslator: Překladač, Slovník, Hlas) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\noaijdpnepcgjemiklgfkcfbkokogabh [2016-08-10]
CHR Extension: (Gmail) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-17]
CHR Extension: (Chrome Media Router) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-02]
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKU\S-1-5-21-880011721-1610224351-1570539116-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [694464 2016-04-07] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2159832 2016-08-12] (Adobe Systems, Incorporated)
R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\avp.exe [194000 2015-04-28] (Kaspersky Lab ZAO)
S3 Disc Soft Lite Bus Service; D:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-06-22] (Disc Soft Ltd)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe [14760 2013-01-01] (Microsoft Corporation)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2122248 2016-06-11] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2016-07-09] ()
R2 SbieSvc; D:\Program Files (x86)\SbieSvc.exe [197264 2016-06-15] (Sandboxie Holdings, LLC)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7248144 2016-08-08] (TeamViewer GmbH)
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\x64\vssbridge64.exe [144640 2015-04-28] (Kaspersky Lab ZAO)
S3 VSStandardCollectorService140; D:\Program Files (x86)\Visual Studio\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [56552 2016-03-22] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-01] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [381272 2015-04-21] (Kaspersky Lab ZAO)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-02-19] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-02-19] (Disc Soft Ltd)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [469336 2015-04-16] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [43352 2015-04-16] ()
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [61784 2015-04-16] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [59224 2015-04-16] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [161624 2015-04-23] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [249544 2015-04-09] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [909656 2015-04-23] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [31064 2015-04-20] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [33112 2015-04-16] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [33112 2015-04-16] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [21848 2015-04-16] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [68952 2015-04-20] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [93856 2015-04-17] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [178008 2015-04-21] (Kaspersky Lab ZAO)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek )
R3 RTL8023x64; C:\Windows\System32\drivers\Rtnic64.sys [51712 2015-10-30] (Realtek Semiconductor Corporation )
R3 SbieDrv; D:\Program Files (x86)\SbieDrv.sys [204944 2016-06-15] (Sandboxie Holdings, LLC)
S2 SecDrv; C:\WINDOWS\SysWOW64\drivers\SECDRV.SYS [11376 2016-07-08] () [File not signed]
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [216064 2015-10-30] (Microsoft Corporation)
R3 t_mouse.sys; C:\Windows\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] ()
S3 vectirhid; C:\Windows\System32\drivers\vectirhid.sys [19184 2014-11-28] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S0 b06bdrv; System32\drivers\bxvbda.sys [X]
U0 Compbatt; no ImagePath
U2 ERSvc; no ImagePath
U2 IAStorDataMgrsvc; no ImagePath
S0 ignis; \SystemRoot\system32\DRIVERS\ignis.sys [X]
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
U2 NIHardwareService; no ImagePath
U2 NVSvc; no ImagePath
U2 Parvdm; no ImagePath
U2 srService; no ImagePath
U4 vsserv; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-15 12:11 - 2016-08-15 12:14 - 00023952 _____ C:\Users\mrann\Desktop\FRST.txt
2016-08-15 12:10 - 2016-08-15 12:11 - 02394624 _____ (Farbar) C:\Users\mrann\Desktop\FRST64.exe
2016-08-15 11:35 - 2016-08-15 11:35 - 00001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-08-15 11:35 - 2016-08-15 11:35 - 00001216 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-08-15 11:35 - 2016-08-15 11:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-08-15 11:35 - 2016-08-15 11:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-08-15 11:34 - 2016-08-15 11:34 - 00242312 _____ C:\Users\mrann\Desktop\Firefox Setup Stub 48.0.exe
2016-08-15 10:16 - 2016-08-15 10:16 - 00002344 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-15 10:16 - 2016-08-15 10:16 - 00002332 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-08-15 10:15 - 2016-08-15 11:35 - 00000974 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-15 10:15 - 2016-08-15 10:33 - 00000970 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-15 10:12 - 2016-08-15 10:13 - 00987728 _____ (Google Inc.) C:\Users\mrann\Downloads\ChromeSetup.exe
2016-08-14 12:52 - 2016-08-14 13:32 - 03587175 _____ C:\Users\mrann\Desktop\MRAAN1X.psd
2016-08-14 11:18 - 2016-08-14 11:18 - 00000000 ____D C:\WINDOWS\SysWOW64\Encryption
2016-08-14 11:17 - 2016-08-14 11:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security
2016-08-14 11:16 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
2016-08-14 11:15 - 2016-08-15 11:35 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-08-14 11:15 - 2016-08-14 11:15 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2016-08-14 11:14 - 2015-04-23 14:45 - 00909656 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2016-08-14 11:14 - 2015-04-23 14:45 - 00161624 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys
2016-08-14 11:14 - 2015-04-09 22:47 - 00249544 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klhk.sys
2016-08-14 10:48 - 2016-08-14 10:50 - 00000000 ____D C:\Users\mrann\Downloads\Kaspersky Antivirus + Internet Security + Total Security 2016 16.0.0.424 Beta + Trial Resetters - AppzDam
2016-08-13 21:23 - 2016-08-13 21:23 - 00000000 ____D C:\Users\mrann\AppData\Roaming\BANDISOFT
2016-08-13 21:15 - 2016-08-13 21:15 - 00001112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-08-11 22:52 - 2016-08-11 22:53 - 122431738 _____ C:\Users\mrann\Downloads\sport fakty messi.mp4
2016-08-11 15:20 - 2016-08-11 15:20 - 00000000 ____D C:\Users\mrann\AppData\Roaming\Mirillis
2016-08-11 15:20 - 2016-08-11 15:20 - 00000000 ____D C:\ProgramData\Mirillis
2016-08-11 15:19 - 2016-08-11 15:20 - 00000000 ____D C:\Users\mrann\AppData\Local\Mirillis
2016-08-11 15:19 - 2016-08-11 15:19 - 00000000 ____D C:\Action!
2016-08-11 15:16 - 2016-08-11 15:16 - 00002108 _____ C:\Users\Public\Desktop\Action!.lnk
2016-08-11 15:16 - 2016-08-11 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
2016-08-11 15:15 - 2016-08-11 15:15 - 00000000 ____D C:\Program Files (x86)\Mirillis
2016-08-11 15:08 - 2016-08-11 15:08 - 00000000 ____D C:\Program Files (x86)\BandiMPEG1
2016-08-11 15:06 - 2016-08-11 15:07 - 00000000 ____D C:\Users\mrann\Downloads\Mirillis Action! 1.30.1
2016-08-11 15:03 - 2016-08-11 15:04 - 09792028 _____ C:\Users\mrann\Downloads\Bandicam 2.1.3.757.rar
2016-08-10 18:51 - 2016-08-10 18:51 - 00000000 ___HD C:\$WINDOWS.~BT
2016-08-10 18:15 - 2016-08-10 18:15 - 02092263 _____ C:\Users\mrann\Downloads\ubuntu-font-family-0.83.zip
2016-08-09 21:14 - 2016-08-03 13:14 - 01505984 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-08-09 21:14 - 2016-08-03 13:14 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-09 21:14 - 2016-08-03 13:14 - 00050368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-08-09 21:14 - 2016-08-03 12:36 - 07469408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-08-09 21:14 - 2016-08-03 12:36 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-08-09 21:14 - 2016-08-03 12:36 - 00037744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-08-09 21:14 - 2016-08-03 12:30 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-08-09 21:14 - 2016-08-03 12:23 - 00693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-08-09 21:14 - 2016-08-03 12:23 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-08-09 21:14 - 2016-08-03 12:22 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-08-09 21:14 - 2016-08-03 12:22 - 00465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-08-09 21:14 - 2016-08-03 12:22 - 00331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-08-09 21:14 - 2016-08-03 12:21 - 03675512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-09 21:14 - 2016-08-03 12:21 - 00566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-08-09 21:14 - 2016-08-03 12:21 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-08-09 21:14 - 2016-08-03 12:20 - 01540224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-08-09 21:14 - 2016-08-03 12:20 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-08-09 21:14 - 2016-08-03 12:19 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-09 21:14 - 2016-08-03 12:19 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-09 21:14 - 2016-08-03 12:13 - 01988448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-08-09 21:14 - 2016-08-03 12:13 - 00576864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-08-09 21:14 - 2016-08-03 12:13 - 00393056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-09 21:14 - 2016-08-03 11:51 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-08-09 21:14 - 2016-08-03 11:51 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-08-09 21:14 - 2016-08-03 11:44 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-08-09 21:14 - 2016-08-03 11:44 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-08-09 21:14 - 2016-08-03 11:44 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-08-09 21:14 - 2016-08-03 11:43 - 16985088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-08-09 21:14 - 2016-08-03 11:41 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-08-09 21:14 - 2016-08-03 11:41 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-08-09 21:14 - 2016-08-03 11:40 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-08-09 21:14 - 2016-08-03 11:40 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-08-09 21:14 - 2016-08-03 11:40 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-08-09 21:14 - 2016-08-03 11:39 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-08-09 21:14 - 2016-08-03 11:39 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-08-09 21:14 - 2016-08-03 11:38 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-08-09 21:14 - 2016-08-03 11:37 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-08-09 21:14 - 2016-08-03 11:36 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-08-09 21:14 - 2016-08-03 11:36 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-08-09 21:14 - 2016-08-03 11:35 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-08-09 21:14 - 2016-08-03 11:33 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-08-09 21:14 - 2016-08-03 11:31 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-08-09 21:14 - 2016-08-03 11:31 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2016-08-09 21:14 - 2016-08-03 11:30 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-08-09 21:14 - 2016-08-03 11:29 - 14252544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-08-09 21:14 - 2016-08-03 11:29 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-08-09 21:14 - 2016-08-03 11:29 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-09 21:14 - 2016-08-03 11:28 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-08-09 21:14 - 2016-08-03 11:28 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-08-09 21:14 - 2016-08-03 11:27 - 07536640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-08-09 21:14 - 2016-08-03 11:27 - 01717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-09 21:14 - 2016-08-03 11:18 - 06974464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-08-09 21:14 - 2016-08-03 11:18 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-08-09 21:14 - 2016-08-03 11:18 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-09 21:14 - 2016-08-03 11:17 - 02175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-08-09 21:14 - 2016-08-03 11:16 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-08-09 21:14 - 2016-08-03 11:16 - 03589120 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-09 21:14 - 2016-08-03 11:16 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-08-09 21:14 - 2016-08-03 11:16 - 01732096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-09 21:14 - 2016-08-03 11:14 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-08-09 21:14 - 2016-08-03 11:13 - 03025920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-08-09 21:14 - 2016-08-03 11:13 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-08-09 21:14 - 2016-08-03 11:12 - 02746368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-08-09 21:14 - 2016-08-03 11:11 - 04171264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-08-09 21:14 - 2016-08-03 07:52 - 00034088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2016-08-09 21:14 - 2016-08-03 07:34 - 00501592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-08-09 21:14 - 2016-08-03 07:34 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-08-09 21:14 - 2016-08-03 07:33 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-08-09 21:14 - 2016-08-03 07:31 - 02921368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-09 21:14 - 2016-08-03 07:31 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-08-09 21:14 - 2016-08-03 07:31 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-08-09 21:14 - 2016-08-03 07:30 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-08-09 21:14 - 2016-08-03 07:30 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-08-09 21:14 - 2016-08-03 07:30 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-08-09 21:14 - 2016-08-03 06:57 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2016-08-09 21:14 - 2016-08-03 06:48 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2016-08-09 21:14 - 2016-08-03 06:47 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-08-09 21:14 - 2016-08-03 06:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-08-09 21:14 - 2016-08-03 06:44 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2016-08-09 21:14 - 2016-08-03 06:42 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-08-09 21:14 - 2016-08-03 06:40 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-08-09 21:14 - 2016-08-03 06:39 - 19351040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-09 21:14 - 2016-08-03 06:37 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-08-09 21:14 - 2016-08-03 06:35 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe
2016-08-09 21:14 - 2016-08-03 06:34 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-08-09 21:14 - 2016-08-03 06:34 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-09 21:14 - 2016-08-03 06:33 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-09 21:14 - 2016-08-03 06:33 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-08-09 21:14 - 2016-08-03 06:32 - 12585984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-08-09 21:14 - 2016-08-03 06:32 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-09 21:14 - 2016-08-03 06:32 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-08-09 21:14 - 2016-08-03 06:31 - 06743040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-08-09 21:14 - 2016-08-03 06:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-08-09 21:14 - 2016-08-03 06:28 - 03663360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-08-09 21:14 - 2016-08-03 06:25 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-08-09 21:14 - 2016-08-03 06:25 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-08-09 21:14 - 2016-08-03 06:23 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-08-09 21:14 - 2016-08-03 06:22 - 02501120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-08-09 21:14 - 2016-08-03 06:22 - 01502208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-09 21:14 - 2016-08-03 06:21 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-08-09 21:14 - 2016-08-03 06:19 - 02180096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-08-09 21:13 - 2016-08-03 12:22 - 01322760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-08-09 21:13 - 2016-08-03 12:22 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-08-09 21:13 - 2016-08-03 12:21 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-08-09 21:13 - 2016-08-03 12:11 - 00422744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-08-09 21:13 - 2016-08-03 11:46 - 22384128 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-09 21:13 - 2016-08-03 11:40 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2016-08-09 21:13 - 2016-08-03 11:38 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-08-09 21:13 - 2016-08-03 11:36 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-08-09 21:13 - 2016-08-03 11:35 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-09 21:13 - 2016-08-03 11:34 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-08-09 21:13 - 2016-08-03 11:33 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-08-09 21:13 - 2016-08-03 11:31 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-08-09 21:13 - 2016-08-03 11:30 - 24613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-09 21:13 - 2016-08-03 11:30 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-08-09 21:13 - 2016-08-03 11:29 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-08-09 21:13 - 2016-08-03 11:29 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-08-09 21:13 - 2016-08-03 11:28 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-08-09 21:13 - 2016-08-03 11:27 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-08-09 21:13 - 2016-08-03 11:27 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-08-09 21:13 - 2016-08-03 11:20 - 13390336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-08-09 21:13 - 2016-08-03 11:15 - 07833088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-09 21:13 - 2016-08-03 11:14 - 04895232 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-08-09 21:13 - 2016-08-03 06:37 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-08-09 21:13 - 2016-08-03 06:35 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2016-08-09 21:13 - 2016-08-03 06:33 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-08-09 21:13 - 2016-08-03 06:32 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-08-09 21:13 - 2016-08-03 06:29 - 12133376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-08-09 21:13 - 2016-08-03 06:23 - 05660672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-07 21:44 - 2016-08-07 21:44 - 00001079 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2016-08-07 21:44 - 2016-08-07 21:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-08-07 21:44 - 2016-08-07 21:44 - 00000000 ____D C:\Program Files\VS Revo Group
2016-08-07 21:42 - 2016-08-07 21:42 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-08-04 08:47 - 2016-08-04 08:47 - 00067839 _____ C:\ProgramData\1470292959.bdinstall.bin
2016-08-04 08:40 - 2016-08-04 08:40 - 00067839 _____ C:\ProgramData\1470292851.bdinstall.bin
2016-08-03 22:41 - 2016-08-03 22:41 - 00067630 _____ C:\ProgramData\1470256860.6196.bin
2016-08-03 22:38 - 2016-08-03 22:38 - 00257307 _____ C:\ProgramData\1470256576.bdinstall.bin
2016-08-03 11:45 - 2016-08-03 22:38 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2016-08-02 12:27 - 2016-08-02 12:29 - 00000000 ____D C:\Users\mrann\Downloads\Bitdefender Total Security 2015 Build 18.21.0.1497 (x86 & x64) Incl Trial Reset + Keys {B@tman}
2016-08-02 10:51 - 2016-08-02 10:51 - 00518806 _____ C:\ProgramData\1470126202.bdinstall.bin
2016-08-02 10:51 - 2016-08-02 10:51 - 00003406 _____ C:\WINDOWS\System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C
2016-08-02 10:42 - 2016-08-02 10:42 - 00000684 ____H C:\bdr-cf02
2016-08-02 10:35 - 2016-08-02 20:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2016
2016-08-02 10:30 - 2016-08-02 10:42 - 00253404 ____H C:\bdr-ld02
2016-08-02 10:30 - 2016-08-02 10:42 - 00009216 ____H C:\bdr-ld02.mbr
2016-08-02 10:30 - 2015-12-15 21:35 - 49760229 ____H C:\bdr-im02.gz
2016-08-02 10:30 - 2013-08-13 13:38 - 03271472 ____H C:\bdr-bz02
2016-08-02 10:23 - 2016-08-07 10:44 - 00000000 ____D C:\Program Files\Bitdefender
2016-08-02 10:19 - 2016-08-02 10:19 - 00000000 ____D C:\ProgramData\Bitdefender Agent
2016-08-01 10:23 - 2016-08-01 10:27 - 00000000 ____D C:\Users\mrann\Downloads\Bitdefender Antivirus Plus, Internet Security, Total Security 2016 x86x64 + Incl Keys Dec2015 Seven7i
2016-07-31 14:38 - 2016-07-31 14:38 - 00075721 _____ C:\Users\mrann\Desktop\I-D-(0000168045).srt
2016-07-27 18:07 - 2016-07-27 18:06 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-64.dll
2016-07-20 11:08 - 2016-07-20 11:08 - 00001147 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2015.lnk
2016-07-20 10:37 - 2016-07-20 10:38 - 71845930 _____ C:\Users\mrann\Downloads\Valentino Rossi Tribute │ More Than Races.mp4
2016-07-20 08:52 - 2016-07-20 08:52 - 00000924 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Flash Professional CC 2015.lnk
2016-07-19 18:17 - 2016-07-19 18:17 - 00001429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2014.lnk
2016-07-19 18:17 - 2016-07-19 18:17 - 00000000 ____D C:\ProgramData\ALM
2016-07-19 10:37 - 2016-08-13 18:28 - 13791977 _____ C:\Users\mrann\Downloads\Šablona_nefakty.psd
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-15 12:11 - 2016-02-19 18:33 - 00000000 ____D C:\FRST
2016-08-15 11:06 - 2016-02-17 20:31 - 00000000 ___RD C:\Users\mrann\Desktop\Prográmky
2016-08-15 10:42 - 2016-02-17 17:28 - 00000000 ____D C:\WINDOWS\INF
2016-08-15 10:30 - 2016-02-17 18:32 - 00004032 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-08-15 10:29 - 2016-02-17 18:32 - 00003800 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-08-15 10:16 - 2016-02-17 18:32 - 00000000 ____D C:\Program Files (x86)\Google
2016-08-15 09:11 - 2016-02-17 17:30 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-15 09:04 - 2016-02-27 14:17 - 00004194 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{FD4B080C-43E6-4A57-9184-ACC3C7128CA9}
2016-08-14 19:12 - 2016-02-17 20:16 - 00000000 ___RD C:\Users\mrann\Desktop\Intro & Outro
2016-08-14 13:40 - 2016-02-17 18:26 - 00000000 ____D C:\Users\mrann
2016-08-14 13:37 - 2016-03-16 20:22 - 00000132 _____ C:\Users\mrann\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2016-08-14 13:00 - 2016-02-18 02:57 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-14 11:18 - 2016-02-17 18:49 - 00000000 ____D C:\Users\mrann\AppData\Roaming\uTorrent
2016-08-14 11:16 - 2016-02-17 17:10 - 00065536 ___SH C:\WINDOWS\system32\config\ELAM
2016-08-14 11:15 - 2016-02-17 17:30 - 00000000 ____D C:\WINDOWS\ELAMBKUP
2016-08-14 10:42 - 2016-02-17 20:16 - 00000000 ___RD C:\Users\mrann\Desktop\HRÁČI ATLÉTICA
2016-08-14 10:22 - 2016-02-20 12:28 - 00000000 ____D C:\Users\mrann\OneDrive\Documents\FIFA 14
2016-08-14 09:41 - 2016-02-17 19:51 - 00000000 ____D C:\ProgramData\Origin
2016-08-13 21:15 - 2016-03-15 18:11 - 00000000 ____D C:\Users\mrann\AppData\Roaming\TeamViewer
2016-08-13 21:15 - 2016-03-15 18:11 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-08-13 18:28 - 2016-02-17 20:22 - 00000000 ___RD C:\Users\mrann\Desktop\PSDs
2016-08-13 17:52 - 2016-02-17 20:17 - 00000000 ___RD C:\Users\mrann\Desktop\NEFAKTY
2016-08-12 18:33 - 2016-03-20 17:15 - 00000000 ____D C:\Users\mrann\AppData\Roaming\.ACEStream
2016-08-11 23:03 - 2016-03-24 11:29 - 00000000 ____D C:\Users\mrann\AppData\Roaming\vlc
2016-08-11 10:53 - 2016-02-17 17:30 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-08-11 10:53 - 2016-02-17 17:18 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-10 23:08 - 2016-02-17 17:10 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-08-10 23:06 - 2016-02-17 17:30 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-10 23:06 - 2016-02-17 17:30 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-08-10 23:06 - 2016-02-17 17:30 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-10 18:52 - 2016-02-17 17:41 - 00000000 ___DC C:\WINDOWS\Panther
2016-08-10 18:35 - 2016-02-17 21:52 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-10 17:50 - 2016-02-17 21:52 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-08 23:00 - 2016-02-17 18:37 - 00000000 ____D C:\Users\mrann\AppData\Roaming\Skype
2016-08-07 21:52 - 2016-04-03 19:42 - 00000000 ____D C:\WINDOWS\Minidump
2016-08-07 21:38 - 2016-07-02 09:46 - 00000176 _____ C:\WINDOWS\wininit.ini
2016-08-07 10:58 - 2016-05-23 19:42 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-08-07 10:58 - 2016-02-17 18:36 - 00000000 ____D C:\ProgramData\Skype
2016-08-07 08:34 - 2016-02-17 17:30 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-04 08:51 - 2016-02-19 18:23 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-08-02 20:47 - 2016-02-17 23:05 - 00037219 _____ C:\bdlog.txt
2016-08-01 10:34 - 2016-02-17 20:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015
2016-08-01 10:14 - 2016-05-13 20:43 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-07-31 22:30 - 2016-02-17 20:16 - 00000000 ___RD C:\Users\mrann\Desktop\DOCXs
2016-07-31 21:23 - 2016-06-18 21:58 - 00000000 ____D C:\Users\mrann\AppData\Local\Sports Interactive
2016-07-30 09:30 - 2016-02-17 20:16 - 00000000 ___RD C:\Users\mrann\Desktop\MEME
2016-07-27 21:25 - 2016-02-27 15:29 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-07-27 18:08 - 2016-03-24 10:43 - 00000000 ____D C:\ProgramData\Oracle
2016-07-27 18:07 - 2016-05-23 19:38 - 00000000 ____D C:\Program Files\Java
2016-07-27 18:07 - 2016-03-24 10:44 - 00000000 ____D C:\Users\mrann\.oracle_jre_usage
2016-07-27 18:07 - 2016-03-24 10:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-07-27 18:07 - 2016-03-24 10:43 - 00000000 ____D C:\Program Files (x86)\Java
2016-07-27 18:06 - 2016-05-23 19:39 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2016-07-27 18:06 - 2016-03-24 10:44 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2016-07-24 18:51 - 2016-02-17 18:01 - 01873474 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-07-24 18:51 - 2016-02-17 17:36 - 00783844 _____ C:\WINDOWS\system32\perfh005.dat
2016-07-24 18:51 - 2016-02-17 17:36 - 00167864 _____ C:\WINDOWS\system32\perfc005.dat
2016-07-24 15:22 - 2016-02-18 02:47 - 05111952 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-07-20 11:17 - 2016-03-18 20:19 - 00001694 _____ C:\WINDOWS\Sandboxie.ini
2016-07-20 11:08 - 2016-02-28 09:45 - 00000000 ____D C:\Program Files\Adobe
2016-07-20 11:08 - 2016-02-18 17:42 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-07-20 10:08 - 2016-02-18 17:37 - 00000000 ____D C:\Users\mrann\AppData\Roaming\Adobe
2016-07-20 08:53 - 2016-02-18 17:55 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-07-20 08:52 - 2016-02-18 17:35 - 00000000 ____D C:\Users\mrann\AppData\Local\Adobe
2016-07-19 18:22 - 2016-04-02 20:03 - 00000034 _____ C:\Users\mrann\AppData\Roaming\AdobeWLCMCache.dat
2016-07-18 14:57 - 2016-07-13 13:59 - 00000000 ____D C:\Users\mrann\Downloads\Eddie.The.Eagle.2016.HDRip.XviD.AC3-EVO
2016-07-16 18:44 - 2016-06-29 19:30 - 00000000 ___RD C:\Users\mrann\Desktop\AVIs
2016-07-16 09:13 - 2016-02-17 17:30 - 00000000 ____D C:\WINDOWS\rescache
==================== Files in the root of some directories =======
2016-03-16 20:22 - 2016-08-14 13:37 - 0000132 _____ () C:\Users\mrann\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2016-04-02 20:03 - 2016-07-19 18:22 - 0000034 _____ () C:\Users\mrann\AppData\Roaming\AdobeWLCMCache.dat
2016-05-08 19:40 - 2016-05-08 19:40 - 0000040 _____ () C:\Users\mrann\AppData\Roaming\cdr.ini
2016-07-08 08:52 - 2002-08-29 19:33 - 0319488 ____R () C:\Users\mrann\AppData\Roaming\MafiaSetup.exe
2016-08-02 10:51 - 2016-08-02 10:51 - 0518806 _____ () C:\ProgramData\1470126202.bdinstall.bin
2016-08-03 22:38 - 2016-08-03 22:38 - 0257307 _____ () C:\ProgramData\1470256576.bdinstall.bin
2016-08-03 22:41 - 2016-08-03 22:41 - 0067630 _____ () C:\ProgramData\1470256860.6196.bin
2016-08-04 08:40 - 2016-08-04 08:40 - 0067839 _____ () C:\ProgramData\1470292851.bdinstall.bin
2016-08-04 08:47 - 2016-08-04 08:47 - 0067839 _____ () C:\ProgramData\1470292959.bdinstall.bin
2016-02-18 02:53 - 2016-02-18 02:53 - 0000000 _____ () C:\ProgramData\DP45977C.lfl
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-08-11 10:41
==================== End of FRST.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-08-2016
Ran by mrann (administrator) on JANDEL (15-08-2016 12:11:27)
Running from C:\Users\mrann\Desktop
Loaded Profiles: mrann (Available Profiles: mrann)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Sandboxie Holdings, LLC) D:\Program Files (x86)\SbieSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
() C:\Windows\syswow64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Valve Corporation) D:\Steam\Steam.exe
(Valve Corporation) D:\Steam\bin\steamwebhelper.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\avp.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\avpui.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1605.1582.0_x64__8wekyb3d8bbwe\Calculator.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-03-22] (Adobe Systems Incorporated)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2013-04-09] (Pixart Imaging Inc)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2313408 2016-04-07] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation)
HKU\S-1-5-21-880011721-1610224351-1570539116-1001\...\Run: [Steam] => D:\Steam\steam.exe [2857248 2016-08-13] (Valve Corporation)
HKU\S-1-5-21-880011721-1610224351-1570539116-1001\...\Run: [EADM] => D:\Origin\Origin.exe [3639280 2016-06-11] (Electronic Arts)
HKU\S-1-5-21-880011721-1610224351-1570539116-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-880011721-1610224351-1570539116-1001\...\Run: [SandboxieControl] => D:\Program Files (x86)\SbieCtrl.exe [797328 2016-06-15] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-880011721-1610224351-1570539116-1001\...\Run: [AceStream] => C:\Users\mrann\AppData\Roaming\ACEStream\engine\ace_engine.exe [27000 2016-07-11] ()
HKU\S-1-5-21-880011721-1610224351-1570539116-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29502592 2016-07-14] (Skype Technologies S.A.)
HKU\S-1-5-21-880011721-1610224351-1570539116-1001\...\Run: [DAEMON Tools Lite Automount] => D:\Program Files (x86)\DAEMON Tools Lite\DTAgent.exe [4299968 2016-06-22] (Disc Soft Ltd)
HKU\S-1-5-21-880011721-1610224351-1570539116-1001\...\MountPoints2: {b009931c-dd58-11e5-b312-002127c7876b} - "H:\.autorun\autorun.exe"
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] ()
Startup: C:\Users\mrann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Defraggler.lnk [2016-02-19]
ShortcutTarget: Defraggler.lnk -> C:\Program Files\Defraggler\Defraggler64.exe (Piriform Ltd)
Startup: C:\Users\mrann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Registrace NHL™ 09.lnk [2016-03-24]
ShortcutTarget: Registrace NHL™ 09.lnk -> D:\Program Files (x86)\NHL\Support\EAregister.exe (No File)
GroupPolicyScripts: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a672fe58-546a-4566-8cf4-771015742309}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-880011721-1610224351-1570539116-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_101\bin\ssv.dll [2016-07-27] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\x64\IEExt\ie_plugin.dll [2015-04-28] (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-07-27] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-07-27] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\IEExt\ie_plugin.dll [2015-04-28] (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-07-27] (Oracle Corporation)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\x64\IEExt\ie_plugin.dll [2015-04-28] (Kaspersky Lab ZAO)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\IEExt\ie_plugin.dll [2015-04-28] (Kaspersky Lab ZAO)
FireFox:
========
FF ProfilePath: C:\Users\mrann\AppData\Roaming\Mozilla\Firefox\Profiles\iymh1gry.default
FF Plugin: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-07-27] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-07-27] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-04-07] (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect -> D:\Photoshop\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-02] (Adobe Systems)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-07-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-07-27] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2013-08-20] (Nero AG)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> D:\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> D:\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> D:\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-04-07] (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> D:\Photoshop\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-02] (Adobe Systems)
FF Plugin HKU\S-1-5-21-880011721-1610224351-1570539116-1001: @acestream.net/acestreamplugin,version=3.1.2 -> C:\Users\mrann\AppData\Roaming\ACEStream\player\npace_plugin.dll [2015-08-06] (Innovative Digital Technologies)
FF Plugin HKU\S-1-5-21-880011721-1610224351-1570539116-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\mrann\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-03-11] (Unity Technologies ApS)
FF Extension: Czech (CZ) Language Pack - C:\Users\mrann\AppData\Roaming\Mozilla\Firefox\Profiles\iymh1gry.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2016-08-07]
FF Extension: Adblock Plus - C:\Users\mrann\AppData\Roaming\Mozilla\Firefox\Profiles\iymh1gry.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-06-27]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\FFExt\light_plugin_firefox
FF Extension: Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\FFExt\light_plugin_firefox [2016-08-14] [not signed]
FF HKU\S-1-5-21-880011721-1610224351-1570539116-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\mrann\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi
FF Extension: Ace Stream Web Extension - C:\Users\mrann\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi [2015-12-18]
Chrome:
=======
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.yoursearching.com/?type=hp&ts=14512 ... xx4ls09n13"
CHR Profile: C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-17]
CHR Extension: (Beautiful landscape) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ambfimhigppdidfmelpjmojccbfdoeig [2016-02-17]
CHR Extension: (Dokumenty Google) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-17]
CHR Extension: (Disk Google) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-17]
CHR Extension: (YouTube) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-17]
CHR Extension: (Steam inventory helper) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2016-08-10]
CHR Extension: (Vyhledávání Google) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-17]
CHR Extension: (Tabulky Google) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-07-28]
CHR Extension: (Appspector) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\homgcnaoacgigpkkljjjekpignblkeae [2016-02-17]
CHR Extension: (Messenger Counter) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhdoikdlijgmpbbbclhdobhpegobbnah [2016-04-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-01]
CHR Extension: (ImTranslator: Překladač, Slovník, Hlas) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\noaijdpnepcgjemiklgfkcfbkokogabh [2016-08-10]
CHR Extension: (Gmail) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-17]
CHR Extension: (Chrome Media Router) - C:\Users\mrann\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-02]
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKU\S-1-5-21-880011721-1610224351-1570539116-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [694464 2016-04-07] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2159832 2016-08-12] (Adobe Systems, Incorporated)
R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\avp.exe [194000 2015-04-28] (Kaspersky Lab ZAO)
S3 Disc Soft Lite Bus Service; D:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-06-22] (Disc Soft Ltd)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe [14760 2013-01-01] (Microsoft Corporation)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2122248 2016-06-11] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2016-07-09] ()
R2 SbieSvc; D:\Program Files (x86)\SbieSvc.exe [197264 2016-06-15] (Sandboxie Holdings, LLC)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7248144 2016-08-08] (TeamViewer GmbH)
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security Technical Preview 16.0.0\x64\vssbridge64.exe [144640 2015-04-28] (Kaspersky Lab ZAO)
S3 VSStandardCollectorService140; D:\Program Files (x86)\Visual Studio\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [56552 2016-03-22] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-01] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [381272 2015-04-21] (Kaspersky Lab ZAO)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-02-19] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-02-19] (Disc Soft Ltd)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [469336 2015-04-16] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [43352 2015-04-16] ()
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [61784 2015-04-16] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [59224 2015-04-16] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [161624 2015-04-23] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [249544 2015-04-09] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [909656 2015-04-23] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [31064 2015-04-20] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [33112 2015-04-16] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [33112 2015-04-16] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [21848 2015-04-16] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [68952 2015-04-20] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [93856 2015-04-17] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [178008 2015-04-21] (Kaspersky Lab ZAO)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek )
R3 RTL8023x64; C:\Windows\System32\drivers\Rtnic64.sys [51712 2015-10-30] (Realtek Semiconductor Corporation )
R3 SbieDrv; D:\Program Files (x86)\SbieDrv.sys [204944 2016-06-15] (Sandboxie Holdings, LLC)
S2 SecDrv; C:\WINDOWS\SysWOW64\drivers\SECDRV.SYS [11376 2016-07-08] () [File not signed]
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [216064 2015-10-30] (Microsoft Corporation)
R3 t_mouse.sys; C:\Windows\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] ()
S3 vectirhid; C:\Windows\System32\drivers\vectirhid.sys [19184 2014-11-28] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S0 b06bdrv; System32\drivers\bxvbda.sys [X]
U0 Compbatt; no ImagePath
U2 ERSvc; no ImagePath
U2 IAStorDataMgrsvc; no ImagePath
S0 ignis; \SystemRoot\system32\DRIVERS\ignis.sys [X]
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
U2 NIHardwareService; no ImagePath
U2 NVSvc; no ImagePath
U2 Parvdm; no ImagePath
U2 srService; no ImagePath
U4 vsserv; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-15 12:11 - 2016-08-15 12:14 - 00023952 _____ C:\Users\mrann\Desktop\FRST.txt
2016-08-15 12:10 - 2016-08-15 12:11 - 02394624 _____ (Farbar) C:\Users\mrann\Desktop\FRST64.exe
2016-08-15 11:35 - 2016-08-15 11:35 - 00001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-08-15 11:35 - 2016-08-15 11:35 - 00001216 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-08-15 11:35 - 2016-08-15 11:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-08-15 11:35 - 2016-08-15 11:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-08-15 11:34 - 2016-08-15 11:34 - 00242312 _____ C:\Users\mrann\Desktop\Firefox Setup Stub 48.0.exe
2016-08-15 10:16 - 2016-08-15 10:16 - 00002344 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-15 10:16 - 2016-08-15 10:16 - 00002332 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-08-15 10:15 - 2016-08-15 11:35 - 00000974 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-15 10:15 - 2016-08-15 10:33 - 00000970 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-15 10:12 - 2016-08-15 10:13 - 00987728 _____ (Google Inc.) C:\Users\mrann\Downloads\ChromeSetup.exe
2016-08-14 12:52 - 2016-08-14 13:32 - 03587175 _____ C:\Users\mrann\Desktop\MRAAN1X.psd
2016-08-14 11:18 - 2016-08-14 11:18 - 00000000 ____D C:\WINDOWS\SysWOW64\Encryption
2016-08-14 11:17 - 2016-08-14 11:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security
2016-08-14 11:16 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
2016-08-14 11:15 - 2016-08-15 11:35 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-08-14 11:15 - 2016-08-14 11:15 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2016-08-14 11:14 - 2015-04-23 14:45 - 00909656 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2016-08-14 11:14 - 2015-04-23 14:45 - 00161624 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys
2016-08-14 11:14 - 2015-04-09 22:47 - 00249544 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klhk.sys
2016-08-14 10:48 - 2016-08-14 10:50 - 00000000 ____D C:\Users\mrann\Downloads\Kaspersky Antivirus + Internet Security + Total Security 2016 16.0.0.424 Beta + Trial Resetters - AppzDam
2016-08-13 21:23 - 2016-08-13 21:23 - 00000000 ____D C:\Users\mrann\AppData\Roaming\BANDISOFT
2016-08-13 21:15 - 2016-08-13 21:15 - 00001112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-08-11 22:52 - 2016-08-11 22:53 - 122431738 _____ C:\Users\mrann\Downloads\sport fakty messi.mp4
2016-08-11 15:20 - 2016-08-11 15:20 - 00000000 ____D C:\Users\mrann\AppData\Roaming\Mirillis
2016-08-11 15:20 - 2016-08-11 15:20 - 00000000 ____D C:\ProgramData\Mirillis
2016-08-11 15:19 - 2016-08-11 15:20 - 00000000 ____D C:\Users\mrann\AppData\Local\Mirillis
2016-08-11 15:19 - 2016-08-11 15:19 - 00000000 ____D C:\Action!
2016-08-11 15:16 - 2016-08-11 15:16 - 00002108 _____ C:\Users\Public\Desktop\Action!.lnk
2016-08-11 15:16 - 2016-08-11 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
2016-08-11 15:15 - 2016-08-11 15:15 - 00000000 ____D C:\Program Files (x86)\Mirillis
2016-08-11 15:08 - 2016-08-11 15:08 - 00000000 ____D C:\Program Files (x86)\BandiMPEG1
2016-08-11 15:06 - 2016-08-11 15:07 - 00000000 ____D C:\Users\mrann\Downloads\Mirillis Action! 1.30.1
2016-08-11 15:03 - 2016-08-11 15:04 - 09792028 _____ C:\Users\mrann\Downloads\Bandicam 2.1.3.757.rar
2016-08-10 18:51 - 2016-08-10 18:51 - 00000000 ___HD C:\$WINDOWS.~BT
2016-08-10 18:15 - 2016-08-10 18:15 - 02092263 _____ C:\Users\mrann\Downloads\ubuntu-font-family-0.83.zip
2016-08-09 21:14 - 2016-08-03 13:14 - 01505984 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-08-09 21:14 - 2016-08-03 13:14 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-09 21:14 - 2016-08-03 13:14 - 00050368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-08-09 21:14 - 2016-08-03 12:36 - 07469408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-08-09 21:14 - 2016-08-03 12:36 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-08-09 21:14 - 2016-08-03 12:36 - 00037744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-08-09 21:14 - 2016-08-03 12:30 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-08-09 21:14 - 2016-08-03 12:23 - 00693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-08-09 21:14 - 2016-08-03 12:23 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-08-09 21:14 - 2016-08-03 12:22 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-08-09 21:14 - 2016-08-03 12:22 - 00465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-08-09 21:14 - 2016-08-03 12:22 - 00331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-08-09 21:14 - 2016-08-03 12:21 - 03675512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-09 21:14 - 2016-08-03 12:21 - 00566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-08-09 21:14 - 2016-08-03 12:21 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-08-09 21:14 - 2016-08-03 12:20 - 01540224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-08-09 21:14 - 2016-08-03 12:20 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-08-09 21:14 - 2016-08-03 12:19 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-09 21:14 - 2016-08-03 12:19 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-09 21:14 - 2016-08-03 12:13 - 01988448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-08-09 21:14 - 2016-08-03 12:13 - 00576864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-08-09 21:14 - 2016-08-03 12:13 - 00393056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-09 21:14 - 2016-08-03 11:51 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-08-09 21:14 - 2016-08-03 11:51 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-08-09 21:14 - 2016-08-03 11:44 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-08-09 21:14 - 2016-08-03 11:44 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-08-09 21:14 - 2016-08-03 11:44 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-08-09 21:14 - 2016-08-03 11:43 - 16985088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-08-09 21:14 - 2016-08-03 11:41 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-08-09 21:14 - 2016-08-03 11:41 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-08-09 21:14 - 2016-08-03 11:40 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-08-09 21:14 - 2016-08-03 11:40 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-08-09 21:14 - 2016-08-03 11:40 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-08-09 21:14 - 2016-08-03 11:39 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-08-09 21:14 - 2016-08-03 11:39 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-08-09 21:14 - 2016-08-03 11:38 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-08-09 21:14 - 2016-08-03 11:37 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-08-09 21:14 - 2016-08-03 11:36 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-08-09 21:14 - 2016-08-03 11:36 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-08-09 21:14 - 2016-08-03 11:35 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-08-09 21:14 - 2016-08-03 11:33 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-08-09 21:14 - 2016-08-03 11:31 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-08-09 21:14 - 2016-08-03 11:31 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2016-08-09 21:14 - 2016-08-03 11:30 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-08-09 21:14 - 2016-08-03 11:29 - 14252544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-08-09 21:14 - 2016-08-03 11:29 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-08-09 21:14 - 2016-08-03 11:29 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-09 21:14 - 2016-08-03 11:28 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-08-09 21:14 - 2016-08-03 11:28 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-08-09 21:14 - 2016-08-03 11:27 - 07536640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-08-09 21:14 - 2016-08-03 11:27 - 01717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-09 21:14 - 2016-08-03 11:18 - 06974464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-08-09 21:14 - 2016-08-03 11:18 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-08-09 21:14 - 2016-08-03 11:18 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-09 21:14 - 2016-08-03 11:17 - 02175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-08-09 21:14 - 2016-08-03 11:16 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-08-09 21:14 - 2016-08-03 11:16 - 03589120 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-09 21:14 - 2016-08-03 11:16 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-08-09 21:14 - 2016-08-03 11:16 - 01732096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-09 21:14 - 2016-08-03 11:14 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-08-09 21:14 - 2016-08-03 11:13 - 03025920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-08-09 21:14 - 2016-08-03 11:13 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-08-09 21:14 - 2016-08-03 11:12 - 02746368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-08-09 21:14 - 2016-08-03 11:11 - 04171264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-08-09 21:14 - 2016-08-03 07:52 - 00034088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2016-08-09 21:14 - 2016-08-03 07:34 - 00501592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-08-09 21:14 - 2016-08-03 07:34 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-08-09 21:14 - 2016-08-03 07:33 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-08-09 21:14 - 2016-08-03 07:31 - 02921368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-09 21:14 - 2016-08-03 07:31 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-08-09 21:14 - 2016-08-03 07:31 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-08-09 21:14 - 2016-08-03 07:30 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-08-09 21:14 - 2016-08-03 07:30 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-08-09 21:14 - 2016-08-03 07:30 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-08-09 21:14 - 2016-08-03 06:57 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2016-08-09 21:14 - 2016-08-03 06:48 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2016-08-09 21:14 - 2016-08-03 06:47 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-08-09 21:14 - 2016-08-03 06:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-08-09 21:14 - 2016-08-03 06:44 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2016-08-09 21:14 - 2016-08-03 06:42 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-08-09 21:14 - 2016-08-03 06:40 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-08-09 21:14 - 2016-08-03 06:39 - 19351040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-09 21:14 - 2016-08-03 06:37 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-08-09 21:14 - 2016-08-03 06:35 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe
2016-08-09 21:14 - 2016-08-03 06:34 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-08-09 21:14 - 2016-08-03 06:34 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-09 21:14 - 2016-08-03 06:33 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-09 21:14 - 2016-08-03 06:33 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-08-09 21:14 - 2016-08-03 06:32 - 12585984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-08-09 21:14 - 2016-08-03 06:32 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-09 21:14 - 2016-08-03 06:32 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-08-09 21:14 - 2016-08-03 06:31 - 06743040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-08-09 21:14 - 2016-08-03 06:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-08-09 21:14 - 2016-08-03 06:28 - 03663360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-08-09 21:14 - 2016-08-03 06:25 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-08-09 21:14 - 2016-08-03 06:25 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-08-09 21:14 - 2016-08-03 06:23 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-08-09 21:14 - 2016-08-03 06:22 - 02501120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-08-09 21:14 - 2016-08-03 06:22 - 01502208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-09 21:14 - 2016-08-03 06:21 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-08-09 21:14 - 2016-08-03 06:19 - 02180096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-08-09 21:13 - 2016-08-03 12:22 - 01322760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-08-09 21:13 - 2016-08-03 12:22 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-08-09 21:13 - 2016-08-03 12:21 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-08-09 21:13 - 2016-08-03 12:11 - 00422744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-08-09 21:13 - 2016-08-03 11:46 - 22384128 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-09 21:13 - 2016-08-03 11:40 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2016-08-09 21:13 - 2016-08-03 11:38 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-08-09 21:13 - 2016-08-03 11:36 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-08-09 21:13 - 2016-08-03 11:35 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-09 21:13 - 2016-08-03 11:34 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-08-09 21:13 - 2016-08-03 11:33 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-08-09 21:13 - 2016-08-03 11:31 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-08-09 21:13 - 2016-08-03 11:30 - 24613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-09 21:13 - 2016-08-03 11:30 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-08-09 21:13 - 2016-08-03 11:29 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-08-09 21:13 - 2016-08-03 11:29 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-08-09 21:13 - 2016-08-03 11:28 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-08-09 21:13 - 2016-08-03 11:27 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-08-09 21:13 - 2016-08-03 11:27 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-08-09 21:13 - 2016-08-03 11:20 - 13390336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-08-09 21:13 - 2016-08-03 11:15 - 07833088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-09 21:13 - 2016-08-03 11:14 - 04895232 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-08-09 21:13 - 2016-08-03 06:37 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-08-09 21:13 - 2016-08-03 06:35 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2016-08-09 21:13 - 2016-08-03 06:33 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-08-09 21:13 - 2016-08-03 06:32 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-08-09 21:13 - 2016-08-03 06:29 - 12133376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-08-09 21:13 - 2016-08-03 06:23 - 05660672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-07 21:44 - 2016-08-07 21:44 - 00001079 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2016-08-07 21:44 - 2016-08-07 21:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-08-07 21:44 - 2016-08-07 21:44 - 00000000 ____D C:\Program Files\VS Revo Group
2016-08-07 21:42 - 2016-08-07 21:42 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-08-04 08:47 - 2016-08-04 08:47 - 00067839 _____ C:\ProgramData\1470292959.bdinstall.bin
2016-08-04 08:40 - 2016-08-04 08:40 - 00067839 _____ C:\ProgramData\1470292851.bdinstall.bin
2016-08-03 22:41 - 2016-08-03 22:41 - 00067630 _____ C:\ProgramData\1470256860.6196.bin
2016-08-03 22:38 - 2016-08-03 22:38 - 00257307 _____ C:\ProgramData\1470256576.bdinstall.bin
2016-08-03 11:45 - 2016-08-03 22:38 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2016-08-02 12:27 - 2016-08-02 12:29 - 00000000 ____D C:\Users\mrann\Downloads\Bitdefender Total Security 2015 Build 18.21.0.1497 (x86 & x64) Incl Trial Reset + Keys {B@tman}
2016-08-02 10:51 - 2016-08-02 10:51 - 00518806 _____ C:\ProgramData\1470126202.bdinstall.bin
2016-08-02 10:51 - 2016-08-02 10:51 - 00003406 _____ C:\WINDOWS\System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C
2016-08-02 10:42 - 2016-08-02 10:42 - 00000684 ____H C:\bdr-cf02
2016-08-02 10:35 - 2016-08-02 20:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2016
2016-08-02 10:30 - 2016-08-02 10:42 - 00253404 ____H C:\bdr-ld02
2016-08-02 10:30 - 2016-08-02 10:42 - 00009216 ____H C:\bdr-ld02.mbr
2016-08-02 10:30 - 2015-12-15 21:35 - 49760229 ____H C:\bdr-im02.gz
2016-08-02 10:30 - 2013-08-13 13:38 - 03271472 ____H C:\bdr-bz02
2016-08-02 10:23 - 2016-08-07 10:44 - 00000000 ____D C:\Program Files\Bitdefender
2016-08-02 10:19 - 2016-08-02 10:19 - 00000000 ____D C:\ProgramData\Bitdefender Agent
2016-08-01 10:23 - 2016-08-01 10:27 - 00000000 ____D C:\Users\mrann\Downloads\Bitdefender Antivirus Plus, Internet Security, Total Security 2016 x86x64 + Incl Keys Dec2015 Seven7i
2016-07-31 14:38 - 2016-07-31 14:38 - 00075721 _____ C:\Users\mrann\Desktop\I-D-(0000168045).srt
2016-07-27 18:07 - 2016-07-27 18:06 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-64.dll
2016-07-20 11:08 - 2016-07-20 11:08 - 00001147 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2015.lnk
2016-07-20 10:37 - 2016-07-20 10:38 - 71845930 _____ C:\Users\mrann\Downloads\Valentino Rossi Tribute │ More Than Races.mp4
2016-07-20 08:52 - 2016-07-20 08:52 - 00000924 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Flash Professional CC 2015.lnk
2016-07-19 18:17 - 2016-07-19 18:17 - 00001429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2014.lnk
2016-07-19 18:17 - 2016-07-19 18:17 - 00000000 ____D C:\ProgramData\ALM
2016-07-19 10:37 - 2016-08-13 18:28 - 13791977 _____ C:\Users\mrann\Downloads\Šablona_nefakty.psd
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-15 12:11 - 2016-02-19 18:33 - 00000000 ____D C:\FRST
2016-08-15 11:06 - 2016-02-17 20:31 - 00000000 ___RD C:\Users\mrann\Desktop\Prográmky
2016-08-15 10:42 - 2016-02-17 17:28 - 00000000 ____D C:\WINDOWS\INF
2016-08-15 10:30 - 2016-02-17 18:32 - 00004032 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-08-15 10:29 - 2016-02-17 18:32 - 00003800 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-08-15 10:16 - 2016-02-17 18:32 - 00000000 ____D C:\Program Files (x86)\Google
2016-08-15 09:11 - 2016-02-17 17:30 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-15 09:04 - 2016-02-27 14:17 - 00004194 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{FD4B080C-43E6-4A57-9184-ACC3C7128CA9}
2016-08-14 19:12 - 2016-02-17 20:16 - 00000000 ___RD C:\Users\mrann\Desktop\Intro & Outro
2016-08-14 13:40 - 2016-02-17 18:26 - 00000000 ____D C:\Users\mrann
2016-08-14 13:37 - 2016-03-16 20:22 - 00000132 _____ C:\Users\mrann\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2016-08-14 13:00 - 2016-02-18 02:57 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-14 11:18 - 2016-02-17 18:49 - 00000000 ____D C:\Users\mrann\AppData\Roaming\uTorrent
2016-08-14 11:16 - 2016-02-17 17:10 - 00065536 ___SH C:\WINDOWS\system32\config\ELAM
2016-08-14 11:15 - 2016-02-17 17:30 - 00000000 ____D C:\WINDOWS\ELAMBKUP
2016-08-14 10:42 - 2016-02-17 20:16 - 00000000 ___RD C:\Users\mrann\Desktop\HRÁČI ATLÉTICA
2016-08-14 10:22 - 2016-02-20 12:28 - 00000000 ____D C:\Users\mrann\OneDrive\Documents\FIFA 14
2016-08-14 09:41 - 2016-02-17 19:51 - 00000000 ____D C:\ProgramData\Origin
2016-08-13 21:15 - 2016-03-15 18:11 - 00000000 ____D C:\Users\mrann\AppData\Roaming\TeamViewer
2016-08-13 21:15 - 2016-03-15 18:11 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-08-13 18:28 - 2016-02-17 20:22 - 00000000 ___RD C:\Users\mrann\Desktop\PSDs
2016-08-13 17:52 - 2016-02-17 20:17 - 00000000 ___RD C:\Users\mrann\Desktop\NEFAKTY
2016-08-12 18:33 - 2016-03-20 17:15 - 00000000 ____D C:\Users\mrann\AppData\Roaming\.ACEStream
2016-08-11 23:03 - 2016-03-24 11:29 - 00000000 ____D C:\Users\mrann\AppData\Roaming\vlc
2016-08-11 10:53 - 2016-02-17 17:30 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-08-11 10:53 - 2016-02-17 17:18 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-10 23:08 - 2016-02-17 17:10 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-08-10 23:06 - 2016-02-17 17:30 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-10 23:06 - 2016-02-17 17:30 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-08-10 23:06 - 2016-02-17 17:30 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-10 18:52 - 2016-02-17 17:41 - 00000000 ___DC C:\WINDOWS\Panther
2016-08-10 18:35 - 2016-02-17 21:52 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-10 17:50 - 2016-02-17 21:52 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-08 23:00 - 2016-02-17 18:37 - 00000000 ____D C:\Users\mrann\AppData\Roaming\Skype
2016-08-07 21:52 - 2016-04-03 19:42 - 00000000 ____D C:\WINDOWS\Minidump
2016-08-07 21:38 - 2016-07-02 09:46 - 00000176 _____ C:\WINDOWS\wininit.ini
2016-08-07 10:58 - 2016-05-23 19:42 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-08-07 10:58 - 2016-02-17 18:36 - 00000000 ____D C:\ProgramData\Skype
2016-08-07 08:34 - 2016-02-17 17:30 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-04 08:51 - 2016-02-19 18:23 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-08-02 20:47 - 2016-02-17 23:05 - 00037219 _____ C:\bdlog.txt
2016-08-01 10:34 - 2016-02-17 20:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015
2016-08-01 10:14 - 2016-05-13 20:43 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-07-31 22:30 - 2016-02-17 20:16 - 00000000 ___RD C:\Users\mrann\Desktop\DOCXs
2016-07-31 21:23 - 2016-06-18 21:58 - 00000000 ____D C:\Users\mrann\AppData\Local\Sports Interactive
2016-07-30 09:30 - 2016-02-17 20:16 - 00000000 ___RD C:\Users\mrann\Desktop\MEME
2016-07-27 21:25 - 2016-02-27 15:29 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-07-27 18:08 - 2016-03-24 10:43 - 00000000 ____D C:\ProgramData\Oracle
2016-07-27 18:07 - 2016-05-23 19:38 - 00000000 ____D C:\Program Files\Java
2016-07-27 18:07 - 2016-03-24 10:44 - 00000000 ____D C:\Users\mrann\.oracle_jre_usage
2016-07-27 18:07 - 2016-03-24 10:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-07-27 18:07 - 2016-03-24 10:43 - 00000000 ____D C:\Program Files (x86)\Java
2016-07-27 18:06 - 2016-05-23 19:39 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2016-07-27 18:06 - 2016-03-24 10:44 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2016-07-24 18:51 - 2016-02-17 18:01 - 01873474 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-07-24 18:51 - 2016-02-17 17:36 - 00783844 _____ C:\WINDOWS\system32\perfh005.dat
2016-07-24 18:51 - 2016-02-17 17:36 - 00167864 _____ C:\WINDOWS\system32\perfc005.dat
2016-07-24 15:22 - 2016-02-18 02:47 - 05111952 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-07-20 11:17 - 2016-03-18 20:19 - 00001694 _____ C:\WINDOWS\Sandboxie.ini
2016-07-20 11:08 - 2016-02-28 09:45 - 00000000 ____D C:\Program Files\Adobe
2016-07-20 11:08 - 2016-02-18 17:42 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-07-20 10:08 - 2016-02-18 17:37 - 00000000 ____D C:\Users\mrann\AppData\Roaming\Adobe
2016-07-20 08:53 - 2016-02-18 17:55 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-07-20 08:52 - 2016-02-18 17:35 - 00000000 ____D C:\Users\mrann\AppData\Local\Adobe
2016-07-19 18:22 - 2016-04-02 20:03 - 00000034 _____ C:\Users\mrann\AppData\Roaming\AdobeWLCMCache.dat
2016-07-18 14:57 - 2016-07-13 13:59 - 00000000 ____D C:\Users\mrann\Downloads\Eddie.The.Eagle.2016.HDRip.XviD.AC3-EVO
2016-07-16 18:44 - 2016-06-29 19:30 - 00000000 ___RD C:\Users\mrann\Desktop\AVIs
2016-07-16 09:13 - 2016-02-17 17:30 - 00000000 ____D C:\WINDOWS\rescache
==================== Files in the root of some directories =======
2016-03-16 20:22 - 2016-08-14 13:37 - 0000132 _____ () C:\Users\mrann\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2016-04-02 20:03 - 2016-07-19 18:22 - 0000034 _____ () C:\Users\mrann\AppData\Roaming\AdobeWLCMCache.dat
2016-05-08 19:40 - 2016-05-08 19:40 - 0000040 _____ () C:\Users\mrann\AppData\Roaming\cdr.ini
2016-07-08 08:52 - 2002-08-29 19:33 - 0319488 ____R () C:\Users\mrann\AppData\Roaming\MafiaSetup.exe
2016-08-02 10:51 - 2016-08-02 10:51 - 0518806 _____ () C:\ProgramData\1470126202.bdinstall.bin
2016-08-03 22:38 - 2016-08-03 22:38 - 0257307 _____ () C:\ProgramData\1470256576.bdinstall.bin
2016-08-03 22:41 - 2016-08-03 22:41 - 0067630 _____ () C:\ProgramData\1470256860.6196.bin
2016-08-04 08:40 - 2016-08-04 08:40 - 0067839 _____ () C:\ProgramData\1470292851.bdinstall.bin
2016-08-04 08:47 - 2016-08-04 08:47 - 0067839 _____ () C:\ProgramData\1470292959.bdinstall.bin
2016-02-18 02:53 - 2016-02-18 02:53 - 0000000 _____ () C:\ProgramData\DP45977C.lfl
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-08-11 10:41
==================== End of FRST.txt ============================
