Automatické rovnaní ikon na ploše a ve všech složkách Vyřešeno
Re: Automatické rovnaní ikon na ploše a ve všech složkách
Odinstalovávám a budu používat nějakou free náhražku.
OS: Windows 10 Home (22H2) 64 bit
MB: ASUS PRIME X570-P
Procesor: AMD Ryzen 7 3700X
Grafika: MSI GeForce RTX 3060 Ti Gaming Z TRIO (8 GB)
RAM: 2x32 GB Kingston Fury Beast DDR4 3200MHz CL16
Zdroj: 750 W MSI MPG A750GF
SSD (OS): Kingston SSD A2000 500 GB
HDD: Seagate IronWolf 4 TB
SSD: 4 TB Samsung 870 EVO
Monitor: Dell S2721D
Case: Fractal Design Define S
MB: ASUS PRIME X570-P
Procesor: AMD Ryzen 7 3700X
Grafika: MSI GeForce RTX 3060 Ti Gaming Z TRIO (8 GB)
RAM: 2x32 GB Kingston Fury Beast DDR4 3200MHz CL16
Zdroj: 750 W MSI MPG A750GF
SSD (OS): Kingston SSD A2000 500 GB
HDD: Seagate IronWolf 4 TB
SSD: 4 TB Samsung 870 EVO
Monitor: Dell S2721D
Case: Fractal Design Define S
Re: Automatické rovnaní ikon na ploše a ve všech složkách
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 25.9.2015
Scan Time: 20:43
Logfile: MAMH.txt
Administrator: Yes
Version: 2.1.8.1057
Malware Database: v2015.09.25.04
Rootkit Database: v2015.09.22.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 10
CPU: x64
File System: NTFS
User: Kedar
Scan Type: Custom Scan
Result: Completed
Objects Scanned: 542619
Time Elapsed: 21 min, 57 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 1
Trojan.Agent, C:\Program Files (x86)\KMSPico\KMSpico.exe, Deleted, [f7211b19602b92a4cc8768e2d530f808],
Physical Sectors: 0
(No malicious items detected)
(end)
www.malwarebytes.org
Scan Date: 25.9.2015
Scan Time: 20:43
Logfile: MAMH.txt
Administrator: Yes
Version: 2.1.8.1057
Malware Database: v2015.09.25.04
Rootkit Database: v2015.09.22.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 10
CPU: x64
File System: NTFS
User: Kedar
Scan Type: Custom Scan
Result: Completed
Objects Scanned: 542619
Time Elapsed: 21 min, 57 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 1
Trojan.Agent, C:\Program Files (x86)\KMSPico\KMSpico.exe, Deleted, [f7211b19602b92a4cc8768e2d530f808],
Physical Sectors: 0
(No malicious items detected)
(end)
OS: Windows 10 Home (22H2) 64 bit
MB: ASUS PRIME X570-P
Procesor: AMD Ryzen 7 3700X
Grafika: MSI GeForce RTX 3060 Ti Gaming Z TRIO (8 GB)
RAM: 2x32 GB Kingston Fury Beast DDR4 3200MHz CL16
Zdroj: 750 W MSI MPG A750GF
SSD (OS): Kingston SSD A2000 500 GB
HDD: Seagate IronWolf 4 TB
SSD: 4 TB Samsung 870 EVO
Monitor: Dell S2721D
Case: Fractal Design Define S
MB: ASUS PRIME X570-P
Procesor: AMD Ryzen 7 3700X
Grafika: MSI GeForce RTX 3060 Ti Gaming Z TRIO (8 GB)
RAM: 2x32 GB Kingston Fury Beast DDR4 3200MHz CL16
Zdroj: 750 W MSI MPG A750GF
SSD (OS): Kingston SSD A2000 500 GB
HDD: Seagate IronWolf 4 TB
SSD: 4 TB Samsung 870 EVO
Monitor: Dell S2721D
Case: Fractal Design Define S
-
jerabina
- člen Security týmu
-
Level 6
- Příspěvky: 3647
- Registrován: březen 13
- Bydliště: Litoměřice
- Pohlaví:
- Stav:
Offline
Re: Automatické rovnaní ikon na ploše a ve všech složkách
Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Pak klikni na "Prohledat " ,po jeho skončení:
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
(musíš dát myší zatržítko do toho čtverečku vlevo od registru ap.)
- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Vypni antivir
Stáhni
Zoek.exe
a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.
Do okna programu vlož skript níže:
klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .
Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.
Vlož nový log z HJT + informuj o problémech.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Pak klikni na "Prohledat " ,po jeho skončení:
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
(musíš dát myší zatržítko do toho čtverečku vlevo od registru ap.)
- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Vypni antivir
Stáhni
Zoek.exe
a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.
Do okna programu vlož skript níže:
Kód: Vybrat vše
autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts; klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .
Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.
Vlož nový log z HJT + informuj o problémech.
Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
Re: Automatické rovnaní ikon na ploše a ve všech složkách
RogueKiller V10.10.6.0 (x64) [Sep 21 2015] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com
Operační systém : Windows 10 (10.0.10240) 64 bits version
Spuštěno : Normální režim
Uživatel : Kedar [Práva správce]
Started from : C:\Users\Kedar\Desktop\RogueKillerX64.exe
Mód : Smazat -- Datum : 09/27/2015 19:17:08
¤¤¤ Procesy : 0 ¤¤¤
¤¤¤ Registry : 9 ¤¤¤
[Hidden.From.SCM] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\qripmfrx (System32\drivers\fklxojx.sys) -> Smazáno
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1004-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main | Start Page : http://asus13.msn.com -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1004-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main | Start Page : http://asus13.msn.com -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1004-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://asus13.msn.com -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1004-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://asus13.msn.com -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1006-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://asus13.msn.com -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1006-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://asus13.msn.com -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Nahrazeno (2)
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Nahrazeno (2)
¤¤¤ Úlohy : 0 ¤¤¤
¤¤¤ Soubory : 0 ¤¤¤
¤¤¤ Soubor HOSTS : 52 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 vortex.data.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 vortex-win.data.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 telecommand.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 telecommand.telemetry.microsoft.com.nsatc.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 oca.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 oca.telemetry.microsoft.com.nsatc.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 sqm.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 sqm.telemetry.microsoft.com.nsatc.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 watson.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 watson.telemetry.microsoft.com.nsatc.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 redir.metaservices.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 choice.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 choice.microsoft.com.nsatc.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 df.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 reports.wes.df.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 wes.df.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 services.wes.df.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 sqm.df.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 watson.ppe.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 telemetry.appex.bing.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 telemetry.urs.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 telemetry.appex.bing.net:443
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 settings-sandbox.data.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 vortex-sandbox.data.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 survey.watson.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 watson.live.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 watson.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 statsfe2.ws.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 corpext.msitadfs.glbdns2.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 compatexchange.cloudapp.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 cs1.wpc.v0cdn.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 a-0001.a-msedge.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 statsfe2.update.microsoft.com.akadns.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 sls.update.microsoft.com.akadns.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 fe2.update.microsoft.com.akadns.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 65.55.108.23
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 65.39.117.230
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 23.218.212.69
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 134.170.30.202
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 137.116.81.24
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 diagnostics.support.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 corp.sts.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 statsfe1.ws.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 pre.footprintpredict.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 204.79.197.200
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 23.218.212.69
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 i1.services.social.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 i1.services.social.microsoft.com.nsatc.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 feedback.windows.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 feedback.microsoft-hohm.com
¤¤¤ Antirootkit : 0 (Driver: Nenahrán [0x20]) ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: Hitachi HTS545050B9A300 SCSI Disk Device +++++
--- User ---
[MBR] 544150b7a3955d0fde8e3ca33e82abd2
[BSP] 28798386ca5bf689aea43acc7b8f141e : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] FAT32-LBA (0x1c) [HIDDEN!] Offset (sectors): 2048 | Size: 25600 MB
1 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 52430848 | Size: 100 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 52635648 | Size: 204800 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
3 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 472066048 | Size: 246438 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com
Operační systém : Windows 10 (10.0.10240) 64 bits version
Spuštěno : Normální režim
Uživatel : Kedar [Práva správce]
Started from : C:\Users\Kedar\Desktop\RogueKillerX64.exe
Mód : Smazat -- Datum : 09/27/2015 19:17:08
¤¤¤ Procesy : 0 ¤¤¤
¤¤¤ Registry : 9 ¤¤¤
[Hidden.From.SCM] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\qripmfrx (System32\drivers\fklxojx.sys) -> Smazáno
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1004-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main | Start Page : http://asus13.msn.com -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1004-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main | Start Page : http://asus13.msn.com -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1004-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://asus13.msn.com -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1004-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://asus13.msn.com -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1006-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://asus13.msn.com -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1006-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://asus13.msn.com -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Nahrazeno (2)
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Nahrazeno (2)
¤¤¤ Úlohy : 0 ¤¤¤
¤¤¤ Soubory : 0 ¤¤¤
¤¤¤ Soubor HOSTS : 52 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 vortex.data.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 vortex-win.data.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 telecommand.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 telecommand.telemetry.microsoft.com.nsatc.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 oca.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 oca.telemetry.microsoft.com.nsatc.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 sqm.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 sqm.telemetry.microsoft.com.nsatc.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 watson.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 watson.telemetry.microsoft.com.nsatc.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 redir.metaservices.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 choice.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 choice.microsoft.com.nsatc.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 df.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 reports.wes.df.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 wes.df.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 services.wes.df.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 sqm.df.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 watson.ppe.telemetry.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 telemetry.appex.bing.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 telemetry.urs.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 telemetry.appex.bing.net:443
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 settings-sandbox.data.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 vortex-sandbox.data.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 survey.watson.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 watson.live.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 watson.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 statsfe2.ws.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 corpext.msitadfs.glbdns2.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 compatexchange.cloudapp.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 cs1.wpc.v0cdn.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 a-0001.a-msedge.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 statsfe2.update.microsoft.com.akadns.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 sls.update.microsoft.com.akadns.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 fe2.update.microsoft.com.akadns.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 65.55.108.23
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 65.39.117.230
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 23.218.212.69
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 134.170.30.202
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 137.116.81.24
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 diagnostics.support.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 corp.sts.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 statsfe1.ws.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 pre.footprintpredict.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 204.79.197.200
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 23.218.212.69
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 i1.services.social.microsoft.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 i1.services.social.microsoft.com.nsatc.net
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 feedback.windows.com
[C:\Windows\System32\drivers\etc\hosts] 0.0.0.0 feedback.microsoft-hohm.com
¤¤¤ Antirootkit : 0 (Driver: Nenahrán [0x20]) ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: Hitachi HTS545050B9A300 SCSI Disk Device +++++
--- User ---
[MBR] 544150b7a3955d0fde8e3ca33e82abd2
[BSP] 28798386ca5bf689aea43acc7b8f141e : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] FAT32-LBA (0x1c) [HIDDEN!] Offset (sectors): 2048 | Size: 25600 MB
1 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 52430848 | Size: 100 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 52635648 | Size: 204800 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
3 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 472066048 | Size: 246438 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK
OS: Windows 10 Home (22H2) 64 bit
MB: ASUS PRIME X570-P
Procesor: AMD Ryzen 7 3700X
Grafika: MSI GeForce RTX 3060 Ti Gaming Z TRIO (8 GB)
RAM: 2x32 GB Kingston Fury Beast DDR4 3200MHz CL16
Zdroj: 750 W MSI MPG A750GF
SSD (OS): Kingston SSD A2000 500 GB
HDD: Seagate IronWolf 4 TB
SSD: 4 TB Samsung 870 EVO
Monitor: Dell S2721D
Case: Fractal Design Define S
MB: ASUS PRIME X570-P
Procesor: AMD Ryzen 7 3700X
Grafika: MSI GeForce RTX 3060 Ti Gaming Z TRIO (8 GB)
RAM: 2x32 GB Kingston Fury Beast DDR4 3200MHz CL16
Zdroj: 750 W MSI MPG A750GF
SSD (OS): Kingston SSD A2000 500 GB
HDD: Seagate IronWolf 4 TB
SSD: 4 TB Samsung 870 EVO
Monitor: Dell S2721D
Case: Fractal Design Define S
Re: Automatické rovnaní ikon na ploše a ve všech složkách
Zoek.exe v5.0.0.0 Updated 27-09-2015
Tool run by Kedar on ne 27.09.2015 at 19:21:56,17.
Microsoft Windows 10 Home 10.0.10240 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Kedar\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
27.9.2015 19:25:03 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Empty Folders Check ======================
C:\PROGRA~2\Cisco deleted successfully
C:\PROGRA~2\GUM4D69.tmp deleted successfully
C:\Program Files\Common Files\Intel deleted successfully
C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\Users\DefaultAppPool\AppData\LocalLow deleted successfully
C:\Users\Default\AppData\Local\Google deleted successfully
C:\Users\DefaultAppPool\AppData\Local\Google deleted successfully
C:\Users\Ivana\AppData\Local\NetworkTiles deleted successfully
C:\Users\Ivana\AppData\Local\VirtualStore deleted successfully
C:\Users\Kedar\AppData\Local\LSI deleted successfully
C:\Users\Kedar\AppData\Local\NetworkTiles deleted successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\NetworkTiles deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1001\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1004-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1006-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1004-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1006-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1001\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1004-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1006-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1004-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1006-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== Deleting Files \ Folders ======================
C:\PROGRA~2\Cisco not found
C:\PROGRA~2\GUM4D69.tmp not found
C:\Users\Kedar\AppData\Roaming\.technic deleted
C:\PROGRA~3\BSD deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Kedar\AppData\Local\Unity deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\Kedar\AppData\LocalLow\Unity deleted
==== Chromium Look ======================
Google Chrome Version: 46.0.2490.42
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
bknbnapaddjdnbilpmlacdkjdkjmbjhd - No path found[]
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
bknbnapaddjdnbilpmlacdkjdkjmbjhd - No path found[]
FormApps Chrome Extension - Ivana\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi
OGame Galaxy Extension - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\clknnoodfglafkilgjcgeikipgjkkaai
OGame Debris Fields Finder Extension - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddccmiobomjhcahhjglkakjhcbeagidi
OGame Resources Extension - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\dinnmkijapcbjfflfncafmfhajnggenb
PasswordBox - Free Password Manager - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\dljbcjbfojhlfhgenhepllagfecdpchb
OGame Auctioneer Assistant - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghjpkobjhgiladaphmdgnnfahkgceemg
AdBlock - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
FormApps Chrome Extension - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi
Bing2Google - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgoehlfmhfafaiepckjikpphoklijedl
Twitch Now - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk
piZap Photo Editor - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\occpjibghkbopohbefbejkklnfdkdmok
OGame Basic Fleet Dispatcher Extension - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkaalmgomellfonmhgklpbgodejcfhfa
==== Chromium Fix ======================
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.nod32-finder.com_0.localstorage deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.nod32-finder.com_0.localstorage-journal deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.eclypsia.com_0.localstorage deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.eclypsia.com_0.localstorage-journal deleted successfully
C:\Users\Ivana\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage deleted successfully
C:\Users\Ivana\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_lp.ilividnewtab.com_0.localstorage deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_lp.ilividnewtab.com_0.localstorage-journal deleted successfully
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\Ivana\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully
C:\Users\Ivana\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\Ivana\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully
C:\Users\Ivana\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_dsms0mj1bbhn4.cloudfront.net_0.localstorage deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_dsms0mj1bbhn4.cloudfront.net_0.localstorage-journal deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
"Old Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
"Old Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Goo Url="http://www.google.com/search?q={sear"
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\OSppSvc.exe deleted successfully
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\UnityWebPlayer deleted successfully
==== Empty IE Cache ======================
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Ivana\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Kedar\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Kedar\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Ivana\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Kedar\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Kedar\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Ivana\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=3525 folders=796 1192690281 bytes)
==== Empty Temp Folders ======================
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\Users\Kedar\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on ne 27.09.2015 at 19:57:10,73 ======================
Tool run by Kedar on ne 27.09.2015 at 19:21:56,17.
Microsoft Windows 10 Home 10.0.10240 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Kedar\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
27.9.2015 19:25:03 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Empty Folders Check ======================
C:\PROGRA~2\Cisco deleted successfully
C:\PROGRA~2\GUM4D69.tmp deleted successfully
C:\Program Files\Common Files\Intel deleted successfully
C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\Users\DefaultAppPool\AppData\LocalLow deleted successfully
C:\Users\Default\AppData\Local\Google deleted successfully
C:\Users\DefaultAppPool\AppData\Local\Google deleted successfully
C:\Users\Ivana\AppData\Local\NetworkTiles deleted successfully
C:\Users\Ivana\AppData\Local\VirtualStore deleted successfully
C:\Users\Kedar\AppData\Local\LSI deleted successfully
C:\Users\Kedar\AppData\Local\NetworkTiles deleted successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\NetworkTiles deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1001\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1004-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1006-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1004-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1006-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1001\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1004-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1006-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1004-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_USERS\S-1-5-21-1254521284-2832283178-1197838188-1006-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== Deleting Files \ Folders ======================
C:\PROGRA~2\Cisco not found
C:\PROGRA~2\GUM4D69.tmp not found
C:\Users\Kedar\AppData\Roaming\.technic deleted
C:\PROGRA~3\BSD deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Kedar\AppData\Local\Unity deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\Kedar\AppData\LocalLow\Unity deleted
==== Chromium Look ======================
Google Chrome Version: 46.0.2490.42
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
bknbnapaddjdnbilpmlacdkjdkjmbjhd - No path found[]
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
bknbnapaddjdnbilpmlacdkjdkjmbjhd - No path found[]
FormApps Chrome Extension - Ivana\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi
OGame Galaxy Extension - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\clknnoodfglafkilgjcgeikipgjkkaai
OGame Debris Fields Finder Extension - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddccmiobomjhcahhjglkakjhcbeagidi
OGame Resources Extension - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\dinnmkijapcbjfflfncafmfhajnggenb
PasswordBox - Free Password Manager - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\dljbcjbfojhlfhgenhepllagfecdpchb
OGame Auctioneer Assistant - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghjpkobjhgiladaphmdgnnfahkgceemg
AdBlock - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
FormApps Chrome Extension - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi
Bing2Google - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgoehlfmhfafaiepckjikpphoklijedl
Twitch Now - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk
piZap Photo Editor - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\occpjibghkbopohbefbejkklnfdkdmok
OGame Basic Fleet Dispatcher Extension - Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkaalmgomellfonmhgklpbgodejcfhfa
==== Chromium Fix ======================
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.nod32-finder.com_0.localstorage deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.nod32-finder.com_0.localstorage-journal deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.eclypsia.com_0.localstorage deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.eclypsia.com_0.localstorage-journal deleted successfully
C:\Users\Ivana\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage deleted successfully
C:\Users\Ivana\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_lp.ilividnewtab.com_0.localstorage deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_lp.ilividnewtab.com_0.localstorage-journal deleted successfully
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\Ivana\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully
C:\Users\Ivana\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\Ivana\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully
C:\Users\Ivana\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_dsms0mj1bbhn4.cloudfront.net_0.localstorage deleted successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_dsms0mj1bbhn4.cloudfront.net_0.localstorage-journal deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
"Old Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
"Old Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Goo Url="http://www.google.com/search?q={sear"
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\OSppSvc.exe deleted successfully
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\UnityWebPlayer deleted successfully
==== Empty IE Cache ======================
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Ivana\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Kedar\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Kedar\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Ivana\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Kedar\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Kedar\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Ivana\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=3525 folders=796 1192690281 bytes)
==== Empty Temp Folders ======================
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\Users\Kedar\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on ne 27.09.2015 at 19:57:10,73 ======================
OS: Windows 10 Home (22H2) 64 bit
MB: ASUS PRIME X570-P
Procesor: AMD Ryzen 7 3700X
Grafika: MSI GeForce RTX 3060 Ti Gaming Z TRIO (8 GB)
RAM: 2x32 GB Kingston Fury Beast DDR4 3200MHz CL16
Zdroj: 750 W MSI MPG A750GF
SSD (OS): Kingston SSD A2000 500 GB
HDD: Seagate IronWolf 4 TB
SSD: 4 TB Samsung 870 EVO
Monitor: Dell S2721D
Case: Fractal Design Define S
MB: ASUS PRIME X570-P
Procesor: AMD Ryzen 7 3700X
Grafika: MSI GeForce RTX 3060 Ti Gaming Z TRIO (8 GB)
RAM: 2x32 GB Kingston Fury Beast DDR4 3200MHz CL16
Zdroj: 750 W MSI MPG A750GF
SSD (OS): Kingston SSD A2000 500 GB
HDD: Seagate IronWolf 4 TB
SSD: 4 TB Samsung 870 EVO
Monitor: Dell S2721D
Case: Fractal Design Define S
Re: Automatické rovnaní ikon na ploše a ve všech složkách
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:01:27, on 27.9.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\WINDOWS\SysWOW64\rundll32.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Kedar\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\CyberLink\Power2Go9\CLMLSvc_P2G9.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
C:\Users\Kedar\Desktop\HijackThis.exe
C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [CLMLServer_For_P2G9] "C:\Program Files (x86)\CyberLink\Power2Go9\CLMLSvc_P2G9.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com/select/asusTek_sys_ctrl3.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASNB4LDRSvc Service (ASNB4LDRSvc) - ASUS - C:\Program Files (x86)\ASUS\Wireless Console 3\ASNB4LDRSvc.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13262 bytes
Scan saved at 20:01:27, on 27.9.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\WINDOWS\SysWOW64\rundll32.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Kedar\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\CyberLink\Power2Go9\CLMLSvc_P2G9.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
C:\Users\Kedar\Desktop\HijackThis.exe
C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [CLMLServer_For_P2G9] "C:\Program Files (x86)\CyberLink\Power2Go9\CLMLSvc_P2G9.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com/select/asusTek_sys_ctrl3.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASNB4LDRSvc Service (ASNB4LDRSvc) - ASUS - C:\Program Files (x86)\ASUS\Wireless Console 3\ASNB4LDRSvc.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13262 bytes
OS: Windows 10 Home (22H2) 64 bit
MB: ASUS PRIME X570-P
Procesor: AMD Ryzen 7 3700X
Grafika: MSI GeForce RTX 3060 Ti Gaming Z TRIO (8 GB)
RAM: 2x32 GB Kingston Fury Beast DDR4 3200MHz CL16
Zdroj: 750 W MSI MPG A750GF
SSD (OS): Kingston SSD A2000 500 GB
HDD: Seagate IronWolf 4 TB
SSD: 4 TB Samsung 870 EVO
Monitor: Dell S2721D
Case: Fractal Design Define S
MB: ASUS PRIME X570-P
Procesor: AMD Ryzen 7 3700X
Grafika: MSI GeForce RTX 3060 Ti Gaming Z TRIO (8 GB)
RAM: 2x32 GB Kingston Fury Beast DDR4 3200MHz CL16
Zdroj: 750 W MSI MPG A750GF
SSD (OS): Kingston SSD A2000 500 GB
HDD: Seagate IronWolf 4 TB
SSD: 4 TB Samsung 870 EVO
Monitor: Dell S2721D
Case: Fractal Design Define S
Re: Automatické rovnaní ikon na ploše a ve všech složkách
Pořád to nepřestalo :( . Zmenším velikost ikon na ploše odhlásím se přihlásím a ta velikost je zase velká.
+ Šel by vypnout program Asus Live Update ? Aby se při startu nezapínal.
+ Šel by vypnout program Asus Live Update ? Aby se při startu nezapínal.
OS: Windows 10 Home (22H2) 64 bit
MB: ASUS PRIME X570-P
Procesor: AMD Ryzen 7 3700X
Grafika: MSI GeForce RTX 3060 Ti Gaming Z TRIO (8 GB)
RAM: 2x32 GB Kingston Fury Beast DDR4 3200MHz CL16
Zdroj: 750 W MSI MPG A750GF
SSD (OS): Kingston SSD A2000 500 GB
HDD: Seagate IronWolf 4 TB
SSD: 4 TB Samsung 870 EVO
Monitor: Dell S2721D
Case: Fractal Design Define S
MB: ASUS PRIME X570-P
Procesor: AMD Ryzen 7 3700X
Grafika: MSI GeForce RTX 3060 Ti Gaming Z TRIO (8 GB)
RAM: 2x32 GB Kingston Fury Beast DDR4 3200MHz CL16
Zdroj: 750 W MSI MPG A750GF
SSD (OS): Kingston SSD A2000 500 GB
HDD: Seagate IronWolf 4 TB
SSD: 4 TB Samsung 870 EVO
Monitor: Dell S2721D
Case: Fractal Design Define S
-
jerabina
- člen Security týmu
-
Level 6
- Příspěvky: 3647
- Registrován: březen 13
- Bydliště: Litoměřice
- Pohlaví:
- Stav:
Offline
Re: Automatické rovnaní ikon na ploše a ve všech složkách
Vypnu to přes FRST, což je další krok takže:
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit Farbar Recovery Scan Tool (FRST)
32bit.:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
64bit.:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
a ulož jej na plochu. ,pak spusť FRST jako správce
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit Farbar Recovery Scan Tool (FRST)
32bit.:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
64bit.:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
a ulož jej na plochu. ,pak spusť FRST jako správce
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
Re: Automatické rovnaní ikon na ploše a ve všech složkách
1. Část
Running from C:\Users\Kedar\Desktop
Loaded Profiles: Kedar (Available Profiles: Kedar & Ivana & Admin & Administrator & DefaultAppPool)
Platform: Windows 10 Home (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\Wireless Console 3\ASNB4LDRSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(ASUS) C:\Program Files\P4G\BatteryLife.exe
(Aequus Gaming) C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Windows\AsScrPro.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Virage Logic Corporation / Sonic Focus) C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go9\CLMLSvc_P2G9.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Aequus Gaming) C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
(Aequus Gaming) C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
(Aequus Gaming) C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(Aequus Gaming) C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
(Aequus Gaming) C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1509.14010.0_x64__8wekyb3d8bbwe\Calculator.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.922.11070.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Users\Kedar\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-09-13] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [SonicMasterTray] => C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [984400 2010-07-10] (Virage Logic Corporation / Sonic Focus)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5732992 2010-08-17] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-07] (ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (CANON INC.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [111120 2012-05-24] (CyberLink)
HKLM-x32\...\Run: [CLMLServer_For_P2G9] => C:\Program Files (x86)\CyberLink\Power2Go9\CLMLSvc_P2G9.exe [110344 2014-04-01] (CyberLink)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [176904 2015-08-25] (NVIDIA Corporation)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [176904 2015-08-25] (NVIDIA Corporation)
AppInit_DLLs: , C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [176904 2015-08-25] (NVIDIA Corporation)
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [176904 2015-08-25] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [155976 2015-08-25] (NVIDIA Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2ec3a632-3aa3-425f-bde8-cb72858b8185}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://windows.microsoft.com/cs-cz/hotm ... ?ocid=iehp
SearchScopes: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-26] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-26] (Oracle Corporation)
DPF: HKLM-x32 {0D41B8C5-2599-4893-8183-00195EC8D5F9} hxxp://support.asus.com/select/asusTek_sys_ctrl3.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-21] ()
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-26] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-21] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-08-26] (Google, Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-06-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1254521284-2832283178-1197838188-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\Kedar\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll No File
FF Plugin HKU\S-1-5-21-1254521284-2832283178-1197838188-1001: @talk.google.com/O1DPlugin -> C:\Users\Kedar\AppData\Roaming\Mozilla\plugins\npo1d.dll No File
FF Plugin HKU\S-1-5-21-1254521284-2832283178-1197838188-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll No File
FF Plugin HKU\S-1-5-21-1254521284-2832283178-1197838188-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll No File
FF Plugin HKU\S-1-5-21-1254521284-2832283178-1197838188-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Kedar\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll No File
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR NewTab: Default -> "chrome-extension://dljbcjbfojhlfhgenhepllagfecdpchb/startpage/startpage.html"
CHR Profile: C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-20]
CHR Extension: (Dokumenty Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-20]
CHR Extension: (Disk Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-20]
CHR Extension: (YouTube) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-05]
CHR Extension: (OGame Galaxy Extension) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\clknnoodfglafkilgjcgeikipgjkkaai [2015-07-20]
CHR Extension: (Vyhledávání Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-05]
CHR Extension: (OGame Debris Fields Finder Extension) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddccmiobomjhcahhjglkakjhcbeagidi [2015-07-20]
CHR Extension: (OGame Resources Extension) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\dinnmkijapcbjfflfncafmfhajnggenb [2015-07-20]
CHR Extension: (PasswordBox - Free Password Manager) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\dljbcjbfojhlfhgenhepllagfecdpchb [2015-07-20]
CHR Extension: (Google+) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlppkpafhbajpcmmoheippocdidnckmm [2015-07-20]
CHR Extension: (Tabulky Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-08-10]
CHR Extension: (OGame Auctioneer Assistant) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghjpkobjhgiladaphmdgnnfahkgceemg [2015-07-20]
CHR Extension: (AdBlock) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-07-20]
CHR Extension: (Speed Test) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhbmnfdcklajeaeikfinieljfegamko [2015-07-20]
CHR Extension: (FormApps Chrome Extension) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2015-09-03]
CHR Extension: (Mapy Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2015-07-20]
CHR Extension: (My Music Play List) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcpldeidflnblidgnlmdiiedgpjemlac [2015-07-20]
CHR Extension: (Bing2Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgoehlfmhfafaiepckjikpphoklijedl [2015-09-01]
CHR Extension: (Twitch Now) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2015-07-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-20]
CHR Extension: (piZap Photo Editor) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\occpjibghkbopohbefbejkklnfdkdmok [2015-07-20]
CHR Extension: (OGame Timer) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\phcgdpgoofnibfjcekphmdbjhkdfnkad [2015-07-20]
CHR Extension: (Gmail) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-05]
CHR Extension: (OGame Basic Fleet Dispatcher Extension) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkaalmgomellfonmhgklpbgodejcfhfa [2015-07-20]
CHR Profile: C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (No Name) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-14]
CHR Extension: (Google Drive) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-14]
CHR Extension: (YouTube) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-14]
CHR Extension: (Google Search) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-14]
CHR Extension: (Google Sheets) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-14]
CHR Extension: (Google Wallet) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-14]
CHR Extension: (Gmail) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-14]
CHR HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ASNB4LDRSvc; C:\Program Files (x86)\ASUS\Wireless Console 3\ASNB4LDRSvc.exe [33912 2014-10-01] (ASUS)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2485208 2015-08-26] (ESET)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-09-13] (ELAN Microelectronics Corp.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
R2 KMS-R@1n; C:\Windows\KMS-R@1n.exe [22528 2015-08-08] () [File not signed]
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-07] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-07] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-07] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 anvsnddrv; C:\Windows\System32\drivers\anvsnddrv.sys [33872 2011-11-28] (AnvSoft Inc.)
R3 CLVirtualBus01; C:\Windows\System32\drivers\CLVirtualBus01.sys [96008 2014-03-12] (CyberLink)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-02-28] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [264040 2015-08-26] (ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [14976 2015-08-26] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [186784 2015-08-26] (ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [142976 2015-08-26] (ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [206312 2015-08-26] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [52872 2015-08-26] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [69840 2015-08-26] (ESET)
R3 int0800; C:\Windows\System32\drivers\flashud.sys [51712 2009-09-09] (Intel Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [15416 2009-07-20] ( )
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [113880 2015-09-27] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-07] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [9112792 2014-05-28] (Realtek Semiconductor Corp.)
S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2015-06-04] ()
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
U5 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [115208 2014-11-24] (Oracle Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Running from C:\Users\Kedar\Desktop
Loaded Profiles: Kedar (Available Profiles: Kedar & Ivana & Admin & Administrator & DefaultAppPool)
Platform: Windows 10 Home (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\Wireless Console 3\ASNB4LDRSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(ASUS) C:\Program Files\P4G\BatteryLife.exe
(Aequus Gaming) C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Windows\AsScrPro.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Virage Logic Corporation / Sonic Focus) C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go9\CLMLSvc_P2G9.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Aequus Gaming) C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
(Aequus Gaming) C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
(Aequus Gaming) C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(Aequus Gaming) C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
(Aequus Gaming) C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1509.14010.0_x64__8wekyb3d8bbwe\Calculator.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.922.11070.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Users\Kedar\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-09-13] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [SonicMasterTray] => C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [984400 2010-07-10] (Virage Logic Corporation / Sonic Focus)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5732992 2010-08-17] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-07] (ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (CANON INC.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [111120 2012-05-24] (CyberLink)
HKLM-x32\...\Run: [CLMLServer_For_P2G9] => C:\Program Files (x86)\CyberLink\Power2Go9\CLMLSvc_P2G9.exe [110344 2014-04-01] (CyberLink)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [176904 2015-08-25] (NVIDIA Corporation)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [176904 2015-08-25] (NVIDIA Corporation)
AppInit_DLLs: , C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [176904 2015-08-25] (NVIDIA Corporation)
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [176904 2015-08-25] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [155976 2015-08-25] (NVIDIA Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2ec3a632-3aa3-425f-bde8-cb72858b8185}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://windows.microsoft.com/cs-cz/hotm ... ?ocid=iehp
SearchScopes: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-26] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-26] (Oracle Corporation)
DPF: HKLM-x32 {0D41B8C5-2599-4893-8183-00195EC8D5F9} hxxp://support.asus.com/select/asusTek_sys_ctrl3.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-21] ()
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-26] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-21] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-08-26] (Google, Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-06-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1254521284-2832283178-1197838188-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\Kedar\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll No File
FF Plugin HKU\S-1-5-21-1254521284-2832283178-1197838188-1001: @talk.google.com/O1DPlugin -> C:\Users\Kedar\AppData\Roaming\Mozilla\plugins\npo1d.dll No File
FF Plugin HKU\S-1-5-21-1254521284-2832283178-1197838188-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll No File
FF Plugin HKU\S-1-5-21-1254521284-2832283178-1197838188-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll No File
FF Plugin HKU\S-1-5-21-1254521284-2832283178-1197838188-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Kedar\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll No File
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR NewTab: Default -> "chrome-extension://dljbcjbfojhlfhgenhepllagfecdpchb/startpage/startpage.html"
CHR Profile: C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-20]
CHR Extension: (Dokumenty Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-20]
CHR Extension: (Disk Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-20]
CHR Extension: (YouTube) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-05]
CHR Extension: (OGame Galaxy Extension) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\clknnoodfglafkilgjcgeikipgjkkaai [2015-07-20]
CHR Extension: (Vyhledávání Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-05]
CHR Extension: (OGame Debris Fields Finder Extension) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddccmiobomjhcahhjglkakjhcbeagidi [2015-07-20]
CHR Extension: (OGame Resources Extension) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\dinnmkijapcbjfflfncafmfhajnggenb [2015-07-20]
CHR Extension: (PasswordBox - Free Password Manager) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\dljbcjbfojhlfhgenhepllagfecdpchb [2015-07-20]
CHR Extension: (Google+) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlppkpafhbajpcmmoheippocdidnckmm [2015-07-20]
CHR Extension: (Tabulky Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-08-10]
CHR Extension: (OGame Auctioneer Assistant) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghjpkobjhgiladaphmdgnnfahkgceemg [2015-07-20]
CHR Extension: (AdBlock) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-07-20]
CHR Extension: (Speed Test) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhbmnfdcklajeaeikfinieljfegamko [2015-07-20]
CHR Extension: (FormApps Chrome Extension) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2015-09-03]
CHR Extension: (Mapy Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2015-07-20]
CHR Extension: (My Music Play List) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcpldeidflnblidgnlmdiiedgpjemlac [2015-07-20]
CHR Extension: (Bing2Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgoehlfmhfafaiepckjikpphoklijedl [2015-09-01]
CHR Extension: (Twitch Now) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2015-07-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-20]
CHR Extension: (piZap Photo Editor) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\occpjibghkbopohbefbejkklnfdkdmok [2015-07-20]
CHR Extension: (OGame Timer) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\phcgdpgoofnibfjcekphmdbjhkdfnkad [2015-07-20]
CHR Extension: (Gmail) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-05]
CHR Extension: (OGame Basic Fleet Dispatcher Extension) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkaalmgomellfonmhgklpbgodejcfhfa [2015-07-20]
CHR Profile: C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (No Name) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-14]
CHR Extension: (Google Drive) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-14]
CHR Extension: (YouTube) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-14]
CHR Extension: (Google Search) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-14]
CHR Extension: (Google Sheets) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-14]
CHR Extension: (Google Wallet) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-14]
CHR Extension: (Gmail) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-14]
CHR HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ASNB4LDRSvc; C:\Program Files (x86)\ASUS\Wireless Console 3\ASNB4LDRSvc.exe [33912 2014-10-01] (ASUS)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2485208 2015-08-26] (ESET)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-09-13] (ELAN Microelectronics Corp.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
R2 KMS-R@1n; C:\Windows\KMS-R@1n.exe [22528 2015-08-08] () [File not signed]
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-07] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-07] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-07] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 anvsnddrv; C:\Windows\System32\drivers\anvsnddrv.sys [33872 2011-11-28] (AnvSoft Inc.)
R3 CLVirtualBus01; C:\Windows\System32\drivers\CLVirtualBus01.sys [96008 2014-03-12] (CyberLink)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-02-28] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [264040 2015-08-26] (ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [14976 2015-08-26] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [186784 2015-08-26] (ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [142976 2015-08-26] (ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [206312 2015-08-26] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [52872 2015-08-26] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [69840 2015-08-26] (ESET)
R3 int0800; C:\Windows\System32\drivers\flashud.sys [51712 2009-09-09] (Intel Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [15416 2009-07-20] ( )
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [113880 2015-09-27] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-07] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [9112792 2014-05-28] (Realtek Semiconductor Corp.)
S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2015-06-04] ()
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
U5 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [115208 2014-11-24] (Oracle Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Naposledy upravil(a) KedarCZE dne 27 zář 2015 23:07, celkem upraveno 1 x.
OS: Windows 10 Home (22H2) 64 bit
MB: ASUS PRIME X570-P
Procesor: AMD Ryzen 7 3700X
Grafika: MSI GeForce RTX 3060 Ti Gaming Z TRIO (8 GB)
RAM: 2x32 GB Kingston Fury Beast DDR4 3200MHz CL16
Zdroj: 750 W MSI MPG A750GF
SSD (OS): Kingston SSD A2000 500 GB
HDD: Seagate IronWolf 4 TB
SSD: 4 TB Samsung 870 EVO
Monitor: Dell S2721D
Case: Fractal Design Define S
MB: ASUS PRIME X570-P
Procesor: AMD Ryzen 7 3700X
Grafika: MSI GeForce RTX 3060 Ti Gaming Z TRIO (8 GB)
RAM: 2x32 GB Kingston Fury Beast DDR4 3200MHz CL16
Zdroj: 750 W MSI MPG A750GF
SSD (OS): Kingston SSD A2000 500 GB
HDD: Seagate IronWolf 4 TB
SSD: 4 TB Samsung 870 EVO
Monitor: Dell S2721D
Case: Fractal Design Define S
Re: Automatické rovnaní ikon na ploše a ve všech složkách
2. Část
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-09-27 22:48 - 2015-09-27 22:50 - 00025884 _____ C:\Users\Kedar\Desktop\FRST.txt
2015-09-27 22:48 - 2015-09-27 22:48 - 00000000 ____D C:\FRST
2015-09-27 22:47 - 2015-09-27 22:48 - 02192384 _____ (Farbar) C:\Users\Kedar\Desktop\FRST64.exe
2015-09-27 22:17 - 2015-09-27 22:17 - 00016148 _____ C:\WINDOWS\system32\KEDAR-PC_Kedar_HistoryPrediction.bin
2015-09-27 20:01 - 2015-09-27 20:01 - 00013264 _____ C:\Users\Kedar\Desktop\hijackthis.log
2015-09-27 19:54 - 2015-09-27 19:21 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2015-09-27 19:24 - 2015-09-27 19:57 - 00014533 _____ C:\zoek-results.log
2015-09-27 19:21 - 2015-09-27 19:50 - 00000000 ____D C:\zoek_backup
2015-09-27 19:20 - 2015-09-27 19:20 - 00015028 _____ C:\Users\Kedar\Desktop\rk_7604.txt.txt
2015-09-27 18:47 - 2015-09-27 18:47 - 00016148 _____ C:\WINDOWS\system32\KEDAR-PC_Ivana_HistoryPrediction.bin
2015-09-25 21:06 - 2015-09-25 21:06 - 00079064 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\fklxojx.sys
2015-09-25 16:43 - 2015-09-25 16:43 - 01308672 _____ C:\Users\Kedar\Desktop\zoek.exe
2015-09-25 15:59 - 2015-09-25 15:59 - 00001911 _____ C:\Users\Kedar\Desktop\JRT.txt
2015-09-25 00:30 - 2015-09-25 00:30 - 00029737 _____ C:\Users\Ivana\Desktop\Chemické názvosloví – anorganika.html
2015-09-25 00:30 - 2015-09-25 00:30 - 00000000 ____D C:\Users\Ivana\Desktop\Chemické názvosloví – anorganika_files
2015-09-24 21:11 - 2015-09-24 21:12 - 22748744 _____ C:\Users\Kedar\Desktop\RogueKillerX64.exe
2015-09-24 21:11 - 2015-09-24 21:11 - 01800512 _____ (Malwarebytes) C:\Users\Kedar\Desktop\JRT.exe
2015-09-24 19:15 - 2015-09-25 21:06 - 00001116 _____ C:\Users\Kedar\Desktop\MAMH.txt
2015-09-24 13:43 - 2015-09-24 13:43 - 00013050 _____ C:\Users\Kedar\Desktop\hijackthis.txt
2015-09-24 13:41 - 2015-09-24 13:41 - 00388608 _____ (Trend Micro Inc.) C:\Users\Kedar\Desktop\HijackThis.exe
2015-09-22 15:08 - 2015-09-22 15:08 - 00001846 _____ C:\Users\Kedar\Desktop\TeamSpeak 3 Client.lnk
2015-09-21 22:00 - 2015-09-21 22:00 - 00015017 _____ C:\Users\Kedar\AppData\Local\recently-used.xbel
2015-09-21 16:19 - 2015-09-22 18:16 - 00000163 _____ C:\Users\Kedar\Documents\ClownfishForTeamspeak.ini
2015-09-21 15:56 - 2015-09-21 15:56 - 01662976 _____ C:\Users\Kedar\Desktop\AdwCleaner.exe
2015-09-21 15:11 - 2015-09-21 15:11 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-21 15:11 - 2015-09-21 15:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-20 17:54 - 2015-09-20 17:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2015-09-20 17:54 - 2015-09-20 17:55 - 00000000 ____D C:\Program Files (x86)\Nero
2015-09-15 18:57 - 2015-09-15 18:57 - 00823296 _____ C:\Users\Ivana\Downloads\Ulohy_o_pohybu_1 (1).ppt
2015-09-15 18:54 - 2015-09-15 18:54 - 00823296 _____ C:\Users\Ivana\Downloads\Ulohy_o_pohybu_1.ppt
2015-09-15 14:56 - 2015-09-15 14:56 - 00000000 ____D C:\Users\Ivana\AppData\Local\MicrosoftEdge
2015-09-11 16:11 - 2015-09-11 16:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wooxy
2015-09-11 16:11 - 2015-09-11 16:11 - 00000000 ____D C:\Program Files\Wooxy
2015-09-10 23:55 - 2015-09-10 23:55 - 08901103 _____ C:\Users\Ivana\Downloads\prilohy_8992.zip
2015-09-10 00:04 - 2015-09-10 00:04 - 00551424 _____ C:\Users\Ivana\Downloads\ohrivace.xls
2015-09-10 00:04 - 2015-09-10 00:04 - 00551424 _____ C:\Users\Ivana\Downloads\ohrivace (1).xls
2015-09-09 17:22 - 2015-09-02 03:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-09 17:22 - 2015-09-02 02:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-09 17:22 - 2015-09-02 02:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-09 17:22 - 2015-08-27 08:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-09 17:22 - 2015-08-27 08:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-09 17:22 - 2015-08-27 08:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-09 17:22 - 2015-08-27 07:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-09 17:22 - 2015-08-27 07:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-09 17:22 - 2015-08-27 07:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-09 17:22 - 2015-08-27 07:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-09 17:22 - 2015-08-27 07:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-09 17:22 - 2015-08-27 07:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-09 17:22 - 2015-08-27 07:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-09 17:22 - 2015-08-27 07:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-09 17:22 - 2015-08-27 07:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-09 17:22 - 2015-08-27 07:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-09 17:22 - 2015-08-27 07:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-09 17:22 - 2015-08-27 07:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-09 17:22 - 2015-08-27 07:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-09 17:22 - 2015-08-27 07:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-09 17:22 - 2015-08-27 07:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-09 17:22 - 2015-08-27 07:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-09 17:22 - 2015-08-27 07:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-09 17:22 - 2015-08-27 07:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-09 17:22 - 2015-08-27 07:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-09 17:22 - 2015-08-27 07:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-09 17:22 - 2015-08-27 07:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-09 17:22 - 2015-08-27 07:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-09 17:22 - 2015-08-27 07:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-09 17:22 - 2015-08-27 07:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-09 17:22 - 2015-08-27 07:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-09 17:22 - 2015-08-27 07:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-08 22:09 - 2015-09-08 22:09 - 00393558 _____ C:\Users\Ivana\Downloads\str. 1.jpeg
2015-09-07 21:18 - 2015-09-07 21:20 - 66864046 _____ C:\Users\Kedar\Desktop\Můj film.mp4
2015-09-07 20:26 - 2015-09-07 20:27 - 00000000 ____D C:\Users\Kedar\Documents\Zvukové záznamy
2015-09-07 14:42 - 2015-09-07 14:42 - 00000837 _____ C:\Users\Ivana\AppData\Local\recently-used.xbel
2015-09-06 18:40 - 2015-09-06 18:40 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\MPC-HC
2015-09-03 19:53 - 2015-09-03 19:53 - 00000000 ____D C:\Users\Kedar\AppData\Local\Software602
2015-09-03 18:54 - 2015-09-27 20:00 - 00003294 _____ C:\WINDOWS\System32\Tasks\Run LSI
2015-09-02 15:58 - 2015-09-06 12:08 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\NVIDIA
2015-09-02 15:58 - 2015-09-02 15:58 - 00000022 _____ C:\WINDOWS\GPU-Z.INI
2015-09-02 15:55 - 2015-09-02 15:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-09-02 15:55 - 2015-08-27 02:37 - 01423120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-09-02 15:55 - 2015-08-27 02:37 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-09-02 15:55 - 2015-08-27 02:36 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-09-02 15:55 - 2015-08-27 02:36 - 01710568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-09-02 15:53 - 2015-09-02 21:27 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2015-09-02 15:53 - 2015-09-02 21:27 - 00000000 ____D C:\WINDOWS\system32\NV
2015-09-02 15:52 - 2015-08-25 17:57 - 06884984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-09-02 15:52 - 2015-08-25 17:57 - 03496752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-09-02 15:52 - 2015-08-25 17:57 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-09-02 15:52 - 2015-08-25 17:57 - 01062520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2015-09-02 15:52 - 2015-08-25 17:57 - 00937592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-09-02 15:52 - 2015-08-25 17:57 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-09-02 15:52 - 2015-08-25 17:57 - 00075056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2015-09-02 15:52 - 2015-08-25 17:57 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-09-02 15:52 - 2015-08-25 15:02 - 05165808 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-09-02 15:46 - 2014-10-22 17:57 - 00024824 ____N (ASUSTeK Computer Inc.) C:\WINDOWS\system32\Drivers\IOMap64.sys
2015-09-02 15:27 - 2015-08-31 00:47 - 11188880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-09-02 15:27 - 2015-08-31 00:47 - 00040264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2015-09-02 15:27 - 2015-08-25 20:38 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 37819184 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 22559352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 18569336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 17932648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 16646624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 15630616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 15334976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 14945552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 13667032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 12611824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 12192048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 03480792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 03074776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 02354808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 02105976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 01178576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 01064752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 01001440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 00986232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 00945272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 00034044 _____ C:\WINDOWS\system32\nvinfo.pb
2015-09-02 15:27 - 2015-08-11 06:52 - 00072504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2015-09-02 15:27 - 2015-08-11 06:52 - 00069416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-09-02 15:27 - 2015-08-11 06:52 - 00050472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2015-09-02 15:20 - 2015-09-02 15:20 - 00000000 ____D C:\WINDOWS\Downloaded Installations
2015-09-02 14:44 - 2015-09-02 14:44 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\6DB52387.sys
2015-09-02 13:31 - 2015-09-02 13:31 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\0B056BCF.sys
2015-09-02 12:40 - 2015-09-02 12:40 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\29E444DA.sys
2015-09-02 07:37 - 2015-09-02 07:37 - 00001687 _____ C:\Users\Ivana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\canon_memory.lnk
2015-09-01 20:53 - 2015-09-24 21:36 - 00000000 ____D C:\AdwCleaner
2015-08-31 14:36 - 2015-09-27 21:37 - 00000000 ____D C:\Program Files (x86)\LSI
2015-08-31 14:36 - 2015-09-09 17:45 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LSI - LoL Summoner Information
2015-08-31 14:36 - 2015-08-31 14:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LSI - LoL Summoner Information
2015-08-31 14:34 - 2015-08-31 14:34 - 00000000 ____D C:\Users\Kedar\AppData\Local\Ahri.tw
2015-08-31 13:02 - 2015-08-31 13:02 - 00000000 ____D C:\Users\Kedar\AppData\Local\SkinSpotlightsReplays
2015-08-31 12:12 - 2015-08-31 12:50 - 00000000 ____D C:\Users\Kedar\Documents\LOLReplay
2015-08-31 10:18 - 2015-08-31 10:17 - 00011081 _____ C:\Users\Kedar\Desktop\IC2.cfg
2015-08-31 09:41 - 2015-09-20 17:58 - 00001165 _____ C:\Users\Kedar\Desktop\Špionáže na mě.txt
2015-08-30 19:04 - 2015-08-30 19:04 - 00000859 _____ C:\Users\Kedar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft.lnk
2015-08-28 16:14 - 2015-08-20 08:02 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-28 16:13 - 2015-08-20 08:07 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-28 16:13 - 2015-08-20 08:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-28 16:13 - 2015-08-20 07:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-28 16:13 - 2015-08-20 07:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-28 16:13 - 2015-08-20 07:16 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-28 16:13 - 2015-08-20 07:13 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-28 16:13 - 2015-08-18 09:56 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-28 16:13 - 2015-08-18 09:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-08-28 16:13 - 2015-08-18 09:54 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-28 16:13 - 2015-08-18 09:27 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-28 16:13 - 2015-08-18 09:24 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-28 16:13 - 2015-08-18 09:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-28 16:13 - 2015-08-18 09:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-08-28 16:13 - 2015-08-18 09:12 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-28 16:13 - 2015-08-18 09:07 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-08-28 16:13 - 2015-08-18 09:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-08-28 16:13 - 2015-08-18 09:04 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-28 16:13 - 2015-08-18 08:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-08-28 16:13 - 2015-08-18 08:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-08-28 16:13 - 2015-08-18 08:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-28 16:13 - 2015-08-18 08:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-08-28 16:13 - 2015-08-18 08:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-08-28 16:13 - 2015-08-18 08:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-08-28 16:13 - 2015-08-18 08:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-08-28 16:13 - 2015-08-18 08:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-28 16:13 - 2015-08-18 08:55 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-28 16:13 - 2015-08-18 08:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-08-28 16:13 - 2015-08-18 08:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-28 16:13 - 2015-08-18 08:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-28 16:13 - 2015-08-18 08:50 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-28 16:13 - 2015-08-18 08:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-28 16:13 - 2015-08-18 08:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-08-28 16:13 - 2015-08-18 08:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-28 16:13 - 2015-08-18 08:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-08-28 16:13 - 2015-08-18 08:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-08-28 16:13 - 2015-08-18 08:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-08-28 16:13 - 2015-08-18 08:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-08-28 16:13 - 2015-08-18 08:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-28 16:13 - 2015-08-18 08:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-08-28 16:13 - 2015-08-18 06:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-08-28 15:41 - 2015-08-28 15:41 - 00003260 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_ListenToDevice
2015-08-28 15:41 - 2015-08-28 15:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2015-08-28 15:40 - 2015-08-28 15:40 - 00000000 ____D C:\WINDOWS\system32\DAX2
2015-08-28 15:38 - 2015-06-18 17:59 - 02862488 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-08-28 15:38 - 2015-06-17 19:47 - 02930904 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-08-28 15:38 - 2015-06-17 19:47 - 02585816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2015-08-28 15:38 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-08-28 15:38 - 2015-06-15 17:39 - 01748184 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-08-28 15:38 - 2015-06-11 19:40 - 03157796 _____ C:\WINDOWS\system32\Drivers\rtkSSTsetting.dat
2015-08-28 15:38 - 2015-06-10 13:20 - 03129672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSSTAPO.dll
2015-08-28 15:38 - 2015-06-10 13:20 - 00728392 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2015-08-28 15:38 - 2015-06-09 11:17 - 05708736 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2015-08-28 15:38 - 2015-05-27 18:51 - 00349528 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2015-08-28 15:38 - 2015-05-26 11:59 - 00166616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2015-08-28 15:38 - 2015-05-18 14:47 - 02702040 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2015-08-28 15:38 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-08-28 15:38 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-08-28 15:38 - 2015-05-11 18:53 - 12996528 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2015-08-28 15:38 - 2015-05-11 13:08 - 01374640 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2015-08-28 15:38 - 2015-05-11 13:08 - 01192368 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2015-08-28 15:38 - 2015-05-11 13:08 - 01145264 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2015-08-28 15:38 - 2015-05-11 13:08 - 00980400 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2015-08-28 15:38 - 2015-04-27 16:09 - 00328816 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2015-08-28 15:38 - 2015-04-24 05:42 - 00858256 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2015-08-28 15:38 - 2015-04-24 05:42 - 00684176 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2015-08-28 15:38 - 2015-04-24 05:42 - 00435856 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2015-08-28 15:38 - 2015-04-24 05:41 - 00555664 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.DLL
2015-08-28 15:38 - 2015-04-13 16:25 - 03262184 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2015-08-28 15:38 - 2015-02-05 17:48 - 12834736 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2015-08-28 15:38 - 2015-02-05 17:48 - 02789808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2015-08-28 15:38 - 2015-02-04 00:38 - 01413776 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2015-08-28 15:38 - 2015-02-04 00:38 - 00454288 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2015-08-28 15:38 - 2015-02-04 00:38 - 00369296 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2015-08-28 15:38 - 2015-02-04 00:38 - 00329360 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2015-08-28 15:38 - 2015-02-04 00:38 - 00329360 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2015-08-28 15:38 - 2015-01-23 18:16 - 00213432 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaemaxapo64.dll
2015-08-28 15:38 - 2015-01-19 18:10 - 72113152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-08-28 15:38 - 2014-12-11 08:10 - 01104040 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\slcnt64.dll
2015-08-28 15:38 - 2014-12-11 08:10 - 00943784 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2015-08-28 15:38 - 2014-12-11 08:10 - 00734376 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2015-08-28 15:38 - 2014-12-11 08:10 - 00250536 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2015-08-28 15:38 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-08-28 15:38 - 2014-10-24 10:12 - 05234952 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-08-28 15:38 - 2014-10-24 10:12 - 00995120 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-08-28 15:38 - 2014-08-14 19:16 - 05804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2015-08-28 15:38 - 2014-06-17 19:17 - 00856992 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2015-08-28 15:38 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2015-08-28 15:38 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-08-28 15:38 - 2014-02-27 20:02 - 02162992 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2015-08-28 15:38 - 2014-01-31 17:27 - 01313904 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2015-08-28 15:38 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2015-08-28 15:38 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-08-28 15:38 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-08-28 15:38 - 2013-07-23 15:39 - 14048512 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2015-08-28 15:38 - 2013-07-23 15:39 - 00922880 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2015-08-28 15:38 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaeapo64.dll
2015-08-28 15:38 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\toseaeapo64.dll
2015-08-28 15:38 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosasfapo64.dll
2015-08-28 15:38 - 2013-04-03 14:13 - 00906800 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2015-08-28 15:38 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2015-08-28 15:38 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2015-08-28 15:38 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2015-08-28 15:38 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2015-08-28 15:38 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2015-08-28 15:38 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2015-08-28 15:38 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-08-28 15:38 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-08-28 15:38 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2015-08-28 15:38 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2015-08-28 15:38 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2015-08-28 15:38 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2015-08-28 15:38 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2015-08-28 15:37 - 2015-06-02 19:25 - 01576976 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2015-08-28 15:37 - 2015-05-27 18:51 - 02461016 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2015-08-28 15:37 - 2015-05-27 18:51 - 02393432 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2015-08-28 15:37 - 2015-05-27 18:51 - 00944984 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2015-08-28 15:37 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-08-28 15:37 - 2014-11-04 13:42 - 06242576 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2015-08-28 15:37 - 2014-11-04 13:42 - 01933584 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2015-08-28 15:37 - 2014-11-04 13:42 - 00336144 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2015-08-28 15:37 - 2014-11-04 13:42 - 00284944 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2015-08-28 15:37 - 2014-09-24 11:31 - 07087448 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-08-28 15:37 - 2014-09-24 11:31 - 01939800 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-08-28 15:37 - 2014-09-24 11:31 - 00315736 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-08-28 15:37 - 2014-09-24 11:31 - 00261464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-08-28 15:37 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-08-28 15:37 - 2014-05-22 16:24 - 00096568 _____ C:\WINDOWS\system32\audioLibVc.dll
2015-08-28 15:37 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-08-28 15:37 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2015-08-28 15:37 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2015-08-28 15:37 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2015-08-28 15:37 - 2013-06-21 11:01 - 00109848 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2015-08-28 15:37 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-09-27 22:35 - 2015-08-10 13:14 - 00000978 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0407cbb756b95.job
2015-09-27 22:10 - 2015-07-10 14:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-27 21:57 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-27 21:55 - 2013-06-22 19:36 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-27 21:50 - 2014-10-30 18:19 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-09-27 20:45 - 2014-04-05 19:54 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Skype
2015-09-27 19:56 - 2015-08-10 13:14 - 00000974 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf8c087ab41d4a.job
2015-09-27 19:55 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-27 19:54 - 2015-08-07 18:02 - 00039532 _____ C:\WINDOWS\PFRO.log
2015-09-27 19:54 - 2015-07-10 11:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-09-27 18:56 - 2015-08-10 12:51 - 00004198 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{15C2D9CD-D4AD-411F-B991-6F4280579101}
2015-09-27 18:50 - 2015-08-07 18:10 - 02038596 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-27 18:50 - 2015-07-10 18:02 - 00843298 _____ C:\WINDOWS\system32\perfh005.dat
2015-09-27 18:50 - 2015-07-10 18:02 - 00192530 _____ C:\WINDOWS\system32\perfc005.dat
2015-09-27 18:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-25 21:06 - 2014-07-17 20:31 - 00000000 ____D C:\WINDOWS\hr
2015-09-25 20:43 - 2013-06-22 19:36 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-09-25 16:08 - 2014-10-31 18:12 - 00037624 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2015-09-24 22:46 - 2015-08-07 19:40 - 00000000 ____D C:\Users\Ivana\AppData\Local\Packages
2015-09-24 21:36 - 2015-08-07 18:14 - 00000000 ____D C:\Users\Kedar
2015-09-24 11:38 - 2014-04-05 09:34 - 00002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-09-24 10:58 - 2015-08-07 18:57 - 00000000 ____D C:\Users\Kedar\AppData\Local\Packages
2015-09-24 10:57 - 2014-04-05 09:12 - 00045056 _____ C:\WINDOWS\system32\acovcnt.exe
2015-09-23 20:47 - 2014-09-14 19:29 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\LolClient
2015-09-23 14:10 - 2014-04-08 16:50 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\TS3Client
2015-09-23 13:41 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-21 22:00 - 2014-06-03 20:34 - 00000000 ____D C:\Users\Kedar\AppData\Local\gtk-2.0
2015-09-21 22:00 - 2014-06-03 20:27 - 00000000 ____D C:\Users\Kedar\.gimp-2.8
2015-09-21 16:33 - 2014-04-01 16:54 - 00002816 _____ C:\WINDOWS\system32\AutoRunFilter.ini
2015-09-21 15:11 - 2014-04-05 19:54 - 00000000 ____D C:\ProgramData\Skype
2015-09-21 14:35 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-09-20 17:55 - 2014-07-27 09:37 - 00000000 ____D C:\ProgramData\Nero
2015-09-17 17:17 - 2015-08-16 19:09 - 00016866 _____ C:\WINDOWS\DPINST.LOG
2015-09-17 17:17 - 2014-07-25 15:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-09-17 17:16 - 2014-04-01 16:42 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-09-17 07:30 - 2015-08-10 13:14 - 00004066 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d0407cbb756b95
2015-09-17 07:30 - 2015-08-10 13:14 - 00003834 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1cf8c087ab41d4a
2015-09-16 14:26 - 2015-08-18 20:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2015-09-16 14:26 - 2015-08-18 20:31 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2015-09-15 18:12 - 2015-07-10 13:06 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-09-15 18:12 - 2015-07-10 13:06 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-15 12:14 - 2015-08-08 10:18 - 00002404 _____ C:\Users\Ivana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-09-15 12:14 - 2015-08-08 10:18 - 00000000 ___RD C:\Users\Ivana\OneDrive
2015-09-14 09:24 - 2015-07-10 14:20 - 05041896 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-14 09:22 - 2015-08-07 18:08 - 00000000 ____D C:\Program Files\Elantech
2015-09-14 09:20 - 2015-07-10 18:05 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-14 09:20 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-13 17:34 - 2015-08-07 19:12 - 00056008 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\ETDCoInstaller01000.dll
2015-09-13 17:34 - 2014-12-22 13:43 - 00525000 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\Drivers\ETD.sys
2015-09-11 16:15 - 2015-08-07 18:56 - 00000000 ____D C:\Users\Kedar\AppData\Local\VirtualStore
2015-09-11 00:30 - 2015-07-10 14:20 - 00026352 _____ C:\WINDOWS\setupact.log
2015-09-09 22:58 - 2014-04-06 18:43 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-07 19:52 - 2014-05-23 13:49 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\OBS
2015-09-07 14:45 - 2014-06-07 10:39 - 00000000 ____D C:\Users\Ivana\.gimp-2.8
2015-09-06 17:45 - 2014-04-08 13:52 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\.minecraft
2015-09-06 12:04 - 2015-05-17 11:04 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Notepad++
2015-09-06 12:04 - 2015-05-17 11:04 - 00000000 ____D C:\Program Files (x86)\Notepad++
2015-09-06 10:41 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-09-05 16:56 - 2015-08-07 18:14 - 00000000 ____D C:\Users\Ivana
2015-09-03 20:18 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache
2015-09-02 19:01 - 2014-07-27 10:46 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\uTorrent
2015-09-02 16:06 - 2014-04-08 13:48 - 00000000 ____D C:\Users\Kedar\AppData\Local\NVIDIA
2015-09-02 16:04 - 2013-06-22 19:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2015-09-02 15:55 - 2015-08-07 18:06 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-02 15:55 - 2015-08-07 18:06 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-09-02 15:55 - 2015-08-07 18:06 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-09-02 15:53 - 2015-08-07 18:07 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-02 15:52 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Help
2015-09-02 15:46 - 2014-04-01 16:54 - 00002108 _____ C:\WINDOWS\system32\ServiceFilter.ini
2015-09-02 15:27 - 2014-04-08 13:49 - 00000000 ____D C:\Users\Kedar\AppData\Local\NVIDIA Corporation
2015-09-02 15:23 - 2013-06-22 19:43 - 00000000 ____D C:\Program Files (x86)\ASUS
2015-09-02 15:03 - 2015-04-06 20:51 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-09-02 15:03 - 2013-06-22 19:36 - 00000000 ____D C:\ProgramData\Adobe
2015-09-01 21:00 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-09-01 09:42 - 2014-05-23 11:26 - 00000000 ____D C:\Users\Kedar\Desktop\bordel
2015-08-28 17:58 - 2014-09-01 10:01 - 01064656 _____ C:\Users\Kedar\Desktop\Novamenu1.1.4.jar
2015-08-28 15:41 - 2014-12-22 15:53 - 00003194 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2015-08-28 15:41 - 2014-04-01 16:42 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-08-28 15:40 - 2015-08-07 18:08 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-08-28 11:41 - 2015-04-23 14:49 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2015-08-28 11:22 - 2015-08-19 11:06 - 00012402 _____ C:\Users\Kedar\Desktop\PC.xlsx
==================== Files in the root of some directories =======
2014-06-04 17:10 - 2014-06-04 17:10 - 0000097 _____ () C:\Users\Kedar\AppData\Roaming\LauncherSettings_live.cfg
2014-06-04 17:08 - 2014-06-04 17:08 - 0000039 _____ () C:\Users\Kedar\AppData\Roaming\TheHunterSettings_steam_live.cfg
2015-02-16 12:36 - 2015-02-16 12:37 - 183677480 _____ () C:\Users\Kedar\AppData\Local\ACCCx2_9_0_465.zip.aamdownload
2015-02-16 12:36 - 2015-02-16 12:37 - 0002195 _____ () C:\Users\Kedar\AppData\Local\ACCCx2_9_0_465.zip.aamdownload.aamd
2015-04-03 13:19 - 2015-04-03 13:19 - 184702896 _____ () C:\Users\Kedar\AppData\Local\ACCCx2_9_1_474.zip.aamdownload
2015-04-03 13:19 - 2015-04-03 13:19 - 0002216 _____ () C:\Users\Kedar\AppData\Local\ACCCx2_9_1_474.zip.aamdownload.aamd
2015-09-21 22:00 - 2015-09-21 22:00 - 0015017 _____ () C:\Users\Kedar\AppData\Local\recently-used.xbel
2014-04-06 02:02 - 2015-05-17 10:36 - 0007610 _____ () C:\Users\Kedar\AppData\Local\resmon.resmoncfg
2014-07-27 09:26 - 2015-03-23 21:06 - 0000059 _____ () C:\Users\Kedar\AppData\Local\UserProducts.xml
2014-12-22 15:53 - 2014-12-22 15:53 - 0000000 _____ () C:\ProgramData\DP45977C.lfl
2014-04-01 16:58 - 2014-04-01 16:59 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2014-04-01 16:58 - 2014-04-01 16:58 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-09-21 19:01
==================== End of FRST.txt ============================
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-09-27 22:48 - 2015-09-27 22:50 - 00025884 _____ C:\Users\Kedar\Desktop\FRST.txt
2015-09-27 22:48 - 2015-09-27 22:48 - 00000000 ____D C:\FRST
2015-09-27 22:47 - 2015-09-27 22:48 - 02192384 _____ (Farbar) C:\Users\Kedar\Desktop\FRST64.exe
2015-09-27 22:17 - 2015-09-27 22:17 - 00016148 _____ C:\WINDOWS\system32\KEDAR-PC_Kedar_HistoryPrediction.bin
2015-09-27 20:01 - 2015-09-27 20:01 - 00013264 _____ C:\Users\Kedar\Desktop\hijackthis.log
2015-09-27 19:54 - 2015-09-27 19:21 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2015-09-27 19:24 - 2015-09-27 19:57 - 00014533 _____ C:\zoek-results.log
2015-09-27 19:21 - 2015-09-27 19:50 - 00000000 ____D C:\zoek_backup
2015-09-27 19:20 - 2015-09-27 19:20 - 00015028 _____ C:\Users\Kedar\Desktop\rk_7604.txt.txt
2015-09-27 18:47 - 2015-09-27 18:47 - 00016148 _____ C:\WINDOWS\system32\KEDAR-PC_Ivana_HistoryPrediction.bin
2015-09-25 21:06 - 2015-09-25 21:06 - 00079064 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\fklxojx.sys
2015-09-25 16:43 - 2015-09-25 16:43 - 01308672 _____ C:\Users\Kedar\Desktop\zoek.exe
2015-09-25 15:59 - 2015-09-25 15:59 - 00001911 _____ C:\Users\Kedar\Desktop\JRT.txt
2015-09-25 00:30 - 2015-09-25 00:30 - 00029737 _____ C:\Users\Ivana\Desktop\Chemické názvosloví – anorganika.html
2015-09-25 00:30 - 2015-09-25 00:30 - 00000000 ____D C:\Users\Ivana\Desktop\Chemické názvosloví – anorganika_files
2015-09-24 21:11 - 2015-09-24 21:12 - 22748744 _____ C:\Users\Kedar\Desktop\RogueKillerX64.exe
2015-09-24 21:11 - 2015-09-24 21:11 - 01800512 _____ (Malwarebytes) C:\Users\Kedar\Desktop\JRT.exe
2015-09-24 19:15 - 2015-09-25 21:06 - 00001116 _____ C:\Users\Kedar\Desktop\MAMH.txt
2015-09-24 13:43 - 2015-09-24 13:43 - 00013050 _____ C:\Users\Kedar\Desktop\hijackthis.txt
2015-09-24 13:41 - 2015-09-24 13:41 - 00388608 _____ (Trend Micro Inc.) C:\Users\Kedar\Desktop\HijackThis.exe
2015-09-22 15:08 - 2015-09-22 15:08 - 00001846 _____ C:\Users\Kedar\Desktop\TeamSpeak 3 Client.lnk
2015-09-21 22:00 - 2015-09-21 22:00 - 00015017 _____ C:\Users\Kedar\AppData\Local\recently-used.xbel
2015-09-21 16:19 - 2015-09-22 18:16 - 00000163 _____ C:\Users\Kedar\Documents\ClownfishForTeamspeak.ini
2015-09-21 15:56 - 2015-09-21 15:56 - 01662976 _____ C:\Users\Kedar\Desktop\AdwCleaner.exe
2015-09-21 15:11 - 2015-09-21 15:11 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-21 15:11 - 2015-09-21 15:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-20 17:54 - 2015-09-20 17:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2015-09-20 17:54 - 2015-09-20 17:55 - 00000000 ____D C:\Program Files (x86)\Nero
2015-09-15 18:57 - 2015-09-15 18:57 - 00823296 _____ C:\Users\Ivana\Downloads\Ulohy_o_pohybu_1 (1).ppt
2015-09-15 18:54 - 2015-09-15 18:54 - 00823296 _____ C:\Users\Ivana\Downloads\Ulohy_o_pohybu_1.ppt
2015-09-15 14:56 - 2015-09-15 14:56 - 00000000 ____D C:\Users\Ivana\AppData\Local\MicrosoftEdge
2015-09-11 16:11 - 2015-09-11 16:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wooxy
2015-09-11 16:11 - 2015-09-11 16:11 - 00000000 ____D C:\Program Files\Wooxy
2015-09-10 23:55 - 2015-09-10 23:55 - 08901103 _____ C:\Users\Ivana\Downloads\prilohy_8992.zip
2015-09-10 00:04 - 2015-09-10 00:04 - 00551424 _____ C:\Users\Ivana\Downloads\ohrivace.xls
2015-09-10 00:04 - 2015-09-10 00:04 - 00551424 _____ C:\Users\Ivana\Downloads\ohrivace (1).xls
2015-09-09 17:22 - 2015-09-02 03:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-09 17:22 - 2015-09-02 02:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-09 17:22 - 2015-09-02 02:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-09 17:22 - 2015-08-27 08:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-09 17:22 - 2015-08-27 08:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-09 17:22 - 2015-08-27 08:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-09 17:22 - 2015-08-27 07:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-09 17:22 - 2015-08-27 07:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-09 17:22 - 2015-08-27 07:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-09 17:22 - 2015-08-27 07:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-09 17:22 - 2015-08-27 07:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-09 17:22 - 2015-08-27 07:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-09 17:22 - 2015-08-27 07:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-09 17:22 - 2015-08-27 07:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-09 17:22 - 2015-08-27 07:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-09 17:22 - 2015-08-27 07:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-09 17:22 - 2015-08-27 07:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-09 17:22 - 2015-08-27 07:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-09 17:22 - 2015-08-27 07:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-09 17:22 - 2015-08-27 07:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-09 17:22 - 2015-08-27 07:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-09 17:22 - 2015-08-27 07:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-09 17:22 - 2015-08-27 07:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-09 17:22 - 2015-08-27 07:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-09 17:22 - 2015-08-27 07:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-09 17:22 - 2015-08-27 07:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-09 17:22 - 2015-08-27 07:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-09 17:22 - 2015-08-27 07:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-09 17:22 - 2015-08-27 07:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-09 17:22 - 2015-08-27 07:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-09 17:22 - 2015-08-27 07:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-09 17:22 - 2015-08-27 07:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-08 22:09 - 2015-09-08 22:09 - 00393558 _____ C:\Users\Ivana\Downloads\str. 1.jpeg
2015-09-07 21:18 - 2015-09-07 21:20 - 66864046 _____ C:\Users\Kedar\Desktop\Můj film.mp4
2015-09-07 20:26 - 2015-09-07 20:27 - 00000000 ____D C:\Users\Kedar\Documents\Zvukové záznamy
2015-09-07 14:42 - 2015-09-07 14:42 - 00000837 _____ C:\Users\Ivana\AppData\Local\recently-used.xbel
2015-09-06 18:40 - 2015-09-06 18:40 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\MPC-HC
2015-09-03 19:53 - 2015-09-03 19:53 - 00000000 ____D C:\Users\Kedar\AppData\Local\Software602
2015-09-03 18:54 - 2015-09-27 20:00 - 00003294 _____ C:\WINDOWS\System32\Tasks\Run LSI
2015-09-02 15:58 - 2015-09-06 12:08 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\NVIDIA
2015-09-02 15:58 - 2015-09-02 15:58 - 00000022 _____ C:\WINDOWS\GPU-Z.INI
2015-09-02 15:55 - 2015-09-02 15:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-09-02 15:55 - 2015-08-27 02:37 - 01423120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-09-02 15:55 - 2015-08-27 02:37 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-09-02 15:55 - 2015-08-27 02:36 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-09-02 15:55 - 2015-08-27 02:36 - 01710568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-09-02 15:53 - 2015-09-02 21:27 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2015-09-02 15:53 - 2015-09-02 21:27 - 00000000 ____D C:\WINDOWS\system32\NV
2015-09-02 15:52 - 2015-08-25 17:57 - 06884984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-09-02 15:52 - 2015-08-25 17:57 - 03496752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-09-02 15:52 - 2015-08-25 17:57 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-09-02 15:52 - 2015-08-25 17:57 - 01062520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2015-09-02 15:52 - 2015-08-25 17:57 - 00937592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-09-02 15:52 - 2015-08-25 17:57 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-09-02 15:52 - 2015-08-25 17:57 - 00075056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2015-09-02 15:52 - 2015-08-25 17:57 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-09-02 15:52 - 2015-08-25 15:02 - 05165808 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-09-02 15:46 - 2014-10-22 17:57 - 00024824 ____N (ASUSTeK Computer Inc.) C:\WINDOWS\system32\Drivers\IOMap64.sys
2015-09-02 15:27 - 2015-08-31 00:47 - 11188880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-09-02 15:27 - 2015-08-31 00:47 - 00040264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2015-09-02 15:27 - 2015-08-25 20:38 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 37819184 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 22559352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 18569336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 17932648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 16646624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 15630616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 15334976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 14945552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 13667032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 12611824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 12192048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 03480792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 03074776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 02354808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 02105976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 01178576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 01064752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 01001440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 00986232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 00945272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-09-02 15:27 - 2015-08-25 20:38 - 00034044 _____ C:\WINDOWS\system32\nvinfo.pb
2015-09-02 15:27 - 2015-08-11 06:52 - 00072504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2015-09-02 15:27 - 2015-08-11 06:52 - 00069416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-09-02 15:27 - 2015-08-11 06:52 - 00050472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2015-09-02 15:20 - 2015-09-02 15:20 - 00000000 ____D C:\WINDOWS\Downloaded Installations
2015-09-02 14:44 - 2015-09-02 14:44 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\6DB52387.sys
2015-09-02 13:31 - 2015-09-02 13:31 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\0B056BCF.sys
2015-09-02 12:40 - 2015-09-02 12:40 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\29E444DA.sys
2015-09-02 07:37 - 2015-09-02 07:37 - 00001687 _____ C:\Users\Ivana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\canon_memory.lnk
2015-09-01 20:53 - 2015-09-24 21:36 - 00000000 ____D C:\AdwCleaner
2015-08-31 14:36 - 2015-09-27 21:37 - 00000000 ____D C:\Program Files (x86)\LSI
2015-08-31 14:36 - 2015-09-09 17:45 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LSI - LoL Summoner Information
2015-08-31 14:36 - 2015-08-31 14:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LSI - LoL Summoner Information
2015-08-31 14:34 - 2015-08-31 14:34 - 00000000 ____D C:\Users\Kedar\AppData\Local\Ahri.tw
2015-08-31 13:02 - 2015-08-31 13:02 - 00000000 ____D C:\Users\Kedar\AppData\Local\SkinSpotlightsReplays
2015-08-31 12:12 - 2015-08-31 12:50 - 00000000 ____D C:\Users\Kedar\Documents\LOLReplay
2015-08-31 10:18 - 2015-08-31 10:17 - 00011081 _____ C:\Users\Kedar\Desktop\IC2.cfg
2015-08-31 09:41 - 2015-09-20 17:58 - 00001165 _____ C:\Users\Kedar\Desktop\Špionáže na mě.txt
2015-08-30 19:04 - 2015-08-30 19:04 - 00000859 _____ C:\Users\Kedar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft.lnk
2015-08-28 16:14 - 2015-08-20 08:02 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-28 16:13 - 2015-08-20 08:07 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-28 16:13 - 2015-08-20 08:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-28 16:13 - 2015-08-20 07:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-28 16:13 - 2015-08-20 07:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-28 16:13 - 2015-08-20 07:16 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-28 16:13 - 2015-08-20 07:13 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-28 16:13 - 2015-08-18 09:56 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-28 16:13 - 2015-08-18 09:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-08-28 16:13 - 2015-08-18 09:54 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-28 16:13 - 2015-08-18 09:27 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-28 16:13 - 2015-08-18 09:24 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-28 16:13 - 2015-08-18 09:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-28 16:13 - 2015-08-18 09:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-08-28 16:13 - 2015-08-18 09:12 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-28 16:13 - 2015-08-18 09:07 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-08-28 16:13 - 2015-08-18 09:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-08-28 16:13 - 2015-08-18 09:04 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-28 16:13 - 2015-08-18 08:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-08-28 16:13 - 2015-08-18 08:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-08-28 16:13 - 2015-08-18 08:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-28 16:13 - 2015-08-18 08:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-08-28 16:13 - 2015-08-18 08:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-08-28 16:13 - 2015-08-18 08:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-08-28 16:13 - 2015-08-18 08:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-08-28 16:13 - 2015-08-18 08:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-28 16:13 - 2015-08-18 08:55 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-28 16:13 - 2015-08-18 08:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-08-28 16:13 - 2015-08-18 08:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-28 16:13 - 2015-08-18 08:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-28 16:13 - 2015-08-18 08:50 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-28 16:13 - 2015-08-18 08:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-28 16:13 - 2015-08-18 08:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-08-28 16:13 - 2015-08-18 08:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-28 16:13 - 2015-08-18 08:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-08-28 16:13 - 2015-08-18 08:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-08-28 16:13 - 2015-08-18 08:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-08-28 16:13 - 2015-08-18 08:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-08-28 16:13 - 2015-08-18 08:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-28 16:13 - 2015-08-18 08:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-08-28 16:13 - 2015-08-18 06:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-08-28 15:41 - 2015-08-28 15:41 - 00003260 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_ListenToDevice
2015-08-28 15:41 - 2015-08-28 15:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2015-08-28 15:40 - 2015-08-28 15:40 - 00000000 ____D C:\WINDOWS\system32\DAX2
2015-08-28 15:38 - 2015-06-18 17:59 - 02862488 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-08-28 15:38 - 2015-06-17 19:47 - 02930904 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-08-28 15:38 - 2015-06-17 19:47 - 02585816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2015-08-28 15:38 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-08-28 15:38 - 2015-06-15 17:39 - 01748184 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-08-28 15:38 - 2015-06-11 19:40 - 03157796 _____ C:\WINDOWS\system32\Drivers\rtkSSTsetting.dat
2015-08-28 15:38 - 2015-06-10 13:20 - 03129672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSSTAPO.dll
2015-08-28 15:38 - 2015-06-10 13:20 - 00728392 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2015-08-28 15:38 - 2015-06-09 11:17 - 05708736 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2015-08-28 15:38 - 2015-05-27 18:51 - 00349528 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2015-08-28 15:38 - 2015-05-26 11:59 - 00166616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2015-08-28 15:38 - 2015-05-18 14:47 - 02702040 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2015-08-28 15:38 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-08-28 15:38 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-08-28 15:38 - 2015-05-11 18:53 - 12996528 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2015-08-28 15:38 - 2015-05-11 13:08 - 01374640 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2015-08-28 15:38 - 2015-05-11 13:08 - 01192368 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2015-08-28 15:38 - 2015-05-11 13:08 - 01145264 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2015-08-28 15:38 - 2015-05-11 13:08 - 00980400 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2015-08-28 15:38 - 2015-04-27 16:09 - 00328816 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2015-08-28 15:38 - 2015-04-24 05:42 - 00858256 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2015-08-28 15:38 - 2015-04-24 05:42 - 00684176 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2015-08-28 15:38 - 2015-04-24 05:42 - 00435856 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2015-08-28 15:38 - 2015-04-24 05:41 - 00555664 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.DLL
2015-08-28 15:38 - 2015-04-13 16:25 - 03262184 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2015-08-28 15:38 - 2015-02-05 17:48 - 12834736 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2015-08-28 15:38 - 2015-02-05 17:48 - 02789808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2015-08-28 15:38 - 2015-02-04 00:38 - 01413776 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2015-08-28 15:38 - 2015-02-04 00:38 - 00454288 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2015-08-28 15:38 - 2015-02-04 00:38 - 00369296 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2015-08-28 15:38 - 2015-02-04 00:38 - 00329360 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2015-08-28 15:38 - 2015-02-04 00:38 - 00329360 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2015-08-28 15:38 - 2015-01-23 18:16 - 00213432 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaemaxapo64.dll
2015-08-28 15:38 - 2015-01-19 18:10 - 72113152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-08-28 15:38 - 2014-12-11 08:10 - 01104040 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\slcnt64.dll
2015-08-28 15:38 - 2014-12-11 08:10 - 00943784 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2015-08-28 15:38 - 2014-12-11 08:10 - 00734376 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2015-08-28 15:38 - 2014-12-11 08:10 - 00250536 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2015-08-28 15:38 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-08-28 15:38 - 2014-10-24 10:12 - 05234952 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-08-28 15:38 - 2014-10-24 10:12 - 00995120 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-08-28 15:38 - 2014-08-14 19:16 - 05804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2015-08-28 15:38 - 2014-06-17 19:17 - 00856992 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2015-08-28 15:38 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2015-08-28 15:38 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-08-28 15:38 - 2014-02-27 20:02 - 02162992 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2015-08-28 15:38 - 2014-01-31 17:27 - 01313904 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2015-08-28 15:38 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2015-08-28 15:38 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-08-28 15:38 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-08-28 15:38 - 2013-07-23 15:39 - 14048512 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2015-08-28 15:38 - 2013-07-23 15:39 - 00922880 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2015-08-28 15:38 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaeapo64.dll
2015-08-28 15:38 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\toseaeapo64.dll
2015-08-28 15:38 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosasfapo64.dll
2015-08-28 15:38 - 2013-04-03 14:13 - 00906800 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2015-08-28 15:38 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2015-08-28 15:38 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2015-08-28 15:38 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2015-08-28 15:38 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2015-08-28 15:38 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2015-08-28 15:38 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2015-08-28 15:38 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-08-28 15:38 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-08-28 15:38 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2015-08-28 15:38 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2015-08-28 15:38 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2015-08-28 15:38 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2015-08-28 15:38 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2015-08-28 15:37 - 2015-06-02 19:25 - 01576976 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2015-08-28 15:37 - 2015-05-27 18:51 - 02461016 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2015-08-28 15:37 - 2015-05-27 18:51 - 02393432 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2015-08-28 15:37 - 2015-05-27 18:51 - 00944984 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2015-08-28 15:37 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-08-28 15:37 - 2014-11-04 13:42 - 06242576 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2015-08-28 15:37 - 2014-11-04 13:42 - 01933584 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2015-08-28 15:37 - 2014-11-04 13:42 - 00336144 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2015-08-28 15:37 - 2014-11-04 13:42 - 00284944 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2015-08-28 15:37 - 2014-09-24 11:31 - 07087448 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-08-28 15:37 - 2014-09-24 11:31 - 01939800 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-08-28 15:37 - 2014-09-24 11:31 - 00315736 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-08-28 15:37 - 2014-09-24 11:31 - 00261464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-08-28 15:37 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-08-28 15:37 - 2014-05-22 16:24 - 00096568 _____ C:\WINDOWS\system32\audioLibVc.dll
2015-08-28 15:37 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-08-28 15:37 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2015-08-28 15:37 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2015-08-28 15:37 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2015-08-28 15:37 - 2013-06-21 11:01 - 00109848 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2015-08-28 15:37 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2015-08-28 15:37 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-09-27 22:35 - 2015-08-10 13:14 - 00000978 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0407cbb756b95.job
2015-09-27 22:10 - 2015-07-10 14:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-27 21:57 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-27 21:55 - 2013-06-22 19:36 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-27 21:50 - 2014-10-30 18:19 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-09-27 20:45 - 2014-04-05 19:54 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Skype
2015-09-27 19:56 - 2015-08-10 13:14 - 00000974 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf8c087ab41d4a.job
2015-09-27 19:55 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-27 19:54 - 2015-08-07 18:02 - 00039532 _____ C:\WINDOWS\PFRO.log
2015-09-27 19:54 - 2015-07-10 11:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-09-27 18:56 - 2015-08-10 12:51 - 00004198 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{15C2D9CD-D4AD-411F-B991-6F4280579101}
2015-09-27 18:50 - 2015-08-07 18:10 - 02038596 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-27 18:50 - 2015-07-10 18:02 - 00843298 _____ C:\WINDOWS\system32\perfh005.dat
2015-09-27 18:50 - 2015-07-10 18:02 - 00192530 _____ C:\WINDOWS\system32\perfc005.dat
2015-09-27 18:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-25 21:06 - 2014-07-17 20:31 - 00000000 ____D C:\WINDOWS\hr
2015-09-25 20:43 - 2013-06-22 19:36 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-09-25 16:08 - 2014-10-31 18:12 - 00037624 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2015-09-24 22:46 - 2015-08-07 19:40 - 00000000 ____D C:\Users\Ivana\AppData\Local\Packages
2015-09-24 21:36 - 2015-08-07 18:14 - 00000000 ____D C:\Users\Kedar
2015-09-24 11:38 - 2014-04-05 09:34 - 00002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-09-24 10:58 - 2015-08-07 18:57 - 00000000 ____D C:\Users\Kedar\AppData\Local\Packages
2015-09-24 10:57 - 2014-04-05 09:12 - 00045056 _____ C:\WINDOWS\system32\acovcnt.exe
2015-09-23 20:47 - 2014-09-14 19:29 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\LolClient
2015-09-23 14:10 - 2014-04-08 16:50 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\TS3Client
2015-09-23 13:41 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-21 22:00 - 2014-06-03 20:34 - 00000000 ____D C:\Users\Kedar\AppData\Local\gtk-2.0
2015-09-21 22:00 - 2014-06-03 20:27 - 00000000 ____D C:\Users\Kedar\.gimp-2.8
2015-09-21 16:33 - 2014-04-01 16:54 - 00002816 _____ C:\WINDOWS\system32\AutoRunFilter.ini
2015-09-21 15:11 - 2014-04-05 19:54 - 00000000 ____D C:\ProgramData\Skype
2015-09-21 14:35 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-09-20 17:55 - 2014-07-27 09:37 - 00000000 ____D C:\ProgramData\Nero
2015-09-17 17:17 - 2015-08-16 19:09 - 00016866 _____ C:\WINDOWS\DPINST.LOG
2015-09-17 17:17 - 2014-07-25 15:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-09-17 17:16 - 2014-04-01 16:42 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-09-17 07:30 - 2015-08-10 13:14 - 00004066 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d0407cbb756b95
2015-09-17 07:30 - 2015-08-10 13:14 - 00003834 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1cf8c087ab41d4a
2015-09-16 14:26 - 2015-08-18 20:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2015-09-16 14:26 - 2015-08-18 20:31 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2015-09-15 18:12 - 2015-07-10 13:06 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-09-15 18:12 - 2015-07-10 13:06 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-15 12:14 - 2015-08-08 10:18 - 00002404 _____ C:\Users\Ivana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-09-15 12:14 - 2015-08-08 10:18 - 00000000 ___RD C:\Users\Ivana\OneDrive
2015-09-14 09:24 - 2015-07-10 14:20 - 05041896 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-14 09:22 - 2015-08-07 18:08 - 00000000 ____D C:\Program Files\Elantech
2015-09-14 09:20 - 2015-07-10 18:05 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-14 09:20 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-13 17:34 - 2015-08-07 19:12 - 00056008 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\ETDCoInstaller01000.dll
2015-09-13 17:34 - 2014-12-22 13:43 - 00525000 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\Drivers\ETD.sys
2015-09-11 16:15 - 2015-08-07 18:56 - 00000000 ____D C:\Users\Kedar\AppData\Local\VirtualStore
2015-09-11 00:30 - 2015-07-10 14:20 - 00026352 _____ C:\WINDOWS\setupact.log
2015-09-09 22:58 - 2014-04-06 18:43 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-07 19:52 - 2014-05-23 13:49 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\OBS
2015-09-07 14:45 - 2014-06-07 10:39 - 00000000 ____D C:\Users\Ivana\.gimp-2.8
2015-09-06 17:45 - 2014-04-08 13:52 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\.minecraft
2015-09-06 12:04 - 2015-05-17 11:04 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Notepad++
2015-09-06 12:04 - 2015-05-17 11:04 - 00000000 ____D C:\Program Files (x86)\Notepad++
2015-09-06 10:41 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-09-05 16:56 - 2015-08-07 18:14 - 00000000 ____D C:\Users\Ivana
2015-09-03 20:18 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache
2015-09-02 19:01 - 2014-07-27 10:46 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\uTorrent
2015-09-02 16:06 - 2014-04-08 13:48 - 00000000 ____D C:\Users\Kedar\AppData\Local\NVIDIA
2015-09-02 16:04 - 2013-06-22 19:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2015-09-02 15:55 - 2015-08-07 18:06 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-02 15:55 - 2015-08-07 18:06 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-09-02 15:55 - 2015-08-07 18:06 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-09-02 15:53 - 2015-08-07 18:07 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-02 15:52 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Help
2015-09-02 15:46 - 2014-04-01 16:54 - 00002108 _____ C:\WINDOWS\system32\ServiceFilter.ini
2015-09-02 15:27 - 2014-04-08 13:49 - 00000000 ____D C:\Users\Kedar\AppData\Local\NVIDIA Corporation
2015-09-02 15:23 - 2013-06-22 19:43 - 00000000 ____D C:\Program Files (x86)\ASUS
2015-09-02 15:03 - 2015-04-06 20:51 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-09-02 15:03 - 2013-06-22 19:36 - 00000000 ____D C:\ProgramData\Adobe
2015-09-01 21:00 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-09-01 09:42 - 2014-05-23 11:26 - 00000000 ____D C:\Users\Kedar\Desktop\bordel
2015-08-28 17:58 - 2014-09-01 10:01 - 01064656 _____ C:\Users\Kedar\Desktop\Novamenu1.1.4.jar
2015-08-28 15:41 - 2014-12-22 15:53 - 00003194 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2015-08-28 15:41 - 2014-04-01 16:42 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-08-28 15:40 - 2015-08-07 18:08 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-08-28 11:41 - 2015-04-23 14:49 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2015-08-28 11:22 - 2015-08-19 11:06 - 00012402 _____ C:\Users\Kedar\Desktop\PC.xlsx
==================== Files in the root of some directories =======
2014-06-04 17:10 - 2014-06-04 17:10 - 0000097 _____ () C:\Users\Kedar\AppData\Roaming\LauncherSettings_live.cfg
2014-06-04 17:08 - 2014-06-04 17:08 - 0000039 _____ () C:\Users\Kedar\AppData\Roaming\TheHunterSettings_steam_live.cfg
2015-02-16 12:36 - 2015-02-16 12:37 - 183677480 _____ () C:\Users\Kedar\AppData\Local\ACCCx2_9_0_465.zip.aamdownload
2015-02-16 12:36 - 2015-02-16 12:37 - 0002195 _____ () C:\Users\Kedar\AppData\Local\ACCCx2_9_0_465.zip.aamdownload.aamd
2015-04-03 13:19 - 2015-04-03 13:19 - 184702896 _____ () C:\Users\Kedar\AppData\Local\ACCCx2_9_1_474.zip.aamdownload
2015-04-03 13:19 - 2015-04-03 13:19 - 0002216 _____ () C:\Users\Kedar\AppData\Local\ACCCx2_9_1_474.zip.aamdownload.aamd
2015-09-21 22:00 - 2015-09-21 22:00 - 0015017 _____ () C:\Users\Kedar\AppData\Local\recently-used.xbel
2014-04-06 02:02 - 2015-05-17 10:36 - 0007610 _____ () C:\Users\Kedar\AppData\Local\resmon.resmoncfg
2014-07-27 09:26 - 2015-03-23 21:06 - 0000059 _____ () C:\Users\Kedar\AppData\Local\UserProducts.xml
2014-12-22 15:53 - 2014-12-22 15:53 - 0000000 _____ () C:\ProgramData\DP45977C.lfl
2014-04-01 16:58 - 2014-04-01 16:59 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2014-04-01 16:58 - 2014-04-01 16:58 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-09-21 19:01
==================== End of FRST.txt ============================
OS: Windows 10 Home (22H2) 64 bit
MB: ASUS PRIME X570-P
Procesor: AMD Ryzen 7 3700X
Grafika: MSI GeForce RTX 3060 Ti Gaming Z TRIO (8 GB)
RAM: 2x32 GB Kingston Fury Beast DDR4 3200MHz CL16
Zdroj: 750 W MSI MPG A750GF
SSD (OS): Kingston SSD A2000 500 GB
HDD: Seagate IronWolf 4 TB
SSD: 4 TB Samsung 870 EVO
Monitor: Dell S2721D
Case: Fractal Design Define S
MB: ASUS PRIME X570-P
Procesor: AMD Ryzen 7 3700X
Grafika: MSI GeForce RTX 3060 Ti Gaming Z TRIO (8 GB)
RAM: 2x32 GB Kingston Fury Beast DDR4 3200MHz CL16
Zdroj: 750 W MSI MPG A750GF
SSD (OS): Kingston SSD A2000 500 GB
HDD: Seagate IronWolf 4 TB
SSD: 4 TB Samsung 870 EVO
Monitor: Dell S2721D
Case: Fractal Design Define S
Re: Automatické rovnaní ikon na ploše a ve všech složkách
Additional scan result of Farbar Recovery Scan Tool (x64) Version:27-09-2015 01
Ran by Kedar (2015-09-27 22:51:11)
Running from C:\Users\Kedar\Desktop
Windows 10 Home (X64) (2015-08-07 16:56:13)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Admin (S-1-5-21-1254521284-2832283178-1197838188-1006 - Limited - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-1254521284-2832283178-1197838188-500 - Administrator - Disabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-1254521284-2832283178-1197838188-503 - Limited - Disabled)
Guest (S-1-5-21-1254521284-2832283178-1197838188-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1254521284-2832283178-1197838188-1003 - Limited - Enabled)
Ivana (S-1-5-21-1254521284-2832283178-1197838188-1004 - Limited - Enabled) => C:\Users\Ivana
Kedar (S-1-5-21-1254521284-2832283178-1197838188-1001 - Administrator - Enabled) => C:\Users\Kedar
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Smart Security 9.0.117.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 9.0.141.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personal firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
„Windows Live Essentials“ (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
„Windows Live Mail“ (x32 Version: 16.4.3528.0331 - „Microsoft Corporation“) Hidden
µTorrent (HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\...\uTorrent) (Version: 3.4.3.40538 - BitTorrent Inc.)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.185 - Adobe Systems Incorporated)
Adobe Reader X (10.1.15) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.15 - Adobe Systems Incorporated)
Aktualizace NVIDIA 2.5.14.5 (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{eddf4201-b72e-4e94-9e7b-ac1ba97c029f}) (Version: 16.11.0 - Intel Corporation)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.5.0 - Asmedia Technology)
ASUS AI Recovery (HKLM-x32\...\{38253529-D97D-4901-AE53-5CC9736D3A2E}) (Version: 1.0.13 - ASUS)
ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.0.8 - ASUSTeK Computer Inc.)
ASUS K3 Series ScreenSaver (HKLM-x32\...\ASUS K3 Series ScreenSaver) (Version: 1.0.0002 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.20 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.0.6 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.43 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0011 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0030 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.21 - asus)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0010 - ASUS)
Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5 (HKLM-x32\...\{E031338C-839D-4EDD-9537-99B653C39D81}) (Version: 6.5.5.24 - Autodesk, Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - )
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon MG4100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG4100_series) (Version: - Canon Inc.)
Canon MP Navigator EX 5.0 (HKLM-x32\...\MP Navigator EX 5.0) (Version: - )
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CyberLink LabelPrint 2.5 (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.0.6603 - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 7.0.0.3625 - CyberLink Corp.)
CyberLink Power2Go 9 (HKLM-x32\...\InstallShield_{57D68FAE-CB5E-4fd6-AE3B-A0B43375AF18}) (Version: 9.0.1601.0 - CyberLink Corp.)
CyberLink WaveEditor 2 (HKLM-x32\...\InstallShield_{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 2.0.0.4203 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Pro (HKLM-x32\...\DAEMON Tools Pro) (Version: 5.5.0.0388 - Disc Soft Ltd)
ELAN Touchpad 11.15.0.16_X64 (HKLM\...\Elantech) (Version: 11.15.0.16 - ELAN Microelectronic Corp.)
ESET Smart Security (HKLM\...\{40A56C68-9D6C-40BD-8711-F40DD46DB4F6}) (Version: 9.0.117.0 - ESET, spol. s r.o.)
Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.10 - ASUS)
Flashtool (HKLM-x32\...\Flashtool) (Version: 0.9.18.6 - Androxyde)
FormApps Signing Extension (HKLM-x32\...\{801F9351-A8A7-441D-9398-6A56E143E316}) (Version: 1.28.0.8 - Software602 a.s.)
Fotoattēlu galerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogaléria (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foto-galerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria fotografii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerija fotografija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.42 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{AA67D612-0BE5-44D6-9A91-592958F754A1}) (Version: 13.0.198 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Chipset Device Software (x32 Version: 10.0.13 - Intel(R) Corporation) Hidden
Java 7 Update 79 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417079FF}) (Version: 7.0.790 - Oracle)
Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
K-Lite Mega Codec Pack 11.4.3 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.4.3 - )
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LSI - LoL Summoner Information (HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\...\{62B332E9-239D-4692-BDE2-0CC1CF2833DA}_is1) (Version: v4.10.0 - Aequus Gaming Ltd.)
Malwarebytes Anti-Malware verze 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MC BP-Modpack 1.7.10 (HKLM-x32\...\MC BP-Modpack) (Version: 1.7.10 - Minecraft Building Paradise)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Office Language Pack 2013 - Czech/čeština (HKLM-x32\...\Office15.OMUI.cs-cz) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MK LOL (HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\...\MK LOL) (Version: - )
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Nero WaveEditor (HKLM-x32\...\{8F7F40B4-8C55-4B92-8C89-16501DAC697F}) (Version: 12.5.00800 - Nero AG)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.1 - Notepad++ Team)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.82 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OBS Multiplatform (HKLM-x32\...\OBS Multiplatform) (Version: 0.11.4 - OBS Project)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Ovládací panel NVIDIA 355.82 (Version: 355.82 - NVIDIA Corporation) Hidden
paint.net (HKLM\...\{DF3A46D9-67B3-44B2-9D01-25C8BA772C8A}) (Version: 4.0.6 - dotPDN LLC)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.140.248 - Google, Inc.)
Poczta usługi Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Pošta Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.)
Rapture3D 2.4.11 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10001 - Realtek Semiconductor Corp.)
Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Skype™ 7.10 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.10.101 - Skype Technologies S.A.)
Sonic Focus (HKLM-x32\...\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}) (Version: 1.0.0.4 - Synopsys )
Sony Mobile Emma (HKLM-x32\...\Emma) (Version: 2.14.15.201410271230 - Sony Mobile Communications Inc.)
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.15.8.201506081556 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.281 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.281 - Sony)
Star Trek Online (HKLM-x32\...\Steam App 9900) (Version: - Cryptic Studios)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab CYRI (HKLM-x32\...\{1110A014-1471-4B66-BFDC-E8EED120CC59}) (Version: 6.0.20.0 - Husdawg, LLC)
System Requirements Lab Detection (HKLM-x32\...\{81352991-AE30-4BD7-826F-F929A5AAD413}) (Version: 6.1.6.0 - Husdawg, LLC)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Ulož.to File Manager verze 1.7 (HKLM-x32\...\{8190420D-F4BA-4744-8940-A466F81AF89C}_is1) (Version: 1.7 - Nodus Technologies s.r.o.)
USB2.0 UVC VGA WebCam (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10277 - Realtek Semiconductor Corp.)
Vegas Pro 13.0 (64-bit) (HKLM\...\{1EEE0BEE-0BC8-11E5-A19E-F04DA23A5C58}) (Version: 13.0.453 - Sony)
Winamp (HKLM-x32\...\Winamp) (Version: 5.66 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.31.0 - ASUS)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Wireless Console 3 (HKLM-x32\...\{19EA33FB-B34E-40EA-8B8A-61743AEB795A}) (Version: 3.0.47 - ASUS)
Wooxy version 1.1.0.0 (HKLM-x32\...\{4096013E-16CD-4165-9AD9-535C61E833DC}_is1) (Version: 1.1.0.0 - Chewy)
World of Tanks (HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
Фотогалерия (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
==================== Restore Points =========================
13-09-2015 17:31:52 Windows Update
20-09-2015 10:09:40 Removed Nero WaveEditor.
21-09-2015 15:02:18 Removed Skype™ 7.8
25-09-2015 15:55:25 JRT Pre-Junkware Removal
27-09-2015 19:24:16 zoek.exe restore point
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2015-09-27 19:25 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {01C995FF-D178-4E7B-AC4A-9E950006A207} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {02AD410B-D844-4269-9F3F-6540CEB94D75} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {080C583E-7ADC-429F-B44F-CBD63791059C} - System32\Tasks\GoogleUpdateTaskMachineUA1d0407cbb756b95 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-22] (Google Inc.)
Task: {0837D897-84CB-4E30-A8DD-807937A81DFC} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {0F1FC558-90E6-41AA-8D37-4FBE69053762} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {116AEB86-DE5F-4C62-ACF0-C97EFE247036} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-18] (Realtek Semiconductor)
Task: {148318FC-5974-4508-A415-B3AFD16E5DDB} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {1F99B6C3-A7D1-4D57-830C-8576539DA7C2} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {29308477-8F7E-4D4F-92D5-F1534E61B6F5} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {378B6684-2FBF-476D-8EB6-2E0E18887D31} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-21] (Adobe Systems Incorporated)
Task: {387D57B4-5FB7-4ACE-A66B-B4B60DE32EB5} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {3C9616B2-742C-4820-AFAE-F3D2459E9677} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {3D966D87-5FE5-4FBC-8E90-DB0F48E454DB} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {3E3E65EA-6693-4ACC-947D-206853F50D65} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {42145BE5-4059-431F-919A-1A381C5966DE} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {478D7BEB-9D44-4859-8E89-4F11851601C9} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {527766F1-F279-45FC-A410-8FAA7321BD72} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {527C6882-4680-4C46-8761-A39DA59AC8F1} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-04-28] (Realtek Semiconductor)
Task: {596B6BF8-2D09-4D61-A59A-720BEDC1DFE9} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {5C38E921-20B9-4AF2-88DC-02289540E2F5} - System32\Tasks\Run LSI => C:\Program Files (x86)\LSI\LoLSummonerInfo.exe [2015-09-09] (Aequus Gaming)
Task: {6044BB7B-DA09-4F45-A374-2F53078DF853} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {6AAC9BC3-E557-41B2-9E6C-47EBA4159F18} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2011-08-31] (ASUSTeK Computer Inc.)
Task: {6FECF9BE-AED8-4627-80ED-91FF5361960F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {773492A6-4F08-4DAF-9C1B-778BC17ACAED} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {782A6D7A-A04C-480B-A387-FB67564261E4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {78588675-6CF3-4E50-B5B1-1EC34EAA2F6B} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {7C91CA3D-1668-41DF-8035-927EE791C465} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation)
Task: {7DDF9673-8D0B-4652-B795-1BEAD1206B65} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {911F3F9D-71EE-4D1C-AF2B-3316BA0DEBE8} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2010-12-02] (ASUS)
Task: {980A2E50-9E7F-4DC4-BA8A-2832BC435F39} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {9C8E9B45-8C2F-430E-838D-3E87300F346F} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-17] (ASUS)
Task: {AA921623-B84A-4EC8-A6DA-5D46323FC6D9} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {AEF770AC-8386-47CE-92D2-C514D98FAB39} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {BBC724D8-3CB7-4585-9D0A-01233996390A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {BD8D5D43-9437-4517-83D7-43C5B72A1F1A} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {C45DD868-BB14-4478-B4FC-2700896B0468} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-08-24] ()
Task: {C5CFC46E-3A14-4C92-B895-647CA6B95F92} - System32\Tasks\{63460CC5-7B35-435F-9F54-AF8337F8491B} => pcalua.exe -a E:\Hry\Pokemine\Uninstal.exe
Task: {C682EEFF-20DA-4B75-B99B-431F39F58FAB} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {C778374C-94FE-41B0-B705-5FC952201AC0} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {CB56C1B0-F0F2-4A3C-9F2B-B815BE721689} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {D40A9080-5579-4EAE-AE36-2025EBF3CF0D} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2010-08-02] (ASUS)
Task: {DC6AD74F-0DE4-4E2A-827C-7DCC18688094} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe [2015-08-11] (Microsoft Corporation)
Task: {DD548504-31EE-43FF-A573-1E9BCB56DC76} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {E959E007-A71C-4952-8EA8-22DE146D6227} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {F0496437-71B1-4E96-9E9C-3BC2F52CDE46} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {F5299826-2A6D-4C24-8FEB-1BA75B172640} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {F6B3C342-F184-4819-9426-9C4F98E7BB9D} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8c087ab41d4a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-22] (Google Inc.)
Task: {F72C63E3-0988-4242-AC37-A10FBE7BA07D} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2010-11-15] (ASUS)
Task: {FACB8164-0888-403B-B4E6-7F59329EA90F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {FBC8485F-A585-489F-8E2C-C65FEABC1BEF} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {FFEE4F98-789F-4BC5-9EBF-91D4AC658C46} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf8c087ab41d4a.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0407cbb756b95.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2015-08-07 18:51 - 2015-08-07 18:51 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-09-02 15:52 - 2015-08-25 17:57 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-08-28 16:13 - 2015-08-18 09:56 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2010-07-15 01:11 - 2010-07-15 01:11 - 00031360 _____ () C:\Program Files\P4G\DevMng.dll
2010-04-03 04:21 - 2008-10-01 08:08 - 00011264 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2015-08-28 16:13 - 2015-08-18 09:56 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-07-10 12:59 - 2015-07-10 12:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-08-14 17:54 - 2015-08-03 03:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 13:00 - 2015-07-10 18:05 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-19 10:18 - 2015-08-11 10:58 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-14 17:54 - 2015-08-03 03:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 13:00 - 2015-07-10 18:05 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-06-01 21:00 - 2015-06-01 21:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll
2015-09-17 23:05 - 2015-09-17 23:05 - 03495936 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1509.14010.0_x64__8wekyb3d8bbwe\Calculator.exe
2015-09-24 17:09 - 2015-09-24 17:10 - 00012288 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.922.11070.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2015-09-24 17:09 - 2015-09-24 17:10 - 10807296 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.922.11070.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2015-09-24 11:38 - 2015-09-23 08:53 - 01908040 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.42\libglesv2.dll
2015-09-24 11:38 - 2015-09-23 08:53 - 00093512 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.42\libegl.dll
2015-08-31 14:36 - 2015-01-26 16:36 - 40622592 _____ () C:\Program Files (x86)\LSI\libcef.dll
2015-08-31 14:36 - 2015-08-31 14:36 - 00570947 _____ () C:\Program Files (x86)\LSI\sqlite3.dll
2012-05-24 21:19 - 2012-05-24 21:19 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2011-03-09 23:21 - 2011-03-09 23:21 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2014-10-01 17:48 - 2014-10-01 17:48 - 01163264 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\acAuth.dll
2013-05-20 11:02 - 2013-05-20 11:02 - 00016856 _____ () C:\Program Files (x86)\CyberLink\Power2Go9\CLMLSvcPS.dll
2015-08-31 14:36 - 2015-01-26 16:36 - 00911360 _____ () C:\Program Files (x86)\LSI\libglesv2.dll
2015-08-31 14:36 - 2015-01-26 16:36 - 00134144 _____ () C:\Program Files (x86)\LSI\libegl.dll
2015-08-31 14:36 - 2015-01-26 16:36 - 00950272 _____ () C:\Program Files (x86)\LSI\ffmpegsumo.dll
2014-10-31 20:29 - 2014-11-02 13:02 - 00003132 _____ () C:\Program Files (x86)\DAEMON Tools Pro\MSIMG32.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE restricted site: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\...\skype.com -> hxxps://apps.skype.com
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Kedar\Desktop\ZAD7Cis.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\windows\AsScrPro.exe
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: mnccaspjSrv => C:\windows\inf\mnccaspj.vbe
MSCONFIG\startupreg: mncfljlnSrv => C:\windows\system32\mncfljln.vbe
MSCONFIG\startupreg: MSStp => C:\windows\system32\msstp.vbe
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{9B74C372-DB15-461A-B46C-E50096B46FEA}] => (Allow) LPort=1688
FirewallRules: [{2675AF83-E7DF-461B-B504-753C11E6021E}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{F0EC060B-CA15-4515-940C-A7EA7831EA61}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{4FB3201A-0085-4ACB-A98F-E0E05D3D037E}] => (Allow) E:\Hry\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{ED54FEA6-7288-4C1E-95C9-CD1ECC63575F}] => (Allow) E:\Hry\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{F352C287-5C74-4153-8C2A-346EF35A1787}] => (Allow) C:\Program Files (x86)\Sony Mobile\Emma\Emma.exe
FirewallRules: [{BC6D53A0-C9AD-4467-9F0C-6952AAB11433}] => (Allow) C:\Program Files (x86)\Sony Mobile\Emma\Emma.exe
FirewallRules: [{7ED1B97F-ADCD-4BFA-8638-A00C5D9250D9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{69C0978D-F465-405E-BE40-78C22AE0C185}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{1AFBB746-430F-468F-874D-3164874723C2}] => (Allow) E:\Hry\Steam\SteamApps\common\Rise_of_Incarnates\exe\roi.exe
FirewallRules: [{C7684BEB-2D02-4055-9375-9C226652A81F}] => (Allow) E:\Hry\Steam\SteamApps\common\Rise_of_Incarnates\exe\roi.exe
FirewallRules: [{D1BE4EBF-C566-47BC-A41A-AC70A4CC748F}] => (Allow) E:\Hry\Steam\SteamApps\common\Star Trek Online\Star Trek Online.exe
FirewallRules: [{B3AC85D1-3009-411F-BA7E-888C9F59B766}] => (Allow) E:\Hry\Steam\SteamApps\common\Star Trek Online\Star Trek Online.exe
FirewallRules: [{DFD7A4A7-9BF1-4C3F-B6C8-41C90870C149}] => (Allow) E:\Hry\Battle.net\Battle.net.exe
FirewallRules: [{737CDED2-251E-410A-8C70-1E70B35B284F}] => (Allow) E:\Hry\Battle.net\Battle.net.exe
FirewallRules: [{DE3A5C27-3F21-4A0D-B29D-1C8BB438F909}] => (Allow) E:\Hry\Survarium\game\binaries\x86\survarium.exe
FirewallRules: [{B667811A-11B3-40AF-A01B-F71DE0A4B01A}] => (Allow) E:\Hry\Survarium\game\binaries\x86\survarium.exe
FirewallRules: [{D644B576-B24B-4A87-A70C-A458628E760C}] => (Allow) E:\Hry\Survarium\temp\survarium_updater.exe
FirewallRules: [{B62D726D-1AFC-4B7B-AE32-1908DACDC873}] => (Allow) E:\Hry\Survarium\temp\survarium_updater.exe
FirewallRules: [{797711F9-4822-4936-8C74-D27461B73333}] => (Allow) E:\Hry\Survarium\temp\survarium_updater.exe
FirewallRules: [{CD32D911-3746-4FDB-BFED-42CA0BD79BEE}] => (Allow) E:\Hry\Survarium\temp\survarium_updater.exe
FirewallRules: [{2465E4A7-92F5-4837-801F-BA8CB217117A}] => (Allow) E:\Hry\Survarium\temp\survarium_launcher.exe
FirewallRules: [{D3993D84-5204-4760-BB62-D55E84BF5C8D}] => (Allow) E:\Hry\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{0D0B85C8-8F60-4BD3-B3BC-4ABCBC20121A}] => (Allow) E:\Hry\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{B8AA0D4F-34C3-49B0-8E50-CE538A240997}] => (Allow) LPort=5000
FirewallRules: [{0DAFC252-B5D6-4F06-8730-868B44864F8D}] => (Allow) LPort=61096
FirewallRules: [{408DEA53-09CF-4889-BF2E-9C09D04B7181}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{2E994644-3396-458F-9EC5-D612892D80AD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{598A9E61-5CC5-4917-96E7-5F492E295156}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{F1801C69-438D-4F06-A946-CADE634AA6D2}] => (Allow) E:\Hry\Steam\SteamApps\common\Hazard Ops\UnrealEngine3\Binaries\Win32\InfernumLogin.exe
FirewallRules: [{79B53679-C978-4A82-86D2-9796F5EC0A95}] => (Allow) E:\Hry\Steam\SteamApps\common\Hazard Ops\UnrealEngine3\Binaries\Win32\InfernumLogin.exe
FirewallRules: [{288A201F-F63B-4487-9450-B6D463837234}] => (Allow) E:\Hry\Steam\SteamApps\common\CSNZ\Bin\cstrike-online.exe
FirewallRules: [{6BCCCAB1-B6DE-404C-9534-8B0A2078D72B}] => (Allow) E:\Hry\Steam\SteamApps\common\CSNZ\Bin\cstrike-online.exe
FirewallRules: [{9E9C75EF-8876-4C5F-864D-20F029E5FC8A}] => (Allow) LPort=41780
FirewallRules: [{21B7FE24-EA43-4E54-A328-A473D576A6C2}] => (Allow) E:\Hry\Assassin's Creed Brotherhood\ACBMP.exe
FirewallRules: [{8BF51832-A4E9-40BC-9701-66D6A4502D5D}] => (Allow) E:\Hry\Assassin's Creed Brotherhood\ACBMP.exe
FirewallRules: [{0A45C3B0-456E-4ED3-AD69-66C5F7F85364}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{B5F96D7F-F3F3-469E-905A-8CAD3F307A00}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{EB043C8B-19D3-4634-A2E3-0A57C3CE04E8}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{168CBEE4-AE9E-4E45-B3FD-6A1E671D5866}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{E2408EEB-DFA5-45D3-8735-DF3665F6A2C5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{4C0BC13C-2D0F-4D57-B28A-823A62543748}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{D710B6A6-223D-48F9-9584-029D0ACC03D9}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{C8C1B580-DDD4-445E-8CF7-730B263078E7}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{7A558F1E-05B6-4245-AF79-9B488D2FCB1C}] => (Allow) E:\Hry\Steam\SteamApps\common\Firefall\system\bin\FirefallClient.exe
FirewallRules: [{33E76313-6417-4D4A-8113-A8E81EC6CB57}] => (Allow) E:\Hry\Steam\SteamApps\common\Firefall\system\bin\FirefallClient.exe
FirewallRules: [{CFAD32F1-E34F-4C9F-B289-864515C1248C}] => (Allow) E:\Hry\Steam\SteamApps\common\Dizzel\Dizzel.exe
FirewallRules: [{16897F67-5368-4F75-A09F-4AAC7E22C02A}] => (Allow) E:\Hry\Steam\SteamApps\common\Dizzel\Dizzel.exe
FirewallRules: [{A4C7B5F5-9E59-4B99-9222-C8A0418A6945}] => (Allow) E:\Hry\Steam\SteamApps\common\TacticalIntervention\bin\tacint.exe
FirewallRules: [{B5CC52DF-2BAF-481D-AEA5-797781731C85}] => (Allow) E:\Hry\Steam\SteamApps\common\TacticalIntervention\bin\tacint.exe
FirewallRules: [{74DC8322-E344-423A-9D5E-0EFE255E2C6C}] => (Allow) C:\Program Files (x86)\Nero\KM\NMDllHost.exe
FirewallRules: [{5F04E0C9-8090-4F55-8F4E-EA6D4A2369BF}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [{BF194211-8E67-4B3E-96A7-0FE6AD41DDE2}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [{1637B59B-7FF9-4CFA-9D20-72563526D382}] => (Allow) E:\Hry\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{B35E79FA-4D76-49CB-AFCB-2800B5FF5DDC}] => (Allow) E:\Hry\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{1B9A5068-16D1-4984-B0C3-70F970020DC4}] => (Allow) E:\Hry\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{411A8847-6F59-42F5-8A2E-41DA6CC80AC7}] => (Allow) E:\Hry\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{8DAD9EBB-8DC1-489D-BFDB-8F51E541C55D}] => (Allow) E:\Hry\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{089C0668-4730-4E65-A2E6-2873974CC1C4}] => (Allow) E:\Hry\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{1D85AF4F-9D58-4647-88F5-5A3295EE8E7B}] => (Allow) E:\Hry\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{ECFFD95E-E837-406F-A7F9-C69E42B318A4}] => (Allow) E:\Hry\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{6AF869C1-9C82-4CEE-B685-0A13198790EF}] => (Allow) E:\Hry\Steam\bin\steamwebhelper.exe
FirewallRules: [{E1C9A896-0EB9-4429-9E9A-A95B8DFEF759}] => (Allow) E:\Hry\Steam\bin\steamwebhelper.exe
FirewallRules: [{86AC07D9-0AB6-4A18-B76E-B1B30E7203CF}] => (Allow) E:\Hry\Steam\SteamApps\common\raceroom racing experience\Game\RRRE.exe
FirewallRules: [{2DE487A7-F692-4C31-8D7B-3A40AB20A0B7}] => (Allow) E:\Hry\Steam\SteamApps\common\raceroom racing experience\Game\RRRE.exe
FirewallRules: [{0C81125E-6128-4B8F-92F1-2E0AD67A5897}] => (Allow) LPort=1900
FirewallRules: [{B126A94A-9B72-41B9-85F4-0F6B4FDF8C48}] => (Allow) LPort=2869
FirewallRules: [{1E3ACD3F-BD44-4E22-A925-4E413D9CC588}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{E7147BE4-7065-417D-85F0-354F63297C80}] => (Allow) E:\Hry\Steam\SteamApps\common\Warface\live\nw.exe
FirewallRules: [{E8D96C11-DB85-4AB6-873A-6F787690538A}] => (Allow) E:\Hry\Steam\SteamApps\common\Warface\live\nw.exe
FirewallRules: [{C6F14999-6307-48B8-A6D3-1672E5A749AF}] => (Allow) E:\Hry\Steam\SteamApps\common\theHunter\launcher\launcher.exe
FirewallRules: [{03287BFA-6AF7-4BA8-8798-0C1CFF543C94}] => (Allow) E:\Hry\Steam\SteamApps\common\theHunter\launcher\launcher.exe
FirewallRules: [{D5BDBC51-33FB-4793-BEFE-7A05A37CD933}] => (Allow) E:\Hry\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{59353A72-DC69-45D4-86A2-09F720F327AA}] => (Allow) E:\Hry\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{02A12D4C-89B4-4799-9B02-FECE06E509BD}] => (Allow) E:\Hry\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{FCAC061B-561E-46CA-A9EB-C2CBBC7BDA24}] => (Allow) E:\Hry\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{2F084736-5EB1-46CA-96A3-F202B016AA0B}] => (Allow) E:\Hry\Steam\Steam.exe
FirewallRules: [{8A1F0118-5EE4-4E49-8893-79CF80AA0E58}] => (Allow) E:\Hry\Steam\Steam.exe
FirewallRules: [{32412C59-6658-427D-ACA0-7526ECF8CAF1}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{3431ACA2-CF93-4C8C-9598-E0FC16F82927}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{7B950B23-4ED1-4753-86FF-9BC65D7E56EA}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{8F8DC8BD-8249-4EFF-B5CF-5A97211168A0}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{C38F9B0D-4E4C-44B4-9C23-4F0193FE874C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{3FF92CB6-7F25-4380-88BB-BA6F68AE6DA9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{9E4EB648-0ED1-4351-A8FD-330CE7697803}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{4CBF17F8-9FFC-4939-B01C-0E8AF483A087}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{32740511-060E-425E-B3EB-0E110B79EC35}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{9ABC6461-E5B3-4964-B2C8-962B412EE406}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{73960E7B-A9A7-4ECD-BD2A-D2F2D05C8592}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{234E38D0-425E-4189-B634-551562574E32}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{92CB28CF-A29E-46BB-8EB8-3AE1E8E82B79}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{C11D9928-1F7A-4E3E-BF38-E90C42C2BFE9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E744D126-5C7B-482E-8B64-4ECB6587E7AE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{871005B8-1821-47E2-9BD4-3B3AC7D142CB}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{1F055FEF-A640-4EA7-A697-A97B40712578}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{71E55BA7-F4D8-42B1-BC93-703661BF3604}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{D5805427-FE99-4485-A7BD-4501B71CB8A0}] => (Allow) %ProgramFiles% (x86)\Skype\Phone\Skype.exe
FirewallRules: [{6C1B3D6F-7641-4B81-8C42-94132FC19AB8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Faulty Device Manager Devices =============
Name: Logitech Cordless Device
Description: Logitech Cordless Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Logitech Cordless Device
Description: Logitech Cordless Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (09/27/2015 07:58:43 PM) (Source: Software Protection Platform Service) (EventID: 8212) (User: )
Description: Neúspěšné obnovení aktivačního období pro ID aplikace = 0ff1ce15-a989-479d-af46-f275c6370663, ID jednotky SKU = b322da9c-a2e2-4058-9e4e-f59a6970bd69. Zbývající počet obnovení aktivačního období: 0. Kód chyby: 0xC004D307
Error: (09/27/2015 07:58:43 PM) (Source: Software Protection Platform Service) (EventID: 8212) (User: )
Description: Neúspěšné obnovení aktivačního období pro ID aplikace = 0ff1ce15-a989-479d-af46-f275c6370663, ID jednotky SKU = 41499869-4103-4d3b-9da6-d07df41b6e39. Zbývající počet obnovení aktivačního období: 0. Kód chyby: 0xC004D307
Error: (09/27/2015 07:58:42 PM) (Source: Software Protection Platform Service) (EventID: 8212) (User: )
Description: Neúspěšné obnovení aktivačního období pro ID aplikace = 0ff1ce15-a989-479d-af46-f275c6370663, ID jednotky SKU = 1b686580-9fb1-4b88-bfba-eae7c0da31ad. Zbývající počet obnovení aktivačního období: 0. Kód chyby: 0xC004D307
Error: (09/27/2015 07:24:37 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (09/27/2015 07:00:53 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LoLSummonerInfo.exe verze 4.10.0.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.
ID procesu: 1bac
Čas spuštění: 01d0f94456c63baf
Čas ukončení: 1640
Cesta k aplikaci: C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
ID hlášení: 4d85087f-6539-11e5-9bdd-5404a6034d5e
Úplný název balíčku s chybou:
ID aplikace související s balíčkem s chybou:
Error: (09/27/2015 06:49:39 PM) (Source: Software Protection Platform Service) (EventID: 8212) (User: )
Description: Neúspěšné obnovení aktivačního období pro ID aplikace = 0ff1ce15-a989-479d-af46-f275c6370663, ID jednotky SKU = 41499869-4103-4d3b-9da6-d07df41b6e39. Zbývající počet obnovení aktivačního období: 0. Kód chyby: 0xC004D307
System errors:
=============
Error: (09/27/2015 10:46:56 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: Při pokusu přistoupit k privátnímu klíči pověření SSL Server došlo k závažné chybě. Kód chyby vrácený kryptografickým modulem je 0x8009030d. Stav interní chyby je 10001.
Error: (09/27/2015 08:00:00 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: Při pokusu přistoupit k privátnímu klíči pověření SSL Server došlo k závažné chybě. Kód chyby vrácený kryptografickým modulem je 0x8009030d. Stav interní chyby je 10001.
Error: (09/27/2015 07:59:49 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici
Error: (09/27/2015 07:55:21 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Adaptér naslouchání Net.Tcp závisí na službě Služba sdílení portů Net.Tcp, která neuspěla při spuštění v důsledku následující chyby:
%%1058
Error: (09/27/2015 07:54:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Přístup k uživatelským datům_Session4 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (09/27/2015 07:54:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Úložiště uživatelských dat_Session4 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (09/27/2015 07:54:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Data kontaktů_Session4 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (09/27/2015 07:54:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_Session4 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (09/27/2015 07:46:26 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/27/2015 07:46:26 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
CodeIntegrity:
===================================
Date: 2015-09-14 16:01:31.303
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.
Date: 2015-09-14 16:01:31.164
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
Date: 2015-09-14 16:01:30.997
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.
Date: 2015-09-14 16:01:29.874
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.
Date: 2015-09-14 16:01:29.769
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
Date: 2015-09-14 16:01:29.673
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.
Date: 2015-09-14 16:01:27.028
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.
Date: 2015-09-14 16:01:23.944
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.
Date: 2015-09-14 15:43:13.521
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.
Date: 2015-09-14 15:43:13.366
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3-2310M CPU @ 2.10GHz
Percentage of memory in use: 63%
Total physical RAM: 4006.69 MB
Available physical RAM: 1446.89 MB
Total Virtual: 8102.69 MB
Available Virtual: 4682.47 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:200 GB) (Free:115.11 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive e: (DATA) (Fixed) (Total:240.66 GB) (Free:112.47 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or
(Size: 465.8 GB) (Disk ID: 2756CB74)
Partition 1: (Not Active) - (Size=25 GB) - (Type=1C)
Partition 2: (Active) - (Size=100 MB) - (Type=27)
Partition 3: (Not Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=240.7 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Ran by Kedar (2015-09-27 22:51:11)
Running from C:\Users\Kedar\Desktop
Windows 10 Home (X64) (2015-08-07 16:56:13)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Admin (S-1-5-21-1254521284-2832283178-1197838188-1006 - Limited - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-1254521284-2832283178-1197838188-500 - Administrator - Disabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-1254521284-2832283178-1197838188-503 - Limited - Disabled)
Guest (S-1-5-21-1254521284-2832283178-1197838188-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1254521284-2832283178-1197838188-1003 - Limited - Enabled)
Ivana (S-1-5-21-1254521284-2832283178-1197838188-1004 - Limited - Enabled) => C:\Users\Ivana
Kedar (S-1-5-21-1254521284-2832283178-1197838188-1001 - Administrator - Enabled) => C:\Users\Kedar
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Smart Security 9.0.117.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 9.0.141.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personal firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
„Windows Live Essentials“ (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
„Windows Live Mail“ (x32 Version: 16.4.3528.0331 - „Microsoft Corporation“) Hidden
µTorrent (HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\...\uTorrent) (Version: 3.4.3.40538 - BitTorrent Inc.)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.185 - Adobe Systems Incorporated)
Adobe Reader X (10.1.15) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.15 - Adobe Systems Incorporated)
Aktualizace NVIDIA 2.5.14.5 (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{eddf4201-b72e-4e94-9e7b-ac1ba97c029f}) (Version: 16.11.0 - Intel Corporation)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.5.0 - Asmedia Technology)
ASUS AI Recovery (HKLM-x32\...\{38253529-D97D-4901-AE53-5CC9736D3A2E}) (Version: 1.0.13 - ASUS)
ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.0.8 - ASUSTeK Computer Inc.)
ASUS K3 Series ScreenSaver (HKLM-x32\...\ASUS K3 Series ScreenSaver) (Version: 1.0.0002 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.20 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.0.6 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.43 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0011 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0030 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.21 - asus)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0010 - ASUS)
Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5 (HKLM-x32\...\{E031338C-839D-4EDD-9537-99B653C39D81}) (Version: 6.5.5.24 - Autodesk, Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - )
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon MG4100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG4100_series) (Version: - Canon Inc.)
Canon MP Navigator EX 5.0 (HKLM-x32\...\MP Navigator EX 5.0) (Version: - )
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CyberLink LabelPrint 2.5 (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.0.6603 - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 7.0.0.3625 - CyberLink Corp.)
CyberLink Power2Go 9 (HKLM-x32\...\InstallShield_{57D68FAE-CB5E-4fd6-AE3B-A0B43375AF18}) (Version: 9.0.1601.0 - CyberLink Corp.)
CyberLink WaveEditor 2 (HKLM-x32\...\InstallShield_{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 2.0.0.4203 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Pro (HKLM-x32\...\DAEMON Tools Pro) (Version: 5.5.0.0388 - Disc Soft Ltd)
ELAN Touchpad 11.15.0.16_X64 (HKLM\...\Elantech) (Version: 11.15.0.16 - ELAN Microelectronic Corp.)
ESET Smart Security (HKLM\...\{40A56C68-9D6C-40BD-8711-F40DD46DB4F6}) (Version: 9.0.117.0 - ESET, spol. s r.o.)
Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.10 - ASUS)
Flashtool (HKLM-x32\...\Flashtool) (Version: 0.9.18.6 - Androxyde)
FormApps Signing Extension (HKLM-x32\...\{801F9351-A8A7-441D-9398-6A56E143E316}) (Version: 1.28.0.8 - Software602 a.s.)
Fotoattēlu galerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogaléria (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foto-galerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria fotografii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerija fotografija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.42 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{AA67D612-0BE5-44D6-9A91-592958F754A1}) (Version: 13.0.198 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Chipset Device Software (x32 Version: 10.0.13 - Intel(R) Corporation) Hidden
Java 7 Update 79 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417079FF}) (Version: 7.0.790 - Oracle)
Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
K-Lite Mega Codec Pack 11.4.3 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.4.3 - )
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LSI - LoL Summoner Information (HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\...\{62B332E9-239D-4692-BDE2-0CC1CF2833DA}_is1) (Version: v4.10.0 - Aequus Gaming Ltd.)
Malwarebytes Anti-Malware verze 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MC BP-Modpack 1.7.10 (HKLM-x32\...\MC BP-Modpack) (Version: 1.7.10 - Minecraft Building Paradise)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Office Language Pack 2013 - Czech/čeština (HKLM-x32\...\Office15.OMUI.cs-cz) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MK LOL (HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\...\MK LOL) (Version: - )
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Nero WaveEditor (HKLM-x32\...\{8F7F40B4-8C55-4B92-8C89-16501DAC697F}) (Version: 12.5.00800 - Nero AG)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.1 - Notepad++ Team)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.82 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OBS Multiplatform (HKLM-x32\...\OBS Multiplatform) (Version: 0.11.4 - OBS Project)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Ovládací panel NVIDIA 355.82 (Version: 355.82 - NVIDIA Corporation) Hidden
paint.net (HKLM\...\{DF3A46D9-67B3-44B2-9D01-25C8BA772C8A}) (Version: 4.0.6 - dotPDN LLC)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.140.248 - Google, Inc.)
Poczta usługi Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Pošta Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.)
Rapture3D 2.4.11 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10001 - Realtek Semiconductor Corp.)
Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Skype™ 7.10 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.10.101 - Skype Technologies S.A.)
Sonic Focus (HKLM-x32\...\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}) (Version: 1.0.0.4 - Synopsys )
Sony Mobile Emma (HKLM-x32\...\Emma) (Version: 2.14.15.201410271230 - Sony Mobile Communications Inc.)
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.15.8.201506081556 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.281 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.281 - Sony)
Star Trek Online (HKLM-x32\...\Steam App 9900) (Version: - Cryptic Studios)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab CYRI (HKLM-x32\...\{1110A014-1471-4B66-BFDC-E8EED120CC59}) (Version: 6.0.20.0 - Husdawg, LLC)
System Requirements Lab Detection (HKLM-x32\...\{81352991-AE30-4BD7-826F-F929A5AAD413}) (Version: 6.1.6.0 - Husdawg, LLC)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Ulož.to File Manager verze 1.7 (HKLM-x32\...\{8190420D-F4BA-4744-8940-A466F81AF89C}_is1) (Version: 1.7 - Nodus Technologies s.r.o.)
USB2.0 UVC VGA WebCam (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10277 - Realtek Semiconductor Corp.)
Vegas Pro 13.0 (64-bit) (HKLM\...\{1EEE0BEE-0BC8-11E5-A19E-F04DA23A5C58}) (Version: 13.0.453 - Sony)
Winamp (HKLM-x32\...\Winamp) (Version: 5.66 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.31.0 - ASUS)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Wireless Console 3 (HKLM-x32\...\{19EA33FB-B34E-40EA-8B8A-61743AEB795A}) (Version: 3.0.47 - ASUS)
Wooxy version 1.1.0.0 (HKLM-x32\...\{4096013E-16CD-4165-9AD9-535C61E833DC}_is1) (Version: 1.1.0.0 - Chewy)
World of Tanks (HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
Фотогалерия (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
==================== Restore Points =========================
13-09-2015 17:31:52 Windows Update
20-09-2015 10:09:40 Removed Nero WaveEditor.
21-09-2015 15:02:18 Removed Skype™ 7.8
25-09-2015 15:55:25 JRT Pre-Junkware Removal
27-09-2015 19:24:16 zoek.exe restore point
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2015-09-27 19:25 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {01C995FF-D178-4E7B-AC4A-9E950006A207} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {02AD410B-D844-4269-9F3F-6540CEB94D75} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {080C583E-7ADC-429F-B44F-CBD63791059C} - System32\Tasks\GoogleUpdateTaskMachineUA1d0407cbb756b95 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-22] (Google Inc.)
Task: {0837D897-84CB-4E30-A8DD-807937A81DFC} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {0F1FC558-90E6-41AA-8D37-4FBE69053762} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {116AEB86-DE5F-4C62-ACF0-C97EFE247036} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-18] (Realtek Semiconductor)
Task: {148318FC-5974-4508-A415-B3AFD16E5DDB} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {1F99B6C3-A7D1-4D57-830C-8576539DA7C2} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {29308477-8F7E-4D4F-92D5-F1534E61B6F5} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {378B6684-2FBF-476D-8EB6-2E0E18887D31} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-21] (Adobe Systems Incorporated)
Task: {387D57B4-5FB7-4ACE-A66B-B4B60DE32EB5} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {3C9616B2-742C-4820-AFAE-F3D2459E9677} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {3D966D87-5FE5-4FBC-8E90-DB0F48E454DB} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {3E3E65EA-6693-4ACC-947D-206853F50D65} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {42145BE5-4059-431F-919A-1A381C5966DE} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {478D7BEB-9D44-4859-8E89-4F11851601C9} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {527766F1-F279-45FC-A410-8FAA7321BD72} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {527C6882-4680-4C46-8761-A39DA59AC8F1} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-04-28] (Realtek Semiconductor)
Task: {596B6BF8-2D09-4D61-A59A-720BEDC1DFE9} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {5C38E921-20B9-4AF2-88DC-02289540E2F5} - System32\Tasks\Run LSI => C:\Program Files (x86)\LSI\LoLSummonerInfo.exe [2015-09-09] (Aequus Gaming)
Task: {6044BB7B-DA09-4F45-A374-2F53078DF853} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {6AAC9BC3-E557-41B2-9E6C-47EBA4159F18} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2011-08-31] (ASUSTeK Computer Inc.)
Task: {6FECF9BE-AED8-4627-80ED-91FF5361960F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {773492A6-4F08-4DAF-9C1B-778BC17ACAED} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {782A6D7A-A04C-480B-A387-FB67564261E4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {78588675-6CF3-4E50-B5B1-1EC34EAA2F6B} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {7C91CA3D-1668-41DF-8035-927EE791C465} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation)
Task: {7DDF9673-8D0B-4652-B795-1BEAD1206B65} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {911F3F9D-71EE-4D1C-AF2B-3316BA0DEBE8} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2010-12-02] (ASUS)
Task: {980A2E50-9E7F-4DC4-BA8A-2832BC435F39} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {9C8E9B45-8C2F-430E-838D-3E87300F346F} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-17] (ASUS)
Task: {AA921623-B84A-4EC8-A6DA-5D46323FC6D9} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {AEF770AC-8386-47CE-92D2-C514D98FAB39} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {BBC724D8-3CB7-4585-9D0A-01233996390A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {BD8D5D43-9437-4517-83D7-43C5B72A1F1A} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {C45DD868-BB14-4478-B4FC-2700896B0468} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-08-24] ()
Task: {C5CFC46E-3A14-4C92-B895-647CA6B95F92} - System32\Tasks\{63460CC5-7B35-435F-9F54-AF8337F8491B} => pcalua.exe -a E:\Hry\Pokemine\Uninstal.exe
Task: {C682EEFF-20DA-4B75-B99B-431F39F58FAB} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {C778374C-94FE-41B0-B705-5FC952201AC0} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {CB56C1B0-F0F2-4A3C-9F2B-B815BE721689} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {D40A9080-5579-4EAE-AE36-2025EBF3CF0D} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2010-08-02] (ASUS)
Task: {DC6AD74F-0DE4-4E2A-827C-7DCC18688094} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe [2015-08-11] (Microsoft Corporation)
Task: {DD548504-31EE-43FF-A573-1E9BCB56DC76} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {E959E007-A71C-4952-8EA8-22DE146D6227} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {F0496437-71B1-4E96-9E9C-3BC2F52CDE46} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {F5299826-2A6D-4C24-8FEB-1BA75B172640} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {F6B3C342-F184-4819-9426-9C4F98E7BB9D} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8c087ab41d4a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-22] (Google Inc.)
Task: {F72C63E3-0988-4242-AC37-A10FBE7BA07D} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2010-11-15] (ASUS)
Task: {FACB8164-0888-403B-B4E6-7F59329EA90F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {FBC8485F-A585-489F-8E2C-C65FEABC1BEF} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {FFEE4F98-789F-4BC5-9EBF-91D4AC658C46} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf8c087ab41d4a.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0407cbb756b95.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2015-08-07 18:51 - 2015-08-07 18:51 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-09-02 15:52 - 2015-08-25 17:57 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-08-28 16:13 - 2015-08-18 09:56 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2010-07-15 01:11 - 2010-07-15 01:11 - 00031360 _____ () C:\Program Files\P4G\DevMng.dll
2010-04-03 04:21 - 2008-10-01 08:08 - 00011264 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2015-08-28 16:13 - 2015-08-18 09:56 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-07-10 12:59 - 2015-07-10 12:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-08-14 17:54 - 2015-08-03 03:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 13:00 - 2015-07-10 18:05 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-19 10:18 - 2015-08-11 10:58 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-14 17:54 - 2015-08-03 03:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 13:00 - 2015-07-10 18:05 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-06-01 21:00 - 2015-06-01 21:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll
2015-09-17 23:05 - 2015-09-17 23:05 - 03495936 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1509.14010.0_x64__8wekyb3d8bbwe\Calculator.exe
2015-09-24 17:09 - 2015-09-24 17:10 - 00012288 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.922.11070.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2015-09-24 17:09 - 2015-09-24 17:10 - 10807296 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.922.11070.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2015-09-24 11:38 - 2015-09-23 08:53 - 01908040 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.42\libglesv2.dll
2015-09-24 11:38 - 2015-09-23 08:53 - 00093512 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.42\libegl.dll
2015-08-31 14:36 - 2015-01-26 16:36 - 40622592 _____ () C:\Program Files (x86)\LSI\libcef.dll
2015-08-31 14:36 - 2015-08-31 14:36 - 00570947 _____ () C:\Program Files (x86)\LSI\sqlite3.dll
2012-05-24 21:19 - 2012-05-24 21:19 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2011-03-09 23:21 - 2011-03-09 23:21 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2014-10-01 17:48 - 2014-10-01 17:48 - 01163264 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\acAuth.dll
2013-05-20 11:02 - 2013-05-20 11:02 - 00016856 _____ () C:\Program Files (x86)\CyberLink\Power2Go9\CLMLSvcPS.dll
2015-08-31 14:36 - 2015-01-26 16:36 - 00911360 _____ () C:\Program Files (x86)\LSI\libglesv2.dll
2015-08-31 14:36 - 2015-01-26 16:36 - 00134144 _____ () C:\Program Files (x86)\LSI\libegl.dll
2015-08-31 14:36 - 2015-01-26 16:36 - 00950272 _____ () C:\Program Files (x86)\LSI\ffmpegsumo.dll
2014-10-31 20:29 - 2014-11-02 13:02 - 00003132 _____ () C:\Program Files (x86)\DAEMON Tools Pro\MSIMG32.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE restricted site: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\...\skype.com -> hxxps://apps.skype.com
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Kedar\Desktop\ZAD7Cis.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\windows\AsScrPro.exe
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: mnccaspjSrv => C:\windows\inf\mnccaspj.vbe
MSCONFIG\startupreg: mncfljlnSrv => C:\windows\system32\mncfljln.vbe
MSCONFIG\startupreg: MSStp => C:\windows\system32\msstp.vbe
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{9B74C372-DB15-461A-B46C-E50096B46FEA}] => (Allow) LPort=1688
FirewallRules: [{2675AF83-E7DF-461B-B504-753C11E6021E}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{F0EC060B-CA15-4515-940C-A7EA7831EA61}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{4FB3201A-0085-4ACB-A98F-E0E05D3D037E}] => (Allow) E:\Hry\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{ED54FEA6-7288-4C1E-95C9-CD1ECC63575F}] => (Allow) E:\Hry\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{F352C287-5C74-4153-8C2A-346EF35A1787}] => (Allow) C:\Program Files (x86)\Sony Mobile\Emma\Emma.exe
FirewallRules: [{BC6D53A0-C9AD-4467-9F0C-6952AAB11433}] => (Allow) C:\Program Files (x86)\Sony Mobile\Emma\Emma.exe
FirewallRules: [{7ED1B97F-ADCD-4BFA-8638-A00C5D9250D9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{69C0978D-F465-405E-BE40-78C22AE0C185}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{1AFBB746-430F-468F-874D-3164874723C2}] => (Allow) E:\Hry\Steam\SteamApps\common\Rise_of_Incarnates\exe\roi.exe
FirewallRules: [{C7684BEB-2D02-4055-9375-9C226652A81F}] => (Allow) E:\Hry\Steam\SteamApps\common\Rise_of_Incarnates\exe\roi.exe
FirewallRules: [{D1BE4EBF-C566-47BC-A41A-AC70A4CC748F}] => (Allow) E:\Hry\Steam\SteamApps\common\Star Trek Online\Star Trek Online.exe
FirewallRules: [{B3AC85D1-3009-411F-BA7E-888C9F59B766}] => (Allow) E:\Hry\Steam\SteamApps\common\Star Trek Online\Star Trek Online.exe
FirewallRules: [{DFD7A4A7-9BF1-4C3F-B6C8-41C90870C149}] => (Allow) E:\Hry\Battle.net\Battle.net.exe
FirewallRules: [{737CDED2-251E-410A-8C70-1E70B35B284F}] => (Allow) E:\Hry\Battle.net\Battle.net.exe
FirewallRules: [{DE3A5C27-3F21-4A0D-B29D-1C8BB438F909}] => (Allow) E:\Hry\Survarium\game\binaries\x86\survarium.exe
FirewallRules: [{B667811A-11B3-40AF-A01B-F71DE0A4B01A}] => (Allow) E:\Hry\Survarium\game\binaries\x86\survarium.exe
FirewallRules: [{D644B576-B24B-4A87-A70C-A458628E760C}] => (Allow) E:\Hry\Survarium\temp\survarium_updater.exe
FirewallRules: [{B62D726D-1AFC-4B7B-AE32-1908DACDC873}] => (Allow) E:\Hry\Survarium\temp\survarium_updater.exe
FirewallRules: [{797711F9-4822-4936-8C74-D27461B73333}] => (Allow) E:\Hry\Survarium\temp\survarium_updater.exe
FirewallRules: [{CD32D911-3746-4FDB-BFED-42CA0BD79BEE}] => (Allow) E:\Hry\Survarium\temp\survarium_updater.exe
FirewallRules: [{2465E4A7-92F5-4837-801F-BA8CB217117A}] => (Allow) E:\Hry\Survarium\temp\survarium_launcher.exe
FirewallRules: [{D3993D84-5204-4760-BB62-D55E84BF5C8D}] => (Allow) E:\Hry\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{0D0B85C8-8F60-4BD3-B3BC-4ABCBC20121A}] => (Allow) E:\Hry\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{B8AA0D4F-34C3-49B0-8E50-CE538A240997}] => (Allow) LPort=5000
FirewallRules: [{0DAFC252-B5D6-4F06-8730-868B44864F8D}] => (Allow) LPort=61096
FirewallRules: [{408DEA53-09CF-4889-BF2E-9C09D04B7181}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{2E994644-3396-458F-9EC5-D612892D80AD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{598A9E61-5CC5-4917-96E7-5F492E295156}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{F1801C69-438D-4F06-A946-CADE634AA6D2}] => (Allow) E:\Hry\Steam\SteamApps\common\Hazard Ops\UnrealEngine3\Binaries\Win32\InfernumLogin.exe
FirewallRules: [{79B53679-C978-4A82-86D2-9796F5EC0A95}] => (Allow) E:\Hry\Steam\SteamApps\common\Hazard Ops\UnrealEngine3\Binaries\Win32\InfernumLogin.exe
FirewallRules: [{288A201F-F63B-4487-9450-B6D463837234}] => (Allow) E:\Hry\Steam\SteamApps\common\CSNZ\Bin\cstrike-online.exe
FirewallRules: [{6BCCCAB1-B6DE-404C-9534-8B0A2078D72B}] => (Allow) E:\Hry\Steam\SteamApps\common\CSNZ\Bin\cstrike-online.exe
FirewallRules: [{9E9C75EF-8876-4C5F-864D-20F029E5FC8A}] => (Allow) LPort=41780
FirewallRules: [{21B7FE24-EA43-4E54-A328-A473D576A6C2}] => (Allow) E:\Hry\Assassin's Creed Brotherhood\ACBMP.exe
FirewallRules: [{8BF51832-A4E9-40BC-9701-66D6A4502D5D}] => (Allow) E:\Hry\Assassin's Creed Brotherhood\ACBMP.exe
FirewallRules: [{0A45C3B0-456E-4ED3-AD69-66C5F7F85364}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{B5F96D7F-F3F3-469E-905A-8CAD3F307A00}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{EB043C8B-19D3-4634-A2E3-0A57C3CE04E8}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{168CBEE4-AE9E-4E45-B3FD-6A1E671D5866}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{E2408EEB-DFA5-45D3-8735-DF3665F6A2C5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{4C0BC13C-2D0F-4D57-B28A-823A62543748}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{D710B6A6-223D-48F9-9584-029D0ACC03D9}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{C8C1B580-DDD4-445E-8CF7-730B263078E7}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{7A558F1E-05B6-4245-AF79-9B488D2FCB1C}] => (Allow) E:\Hry\Steam\SteamApps\common\Firefall\system\bin\FirefallClient.exe
FirewallRules: [{33E76313-6417-4D4A-8113-A8E81EC6CB57}] => (Allow) E:\Hry\Steam\SteamApps\common\Firefall\system\bin\FirefallClient.exe
FirewallRules: [{CFAD32F1-E34F-4C9F-B289-864515C1248C}] => (Allow) E:\Hry\Steam\SteamApps\common\Dizzel\Dizzel.exe
FirewallRules: [{16897F67-5368-4F75-A09F-4AAC7E22C02A}] => (Allow) E:\Hry\Steam\SteamApps\common\Dizzel\Dizzel.exe
FirewallRules: [{A4C7B5F5-9E59-4B99-9222-C8A0418A6945}] => (Allow) E:\Hry\Steam\SteamApps\common\TacticalIntervention\bin\tacint.exe
FirewallRules: [{B5CC52DF-2BAF-481D-AEA5-797781731C85}] => (Allow) E:\Hry\Steam\SteamApps\common\TacticalIntervention\bin\tacint.exe
FirewallRules: [{74DC8322-E344-423A-9D5E-0EFE255E2C6C}] => (Allow) C:\Program Files (x86)\Nero\KM\NMDllHost.exe
FirewallRules: [{5F04E0C9-8090-4F55-8F4E-EA6D4A2369BF}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [{BF194211-8E67-4B3E-96A7-0FE6AD41DDE2}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [{1637B59B-7FF9-4CFA-9D20-72563526D382}] => (Allow) E:\Hry\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{B35E79FA-4D76-49CB-AFCB-2800B5FF5DDC}] => (Allow) E:\Hry\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{1B9A5068-16D1-4984-B0C3-70F970020DC4}] => (Allow) E:\Hry\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{411A8847-6F59-42F5-8A2E-41DA6CC80AC7}] => (Allow) E:\Hry\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{8DAD9EBB-8DC1-489D-BFDB-8F51E541C55D}] => (Allow) E:\Hry\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{089C0668-4730-4E65-A2E6-2873974CC1C4}] => (Allow) E:\Hry\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{1D85AF4F-9D58-4647-88F5-5A3295EE8E7B}] => (Allow) E:\Hry\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{ECFFD95E-E837-406F-A7F9-C69E42B318A4}] => (Allow) E:\Hry\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{6AF869C1-9C82-4CEE-B685-0A13198790EF}] => (Allow) E:\Hry\Steam\bin\steamwebhelper.exe
FirewallRules: [{E1C9A896-0EB9-4429-9E9A-A95B8DFEF759}] => (Allow) E:\Hry\Steam\bin\steamwebhelper.exe
FirewallRules: [{86AC07D9-0AB6-4A18-B76E-B1B30E7203CF}] => (Allow) E:\Hry\Steam\SteamApps\common\raceroom racing experience\Game\RRRE.exe
FirewallRules: [{2DE487A7-F692-4C31-8D7B-3A40AB20A0B7}] => (Allow) E:\Hry\Steam\SteamApps\common\raceroom racing experience\Game\RRRE.exe
FirewallRules: [{0C81125E-6128-4B8F-92F1-2E0AD67A5897}] => (Allow) LPort=1900
FirewallRules: [{B126A94A-9B72-41B9-85F4-0F6B4FDF8C48}] => (Allow) LPort=2869
FirewallRules: [{1E3ACD3F-BD44-4E22-A925-4E413D9CC588}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{E7147BE4-7065-417D-85F0-354F63297C80}] => (Allow) E:\Hry\Steam\SteamApps\common\Warface\live\nw.exe
FirewallRules: [{E8D96C11-DB85-4AB6-873A-6F787690538A}] => (Allow) E:\Hry\Steam\SteamApps\common\Warface\live\nw.exe
FirewallRules: [{C6F14999-6307-48B8-A6D3-1672E5A749AF}] => (Allow) E:\Hry\Steam\SteamApps\common\theHunter\launcher\launcher.exe
FirewallRules: [{03287BFA-6AF7-4BA8-8798-0C1CFF543C94}] => (Allow) E:\Hry\Steam\SteamApps\common\theHunter\launcher\launcher.exe
FirewallRules: [{D5BDBC51-33FB-4793-BEFE-7A05A37CD933}] => (Allow) E:\Hry\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{59353A72-DC69-45D4-86A2-09F720F327AA}] => (Allow) E:\Hry\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{02A12D4C-89B4-4799-9B02-FECE06E509BD}] => (Allow) E:\Hry\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{FCAC061B-561E-46CA-A9EB-C2CBBC7BDA24}] => (Allow) E:\Hry\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{2F084736-5EB1-46CA-96A3-F202B016AA0B}] => (Allow) E:\Hry\Steam\Steam.exe
FirewallRules: [{8A1F0118-5EE4-4E49-8893-79CF80AA0E58}] => (Allow) E:\Hry\Steam\Steam.exe
FirewallRules: [{32412C59-6658-427D-ACA0-7526ECF8CAF1}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{3431ACA2-CF93-4C8C-9598-E0FC16F82927}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{7B950B23-4ED1-4753-86FF-9BC65D7E56EA}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{8F8DC8BD-8249-4EFF-B5CF-5A97211168A0}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{C38F9B0D-4E4C-44B4-9C23-4F0193FE874C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{3FF92CB6-7F25-4380-88BB-BA6F68AE6DA9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{9E4EB648-0ED1-4351-A8FD-330CE7697803}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{4CBF17F8-9FFC-4939-B01C-0E8AF483A087}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{32740511-060E-425E-B3EB-0E110B79EC35}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{9ABC6461-E5B3-4964-B2C8-962B412EE406}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{73960E7B-A9A7-4ECD-BD2A-D2F2D05C8592}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{234E38D0-425E-4189-B634-551562574E32}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{92CB28CF-A29E-46BB-8EB8-3AE1E8E82B79}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{C11D9928-1F7A-4E3E-BF38-E90C42C2BFE9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E744D126-5C7B-482E-8B64-4ECB6587E7AE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{871005B8-1821-47E2-9BD4-3B3AC7D142CB}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{1F055FEF-A640-4EA7-A697-A97B40712578}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{71E55BA7-F4D8-42B1-BC93-703661BF3604}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{D5805427-FE99-4485-A7BD-4501B71CB8A0}] => (Allow) %ProgramFiles% (x86)\Skype\Phone\Skype.exe
FirewallRules: [{6C1B3D6F-7641-4B81-8C42-94132FC19AB8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Faulty Device Manager Devices =============
Name: Logitech Cordless Device
Description: Logitech Cordless Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Logitech Cordless Device
Description: Logitech Cordless Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (09/27/2015 07:58:43 PM) (Source: Software Protection Platform Service) (EventID: 8212) (User: )
Description: Neúspěšné obnovení aktivačního období pro ID aplikace = 0ff1ce15-a989-479d-af46-f275c6370663, ID jednotky SKU = b322da9c-a2e2-4058-9e4e-f59a6970bd69. Zbývající počet obnovení aktivačního období: 0. Kód chyby: 0xC004D307
Error: (09/27/2015 07:58:43 PM) (Source: Software Protection Platform Service) (EventID: 8212) (User: )
Description: Neúspěšné obnovení aktivačního období pro ID aplikace = 0ff1ce15-a989-479d-af46-f275c6370663, ID jednotky SKU = 41499869-4103-4d3b-9da6-d07df41b6e39. Zbývající počet obnovení aktivačního období: 0. Kód chyby: 0xC004D307
Error: (09/27/2015 07:58:42 PM) (Source: Software Protection Platform Service) (EventID: 8212) (User: )
Description: Neúspěšné obnovení aktivačního období pro ID aplikace = 0ff1ce15-a989-479d-af46-f275c6370663, ID jednotky SKU = 1b686580-9fb1-4b88-bfba-eae7c0da31ad. Zbývající počet obnovení aktivačního období: 0. Kód chyby: 0xC004D307
Error: (09/27/2015 07:24:37 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (09/27/2015 07:00:53 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LoLSummonerInfo.exe verze 4.10.0.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.
ID procesu: 1bac
Čas spuštění: 01d0f94456c63baf
Čas ukončení: 1640
Cesta k aplikaci: C:\Program Files (x86)\LSI\LoLSummonerInfo.exe
ID hlášení: 4d85087f-6539-11e5-9bdd-5404a6034d5e
Úplný název balíčku s chybou:
ID aplikace související s balíčkem s chybou:
Error: (09/27/2015 06:49:39 PM) (Source: Software Protection Platform Service) (EventID: 8212) (User: )
Description: Neúspěšné obnovení aktivačního období pro ID aplikace = 0ff1ce15-a989-479d-af46-f275c6370663, ID jednotky SKU = 41499869-4103-4d3b-9da6-d07df41b6e39. Zbývající počet obnovení aktivačního období: 0. Kód chyby: 0xC004D307
System errors:
=============
Error: (09/27/2015 10:46:56 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: Při pokusu přistoupit k privátnímu klíči pověření SSL Server došlo k závažné chybě. Kód chyby vrácený kryptografickým modulem je 0x8009030d. Stav interní chyby je 10001.
Error: (09/27/2015 08:00:00 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: Při pokusu přistoupit k privátnímu klíči pověření SSL Server došlo k závažné chybě. Kód chyby vrácený kryptografickým modulem je 0x8009030d. Stav interní chyby je 10001.
Error: (09/27/2015 07:59:49 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici
Error: (09/27/2015 07:55:21 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Adaptér naslouchání Net.Tcp závisí na službě Služba sdílení portů Net.Tcp, která neuspěla při spuštění v důsledku následující chyby:
%%1058
Error: (09/27/2015 07:54:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Přístup k uživatelským datům_Session4 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (09/27/2015 07:54:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Úložiště uživatelských dat_Session4 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (09/27/2015 07:54:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Data kontaktů_Session4 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (09/27/2015 07:54:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_Session4 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (09/27/2015 07:46:26 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/27/2015 07:46:26 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
CodeIntegrity:
===================================
Date: 2015-09-14 16:01:31.303
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.
Date: 2015-09-14 16:01:31.164
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
Date: 2015-09-14 16:01:30.997
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.
Date: 2015-09-14 16:01:29.874
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.
Date: 2015-09-14 16:01:29.769
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
Date: 2015-09-14 16:01:29.673
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.
Date: 2015-09-14 16:01:27.028
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.
Date: 2015-09-14 16:01:23.944
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.
Date: 2015-09-14 15:43:13.521
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.
Date: 2015-09-14 15:43:13.366
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3-2310M CPU @ 2.10GHz
Percentage of memory in use: 63%
Total physical RAM: 4006.69 MB
Available physical RAM: 1446.89 MB
Total Virtual: 8102.69 MB
Available Virtual: 4682.47 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:200 GB) (Free:115.11 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive e: (DATA) (Fixed) (Total:240.66 GB) (Free:112.47 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or
(Size: 465.8 GB) (Disk ID: 2756CB74)Partition 1: (Not Active) - (Size=25 GB) - (Type=1C)
Partition 2: (Active) - (Size=100 MB) - (Type=27)
Partition 3: (Not Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=240.7 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
OS: Windows 10 Home (22H2) 64 bit
MB: ASUS PRIME X570-P
Procesor: AMD Ryzen 7 3700X
Grafika: MSI GeForce RTX 3060 Ti Gaming Z TRIO (8 GB)
RAM: 2x32 GB Kingston Fury Beast DDR4 3200MHz CL16
Zdroj: 750 W MSI MPG A750GF
SSD (OS): Kingston SSD A2000 500 GB
HDD: Seagate IronWolf 4 TB
SSD: 4 TB Samsung 870 EVO
Monitor: Dell S2721D
Case: Fractal Design Define S
MB: ASUS PRIME X570-P
Procesor: AMD Ryzen 7 3700X
Grafika: MSI GeForce RTX 3060 Ti Gaming Z TRIO (8 GB)
RAM: 2x32 GB Kingston Fury Beast DDR4 3200MHz CL16
Zdroj: 750 W MSI MPG A750GF
SSD (OS): Kingston SSD A2000 500 GB
HDD: Seagate IronWolf 4 TB
SSD: 4 TB Samsung 870 EVO
Monitor: Dell S2721D
Case: Fractal Design Define S
-
jerabina
- člen Security týmu
-
Level 6
- Příspěvky: 3647
- Registrován: březen 13
- Bydliště: Litoměřice
- Pohlaví:
- Stav:
Offline
Re: Automatické rovnaní ikon na ploše a ve všech složkách
Ty Windows jsou legální?
Přes Revo Uninstaller zkus odinstalovat tento program: Фотогалерия
Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).
Ulož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Přes Revo Uninstaller zkus odinstalovat tento program: Фотогалерия
Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
Kód: Vybrat vše
Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin HKU\S-1-5-21-1254521284-2832283178-1197838188-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\Kedar\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll No File
FF Plugin HKU\S-1-5-21-1254521284-2832283178-1197838188-1001: @talk.google.com/O1DPlugin -> C:\Users\Kedar\AppData\Roaming\Mozilla\plugins\npo1d.dll No File
FF Plugin HKU\S-1-5-21-1254521284-2832283178-1197838188-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll No File
FF Plugin HKU\S-1-5-21-1254521284-2832283178-1197838188-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll No File
FF Plugin HKU\S-1-5-21-1254521284-2832283178-1197838188-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Kedar\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll No File
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
CHR NewTab: Default -> "chrome-extension://dljbcjbfojhlfhgenhepllagfecdpchb/startpage/startpage.html"
CHR Extension: (Bing2Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgoehlfmhfafaiepckjikpphoklijedl [2015-09-01]
CHR Extension: (No Name) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-14]
CHR HKU\S-1-5-21-1254521284-2832283178-1197838188-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx
R2 KMS-R@1n; C:\Windows\KMS-R@1n.exe [22528 2015-08-08] () [File not signed]
U3 idsvc; no ImagePath
U3 wpcsvc; no ImagePath
C:\Windows\KMS-R@1n.exe
C:\WINDOWS\system32\KEDAR-PC_Kedar_HistoryPrediction.bin
C:\Users\Kedar\AppData\Local\ACCCx2_9_0_465.zip.aamdownload
C:\Users\Kedar\AppData\Local\ACCCx2_9_0_465.zip.aamdownload.aamd
C:\Users\Kedar\AppData\Local\ACCCx2_9_1_474.zip.aamdownload
C:\Users\Kedar\AppData\Local\ACCCx2_9_1_474.zip.aamdownload.aamd
C:\ProgramData\DP45977C.lfl
C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1254521284-2832283178-1197838188-1001_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Kedar\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
Task: {01C995FF-D178-4E7B-AC4A-9E950006A207} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {02AD410B-D844-4269-9F3F-6540CEB94D75} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {080C583E-7ADC-429F-B44F-CBD63791059C} - System32\Tasks\GoogleUpdateTaskMachineUA1d0407cbb756b95 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-22] (Google Inc.)
Task: {0837D897-84CB-4E30-A8DD-807937A81DFC} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {0F1FC558-90E6-41AA-8D37-4FBE69053762} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {148318FC-5974-4508-A415-B3AFD16E5DDB} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {1F99B6C3-A7D1-4D57-830C-8576539DA7C2} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {29308477-8F7E-4D4F-92D5-F1534E61B6F5} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {378B6684-2FBF-476D-8EB6-2E0E18887D31} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-21] (Adobe Systems Incorporated)
Task: {387D57B4-5FB7-4ACE-A66B-B4B60DE32EB5} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {3C9616B2-742C-4820-AFAE-F3D2459E9677} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {3D966D87-5FE5-4FBC-8E90-DB0F48E454DB} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {3E3E65EA-6693-4ACC-947D-206853F50D65} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {42145BE5-4059-431F-919A-1A381C5966DE} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {478D7BEB-9D44-4859-8E89-4F11851601C9} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {527766F1-F279-45FC-A410-8FAA7321BD72} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {596B6BF8-2D09-4D61-A59A-720BEDC1DFE9} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {6044BB7B-DA09-4F45-A374-2F53078DF853} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {6AAC9BC3-E557-41B2-9E6C-47EBA4159F18} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2011-08-31] (ASUSTeK Computer Inc.)
Task: {6FECF9BE-AED8-4627-80ED-91FF5361960F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {773492A6-4F08-4DAF-9C1B-778BC17ACAED} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {782A6D7A-A04C-480B-A387-FB67564261E4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {78588675-6CF3-4E50-B5B1-1EC34EAA2F6B} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {980A2E50-9E7F-4DC4-BA8A-2832BC435F39} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {AEF770AC-8386-47CE-92D2-C514D98FAB39} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {BBC724D8-3CB7-4585-9D0A-01233996390A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {BD8D5D43-9437-4517-83D7-43C5B72A1F1A} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {C5CFC46E-3A14-4C92-B895-647CA6B95F92} - System32\Tasks\{63460CC5-7B35-435F-9F54-AF8337F8491B} => pcalua.exe -a E:\Hry\Pokemine\Uninstal.exe
Task: {C682EEFF-20DA-4B75-B99B-431F39F58FAB} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {C778374C-94FE-41B0-B705-5FC952201AC0} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {CB56C1B0-F0F2-4A3C-9F2B-B815BE721689} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {DD548504-31EE-43FF-A573-1E9BCB56DC76} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {E959E007-A71C-4952-8EA8-22DE146D6227} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {F0496437-71B1-4E96-9E9C-3BC2F52CDE46} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {F5299826-2A6D-4C24-8FEB-1BA75B172640} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {F6B3C342-F184-4819-9426-9C4F98E7BB9D} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8c087ab41d4a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-22] (Google Inc.)
Task: {FACB8164-0888-403B-B4E6-7F59329EA90F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {FBC8485F-A585-489F-8E2C-C65FEABC1BEF} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {FFEE4F98-789F-4BC5-9EBF-91D4AC658C46} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf8c087ab41d4a.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0407cbb756b95.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
EmptyTemp:
End(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).
Ulož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 9 hostů