Dobrý den,
během minulého týdne mi Win defender zachytil několik hrozeb. Zaznamenal jsem také, že mi Firefox samovolně otvíral nová okna - sázkové portály. Včera defender zachytil další havěť:
1, Došlo k následující chybě: Kód chyby: 0x80508023 Program nenašel v tomto počítači malware ani jiný potenciálně nevyžádaný software. Kategorie: Trojský kůň Popis: Tento program je nebezpečný. Provádí příkazy zadané útočníkem. Doporučená akce: Ihned tento software odeberte. Položky: file:C:\Users\Lukáš\AppData\Local\Temp\B948FC90-C57F-46B6-87CE-D06F720FC4FF\liodsafbixona.ru_EU.exe
2, Kategorie: Program měnící nastavení prohlížeče Popis: Tento program bez souhlasu uživatele mění různá nastavení webového prohlížeče. Doporučená akce: Ihned tento software odeberte.Položky: file:C:\Users\Lukáš\AppData\Local\Temp\87040B58-A94F-440A-AF85-5031C4DA0E4C\ts_10051.exe
Prosím o kontrolu logu RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Lukáš at 2016-06-21 14:56:25
Microsoft Windows 10 Pro
System drive C: has 66 GB (58%) free of 114 GB
Total RAM: 3069 MB (35% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:56:44, on 21.6.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0420)
Boot mode: Normal
Running processes:
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\WINDOWS\Explorer.EXE
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\WINDOWS\System32\svchost.exe
C:\Windows\System32\SystemSettingsBroker.exe
C:\Program Files\Windows Defender\msascui.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.20961.0_x86__8wekyb3d8bbwe\Music.UI.exe
C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.20961.0_x86__8wekyb3d8bbwe\Video.UI.exe
C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.6965.57891.0_x86__8wekyb3d8bbwe\onenoteim.exe
C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_10.1605.1472.0_x86__8wekyb3d8bbwe\Time.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6868.41141.0_x86__8wekyb3d8bbwe\HxMail.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6868.41141.0_x86__8wekyb3d8bbwe\HxTsr.exe
C:\Program Files\Centrum Mail\MailClient.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\Lukáš\pracovni\RSIT.exe
C:\Program Files\trend micro\Lukáš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [NvBackend] "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
O4 - HKLM\..\Run: [ShadowPlay] "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap.dll,ShadowPlayOnSystemStart
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_x86_9691412ff1876250\aestsrv.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\WINDOWS\system32\mfevtps.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_x86_9691412ff1876250\STacSV.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
--
End of file - 5354 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\m66x8rjq.default
prefs.js - "browser.startup.homepage" - "about:newtab"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.192 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_22_0_0_192.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"=C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2016-01-12 2787264]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap.dll [2016-01-12 1542600]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2010-03-23 495708]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-03-30 3536064]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2016-05-13 6690008]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Codec Pack Update Checker]
C:\Windows\system32\Codecs\UpdateChecker.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2016-01-15 2690936]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfetdi2k]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfetdi2k.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-06-18 13:33:50 ----A---- C:\WINDOWS\system32\mfevtps.exe
2016-06-18 13:33:49 ----A---- C:\WINDOWS\system32\drivers\mferkdet.sys
2016-06-18 13:33:49 ----A---- C:\WINDOWS\system32\drivers\mfehidk.sys
2016-06-15 00:28:28 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-06-15 00:28:28 ----A---- C:\WINDOWS\system32\moshost.dll
2016-06-15 00:28:28 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-06-15 00:28:28 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-06-15 00:28:28 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-06-15 00:28:28 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-06-15 00:28:27 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-06-15 00:28:27 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-06-15 00:28:27 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-06-15 00:28:27 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-06-15 00:28:26 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-06-15 00:28:26 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-06-15 00:28:26 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-06-15 00:28:25 ----A---- C:\WINDOWS\system32\mos.dll
2016-06-15 00:28:18 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-06-15 00:28:16 ----A---- C:\WINDOWS\system32\tdlrecover.exe
2016-06-15 00:28:16 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-06-15 00:28:14 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-06-15 00:28:14 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-06-15 00:28:10 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-06-15 00:28:10 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-06-15 00:28:08 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-06-15 00:28:06 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-06-15 00:28:05 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-06-15 00:28:04 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-06-15 00:28:03 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-06-15 00:28:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-06-15 00:28:00 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-06-15 00:27:59 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-06-15 00:27:56 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-06-15 00:27:56 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-06-15 00:27:54 ----A---- C:\WINDOWS\system32\twinui.dll
2016-06-15 00:27:53 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-06-15 00:27:52 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-06-15 00:27:51 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-06-15 00:27:46 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-06-15 00:27:46 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-06-15 00:27:44 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2016-06-15 00:27:43 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-06-15 00:27:41 ----A---- C:\WINDOWS\system32\gpsvc.dll
2016-06-15 00:27:40 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-06-15 00:27:40 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2016-06-15 00:27:39 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-06-15 00:27:39 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-06-15 00:27:38 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2016-06-15 00:27:38 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-06-15 00:27:38 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2016-06-15 00:27:37 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2016-06-15 00:27:36 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-06-15 00:27:36 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-06-15 00:27:35 ----A---- C:\WINDOWS\system32\hal.dll
2016-06-15 00:27:35 ----A---- C:\WINDOWS\system32\AppContracts.dll
2016-06-15 00:27:34 ----A---- C:\WINDOWS\system32\halmacpi.dll
2016-06-15 00:27:26 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-06-15 00:27:24 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2016-06-15 00:27:24 ----A---- C:\WINDOWS\system32\setupapi.dll
2016-06-15 00:27:23 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-06-15 00:27:23 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-06-15 00:27:23 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-06-15 00:27:22 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-06-15 00:27:19 ----A---- C:\WINDOWS\system32\ws2_32.dll
2016-06-15 00:27:19 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-06-15 00:27:19 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-06-15 00:27:19 ----A---- C:\WINDOWS\explorer.exe
2016-06-15 00:27:18 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-06-15 00:27:18 ----A---- C:\WINDOWS\system32\rastls.dll
2016-06-15 00:27:18 ----A---- C:\WINDOWS\system32\invagent.dll
2016-06-15 00:27:17 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-06-15 00:27:17 ----A---- C:\WINDOWS\system32\gpprefcl.dll
2016-06-15 00:27:16 ----A---- C:\WINDOWS\system32\drivers\dumpsdport.sys
2016-06-15 00:27:14 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-06-15 00:27:13 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-06-15 00:27:13 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-06-15 00:27:13 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-06-15 00:27:12 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-06-15 00:27:12 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-06-15 00:27:12 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-06-15 00:27:12 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-06-15 00:27:12 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-06-15 00:27:11 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-06-15 00:27:11 ----A---- C:\WINDOWS\system32\ole32.dll
2016-06-15 00:27:11 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-06-15 00:27:10 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-06-15 00:27:09 ----A---- C:\WINDOWS\system32\usocore.dll
2016-06-15 00:27:09 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2016-06-15 00:27:09 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-06-15 00:27:08 ----A---- C:\WINDOWS\system32\wininet.dll
2016-06-15 00:27:08 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2016-06-15 00:27:08 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-06-15 00:27:08 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-06-15 00:27:07 ----A---- C:\WINDOWS\system32\mswsock.dll
2016-06-15 00:27:07 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-06-15 00:27:07 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2016-06-15 00:27:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-06-15 00:27:00 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2016-06-15 00:27:00 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-06-15 00:27:00 ----A---- C:\WINDOWS\system32\olepro32.dll
2016-06-15 00:26:59 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-06-15 00:26:59 ----A---- C:\WINDOWS\system32\IPSECSVC.DLL
2016-06-15 00:26:59 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2016-06-15 00:26:58 ----A---- C:\WINDOWS\system32\NetworkUXBroker.exe
2016-06-15 00:26:58 ----A---- C:\WINDOWS\system32\gpapi.dll
2016-06-15 00:26:58 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2016-06-15 00:26:58 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2016-06-15 00:26:58 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-06-15 00:26:57 ----A---- C:\WINDOWS\system32\SRH.dll
2016-06-15 00:26:57 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2016-06-15 00:26:57 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2016-06-15 00:26:57 ----A---- C:\WINDOWS\system32\devinv.dll
2016-06-15 00:26:57 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2016-06-15 00:26:56 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-06-15 00:26:56 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-06-15 00:26:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2016-06-15 00:26:56 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-06-15 00:26:56 ----A---- C:\WINDOWS\system32\polstore.dll
2016-06-15 00:26:56 ----A---- C:\WINDOWS\system32\drivers\ufx01000.sys
2016-06-15 00:26:55 ----A---- C:\WINDOWS\system32\newdev.dll
2016-06-15 00:26:55 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-06-15 00:26:55 ----A---- C:\WINDOWS\system32\gpscript.dll
2016-06-15 00:26:55 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-06-15 00:26:55 ----A---- C:\WINDOWS\system32\BrokerLib.dll
2016-06-15 00:26:54 ----A---- C:\WINDOWS\system32\vpnike.dll
2016-06-15 00:26:54 ----A---- C:\WINDOWS\system32\internetmail.dll
2016-06-15 00:26:54 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-06-15 00:26:53 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2016-06-15 00:26:53 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-06-15 00:26:53 ----A---- C:\WINDOWS\system32\GnssAdapter.dll
2016-06-15 00:26:53 ----A---- C:\WINDOWS\system32\cdd.dll
2016-06-15 00:26:52 ----A---- C:\WINDOWS\system32\httpprxm.dll
2016-06-15 00:26:52 ----A---- C:\WINDOWS\system32\drivers\Ndu.sys
2016-06-15 00:26:52 ----A---- C:\WINDOWS\system32\adhsvc.dll
2016-06-15 00:26:51 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-06-15 00:26:51 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2016-06-15 00:26:51 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2016-06-15 00:26:50 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-06-15 00:26:50 ----A---- C:\WINDOWS\system32\httpprxp.dll
2016-06-15 00:26:50 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-06-15 00:26:49 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-06-15 00:26:49 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-06-15 00:26:49 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2016-06-15 00:26:48 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-06-15 00:26:48 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-06-15 00:26:48 ----A---- C:\WINDOWS\system32\FwRemoteSvr.dll
2016-06-15 00:26:44 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-06-15 00:26:43 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2016-06-15 00:26:43 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-06-15 00:26:40 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-06-15 00:26:40 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-06-15 00:26:39 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-06-15 00:26:38 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-06-15 00:26:37 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2016-06-15 00:26:36 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-06-07 01:40:56 ----AD---- C:\Program Files\HWiNFO32
2016-06-01 23:19:55 ----D---- C:\Users\Lukáš\AppData\Roaming\HD Tune Pro
======List of files/folders modified in the last 1 month======
2016-06-21 14:56:41 ----D---- C:\Program Files\trend micro
2016-06-21 14:56:26 ----D---- C:\WINDOWS\Prefetch
2016-06-21 14:39:00 ----D---- C:\WINDOWS\system32\sru
2016-06-21 14:36:56 ----D---- C:\Users\Lukáš\AppData\Roaming\Centrum Mail
2016-06-21 14:36:38 ----D---- C:\WINDOWS\Temp
2016-06-20 21:50:48 ----D---- C:\WINDOWS\Microsoft.NET
2016-06-18 19:42:10 ----D---- C:\WINDOWS\AppReadiness
2016-06-18 16:31:45 ----D---- C:\WINDOWS\rescache
2016-06-18 16:24:41 ----D---- C:\WINDOWS\system32\config
2016-06-18 13:46:30 ----D---- C:\FRST
2016-06-18 13:39:46 ----RD---- C:\Program Files
2016-06-18 13:34:15 ----D---- C:\Windows
2016-06-18 13:33:52 ----D---- C:\WINDOWS\system32\drivers
2016-06-18 13:33:50 ----AD---- C:\WINDOWS\System32
2016-06-18 13:27:35 ----D---- C:\WINDOWS\INF
2016-06-18 13:27:35 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-18 11:48:48 ----D---- C:\WINDOWS\WinSxS
2016-06-18 11:14:41 ----D---- C:\WINDOWS\CbsTemp
2016-06-18 11:14:04 ----SHD---- C:\System Volume Information
2016-06-17 19:14:19 ----HD---- C:\Program Files\WindowsApps
2016-06-15 22:40:51 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2016-06-15 16:00:12 ----D---- C:\WINDOWS\system32\DriverStore
2016-06-15 15:54:24 ----D---- C:\WINDOWS\system32\catroot2
2016-06-15 01:35:51 ----D---- C:\WINDOWS\debug
2016-06-15 01:35:02 ----D---- C:\Program Files\Mozilla Maintenance Service
2016-06-15 01:32:24 ----SD---- C:\WINDOWS\system32\DiagSvcs
2016-06-15 01:32:24 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-06-15 01:32:24 ----D---- C:\WINDOWS\system32\cs-CZ
2016-06-15 01:32:23 ----D---- C:\WINDOWS\bcastdvr
2016-06-15 01:32:23 ----D---- C:\WINDOWS\apppatch
2016-06-15 01:32:23 ----D---- C:\Program Files\Internet Explorer
2016-06-15 01:32:22 ----D---- C:\WINDOWS\system32\migration
2016-06-15 01:24:58 ----D---- C:\WINDOWS\system32\MRT
2016-06-15 01:19:34 ----A---- C:\WINDOWS\system32\MRT.exe
2016-06-14 20:33:01 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2016-06-13 23:38:10 ----SHD---- C:\WINDOWS\Installer
2016-06-12 14:34:47 ----D---- C:\Users\Lukáš\AppData\Roaming\Audacity
2016-06-11 13:31:24 ----AD---- C:\Program Files\Mozilla Firefox
2016-06-09 15:58:52 ----D---- C:\WINDOWS\LiveKernelReports
2016-06-09 01:46:57 ----D---- C:\WINDOWS\SoftwareDistribution
2016-06-09 00:01:53 ----D---- C:\Program Files\Motorola
2016-06-09 00:00:48 ----HD---- C:\Program Files\InstallShield Installation Information
2016-06-09 00:00:47 ----D---- C:\Program Files\Common Files
2016-06-09 00:00:41 ----D---- C:\Program Files\Motorola Mobility
2016-06-09 00:00:37 ----D---- C:\WINDOWS\system32\Tasks
2016-06-02 19:53:04 ----HD---- C:\ProgramData
2016-06-01 14:43:32 ----A---- C:\Users\Lukáš\AppData\Roaming\burnaware.ini
2016-05-27 18:20:20 ----D---- C:\WINDOWS\system32\WDI
2016-05-27 17:49:33 ----D---- C:\WINDOWS\system32\LogFiles
2016-05-27 16:36:26 ----D---- C:\WINDOWS\System
2016-05-27 16:36:25 ----A---- C:\WINDOWS\system32\typelib.dll
2016-05-27 16:36:25 ----A---- C:\WINDOWS\system32\storage.dll
2016-05-27 16:36:25 ----A---- C:\WINDOWS\system32\ole2nls.dll
2016-05-27 16:36:25 ----A---- C:\WINDOWS\system32\ole2disp.dll
2016-05-27 16:36:25 ----A---- C:\WINDOWS\system32\ole2.dll
2016-05-27 16:36:25 ----A---- C:\WINDOWS\system32\compobj.dll
2016-05-27 16:36:22 ----A---- C:\WINDOWS\system32\win.com
2016-05-27 16:36:22 ----A---- C:\WINDOWS\system32\ver.dll
2016-05-27 16:36:22 ----A---- C:\WINDOWS\system32\USER.EXE
2016-05-27 16:36:22 ----A---- C:\WINDOWS\system32\TOOLHELP.DLL
2016-05-27 16:36:22 ----A---- C:\WINDOWS\system32\pmspl.dll
2016-05-27 16:36:22 ----A---- C:\WINDOWS\system32\OLESVR.DLL
2016-05-27 16:36:22 ----A---- C:\WINDOWS\system32\ntvdmd.dll
2016-05-27 16:36:22 ----A---- C:\WINDOWS\system32\mem.exe
2016-05-27 16:36:22 ----A---- C:\WINDOWS\system32\lzexpand.dll
2016-05-27 16:36:22 ----A---- C:\WINDOWS\system32\KB16.COM
2016-05-27 16:36:22 ----A---- C:\WINDOWS\system32\GRAPHICS.COM
2016-05-27 16:36:22 ----A---- C:\WINDOWS\system32\GDI.EXE
2016-05-27 16:36:22 ----A---- C:\WINDOWS\system32\edit.com
2016-05-27 16:36:22 ----A---- C:\WINDOWS\system32\debug.exe
2016-05-27 16:36:21 ----A---- C:\WINDOWS\winhelp.exe
2016-05-27 16:36:21 ----A---- C:\WINDOWS\system32\WIFEMAN.DLL
2016-05-27 16:36:21 ----A---- C:\WINDOWS\system32\sysedit.exe
2016-05-27 16:36:21 ----A---- C:\WINDOWS\system32\SHELL.DLL
2016-05-27 16:36:21 ----A---- C:\WINDOWS\system32\setver.exe
2016-05-27 16:36:21 ----A---- C:\WINDOWS\system32\ntvdm.exe
2016-05-27 16:36:21 ----A---- C:\WINDOWS\system32\graftabl.com
2016-05-27 16:36:21 ----A---- C:\WINDOWS\system32\DRWATSON.EXE
2016-05-27 16:36:21 ----A---- C:\WINDOWS\system32\DDEML.DLL
2016-05-27 16:36:21 ----A---- C:\WINDOWS\system32\COMMDLG.DLL
2016-05-27 16:36:21 ----A---- C:\WINDOWS\system32\COMMAND.COM
2016-05-27 16:36:20 ----A---- C:\WINDOWS\system32\WINNLS.DLL
2016-05-27 16:36:20 ----A---- C:\WINDOWS\system32\win87em.dll
2016-05-27 16:36:20 ----A---- C:\WINDOWS\system32\vdmredir.dll
2016-05-27 16:36:20 ----A---- C:\WINDOWS\system32\olecli.dll
2016-05-27 16:36:20 ----A---- C:\WINDOWS\system32\nlsfunc.exe
2016-05-27 16:36:20 ----A---- C:\WINDOWS\system32\netapi.dll
2016-05-27 16:36:20 ----A---- C:\WINDOWS\system32\MMSYSTEM.DLL
2016-05-27 16:36:20 ----A---- C:\WINDOWS\system32\krnl386.exe
2016-05-27 16:36:20 ----A---- C:\WINDOWS\system32\exe2bin.exe
2016-05-27 16:36:20 ----A---- C:\WINDOWS\system32\edlin.exe
2016-05-27 16:36:20 ----A---- C:\WINDOWS\system32\dosx.exe
2016-05-27 16:36:20 ----A---- C:\WINDOWS\system32\ctl3dv2.dll
2016-05-27 16:36:20 ----A---- C:\WINDOWS\system32\append.exe
2016-05-24 21:07:34 ----D---- C:\ProgramData\AVAST Software
2016-05-24 21:04:50 ----D---- C:\WINDOWS\system32\Microsoft
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2016-06-18 648552]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\system32\drivers\HWiNFO32.SYS [2016-06-07 23840]
R1 MpKsl524fe8cc;MpKsl524fe8cc; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{50CA6D3B-6535-482D-A7AD-FBBC0ED2C112}\MpKsl524fe8cc.sys [2016-06-20 39168]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 athr;@netathr.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athwn.sys [2015-10-30 3205632]
R3 dtlitescsibus;@oem3.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2016-01-20 26168]
R3 dtliteusbbus;@oem9.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2016-01-20 40504]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-01-19 130560]
R3 NVHDA;@oem63.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda32v.sys [2016-01-29 162592]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2016-01-29 10718264]
R3 nvvad_WaveExtensible;@oem10.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad32v.sys [2015-12-18 42128]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-10-30 494080]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2016-03-30 44216]
R3 STHDA;@oem2.inf,%ST.DeviceDesc%;IDT High Definition Audio CODEC; C:\WINDOWS\system32\DRIVERS\stwrt.sys [2010-03-23 423424]
R3 SynTP;@oem65.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2016-03-30 472240]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 BthA2DP;@wdma_bt.inf,%BthA2DP.SvcDesc%;Bluetooth stereo; C:\WINDOWS\system32\drivers\BthA2DP.sys [2015-10-30 125440]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-05-28 93184]
S3 BthHFAud;@wdma_bt.inf,%DISPLAY_NAME%;Bluetooth handsfree; C:\WINDOWS\system32\DRIVERS\BthHfAud.sys [2015-10-30 28672]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 102912]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-05-28 744448]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-05-28 61952]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-01-19 96768]
S3 dg_ssudbus;@oem23.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-04-25 108032]
S3 EsgScanner;EsgScanner; C:\WINDOWS\system32\DRIVERS\EsgScanner.sys [2016-03-04 19984]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
S3 mferkdet;McAfee Inc. mferkdet; C:\WINDOWS\system32\drivers\mferkdet.sys [2016-06-18 91840]
S3 motandroidusb;@oem18.inf,%motandroidusb.SvcDesc%;Mot ADB Interface Driver; C:\WINDOWS\System32\Drivers\motoandroid.sys []
S3 MotDev;@oem12.inf,%MotDev.DeviceDesc%;Motorola Inc. USB Device; C:\WINDOWS\system32\DRIVERS\motodrv.sys []
S3 motmodem;Motorola USB CDC ACM Driver; C:\WINDOWS\system32\DRIVERS\motmodem.sys []
S3 motport;Motorola USB Diagnostic Port; C:\WINDOWS\system32\DRIVERS\motport.sys []
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-03-29 140288]
S3 ssudmdm;@oem24.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-04-25 199936]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2016-04-23 46080]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 33792]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 32768]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2016-05-28 203104]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 74080]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2016-04-23 104800]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AESTFilters;Andrea ST Filters Service; C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_x86_9691412ff1876250\aestsrv.exe [2009-03-02 81920]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-01-12 929728]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\WINDOWS\system32\mfevtps.exe [2016-06-18 238288]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-01-19 25088]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2016-01-29 678968]
R2 OneSyncSvc_12abe86;Hostitel synchronizace_12abe86; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 STacSV;Audio Service; C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_x86_9691412ff1876250\STacSV.exe [2010-03-23 229458]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2016-03-30 227504]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R3 PimIndexMaintenanceSvc_12abe86;Data kontaktů_12abe86; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_1f1a03;Hostitel synchronizace_1f1a03; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_34453;Hostitel synchronizace_34453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_384bd;Hostitel synchronizace_384bd; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3d3f8;Hostitel synchronizace_3d3f8; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2016-03-23 327808]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-17 270016]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-10-30 45752]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2016-01-15 1082232]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_12abe86;Služba zasílání zpráv_12abe86; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_1f1a03;Služba zasílání zpráv_1f1a03; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_34453;Služba zasílání zpráv_34453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_384bd;Služba zasílání zpráv_384bd; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3d3f8;Služba zasílání zpráv_3d3f8; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-11 146888]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_1f1a03;Data kontaktů_1f1a03; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_34453;Data kontaktů_34453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_384bd;Data kontaktů_384bd; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3d3f8;Data kontaktů_3d3f8; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 NvNetworkService;NVIDIA Network Service; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-01-12 1879488]
S4 NvStreamNetworkSvc;NVIDIA Streamer Network Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2016-01-12 5178816]
S4 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-01-12 3996608]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
Děkuji.
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
win defender hlásí hozby
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: win defender hlásí hozby
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: win defender hlásí hozby
# AdwCleaner v5.200 - Log vytvořen 21/06/2016 v 15:52:34
# Aktualizováno 14/06/2016 by ToolsLib
# Databáze : 2016-06-20.3 [Server]
# Operační system : Windows 10 Pro (X86)
# Uživatelské jméno : Lukáš - ARTHUR
# Spuštěno z : C:\Users\Lukáš\Desktop\adwcleaner_5.200.exe
# Nastavení : Čištění
# Podpora : https://toolslib.net/forum
***** [ Služby ] *****
***** [ Složky ] *****
***** [ Soubory ] *****
***** [ DLLs ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč Smazáno : HKCU\Software\c58fac33970206a5d627515eec6cd936
[-] Klíč Smazáno : HKCU\Software\IM
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíče smazány
:: Nastavení Winsock vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [872 bytů] - [21/06/2016 15:52:34]
C:\AdwCleaner\AdwCleaner[S1].txt - [988 bytů] - [21/06/2016 15:50:09]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1016 bytů] ##########
# Aktualizováno 14/06/2016 by ToolsLib
# Databáze : 2016-06-20.3 [Server]
# Operační system : Windows 10 Pro (X86)
# Uživatelské jméno : Lukáš - ARTHUR
# Spuštěno z : C:\Users\Lukáš\Desktop\adwcleaner_5.200.exe
# Nastavení : Čištění
# Podpora : https://toolslib.net/forum
***** [ Služby ] *****
***** [ Složky ] *****
***** [ Soubory ] *****
***** [ DLLs ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč Smazáno : HKCU\Software\c58fac33970206a5d627515eec6cd936
[-] Klíč Smazáno : HKCU\Software\IM
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíče smazány
:: Nastavení Winsock vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [872 bytů] - [21/06/2016 15:52:34]
C:\AdwCleaner\AdwCleaner[S1].txt - [988 bytů] - [21/06/2016 15:50:09]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1016 bytů] ##########
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: win defender hlásí hozby
Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: win defender hlásí hozby
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 19-06-2016 01
Ran by Lukáš (administrator) on ARTHUR (21-06-2016 17:14:45)
Running from C:\Users\Lukáš\pracovni
Loaded Profiles: Lukáš (Available Profiles: Lukáš & DefaultAppPool)
Platform: Microsoft Windows 10 Pro Version 1511 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_9691412ff1876250\stacsv.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_9691412ff1876250\AEstSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.20961.0_x86__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.20961.0_x86__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.6965.57891.0_x86__8wekyb3d8bbwe\onenoteim.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
() C:\Program Files\Centrum Mail\MailClient.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-12] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [495708 2010-03-23] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3536064 2016-03-30] (Synaptics Incorporated)
HKU\S-1-5-21-965863407-1755937283-685925022-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6690008 2016-05-13] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{8dd0fa26-991f-468b-b0c6-8ccf089f2077}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{df6545da-ceee-4d53-9fd7-dd02431ca7f9}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Internet Explorer:
==================
FireFox:
========
FF ProfilePath: C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\m66x8rjq.default
FF Homepage: about:newtab
FF Session Restore: -> is enabled.
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-06-17] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\m66x8rjq.default\user.js [2016-05-19]
FF Extension: Download YouTube Videos as MP4 - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\m66x8rjq.default\Extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi [2016-04-19]
FF Extension: Adblock Plus - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\m66x8rjq.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-29]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AESTFilters; C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_x86_9691412ff1876250\aestsrv.exe [81920 2009-03-02] (Andrea Electronics Corporation)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1082232 2016-01-15] (Disc Soft Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [929728 2016-01-12] (NVIDIA Corporation)
R2 mfevtp; C:\WINDOWS\system32\mfevtps.exe [238288 2016-06-18] (McAfee, Inc.)
S4 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-12] (NVIDIA Corporation)
S4 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [5178816 2016-01-12] (NVIDIA Corporation)
S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [3996608 2016-01-12] (NVIDIA Corporation)
R2 STacSV; C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_x86_9691412ff1876250\STacSV.exe [229458 2010-03-23] (IDT, Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [227504 2016-03-30] (Synaptics Incorporated)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23256 2015-10-30] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 athr; C:\WINDOWS\System32\drivers\athwn.sys [3205632 2015-10-30] (Qualcomm Atheros Communications, Inc.)
S3 BthA2DP; C:\WINDOWS\system32\drivers\BthA2DP.sys [125440 2015-10-30] (Microsoft Corporation)
S3 BthHFAud; C:\WINDOWS\system32\DRIVERS\BthHfAud.sys [28672 2015-10-30] (Microsoft Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [108032 2016-04-25] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [26168 2016-01-20] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [40504 2016-01-20] (Disc Soft Ltd)
S3 EsgScanner; C:\WINDOWS\System32\DRIVERS\EsgScanner.sys [19984 2016-03-04] ()
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2016-06-07] (REALiX(tm))
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [648552 2016-06-18] (McAfee, Inc.)
S3 mferkdet; C:\WINDOWS\System32\drivers\mferkdet.sys [91840 2016-06-18] (McAfee, Inc.)
R1 MpKsl524fe8cc; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{50CA6D3B-6535-482D-A7AD-FBBC0ED2C112}\MpKsl524fe8cc.sys [39168 2016-06-20] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [42128 2015-12-18] (NVIDIA Corporation)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2015-10-30] (Realtek )
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [44216 2016-03-30] (Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [199936 2016-04-25] (Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
S3 motandroidusb; \SystemRoot\System32\Drivers\motoandroid.sys [X]
S3 MotDev; \SystemRoot\system32\DRIVERS\motodrv.sys [X]
S3 motmodem; \SystemRoot\system32\DRIVERS\motmodem.sys [X]
S3 motport; \SystemRoot\system32\DRIVERS\motport.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-06-21 15:49 - 2016-06-21 15:52 - 00000000 ____D C:\AdwCleaner
2016-06-21 15:48 - 2016-06-21 15:49 - 03703360 _____ C:\Users\Lukáš\Desktop\adwcleaner_5.200.exe
2016-06-18 13:33 - 2016-06-18 13:33 - 00648552 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfehidk.sys
2016-06-18 13:33 - 2016-06-18 13:33 - 00238288 _____ (McAfee, Inc.) C:\WINDOWS\system32\mfevtps.exe
2016-06-18 13:33 - 2016-06-18 13:33 - 00091840 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mferkdet.sys
2016-06-18 13:26 - 2016-06-18 13:26 - 16564549 _____ C:\Users\Lukáš\Downloads\stinger32-epo.zip
2016-06-15 22:09 - 2016-06-15 22:09 - 00232724 _____ C:\Users\Lukáš\Downloads\zdravotni_dotaznik_2016(1).pdf
2016-06-15 22:02 - 2016-06-15 22:02 - 00232724 _____ C:\Users\Lukáš\Downloads\zdravotni_dotaznik_2016.pdf
2016-06-15 22:01 - 2016-06-15 22:01 - 00201851 _____ C:\Users\Lukáš\Downloads\prihlaska_tabor_2016.pdf
2016-06-15 21:26 - 2016-06-15 21:26 - 00216462 _____ C:\Users\Lukáš\Downloads\Přihláška_soustredeni_DS_pro_novacky.pdf
2016-06-15 21:26 - 2016-06-15 21:26 - 00171284 _____ C:\Users\Lukáš\Downloads\Bezinfekcnost_DS_pro_novacky.pdf
2016-06-15 00:28 - 2016-05-28 08:05 - 01232576 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-06-15 00:28 - 2016-05-28 08:05 - 00042688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-06-15 00:28 - 2016-05-28 07:07 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-06-15 00:28 - 2016-05-28 06:57 - 00546456 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-06-15 00:28 - 2016-05-28 06:57 - 00316256 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-06-15 00:28 - 2016-05-28 06:31 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-06-15 00:28 - 2016-05-28 06:31 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-06-15 00:28 - 2016-05-28 06:27 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-06-15 00:28 - 2016-05-28 06:25 - 00037376 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-06-15 00:28 - 2016-05-28 06:23 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-06-15 00:28 - 2016-05-28 06:22 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-06-15 00:28 - 2016-05-28 06:22 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-06-15 00:28 - 2016-05-28 06:20 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-06-15 00:28 - 2016-05-28 06:18 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-06-15 00:28 - 2016-05-28 06:16 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-06-15 00:28 - 2016-05-28 06:15 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-06-15 00:28 - 2016-05-28 06:14 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-06-15 00:28 - 2016-05-28 06:12 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-06-15 00:28 - 2016-05-28 06:11 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-06-15 00:28 - 2016-05-28 06:11 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-06-15 00:28 - 2016-05-28 06:11 - 00612352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-06-15 00:28 - 2016-05-28 06:11 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-06-15 00:28 - 2016-05-28 06:08 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-06-15 00:28 - 2016-05-28 06:06 - 12128256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-06-15 00:28 - 2016-05-28 06:03 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-06-15 00:28 - 2016-05-28 06:03 - 01800704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-06-15 00:28 - 2016-05-28 06:02 - 01896960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-06-15 00:28 - 2016-05-28 06:00 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-06-15 00:27 - 2016-05-28 08:05 - 00249536 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-06-15 00:27 - 2016-05-28 08:05 - 00081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-06-15 00:27 - 2016-05-28 07:25 - 05797216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-06-15 00:27 - 2016-05-28 07:25 - 04268880 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2016-06-15 00:27 - 2016-05-28 07:25 - 00354656 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2016-06-15 00:27 - 2016-05-28 07:25 - 00354656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-06-15 00:27 - 2016-05-28 07:23 - 00388384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-06-15 00:27 - 2016-05-28 07:22 - 00317280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-06-15 00:27 - 2016-05-28 07:09 - 00501600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-06-15 00:27 - 2016-05-28 07:08 - 00260960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-06-15 00:27 - 2016-05-28 07:07 - 02921880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-06-15 00:27 - 2016-05-28 07:07 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-06-15 00:27 - 2016-05-28 07:06 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-06-15 00:27 - 2016-05-28 07:06 - 00613120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-06-15 00:27 - 2016-05-28 07:06 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-06-15 00:27 - 2016-05-28 07:04 - 00505136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-06-15 00:27 - 2016-05-28 07:04 - 00139616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-06-15 00:27 - 2016-05-28 07:04 - 00097096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-06-15 00:27 - 2016-05-28 06:57 - 02195632 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-06-15 00:27 - 2016-05-28 06:57 - 01714528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-06-15 00:27 - 2016-05-28 06:57 - 01396592 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-06-15 00:27 - 2016-05-28 06:57 - 00521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-06-15 00:27 - 2016-05-28 06:57 - 00484192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-06-15 00:27 - 2016-05-28 06:31 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2016-06-15 00:27 - 2016-05-28 06:31 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsdport.sys
2016-06-15 00:27 - 2016-05-28 06:24 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-06-15 00:27 - 2016-05-28 06:22 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2016-06-15 00:27 - 2016-05-28 06:19 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-06-15 00:27 - 2016-05-28 06:18 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-06-15 00:27 - 2016-05-28 06:18 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2016-06-15 00:27 - 2016-05-28 06:17 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-06-15 00:27 - 2016-05-28 06:17 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-06-15 00:27 - 2016-05-28 06:16 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-06-15 00:27 - 2016-05-28 06:15 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2016-06-15 00:27 - 2016-05-28 06:15 - 00535040 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2016-06-15 00:27 - 2016-05-28 06:15 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-06-15 00:27 - 2016-05-28 06:14 - 18674176 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-06-15 00:27 - 2016-05-28 06:14 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-06-15 00:27 - 2016-05-28 06:14 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-06-15 00:27 - 2016-05-28 06:14 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-06-15 00:27 - 2016-05-28 06:13 - 00604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-06-15 00:27 - 2016-05-28 06:13 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2016-06-15 00:27 - 2016-05-28 06:13 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-06-15 00:27 - 2016-05-28 06:13 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-06-15 00:27 - 2016-05-28 06:12 - 00614400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-06-15 00:27 - 2016-05-28 06:12 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-06-15 00:27 - 2016-05-28 06:11 - 01445888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-06-15 00:27 - 2016-05-28 06:11 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-06-15 00:27 - 2016-05-28 06:11 - 00740352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-06-15 00:27 - 2016-05-28 06:11 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-06-15 00:27 - 2016-05-28 06:11 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-06-15 00:27 - 2016-05-28 06:08 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-06-15 00:27 - 2016-05-28 06:06 - 03196928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-06-15 00:27 - 2016-05-28 06:05 - 03664896 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-06-15 00:27 - 2016-05-28 06:04 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-06-15 00:27 - 2016-05-28 06:03 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-06-15 00:27 - 2016-05-28 06:03 - 02974208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-06-15 00:27 - 2016-05-28 06:03 - 01733632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-06-15 00:27 - 2016-05-28 06:03 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2016-06-15 00:27 - 2016-05-28 06:02 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-06-15 00:27 - 2016-05-28 06:01 - 02880512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-06-15 00:27 - 2016-05-28 06:01 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-06-15 00:27 - 2016-05-28 06:01 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-06-15 00:27 - 2016-05-28 06:01 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-06-15 00:27 - 2016-05-28 06:01 - 01193984 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-06-15 00:27 - 2016-05-28 06:00 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-06-15 00:27 - 2016-05-28 06:00 - 02230272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-06-15 00:27 - 2016-05-28 06:00 - 01900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-06-15 00:27 - 2016-05-28 05:56 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-06-15 00:26 - 2016-05-28 08:05 - 00973504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-06-15 00:26 - 2016-05-28 08:05 - 00440512 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-06-15 00:26 - 2016-05-28 07:25 - 00173920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-06-15 00:26 - 2016-05-28 07:25 - 00096096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-06-15 00:26 - 2016-05-28 07:18 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-06-15 00:26 - 2016-05-28 07:10 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.exe
2016-06-15 00:26 - 2016-05-28 07:09 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-06-15 00:26 - 2016-05-28 07:08 - 00203104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
2016-06-15 00:26 - 2016-05-28 07:04 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-06-15 00:26 - 2016-05-28 07:04 - 00111608 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2016-06-15 00:26 - 2016-05-28 06:25 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-06-15 00:26 - 2016-05-28 06:25 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-06-15 00:26 - 2016-05-28 06:24 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-06-15 00:26 - 2016-05-28 06:24 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
2016-06-15 00:26 - 2016-05-28 06:22 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-06-15 00:26 - 2016-05-28 06:22 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-06-15 00:26 - 2016-05-28 06:21 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-06-15 00:26 - 2016-05-28 06:21 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.dll
2016-06-15 00:26 - 2016-05-28 06:20 - 00180736 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-06-15 00:26 - 2016-05-28 06:20 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ndu.sys
2016-06-15 00:26 - 2016-05-28 06:20 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-06-15 00:26 - 2016-05-28 06:20 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-06-15 00:26 - 2016-05-28 06:20 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2016-06-15 00:26 - 2016-05-28 06:19 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-06-15 00:26 - 2016-05-28 06:19 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2016-06-15 00:26 - 2016-05-28 06:19 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2016-06-15 00:26 - 2016-05-28 06:18 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-06-15 00:26 - 2016-05-28 06:18 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrokerLib.dll
2016-06-15 00:26 - 2016-05-28 06:17 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2016-06-15 00:26 - 2016-05-28 06:17 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-06-15 00:26 - 2016-05-28 06:17 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\GnssAdapter.dll
2016-06-15 00:26 - 2016-05-28 06:17 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-06-15 00:26 - 2016-05-28 06:17 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2016-06-15 00:26 - 2016-05-28 06:16 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-06-15 00:26 - 2016-05-28 06:16 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
2016-06-15 00:26 - 2016-05-28 06:16 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-06-15 00:26 - 2016-05-28 06:15 - 00527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-06-15 00:26 - 2016-05-28 06:15 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-06-15 00:26 - 2016-05-28 06:15 - 00293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2016-06-15 00:26 - 2016-05-28 06:14 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-06-15 00:26 - 2016-05-28 06:14 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-06-15 00:26 - 2016-05-28 06:14 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-06-15 00:26 - 2016-05-28 06:12 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-06-15 00:26 - 2016-05-28 06:11 - 01152000 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-06-15 00:26 - 2016-05-28 06:11 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-06-15 00:26 - 2016-05-28 06:11 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-06-15 00:26 - 2016-05-28 06:10 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-06-15 00:26 - 2016-05-28 06:09 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-06-15 00:26 - 2016-05-28 06:04 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-06-15 00:26 - 2016-05-28 06:03 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2016-06-15 00:26 - 2016-05-28 06:03 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-06-15 00:26 - 2016-05-28 06:02 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-06-15 00:26 - 2016-05-28 06:01 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-06-15 00:26 - 2016-05-28 06:00 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-06-15 00:26 - 2016-05-28 05:54 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-06-07 01:40 - 2016-06-07 01:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO32
2016-06-07 01:40 - 2016-06-07 01:40 - 00000000 ____D C:\Program Files\HWiNFO32
2016-06-01 23:19 - 2016-06-01 23:19 - 00000000 ____D C:\Users\Lukáš\AppData\Roaming\HD Tune Pro
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-06-21 17:14 - 2016-05-19 20:54 - 00000000 ____D C:\FRST
2016-06-21 17:14 - 2016-03-07 21:04 - 00000000 ____D C:\Users\Lukáš\pracovni
2016-06-21 17:14 - 2014-09-13 04:40 - 00000000 ____D C:\Users\Lukáš\AppData\Roaming\Centrum Mail
2016-06-21 17:04 - 2016-02-11 01:29 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-06-21 16:31 - 2016-01-21 16:25 - 00000000 ____D C:\Users\Lukáš\AppData\LocalLow\Temp
2016-06-21 15:54 - 2016-01-19 17:26 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-06-21 15:53 - 2015-10-30 07:13 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-06-21 14:56 - 2016-05-19 14:35 - 00000000 ____D C:\Program Files\trend micro
2016-06-21 02:26 - 2016-05-14 19:18 - 00000000 ____D C:\Users\Lukáš\AppData\Local\CrashDumps
2016-06-18 19:42 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-06-18 16:31 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\rescache
2016-06-18 13:27 - 2016-01-19 17:06 - 01996112 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-18 13:27 - 2015-10-30 17:08 - 00830550 _____ C:\WINDOWS\system32\perfh005.dat
2016-06-18 13:27 - 2015-10-30 17:08 - 00185322 _____ C:\WINDOWS\system32\perfc005.dat
2016-06-18 13:27 - 2015-10-30 07:47 - 00000000 ____D C:\WINDOWS\INF
2016-06-18 11:14 - 2015-10-30 07:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-06-17 19:14 - 2015-10-30 07:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-16 15:42 - 2015-06-05 21:22 - 00000000 ____D C:\Users\Lukáš\Documents\VirtualDJ
2016-06-15 23:23 - 2014-04-27 22:16 - 00000000 ____D C:\Users\Lukáš\Kancl
2016-06-15 22:40 - 2014-04-27 00:12 - 00400040 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-06-15 21:02 - 2016-01-19 17:07 - 00000000 ____D C:\Users\Lukáš
2016-06-15 01:42 - 2016-01-19 18:05 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-06-15 01:35 - 2016-01-19 16:59 - 00225080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-06-15 01:35 - 2014-05-26 22:04 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-06-15 01:32 - 2015-10-30 07:48 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-06-15 01:32 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-06-15 01:32 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-06-15 01:24 - 2014-04-27 03:41 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-06-15 01:19 - 2014-04-27 03:41 - 139785240 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-06-14 20:33 - 2015-10-30 07:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-06-14 20:33 - 2015-10-30 07:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-06-13 23:37 - 2015-07-15 16:47 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-06-12 14:34 - 2014-04-27 23:20 - 00000000 ____D C:\Users\Lukáš\AppData\Roaming\Audacity
2016-06-11 13:31 - 2016-02-11 00:42 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-06-09 15:58 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-06-09 01:45 - 2016-05-20 21:00 - 00000000 ____D C:\Users\Lukáš\Documents\CCleaner - zalohy - registry
2016-06-09 00:01 - 2014-10-13 22:41 - 00000000 ____D C:\Program Files\Motorola
2016-06-09 00:00 - 2016-02-17 00:46 - 00000000 ____D C:\Program Files\Motorola Mobility
2016-06-09 00:00 - 2014-04-27 00:17 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2016-06-07 01:41 - 2015-09-08 22:51 - 00023840 _____ (REALiX(tm)) C:\WINDOWS\system32\Drivers\HWiNFO32.SYS
2016-06-01 14:43 - 2014-04-27 22:52 - 00000903 _____ C:\Users\Lukáš\AppData\Roaming\burnaware.ini
2016-06-01 12:52 - 2016-04-10 03:30 - 00000564 __RSH C:\ProgramData\ntuser.pol
2016-05-28 21:45 - 2016-02-27 19:24 - 00000000 ____D C:\Users\Lukáš\AppData\Local\Windows Live
2016-05-27 16:36 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\System
2016-05-27 16:36 - 2015-10-30 07:44 - 00534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00256192 _____ (Microsoft Corporation) C:\WINDOWS\winhelp.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00221600 _____ (Microsoft Corporation) C:\WINDOWS\system32\lanman.drv
2016-05-27 16:36 - 2015-10-30 07:44 - 00177856 _____ (Microsoft Corporation) C:\WINDOWS\system32\typelib.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00169520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole2disp.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00153008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole2nls.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00127213 _____ C:\WINDOWS\system32\ega.cpi
2016-05-27 16:36 - 2015-10-30 07:44 - 00108464 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00092320 _____ (Microsoft Corporation) C:\WINDOWS\system32\krnl386.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\olecli.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system\olecli.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00069886 _____ C:\WINDOWS\system32\edit.com
2016-05-27 16:36 - 2015-10-30 07:44 - 00068992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMSYSTEM.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00068992 _____ (Microsoft Corporation) C:\WINDOWS\system\MMSYSTEM.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\graftabl.com
2016-05-27 16:36 - 2015-10-30 07:44 - 00053600 _____ C:\WINDOWS\system32\dosx.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00050648 _____ C:\WINDOWS\system32\COMMAND.COM
2016-05-27 16:36 - 2015-10-30 07:44 - 00047840 _____ (Microsoft Corporation) C:\WINDOWS\system32\USER.EXE
2016-05-27 16:36 - 2015-10-30 07:44 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmspl.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00042809 _____ C:\WINDOWS\system32\KEY01.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00042592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole2.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00042537 _____ C:\WINDOWS\system32\KEYBOARD.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDEML.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00039274 _____ C:\WINDOWS\system32\mem.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00035776 _____ C:\WINDOWS\system32\NTIO411.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00035552 _____ C:\WINDOWS\system32\NTIO412.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00034688 _____ C:\WINDOWS\system32\NTIO804.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00034688 _____ C:\WINDOWS\system32\NTIO404.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00033968 _____ C:\WINDOWS\system32\NTIO.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\COMMDLG.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00032816 _____ (Microsoft Corporation) C:\WINDOWS\system\COMMDLG.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00029370 _____ C:\WINDOWS\system32\NTDOS411.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00029274 _____ C:\WINDOWS\system32\NTDOS412.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00029146 _____ C:\WINDOWS\system32\NTDOS804.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00029146 _____ C:\WINDOWS\system32\NTDOS404.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00028420 _____ C:\WINDOWS\system32\bios1.rom
2016-05-27 16:36 - 2015-10-30 07:44 - 00028112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DRWATSON.EXE
2016-05-27 16:36 - 2015-10-30 07:44 - 00027866 _____ C:\WINDOWS\system32\NTDOS.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00027792 _____ (Microsoft Corporation) C:\WINDOWS\system32\compobj.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00027200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ctl3dv2.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00027097 _____ C:\WINDOWS\system32\country.sys
2016-05-27 16:36 - 2015-10-30 07:44 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\GDI.EXE
2016-05-27 16:36 - 2015-10-30 07:44 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\OLESVR.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system\OLESVR.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdmredir.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00021232 _____ C:\WINDOWS\system32\graphics.pro
2016-05-27 16:36 - 2015-10-30 07:44 - 00020634 _____ C:\WINDOWS\system32\debug.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00019694 _____ C:\WINDOWS\system32\GRAPHICS.COM
2016-05-27 16:36 - 2015-10-30 07:44 - 00018896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysedit.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00018832 _____ C:\WINDOWS\system32\v7vga.rom
2016-05-27 16:36 - 2015-10-30 07:44 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdmd.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00014710 _____ C:\WINDOWS\system32\KB16.COM
2016-05-27 16:36 - 2015-10-30 07:44 - 00013888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TOOLHELP.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00013312 _____ C:\WINDOWS\system32\win87em.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00012704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFWNET.DRV
2016-05-27 16:36 - 2015-10-30 07:44 - 00012704 _____ (Microsoft Corporation) C:\WINDOWS\system\WFWNET.DRV
2016-05-27 16:36 - 2015-10-30 07:44 - 00012642 _____ C:\WINDOWS\system32\edlin.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00012498 _____ C:\WINDOWS\system32\append.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00011753 _____ C:\WINDOWS\system32\setver.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00010790 _____ C:\WINDOWS\system32\EDIT.HLP
2016-05-27 16:36 - 2015-10-30 07:44 - 00010544 _____ (Microsoft Corporation) C:\WINDOWS\system32\COMM.drv
2016-05-27 16:36 - 2015-10-30 07:44 - 00009936 _____ (Microsoft Corporation) C:\WINDOWS\system32\lzexpand.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00009936 _____ (Microsoft Corporation) C:\WINDOWS\system\lzexpand.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WIFEMAN.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00009029 _____ C:\WINDOWS\system32\ANSI.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00009008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ver.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00009008 _____ (Microsoft Corporation) C:\WINDOWS\system\ver.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00008424 _____ C:\WINDOWS\system32\exe2bin.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00008191 _____ C:\WINDOWS\system32\bios4.rom
2016-05-27 16:36 - 2015-10-30 07:44 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win.com
2016-05-27 16:36 - 2015-10-30 07:44 - 00007052 _____ C:\WINDOWS\system32\nlsfunc.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00005532 _____ (Microsoft Corporation) C:\WINDOWS\system\stdole.tlb
2016-05-27 16:36 - 2015-10-30 07:44 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WINNLS.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHELL.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system\SHELL.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00004768 _____ C:\WINDOWS\system32\HIMEM.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00004208 _____ (Microsoft Corporation) C:\WINDOWS\system32\storage.dll
2016-05-25 20:48 - 2016-05-20 20:55 - 00001034 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-05-24 21:07 - 2014-04-27 01:07 - 00000000 ____D C:\ProgramData\AVAST Software
==================== Files in the root of some directories =======
2014-06-12 16:10 - 2014-06-13 01:16 - 0000551 _____ () C:\Users\Lukáš\AppData\Roaming\AutoGK.ini
2014-04-27 22:52 - 2016-06-01 14:43 - 0000903 _____ () C:\Users\Lukáš\AppData\Roaming\burnaware.ini
2002-08-29 18:33 - 2002-08-29 18:33 - 0319488 ____R () C:\Users\Lukáš\AppData\Roaming\MafiaSetup.exe
2016-03-09 00:09 - 2016-03-09 00:09 - 0000017 _____ () C:\Users\Lukáš\AppData\Local\resmon.resmoncfg
Some files in TEMP:
====================
C:\Users\Lukáš\AppData\Local\Temp\libeay32.dll
C:\Users\Lukáš\AppData\Local\Temp\msvcr120.dll
C:\Users\Lukáš\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-06-15 01:15
==================== End of FRST.txt ============================
Ran by Lukáš (administrator) on ARTHUR (21-06-2016 17:14:45)
Running from C:\Users\Lukáš\pracovni
Loaded Profiles: Lukáš (Available Profiles: Lukáš & DefaultAppPool)
Platform: Microsoft Windows 10 Pro Version 1511 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_9691412ff1876250\stacsv.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_9691412ff1876250\AEstSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.20961.0_x86__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.20961.0_x86__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.6965.57891.0_x86__8wekyb3d8bbwe\onenoteim.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
() C:\Program Files\Centrum Mail\MailClient.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-12] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [495708 2010-03-23] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3536064 2016-03-30] (Synaptics Incorporated)
HKU\S-1-5-21-965863407-1755937283-685925022-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6690008 2016-05-13] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{8dd0fa26-991f-468b-b0c6-8ccf089f2077}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{df6545da-ceee-4d53-9fd7-dd02431ca7f9}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Internet Explorer:
==================
FireFox:
========
FF ProfilePath: C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\m66x8rjq.default
FF Homepage: about:newtab
FF Session Restore: -> is enabled.
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-06-17] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\m66x8rjq.default\user.js [2016-05-19]
FF Extension: Download YouTube Videos as MP4 - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\m66x8rjq.default\Extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi [2016-04-19]
FF Extension: Adblock Plus - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\m66x8rjq.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-29]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AESTFilters; C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_x86_9691412ff1876250\aestsrv.exe [81920 2009-03-02] (Andrea Electronics Corporation)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1082232 2016-01-15] (Disc Soft Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [929728 2016-01-12] (NVIDIA Corporation)
R2 mfevtp; C:\WINDOWS\system32\mfevtps.exe [238288 2016-06-18] (McAfee, Inc.)
S4 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-12] (NVIDIA Corporation)
S4 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [5178816 2016-01-12] (NVIDIA Corporation)
S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [3996608 2016-01-12] (NVIDIA Corporation)
R2 STacSV; C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_x86_9691412ff1876250\STacSV.exe [229458 2010-03-23] (IDT, Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [227504 2016-03-30] (Synaptics Incorporated)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23256 2015-10-30] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 athr; C:\WINDOWS\System32\drivers\athwn.sys [3205632 2015-10-30] (Qualcomm Atheros Communications, Inc.)
S3 BthA2DP; C:\WINDOWS\system32\drivers\BthA2DP.sys [125440 2015-10-30] (Microsoft Corporation)
S3 BthHFAud; C:\WINDOWS\system32\DRIVERS\BthHfAud.sys [28672 2015-10-30] (Microsoft Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [108032 2016-04-25] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [26168 2016-01-20] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [40504 2016-01-20] (Disc Soft Ltd)
S3 EsgScanner; C:\WINDOWS\System32\DRIVERS\EsgScanner.sys [19984 2016-03-04] ()
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2016-06-07] (REALiX(tm))
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [648552 2016-06-18] (McAfee, Inc.)
S3 mferkdet; C:\WINDOWS\System32\drivers\mferkdet.sys [91840 2016-06-18] (McAfee, Inc.)
R1 MpKsl524fe8cc; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{50CA6D3B-6535-482D-A7AD-FBBC0ED2C112}\MpKsl524fe8cc.sys [39168 2016-06-20] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [42128 2015-12-18] (NVIDIA Corporation)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2015-10-30] (Realtek )
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [44216 2016-03-30] (Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [199936 2016-04-25] (Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
S3 motandroidusb; \SystemRoot\System32\Drivers\motoandroid.sys [X]
S3 MotDev; \SystemRoot\system32\DRIVERS\motodrv.sys [X]
S3 motmodem; \SystemRoot\system32\DRIVERS\motmodem.sys [X]
S3 motport; \SystemRoot\system32\DRIVERS\motport.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-06-21 15:49 - 2016-06-21 15:52 - 00000000 ____D C:\AdwCleaner
2016-06-21 15:48 - 2016-06-21 15:49 - 03703360 _____ C:\Users\Lukáš\Desktop\adwcleaner_5.200.exe
2016-06-18 13:33 - 2016-06-18 13:33 - 00648552 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfehidk.sys
2016-06-18 13:33 - 2016-06-18 13:33 - 00238288 _____ (McAfee, Inc.) C:\WINDOWS\system32\mfevtps.exe
2016-06-18 13:33 - 2016-06-18 13:33 - 00091840 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mferkdet.sys
2016-06-18 13:26 - 2016-06-18 13:26 - 16564549 _____ C:\Users\Lukáš\Downloads\stinger32-epo.zip
2016-06-15 22:09 - 2016-06-15 22:09 - 00232724 _____ C:\Users\Lukáš\Downloads\zdravotni_dotaznik_2016(1).pdf
2016-06-15 22:02 - 2016-06-15 22:02 - 00232724 _____ C:\Users\Lukáš\Downloads\zdravotni_dotaznik_2016.pdf
2016-06-15 22:01 - 2016-06-15 22:01 - 00201851 _____ C:\Users\Lukáš\Downloads\prihlaska_tabor_2016.pdf
2016-06-15 21:26 - 2016-06-15 21:26 - 00216462 _____ C:\Users\Lukáš\Downloads\Přihláška_soustredeni_DS_pro_novacky.pdf
2016-06-15 21:26 - 2016-06-15 21:26 - 00171284 _____ C:\Users\Lukáš\Downloads\Bezinfekcnost_DS_pro_novacky.pdf
2016-06-15 00:28 - 2016-05-28 08:05 - 01232576 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-06-15 00:28 - 2016-05-28 08:05 - 00042688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-06-15 00:28 - 2016-05-28 07:07 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-06-15 00:28 - 2016-05-28 06:57 - 00546456 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-06-15 00:28 - 2016-05-28 06:57 - 00316256 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-06-15 00:28 - 2016-05-28 06:31 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-06-15 00:28 - 2016-05-28 06:31 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-06-15 00:28 - 2016-05-28 06:27 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-06-15 00:28 - 2016-05-28 06:25 - 00037376 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-06-15 00:28 - 2016-05-28 06:23 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-06-15 00:28 - 2016-05-28 06:22 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-06-15 00:28 - 2016-05-28 06:22 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-06-15 00:28 - 2016-05-28 06:20 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-06-15 00:28 - 2016-05-28 06:18 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-06-15 00:28 - 2016-05-28 06:16 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-06-15 00:28 - 2016-05-28 06:15 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-06-15 00:28 - 2016-05-28 06:14 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-06-15 00:28 - 2016-05-28 06:12 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-06-15 00:28 - 2016-05-28 06:11 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-06-15 00:28 - 2016-05-28 06:11 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-06-15 00:28 - 2016-05-28 06:11 - 00612352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-06-15 00:28 - 2016-05-28 06:11 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-06-15 00:28 - 2016-05-28 06:08 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-06-15 00:28 - 2016-05-28 06:06 - 12128256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-06-15 00:28 - 2016-05-28 06:03 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-06-15 00:28 - 2016-05-28 06:03 - 01800704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-06-15 00:28 - 2016-05-28 06:02 - 01896960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-06-15 00:28 - 2016-05-28 06:00 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-06-15 00:27 - 2016-05-28 08:05 - 00249536 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-06-15 00:27 - 2016-05-28 08:05 - 00081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-06-15 00:27 - 2016-05-28 07:25 - 05797216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-06-15 00:27 - 2016-05-28 07:25 - 04268880 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2016-06-15 00:27 - 2016-05-28 07:25 - 00354656 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2016-06-15 00:27 - 2016-05-28 07:25 - 00354656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-06-15 00:27 - 2016-05-28 07:23 - 00388384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-06-15 00:27 - 2016-05-28 07:22 - 00317280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-06-15 00:27 - 2016-05-28 07:09 - 00501600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-06-15 00:27 - 2016-05-28 07:08 - 00260960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-06-15 00:27 - 2016-05-28 07:07 - 02921880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-06-15 00:27 - 2016-05-28 07:07 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-06-15 00:27 - 2016-05-28 07:06 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-06-15 00:27 - 2016-05-28 07:06 - 00613120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-06-15 00:27 - 2016-05-28 07:06 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-06-15 00:27 - 2016-05-28 07:04 - 00505136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-06-15 00:27 - 2016-05-28 07:04 - 00139616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-06-15 00:27 - 2016-05-28 07:04 - 00097096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-06-15 00:27 - 2016-05-28 06:57 - 02195632 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-06-15 00:27 - 2016-05-28 06:57 - 01714528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-06-15 00:27 - 2016-05-28 06:57 - 01396592 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-06-15 00:27 - 2016-05-28 06:57 - 00521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-06-15 00:27 - 2016-05-28 06:57 - 00484192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-06-15 00:27 - 2016-05-28 06:31 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2016-06-15 00:27 - 2016-05-28 06:31 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsdport.sys
2016-06-15 00:27 - 2016-05-28 06:24 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-06-15 00:27 - 2016-05-28 06:22 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2016-06-15 00:27 - 2016-05-28 06:19 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-06-15 00:27 - 2016-05-28 06:18 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-06-15 00:27 - 2016-05-28 06:18 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2016-06-15 00:27 - 2016-05-28 06:17 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-06-15 00:27 - 2016-05-28 06:17 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-06-15 00:27 - 2016-05-28 06:16 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-06-15 00:27 - 2016-05-28 06:15 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2016-06-15 00:27 - 2016-05-28 06:15 - 00535040 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2016-06-15 00:27 - 2016-05-28 06:15 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-06-15 00:27 - 2016-05-28 06:14 - 18674176 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-06-15 00:27 - 2016-05-28 06:14 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-06-15 00:27 - 2016-05-28 06:14 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-06-15 00:27 - 2016-05-28 06:14 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-06-15 00:27 - 2016-05-28 06:13 - 00604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-06-15 00:27 - 2016-05-28 06:13 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2016-06-15 00:27 - 2016-05-28 06:13 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-06-15 00:27 - 2016-05-28 06:13 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-06-15 00:27 - 2016-05-28 06:12 - 00614400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-06-15 00:27 - 2016-05-28 06:12 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-06-15 00:27 - 2016-05-28 06:11 - 01445888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-06-15 00:27 - 2016-05-28 06:11 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-06-15 00:27 - 2016-05-28 06:11 - 00740352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-06-15 00:27 - 2016-05-28 06:11 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-06-15 00:27 - 2016-05-28 06:11 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-06-15 00:27 - 2016-05-28 06:08 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-06-15 00:27 - 2016-05-28 06:06 - 03196928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-06-15 00:27 - 2016-05-28 06:05 - 03664896 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-06-15 00:27 - 2016-05-28 06:04 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-06-15 00:27 - 2016-05-28 06:03 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-06-15 00:27 - 2016-05-28 06:03 - 02974208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-06-15 00:27 - 2016-05-28 06:03 - 01733632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-06-15 00:27 - 2016-05-28 06:03 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2016-06-15 00:27 - 2016-05-28 06:02 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-06-15 00:27 - 2016-05-28 06:01 - 02880512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-06-15 00:27 - 2016-05-28 06:01 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-06-15 00:27 - 2016-05-28 06:01 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-06-15 00:27 - 2016-05-28 06:01 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-06-15 00:27 - 2016-05-28 06:01 - 01193984 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-06-15 00:27 - 2016-05-28 06:00 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-06-15 00:27 - 2016-05-28 06:00 - 02230272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-06-15 00:27 - 2016-05-28 06:00 - 01900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-06-15 00:27 - 2016-05-28 05:56 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-06-15 00:26 - 2016-05-28 08:05 - 00973504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-06-15 00:26 - 2016-05-28 08:05 - 00440512 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-06-15 00:26 - 2016-05-28 07:25 - 00173920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-06-15 00:26 - 2016-05-28 07:25 - 00096096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-06-15 00:26 - 2016-05-28 07:18 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-06-15 00:26 - 2016-05-28 07:10 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.exe
2016-06-15 00:26 - 2016-05-28 07:09 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-06-15 00:26 - 2016-05-28 07:08 - 00203104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
2016-06-15 00:26 - 2016-05-28 07:04 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-06-15 00:26 - 2016-05-28 07:04 - 00111608 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2016-06-15 00:26 - 2016-05-28 06:25 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-06-15 00:26 - 2016-05-28 06:25 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-06-15 00:26 - 2016-05-28 06:24 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-06-15 00:26 - 2016-05-28 06:24 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
2016-06-15 00:26 - 2016-05-28 06:22 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-06-15 00:26 - 2016-05-28 06:22 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-06-15 00:26 - 2016-05-28 06:21 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-06-15 00:26 - 2016-05-28 06:21 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.dll
2016-06-15 00:26 - 2016-05-28 06:20 - 00180736 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-06-15 00:26 - 2016-05-28 06:20 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ndu.sys
2016-06-15 00:26 - 2016-05-28 06:20 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-06-15 00:26 - 2016-05-28 06:20 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-06-15 00:26 - 2016-05-28 06:20 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2016-06-15 00:26 - 2016-05-28 06:19 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-06-15 00:26 - 2016-05-28 06:19 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2016-06-15 00:26 - 2016-05-28 06:19 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2016-06-15 00:26 - 2016-05-28 06:18 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-06-15 00:26 - 2016-05-28 06:18 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrokerLib.dll
2016-06-15 00:26 - 2016-05-28 06:17 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2016-06-15 00:26 - 2016-05-28 06:17 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-06-15 00:26 - 2016-05-28 06:17 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\GnssAdapter.dll
2016-06-15 00:26 - 2016-05-28 06:17 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-06-15 00:26 - 2016-05-28 06:17 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2016-06-15 00:26 - 2016-05-28 06:16 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-06-15 00:26 - 2016-05-28 06:16 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
2016-06-15 00:26 - 2016-05-28 06:16 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-06-15 00:26 - 2016-05-28 06:15 - 00527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-06-15 00:26 - 2016-05-28 06:15 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-06-15 00:26 - 2016-05-28 06:15 - 00293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2016-06-15 00:26 - 2016-05-28 06:14 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-06-15 00:26 - 2016-05-28 06:14 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-06-15 00:26 - 2016-05-28 06:14 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-06-15 00:26 - 2016-05-28 06:12 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-06-15 00:26 - 2016-05-28 06:11 - 01152000 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-06-15 00:26 - 2016-05-28 06:11 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-06-15 00:26 - 2016-05-28 06:11 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-06-15 00:26 - 2016-05-28 06:10 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-06-15 00:26 - 2016-05-28 06:09 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-06-15 00:26 - 2016-05-28 06:04 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-06-15 00:26 - 2016-05-28 06:03 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2016-06-15 00:26 - 2016-05-28 06:03 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-06-15 00:26 - 2016-05-28 06:02 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-06-15 00:26 - 2016-05-28 06:01 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-06-15 00:26 - 2016-05-28 06:00 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-06-15 00:26 - 2016-05-28 05:54 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-06-07 01:40 - 2016-06-07 01:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO32
2016-06-07 01:40 - 2016-06-07 01:40 - 00000000 ____D C:\Program Files\HWiNFO32
2016-06-01 23:19 - 2016-06-01 23:19 - 00000000 ____D C:\Users\Lukáš\AppData\Roaming\HD Tune Pro
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-06-21 17:14 - 2016-05-19 20:54 - 00000000 ____D C:\FRST
2016-06-21 17:14 - 2016-03-07 21:04 - 00000000 ____D C:\Users\Lukáš\pracovni
2016-06-21 17:14 - 2014-09-13 04:40 - 00000000 ____D C:\Users\Lukáš\AppData\Roaming\Centrum Mail
2016-06-21 17:04 - 2016-02-11 01:29 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-06-21 16:31 - 2016-01-21 16:25 - 00000000 ____D C:\Users\Lukáš\AppData\LocalLow\Temp
2016-06-21 15:54 - 2016-01-19 17:26 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-06-21 15:53 - 2015-10-30 07:13 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-06-21 14:56 - 2016-05-19 14:35 - 00000000 ____D C:\Program Files\trend micro
2016-06-21 02:26 - 2016-05-14 19:18 - 00000000 ____D C:\Users\Lukáš\AppData\Local\CrashDumps
2016-06-18 19:42 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-06-18 16:31 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\rescache
2016-06-18 13:27 - 2016-01-19 17:06 - 01996112 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-18 13:27 - 2015-10-30 17:08 - 00830550 _____ C:\WINDOWS\system32\perfh005.dat
2016-06-18 13:27 - 2015-10-30 17:08 - 00185322 _____ C:\WINDOWS\system32\perfc005.dat
2016-06-18 13:27 - 2015-10-30 07:47 - 00000000 ____D C:\WINDOWS\INF
2016-06-18 11:14 - 2015-10-30 07:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-06-17 19:14 - 2015-10-30 07:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-16 15:42 - 2015-06-05 21:22 - 00000000 ____D C:\Users\Lukáš\Documents\VirtualDJ
2016-06-15 23:23 - 2014-04-27 22:16 - 00000000 ____D C:\Users\Lukáš\Kancl
2016-06-15 22:40 - 2014-04-27 00:12 - 00400040 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-06-15 21:02 - 2016-01-19 17:07 - 00000000 ____D C:\Users\Lukáš
2016-06-15 01:42 - 2016-01-19 18:05 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-06-15 01:35 - 2016-01-19 16:59 - 00225080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-06-15 01:35 - 2014-05-26 22:04 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-06-15 01:32 - 2015-10-30 07:48 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-06-15 01:32 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-06-15 01:32 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-06-15 01:24 - 2014-04-27 03:41 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-06-15 01:19 - 2014-04-27 03:41 - 139785240 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-06-14 20:33 - 2015-10-30 07:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-06-14 20:33 - 2015-10-30 07:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-06-13 23:37 - 2015-07-15 16:47 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-06-12 14:34 - 2014-04-27 23:20 - 00000000 ____D C:\Users\Lukáš\AppData\Roaming\Audacity
2016-06-11 13:31 - 2016-02-11 00:42 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-06-09 15:58 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-06-09 01:45 - 2016-05-20 21:00 - 00000000 ____D C:\Users\Lukáš\Documents\CCleaner - zalohy - registry
2016-06-09 00:01 - 2014-10-13 22:41 - 00000000 ____D C:\Program Files\Motorola
2016-06-09 00:00 - 2016-02-17 00:46 - 00000000 ____D C:\Program Files\Motorola Mobility
2016-06-09 00:00 - 2014-04-27 00:17 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2016-06-07 01:41 - 2015-09-08 22:51 - 00023840 _____ (REALiX(tm)) C:\WINDOWS\system32\Drivers\HWiNFO32.SYS
2016-06-01 14:43 - 2014-04-27 22:52 - 00000903 _____ C:\Users\Lukáš\AppData\Roaming\burnaware.ini
2016-06-01 12:52 - 2016-04-10 03:30 - 00000564 __RSH C:\ProgramData\ntuser.pol
2016-05-28 21:45 - 2016-02-27 19:24 - 00000000 ____D C:\Users\Lukáš\AppData\Local\Windows Live
2016-05-27 16:36 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\System
2016-05-27 16:36 - 2015-10-30 07:44 - 00534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00256192 _____ (Microsoft Corporation) C:\WINDOWS\winhelp.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00221600 _____ (Microsoft Corporation) C:\WINDOWS\system32\lanman.drv
2016-05-27 16:36 - 2015-10-30 07:44 - 00177856 _____ (Microsoft Corporation) C:\WINDOWS\system32\typelib.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00169520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole2disp.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00153008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole2nls.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00127213 _____ C:\WINDOWS\system32\ega.cpi
2016-05-27 16:36 - 2015-10-30 07:44 - 00108464 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00092320 _____ (Microsoft Corporation) C:\WINDOWS\system32\krnl386.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\olecli.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system\olecli.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00069886 _____ C:\WINDOWS\system32\edit.com
2016-05-27 16:36 - 2015-10-30 07:44 - 00068992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMSYSTEM.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00068992 _____ (Microsoft Corporation) C:\WINDOWS\system\MMSYSTEM.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\graftabl.com
2016-05-27 16:36 - 2015-10-30 07:44 - 00053600 _____ C:\WINDOWS\system32\dosx.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00050648 _____ C:\WINDOWS\system32\COMMAND.COM
2016-05-27 16:36 - 2015-10-30 07:44 - 00047840 _____ (Microsoft Corporation) C:\WINDOWS\system32\USER.EXE
2016-05-27 16:36 - 2015-10-30 07:44 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmspl.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00042809 _____ C:\WINDOWS\system32\KEY01.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00042592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole2.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00042537 _____ C:\WINDOWS\system32\KEYBOARD.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDEML.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00039274 _____ C:\WINDOWS\system32\mem.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00035776 _____ C:\WINDOWS\system32\NTIO411.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00035552 _____ C:\WINDOWS\system32\NTIO412.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00034688 _____ C:\WINDOWS\system32\NTIO804.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00034688 _____ C:\WINDOWS\system32\NTIO404.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00033968 _____ C:\WINDOWS\system32\NTIO.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\COMMDLG.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00032816 _____ (Microsoft Corporation) C:\WINDOWS\system\COMMDLG.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00029370 _____ C:\WINDOWS\system32\NTDOS411.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00029274 _____ C:\WINDOWS\system32\NTDOS412.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00029146 _____ C:\WINDOWS\system32\NTDOS804.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00029146 _____ C:\WINDOWS\system32\NTDOS404.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00028420 _____ C:\WINDOWS\system32\bios1.rom
2016-05-27 16:36 - 2015-10-30 07:44 - 00028112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DRWATSON.EXE
2016-05-27 16:36 - 2015-10-30 07:44 - 00027866 _____ C:\WINDOWS\system32\NTDOS.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00027792 _____ (Microsoft Corporation) C:\WINDOWS\system32\compobj.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00027200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ctl3dv2.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00027097 _____ C:\WINDOWS\system32\country.sys
2016-05-27 16:36 - 2015-10-30 07:44 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\GDI.EXE
2016-05-27 16:36 - 2015-10-30 07:44 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\OLESVR.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system\OLESVR.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdmredir.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00021232 _____ C:\WINDOWS\system32\graphics.pro
2016-05-27 16:36 - 2015-10-30 07:44 - 00020634 _____ C:\WINDOWS\system32\debug.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00019694 _____ C:\WINDOWS\system32\GRAPHICS.COM
2016-05-27 16:36 - 2015-10-30 07:44 - 00018896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysedit.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00018832 _____ C:\WINDOWS\system32\v7vga.rom
2016-05-27 16:36 - 2015-10-30 07:44 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdmd.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00014710 _____ C:\WINDOWS\system32\KB16.COM
2016-05-27 16:36 - 2015-10-30 07:44 - 00013888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TOOLHELP.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00013312 _____ C:\WINDOWS\system32\win87em.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00012704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFWNET.DRV
2016-05-27 16:36 - 2015-10-30 07:44 - 00012704 _____ (Microsoft Corporation) C:\WINDOWS\system\WFWNET.DRV
2016-05-27 16:36 - 2015-10-30 07:44 - 00012642 _____ C:\WINDOWS\system32\edlin.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00012498 _____ C:\WINDOWS\system32\append.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00011753 _____ C:\WINDOWS\system32\setver.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00010790 _____ C:\WINDOWS\system32\EDIT.HLP
2016-05-27 16:36 - 2015-10-30 07:44 - 00010544 _____ (Microsoft Corporation) C:\WINDOWS\system32\COMM.drv
2016-05-27 16:36 - 2015-10-30 07:44 - 00009936 _____ (Microsoft Corporation) C:\WINDOWS\system32\lzexpand.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00009936 _____ (Microsoft Corporation) C:\WINDOWS\system\lzexpand.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WIFEMAN.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00009029 _____ C:\WINDOWS\system32\ANSI.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00009008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ver.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00009008 _____ (Microsoft Corporation) C:\WINDOWS\system\ver.dll
2016-05-27 16:36 - 2015-10-30 07:44 - 00008424 _____ C:\WINDOWS\system32\exe2bin.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00008191 _____ C:\WINDOWS\system32\bios4.rom
2016-05-27 16:36 - 2015-10-30 07:44 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win.com
2016-05-27 16:36 - 2015-10-30 07:44 - 00007052 _____ C:\WINDOWS\system32\nlsfunc.exe
2016-05-27 16:36 - 2015-10-30 07:44 - 00005532 _____ (Microsoft Corporation) C:\WINDOWS\system\stdole.tlb
2016-05-27 16:36 - 2015-10-30 07:44 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WINNLS.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHELL.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system\SHELL.DLL
2016-05-27 16:36 - 2015-10-30 07:44 - 00004768 _____ C:\WINDOWS\system32\HIMEM.SYS
2016-05-27 16:36 - 2015-10-30 07:44 - 00004208 _____ (Microsoft Corporation) C:\WINDOWS\system32\storage.dll
2016-05-25 20:48 - 2016-05-20 20:55 - 00001034 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-05-24 21:07 - 2014-04-27 01:07 - 00000000 ____D C:\ProgramData\AVAST Software
==================== Files in the root of some directories =======
2014-06-12 16:10 - 2014-06-13 01:16 - 0000551 _____ () C:\Users\Lukáš\AppData\Roaming\AutoGK.ini
2014-04-27 22:52 - 2016-06-01 14:43 - 0000903 _____ () C:\Users\Lukáš\AppData\Roaming\burnaware.ini
2002-08-29 18:33 - 2002-08-29 18:33 - 0319488 ____R () C:\Users\Lukáš\AppData\Roaming\MafiaSetup.exe
2016-03-09 00:09 - 2016-03-09 00:09 - 0000017 _____ () C:\Users\Lukáš\AppData\Local\resmon.resmoncfg
Some files in TEMP:
====================
C:\Users\Lukáš\AppData\Local\Temp\libeay32.dll
C:\Users\Lukáš\AppData\Local\Temp\msvcr120.dll
C:\Users\Lukáš\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-06-15 01:15
==================== End of FRST.txt ============================
- Přílohy
-
- Addition.zip
- (10.74 KiB) Staženo 73 x
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: win defender hlásí hozby
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
C:\WINDOWS\system32\v7vga.rom
C:\Users\Lukáš\AppData\Local\Temp
Task: {08788E9D-B0DF-4F36-9A58-C26CB6871AB4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {1A3BADFF-1FB4-4F2D-A270-7EBFBDFF2AB7} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {4B51637B-CFD4-4ED5-BF9C-B606B0483AE4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {4BABD2CB-1029-4748-8059-9CF0057BE142} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {8AB87AAD-4CB8-4C7D-9C05-508B3231A36E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {B1B27A1B-EB9C-439E-9AFD-4CC277B24DC1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {C56CF1E0-E516-400A-9F35-DC620FB2F5BA} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {E9D1A825-CE0E-42A7-ABC0-9BCBA721648A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: win defender hlásí hozby
Fix result of Farbar Recovery Scan Tool (x86) Version: 20-06-2016
Ran by Lukáš (2016-06-21 18:36:08) Run:2
Running from C:\Users\Lukáš\pracovni
Loaded Profiles: Lukáš (Available Profiles: Lukáš & DefaultAppPool)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
C:\WINDOWS\system32\v7vga.rom
C:\Users\Lukáš\AppData\Local\Temp
Task: {08788E9D-B0DF-4F36-9A58-C26CB6871AB4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {1A3BADFF-1FB4-4F2D-A270-7EBFBDFF2AB7} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {4B51637B-CFD4-4ED5-BF9C-B606B0483AE4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {4BABD2CB-1029-4748-8059-9CF0057BE142} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {8AB87AAD-4CB8-4C7D-9C05-508B3231A36E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {B1B27A1B-EB9C-439E-9AFD-4CC277B24DC1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {C56CF1E0-E516-400A-9F35-DC620FB2F5BA} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {E9D1A825-CE0E-42A7-ABC0-9BCBA721648A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
End
*****************
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully.
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
C:\WINDOWS\system32\v7vga.rom => moved successfully
"C:\Users\Lukáš\AppData\Local\Temp" folder move:
Could not move "C:\Users\Lukáš\AppData\Local\Temp" => Scheduled to move on reboot.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{08788E9D-B0DF-4F36-9A58-C26CB6871AB4}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{08788E9D-B0DF-4F36-9A58-C26CB6871AB4}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1A3BADFF-1FB4-4F2D-A270-7EBFBDFF2AB7}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1A3BADFF-1FB4-4F2D-A270-7EBFBDFF2AB7}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4B51637B-CFD4-4ED5-BF9C-B606B0483AE4}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4B51637B-CFD4-4ED5-BF9C-B606B0483AE4}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4BABD2CB-1029-4748-8059-9CF0057BE142}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4BABD2CB-1029-4748-8059-9CF0057BE142}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8AB87AAD-4CB8-4C7D-9C05-508B3231A36E}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8AB87AAD-4CB8-4C7D-9C05-508B3231A36E}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B1B27A1B-EB9C-439E-9AFD-4CC277B24DC1}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B1B27A1B-EB9C-439E-9AFD-4CC277B24DC1}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C56CF1E0-E516-400A-9F35-DC620FB2F5BA}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C56CF1E0-E516-400A-9F35-DC620FB2F5BA}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E9D1A825-CE0E-42A7-ABC0-9BCBA721648A}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E9D1A825-CE0E-42A7-ABC0-9BCBA721648A}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully.
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2016-06-21 18:39:07)
C:\Users\Lukáš\AppData\Local\Temp => moved successfully
==== End of Fixlog 18:40:34 ====
Ran by Lukáš (2016-06-21 18:36:08) Run:2
Running from C:\Users\Lukáš\pracovni
Loaded Profiles: Lukáš (Available Profiles: Lukáš & DefaultAppPool)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
C:\WINDOWS\system32\v7vga.rom
C:\Users\Lukáš\AppData\Local\Temp
Task: {08788E9D-B0DF-4F36-9A58-C26CB6871AB4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {1A3BADFF-1FB4-4F2D-A270-7EBFBDFF2AB7} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {4B51637B-CFD4-4ED5-BF9C-B606B0483AE4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {4BABD2CB-1029-4748-8059-9CF0057BE142} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {8AB87AAD-4CB8-4C7D-9C05-508B3231A36E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {B1B27A1B-EB9C-439E-9AFD-4CC277B24DC1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {C56CF1E0-E516-400A-9F35-DC620FB2F5BA} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {E9D1A825-CE0E-42A7-ABC0-9BCBA721648A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
End
*****************
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully.
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
C:\WINDOWS\system32\v7vga.rom => moved successfully
"C:\Users\Lukáš\AppData\Local\Temp" folder move:
Could not move "C:\Users\Lukáš\AppData\Local\Temp" => Scheduled to move on reboot.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{08788E9D-B0DF-4F36-9A58-C26CB6871AB4}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{08788E9D-B0DF-4F36-9A58-C26CB6871AB4}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1A3BADFF-1FB4-4F2D-A270-7EBFBDFF2AB7}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1A3BADFF-1FB4-4F2D-A270-7EBFBDFF2AB7}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4B51637B-CFD4-4ED5-BF9C-B606B0483AE4}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4B51637B-CFD4-4ED5-BF9C-B606B0483AE4}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4BABD2CB-1029-4748-8059-9CF0057BE142}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4BABD2CB-1029-4748-8059-9CF0057BE142}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8AB87AAD-4CB8-4C7D-9C05-508B3231A36E}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8AB87AAD-4CB8-4C7D-9C05-508B3231A36E}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B1B27A1B-EB9C-439E-9AFD-4CC277B24DC1}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B1B27A1B-EB9C-439E-9AFD-4CC277B24DC1}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C56CF1E0-E516-400A-9F35-DC620FB2F5BA}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C56CF1E0-E516-400A-9F35-DC620FB2F5BA}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E9D1A825-CE0E-42A7-ABC0-9BCBA721648A}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E9D1A825-CE0E-42A7-ABC0-9BCBA721648A}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully.
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2016-06-21 18:39:07)
C:\Users\Lukáš\AppData\Local\Temp => moved successfully
==== End of Fixlog 18:40:34 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: win defender hlásí hozby
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: win defender hlásí hozby
Zdá se, že vše je v pohodě. Díky! 
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: win defender hlásí hozby
Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?