Dobrý den, poslední dobou odcházejí z mojí e-mailové schránky na centrum.cz spamy, které chodí na všechny uložené adresy. Heslo do schránky jsem změnil, ale nevím, zda je tato změna dostatečná, proto bych Vás moc poprosil o kontrolu logu níže. Předem Vám moc děkuji.
Logfile of random's system information tool 1.16 (written by random/random)
Run by jenda at 2017-05-20 16:57:34
Microsoft Windows 10 Pro
System drive C: has 67 GB (59%) free of 114 GB
Total RAM: 3036 MB (60% free)
X86
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:57:38, on 20.05.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\SkypeHost.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
C:\Users\jenda\AppData\Local\MalwareProtectionLive\MalwareProtectionClient.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1703.601.0_x86__8wekyb3d8bbwe\Calculator.exe
C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17032.10341.0_x86__8wekyb3d8bbwe\Video.UI.exe
C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe
C:\Windows\System32\smartscreen.exe
C:\Program Files\Hearthstone\Hearthstone Beta Launcher.exe
C:\ProgramData\Battle.net\Agent\Agent.5572\Agent.exe
C:\WINDOWS\system32\conhost.exe
C:\WINDOWS\system32\taskhostw.exe
D:\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\jenda_RSIT.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [MalwareProtectionLive] C:\Users\jenda\AppData\Local\MalwareProtectionLive\MalwareProtectionClient.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKCU\..\Run: [OneDrive] "C:\Users\jenda\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\jenda\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Spotify] "C:\Users\jenda\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKCU\..\Run: [GalaxyClient] C:\Program Files\GOG Galaxy\GalaxyClient.exe /launchViaAutoStart
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @oem6.inf,%AEADISRV.SvcDesc%;Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\WINDOWS\system32\AEADISRV.EXE
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: GalaxyClientService - GOG.com - C:\Program Files\GOG Galaxy\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
--
End of file - 8614 bytes
======Scheduled tasks folder======
C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\tasks\Adobe Flash Player Updater - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\system32\tasks\Avast Emergency Update - C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task v2 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\SafeZone scheduled Autoupdate 1495278225 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
C:\WINDOWS\system32\tasks\{260C333F-06D2-4159-9ED5-114DDA17F8C1} - C:\WINDOWS\system32\pcalua.exe -a "D:\Stažené soubory\sp44863.exe" -d "D:\Stažené soubory"
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe Reboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - %SystemRoot%\system32\UpgradeSubscription.exe -e
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\LicenseAcquisition - %SystemRoot%\system32\UpgradeSubscription.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemovalTools\MRT_HB - C:\WINDOWS\system32\MRT.exe /EHB /Q
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Automatic Updates - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /update SCHEDULEDTASK displaylevel=False
C:\WINDOWS\system32\tasks\Microsoft\Office\Office ClickToRun Service Monitor - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /WatchService
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Subscription Maintenance - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 - C:\Program Files\Microsoft Office\root\Office16\msoia.exe scan upload mininterval:2880
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 - C:\Program Files\Microsoft Office\root\Office16\msoia.exe scan upload
C:\WINDOWS\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
=========Mozilla firefox=========
ProfilePath - C:\Users\jenda\AppData\Roaming\Mozilla\Firefox\Profiles\nobb5mi9.default-1455914248652
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 25.0.0.171 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_25_0_0_171.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.121.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Users\jenda\AppData\Roaming\Mozilla\Firefox\Profiles\nobb5mi9.default-1455914248652\addons.json
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
C:\Users\jenda\AppData\Roaming\Mozilla\Firefox\Profiles\nobb5mi9.default-1455914248652\extensions.json
Seznam Calib Software - extension - SeznamAdmin@software - C:\Users\jenda\AppData\Roaming\Mozilla\Firefox\Profiles\nobb5mi9.default-1455914248652\extensions\SeznamAdmin@software.xpi
Avast Online Security - webextension - wrc@avast.com - C:\Users\jenda\AppData\Roaming\Mozilla\Firefox\Profiles\nobb5mi9.default-1455914248652\extensions\wrc@avast.com.xpi
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - C:\Users\jenda\AppData\Roaming\Mozilla\Firefox\Profiles\nobb5mi9.default-1455914248652\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
Shield Recipe Client - extension - shield-recipe-client@mozilla.org - C:\Users\jenda\AppData\Roaming\Mozilla\Firefox\Profiles\nobb5mi9.default-1455914248652\features\{1b1fb87c-9e2c-4ea5-867d-6ebe9d340525}\shield-recipe-client@mozilla.org.xpi
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
C:\Users\jenda\AppData\Roaming\Mozilla\Firefox\Profiles\nobb5mi9.default-1455914248652\pluginreg.dat
Plugin - Shockwave Flash - 25.0.0.171 - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_25_0_0_171.dll
=========Google Chrome=========
C:\Users\jenda\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension aohghmighlieiainnegkcijnfilokake
Extension apdfllckaahabafndbhieahigkjlhalf
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo
Extension cfhdojbkjhnklbpkdaibdccddilifddb 1 Adblock Plus 1.10.1
Extension coobgpohoikkiipiblmjeljniedjpjpf
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension ennkphjdgehloodpbhlhldgbnhmacadg 1 Settings 0.2
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.31
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf 1 Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.1.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 0.1.2.0
Extension pjkljhegncpnkpknbcohdijeoejaedia
Homepage:
default_search_provider.search_url:
C:\Users\jenda\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2017-04-04 151240]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-02-12 473152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-04-04 1632048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-12 186944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2010-02-25 287800]
"MalwareProtectionLive"=C:\Users\jenda\AppData\Local\MalwareProtectionLive\MalwareProtectionClient.exe [2016-11-11 1187360]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2016-12-12 587288]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-05-20 213824]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\jenda\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-03-21 1518304]
"Spotify Web Helper"=C:\Users\jenda\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2016-06-22 1552496]
"Spotify"=C:\Users\jenda\AppData\Roaming\Spotify\Spotify.exe [2016-06-22 6916208]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2017-04-11 7456984]
"GalaxyClient"=C:\Program Files\GOG Galaxy\GalaxyClient.exe [2017-05-20 4952128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath"=%SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-05-20 16:57:34 ----D---- C:\rsit
2017-05-20 16:57:34 ----D---- C:\Program Files\trend micro
2017-05-20 16:44:40 ----D---- C:\Program Files\Common Files\DESIGNER
2017-05-20 16:40:18 ----D---- C:\Program Files\Microsoft Office 15
2017-05-20 13:24:31 ----D---- C:\ProgramData\SWCUTemp
2017-05-20 13:02:57 ----A---- C:\WINDOWS\system32\drivers\aswKbd.sys
2017-05-20 12:57:06 ----D---- C:\Users\jenda\AppData\Roaming\AVAST Software
2017-05-20 12:56:47 ----D---- C:\Program Files\Common Files\AV
2017-05-20 12:56:41 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2017-05-20 12:56:41 ----A---- C:\WINDOWS\system32\drivers\aswstm.sys
2017-05-20 12:56:41 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2017-05-20 12:56:41 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2017-05-20 12:56:41 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2017-05-20 12:56:41 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2017-05-20 12:56:41 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2017-05-20 12:56:41 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2017-05-20 12:56:41 ----A---- C:\WINDOWS\system32\drivers\aswbunivx.sys
2017-05-20 12:56:41 ----A---- C:\WINDOWS\system32\drivers\aswblogx.sys
2017-05-20 12:56:41 ----A---- C:\WINDOWS\system32\drivers\aswbidshx.sys
2017-05-20 12:56:41 ----A---- C:\WINDOWS\system32\drivers\aswbidsdriverx.sys
2017-05-20 12:56:34 ----A---- C:\WINDOWS\ucrtbase.dll
2017-05-20 12:56:34 ----A---- C:\WINDOWS\system32\aswBoot.exe
2017-05-20 12:54:37 ----D---- C:\Program Files\AVAST Software
2017-05-20 12:54:18 ----D---- C:\ProgramData\AVAST Software
2017-05-10 21:09:17 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-05-10 21:09:17 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-05-10 21:09:16 ----A---- C:\WINDOWS\system32\mstsc.exe
2017-05-10 21:09:16 ----A---- C:\WINDOWS\system32\cscui.dll
2017-05-10 21:09:13 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-05-10 21:09:12 ----A---- C:\WINDOWS\system32\shell32.dll
2017-05-10 21:09:11 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-05-10 21:09:11 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-10 21:09:11 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-05-10 21:09:11 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-05-10 21:09:11 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-05-10 21:09:11 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-05-10 21:09:10 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-05-10 21:09:10 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-05-10 21:09:10 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-05-10 21:09:08 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-05-10 21:09:07 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-05-10 21:09:07 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-05-10 21:09:07 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-05-10 21:09:07 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-05-10 21:09:07 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-05-10 21:09:06 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-05-10 21:09:06 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-05-10 21:09:05 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-05-10 21:09:04 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-05-10 21:09:03 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-05-10 21:09:01 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-05-10 21:09:00 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2017-05-10 21:09:00 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-10 21:08:59 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-05-10 21:08:59 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-05-10 21:08:48 ----A---- C:\WINDOWS\system32\wininet.dll
2017-05-10 21:08:48 ----A---- C:\WINDOWS\system32\msdtctm.dll
2017-05-10 21:08:47 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-05-10 21:08:47 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-10 21:08:46 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-05-10 21:08:45 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-05-10 21:08:45 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-05-10 21:08:44 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-05-10 21:08:44 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-05-10 21:08:42 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-10 21:08:41 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2017-05-10 21:08:41 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-05-10 21:08:41 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-05-10 21:08:41 ----A---- C:\WINDOWS\system32\ExSMime.dll
2017-05-10 21:08:39 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-05-10 21:08:38 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-05-10 21:08:38 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-05-10 21:08:37 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-05-10 21:08:36 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2017-05-10 21:08:36 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-05-10 21:08:36 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-05-10 21:08:36 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-05-10 21:08:36 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-05-10 21:08:36 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-05-10 21:08:36 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2017-05-10 21:08:36 ----A---- C:\WINDOWS\system32\AudioSes.dll
2017-05-10 21:08:34 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2017-05-10 21:08:34 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-05-10 21:08:34 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-05-10 21:08:34 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-05-10 21:08:34 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-05-10 21:08:34 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-05-10 21:08:33 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2017-05-10 21:08:33 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-05-10 21:08:33 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-05-10 21:08:33 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-05-10 21:08:33 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2017-05-10 21:08:33 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2017-05-10 21:08:32 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-05-10 21:08:32 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-05-10 21:08:32 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-05-10 21:08:32 ----A---- C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-05-10 21:08:32 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-10 21:08:31 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
2017-05-10 21:08:31 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-05-10 21:08:31 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-05-10 21:08:31 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-05-10 21:08:31 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-05-10 21:08:31 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-05-10 21:08:31 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2017-05-10 21:08:31 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2017-05-10 21:08:31 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-05-10 21:08:31 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-05-10 21:08:31 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-05-10 21:08:31 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2017-05-10 21:08:31 ----A---- C:\WINDOWS\system32\efswrt.dll
2017-05-10 21:08:31 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2017-05-10 21:08:31 ----A---- C:\WINDOWS\system32\dialclient.dll
2017-05-10 21:08:31 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-05-10 21:08:30 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-05-10 21:08:30 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-05-10 21:08:30 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-05-10 21:08:30 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-05-10 21:08:30 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-05-10 21:08:30 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-05-10 21:08:30 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-05-10 21:08:30 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-05-10 21:08:30 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-05-10 21:08:30 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2017-05-10 21:08:29 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-05-10 21:08:29 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-05-10 21:08:29 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-05-10 21:08:29 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-05-10 21:08:29 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-05-10 21:08:29 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-05-10 21:08:29 ----A---- C:\WINDOWS\system32\dlnashext.dll
2017-05-10 21:08:29 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-10 21:08:28 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-05-10 21:08:28 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-05-10 21:08:28 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-05-10 21:08:28 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2017-05-10 21:08:28 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2017-05-10 21:08:28 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2017-05-10 21:08:28 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2017-05-10 21:08:28 ----A---- C:\WINDOWS\system32\AppointmentActivation.dll
2017-05-10 21:08:28 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-05-10 21:08:27 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-05-10 21:08:27 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2017-05-10 21:08:26 ----A---- C:\WINDOWS\system32\twinui.dll
2017-05-10 21:08:26 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-05-10 21:08:26 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-05-10 21:08:26 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-10 21:08:25 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-05-10 21:08:25 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-05-10 21:08:25 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2017-05-10 21:08:24 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-05-10 21:08:24 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-05-10 21:08:24 ----A---- C:\WINDOWS\system32\apprepsync.dll
2017-05-10 21:08:24 ----A---- C:\WINDOWS\system32\apprepapi.dll
2017-05-10 21:08:23 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2017-05-10 21:08:21 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-10 21:08:20 ----A---- C:\WINDOWS\system32\wmp.dll
2017-05-10 21:08:20 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-05-10 21:08:19 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-05-10 21:08:18 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-05-10 21:08:18 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-05-10 21:08:17 ----A---- C:\WINDOWS\system32\olepro32.dll
2017-05-10 21:08:17 ----A---- C:\WINDOWS\system32\mispace.dll
2017-05-10 21:08:17 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-05-10 21:08:16 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-05-10 21:08:16 ----A---- C:\WINDOWS\system32\ole32.dll
2017-05-10 21:08:15 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-05-10 21:08:15 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-05-10 21:08:15 ----A---- C:\WINDOWS\system32\combase.dll
2017-05-10 21:08:15 ----A---- C:\WINDOWS\explorer.exe
2017-05-10 21:08:14 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-10 21:08:14 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-05-10 21:08:14 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-05-10 21:08:13 ----A---- C:\WINDOWS\system32\rdpcore.dll
2017-05-10 21:08:13 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-05-10 21:08:12 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2017-05-10 21:08:12 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2017-05-10 21:08:11 ----A---- C:\WINDOWS\system32\wsp_health.dll
2017-05-10 21:08:11 ----A---- C:\WINDOWS\system32\usocore.dll
2017-05-10 21:08:11 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-05-10 21:08:11 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-05-10 21:08:11 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2017-05-10 21:08:11 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2017-05-10 21:08:10 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-05-10 21:08:09 ----A---- C:\WINDOWS\system32\wpncore.dll
2017-05-10 21:08:09 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2017-05-10 21:08:09 ----A---- C:\WINDOWS\system32\usermgr.dll
2017-05-10 21:08:09 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2017-05-10 21:08:09 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2017-05-10 21:08:09 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-05-10 21:08:08 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-05-10 21:08:08 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2017-05-10 21:08:08 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-10 21:08:08 ----A---- C:\WINDOWS\system32\services.exe
2017-05-10 21:08:08 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-05-10 21:08:08 ----A---- C:\WINDOWS\system32\gpsvc.dll
2017-05-10 21:08:08 ----A---- C:\WINDOWS\system32\crypt32.dll
2017-05-10 21:08:07 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-05-10 21:08:07 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2017-05-10 21:08:07 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-05-10 21:08:07 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2017-05-10 21:08:07 ----A---- C:\WINDOWS\system32\mprddm.dll
2017-05-10 21:08:07 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-05-10 21:08:07 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-05-10 21:08:06 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-05-10 21:08:06 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-05-10 21:08:06 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2017-05-10 21:08:05 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2017-05-10 21:08:05 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-05-10 21:08:05 ----A---- C:\WINDOWS\system32\authui.dll
2017-05-10 21:08:04 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2017-05-10 21:08:04 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-10 21:08:04 ----A---- C:\WINDOWS\system32\rpcss.dll
2017-05-10 21:08:04 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-05-10 21:08:04 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-05-10 21:08:04 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-05-10 21:08:03 ----A---- C:\WINDOWS\system32\winresume.exe
2017-05-10 21:08:03 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-05-10 21:08:03 ----A---- C:\WINDOWS\system32\kernel32.dll
2017-05-10 21:08:03 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-05-10 21:08:02 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-05-10 21:08:02 ----A---- C:\WINDOWS\system32\thumbcache.dll
2017-05-10 21:08:02 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2017-05-10 21:08:02 ----A---- C:\WINDOWS\system32\pwcreator.exe
2017-05-10 21:08:02 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-05-10 21:08:01 ----A---- C:\WINDOWS\system32\wiaservc.dll
2017-05-10 21:08:01 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-05-10 21:08:01 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-05-10 21:08:00 ----A---- C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2017-05-10 21:08:00 ----A---- C:\WINDOWS\system32\tsmf.dll
2017-05-10 21:08:00 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2017-05-10 21:08:00 ----A---- C:\WINDOWS\system32\EmailApis.dll
2017-05-10 21:08:00 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2017-05-10 21:08:00 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-10 21:07:58 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-10 21:07:57 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-05-10 21:07:57 ----A---- C:\WINDOWS\system32\ubpm.dll
2017-05-10 21:07:57 ----A---- C:\WINDOWS\system32\browser_broker.exe
2017-05-10 21:07:56 ----A---- C:\WINDOWS\system32\drivers\fsdepends.sys
2017-05-10 21:07:56 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-05-10 21:07:54 ----A---- C:\WINDOWS\system32\ReAgent.dll
2017-05-10 21:07:54 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2017-05-10 21:07:54 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-05-10 21:07:53 ----A---- C:\WINDOWS\system32\termsrv.dll
2017-05-10 21:07:53 ----A---- C:\WINDOWS\system32\spaceman.exe
2017-05-10 21:07:53 ----A---- C:\WINDOWS\system32\fvewiz.dll
2017-05-10 21:07:53 ----A---- C:\WINDOWS\system32\dafBth.dll
2017-05-10 21:07:53 ----A---- C:\WINDOWS\system32\AppContracts.dll
2017-05-10 21:07:52 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-05-10 21:07:52 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2017-05-10 21:07:52 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2017-05-10 21:07:52 ----A---- C:\WINDOWS\system32\adsnt.dll
2017-05-10 21:07:50 ----A---- C:\WINDOWS\system32\rastls.dll
2017-05-10 21:07:50 ----A---- C:\WINDOWS\system32\bthserv.dll
2017-05-10 21:07:44 ----A---- C:\WINDOWS\system32\msi.dll
2017-05-10 21:07:43 ----A---- C:\WINDOWS\system32\virtdisk.dll
2017-05-10 21:07:43 ----A---- C:\WINDOWS\system32\setupugc.exe
2017-05-10 21:07:43 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2017-05-10 21:07:43 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2017-05-10 21:07:43 ----A---- C:\WINDOWS\system32\LocationApi.dll
2017-05-10 21:07:43 ----A---- C:\WINDOWS\system32\credprovhost.dll
2017-05-10 21:07:42 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-05-10 21:07:42 ----A---- C:\WINDOWS\system32\VSSVC.exe
2017-05-10 21:07:42 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2017-05-10 21:07:42 ----A---- C:\WINDOWS\system32\dsreg.dll
2017-05-10 21:07:42 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2017-05-10 21:07:42 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-05-10 21:07:41 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-05-10 21:07:41 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-05-10 21:07:41 ----A---- C:\WINDOWS\system32\umpoext.dll
2017-05-10 21:07:41 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2017-05-10 21:07:41 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2017-05-10 21:07:41 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2017-05-10 21:07:40 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-05-10 21:07:40 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2017-05-10 21:07:40 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-10 21:07:40 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-05-10 21:07:40 ----A---- C:\WINDOWS\system32\shutdownux.dll
2017-05-10 21:07:40 ----A---- C:\WINDOWS\system32\ReInfo.dll
2017-05-10 21:07:40 ----A---- C:\WINDOWS\system32\rastlsext.dll
2017-05-10 21:07:40 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-05-10 21:07:40 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2017-05-10 21:07:40 ----A---- C:\WINDOWS\system32\imapi2.dll
2017-05-10 21:07:40 ----A---- C:\WINDOWS\system32\Family.Client.dll
2017-05-10 21:07:40 ----A---- C:\WINDOWS\system32\ConsentUX.dll
2017-05-10 21:07:40 ----A---- C:\WINDOWS\system32\CameraCaptureUI.dll
2017-05-10 21:07:39 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-05-10 21:07:39 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-05-10 21:07:39 ----A---- C:\WINDOWS\system32\vaultcli.dll
2017-05-10 21:07:39 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-05-10 21:07:39 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-05-10 21:07:39 ----A---- C:\WINDOWS\system32\Dxpserver.exe
2017-05-10 21:07:39 ----A---- C:\WINDOWS\system32\drivers\raspppoe.sys
2017-05-10 21:07:39 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-05-10 21:07:39 ----A---- C:\WINDOWS\system32\BthTelemetry.dll
2017-05-10 21:07:39 ----A---- C:\WINDOWS\system32\appidsvc.dll
2017-05-10 21:07:39 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2017-05-07 19:47:19 ----D---- C:\Users\jenda\AppData\Roaming\java
2017-05-07 19:45:35 ----D---- C:\Users\jenda\AppData\Roaming\.minecraft
======List of files/folders modified in the last 1 month======
2017-05-20 16:57:34 ----RD---- C:\Program Files
2017-05-20 16:54:07 ----D---- C:\WINDOWS\Temp
2017-05-20 16:49:52 ----AD---- C:\Program Files\Battle.net
2017-05-20 16:44:59 ----SHD---- C:\WINDOWS\Installer
2017-05-20 16:44:51 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2017-05-20 16:44:50 ----RD---- C:\WINDOWS\Microsoft.NET
2017-05-20 16:44:45 ----RSD---- C:\WINDOWS\assembly
2017-05-20 16:44:40 ----D---- C:\Program Files\Common Files
2017-05-20 16:44:40 ----AD---- C:\Program Files\Common Files\microsoft shared
2017-05-20 16:44:39 ----D---- C:\Program Files\Microsoft.NET
2017-05-20 16:43:31 ----D---- C:\WINDOWS\Prefetch
2017-05-20 16:42:29 ----D---- C:\WINDOWS\system32\DriverStore
2017-05-20 16:42:29 ----D---- C:\WINDOWS\system32\catroot2
2017-05-20 16:42:29 ----D---- C:\WINDOWS\INF
2017-05-20 16:41:32 ----AD---- C:\Program Files\Microsoft Office
2017-05-20 16:39:52 ----RSD---- C:\WINDOWS\Fonts
2017-05-20 16:39:28 ----D---- C:\WINDOWS\system32\sru
2017-05-20 16:38:31 ----D---- C:\WINDOWS\system32\SleepStudy
2017-05-20 13:58:01 ----AD---- C:\Program Files\GOG Galaxy
2017-05-20 13:32:16 ----D---- C:\WINDOWS\System32
2017-05-20 13:32:16 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-20 13:26:31 ----D---- C:\Windows
2017-05-20 13:24:31 ----HD---- C:\ProgramData
2017-05-20 13:04:47 ----D---- C:\WINDOWS\system32\drivers
2017-05-20 13:03:46 ----D---- C:\WINDOWS\system32\Tasks
2017-05-20 12:56:37 ----D---- C:\WINDOWS\WinSxS
2017-05-20 12:56:36 ----D---- C:\WINDOWS\system32\config
2017-05-20 12:52:34 ----D---- C:\Users\jenda\AppData\Roaming\uTorrent
2017-05-20 12:52:22 ----D---- C:\WINDOWS\LiveKernelReports
2017-05-20 12:52:22 ----D---- C:\WINDOWS\debug
2017-05-19 17:03:23 ----D---- C:\WINDOWS\AppReadiness
2017-05-18 08:10:58 ----HD---- C:\Program Files\WindowsApps
2017-05-16 19:21:18 ----D---- C:\WINDOWS\CbsTemp
2017-05-16 19:21:17 ----D---- C:\WINDOWS\system32\appraiser
2017-05-15 22:26:38 ----D---- C:\BBraun
2017-05-15 18:38:22 ----D---- C:\WINDOWS\system32\NDF
2017-05-11 14:52:18 ----D---- C:\WINDOWS\rescache
2017-05-10 23:17:02 ----D---- C:\Program Files\Mozilla Maintenance Service
2017-05-10 23:17:02 ----AD---- C:\Program Files\Mozilla Firefox
2017-05-10 23:16:20 ----SD---- C:\WINDOWS\system32\F12
2017-05-10 23:16:20 ----D---- C:\WINDOWS\system32\wbem
2017-05-10 23:16:20 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-05-10 23:16:20 ----D---- C:\WINDOWS\system32\oobe
2017-05-10 23:16:20 ----D---- C:\WINDOWS\system32\en-US
2017-05-10 23:16:20 ----D---- C:\WINDOWS\system32\Dism
2017-05-10 23:16:20 ----D---- C:\WINDOWS\system32\cs-CZ
2017-05-10 23:16:19 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-05-10 23:16:19 ----RD---- C:\Program Files\Windows Defender
2017-05-10 23:16:19 ----D---- C:\WINDOWS\ShellExperiences
2017-05-10 23:16:19 ----D---- C:\WINDOWS\Provisioning
2017-05-10 23:16:19 ----D---- C:\WINDOWS\PolicyDefinitions
2017-05-10 23:16:19 ----D---- C:\Program Files\Windows Photo Viewer
2017-05-10 23:16:18 ----D---- C:\WINDOWS\system32\Boot
2017-05-10 21:10:08 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-05-09 21:23:06 ----D---- C:\WINDOWS\system32\Macromed
2017-04-29 02:59:37 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2017-04-22 13:08:41 ----AD---- C:\Program Files\Hearthstone
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidshx.sys [2017-05-20 148696]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswblogx.sys [2017-05-20 268016]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbunivx.sys [2017-05-20 41664]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2017-05-20 62152]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2017-05-20 279800]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 42336]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriverx.sys [2017-05-20 258288]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2017-05-20 31064]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2017-05-20 90336]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2017-05-20 764576]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2017-05-20 482608]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2017-05-20 107928]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2017-05-20 115152]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 58368]
R2 giveio;giveio; \??\C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R3 ADIHdAudAddService;@oem6.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2009-05-18 381440]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 10070016]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 290304]
R3 BCM43XX;@netbc63.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 Network Adapter Driver; C:\WINDOWS\System32\drivers\bcmwl63l.sys [2016-07-16 4715008]
R3 HpqKbFiltr;@oem3.inf,%HpqKbFiltr.SvcDesc%;HpqKbFilter Driver; C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [2010-02-25 15872]
R3 SynTP;@oem11.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 56672]
S2 Parvdm;Parvdm; C:\WINDOWS\System32\drivers\parvdm.sys [2016-07-16 9216]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 12800]
S3 AgereSoftModem;@oem12.inf,%ServiceName%;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2010-01-26 1163328]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 12288]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2016-09-15 94560]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2016-07-16 118112]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2016-07-16 111456]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2017-05-20 34136]
S3 ggflt;SOMC USB Flash Driver Filter; C:\WINDOWS\System32\drivers\ggflt.sys [2016-03-26 13528]
S3 ggsomc;SOMC USB Flash Driver; C:\WINDOWS\System32\drivers\ggsomc.sys [2016-03-26 26328]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2016-07-16 22016]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 25600]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2016-07-16 61936]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 30208]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 94720]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2016-07-16 159584]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 62976]
S3 RTL2832U_IRHID;HID Infrared Remote Receiver; C:\WINDOWS\System32\drivers\RTL2832U_IRHID.sys [2009-10-05 31872]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\WINDOWS\system32\drivers\tsusbhub.sys [2016-07-16 91648]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 76800]
S4 UevAgentDriver;@%systemroot%\system32\drivers\UevAgentDriver.sys,-101; C:\WINDOWS\system32\drivers\UevAgentDriver.sys [2016-07-16 36192]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AEADIFilters;@oem6.inf,%AEADISRV.SvcDesc%;Andrea ADI Filters Service; C:\WINDOWS\system32\AEADISRV.EXE [2008-07-15 90112]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-12-03 26112]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 217088]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-05-20 263304]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 CDPUserSvc_9fb49;CDPUserSvc_9fb49; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2017-05-05 2290880]
R2 OneSyncSvc_9fb49;Sync Host_9fb49; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2017-05-20 5732136]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2010-02-25 227896]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944]
R3 PimIndexMaintenanceSvc_9fb49;Contact Data_9fb49; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\TimeBrokerServer.dll
R3 UnistoreSvc_9fb49;User Data Storage_9fb49; C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=%SystemRoot%\System32\CDPUserSvc.dll
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll"=%SystemRoot%\system32\FrameServer.dll
S3 GalaxyClientService;GalaxyClientService; C:\Program Files\GOG Galaxy\GalaxyClientService.exe [2017-05-20 512576]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2017-05-20 7955008]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\irmon.dll
S3 MessagingService_9fb49;MessagingService_9fb49; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2017-05-06 173512]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-03-05 209104]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\RMapi.dll
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2016-09-15 1887272]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2016-12-14 615264]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll"=%systemroot%\system32\Windows.SharedPC.AccountManager.dll
S4 UevAgentService;@%systemroot%\system32\AgentService.exe,-102; C:\WINDOWS\system32\AgentService.exe [2016-07-16 858624]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Spamy z centrum.cz
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Spamy z centrum.cz
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Spamy z centrum.cz
# AdwCleaner v6.047 - Logfile created 20/05/2017 at 17:57:28
# Updated on 19/05/2017 by Malwarebytes
# Database : 2017-05-19.1 [Server]
# Operating System : Windows 10 Pro (X86)
# Username : jenda - DESKTOP-JRKV6LB
# Running from : C:\Users\jenda\Desktop\adwcleaner_6.047.exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder deleted: C:\Users\jenda\AppData\Local\MalwareProtectionLive
***** [ Files ] *****
[-] File deleted: C:\Users\jenda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Malware Protection Live.lnk
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Shortcuts ] *****
***** [ Scheduled Tasks ] *****
***** [ Registry ] *****
[-] Key deleted: HKLM\SOFTWARE\Classes\OCComSDK.ComSDK
[-] Key deleted: HKLM\SOFTWARE\Classes\OCComSDK.ComSDK.1
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552}
[-] Key deleted: HKU\S-1-5-21-253792234-3772225743-2268583780-1001\Software\Conduit
[#] Key deleted on reboot: HKCU\Software\Conduit
[-] Key deleted: HKLM\SOFTWARE\Conduit
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MalwareProtectionLive
[-] Value deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [MalwareProtectionLive]
[-] Value deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [MalwareProtectionLive]
***** [ Web browsers ] *****
*************************
:: "Tracing" keys deleted
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1810 Bytes] - [20/05/2017 17:57:28]
C:\AdwCleaner\AdwCleaner[S0].txt - [2033 Bytes] - [20/05/2017 17:56:37]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1956 Bytes] ##########
# Updated on 19/05/2017 by Malwarebytes
# Database : 2017-05-19.1 [Server]
# Operating System : Windows 10 Pro (X86)
# Username : jenda - DESKTOP-JRKV6LB
# Running from : C:\Users\jenda\Desktop\adwcleaner_6.047.exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder deleted: C:\Users\jenda\AppData\Local\MalwareProtectionLive
***** [ Files ] *****
[-] File deleted: C:\Users\jenda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Malware Protection Live.lnk
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Shortcuts ] *****
***** [ Scheduled Tasks ] *****
***** [ Registry ] *****
[-] Key deleted: HKLM\SOFTWARE\Classes\OCComSDK.ComSDK
[-] Key deleted: HKLM\SOFTWARE\Classes\OCComSDK.ComSDK.1
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552}
[-] Key deleted: HKU\S-1-5-21-253792234-3772225743-2268583780-1001\Software\Conduit
[#] Key deleted on reboot: HKCU\Software\Conduit
[-] Key deleted: HKLM\SOFTWARE\Conduit
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MalwareProtectionLive
[-] Value deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [MalwareProtectionLive]
[-] Value deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [MalwareProtectionLive]
***** [ Web browsers ] *****
*************************
:: "Tracing" keys deleted
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1810 Bytes] - [20/05/2017 17:57:28]
C:\AdwCleaner\AdwCleaner[S0].txt - [2033 Bytes] - [20/05/2017 17:56:37]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1956 Bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Spamy z centrum.cz
Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Spamy z centrum.cz
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 20-05-2017
Ran by jenda (20-05-2017 18:24:06)
Running from C:\Users\jenda\Desktop
Microsoft Windows 10 Pro Version 1607 (X86) (2016-09-26 06:10:54)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-253792234-3772225743-2268583780-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-253792234-3772225743-2268583780-503 - Limited - Disabled)
Guest (S-1-5-21-253792234-3772225743-2268583780-501 - Limited - Disabled)
jenda (S-1-5-21-253792234-3772225743-2268583780-1001 - Administrator - Enabled) => C:\Users\jenda
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\uTorrent) (Version: 3.5.0.43580 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 17.4.2294 - AVAST Software)
Balíček ovladače systému Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
Battle.net (HKLM\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.)
BS.Player FREE (HKLM\...\BSPlayerf) (Version: 2.70.1080 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.29 - Piriform)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Flashtool (HKLM\...\Flashtool) (Version: 0.9.22.3 - Androxyde)
GOG Galaxy (HKLM\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Gwent (HKLM\...\1971477531_is1) (Version: 0.8.72.1a - GOG.com)
Hearthstone (HKLM\...\Hearthstone) (Version: - Blizzard Entertainment)
HP Quick Launch Buttons (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.17.1 - Hewlett-Packard Company)
Java 8 Update 121 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Java SE Development Kit 8 Update 121 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0180121}) (Version: 8.0.1210.13 - Oracle Corporation)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.100 - LSI Corporation)
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.7369.2120 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Minecraft1.8 (HKLM\...\Minecraft1.8) (Version: - )
Mozilla Firefox 53.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 53.0.2 (x86 cs)) (Version: 53.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0.2.6333 - Mozilla)
NetBeans IDE 8.2 (HKLM\...\nbi-nb-base-8.2.0.0.201609300101) (Version: 8.2 - NetBeans.org)
Nexus Root Toolkit (HKLM\...\Nexus Root Toolkit) (Version: 2.1.9 - WugFresh)
Office 16 Click-to-Run Extensibility Component (Version: 16.0.7369.2120 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7369.2120 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.7369.2120 - Microsoft Corporation) Hidden
PhotoFiltre 7 (HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\PhotoFiltre 7) (Version: - )
QLBCASL (Version: 6.40.17.2 - Hewlett-Packard) Hidden
Rocket League (HKLM\...\Rocket League_is1) (Version: - Psyonix)
SafeZone Stable 3.55.2393.596 (Version: 3.55.2393.596 - Avast Software) Hidden
SpeedFan (remove only) (HKLM\...\SpeedFan) (Version: - )
Spotify (HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\Spotify) (Version: 1.0.31.56.g526cfefe - Spotify AB)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.24.0 - Synaptics Incorporated)
WinRAR 5.31 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1314F20B-6646-4261-9585-ED479EEBAB37} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-05-20] (AVAST Software)
Task: {1643B860-1DD7-4BFF-836A-0AB0DED44889} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-05-10] (Microsoft Corporation)
Task: {1FD15094-CD2A-4870-8138-E9BBC3714B0A} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {579896B9-01B9-4A1F-A7F6-98F8A2CC7FCB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-05] (Microsoft Corporation)
Task: {626B008B-AB53-4E1B-8E63-D504D2E75E19} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {6966C24C-0938-466A-B9CD-ECF67EE42F21} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-05] (Microsoft Corporation)
Task: {8395C934-CF04-4BAC-AC5E-7D09CA86ACC6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-04-04] (Microsoft Corporation)
Task: {9803C053-C22B-49D8-9E6E-25863106FD58} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-04-11] (Piriform Ltd)
Task: {A6E6BFE8-80D5-4019-8183-1B9C0B50D230} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe
Task: {BA70911C-B4D3-4933-BC2F-6C7EFC168CDD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-04-04] (Microsoft Corporation)
Task: {D2F3F1B2-619E-49DD-90AB-80444E7916E5} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-05-20] (AVAST Software)
Task: {D96F8100-633F-45DA-BAB1-E5EEB115078D} - System32\Tasks\{260C333F-06D2-4159-9ED5-114DDA17F8C1} => pcalua.exe -a "D:\Stažené soubory\sp44863.exe" -d "D:\Stažené soubory"
Task: {DFB68D17-49EA-416C-81BA-6922CA8981E9} - System32\Tasks\SafeZone scheduled Autoupdate 1495278225 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-03-22] (Avast Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\jenda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft\Minecraft Debugger.lnk -> C:\Users\jenda\AppData\Roaming\.minecraft\minecraft launcher\Debug.bat ()
==================== Loaded Modules (Whitelisted) ==============
2016-07-16 10:25 - 2016-07-16 10:25 - 00190976 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-05-10 21:09 - 2017-04-28 02:56 - 02048488 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-10 21:09 - 2017-04-28 02:56 - 02048488 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-07-16 10:25 - 2016-07-16 10:25 - 00108032 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-15 22:09 - 2017-03-04 08:24 - 00321536 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-15 22:08 - 2017-03-04 08:04 - 06726656 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-15 22:08 - 2017-03-04 07:58 - 01150464 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-09-26 17:55 - 2016-09-26 17:55 - 00526848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-05-10 21:08 - 2017-04-28 01:52 - 01724928 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-05-10 21:08 - 2017-04-28 01:55 - 03158016 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-05-10 07:38 - 2017-05-10 07:39 - 00064512 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\SkypeHost.exe
2017-05-10 07:38 - 2017-05-10 07:39 - 00168960 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-05-10 07:38 - 2017-05-10 07:39 - 31002624 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\SkyWrap.dll
2017-05-10 07:38 - 2017-05-10 07:39 - 01741824 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\skypert.dll
2017-05-20 12:56 - 2017-05-20 12:56 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-05-20 12:56 - 2017-05-20 12:56 - 00997896 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll
2017-05-20 12:56 - 2017-05-20 12:56 - 67717632 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-05-20 12:56 - 2017-05-20 12:56 - 00176992 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-05-20 12:56 - 2017-05-20 12:56 - 00223224 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-05-20 12:56 - 2017-05-20 12:56 - 00291824 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-05-20 12:56 - 2017-05-20 12:56 - 00684656 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-02-26 12:19 - 2017-01-31 12:19 - 53018112 _____ () C:\Program Files\GOG Galaxy\libcef.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00507968 _____ () C:\Program Files\GOG Galaxy\PocoUtil.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 01076800 _____ () C:\Program Files\GOG Galaxy\PocoNet.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 01854528 _____ () C:\Program Files\GOG Galaxy\PocoData.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00393280 _____ () C:\Program Files\GOG Galaxy\PocoDataSQLite.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 01589312 _____ () C:\Program Files\GOG Galaxy\PocoFoundation.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00307776 _____ () C:\Program Files\GOG Galaxy\PocoNetSSL.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00330816 _____ () C:\Program Files\GOG Galaxy\PocoJSON.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00104000 _____ () C:\Program Files\GOG Galaxy\zlib.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00520768 _____ () C:\Program Files\GOG Galaxy\PocoXML.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00272448 _____ () C:\Program Files\GOG Galaxy\PocoZip.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00680000 _____ () C:\Program Files\GOG Galaxy\sqlite.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00425536 _____ () C:\Program Files\GOG Galaxy\pcre.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00157760 _____ () C:\Program Files\GOG Galaxy\PocoCrypto.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00152128 _____ () C:\Program Files\GOG Galaxy\expat.dll
2017-02-26 12:19 - 2017-05-20 13:56 - 01589312 _____ () C:\ProgramData\GOG.com\Galaxy\redists\PocoFoundation.dll
2017-02-26 12:19 - 2017-05-20 13:56 - 00330816 _____ () C:\ProgramData\GOG.com\Galaxy\redists\PocoJSON.dll
2017-02-26 12:19 - 2017-05-20 13:56 - 00507968 _____ () C:\ProgramData\GOG.com\Galaxy\redists\PocoUtil.dll
2017-02-26 12:19 - 2017-05-20 13:56 - 00104000 _____ () C:\ProgramData\GOG.com\Galaxy\redists\zlib.dll
2017-02-26 12:19 - 2017-05-20 13:56 - 00425536 _____ () C:\ProgramData\GOG.com\Galaxy\redists\pcre.dll
2017-02-26 12:19 - 2017-05-20 13:56 - 00520768 _____ () C:\ProgramData\GOG.com\Galaxy\redists\PocoXML.dll
2017-02-26 12:19 - 2017-05-20 13:56 - 00152128 _____ () C:\ProgramData\GOG.com\Galaxy\redists\expat.dll
2017-02-26 12:19 - 2017-01-31 12:19 - 01738752 _____ () C:\Program Files\GOG Galaxy\libglesv2.dll
2017-02-26 12:19 - 2017-01-31 12:19 - 00078848 _____ () C:\Program Files\GOG Galaxy\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-02-02 10:48 - 2016-02-02 10:46 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\jenda\Desktop\IMG_562423.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\StartupApproved\Run: => "Spotify Web Helper"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{84B1A48A-1346-48BA-8DDD-8201F944FE91}C:\users\jenda\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jenda\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{F0AA4807-B66F-4DDE-A375-16EF2C419F3D}C:\users\jenda\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jenda\appdata\roaming\spotify\spotify.exe
FirewallRules: [{789EB29E-F56A-4D72-9384-F4AFE31E3436}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{31E83627-708D-4686-87C1-A0E907DB5C08}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{BE7D7863-2C67-4805-9A03-9E3F780A0DAD}] => (Allow) C:\Users\jenda\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B368910B-1EFB-4DED-B3AF-2E56CC1A8A82}] => (Allow) C:\Users\jenda\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{782BC387-67D8-480C-922A-C8EE74C40623}] => (Allow) C:\Users\jenda\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6B0DA108-24BA-4821-A46E-F597709D0DFA}] => (Allow) C:\Users\jenda\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BAC2B02E-2B6B-40A6-A26E-44D61401EB98}] => (Allow) C:\Users\jenda\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2A2C2719-AD67-4945-B639-A26B9751D892}] => (Allow) C:\Users\jenda\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{11C2B05B-6337-448D-8578-48CFA0F46B20}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{64B50FB6-6BEE-4721-9829-DD429A7FE655}D:\program files\webteh\bsplayer\bsplayer.exe] => (Allow) D:\program files\webteh\bsplayer\bsplayer.exe
FirewallRules: [UDP Query User{C6EE20D5-6C29-417C-BBBB-294C3DBCC57C}D:\program files\webteh\bsplayer\bsplayer.exe] => (Allow) D:\program files\webteh\bsplayer\bsplayer.exe
FirewallRules: [TCP Query User{7C764D86-E4DA-4827-8660-665EF5BB37FB}C:\program files\hearthstone\hearthstone.exe] => (Allow) C:\program files\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{8CDB6997-814E-41CE-9221-1324E5C38A66}C:\program files\hearthstone\hearthstone.exe] => (Allow) C:\program files\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{7BDBBBA8-34AA-4A13-AC40-EB82F7C967DA}C:\program files\hearthstone\hearthstone.exe] => (Allow) C:\program files\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{531BB031-72BE-484F-959C-5B501F84A094}C:\program files\hearthstone\hearthstone.exe] => (Allow) C:\program files\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{D03BDAF9-8B68-4CED-B070-432A8AB70F1B}C:\program files\gog galaxy\games\gwent\gwent.exe] => (Allow) C:\program files\gog galaxy\games\gwent\gwent.exe
FirewallRules: [UDP Query User{F9091212-DDB3-4126-8B8C-4F775928CF12}C:\program files\gog galaxy\games\gwent\gwent.exe] => (Allow) C:\program files\gog galaxy\games\gwent\gwent.exe
FirewallRules: [TCP Query User{35D674C6-FD03-4973-A675-B2F32FACD3BC}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [UDP Query User{9EADBAF7-A892-4E1B-AF86-A46E3D838230}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [{C3773DBB-3762-4FEF-AE2B-96E667E6AD1E}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596\SZBrowser.exe
FirewallRules: [{C7E9F5F4-DAE4-4FBC-B655-21B3D9596FFC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{11E0D2ED-5E76-432E-A6F4-7EF6FDD8146F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{71FBECBD-158A-412A-885E-0BB98F2B9DD7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{268BA1DA-6D3B-4D43-A864-5A41179CB5B3}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{4E046FB0-C62C-4702-94C7-83B7E37EA44D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
==================== Restore Points =========================
ATTENTION: System Restore is disabled
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (05/20/2017 01:58:25 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\Flashtool\FlashTool64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (05/20/2017 01:22:34 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\Program Files\NRT\data\Drivers\DPInst_x64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (05/20/2017 01:22:22 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\Flashtool\FlashTool64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (05/20/2017 01:01:43 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\Program Files\NRT\data\Drivers\DPInst_x64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (05/20/2017 01:01:19 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\Flashtool\FlashTool64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (05/20/2017 12:56:59 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\AVAST Software\Avast\setup\iplugins\IStats.dll se nezdařilo.
Závislé sestavení Avast.VC110.CRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (05/20/2017 12:49:00 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\Program Files\NRT\data\Drivers\DPInst_x64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (05/20/2017 12:48:47 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\Flashtool\FlashTool64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (05/20/2017 11:11:41 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\Program Files\NRT\data\Drivers\DPInst_x64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (05/20/2017 11:11:26 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\Flashtool\FlashTool64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
System errors:
=============
Error: (05/20/2017 05:57:42 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění application-specific neuděluje oprávnění Local Activation pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (Using LRPC) běžící v kontejneru aplikací Unavailable – SID (Unavailable). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (05/20/2017 05:57:24 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restart the service.
Error: (05/20/2017 05:57:24 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office ClickToRun byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restart the service.
Error: (05/20/2017 05:57:24 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Com4QLBEx byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (05/20/2017 05:57:24 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba hpqwmiex byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (05/20/2017 05:57:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Bonjour Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (05/20/2017 05:57:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Agere Modem Call Progress Audio byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (05/20/2017 05:57:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Andrea ADI Filters Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (05/20/2017 05:57:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (05/20/2017 05:57:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Print Spooler byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restart the service.
CodeIntegrity:
===================================
Date: 2016-11-20 17:23:36.359
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-20 17:23:36.357
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-20 17:11:15.314
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-20 17:11:15.310
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU T5870 @ 2.00GHz
Percentage of memory in use: 37%
Total physical RAM: 3036.26 MB
Available physical RAM: 1885.16 MB
Total Virtual: 3996.26 MB
Available Virtual: 2596.62 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.35 GB) (Free:65.61 GB) NTFS
Drive d: () (Fixed) (Total:464.86 GB) (Free:372 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 7A3CFDCA)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=464.9 GB) - (Type=OF Extended)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 83DEA810)
Partition 1: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
==================== End of Addition.txt ============================
Ran by jenda (20-05-2017 18:24:06)
Running from C:\Users\jenda\Desktop
Microsoft Windows 10 Pro Version 1607 (X86) (2016-09-26 06:10:54)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-253792234-3772225743-2268583780-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-253792234-3772225743-2268583780-503 - Limited - Disabled)
Guest (S-1-5-21-253792234-3772225743-2268583780-501 - Limited - Disabled)
jenda (S-1-5-21-253792234-3772225743-2268583780-1001 - Administrator - Enabled) => C:\Users\jenda
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\uTorrent) (Version: 3.5.0.43580 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 17.4.2294 - AVAST Software)
Balíček ovladače systému Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
Battle.net (HKLM\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.)
BS.Player FREE (HKLM\...\BSPlayerf) (Version: 2.70.1080 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.29 - Piriform)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Flashtool (HKLM\...\Flashtool) (Version: 0.9.22.3 - Androxyde)
GOG Galaxy (HKLM\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Gwent (HKLM\...\1971477531_is1) (Version: 0.8.72.1a - GOG.com)
Hearthstone (HKLM\...\Hearthstone) (Version: - Blizzard Entertainment)
HP Quick Launch Buttons (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.17.1 - Hewlett-Packard Company)
Java 8 Update 121 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Java SE Development Kit 8 Update 121 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0180121}) (Version: 8.0.1210.13 - Oracle Corporation)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.100 - LSI Corporation)
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.7369.2120 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Minecraft1.8 (HKLM\...\Minecraft1.8) (Version: - )
Mozilla Firefox 53.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 53.0.2 (x86 cs)) (Version: 53.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0.2.6333 - Mozilla)
NetBeans IDE 8.2 (HKLM\...\nbi-nb-base-8.2.0.0.201609300101) (Version: 8.2 - NetBeans.org)
Nexus Root Toolkit (HKLM\...\Nexus Root Toolkit) (Version: 2.1.9 - WugFresh)
Office 16 Click-to-Run Extensibility Component (Version: 16.0.7369.2120 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7369.2120 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.7369.2120 - Microsoft Corporation) Hidden
PhotoFiltre 7 (HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\PhotoFiltre 7) (Version: - )
QLBCASL (Version: 6.40.17.2 - Hewlett-Packard) Hidden
Rocket League (HKLM\...\Rocket League_is1) (Version: - Psyonix)
SafeZone Stable 3.55.2393.596 (Version: 3.55.2393.596 - Avast Software) Hidden
SpeedFan (remove only) (HKLM\...\SpeedFan) (Version: - )
Spotify (HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\Spotify) (Version: 1.0.31.56.g526cfefe - Spotify AB)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.24.0 - Synaptics Incorporated)
WinRAR 5.31 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1314F20B-6646-4261-9585-ED479EEBAB37} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-05-20] (AVAST Software)
Task: {1643B860-1DD7-4BFF-836A-0AB0DED44889} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-05-10] (Microsoft Corporation)
Task: {1FD15094-CD2A-4870-8138-E9BBC3714B0A} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {579896B9-01B9-4A1F-A7F6-98F8A2CC7FCB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-05] (Microsoft Corporation)
Task: {626B008B-AB53-4E1B-8E63-D504D2E75E19} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {6966C24C-0938-466A-B9CD-ECF67EE42F21} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-05] (Microsoft Corporation)
Task: {8395C934-CF04-4BAC-AC5E-7D09CA86ACC6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-04-04] (Microsoft Corporation)
Task: {9803C053-C22B-49D8-9E6E-25863106FD58} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-04-11] (Piriform Ltd)
Task: {A6E6BFE8-80D5-4019-8183-1B9C0B50D230} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe
Task: {BA70911C-B4D3-4933-BC2F-6C7EFC168CDD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-04-04] (Microsoft Corporation)
Task: {D2F3F1B2-619E-49DD-90AB-80444E7916E5} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-05-20] (AVAST Software)
Task: {D96F8100-633F-45DA-BAB1-E5EEB115078D} - System32\Tasks\{260C333F-06D2-4159-9ED5-114DDA17F8C1} => pcalua.exe -a "D:\Stažené soubory\sp44863.exe" -d "D:\Stažené soubory"
Task: {DFB68D17-49EA-416C-81BA-6922CA8981E9} - System32\Tasks\SafeZone scheduled Autoupdate 1495278225 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-03-22] (Avast Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\jenda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft\Minecraft Debugger.lnk -> C:\Users\jenda\AppData\Roaming\.minecraft\minecraft launcher\Debug.bat ()
==================== Loaded Modules (Whitelisted) ==============
2016-07-16 10:25 - 2016-07-16 10:25 - 00190976 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-05-10 21:09 - 2017-04-28 02:56 - 02048488 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-10 21:09 - 2017-04-28 02:56 - 02048488 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-07-16 10:25 - 2016-07-16 10:25 - 00108032 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-15 22:09 - 2017-03-04 08:24 - 00321536 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-15 22:08 - 2017-03-04 08:04 - 06726656 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-15 22:08 - 2017-03-04 07:58 - 01150464 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-09-26 17:55 - 2016-09-26 17:55 - 00526848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-05-10 21:08 - 2017-04-28 01:52 - 01724928 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-05-10 21:08 - 2017-04-28 01:55 - 03158016 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-05-10 07:38 - 2017-05-10 07:39 - 00064512 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\SkypeHost.exe
2017-05-10 07:38 - 2017-05-10 07:39 - 00168960 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-05-10 07:38 - 2017-05-10 07:39 - 31002624 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\SkyWrap.dll
2017-05-10 07:38 - 2017-05-10 07:39 - 01741824 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\skypert.dll
2017-05-20 12:56 - 2017-05-20 12:56 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-05-20 12:56 - 2017-05-20 12:56 - 00997896 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll
2017-05-20 12:56 - 2017-05-20 12:56 - 67717632 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-05-20 12:56 - 2017-05-20 12:56 - 00176992 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-05-20 12:56 - 2017-05-20 12:56 - 00223224 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-05-20 12:56 - 2017-05-20 12:56 - 00291824 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-05-20 12:56 - 2017-05-20 12:56 - 00684656 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-02-26 12:19 - 2017-01-31 12:19 - 53018112 _____ () C:\Program Files\GOG Galaxy\libcef.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00507968 _____ () C:\Program Files\GOG Galaxy\PocoUtil.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 01076800 _____ () C:\Program Files\GOG Galaxy\PocoNet.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 01854528 _____ () C:\Program Files\GOG Galaxy\PocoData.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00393280 _____ () C:\Program Files\GOG Galaxy\PocoDataSQLite.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 01589312 _____ () C:\Program Files\GOG Galaxy\PocoFoundation.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00307776 _____ () C:\Program Files\GOG Galaxy\PocoNetSSL.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00330816 _____ () C:\Program Files\GOG Galaxy\PocoJSON.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00104000 _____ () C:\Program Files\GOG Galaxy\zlib.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00520768 _____ () C:\Program Files\GOG Galaxy\PocoXML.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00272448 _____ () C:\Program Files\GOG Galaxy\PocoZip.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00680000 _____ () C:\Program Files\GOG Galaxy\sqlite.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00425536 _____ () C:\Program Files\GOG Galaxy\pcre.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00157760 _____ () C:\Program Files\GOG Galaxy\PocoCrypto.dll
2017-02-26 12:19 - 2017-05-20 13:57 - 00152128 _____ () C:\Program Files\GOG Galaxy\expat.dll
2017-02-26 12:19 - 2017-05-20 13:56 - 01589312 _____ () C:\ProgramData\GOG.com\Galaxy\redists\PocoFoundation.dll
2017-02-26 12:19 - 2017-05-20 13:56 - 00330816 _____ () C:\ProgramData\GOG.com\Galaxy\redists\PocoJSON.dll
2017-02-26 12:19 - 2017-05-20 13:56 - 00507968 _____ () C:\ProgramData\GOG.com\Galaxy\redists\PocoUtil.dll
2017-02-26 12:19 - 2017-05-20 13:56 - 00104000 _____ () C:\ProgramData\GOG.com\Galaxy\redists\zlib.dll
2017-02-26 12:19 - 2017-05-20 13:56 - 00425536 _____ () C:\ProgramData\GOG.com\Galaxy\redists\pcre.dll
2017-02-26 12:19 - 2017-05-20 13:56 - 00520768 _____ () C:\ProgramData\GOG.com\Galaxy\redists\PocoXML.dll
2017-02-26 12:19 - 2017-05-20 13:56 - 00152128 _____ () C:\ProgramData\GOG.com\Galaxy\redists\expat.dll
2017-02-26 12:19 - 2017-01-31 12:19 - 01738752 _____ () C:\Program Files\GOG Galaxy\libglesv2.dll
2017-02-26 12:19 - 2017-01-31 12:19 - 00078848 _____ () C:\Program Files\GOG Galaxy\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-02-02 10:48 - 2016-02-02 10:46 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\jenda\Desktop\IMG_562423.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\StartupApproved\Run: => "Spotify Web Helper"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{84B1A48A-1346-48BA-8DDD-8201F944FE91}C:\users\jenda\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jenda\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{F0AA4807-B66F-4DDE-A375-16EF2C419F3D}C:\users\jenda\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jenda\appdata\roaming\spotify\spotify.exe
FirewallRules: [{789EB29E-F56A-4D72-9384-F4AFE31E3436}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{31E83627-708D-4686-87C1-A0E907DB5C08}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{BE7D7863-2C67-4805-9A03-9E3F780A0DAD}] => (Allow) C:\Users\jenda\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B368910B-1EFB-4DED-B3AF-2E56CC1A8A82}] => (Allow) C:\Users\jenda\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{782BC387-67D8-480C-922A-C8EE74C40623}] => (Allow) C:\Users\jenda\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6B0DA108-24BA-4821-A46E-F597709D0DFA}] => (Allow) C:\Users\jenda\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BAC2B02E-2B6B-40A6-A26E-44D61401EB98}] => (Allow) C:\Users\jenda\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2A2C2719-AD67-4945-B639-A26B9751D892}] => (Allow) C:\Users\jenda\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{11C2B05B-6337-448D-8578-48CFA0F46B20}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{64B50FB6-6BEE-4721-9829-DD429A7FE655}D:\program files\webteh\bsplayer\bsplayer.exe] => (Allow) D:\program files\webteh\bsplayer\bsplayer.exe
FirewallRules: [UDP Query User{C6EE20D5-6C29-417C-BBBB-294C3DBCC57C}D:\program files\webteh\bsplayer\bsplayer.exe] => (Allow) D:\program files\webteh\bsplayer\bsplayer.exe
FirewallRules: [TCP Query User{7C764D86-E4DA-4827-8660-665EF5BB37FB}C:\program files\hearthstone\hearthstone.exe] => (Allow) C:\program files\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{8CDB6997-814E-41CE-9221-1324E5C38A66}C:\program files\hearthstone\hearthstone.exe] => (Allow) C:\program files\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{7BDBBBA8-34AA-4A13-AC40-EB82F7C967DA}C:\program files\hearthstone\hearthstone.exe] => (Allow) C:\program files\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{531BB031-72BE-484F-959C-5B501F84A094}C:\program files\hearthstone\hearthstone.exe] => (Allow) C:\program files\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{D03BDAF9-8B68-4CED-B070-432A8AB70F1B}C:\program files\gog galaxy\games\gwent\gwent.exe] => (Allow) C:\program files\gog galaxy\games\gwent\gwent.exe
FirewallRules: [UDP Query User{F9091212-DDB3-4126-8B8C-4F775928CF12}C:\program files\gog galaxy\games\gwent\gwent.exe] => (Allow) C:\program files\gog galaxy\games\gwent\gwent.exe
FirewallRules: [TCP Query User{35D674C6-FD03-4973-A675-B2F32FACD3BC}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [UDP Query User{9EADBAF7-A892-4E1B-AF86-A46E3D838230}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [{C3773DBB-3762-4FEF-AE2B-96E667E6AD1E}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596\SZBrowser.exe
FirewallRules: [{C7E9F5F4-DAE4-4FBC-B655-21B3D9596FFC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{11E0D2ED-5E76-432E-A6F4-7EF6FDD8146F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{71FBECBD-158A-412A-885E-0BB98F2B9DD7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{268BA1DA-6D3B-4D43-A864-5A41179CB5B3}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{4E046FB0-C62C-4702-94C7-83B7E37EA44D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
==================== Restore Points =========================
ATTENTION: System Restore is disabled
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (05/20/2017 01:58:25 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\Flashtool\FlashTool64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (05/20/2017 01:22:34 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\Program Files\NRT\data\Drivers\DPInst_x64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (05/20/2017 01:22:22 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\Flashtool\FlashTool64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (05/20/2017 01:01:43 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\Program Files\NRT\data\Drivers\DPInst_x64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (05/20/2017 01:01:19 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\Flashtool\FlashTool64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (05/20/2017 12:56:59 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\AVAST Software\Avast\setup\iplugins\IStats.dll se nezdařilo.
Závislé sestavení Avast.VC110.CRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (05/20/2017 12:49:00 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\Program Files\NRT\data\Drivers\DPInst_x64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (05/20/2017 12:48:47 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\Flashtool\FlashTool64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (05/20/2017 11:11:41 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\Program Files\NRT\data\Drivers\DPInst_x64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (05/20/2017 11:11:26 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\Flashtool\FlashTool64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
System errors:
=============
Error: (05/20/2017 05:57:42 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění application-specific neuděluje oprávnění Local Activation pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (Using LRPC) běžící v kontejneru aplikací Unavailable – SID (Unavailable). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (05/20/2017 05:57:24 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restart the service.
Error: (05/20/2017 05:57:24 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office ClickToRun byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restart the service.
Error: (05/20/2017 05:57:24 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Com4QLBEx byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (05/20/2017 05:57:24 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba hpqwmiex byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (05/20/2017 05:57:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Bonjour Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (05/20/2017 05:57:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Agere Modem Call Progress Audio byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (05/20/2017 05:57:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Andrea ADI Filters Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (05/20/2017 05:57:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (05/20/2017 05:57:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Print Spooler byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restart the service.
CodeIntegrity:
===================================
Date: 2016-11-20 17:23:36.359
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-20 17:23:36.357
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-20 17:11:15.314
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-11-20 17:11:15.310
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU T5870 @ 2.00GHz
Percentage of memory in use: 37%
Total physical RAM: 3036.26 MB
Available physical RAM: 1885.16 MB
Total Virtual: 3996.26 MB
Available Virtual: 2596.62 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.35 GB) (Free:65.61 GB) NTFS
Drive d: () (Fixed) (Total:464.86 GB) (Free:372 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 7A3CFDCA)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=464.9 GB) - (Type=OF Extended)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 83DEA810)
Partition 1: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
==================== End of Addition.txt ============================
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Spamy z centrum.cz
Toto je pouze Addition log. Potřebuji vidět samotný FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Spamy z centrum.cz
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-05-2017
Ran by jenda (administrator) on DESKTOP-JRKV6LB (20-05-2017 18:23:24)
Running from C:\Users\jenda\Desktop
Loaded Profiles: jenda (Available Profiles: jenda)
Platform: Microsoft Windows 10 Pro Version 1607 (X86) Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\SkypeHost.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(GOG.com) C:\Program Files\GOG Galaxy\GalaxyClient.exe
(GOG.com) C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
(GOG.com) C:\Program Files\GOG Galaxy\GalaxyClient Helper.exe
(GOG.com) C:\Program Files\GOG Galaxy\GOG Galaxy Notifications Renderer.exe
(GOG.com) C:\Program Files\GOG Galaxy\GalaxyClient Helper.exe
(GOG.com) C:\Program Files\GOG Galaxy\GalaxyClient Helper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\jenda\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Analog Devices, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1791272 2010-06-04] (Synaptics Incorporated)
HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [287800 2010-02-25] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-05-20] (AVAST Software)
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\Run: [Spotify Web Helper] => C:\Users\jenda\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1552496 2016-06-22] (Spotify Ltd)
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\Run: [Spotify] => C:\Users\jenda\AppData\Roaming\Spotify\Spotify.exe [6916208 2016-06-22] (Spotify Ltd)
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7456984 2017-04-11] (Piriform Ltd)
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\Run: [GalaxyClient] => C:\Program Files\GOG Galaxy\GalaxyClient.exe [4952128 2017-05-20] (GOG.com)
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\MountPoints2: {447d2b6d-f1b9-11e6-9e81-0025b37639a2} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\MountPoints2: {a74c169e-620f-11e6-9e71-0025b37639a2} - "G:\HiSuiteDownLoader.exe"
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2017-05-20] (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [147456 2008-12-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{42ac1a8e-a736-4252-b6d9-dccace8dee8c}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{5f24d147-5d91-41c4-a4ca-a19e2caf5bb4}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2017-04-04] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-02-12] (Oracle Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-04-04] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-12] (Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-04-04] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-04-04] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-04-04] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-04-04] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\jenda\AppData\Roaming\Mozilla\Firefox\Profiles\nobb5mi9.default-1455914248652 [2017-05-20]
FF Session Restore: Mozilla\Firefox\Profiles\nobb5mi9.default-1455914248652 -> is enabled.
FF Extension: (Seznam Calib Software) - C:\Users\jenda\AppData\Roaming\Mozilla\Firefox\Profiles\nobb5mi9.default-1455914248652\Extensions\SeznamAdmin@software.xpi [2017-02-27]
FF Extension: (Avast Online Security) - C:\Users\jenda\AppData\Roaming\Mozilla\Firefox\Profiles\nobb5mi9.default-1455914248652\Extensions\wrc@avast.com.xpi [2017-05-20]
FF Extension: (Adblock Plus) - C:\Users\jenda\AppData\Roaming\Mozilla\Firefox\Profiles\nobb5mi9.default-1455914248652\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-29]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] ()
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-02-12] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-02-12] (Oracle Corporation)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-04-04] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-04-04] (Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\jenda\AppData\Local\Google\Chrome\User Data\Default [2017-05-20]
CHR Extension: (Adblock Plus) - C:\Users\jenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-02-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\jenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-02]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [26112 2009-12-03] (LSI Corporation)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5732136 2017-05-20] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-05-20] (AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2290880 2017-05-05] (Microsoft Corporation)
S3 GalaxyClientService; C:\Program Files\GOG Galaxy\GalaxyClientService.exe [512576 2017-05-20] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7955008 2017-05-20] (GOG.com)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [1887272 2016-09-15] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271488 2017-04-28] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84920 2017-04-28] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriverx.sys [258288 2017-05-20] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidshx.sys [148696 2017-05-20] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswblogx.sys [268016 2017-05-20] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbunivx.sys [41664 2017-05-20] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [34136 2017-05-20] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [31064 2017-05-20] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [107928 2017-05-20] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [90336 2017-05-20] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [62152 2017-05-20] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [764576 2017-05-20] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [482608 2017-05-20] (AVAST Software)
S2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [115152 2017-05-20] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [279800 2017-05-20] (AVAST Software)
R3 BCM43XX; C:\WINDOWS\System32\drivers\bcmwl63l.sys [4715008 2016-07-16] (Broadcom Corporation)
S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [26328 2016-03-26] (Sony Mobile Communications)
R2 giveio; C:\WINDOWS\system32\giveio.sys [5248 1996-04-03] () [File not signed]
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
S3 RTL2832U_IRHID; C:\WINDOWS\System32\drivers\RTL2832U_IRHID.sys [31872 2009-10-05] (Realtek)
R2 speedfan; C:\WINDOWS\system32\speedfan.sys [24184 2012-12-29] (Almico Software)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
R3 yukonw8; C:\WINDOWS\System32\drivers\yk63x86.sys [242688 2016-07-16] (Marvell)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-05-20 18:23 - 2017-05-20 18:23 - 00012533 _____ C:\Users\jenda\Desktop\FRST.txt
2017-05-20 18:22 - 2017-05-20 18:23 - 00000000 ____D C:\FRST
2017-05-20 18:22 - 2017-05-20 18:20 - 00112640 _____ (forum.viry.cz) C:\Users\jenda\Desktop\FRSTLauncher.exe
2017-05-20 18:21 - 2017-05-20 18:22 - 01770496 _____ (Farbar) C:\Users\jenda\Desktop\FRST.exe
2017-05-20 18:00 - 2017-05-20 18:00 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-05-20 17:54 - 2017-05-20 17:57 - 00000000 ____D C:\AdwCleaner
2017-05-20 17:54 - 2017-05-20 17:54 - 04110280 _____ C:\Users\jenda\Desktop\adwcleaner_6.047.exe
2017-05-20 16:57 - 2017-05-20 16:57 - 00000000 ____D C:\rsit
2017-05-20 16:57 - 2017-05-20 16:57 - 00000000 ____D C:\Program Files\trend micro
2017-05-20 16:44 - 2017-05-20 16:44 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2017-05-20 16:42 - 2017-05-20 16:42 - 00002517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2017-05-20 16:42 - 2017-05-20 16:42 - 00002516 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive pro firmy.lnk
2017-05-20 16:42 - 2017-05-20 16:42 - 00002511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2017-05-20 16:42 - 2017-05-20 16:42 - 00002488 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2017-05-20 16:42 - 2017-05-20 16:42 - 00002483 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2017-05-20 16:42 - 2017-05-20 16:42 - 00002476 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype pro firmy 2016.lnk
2017-05-20 16:42 - 2017-05-20 16:42 - 00002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2017-05-20 16:42 - 2017-05-20 16:42 - 00002409 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2017-05-20 16:42 - 2017-05-20 16:42 - 00002405 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2017-05-20 16:42 - 2017-05-20 16:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2017-05-20 16:40 - 2017-05-20 16:41 - 00000000 ____D C:\Program Files\Microsoft Office 15
2017-05-20 13:03 - 2017-05-20 13:03 - 00001197 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2017-05-20 13:03 - 2017-05-20 13:03 - 00001197 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-05-20 13:02 - 2017-05-20 13:02 - 00031064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2017-05-20 12:57 - 2017-05-20 12:57 - 00000000 ____D C:\Users\jenda\AppData\Roaming\AVAST Software
2017-05-20 12:56 - 2017-05-20 12:56 - 00921280 _____ (Microsoft Corporation) C:\WINDOWS\ucrtbase.dll
2017-05-20 12:56 - 2017-05-20 12:56 - 00764576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00482608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00330768 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-05-20 12:56 - 2017-05-20 12:56 - 00279800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00268016 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswblogx.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00258288 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdriverx.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00148696 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidshx.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00115152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00107928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00090336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00062152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00041664 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbunivx.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00034136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00002160 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2017-05-20 12:56 - 2017-05-20 12:56 - 00002148 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2017-05-20 12:56 - 2017-05-20 12:56 - 00000000 ____D C:\Program Files\Common Files\AV
2017-05-20 12:54 - 2017-05-20 13:02 - 00000000 ____D C:\ProgramData\AVAST Software
2017-05-20 12:54 - 2017-05-20 13:02 - 00000000 ____D C:\Program Files\AVAST Software
2017-05-20 12:51 - 2017-05-20 12:53 - 00000226 _____ C:\Users\jenda\Desktop\zaloha.txt
2017-05-20 12:48 - 2017-05-20 12:48 - 00001034 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-05-18 00:37 - 2017-05-18 00:40 - 00283366 _____ C:\Users\jenda\Desktop\CV Jan Dolni.pdf
2017-05-10 21:09 - 2017-04-28 03:00 - 05996896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-05-10 21:09 - 2017-04-28 03:00 - 01725136 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-05-10 21:09 - 2017-04-28 02:56 - 02048488 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-10 21:09 - 2017-04-28 02:55 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-05-10 21:09 - 2017-04-28 02:46 - 05722320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-05-10 21:09 - 2017-04-28 02:46 - 00342880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-05-10 21:09 - 2017-04-28 02:45 - 02263832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-05-10 21:09 - 2017-04-28 02:43 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2017-05-10 21:09 - 2017-04-28 02:43 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2017-05-10 21:09 - 2017-04-28 02:41 - 00080224 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-05-10 21:09 - 2017-04-28 02:39 - 20967840 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-05-10 21:09 - 2017-04-28 02:19 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-10 21:09 - 2017-04-28 02:19 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-05-10 21:09 - 2017-04-28 02:18 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2017-05-10 21:09 - 2017-04-28 02:14 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-05-10 21:09 - 2017-04-28 02:14 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-05-10 21:09 - 2017-04-28 02:12 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2017-05-10 21:09 - 2017-04-28 02:12 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-05-10 21:09 - 2017-04-28 02:11 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-05-10 21:09 - 2017-04-28 02:06 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-05-10 21:09 - 2017-04-28 02:06 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-05-10 21:09 - 2017-04-28 01:59 - 12187136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-05-10 21:09 - 2017-04-28 01:57 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2017-05-10 21:09 - 2017-04-28 01:54 - 02027008 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-05-10 21:09 - 2017-04-28 01:54 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-05-10 21:09 - 2017-04-28 01:53 - 01235456 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-05-10 21:09 - 2017-04-28 01:52 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2017-05-10 21:09 - 2017-04-28 01:52 - 02994176 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-05-10 21:09 - 2017-04-28 01:52 - 01887232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-05-10 21:09 - 2017-04-28 01:52 - 01600000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-05-10 21:09 - 2017-03-04 08:17 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2017-05-10 21:08 - 2017-04-28 03:33 - 00448864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-05-10 21:08 - 2017-04-28 03:32 - 00685440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-10 21:08 - 2017-04-28 03:32 - 00551264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2017-05-10 21:08 - 2017-04-28 03:32 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2017-05-10 21:08 - 2017-04-28 03:01 - 00784064 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-05-10 21:08 - 2017-04-28 02:59 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-05-10 21:08 - 2017-04-28 02:58 - 01956704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-05-10 21:08 - 2017-04-28 02:55 - 00628440 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2017-05-10 21:08 - 2017-04-28 02:51 - 00277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2017-05-10 21:08 - 2017-04-28 02:48 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-05-10 21:08 - 2017-04-28 02:46 - 01896288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-05-10 21:08 - 2017-04-28 02:46 - 01504056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-10 21:08 - 2017-04-28 02:46 - 01431232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-05-10 21:08 - 2017-04-28 02:45 - 00975744 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-05-10 21:08 - 2017-04-28 02:45 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-05-10 21:08 - 2017-04-28 02:45 - 00781144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-05-10 21:08 - 2017-04-28 02:45 - 00545120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-05-10 21:08 - 2017-04-28 02:45 - 00493920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-10 21:08 - 2017-04-28 02:43 - 02168288 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-05-10 21:08 - 2017-04-28 02:43 - 01557224 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2017-05-10 21:08 - 2017-04-28 02:43 - 00458592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2017-05-10 21:08 - 2017-04-28 02:43 - 00355168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2017-05-10 21:08 - 2017-04-28 02:42 - 00601952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2017-05-10 21:08 - 2017-04-28 02:41 - 00361104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2017-05-10 21:08 - 2017-04-28 02:40 - 06665952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-10 21:08 - 2017-04-28 02:40 - 04023008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-05-10 21:08 - 2017-04-28 02:40 - 01851696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-05-10 21:08 - 2017-04-28 02:40 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-05-10 21:08 - 2017-04-28 02:40 - 01277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-05-10 21:08 - 2017-04-28 02:40 - 01202936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-05-10 21:08 - 2017-04-28 02:40 - 00981888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-05-10 21:08 - 2017-04-28 02:40 - 00352760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2017-05-10 21:08 - 2017-04-28 02:39 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-05-10 21:08 - 2017-04-28 02:39 - 00962760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-05-10 21:08 - 2017-04-28 02:38 - 01384704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-05-10 21:08 - 2017-04-28 02:35 - 01411616 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-05-10 21:08 - 2017-04-28 02:33 - 00380184 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-05-10 21:08 - 2017-04-28 02:29 - 05685760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-05-10 21:08 - 2017-04-28 02:26 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-05-10 21:08 - 2017-04-28 02:23 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-05-10 21:08 - 2017-04-28 02:22 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-05-10 21:08 - 2017-04-28 02:21 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2017-05-10 21:08 - 2017-04-28 02:20 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-05-10 21:08 - 2017-04-28 02:19 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-05-10 21:08 - 2017-04-28 02:19 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2017-05-10 21:08 - 2017-04-28 02:19 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2017-05-10 21:08 - 2017-04-28 02:17 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-05-10 21:08 - 2017-04-28 02:17 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2017-05-10 21:08 - 2017-04-28 02:17 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-05-10 21:08 - 2017-04-28 02:17 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinRtTracing.dll
2017-05-10 21:08 - 2017-04-28 02:17 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-05-10 21:08 - 2017-04-28 02:16 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-05-10 21:08 - 2017-04-28 02:16 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-05-10 21:08 - 2017-04-28 02:16 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-05-10 21:08 - 2017-04-28 02:16 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2017-05-10 21:08 - 2017-04-28 02:16 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-05-10 21:08 - 2017-04-28 02:16 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2017-05-10 21:08 - 2017-04-28 02:16 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-05-10 21:08 - 2017-04-28 02:16 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-05-10 21:08 - 2017-04-28 02:15 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-05-10 21:08 - 2017-04-28 02:15 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-05-10 21:08 - 2017-04-28 02:14 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-05-10 21:08 - 2017-04-28 02:14 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-05-10 21:08 - 2017-04-28 02:14 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-10 21:08 - 2017-04-28 02:13 - 13873664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00271360 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-05-10 21:08 - 2017-04-28 02:12 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2017-05-10 21:08 - 2017-04-28 02:12 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-05-10 21:08 - 2017-04-28 02:12 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2017-05-10 21:08 - 2017-04-28 02:12 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-05-10 21:08 - 2017-04-28 02:11 - 01774080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-05-10 21:08 - 2017-04-28 02:11 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2017-05-10 21:08 - 2017-04-28 02:11 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-05-10 21:08 - 2017-04-28 02:11 - 00713728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-05-10 21:08 - 2017-04-28 02:11 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-05-10 21:08 - 2017-04-28 02:11 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-05-10 21:08 - 2017-04-28 02:11 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-05-10 21:08 - 2017-04-28 02:09 - 01109504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-05-10 21:08 - 2017-04-28 02:09 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-05-10 21:08 - 2017-04-28 02:09 - 00561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-05-10 21:08 - 2017-04-28 02:09 - 00352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2017-05-10 21:08 - 2017-04-28 02:08 - 18365440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-05-10 21:08 - 2017-04-28 02:08 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-05-10 21:08 - 2017-04-28 02:08 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-05-10 21:08 - 2017-04-28 02:08 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2017-05-10 21:08 - 2017-04-28 02:08 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-05-10 21:08 - 2017-04-28 02:08 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2017-05-10 21:08 - 2017-04-28 02:07 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-05-10 21:08 - 2017-04-28 02:07 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-05-10 21:08 - 2017-04-28 02:07 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2017-05-10 21:08 - 2017-04-28 02:06 - 04614656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-05-10 21:08 - 2017-04-28 02:06 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2017-05-10 21:08 - 2017-04-28 02:06 - 01488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-05-10 21:08 - 2017-04-28 02:06 - 00901120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-05-10 21:08 - 2017-04-28 02:06 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2017-05-10 21:08 - 2017-04-28 02:05 - 19414016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-05-10 21:08 - 2017-04-28 02:05 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-10 21:08 - 2017-04-28 02:05 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-05-10 21:08 - 2017-04-28 02:05 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-05-10 21:08 - 2017-04-28 02:04 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2017-05-10 21:08 - 2017-04-28 02:04 - 01284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2017-05-10 21:08 - 2017-04-28 02:04 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-05-10 21:08 - 2017-04-28 02:04 - 00344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-05-10 21:08 - 2017-04-28 02:03 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-05-10 21:08 - 2017-04-28 02:03 - 01137152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2017-05-10 21:08 - 2017-04-28 02:03 - 01098752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2017-05-10 21:08 - 2017-04-28 02:03 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-05-10 21:08 - 2017-04-28 02:01 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2017-05-10 21:08 - 2017-04-28 02:01 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-05-10 21:08 - 2017-04-28 02:01 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2017-05-10 21:08 - 2017-04-28 02:01 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2017-05-10 21:08 - 2017-04-28 02:00 - 12349440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2017-05-10 21:08 - 2017-04-28 02:00 - 03774464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-10 21:08 - 2017-04-28 02:00 - 02749440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2017-05-10 21:08 - 2017-04-28 02:00 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-10 21:08 - 2017-04-28 02:00 - 00671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwcreator.exe
2017-05-10 21:08 - 2017-04-28 02:00 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2017-05-10 21:08 - 2017-04-28 02:00 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-10 21:08 - 2017-04-28 01:59 - 02154496 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2017-05-10 21:08 - 2017-04-28 01:59 - 00786432 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-05-10 21:08 - 2017-04-28 01:58 - 07468544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-05-10 21:08 - 2017-04-28 01:58 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2017-05-10 21:08 - 2017-04-28 01:58 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2017-05-10 21:08 - 2017-04-28 01:57 - 01700864 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2017-05-10 21:08 - 2017-04-28 01:57 - 01221120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-05-10 21:08 - 2017-04-28 01:57 - 01136128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2017-05-10 21:08 - 2017-04-28 01:57 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_sr.dll
2017-05-10 21:08 - 2017-04-28 01:57 - 00641024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2017-05-10 21:08 - 2017-04-28 01:56 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2017-05-10 21:08 - 2017-04-28 01:56 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-05-10 21:08 - 2017-04-28 01:55 - 06042624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-05-10 21:08 - 2017-04-28 01:55 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-05-10 21:08 - 2017-04-28 01:55 - 01987584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-05-10 21:08 - 2017-04-28 01:55 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-05-10 21:08 - 2017-04-28 01:55 - 01413632 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-05-10 21:08 - 2017-04-28 01:55 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-05-10 21:08 - 2017-04-28 01:55 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 03664384 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 02747904 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 02483200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-05-10 21:08 - 2017-04-28 01:54 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2017-05-10 21:08 - 2017-04-28 01:53 - 01525760 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-05-10 21:08 - 2017-04-28 01:53 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-05-10 21:08 - 2017-04-28 01:53 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2017-05-10 21:08 - 2017-04-28 01:53 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-05-10 21:08 - 2017-04-28 01:53 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-05-10 21:08 - 2017-04-28 01:52 - 03596800 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2017-05-10 21:08 - 2017-04-28 01:52 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-05-10 21:08 - 2017-04-28 01:50 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-05-10 21:08 - 2017-03-04 09:57 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-05-10 21:08 - 2017-03-04 09:09 - 00890984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-05-10 21:08 - 2017-03-04 08:46 - 00198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-05-10 21:08 - 2017-03-04 08:23 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2017-05-10 21:08 - 2017-03-04 08:16 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-05-10 21:08 - 2017-03-04 08:00 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-05-10 21:07 - 2017-04-28 03:32 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-05-10 21:07 - 2017-04-28 03:28 - 00965472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-05-10 21:07 - 2017-04-28 02:49 - 00053080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys
2017-05-10 21:07 - 2017-04-28 02:45 - 00116576 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-05-10 21:07 - 2017-04-28 02:45 - 00025440 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2017-05-10 21:07 - 2017-04-28 02:23 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-05-10 21:07 - 2017-04-28 02:22 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2017-05-10 21:07 - 2017-04-28 02:22 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspppoe.sys
2017-05-10 21:07 - 2017-04-28 02:21 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2017-05-10 21:07 - 2017-04-28 02:21 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthTelemetry.dll
2017-05-10 21:07 - 2017-04-28 02:20 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\virtdisk.dll
2017-05-10 21:07 - 2017-04-28 02:20 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2017-05-10 21:07 - 2017-04-28 02:20 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2017-05-10 21:07 - 2017-04-28 02:19 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2017-05-10 21:07 - 2017-04-28 02:19 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2017-05-10 21:07 - 2017-04-28 02:18 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-05-10 21:07 - 2017-04-28 02:18 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-05-10 21:07 - 2017-04-28 02:17 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-05-10 21:07 - 2017-04-28 02:16 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dxpserver.exe
2017-05-10 21:07 - 2017-04-28 02:16 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2017-05-10 21:07 - 2017-04-28 02:16 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2017-05-10 21:07 - 2017-04-28 02:16 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2017-05-10 21:07 - 2017-04-28 02:16 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2017-05-10 21:07 - 2017-04-28 02:15 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-05-10 21:07 - 2017-04-28 02:15 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-10 21:07 - 2017-04-28 02:15 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2017-05-10 21:07 - 2017-04-28 02:15 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2017-05-10 21:07 - 2017-04-28 02:15 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-05-10 21:07 - 2017-04-28 02:15 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2017-05-10 21:07 - 2017-04-28 02:15 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-05-10 21:07 - 2017-04-28 02:15 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsentUX.dll
2017-05-10 21:07 - 2017-04-28 02:14 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-05-10 21:07 - 2017-04-28 02:13 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-05-10 21:07 - 2017-04-28 02:13 - 01243136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-05-10 21:07 - 2017-04-28 02:13 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2017-05-10 21:07 - 2017-04-28 02:13 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2017-05-10 21:07 - 2017-04-28 02:13 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2017-05-10 21:07 - 2017-04-28 02:13 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-05-10 21:07 - 2017-04-28 02:13 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2017-05-10 21:07 - 2017-04-28 02:12 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-05-10 21:07 - 2017-04-28 02:12 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-05-10 21:07 - 2017-04-28 02:12 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2017-05-10 21:07 - 2017-04-28 02:11 - 01378304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-10 21:07 - 2017-04-28 02:11 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2017-05-10 21:07 - 2017-04-28 02:11 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2017-05-10 21:07 - 2017-04-28 02:10 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2017-05-10 21:07 - 2017-04-28 02:09 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2017-05-10 21:07 - 2017-04-28 02:09 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-05-10 21:07 - 2017-04-28 02:09 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2017-05-10 21:07 - 2017-04-28 02:09 - 00258048 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-05-10 21:07 - 2017-04-28 02:07 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2017-05-10 21:07 - 2017-04-28 02:03 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-05-10 21:07 - 2017-04-28 02:03 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2017-05-10 21:07 - 2017-04-28 02:03 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2017-05-10 21:07 - 2017-04-28 02:03 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsnt.dll
2017-05-10 21:07 - 2017-04-28 02:03 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2017-05-10 21:07 - 2017-04-28 02:00 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll
2017-05-10 21:07 - 2017-04-28 01:59 - 01017856 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2017-05-10 21:07 - 2017-04-28 01:59 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2017-05-10 21:07 - 2017-04-28 01:59 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2017-05-10 21:07 - 2017-04-28 01:58 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
2017-05-10 21:07 - 2017-04-28 01:57 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2017-05-10 21:07 - 2017-04-28 01:52 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2017-05-10 21:07 - 2017-04-28 01:50 - 01438720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-05-10 21:07 - 2017-04-28 01:50 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2017-05-09 20:47 - 2017-05-05 18:38 - 00000000 ____D C:\Users\jenda\Desktop\Chinaski - Není nám do pláče 2017
2017-05-07 19:47 - 2017-05-07 19:47 - 00000000 ____D C:\Users\jenda\AppData\Roaming\java
2017-05-07 19:45 - 2017-05-07 19:56 - 00000000 ____D C:\Users\jenda\AppData\Roaming\.minecraft
2017-05-07 19:45 - 2017-05-07 19:45 - 00002173 _____ C:\Users\jenda\Desktop\Minecraft.lnk
2017-05-07 19:45 - 2017-05-07 19:45 - 00000000 ____D C:\Users\jenda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
2017-05-06 18:55 - 2017-05-06 23:20 - 02024170 _____ C:\Users\jenda\Desktop\Zaverecna_prace.pdf
2017-04-30 21:53 - 2017-04-30 21:53 - 01668724 _____ C:\Users\jenda\Desktop\DP.pdf
2017-04-29 13:57 - 2017-04-29 14:03 - 00000043 _____ C:\Users\jenda\Desktop\music.txt
2017-04-28 23:56 - 2017-05-01 17:30 - 00000182 _____ C:\Users\jenda\Desktop\td.txt
2017-04-28 15:41 - 2017-04-28 15:41 - 00000000 ____D C:\Users\jenda\AppData\Local\GOG.com
2017-04-28 15:10 - 2017-04-28 15:10 - 00000000 ____D C:\Users\jenda\AppData\LocalLow\Sun
2017-04-26 22:05 - 2017-04-26 22:05 - 00515365 _____ C:\Users\jenda\Desktop\Teorie.pdf
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-05-20 18:23 - 2016-11-18 19:14 - 00000000 ____D C:\Users\jenda\AppData\LocalLow\Mozilla
2017-05-20 18:04 - 2016-09-26 17:52 - 01024928 _____ C:\WINDOWS\system32\perfh005.dat
2017-05-20 18:04 - 2016-09-26 17:52 - 00256066 _____ C:\WINDOWS\system32\perfc005.dat
2017-05-20 18:04 - 2016-02-02 02:04 - 02587688 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-20 17:58 - 2016-09-26 08:08 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-05-20 17:58 - 2016-09-26 07:59 - 00347272 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-05-20 17:57 - 2016-07-16 04:22 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2017-05-20 17:43 - 2017-02-11 19:09 - 00000000 ____D C:\Users\jenda\AppData\Local\Battle.net
2017-05-20 17:42 - 2016-09-26 07:59 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-05-20 16:59 - 2017-02-11 19:07 - 00000000 ____D C:\Program Files\Battle.net
2017-05-20 16:44 - 2016-07-16 10:29 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-05-20 16:44 - 2016-07-16 10:29 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-05-20 16:42 - 2016-07-16 10:28 - 00000000 ____D C:\WINDOWS\INF
2017-05-20 16:41 - 2016-02-02 14:57 - 00000000 ____D C:\Program Files\Microsoft Office
2017-05-20 13:58 - 2017-02-26 12:19 - 00002163 _____ C:\Users\Public\Desktop\Gwent.lnk
2017-05-20 13:58 - 2017-02-26 12:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gwent [GOG.com]
2017-05-20 13:58 - 2017-02-26 12:19 - 00000000 ____D C:\Program Files\GOG Galaxy
2017-05-20 13:22 - 2016-09-26 08:01 - 00000000 ____D C:\Users\jenda
2017-05-20 12:53 - 2016-01-30 20:32 - 00000000 ____D C:\Users\jenda\OneDrive\Dokumenty\registry
2017-05-20 12:52 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-05-20 12:52 - 2016-02-04 00:23 - 00000000 ____D C:\Users\jenda\AppData\Roaming\uTorrent
2017-05-19 20:43 - 2017-02-12 00:47 - 00000000 ____D C:\Users\jenda\AppData\LocalLow\uTorrent
2017-05-19 17:03 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-05-18 08:10 - 2016-07-16 10:29 - 00000000 ___HD C:\Program Files\WindowsApps
2017-05-16 19:21 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-05-16 19:21 - 2016-07-16 10:19 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-05-15 22:26 - 2017-02-11 18:00 - 00000000 ____D C:\BBraun
2017-05-15 18:38 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-05-11 14:52 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\rescache
2017-05-10 23:31 - 2016-01-29 21:05 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-05-10 23:17 - 2016-10-21 10:26 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-05-10 23:17 - 2016-02-13 15:40 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-05-10 23:16 - 2016-07-16 10:29 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-05-10 23:16 - 2016-07-16 10:29 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-05-10 23:16 - 2016-07-16 10:29 - 00000000 ___RD C:\Program Files\Windows Defender
2017-05-10 23:16 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-05-10 23:16 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-05-10 23:16 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\Provisioning
2017-05-10 23:16 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-05-10 23:16 - 2016-07-16 10:29 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-05-10 23:16 - 2016-07-16 04:22 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-05-10 21:10 - 2016-02-02 12:30 - 153591048 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-05-09 21:30 - 2016-07-19 13:26 - 00000099 _____ C:\Users\jenda\Desktop\nar.txt
2017-05-09 21:23 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-05-08 13:16 - 2016-02-02 02:00 - 00000000 ____D C:\Users\jenda\AppData\Local\Packages
2017-05-06 23:09 - 2017-03-03 14:49 - 00000000 ____D C:\Users\jenda\AppData\Local\Microsoft Help
2017-04-29 02:59 - 2016-07-16 10:31 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-04-29 02:59 - 2016-07-16 10:31 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-04-23 22:29 - 2017-03-03 14:38 - 00205977 _____ C:\Users\jenda\Desktop\Data.xlsx
2017-04-22 13:08 - 2017-02-11 19:11 - 00000000 ____D C:\Program Files\Hearthstone
==================== Files in the root of some directories =======
2016-02-02 02:21 - 2016-02-02 02:21 - 0000000 _____ () C:\Users\jenda\AppData\Local\AtStart.txt
2016-02-02 02:21 - 2016-02-02 02:21 - 0000000 _____ () C:\Users\jenda\AppData\Local\DSwitch.txt
2016-02-02 02:21 - 2016-02-02 02:21 - 0000000 _____ () C:\Users\jenda\AppData\Local\QSwitch.txt
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\jenda\Desktop" je 145 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
Ran by jenda (administrator) on DESKTOP-JRKV6LB (20-05-2017 18:23:24)
Running from C:\Users\jenda\Desktop
Loaded Profiles: jenda (Available Profiles: jenda)
Platform: Microsoft Windows 10 Pro Version 1607 (X86) Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x86__kzf8qxf38zg5c\SkypeHost.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(GOG.com) C:\Program Files\GOG Galaxy\GalaxyClient.exe
(GOG.com) C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
(GOG.com) C:\Program Files\GOG Galaxy\GalaxyClient Helper.exe
(GOG.com) C:\Program Files\GOG Galaxy\GOG Galaxy Notifications Renderer.exe
(GOG.com) C:\Program Files\GOG Galaxy\GalaxyClient Helper.exe
(GOG.com) C:\Program Files\GOG Galaxy\GalaxyClient Helper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\jenda\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Analog Devices, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1791272 2010-06-04] (Synaptics Incorporated)
HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [287800 2010-02-25] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-05-20] (AVAST Software)
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\Run: [Spotify Web Helper] => C:\Users\jenda\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1552496 2016-06-22] (Spotify Ltd)
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\Run: [Spotify] => C:\Users\jenda\AppData\Roaming\Spotify\Spotify.exe [6916208 2016-06-22] (Spotify Ltd)
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7456984 2017-04-11] (Piriform Ltd)
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\Run: [GalaxyClient] => C:\Program Files\GOG Galaxy\GalaxyClient.exe [4952128 2017-05-20] (GOG.com)
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\MountPoints2: {447d2b6d-f1b9-11e6-9e81-0025b37639a2} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\MountPoints2: {a74c169e-620f-11e6-9e71-0025b37639a2} - "G:\HiSuiteDownLoader.exe"
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2017-05-20] (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [147456 2008-12-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{42ac1a8e-a736-4252-b6d9-dccace8dee8c}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{5f24d147-5d91-41c4-a4ca-a19e2caf5bb4}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2017-04-04] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-02-12] (Oracle Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-04-04] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-12] (Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-04-04] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-04-04] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-04-04] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-04-04] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\jenda\AppData\Roaming\Mozilla\Firefox\Profiles\nobb5mi9.default-1455914248652 [2017-05-20]
FF Session Restore: Mozilla\Firefox\Profiles\nobb5mi9.default-1455914248652 -> is enabled.
FF Extension: (Seznam Calib Software) - C:\Users\jenda\AppData\Roaming\Mozilla\Firefox\Profiles\nobb5mi9.default-1455914248652\Extensions\SeznamAdmin@software.xpi [2017-02-27]
FF Extension: (Avast Online Security) - C:\Users\jenda\AppData\Roaming\Mozilla\Firefox\Profiles\nobb5mi9.default-1455914248652\Extensions\wrc@avast.com.xpi [2017-05-20]
FF Extension: (Adblock Plus) - C:\Users\jenda\AppData\Roaming\Mozilla\Firefox\Profiles\nobb5mi9.default-1455914248652\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-29]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] ()
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-02-12] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-02-12] (Oracle Corporation)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-04-04] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-04-04] (Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\jenda\AppData\Local\Google\Chrome\User Data\Default [2017-05-20]
CHR Extension: (Adblock Plus) - C:\Users\jenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-02-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\jenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-02]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [26112 2009-12-03] (LSI Corporation)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5732136 2017-05-20] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-05-20] (AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2290880 2017-05-05] (Microsoft Corporation)
S3 GalaxyClientService; C:\Program Files\GOG Galaxy\GalaxyClientService.exe [512576 2017-05-20] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7955008 2017-05-20] (GOG.com)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [1887272 2016-09-15] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271488 2017-04-28] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84920 2017-04-28] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriverx.sys [258288 2017-05-20] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidshx.sys [148696 2017-05-20] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswblogx.sys [268016 2017-05-20] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbunivx.sys [41664 2017-05-20] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [34136 2017-05-20] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [31064 2017-05-20] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [107928 2017-05-20] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [90336 2017-05-20] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [62152 2017-05-20] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [764576 2017-05-20] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [482608 2017-05-20] (AVAST Software)
S2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [115152 2017-05-20] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [279800 2017-05-20] (AVAST Software)
R3 BCM43XX; C:\WINDOWS\System32\drivers\bcmwl63l.sys [4715008 2016-07-16] (Broadcom Corporation)
S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [26328 2016-03-26] (Sony Mobile Communications)
R2 giveio; C:\WINDOWS\system32\giveio.sys [5248 1996-04-03] () [File not signed]
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
S3 RTL2832U_IRHID; C:\WINDOWS\System32\drivers\RTL2832U_IRHID.sys [31872 2009-10-05] (Realtek)
R2 speedfan; C:\WINDOWS\system32\speedfan.sys [24184 2012-12-29] (Almico Software)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
R3 yukonw8; C:\WINDOWS\System32\drivers\yk63x86.sys [242688 2016-07-16] (Marvell)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-05-20 18:23 - 2017-05-20 18:23 - 00012533 _____ C:\Users\jenda\Desktop\FRST.txt
2017-05-20 18:22 - 2017-05-20 18:23 - 00000000 ____D C:\FRST
2017-05-20 18:22 - 2017-05-20 18:20 - 00112640 _____ (forum.viry.cz) C:\Users\jenda\Desktop\FRSTLauncher.exe
2017-05-20 18:21 - 2017-05-20 18:22 - 01770496 _____ (Farbar) C:\Users\jenda\Desktop\FRST.exe
2017-05-20 18:00 - 2017-05-20 18:00 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-05-20 17:54 - 2017-05-20 17:57 - 00000000 ____D C:\AdwCleaner
2017-05-20 17:54 - 2017-05-20 17:54 - 04110280 _____ C:\Users\jenda\Desktop\adwcleaner_6.047.exe
2017-05-20 16:57 - 2017-05-20 16:57 - 00000000 ____D C:\rsit
2017-05-20 16:57 - 2017-05-20 16:57 - 00000000 ____D C:\Program Files\trend micro
2017-05-20 16:44 - 2017-05-20 16:44 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2017-05-20 16:42 - 2017-05-20 16:42 - 00002517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2017-05-20 16:42 - 2017-05-20 16:42 - 00002516 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive pro firmy.lnk
2017-05-20 16:42 - 2017-05-20 16:42 - 00002511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2017-05-20 16:42 - 2017-05-20 16:42 - 00002488 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2017-05-20 16:42 - 2017-05-20 16:42 - 00002483 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2017-05-20 16:42 - 2017-05-20 16:42 - 00002476 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype pro firmy 2016.lnk
2017-05-20 16:42 - 2017-05-20 16:42 - 00002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2017-05-20 16:42 - 2017-05-20 16:42 - 00002409 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2017-05-20 16:42 - 2017-05-20 16:42 - 00002405 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2017-05-20 16:42 - 2017-05-20 16:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2017-05-20 16:40 - 2017-05-20 16:41 - 00000000 ____D C:\Program Files\Microsoft Office 15
2017-05-20 13:03 - 2017-05-20 13:03 - 00001197 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2017-05-20 13:03 - 2017-05-20 13:03 - 00001197 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-05-20 13:02 - 2017-05-20 13:02 - 00031064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2017-05-20 12:57 - 2017-05-20 12:57 - 00000000 ____D C:\Users\jenda\AppData\Roaming\AVAST Software
2017-05-20 12:56 - 2017-05-20 12:56 - 00921280 _____ (Microsoft Corporation) C:\WINDOWS\ucrtbase.dll
2017-05-20 12:56 - 2017-05-20 12:56 - 00764576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00482608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00330768 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-05-20 12:56 - 2017-05-20 12:56 - 00279800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00268016 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswblogx.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00258288 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdriverx.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00148696 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidshx.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00115152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00107928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00090336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00062152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00041664 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbunivx.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00034136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-05-20 12:56 - 2017-05-20 12:56 - 00002160 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2017-05-20 12:56 - 2017-05-20 12:56 - 00002148 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2017-05-20 12:56 - 2017-05-20 12:56 - 00000000 ____D C:\Program Files\Common Files\AV
2017-05-20 12:54 - 2017-05-20 13:02 - 00000000 ____D C:\ProgramData\AVAST Software
2017-05-20 12:54 - 2017-05-20 13:02 - 00000000 ____D C:\Program Files\AVAST Software
2017-05-20 12:51 - 2017-05-20 12:53 - 00000226 _____ C:\Users\jenda\Desktop\zaloha.txt
2017-05-20 12:48 - 2017-05-20 12:48 - 00001034 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-05-18 00:37 - 2017-05-18 00:40 - 00283366 _____ C:\Users\jenda\Desktop\CV Jan Dolni.pdf
2017-05-10 21:09 - 2017-04-28 03:00 - 05996896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-05-10 21:09 - 2017-04-28 03:00 - 01725136 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-05-10 21:09 - 2017-04-28 02:56 - 02048488 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-10 21:09 - 2017-04-28 02:55 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-05-10 21:09 - 2017-04-28 02:46 - 05722320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-05-10 21:09 - 2017-04-28 02:46 - 00342880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-05-10 21:09 - 2017-04-28 02:45 - 02263832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-05-10 21:09 - 2017-04-28 02:43 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2017-05-10 21:09 - 2017-04-28 02:43 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2017-05-10 21:09 - 2017-04-28 02:41 - 00080224 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-05-10 21:09 - 2017-04-28 02:39 - 20967840 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-05-10 21:09 - 2017-04-28 02:19 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-10 21:09 - 2017-04-28 02:19 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-05-10 21:09 - 2017-04-28 02:18 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2017-05-10 21:09 - 2017-04-28 02:14 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-05-10 21:09 - 2017-04-28 02:14 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-05-10 21:09 - 2017-04-28 02:12 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2017-05-10 21:09 - 2017-04-28 02:12 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-05-10 21:09 - 2017-04-28 02:11 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-05-10 21:09 - 2017-04-28 02:06 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-05-10 21:09 - 2017-04-28 02:06 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-05-10 21:09 - 2017-04-28 01:59 - 12187136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-05-10 21:09 - 2017-04-28 01:57 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2017-05-10 21:09 - 2017-04-28 01:54 - 02027008 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-05-10 21:09 - 2017-04-28 01:54 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-05-10 21:09 - 2017-04-28 01:53 - 01235456 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-05-10 21:09 - 2017-04-28 01:52 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2017-05-10 21:09 - 2017-04-28 01:52 - 02994176 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-05-10 21:09 - 2017-04-28 01:52 - 01887232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-05-10 21:09 - 2017-04-28 01:52 - 01600000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-05-10 21:09 - 2017-03-04 08:17 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2017-05-10 21:08 - 2017-04-28 03:33 - 00448864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-05-10 21:08 - 2017-04-28 03:32 - 00685440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-10 21:08 - 2017-04-28 03:32 - 00551264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2017-05-10 21:08 - 2017-04-28 03:32 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2017-05-10 21:08 - 2017-04-28 03:01 - 00784064 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-05-10 21:08 - 2017-04-28 02:59 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-05-10 21:08 - 2017-04-28 02:58 - 01956704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-05-10 21:08 - 2017-04-28 02:55 - 00628440 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2017-05-10 21:08 - 2017-04-28 02:51 - 00277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2017-05-10 21:08 - 2017-04-28 02:48 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-05-10 21:08 - 2017-04-28 02:46 - 01896288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-05-10 21:08 - 2017-04-28 02:46 - 01504056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-10 21:08 - 2017-04-28 02:46 - 01431232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-05-10 21:08 - 2017-04-28 02:45 - 00975744 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-05-10 21:08 - 2017-04-28 02:45 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-05-10 21:08 - 2017-04-28 02:45 - 00781144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-05-10 21:08 - 2017-04-28 02:45 - 00545120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-05-10 21:08 - 2017-04-28 02:45 - 00493920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-10 21:08 - 2017-04-28 02:43 - 02168288 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-05-10 21:08 - 2017-04-28 02:43 - 01557224 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2017-05-10 21:08 - 2017-04-28 02:43 - 00458592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2017-05-10 21:08 - 2017-04-28 02:43 - 00355168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2017-05-10 21:08 - 2017-04-28 02:42 - 00601952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2017-05-10 21:08 - 2017-04-28 02:41 - 00361104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2017-05-10 21:08 - 2017-04-28 02:40 - 06665952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-10 21:08 - 2017-04-28 02:40 - 04023008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-05-10 21:08 - 2017-04-28 02:40 - 01851696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-05-10 21:08 - 2017-04-28 02:40 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-05-10 21:08 - 2017-04-28 02:40 - 01277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-05-10 21:08 - 2017-04-28 02:40 - 01202936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-05-10 21:08 - 2017-04-28 02:40 - 00981888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-05-10 21:08 - 2017-04-28 02:40 - 00352760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2017-05-10 21:08 - 2017-04-28 02:39 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-05-10 21:08 - 2017-04-28 02:39 - 00962760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-05-10 21:08 - 2017-04-28 02:38 - 01384704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-05-10 21:08 - 2017-04-28 02:35 - 01411616 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-05-10 21:08 - 2017-04-28 02:33 - 00380184 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-05-10 21:08 - 2017-04-28 02:29 - 05685760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-05-10 21:08 - 2017-04-28 02:26 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-05-10 21:08 - 2017-04-28 02:23 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-05-10 21:08 - 2017-04-28 02:22 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-05-10 21:08 - 2017-04-28 02:21 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2017-05-10 21:08 - 2017-04-28 02:20 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-05-10 21:08 - 2017-04-28 02:19 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-05-10 21:08 - 2017-04-28 02:19 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2017-05-10 21:08 - 2017-04-28 02:19 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2017-05-10 21:08 - 2017-04-28 02:17 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-05-10 21:08 - 2017-04-28 02:17 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2017-05-10 21:08 - 2017-04-28 02:17 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-05-10 21:08 - 2017-04-28 02:17 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinRtTracing.dll
2017-05-10 21:08 - 2017-04-28 02:17 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-05-10 21:08 - 2017-04-28 02:16 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-05-10 21:08 - 2017-04-28 02:16 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-05-10 21:08 - 2017-04-28 02:16 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-05-10 21:08 - 2017-04-28 02:16 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2017-05-10 21:08 - 2017-04-28 02:16 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-05-10 21:08 - 2017-04-28 02:16 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2017-05-10 21:08 - 2017-04-28 02:16 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-05-10 21:08 - 2017-04-28 02:16 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-05-10 21:08 - 2017-04-28 02:15 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-05-10 21:08 - 2017-04-28 02:15 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-05-10 21:08 - 2017-04-28 02:14 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-05-10 21:08 - 2017-04-28 02:14 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-05-10 21:08 - 2017-04-28 02:14 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-10 21:08 - 2017-04-28 02:13 - 13873664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00271360 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-05-10 21:08 - 2017-04-28 02:13 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-05-10 21:08 - 2017-04-28 02:12 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2017-05-10 21:08 - 2017-04-28 02:12 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-05-10 21:08 - 2017-04-28 02:12 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2017-05-10 21:08 - 2017-04-28 02:12 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-05-10 21:08 - 2017-04-28 02:11 - 01774080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-05-10 21:08 - 2017-04-28 02:11 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2017-05-10 21:08 - 2017-04-28 02:11 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-05-10 21:08 - 2017-04-28 02:11 - 00713728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-05-10 21:08 - 2017-04-28 02:11 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-05-10 21:08 - 2017-04-28 02:11 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-05-10 21:08 - 2017-04-28 02:11 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-05-10 21:08 - 2017-04-28 02:10 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-05-10 21:08 - 2017-04-28 02:09 - 01109504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-05-10 21:08 - 2017-04-28 02:09 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-05-10 21:08 - 2017-04-28 02:09 - 00561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-05-10 21:08 - 2017-04-28 02:09 - 00352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2017-05-10 21:08 - 2017-04-28 02:08 - 18365440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-05-10 21:08 - 2017-04-28 02:08 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-05-10 21:08 - 2017-04-28 02:08 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-05-10 21:08 - 2017-04-28 02:08 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2017-05-10 21:08 - 2017-04-28 02:08 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-05-10 21:08 - 2017-04-28 02:08 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2017-05-10 21:08 - 2017-04-28 02:07 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-05-10 21:08 - 2017-04-28 02:07 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-05-10 21:08 - 2017-04-28 02:07 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2017-05-10 21:08 - 2017-04-28 02:06 - 04614656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-05-10 21:08 - 2017-04-28 02:06 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2017-05-10 21:08 - 2017-04-28 02:06 - 01488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-05-10 21:08 - 2017-04-28 02:06 - 00901120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-05-10 21:08 - 2017-04-28 02:06 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2017-05-10 21:08 - 2017-04-28 02:05 - 19414016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-05-10 21:08 - 2017-04-28 02:05 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-10 21:08 - 2017-04-28 02:05 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-05-10 21:08 - 2017-04-28 02:05 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-05-10 21:08 - 2017-04-28 02:04 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2017-05-10 21:08 - 2017-04-28 02:04 - 01284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2017-05-10 21:08 - 2017-04-28 02:04 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-05-10 21:08 - 2017-04-28 02:04 - 00344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-05-10 21:08 - 2017-04-28 02:03 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-05-10 21:08 - 2017-04-28 02:03 - 01137152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2017-05-10 21:08 - 2017-04-28 02:03 - 01098752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2017-05-10 21:08 - 2017-04-28 02:03 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-05-10 21:08 - 2017-04-28 02:01 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2017-05-10 21:08 - 2017-04-28 02:01 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-05-10 21:08 - 2017-04-28 02:01 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2017-05-10 21:08 - 2017-04-28 02:01 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2017-05-10 21:08 - 2017-04-28 02:00 - 12349440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2017-05-10 21:08 - 2017-04-28 02:00 - 03774464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-10 21:08 - 2017-04-28 02:00 - 02749440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2017-05-10 21:08 - 2017-04-28 02:00 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-10 21:08 - 2017-04-28 02:00 - 00671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwcreator.exe
2017-05-10 21:08 - 2017-04-28 02:00 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2017-05-10 21:08 - 2017-04-28 02:00 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-10 21:08 - 2017-04-28 01:59 - 02154496 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2017-05-10 21:08 - 2017-04-28 01:59 - 00786432 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-05-10 21:08 - 2017-04-28 01:58 - 07468544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-05-10 21:08 - 2017-04-28 01:58 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2017-05-10 21:08 - 2017-04-28 01:58 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2017-05-10 21:08 - 2017-04-28 01:57 - 01700864 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2017-05-10 21:08 - 2017-04-28 01:57 - 01221120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-05-10 21:08 - 2017-04-28 01:57 - 01136128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2017-05-10 21:08 - 2017-04-28 01:57 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_sr.dll
2017-05-10 21:08 - 2017-04-28 01:57 - 00641024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2017-05-10 21:08 - 2017-04-28 01:56 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2017-05-10 21:08 - 2017-04-28 01:56 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-05-10 21:08 - 2017-04-28 01:55 - 06042624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-05-10 21:08 - 2017-04-28 01:55 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-05-10 21:08 - 2017-04-28 01:55 - 01987584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-05-10 21:08 - 2017-04-28 01:55 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-05-10 21:08 - 2017-04-28 01:55 - 01413632 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-05-10 21:08 - 2017-04-28 01:55 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-05-10 21:08 - 2017-04-28 01:55 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 03664384 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 02747904 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 02483200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2017-05-10 21:08 - 2017-04-28 01:54 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-05-10 21:08 - 2017-04-28 01:54 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2017-05-10 21:08 - 2017-04-28 01:53 - 01525760 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-05-10 21:08 - 2017-04-28 01:53 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-05-10 21:08 - 2017-04-28 01:53 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2017-05-10 21:08 - 2017-04-28 01:53 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-05-10 21:08 - 2017-04-28 01:53 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-05-10 21:08 - 2017-04-28 01:52 - 03596800 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2017-05-10 21:08 - 2017-04-28 01:52 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-05-10 21:08 - 2017-04-28 01:50 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-05-10 21:08 - 2017-03-04 09:57 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-05-10 21:08 - 2017-03-04 09:09 - 00890984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-05-10 21:08 - 2017-03-04 08:46 - 00198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-05-10 21:08 - 2017-03-04 08:23 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2017-05-10 21:08 - 2017-03-04 08:16 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-05-10 21:08 - 2017-03-04 08:00 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-05-10 21:07 - 2017-04-28 03:32 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-05-10 21:07 - 2017-04-28 03:28 - 00965472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-05-10 21:07 - 2017-04-28 02:49 - 00053080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys
2017-05-10 21:07 - 2017-04-28 02:45 - 00116576 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-05-10 21:07 - 2017-04-28 02:45 - 00025440 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2017-05-10 21:07 - 2017-04-28 02:23 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-05-10 21:07 - 2017-04-28 02:22 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2017-05-10 21:07 - 2017-04-28 02:22 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspppoe.sys
2017-05-10 21:07 - 2017-04-28 02:21 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2017-05-10 21:07 - 2017-04-28 02:21 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthTelemetry.dll
2017-05-10 21:07 - 2017-04-28 02:20 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\virtdisk.dll
2017-05-10 21:07 - 2017-04-28 02:20 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2017-05-10 21:07 - 2017-04-28 02:20 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2017-05-10 21:07 - 2017-04-28 02:19 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2017-05-10 21:07 - 2017-04-28 02:19 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2017-05-10 21:07 - 2017-04-28 02:18 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-05-10 21:07 - 2017-04-28 02:18 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-05-10 21:07 - 2017-04-28 02:17 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-05-10 21:07 - 2017-04-28 02:16 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dxpserver.exe
2017-05-10 21:07 - 2017-04-28 02:16 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2017-05-10 21:07 - 2017-04-28 02:16 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2017-05-10 21:07 - 2017-04-28 02:16 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2017-05-10 21:07 - 2017-04-28 02:16 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2017-05-10 21:07 - 2017-04-28 02:15 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-05-10 21:07 - 2017-04-28 02:15 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-10 21:07 - 2017-04-28 02:15 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2017-05-10 21:07 - 2017-04-28 02:15 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2017-05-10 21:07 - 2017-04-28 02:15 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-05-10 21:07 - 2017-04-28 02:15 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2017-05-10 21:07 - 2017-04-28 02:15 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-05-10 21:07 - 2017-04-28 02:15 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsentUX.dll
2017-05-10 21:07 - 2017-04-28 02:14 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-05-10 21:07 - 2017-04-28 02:13 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-05-10 21:07 - 2017-04-28 02:13 - 01243136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-05-10 21:07 - 2017-04-28 02:13 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2017-05-10 21:07 - 2017-04-28 02:13 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2017-05-10 21:07 - 2017-04-28 02:13 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2017-05-10 21:07 - 2017-04-28 02:13 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-05-10 21:07 - 2017-04-28 02:13 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2017-05-10 21:07 - 2017-04-28 02:12 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-05-10 21:07 - 2017-04-28 02:12 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-05-10 21:07 - 2017-04-28 02:12 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2017-05-10 21:07 - 2017-04-28 02:11 - 01378304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-10 21:07 - 2017-04-28 02:11 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2017-05-10 21:07 - 2017-04-28 02:11 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2017-05-10 21:07 - 2017-04-28 02:10 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2017-05-10 21:07 - 2017-04-28 02:09 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2017-05-10 21:07 - 2017-04-28 02:09 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-05-10 21:07 - 2017-04-28 02:09 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2017-05-10 21:07 - 2017-04-28 02:09 - 00258048 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-05-10 21:07 - 2017-04-28 02:07 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2017-05-10 21:07 - 2017-04-28 02:03 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-05-10 21:07 - 2017-04-28 02:03 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2017-05-10 21:07 - 2017-04-28 02:03 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2017-05-10 21:07 - 2017-04-28 02:03 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsnt.dll
2017-05-10 21:07 - 2017-04-28 02:03 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2017-05-10 21:07 - 2017-04-28 02:00 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll
2017-05-10 21:07 - 2017-04-28 01:59 - 01017856 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2017-05-10 21:07 - 2017-04-28 01:59 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2017-05-10 21:07 - 2017-04-28 01:59 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2017-05-10 21:07 - 2017-04-28 01:58 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
2017-05-10 21:07 - 2017-04-28 01:57 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2017-05-10 21:07 - 2017-04-28 01:52 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2017-05-10 21:07 - 2017-04-28 01:50 - 01438720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-05-10 21:07 - 2017-04-28 01:50 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2017-05-09 20:47 - 2017-05-05 18:38 - 00000000 ____D C:\Users\jenda\Desktop\Chinaski - Není nám do pláče 2017
2017-05-07 19:47 - 2017-05-07 19:47 - 00000000 ____D C:\Users\jenda\AppData\Roaming\java
2017-05-07 19:45 - 2017-05-07 19:56 - 00000000 ____D C:\Users\jenda\AppData\Roaming\.minecraft
2017-05-07 19:45 - 2017-05-07 19:45 - 00002173 _____ C:\Users\jenda\Desktop\Minecraft.lnk
2017-05-07 19:45 - 2017-05-07 19:45 - 00000000 ____D C:\Users\jenda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
2017-05-06 18:55 - 2017-05-06 23:20 - 02024170 _____ C:\Users\jenda\Desktop\Zaverecna_prace.pdf
2017-04-30 21:53 - 2017-04-30 21:53 - 01668724 _____ C:\Users\jenda\Desktop\DP.pdf
2017-04-29 13:57 - 2017-04-29 14:03 - 00000043 _____ C:\Users\jenda\Desktop\music.txt
2017-04-28 23:56 - 2017-05-01 17:30 - 00000182 _____ C:\Users\jenda\Desktop\td.txt
2017-04-28 15:41 - 2017-04-28 15:41 - 00000000 ____D C:\Users\jenda\AppData\Local\GOG.com
2017-04-28 15:10 - 2017-04-28 15:10 - 00000000 ____D C:\Users\jenda\AppData\LocalLow\Sun
2017-04-26 22:05 - 2017-04-26 22:05 - 00515365 _____ C:\Users\jenda\Desktop\Teorie.pdf
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-05-20 18:23 - 2016-11-18 19:14 - 00000000 ____D C:\Users\jenda\AppData\LocalLow\Mozilla
2017-05-20 18:04 - 2016-09-26 17:52 - 01024928 _____ C:\WINDOWS\system32\perfh005.dat
2017-05-20 18:04 - 2016-09-26 17:52 - 00256066 _____ C:\WINDOWS\system32\perfc005.dat
2017-05-20 18:04 - 2016-02-02 02:04 - 02587688 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-20 17:58 - 2016-09-26 08:08 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-05-20 17:58 - 2016-09-26 07:59 - 00347272 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-05-20 17:57 - 2016-07-16 04:22 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2017-05-20 17:43 - 2017-02-11 19:09 - 00000000 ____D C:\Users\jenda\AppData\Local\Battle.net
2017-05-20 17:42 - 2016-09-26 07:59 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-05-20 16:59 - 2017-02-11 19:07 - 00000000 ____D C:\Program Files\Battle.net
2017-05-20 16:44 - 2016-07-16 10:29 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-05-20 16:44 - 2016-07-16 10:29 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-05-20 16:42 - 2016-07-16 10:28 - 00000000 ____D C:\WINDOWS\INF
2017-05-20 16:41 - 2016-02-02 14:57 - 00000000 ____D C:\Program Files\Microsoft Office
2017-05-20 13:58 - 2017-02-26 12:19 - 00002163 _____ C:\Users\Public\Desktop\Gwent.lnk
2017-05-20 13:58 - 2017-02-26 12:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gwent [GOG.com]
2017-05-20 13:58 - 2017-02-26 12:19 - 00000000 ____D C:\Program Files\GOG Galaxy
2017-05-20 13:22 - 2016-09-26 08:01 - 00000000 ____D C:\Users\jenda
2017-05-20 12:53 - 2016-01-30 20:32 - 00000000 ____D C:\Users\jenda\OneDrive\Dokumenty\registry
2017-05-20 12:52 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-05-20 12:52 - 2016-02-04 00:23 - 00000000 ____D C:\Users\jenda\AppData\Roaming\uTorrent
2017-05-19 20:43 - 2017-02-12 00:47 - 00000000 ____D C:\Users\jenda\AppData\LocalLow\uTorrent
2017-05-19 17:03 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-05-18 08:10 - 2016-07-16 10:29 - 00000000 ___HD C:\Program Files\WindowsApps
2017-05-16 19:21 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-05-16 19:21 - 2016-07-16 10:19 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-05-15 22:26 - 2017-02-11 18:00 - 00000000 ____D C:\BBraun
2017-05-15 18:38 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-05-11 14:52 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\rescache
2017-05-10 23:31 - 2016-01-29 21:05 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-05-10 23:17 - 2016-10-21 10:26 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-05-10 23:17 - 2016-02-13 15:40 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-05-10 23:16 - 2016-07-16 10:29 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-05-10 23:16 - 2016-07-16 10:29 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-05-10 23:16 - 2016-07-16 10:29 - 00000000 ___RD C:\Program Files\Windows Defender
2017-05-10 23:16 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-05-10 23:16 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-05-10 23:16 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\Provisioning
2017-05-10 23:16 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-05-10 23:16 - 2016-07-16 10:29 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-05-10 23:16 - 2016-07-16 04:22 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-05-10 21:10 - 2016-02-02 12:30 - 153591048 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-05-09 21:30 - 2016-07-19 13:26 - 00000099 _____ C:\Users\jenda\Desktop\nar.txt
2017-05-09 21:23 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-05-08 13:16 - 2016-02-02 02:00 - 00000000 ____D C:\Users\jenda\AppData\Local\Packages
2017-05-06 23:09 - 2017-03-03 14:49 - 00000000 ____D C:\Users\jenda\AppData\Local\Microsoft Help
2017-04-29 02:59 - 2016-07-16 10:31 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-04-29 02:59 - 2016-07-16 10:31 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-04-23 22:29 - 2017-03-03 14:38 - 00205977 _____ C:\Users\jenda\Desktop\Data.xlsx
2017-04-22 13:08 - 2017-02-11 19:11 - 00000000 ____D C:\Program Files\Hearthstone
==================== Files in the root of some directories =======
2016-02-02 02:21 - 2016-02-02 02:21 - 0000000 _____ () C:\Users\jenda\AppData\Local\AtStart.txt
2016-02-02 02:21 - 2016-02-02 02:21 - 0000000 _____ () C:\Users\jenda\AppData\Local\DSwitch.txt
2016-02-02 02:21 - 2016-02-02 02:21 - 0000000 _____ () C:\Users\jenda\AppData\Local\QSwitch.txt
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\jenda\Desktop" je 145 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Spamy z centrum.cz
OK. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\MountPoints2: {447d2b6d-f1b9-11e6-9e81-0025b37639a2} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\MountPoints2: {a74c169e-620f-11e6-9e71-0025b37639a2} - "G:\HiSuiteDownLoader.exe"
Bonjour (HKLM\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.)
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Spamy z centrum.cz
Doufám, že jsem to udělal správně. 
Fix result of Farbar Recovery Scan Tool (x86) Version: 20-05-2017
Ran by jenda (20-05-2017 21:15:56) Run:1
Running from C:\Users\jenda\Desktop
Loaded Profiles: jenda (Available Profiles: jenda)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\MountPoints2: {447d2b6d-f1b9-11e6-9e81-0025b37639a2} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\MountPoints2: {a74c169e-620f-11e6-9e71-0025b37639a2} - "G:\HiSuiteDownLoader.exe"
Bonjour (HKLM\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.)
EmptyTemp:
End
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully.
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{447d2b6d-f1b9-11e6-9e81-0025b37639a2} => key removed successfully.
HKCR\CLSID\{447d2b6d-f1b9-11e6-9e81-0025b37639a2} => key not found.
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a74c169e-620f-11e6-9e71-0025b37639a2} => key removed successfully.
HKCR\CLSID\{a74c169e-620f-11e6-9e71-0025b37639a2} => key not found.
Bonjour (HKLM\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.) => Error: No automatic fix found for this entry.
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 72229395 B
Java, Flash, Steam htmlcache => 523 B
Windows/system/drivers => 925147558 B
Edge => 194 B
Chrome => 258048 B
Firefox => 120005917 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 4160 B
NetworkService => 924114 B
jenda => 14302345 B
RecycleBin => 0 B
EmptyTemp: => 1.1 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 21:16:08 ====
Fix result of Farbar Recovery Scan Tool (x86) Version: 20-05-2017
Ran by jenda (20-05-2017 21:15:56) Run:1
Running from C:\Users\jenda\Desktop
Loaded Profiles: jenda (Available Profiles: jenda)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\MountPoints2: {447d2b6d-f1b9-11e6-9e81-0025b37639a2} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\...\MountPoints2: {a74c169e-620f-11e6-9e71-0025b37639a2} - "G:\HiSuiteDownLoader.exe"
Bonjour (HKLM\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.)
EmptyTemp:
End
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully.
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{447d2b6d-f1b9-11e6-9e81-0025b37639a2} => key removed successfully.
HKCR\CLSID\{447d2b6d-f1b9-11e6-9e81-0025b37639a2} => key not found.
HKU\S-1-5-21-253792234-3772225743-2268583780-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a74c169e-620f-11e6-9e71-0025b37639a2} => key removed successfully.
HKCR\CLSID\{a74c169e-620f-11e6-9e71-0025b37639a2} => key not found.
Bonjour (HKLM\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.) => Error: No automatic fix found for this entry.
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 72229395 B
Java, Flash, Steam htmlcache => 523 B
Windows/system/drivers => 925147558 B
Edge => 194 B
Chrome => 258048 B
Firefox => 120005917 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 4160 B
NetworkService => 924114 B
jenda => 14302345 B
RecycleBin => 0 B
EmptyTemp: => 1.1 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 21:16:08 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Spamy z centrum.cz
Správně jste to provedl. Nastala nějaká změna? Doporučuji ještě změnit heslo na mail.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Spamy z centrum.cz
Heslo jsem znovu změnil. Uvidím, jestli se ještě někdo ozve ohledně mnou odeslaného spamu, ale snad to již bude v pořádku. Mockrát Vám děkuji za pomoc a Váš čas.
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Spamy z centrum.cz
Rádo se stalo!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?