Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16.01.2019 01
Ran by swenik (administrator) on NB-DOMA (17-01-2019 10:15:27)
Running from C:\Users\swenik\Desktop
Loaded Profiles: swenik (Available Profiles: swenik)
Platform: Windows 10 Home Version 1803 17134.523 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\setup\New_13010938\instup.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13671640 2014-04-10] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [261512 2019-01-04] (AVAST Software)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [261512 2019-01-04] (AVAST Software)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [729704 2018-06-20] (Disc Soft Ltd)
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19589208 2018-12-10] (Piriform Software Ltd)
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\MountPoints2: {199c21b9-9ee6-11e8-9b52-f8a963e3c085} - "G:\autorun.exe"
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\MountPoints2: {9d8802d6-a43a-11e8-9b53-f8a963e3c085} - "H:\setup.exe"
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\MountPoints2: {fbf0eb89-7bd4-11e8-9b4e-acb57dd570aa} - "F:\Mafia2.part01.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-12] (Google Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6f9c8a83-2515-4550-9e71-14a2dac0ec5f}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-12-29] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-12-29] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: c8cu0gji.default
FF ProfilePath: C:\Users\swenik\AppData\Roaming\Mozilla\Firefox\Profiles\c8cu0gji.default [2019-01-17]
FF Homepage: Mozilla\Firefox\Profiles\c8cu0gji.default -> hxxps://www.seznam.cz/
FF NewTabOverride: Mozilla\Firefox\Profiles\c8cu0gji.default -> Disabled: {ea614400-e918-4741-9a97-7a972ff7c30b}
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\swenik\AppData\Roaming\Mozilla\Firefox\Profiles\c8cu0gji.default\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2019-01-05]
FF Extension: (To Google Translate) - C:\Users\swenik\AppData\Roaming\Mozilla\Firefox\Profiles\c8cu0gji.default\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2018-11-15]
FF Extension: (Seznam doplněk - Esko) - C:\Users\swenik\AppData\Roaming\Mozilla\Firefox\Profiles\c8cu0gji.default\Extensions\sko-extension@firma.seznam.cz.xpi [2018-11-23]
FF Extension: (Avast SafePrice) - C:\Users\swenik\AppData\Roaming\Mozilla\Firefox\Profiles\c8cu0gji.default\Extensions\sp@avast.com.xpi [2018-04-04]
FF Extension: (Avast Online Security) - C:\Users\swenik\AppData\Roaming\Mozilla\Firefox\Profiles\c8cu0gji.default\Extensions\wrc@avast.com.xpi [2018-06-20]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_114.dll [2019-01-08] ()
FF Plugin: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-12-29] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-12-29] (Oracle Corporation)
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_114.dll [2019-01-08] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default [2019-01-17]
CHR Extension: (Prezentace) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-24]
CHR Extension: (YouTube) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-24]
CHR Extension: (Tabulky) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-05]
CHR Extension: (Gmail) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-07-24]
CHR Extension: (Chrome Media Router) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-01-07]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7834368 2019-01-04] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [357816 2019-01-04] (AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-01-04] (AVAST Software)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3606632 2018-06-20] (Disc Soft Ltd)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2017-09-01] (Intel Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11644656 2018-09-10] (TeamViewer GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-12] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [107136 2018-09-21] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37304 2019-01-04] (AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [203488 2019-01-04] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [223056 2019-01-14] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196264 2019-01-04] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320888 2019-01-04] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [58160 2019-01-04] (AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-01-04] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [239808 2019-01-04] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46584 2019-01-04] (AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42488 2019-01-04] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [166472 2019-01-04] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111992 2019-01-04] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88144 2019-01-04] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1034056 2019-01-04] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [474648 2019-01-04] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [218056 2019-01-04] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [380144 2019-01-04] (AVAST Software)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-12-02] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-07-05] (Disc Soft Ltd)
S3 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064 2015-06-19] (Disc Soft Ltd)
R3 kmloop; C:\WINDOWS\system32\DRIVERS\loop.sys [16896 2018-04-12] (Microsoft Corporation)
S3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-07-18] (Acer Incorporated)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [100312 2013-12-10] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvacwu.inf_amd64_31f4ef4821269ebb\nvlddmkm.sys [14190520 2017-01-17] (NVIDIA Corporation)
S3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14680 2013-07-18] (Acer Incorporated)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-07-22] (Realtek )
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [761600 2015-06-24] (Realsil Semiconductor Corporation)
R3 SynRMIHID; C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys [61624 2015-08-21] (Synaptics Incorporated)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [213080 2018-08-14] (Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [222864 2018-08-14] (Oracle Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-01-17 10:16 - 2019-01-04 12:27 - 000361352 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-01-17 10:15 - 2019-01-17 16:21 - 000015886 _____ C:\Users\swenik\Desktop\FRST.txt
2019-01-17 10:15 - 2019-01-17 10:15 - 000000000 ____D C:\Users\swenik\Desktop\FRST-OlderVersion
2019-01-16 10:30 - 2019-01-17 10:15 - 002427904 _____ (Farbar) C:\Users\swenik\Desktop\FRST64.exe
2019-01-14 16:32 - 2019-01-14 16:32 - 000223056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-01-14 16:32 - 2019-01-14 16:32 - 000223056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw9f2bf280add5e30c.tmp
2019-01-14 15:58 - 2019-01-14 15:58 - 000003400 _____ C:\Users\swenik\Documents\cc_20190114_155806.reg
2019-01-13 17:52 - 2019-01-13 17:52 - 000000000 ____D C:\Users\swenik\AppData\Roaming\The Creative Assembly
2019-01-13 17:52 - 2019-01-13 17:52 - 000000000 ____D C:\Users\swenik\AppData\Local\SKIDROW
2019-01-13 17:31 - 2019-01-16 23:00 - 000000000 ____D C:\Program Files (x86)\Sega
2019-01-13 17:19 - 2019-01-13 17:19 - 000000000 ____D C:\Users\swenik\Downloads\Empire TW čeština a další přídavky
2019-01-13 05:06 - 2019-01-13 12:08 - 3483983872 _____ C:\Users\swenik\Downloads\Empire Total War Complete Edition - CorePack.iso
2019-01-12 19:35 - 2019-01-12 23:02 - 3807952398 _____ C:\Users\swenik\Downloads\Empire TW čeština a další přídavky.7z
2019-01-12 01:08 - 2019-01-12 01:08 - 000000000 ____D C:\Users\swenik\Documents\Diablo III
2019-01-11 22:55 - 2019-01-11 22:55 - 000000932 _____ C:\Users\Public\Desktop\Diablo III.lnk
2019-01-11 22:55 - 2019-01-11 22:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
2019-01-11 22:45 - 2019-01-12 00:04 - 000000000 ____D C:\Program Files (x86)\Diablo III
2019-01-11 22:45 - 2019-01-11 22:45 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
2019-01-11 22:38 - 2019-01-11 22:38 - 000000000 ____D C:\Users\swenik\AppData\Local\Blizzard Entertainment
2019-01-11 22:37 - 2019-01-13 12:25 - 000000000 ____D C:\Users\swenik\AppData\Local\Battle.net
2019-01-11 22:37 - 2019-01-12 01:08 - 000000000 ____D C:\Users\swenik\AppData\Roaming\Battle.net
2019-01-11 22:37 - 2019-01-11 22:37 - 000000936 _____ C:\Users\Public\Desktop\Battle.net.lnk
2019-01-11 22:37 - 2019-01-11 22:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2019-01-11 22:36 - 2019-01-11 22:37 - 000000000 ____D C:\Program Files (x86)\Battle.net
2019-01-11 22:36 - 2019-01-11 22:36 - 000000000 ____D C:\Users\swenik\AppData\Local\Blizzard
2019-01-11 22:35 - 2019-01-11 22:36 - 000000000 ____D C:\ProgramData\Battle.net
2019-01-11 22:35 - 2019-01-11 22:35 - 004870640 _____ (Blizzard Entertainment) C:\Users\swenik\Downloads\Diablo-III-Setup.exe
2019-01-09 11:13 - 2019-01-01 14:50 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-01-09 11:13 - 2019-01-01 14:47 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowslivelogin.dll
2019-01-09 11:13 - 2019-01-01 14:46 - 012710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-01-09 11:13 - 2019-01-01 14:45 - 000714752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2019-01-09 11:13 - 2019-01-01 14:45 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2019-01-09 11:13 - 2019-01-01 14:43 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-01-09 11:13 - 2019-01-01 14:20 - 011902976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-01-09 11:13 - 2019-01-01 14:20 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowslivelogin.dll
2019-01-09 11:13 - 2019-01-01 14:18 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2019-01-09 11:13 - 2019-01-01 14:17 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2019-01-09 11:13 - 2019-01-01 08:14 - 001221432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-01-09 11:13 - 2019-01-01 08:14 - 001063224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-01-09 11:13 - 2019-01-01 08:14 - 001029944 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-01-09 11:13 - 2019-01-01 08:14 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-01-09 11:13 - 2019-01-01 08:14 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-01-09 11:13 - 2019-01-01 08:14 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-01-09 11:13 - 2019-01-01 08:13 - 003292152 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-01-09 11:13 - 2019-01-01 08:13 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-01-09 11:13 - 2019-01-01 08:13 - 000709728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-01-09 11:13 - 2019-01-01 08:13 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-01-09 11:13 - 2019-01-01 08:13 - 000170808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-01-09 11:13 - 2019-01-01 08:12 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-01-09 11:13 - 2019-01-01 08:12 - 007520104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-01-09 11:13 - 2019-01-01 08:12 - 002765344 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-01-09 11:13 - 2019-01-01 08:12 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-01-09 11:13 - 2019-01-01 08:12 - 002421288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-01-09 11:13 - 2019-01-01 08:12 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-01-09 11:13 - 2019-01-01 08:12 - 000268304 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-01-09 11:13 - 2019-01-01 08:12 - 000128824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-01-09 11:13 - 2019-01-01 08:12 - 000043536 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-01-09 11:13 - 2019-01-01 07:55 - 025856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-01-09 11:13 - 2019-01-01 07:50 - 022715392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-01-09 11:13 - 2019-01-01 07:50 - 004383744 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-01-09 11:13 - 2019-01-01 07:48 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-01-09 11:13 - 2019-01-01 07:48 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-01-09 11:13 - 2019-01-01 07:48 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2019-01-09 11:13 - 2019-01-01 07:47 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-01-09 11:13 - 2019-01-01 07:47 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-01-09 11:13 - 2019-01-01 07:46 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-01-09 11:13 - 2019-01-01 07:46 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-01-09 11:13 - 2019-01-01 07:46 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-01-09 11:13 - 2019-01-01 07:45 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-01-09 11:13 - 2019-01-01 07:45 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-01-09 11:13 - 2019-01-01 07:45 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-01-09 11:13 - 2019-01-01 07:44 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2019-01-09 11:13 - 2019-01-01 07:44 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-01-09 11:13 - 2019-01-01 07:44 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-01-09 11:13 - 2019-01-01 07:44 - 000662528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2019-01-09 11:13 - 2019-01-01 07:44 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-01-09 11:13 - 2019-01-01 07:43 - 001805312 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-01-09 11:13 - 2019-01-01 07:42 - 004939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-01-09 11:13 - 2019-01-01 07:42 - 002247680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2019-01-09 11:13 - 2019-01-01 07:42 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-01-09 11:13 - 2019-01-01 07:42 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-01-09 11:13 - 2019-01-01 07:41 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-01-09 11:13 - 2019-01-01 07:41 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-01-09 11:13 - 2019-01-01 07:41 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2019-01-09 11:13 - 2019-01-01 07:41 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 006571584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 002478664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 002253696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 000880048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 000581808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 000381240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-01-09 11:13 - 2019-01-01 07:29 - 022016512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-01-09 11:13 - 2019-01-01 07:22 - 019405312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-01-09 11:13 - 2019-01-01 07:17 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-01-09 11:13 - 2019-01-01 07:16 - 005775872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-01-09 11:13 - 2019-01-01 07:16 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2019-01-09 11:13 - 2019-01-01 07:16 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2019-01-09 11:13 - 2019-01-01 07:15 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-01-09 11:13 - 2019-01-01 07:15 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-01-09 11:13 - 2019-01-01 07:15 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-01-09 11:13 - 2019-01-01 07:15 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-01-09 11:13 - 2019-01-01 07:14 - 004514816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-01-09 11:13 - 2019-01-01 07:14 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-01-09 11:13 - 2019-01-01 07:14 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-01-09 11:13 - 2019-01-01 07:13 - 001628160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-01-09 11:13 - 2019-01-01 07:13 - 000594432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-01-09 11:13 - 2019-01-01 07:13 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-01-09 11:13 - 2019-01-01 07:12 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-01-09 11:13 - 2019-01-01 07:12 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2019-01-09 11:13 - 2019-01-01 07:12 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-01-09 11:13 - 2019-01-01 07:12 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2019-01-09 11:13 - 2019-01-01 06:23 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2019-01-09 11:13 - 2018-12-19 05:49 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-01-06 18:02 - 2019-01-07 00:18 - 2594743496 _____ C:\Users\swenik\Downloads\Sedm samurajů _ 七人の侍 _ Shichinin no samurai _ Seven Samurai 1954, JPN - CZ tit, alfatanker.avi
2019-01-04 12:28 - 2019-01-04 12:27 - 000320888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswd1bddd71164e9571.tmp
2019-01-04 12:28 - 2019-01-04 12:27 - 000320888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys
2019-01-04 12:28 - 2019-01-04 12:27 - 000196264 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-01-04 12:28 - 2019-01-04 12:27 - 000196264 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw5fc4e83cf91613eb.tmp
2019-01-04 12:28 - 2019-01-04 12:27 - 000058160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswd6f4e928d3cae442.tmp
2019-01-04 12:28 - 2019-01-04 12:27 - 000058160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-01-04 12:28 - 2019-01-04 12:27 - 000037304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswb6b37286d0618e3f.tmp
2019-01-04 12:28 - 2019-01-04 12:27 - 000037304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-01-01 03:02 - 2010-05-10 19:22 - 000000000 ____D C:\Users\swenik\Downloads\A je TO -( 71x trvanie 8 hod+)wmv
2019-01-01 01:01 - 2019-01-01 02:40 - 1646216474 _____ C:\Users\swenik\Downloads\A je TO -( 71x trvanie 8 hod+)wmv.rar
2018-12-29 23:21 - 2018-12-29 23:21 - 019299120 _____ (Piriform Software Ltd) C:\Users\swenik\Downloads\ccsetup551(1).exe
2018-12-29 22:42 - 2018-12-29 22:42 - 000004656 _____ C:\Users\swenik\Documents\cc_20181229_224234.reg
2018-12-29 22:33 - 2018-12-29 22:34 - 019299120 _____ (Piriform Software Ltd) C:\Users\swenik\Downloads\ccsetup551.exe
2018-12-29 01:34 - 2018-12-29 22:39 - 227422050 _____ C:\Users\swenik\Downloads\Robin Hood - 02 - Robin a carodej cast.2.avi.part
2018-12-29 01:34 - 2018-12-29 01:34 - 000000000 _____ C:\Users\swenik\Downloads\Robin Hood - 02 - Robin a carodej cast.2.avi
2018-12-28 01:33 - 2018-12-28 02:14 - 729353826 _____ C:\Users\swenik\Downloads\Robin Hood - 01 - Robin a carodej cast.1.avi
2018-12-25 00:52 - 2018-12-25 00:52 - 000785153 _____ C:\Users\swenik\Desktop\Návod - Xiaomi Amazfit 2 Stratos.pdf
2018-12-25 00:10 - 2018-12-25 00:10 - 000584386 _____ C:\Users\swenik\Downloads\Návod - Niceboy X-fit GPS.pdf
2018-12-24 12:34 - 2018-12-24 15:52 - 826589678 _____ C:\Users\swenik\Downloads\maly velky hokejista -82'-DVBT_CZ-(romin).avi
2018-12-20 12:00 - 2018-12-14 07:55 - 003396608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-12-20 11:59 - 2018-12-14 08:29 - 001130760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-12-20 11:59 - 2018-12-14 08:25 - 001035256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-12-20 11:59 - 2018-12-14 08:21 - 001457240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-12-20 11:59 - 2018-12-14 08:21 - 001257672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-12-20 11:59 - 2018-12-14 08:21 - 001140480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-12-20 11:59 - 2018-12-14 08:21 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-12-20 11:59 - 2018-12-14 08:21 - 000982912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-12-20 11:59 - 2018-12-14 08:10 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2018-12-20 11:59 - 2018-12-14 08:07 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-12-20 11:59 - 2018-12-14 07:55 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-12-20 11:59 - 2018-12-14 07:54 - 006032384 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2018-12-20 11:59 - 2018-12-14 07:54 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2018-12-20 11:59 - 2018-12-14 07:52 - 002173440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-12-20 11:59 - 2018-12-14 07:52 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2018-12-20 11:59 - 2018-12-14 07:51 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-12-20 11:59 - 2018-12-14 07:50 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-12-20 00:21 - 2018-12-20 15:38 - 3389407450 _____ C:\Users\swenik\Downloads\Jáson a Argonauti 2000 HQ.avi
2018-12-19 21:31 - 2018-12-20 00:10 - 1749854508 _____ C:\Users\swenik\Downloads\Zlatovlaska (1973)HD[960x720].avi
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-01-17 22:03 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-01-17 21:12 - 2018-05-17 09:10 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-01-17 20:11 - 2018-05-17 08:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-01-17 10:16 - 2018-04-12 00:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-01-17 10:13 - 2018-03-22 20:38 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-01-17 10:13 - 2015-05-24 22:16 - 000000000 __SHD C:\Users\swenik\IntelGraphicsProfiles
2019-01-17 10:11 - 2018-05-17 09:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-01-17 10:11 - 2018-01-05 02:52 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-01-17 10:11 - 2017-07-11 12:06 - 000000000 ____D C:\ProgramData\NVIDIA
2019-01-17 09:43 - 2018-05-17 08:50 - 000000000 ____D C:\Users\swenik
2019-01-17 00:06 - 2016-11-16 07:41 - 000000000 ____D C:\Users\swenik\AppData\LocalLow\Mozilla
2019-01-16 23:36 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-01-16 18:52 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-01-16 14:59 - 2018-03-22 19:12 - 000000000 ____D C:\FRST
2019-01-15 18:50 - 2018-07-05 23:33 - 000000000 ____D C:\Users\swenik\AppData\Roaming\DAEMON Tools Lite
2019-01-15 16:18 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-01-15 16:18 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2019-01-15 16:18 - 2017-08-17 21:31 - 000000000 ____D C:\Users\swenik\AppData\Local\CrashDumps
2019-01-14 15:58 - 2017-07-12 16:52 - 000592616 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-01-14 14:48 - 2017-07-12 16:43 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-01-14 14:48 - 2017-07-12 16:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-01-13 17:54 - 2018-01-07 18:40 - 000000000 ____D C:\Users\swenik\AppData\Local\ElevatedDiagnostics
2019-01-13 17:45 - 2018-10-07 17:07 - 000000000 ___HD C:\WINDOWS\msdownld.tmp
2019-01-13 17:45 - 2018-10-07 17:07 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2019-01-13 12:27 - 2017-07-13 15:23 - 000000000 ____D C:\Users\swenik\AppData\Roaming\vlc
2019-01-12 17:25 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-01-12 13:33 - 2018-05-17 09:10 - 000003362 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1935932718-3073885608-842228917-1001
2019-01-12 13:33 - 2018-05-17 08:50 - 000002394 _____ C:\Users\swenik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-12 13:33 - 2015-11-24 17:47 - 000000000 ___RD C:\Users\swenik\OneDrive
2019-01-12 11:19 - 2018-05-19 08:57 - 000000000 ____D C:\Users\swenik\AppData\Local\D3DSCache
2019-01-11 12:46 - 2017-07-12 16:43 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-01-10 18:20 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-01-09 19:22 - 2018-05-17 08:59 - 001689050 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-01-09 19:22 - 2018-04-12 16:50 - 000716276 _____ C:\WINDOWS\system32\perfh005.dat
2019-01-09 19:22 - 2018-04-12 16:50 - 000144534 _____ C:\WINDOWS\system32\perfc005.dat
2019-01-09 19:12 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-01-09 19:12 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-01-09 11:25 - 2017-07-12 19:07 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-01-09 11:23 - 2017-07-12 19:07 - 132790320 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-01-09 11:22 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-01-09 09:25 - 2018-06-29 20:48 - 000000000 ____D C:\Users\swenik\AppData\Local\AVAST Software
2019-01-09 09:25 - 2018-05-17 09:10 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-01-08 17:52 - 2018-05-17 09:10 - 000004640 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-01-08 17:52 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-01-08 17:52 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-01-04 19:07 - 2017-11-23 20:55 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-01-04 12:27 - 2018-10-10 11:19 - 000042488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-01-04 12:27 - 2018-10-10 11:19 - 000042488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw64b5595878bdd7e0.tmp
2019-01-04 12:27 - 2018-06-20 23:01 - 000015488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2019-01-04 12:27 - 2018-06-20 23:01 - 000015488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw83b09ca519109b00.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 001034056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 001034056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswc0e0ac944588b8b4.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000474648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000474648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw1a115f097ed0d1a8.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000380144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000380144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw09b420d5603784b8.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000218056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000218056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw3a98a11701319726.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000203488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000203488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw3ccc3d03f0d370eb.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000166472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000166472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw9c7530e260369ab3.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000111992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000111992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw3c52a8f4689fdc03.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000088144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000088144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw4765edf5a03dd592.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000046584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000046584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw8b0c42e9105754e0.tmp
2019-01-04 12:27 - 2018-01-07 19:17 - 000239808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-01-04 12:27 - 2018-01-07 19:17 - 000239808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw93c6ebd8c2746f86.tmp
2019-01-03 17:00 - 2018-01-05 02:06 - 000000000 ____D C:\Users\swenik\AppData\Local\PlaceholderTileLogoFolder
2019-01-03 17:00 - 2017-12-01 18:47 - 000000000 ____D C:\Users\swenik\AppData\Local\Packages
2019-01-02 20:41 - 2018-07-13 00:15 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-01-02 20:41 - 2018-07-13 00:15 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-12-29 22:44 - 2017-08-09 21:12 - 000110968 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2018-12-29 22:44 - 2017-08-09 21:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-12-29 22:43 - 2017-08-09 21:11 - 000000000 ____D C:\Program Files\Java
2018-12-29 22:42 - 2017-09-25 16:45 - 000001040 _____ C:\Users\Public\Desktop\WinRAR.lnk
2018-12-29 22:42 - 2017-09-25 16:45 - 000000000 ____D C:\Users\swenik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-12-29 22:42 - 2017-09-25 16:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-12-29 22:42 - 2017-09-25 16:45 - 000000000 ____D C:\Program Files\WinRAR
2018-12-29 22:40 - 2017-07-13 15:23 - 000000920 _____ C:\Users\Public\Desktop\VLC media player.lnk
2018-12-29 22:36 - 2018-05-21 10:34 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-12-29 22:36 - 2018-05-21 10:34 - 000000000 ____D C:\Program Files\CCleaner
2018-12-19 19:51 - 2018-05-17 09:10 - 000003472 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-12-19 19:51 - 2018-05-17 09:10 - 000003348 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
==================== Files in the root of some directories =======
2018-05-19 08:55 - 2018-05-19 08:55 - 007649280 _____ () C:\Program Files (x86)\GUT5248.tmp
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-05-17 08:43
==================== End of FRST.txt ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o konrolu logu, pomalý NB
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Prosím o konrolu logu, pomalý NB
- Přílohy
-
- Addition.rar
- (8.02 KiB) Staženo 81 x
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o konrolu logu, pomalý NB
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o konrolu logu, pomalý NB
# -------------------------------
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build: 12-18-2018
# Database: 2018-12-17.4 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-20-2019
# Duration: 00:00:54
# OS: Windows 10 Home
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1298 octets] - [18/01/2019 18:36:12]
AdwCleaner[C00].txt - [1464 octets] - [19/01/2019 02:42:02]
AdwCleaner_Debug.log - [5701 octets] - [19/01/2019 19:14:06]
AdwCleaner[S01].txt - [1434 octets] - [20/01/2019 05:48:38]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build: 12-18-2018
# Database: 2018-12-17.4 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-20-2019
# Duration: 00:00:54
# OS: Windows 10 Home
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1298 octets] - [18/01/2019 18:36:12]
AdwCleaner[C00].txt - [1464 octets] - [19/01/2019 02:42:02]
AdwCleaner_Debug.log - [5701 octets] - [19/01/2019 19:14:06]
AdwCleaner[S01].txt - [1434 octets] - [20/01/2019 05:48:38]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o konrolu logu, pomalý NB
Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\MountPoints2: {199c21b9-9ee6-11e8-9b52-f8a963e3c085} - "G:\autorun.exe"
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\MountPoints2: {9d8802d6-a43a-11e8-9b53-f8a963e3c085} - "H:\setup.exe"
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\MountPoints2: {fbf0eb89-7bd4-11e8-9b4e-acb57dd570aa} - "F:\Mafia2.part01.exe"
C:\WINDOWS\system32\Drivers\asw9f2bf280add5e30c.tmp
C:\WINDOWS\system32\Drivers\asw5fc4e83cf91613eb.tmp
C:\WINDOWS\system32\Drivers\aswd6f4e928d3cae442.tmp
C:\WINDOWS\system32\Drivers\aswb6b37286d0618e3f.tmp
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\Drivers\asw64b5595878bdd7e0.tmp
C:\WINDOWS\system32\Drivers\asw83b09ca519109b00.tmp
C:\WINDOWS\system32\Drivers\aswc0e0ac944588b8b4.tmp
C:\WINDOWS\system32\Drivers\asw1a115f097ed0d1a8.tmp
C:\WINDOWS\system32\Drivers\asw09b420d5603784b8.tmp
C:\WINDOWS\system32\Drivers\asw3a98a11701319726.tmp
C:\WINDOWS\system32\Drivers\asw3ccc3d03f0d370eb.tmp
C:\WINDOWS\system32\Drivers\asw9c7530e260369ab3.tmp
C:\WINDOWS\system32\Drivers\asw3c52a8f4689fdc03.tmp
C:\WINDOWS\system32\Drivers\asw4765edf5a03dd592.tmp
C:\WINDOWS\system32\Drivers\asw8b0c42e9105754e0.tmp
C:\WINDOWS\system32\Drivers\asw93c6ebd8c2746f86.tmp
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Program Files (x86)\GUT5248.tmp
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
Task: {57DAE9BC-1F03-4B0D-8B04-066275F44095} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-24] (Google Inc.)
Task: {6562096A-6483-41F5-B734-2C63D7EC9ECE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-24] (Google Inc.)
Task: {D93EBEFA-1FB8-4130-8581-C1E937C01983} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o konrolu logu, pomalý NB
Fix result of Farbar Recovery Scan Tool (x64) Version: 20.01.2019
Ran by swenik (21-01-2019 04:48:49) Run:1
Running from C:\Users\swenik\Desktop
Loaded Profiles: swenik (Available Profiles: swenik)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\MountPoints2: {199c21b9-9ee6-11e8-9b52-f8a963e3c085} - "G:\autorun.exe"
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\MountPoints2: {9d8802d6-a43a-11e8-9b53-f8a963e3c085} - "H:\setup.exe"
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\MountPoints2: {fbf0eb89-7bd4-11e8-9b4e-acb57dd570aa} - "F:\Mafia2.part01.exe"
C:\WINDOWS\system32\Drivers\asw9f2bf280add5e30c.tmp
C:\WINDOWS\system32\Drivers\asw5fc4e83cf91613eb.tmp
C:\WINDOWS\system32\Drivers\aswd6f4e928d3cae442.tmp
C:\WINDOWS\system32\Drivers\aswb6b37286d0618e3f.tmp
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\Drivers\asw64b5595878bdd7e0.tmp
C:\WINDOWS\system32\Drivers\asw83b09ca519109b00.tmp
C:\WINDOWS\system32\Drivers\aswc0e0ac944588b8b4.tmp
C:\WINDOWS\system32\Drivers\asw1a115f097ed0d1a8.tmp
C:\WINDOWS\system32\Drivers\asw09b420d5603784b8.tmp
C:\WINDOWS\system32\Drivers\asw3a98a11701319726.tmp
C:\WINDOWS\system32\Drivers\asw3ccc3d03f0d370eb.tmp
C:\WINDOWS\system32\Drivers\asw9c7530e260369ab3.tmp
C:\WINDOWS\system32\Drivers\asw3c52a8f4689fdc03.tmp
C:\WINDOWS\system32\Drivers\asw4765edf5a03dd592.tmp
C:\WINDOWS\system32\Drivers\asw8b0c42e9105754e0.tmp
C:\WINDOWS\system32\Drivers\asw93c6ebd8c2746f86.tmp
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Program Files (x86)\GUT5248.tmp
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
Task: {57DAE9BC-1F03-4B0D-8B04-066275F44095} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-24] (Google Inc.)
Task: {6562096A-6483-41F5-B734-2C63D7EC9ECE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-24] (Google Inc.)
Task: {D93EBEFA-1FB8-4130-8581-C1E937C01983} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{199c21b9-9ee6-11e8-9b52-f8a963e3c085} => removed successfully
HKLM\Software\Classes\CLSID\{199c21b9-9ee6-11e8-9b52-f8a963e3c085} => not found
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9d8802d6-a43a-11e8-9b53-f8a963e3c085} => removed successfully
HKLM\Software\Classes\CLSID\{9d8802d6-a43a-11e8-9b53-f8a963e3c085} => not found
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fbf0eb89-7bd4-11e8-9b4e-acb57dd570aa} => removed successfully
HKLM\Software\Classes\CLSID\{fbf0eb89-7bd4-11e8-9b4e-acb57dd570aa} => not found
"C:\WINDOWS\system32\Drivers\asw9f2bf280add5e30c.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw5fc4e83cf91613eb.tmp" => not found
"C:\WINDOWS\system32\Drivers\aswd6f4e928d3cae442.tmp" => not found
"C:\WINDOWS\system32\Drivers\aswb6b37286d0618e3f.tmp" => not found
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
"C:\WINDOWS\system32\Drivers\asw64b5595878bdd7e0.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw83b09ca519109b00.tmp" => not found
"C:\WINDOWS\system32\Drivers\aswc0e0ac944588b8b4.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw1a115f097ed0d1a8.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw09b420d5603784b8.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw3a98a11701319726.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw3ccc3d03f0d370eb.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw9c7530e260369ab3.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw3c52a8f4689fdc03.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw4765edf5a03dd592.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw8b0c42e9105754e0.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw93c6ebd8c2746f86.tmp" => not found
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\Program Files (x86)\GUT5248.tmp => moved successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{57DAE9BC-1F03-4B0D-8B04-066275F44095}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{57DAE9BC-1F03-4B0D-8B04-066275F44095}" => removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6562096A-6483-41F5-B734-2C63D7EC9ECE}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6562096A-6483-41F5-B734-2C63D7EC9ECE}" => removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D93EBEFA-1FB8-4130-8581-C1E937C01983}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D93EBEFA-1FB8-4130-8581-C1E937C01983}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
=========== EmptyTemp: ==========
BITS transfer queue => 11821056 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 32651944 B
Java, Flash, Steam htmlcache => 1171 B
Windows/system/drivers => 42057800 B
Edge => 33280 B
Chrome => 51255745 B
Firefox => 32589185 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
LocalService => 0 B
NetworkService => 245703856 B
NetworkService => 0 B
swenik => 5867570 B
RecycleBin => 11902600 B
EmptyTemp: => 413.8 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 05:50:18 ====
Ran by swenik (21-01-2019 04:48:49) Run:1
Running from C:\Users\swenik\Desktop
Loaded Profiles: swenik (Available Profiles: swenik)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\MountPoints2: {199c21b9-9ee6-11e8-9b52-f8a963e3c085} - "G:\autorun.exe"
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\MountPoints2: {9d8802d6-a43a-11e8-9b53-f8a963e3c085} - "H:\setup.exe"
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\MountPoints2: {fbf0eb89-7bd4-11e8-9b4e-acb57dd570aa} - "F:\Mafia2.part01.exe"
C:\WINDOWS\system32\Drivers\asw9f2bf280add5e30c.tmp
C:\WINDOWS\system32\Drivers\asw5fc4e83cf91613eb.tmp
C:\WINDOWS\system32\Drivers\aswd6f4e928d3cae442.tmp
C:\WINDOWS\system32\Drivers\aswb6b37286d0618e3f.tmp
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\Drivers\asw64b5595878bdd7e0.tmp
C:\WINDOWS\system32\Drivers\asw83b09ca519109b00.tmp
C:\WINDOWS\system32\Drivers\aswc0e0ac944588b8b4.tmp
C:\WINDOWS\system32\Drivers\asw1a115f097ed0d1a8.tmp
C:\WINDOWS\system32\Drivers\asw09b420d5603784b8.tmp
C:\WINDOWS\system32\Drivers\asw3a98a11701319726.tmp
C:\WINDOWS\system32\Drivers\asw3ccc3d03f0d370eb.tmp
C:\WINDOWS\system32\Drivers\asw9c7530e260369ab3.tmp
C:\WINDOWS\system32\Drivers\asw3c52a8f4689fdc03.tmp
C:\WINDOWS\system32\Drivers\asw4765edf5a03dd592.tmp
C:\WINDOWS\system32\Drivers\asw8b0c42e9105754e0.tmp
C:\WINDOWS\system32\Drivers\asw93c6ebd8c2746f86.tmp
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Program Files (x86)\GUT5248.tmp
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
Task: {57DAE9BC-1F03-4B0D-8B04-066275F44095} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-24] (Google Inc.)
Task: {6562096A-6483-41F5-B734-2C63D7EC9ECE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-24] (Google Inc.)
Task: {D93EBEFA-1FB8-4130-8581-C1E937C01983} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{199c21b9-9ee6-11e8-9b52-f8a963e3c085} => removed successfully
HKLM\Software\Classes\CLSID\{199c21b9-9ee6-11e8-9b52-f8a963e3c085} => not found
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9d8802d6-a43a-11e8-9b53-f8a963e3c085} => removed successfully
HKLM\Software\Classes\CLSID\{9d8802d6-a43a-11e8-9b53-f8a963e3c085} => not found
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fbf0eb89-7bd4-11e8-9b4e-acb57dd570aa} => removed successfully
HKLM\Software\Classes\CLSID\{fbf0eb89-7bd4-11e8-9b4e-acb57dd570aa} => not found
"C:\WINDOWS\system32\Drivers\asw9f2bf280add5e30c.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw5fc4e83cf91613eb.tmp" => not found
"C:\WINDOWS\system32\Drivers\aswd6f4e928d3cae442.tmp" => not found
"C:\WINDOWS\system32\Drivers\aswb6b37286d0618e3f.tmp" => not found
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
"C:\WINDOWS\system32\Drivers\asw64b5595878bdd7e0.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw83b09ca519109b00.tmp" => not found
"C:\WINDOWS\system32\Drivers\aswc0e0ac944588b8b4.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw1a115f097ed0d1a8.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw09b420d5603784b8.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw3a98a11701319726.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw3ccc3d03f0d370eb.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw9c7530e260369ab3.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw3c52a8f4689fdc03.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw4765edf5a03dd592.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw8b0c42e9105754e0.tmp" => not found
"C:\WINDOWS\system32\Drivers\asw93c6ebd8c2746f86.tmp" => not found
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\Program Files (x86)\GUT5248.tmp => moved successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{57DAE9BC-1F03-4B0D-8B04-066275F44095}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{57DAE9BC-1F03-4B0D-8B04-066275F44095}" => removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6562096A-6483-41F5-B734-2C63D7EC9ECE}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6562096A-6483-41F5-B734-2C63D7EC9ECE}" => removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D93EBEFA-1FB8-4130-8581-C1E937C01983}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D93EBEFA-1FB8-4130-8581-C1E937C01983}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
=========== EmptyTemp: ==========
BITS transfer queue => 11821056 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 32651944 B
Java, Flash, Steam htmlcache => 1171 B
Windows/system/drivers => 42057800 B
Edge => 33280 B
Chrome => 51255745 B
Firefox => 32589185 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
LocalService => 0 B
NetworkService => 245703856 B
NetworkService => 0 B
swenik => 5867570 B
RecycleBin => 11902600 B
EmptyTemp: => 413.8 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 05:50:18 ====
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o konrolu logu, pomalý NB
OK. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o konrolu logu, pomalý NB
Možná malinko lepší, ale stále je strašně pomalý.. 
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o konrolu logu, pomalý NB
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o konrolu logu, pomalý NB
Omlouvám se, ten log bude, ale vše strašně trvá, po každém kliknutí musím čekat často i hodiny, než ntb něco udělá, restart je také otázka snad půl dne, natož stahovat nějaký program a ještě ho spustit.. 
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o konrolu logu, pomalý NB
OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o konrolu logu, pomalý NB
Já už vážně nevím, co mám dělat. Ten program se mi povedlo nějak stáhnout, snad i instalovat. Ale spustit nejde nebo mi neukazuje písmena a jsou tam jen obdélníčky.. Restartuji, trvá to třeba hodinu, ale zase se program nespustí, jen prohlížeč občas..
Bojím se, aby šel ten neplacený MBAM vůbec spustit, zatím šel jednou, ale bez písmen a dělalo to cokoliv. Cílený scan ještě nešel..
Omlouvám se, že furt otravuju. Ale pomalu ztrácím naději..
Bojím se, aby šel ten neplacený MBAM vůbec spustit, zatím šel jednou, ale bez písmen a dělalo to cokoliv. Cílený scan ještě nešel..
Omlouvám se, že furt otravuju. Ale pomalu ztrácím naději..
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o konrolu logu, pomalý NB
To je hodně divné. Zkuste ho spustit v nouz. režimu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o konrolu logu, pomalý NB
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20.01.2019
Ran by swenik (administrator) on NB-DOMA (27-01-2019 01:16:53)
Running from C:\Users\swenik\Desktop
Loaded Profiles: swenik (Available Profiles: swenik)
Platform: Windows 10 Home Version 1803 17134.523 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1901.7-0\MsMpEng.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18112.14311.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1901.7-0\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\setup\New_13010938\instup.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13671640 2014-04-10] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [261512 2019-01-04] (AVAST Software)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [261512 2019-01-04] (AVAST Software)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [729704 2018-06-20] (Disc Soft Ltd)
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19589208 2018-12-10] (Piriform Software Ltd)
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\MountPoints2: {199c21b9-9ee6-11e8-9b52-f8a963e3c085} - "G:\autorun.exe"
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\MountPoints2: {9d8802d6-a43a-11e8-9b53-f8a963e3c085} - "H:\setup.exe"
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\MountPoints2: {fbf0eb89-7bd4-11e8-9b4e-acb57dd570aa} - "F:\Mafia2.part01.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-12] (Google Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6f9c8a83-2515-4550-9e71-14a2dac0ec5f}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-12-29] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-12-29] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: c8cu0gji.default
FF ProfilePath: C:\Users\swenik\AppData\Roaming\Mozilla\Firefox\Profiles\c8cu0gji.default [2019-01-27]
FF Homepage: Mozilla\Firefox\Profiles\c8cu0gji.default -> hxxps://www.seznam.cz/
FF NewTabOverride: Mozilla\Firefox\Profiles\c8cu0gji.default -> Disabled: {ea614400-e918-4741-9a97-7a972ff7c30b}
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\swenik\AppData\Roaming\Mozilla\Firefox\Profiles\c8cu0gji.default\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2019-01-05]
FF Extension: (To Google Translate) - C:\Users\swenik\AppData\Roaming\Mozilla\Firefox\Profiles\c8cu0gji.default\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2018-11-15]
FF Extension: (Seznam doplněk - Esko) - C:\Users\swenik\AppData\Roaming\Mozilla\Firefox\Profiles\c8cu0gji.default\Extensions\sko-extension@firma.seznam.cz.xpi [2018-11-23]
FF Extension: (Avast SafePrice) - C:\Users\swenik\AppData\Roaming\Mozilla\Firefox\Profiles\c8cu0gji.default\Extensions\sp@avast.com.xpi [2018-04-04]
FF Extension: (Avast Online Security) - C:\Users\swenik\AppData\Roaming\Mozilla\Firefox\Profiles\c8cu0gji.default\Extensions\wrc@avast.com.xpi [2018-06-20]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_114.dll [2019-01-08] ()
FF Plugin: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-12-29] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-12-29] (Oracle Corporation)
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_114.dll [2019-01-08] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default [2019-01-22]
CHR Extension: (Prezentace) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-24]
CHR Extension: (YouTube) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-24]
CHR Extension: (Tabulky) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-05]
CHR Extension: (Gmail) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-07-24]
CHR Extension: (Chrome Media Router) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-01-07]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7834368 2019-01-04] (AVAST Software)
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [357816 2019-01-04] (AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-01-04] (AVAST Software)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3606632 2018-06-20] (Disc Soft Ltd)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2017-09-01] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11644656 2018-09-10] (TeamViewer GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\NisSrv.exe [4096976 2019-01-25] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MsMpEng.exe [113992 2019-01-25] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37304 2019-01-04] (AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [203488 2019-01-04] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [223056 2019-01-14] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196264 2019-01-04] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320888 2019-01-04] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [58160 2019-01-04] (AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-01-04] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [239808 2019-01-04] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46584 2019-01-04] (AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42488 2019-01-04] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [166472 2019-01-04] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111992 2019-01-04] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88144 2019-01-04] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1034056 2019-01-04] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [474648 2019-01-04] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [218056 2019-01-04] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [380144 2019-01-04] (AVAST Software)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-12-02] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-07-05] (Disc Soft Ltd)
S3 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064 2015-06-19] (Disc Soft Ltd)
R3 kmloop; C:\WINDOWS\system32\DRIVERS\loop.sys [16896 2018-04-12] (Microsoft Corporation)
S3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-07-18] (Acer Incorporated)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [136408 2019-01-23] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [100312 2013-12-10] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvacwu.inf_amd64_31f4ef4821269ebb\nvlddmkm.sys [14190520 2017-01-17] (NVIDIA Corporation)
S3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14680 2013-07-18] (Acer Incorporated)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-07-22] (Realtek )
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [761600 2015-06-24] (Realsil Semiconductor Corporation)
R3 SynRMIHID; C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys [61624 2015-08-21] (Synaptics Incorporated)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [213080 2018-08-14] (Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [222864 2018-08-14] (Oracle Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46488 2019-01-25] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [343032 2019-01-25] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [63480 2019-01-25] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-01-27 01:16 - 2019-01-27 05:14 - 000016207 _____ C:\Users\swenik\Desktop\FRST.txt
2019-01-26 20:09 - 2019-01-26 20:09 - 000000000 ___HD C:\OneDriveTemp
2019-01-26 16:26 - 2019-01-26 16:26 - 000000000 _____ C:\WINDOWS\system32\last.dump
2019-01-26 16:24 - 2019-01-04 12:27 - 000361352 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-01-25 03:08 - 2019-01-25 03:08 - 000000080 ___SH C:\bootTel.dat
2019-01-25 03:06 - 2019-01-25 03:06 - 000000000 __SHD C:\found.001
2019-01-23 15:21 - 2019-01-23 15:24 - 000000000 ____D C:\ProgramData\MB2Migration
2019-01-22 02:37 - 2019-01-23 15:30 - 000136408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2019-01-22 00:38 - 2019-01-22 00:38 - 000001175 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2019-01-22 00:36 - 2019-01-22 00:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2019-01-22 00:28 - 2015-04-14 09:38 - 000064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2019-01-22 00:28 - 2015-04-14 09:37 - 000107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2019-01-22 00:27 - 2015-04-14 09:37 - 000025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2019-01-22 00:26 - 2019-01-22 00:34 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2019-01-22 00:26 - 2019-01-22 00:26 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-01-22 00:23 - 2019-01-22 00:24 - 082482456 _____ (Malwarebytes ) C:\Users\swenik\Downloads\mb3-setup-consumer-3.6.1.2711-1.0.519-1.0.8888.exe
2019-01-21 17:44 - 2019-01-21 18:05 - 082430032 _____ (Malwarebytes ) C:\Users\swenik\Downloads\Nepotvrzeno 297367.crdownload
2019-01-21 17:27 - 2019-01-21 17:47 - 019341880 _____ (Piriform Software Ltd) C:\Users\swenik\Downloads\ccsetup552 (1).exe
2019-01-21 15:32 - 2019-01-21 15:35 - 019341880 _____ (Piriform Software Ltd) C:\Users\swenik\Downloads\ccsetup552.exe
2019-01-21 08:30 - 2019-01-26 16:19 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-01-21 04:48 - 2019-01-21 05:50 - 000007141 _____ C:\Users\swenik\Desktop\Fixlog.txt
2019-01-21 01:38 - 2019-01-21 01:47 - 002428416 _____ (Farbar) C:\Users\swenik\Desktop\FRST64.exe
2019-01-20 20:05 - 2019-01-25 00:16 - 000000000 ____D C:\WINDOWS\Minidump
2019-01-20 20:05 - 2019-01-24 23:36 - 646083769 _____ C:\WINDOWS\MEMORY.DMP
2019-01-20 20:05 - 2019-01-20 21:33 - 000539324 _____ C:\WINDOWS\Minidump\012019-31578-01.dmp
2019-01-18 13:13 - 2019-01-18 13:17 - 007320272 _____ (Malwarebytes) C:\Users\swenik\Desktop\adwcleaner_7.2.6.0.exe
2019-01-17 10:15 - 2019-01-21 00:04 - 000000000 ____D C:\Users\swenik\Desktop\FRST-OlderVersion
2019-01-14 16:32 - 2019-01-14 16:32 - 000223056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-01-14 16:32 - 2019-01-14 16:32 - 000223056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw22965ff98b8e36ee.tmp
2019-01-14 15:58 - 2019-01-14 15:58 - 000003400 _____ C:\Users\swenik\Documents\cc_20190114_155806.reg
2019-01-13 17:52 - 2019-01-13 17:52 - 000000000 ____D C:\Users\swenik\AppData\Roaming\The Creative Assembly
2019-01-13 17:52 - 2019-01-13 17:52 - 000000000 ____D C:\Users\swenik\AppData\Local\SKIDROW
2019-01-13 17:31 - 2019-01-16 23:00 - 000000000 ____D C:\Program Files (x86)\Sega
2019-01-13 17:19 - 2019-01-13 17:19 - 000000000 ____D C:\Users\swenik\Downloads\Empire TW čeština a další přídavky
2019-01-13 05:06 - 2019-01-13 12:08 - 3483983872 _____ C:\Users\swenik\Downloads\Empire Total War Complete Edition - CorePack.iso
2019-01-12 19:35 - 2019-01-12 23:02 - 3807952398 _____ C:\Users\swenik\Downloads\Empire TW čeština a další přídavky.7z
2019-01-12 01:08 - 2019-01-12 01:08 - 000000000 ____D C:\Users\swenik\Documents\Diablo III
2019-01-11 22:55 - 2019-01-11 22:55 - 000000932 _____ C:\Users\Public\Desktop\Diablo III.lnk
2019-01-11 22:55 - 2019-01-11 22:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
2019-01-11 22:45 - 2019-01-12 00:04 - 000000000 ____D C:\Program Files (x86)\Diablo III
2019-01-11 22:45 - 2019-01-11 22:45 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
2019-01-11 22:38 - 2019-01-11 22:38 - 000000000 ____D C:\Users\swenik\AppData\Local\Blizzard Entertainment
2019-01-11 22:37 - 2019-01-13 12:25 - 000000000 ____D C:\Users\swenik\AppData\Local\Battle.net
2019-01-11 22:37 - 2019-01-12 01:08 - 000000000 ____D C:\Users\swenik\AppData\Roaming\Battle.net
2019-01-11 22:37 - 2019-01-11 22:37 - 000000936 _____ C:\Users\Public\Desktop\Battle.net.lnk
2019-01-11 22:37 - 2019-01-11 22:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2019-01-11 22:36 - 2019-01-11 22:37 - 000000000 ____D C:\Program Files (x86)\Battle.net
2019-01-11 22:36 - 2019-01-11 22:36 - 000000000 ____D C:\Users\swenik\AppData\Local\Blizzard
2019-01-11 22:35 - 2019-01-11 22:36 - 000000000 ____D C:\ProgramData\Battle.net
2019-01-11 22:35 - 2019-01-11 22:35 - 004870640 _____ (Blizzard Entertainment) C:\Users\swenik\Downloads\Diablo-III-Setup.exe
2019-01-09 11:13 - 2019-01-01 14:50 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-01-09 11:13 - 2019-01-01 14:47 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowslivelogin.dll
2019-01-09 11:13 - 2019-01-01 14:46 - 012710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-01-09 11:13 - 2019-01-01 14:45 - 000714752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2019-01-09 11:13 - 2019-01-01 14:45 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2019-01-09 11:13 - 2019-01-01 14:43 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-01-09 11:13 - 2019-01-01 14:20 - 011902976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-01-09 11:13 - 2019-01-01 14:20 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowslivelogin.dll
2019-01-09 11:13 - 2019-01-01 14:18 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2019-01-09 11:13 - 2019-01-01 14:17 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2019-01-09 11:13 - 2019-01-01 08:14 - 001221432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-01-09 11:13 - 2019-01-01 08:14 - 001063224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-01-09 11:13 - 2019-01-01 08:14 - 001029944 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-01-09 11:13 - 2019-01-01 08:14 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-01-09 11:13 - 2019-01-01 08:14 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-01-09 11:13 - 2019-01-01 08:14 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-01-09 11:13 - 2019-01-01 08:13 - 003292152 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-01-09 11:13 - 2019-01-01 08:13 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-01-09 11:13 - 2019-01-01 08:13 - 000709728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-01-09 11:13 - 2019-01-01 08:13 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-01-09 11:13 - 2019-01-01 08:13 - 000170808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-01-09 11:13 - 2019-01-01 08:12 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-01-09 11:13 - 2019-01-01 08:12 - 007520104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-01-09 11:13 - 2019-01-01 08:12 - 002765344 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-01-09 11:13 - 2019-01-01 08:12 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-01-09 11:13 - 2019-01-01 08:12 - 002421288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-01-09 11:13 - 2019-01-01 08:12 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-01-09 11:13 - 2019-01-01 08:12 - 000268304 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-01-09 11:13 - 2019-01-01 08:12 - 000128824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-01-09 11:13 - 2019-01-01 08:12 - 000043536 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-01-09 11:13 - 2019-01-01 07:55 - 025856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-01-09 11:13 - 2019-01-01 07:50 - 022715392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-01-09 11:13 - 2019-01-01 07:50 - 004383744 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-01-09 11:13 - 2019-01-01 07:48 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-01-09 11:13 - 2019-01-01 07:48 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-01-09 11:13 - 2019-01-01 07:48 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2019-01-09 11:13 - 2019-01-01 07:47 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-01-09 11:13 - 2019-01-01 07:47 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-01-09 11:13 - 2019-01-01 07:46 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-01-09 11:13 - 2019-01-01 07:46 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-01-09 11:13 - 2019-01-01 07:46 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-01-09 11:13 - 2019-01-01 07:45 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-01-09 11:13 - 2019-01-01 07:45 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-01-09 11:13 - 2019-01-01 07:45 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-01-09 11:13 - 2019-01-01 07:44 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2019-01-09 11:13 - 2019-01-01 07:44 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-01-09 11:13 - 2019-01-01 07:44 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-01-09 11:13 - 2019-01-01 07:44 - 000662528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2019-01-09 11:13 - 2019-01-01 07:44 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-01-09 11:13 - 2019-01-01 07:43 - 001805312 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-01-09 11:13 - 2019-01-01 07:42 - 004939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-01-09 11:13 - 2019-01-01 07:42 - 002247680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2019-01-09 11:13 - 2019-01-01 07:42 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-01-09 11:13 - 2019-01-01 07:42 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-01-09 11:13 - 2019-01-01 07:41 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-01-09 11:13 - 2019-01-01 07:41 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-01-09 11:13 - 2019-01-01 07:41 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2019-01-09 11:13 - 2019-01-01 07:41 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 006571584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 002478664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 002253696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 000880048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 000581808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 000381240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-01-09 11:13 - 2019-01-01 07:29 - 022016512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-01-09 11:13 - 2019-01-01 07:22 - 019405312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-01-09 11:13 - 2019-01-01 07:17 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-01-09 11:13 - 2019-01-01 07:16 - 005775872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-01-09 11:13 - 2019-01-01 07:16 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2019-01-09 11:13 - 2019-01-01 07:16 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2019-01-09 11:13 - 2019-01-01 07:15 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-01-09 11:13 - 2019-01-01 07:15 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-01-09 11:13 - 2019-01-01 07:15 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-01-09 11:13 - 2019-01-01 07:15 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-01-09 11:13 - 2019-01-01 07:14 - 004514816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-01-09 11:13 - 2019-01-01 07:14 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-01-09 11:13 - 2019-01-01 07:14 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-01-09 11:13 - 2019-01-01 07:13 - 001628160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-01-09 11:13 - 2019-01-01 07:13 - 000594432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-01-09 11:13 - 2019-01-01 07:13 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-01-09 11:13 - 2019-01-01 07:12 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-01-09 11:13 - 2019-01-01 07:12 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2019-01-09 11:13 - 2019-01-01 07:12 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-01-09 11:13 - 2019-01-01 07:12 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2019-01-09 11:13 - 2019-01-01 06:23 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2019-01-09 11:13 - 2018-12-19 05:49 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-01-06 18:02 - 2019-01-07 00:18 - 2594743496 _____ C:\Users\swenik\Downloads\Sedm samurajů _ 七人の侍 _ Shichinin no samurai _ Seven Samurai 1954, JPN - CZ tit, alfatanker.avi
2019-01-04 12:28 - 2019-01-04 12:27 - 000320888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswe0383eedbce394ce.tmp
2019-01-04 12:28 - 2019-01-04 12:27 - 000320888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys
2019-01-04 12:28 - 2019-01-04 12:27 - 000196264 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-01-04 12:28 - 2019-01-04 12:27 - 000196264 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw733e7c85ae38dfe5.tmp
2019-01-04 12:28 - 2019-01-04 12:27 - 000058160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-01-04 12:28 - 2019-01-04 12:27 - 000058160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7eb2dda450cfaa8b.tmp
2019-01-04 12:28 - 2019-01-04 12:27 - 000037304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-01-04 12:28 - 2019-01-04 12:27 - 000037304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw8cc201e7679be0bd.tmp
2019-01-01 03:02 - 2010-05-10 19:22 - 000000000 ____D C:\Users\swenik\Downloads\A je TO -( 71x trvanie 8 hod+)wmv
2019-01-01 01:01 - 2019-01-01 02:40 - 1646216474 _____ C:\Users\swenik\Downloads\A je TO -( 71x trvanie 8 hod+)wmv.rar
2018-12-29 23:21 - 2018-12-29 23:21 - 019299120 _____ (Piriform Software Ltd) C:\Users\swenik\Downloads\ccsetup551(1).exe
2018-12-29 22:42 - 2018-12-29 22:42 - 000004656 _____ C:\Users\swenik\Documents\cc_20181229_224234.reg
2018-12-29 22:33 - 2018-12-29 22:34 - 019299120 _____ (Piriform Software Ltd) C:\Users\swenik\Downloads\ccsetup551.exe
2018-12-29 01:34 - 2018-12-29 22:39 - 227422050 _____ C:\Users\swenik\Downloads\Robin Hood - 02 - Robin a carodej cast.2.avi.part
2018-12-29 01:34 - 2018-12-29 01:34 - 000000000 _____ C:\Users\swenik\Downloads\Robin Hood - 02 - Robin a carodej cast.2.avi
2018-12-28 01:33 - 2018-12-28 02:14 - 729353826 _____ C:\Users\swenik\Downloads\Robin Hood - 01 - Robin a carodej cast.1.avi
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-01-27 11:31 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-01-27 08:29 - 2018-05-17 09:10 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-01-27 06:46 - 2018-05-17 08:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-01-27 04:27 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-01-27 01:16 - 2018-03-22 19:12 - 000000000 ____D C:\FRST
2019-01-26 21:44 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-01-26 20:02 - 2015-11-24 17:47 - 000000000 ___RD C:\Users\swenik\OneDrive
2019-01-26 17:55 - 2017-08-17 21:31 - 000000000 ____D C:\Users\swenik\AppData\Local\CrashDumps
2019-01-26 16:24 - 2018-04-12 00:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-01-26 16:19 - 2015-05-24 22:16 - 000000000 __SHD C:\Users\swenik\IntelGraphicsProfiles
2019-01-26 16:18 - 2018-01-05 02:52 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-01-26 16:17 - 2018-05-17 09:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-01-26 16:17 - 2017-07-11 12:06 - 000000000 ____D C:\ProgramData\NVIDIA
2019-01-25 19:19 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-01-25 18:59 - 2018-05-17 08:50 - 000000000 ____D C:\Users\swenik
2019-01-25 18:47 - 2018-05-17 09:10 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-01-25 18:09 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-01-25 04:05 - 2018-01-07 19:03 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-01-24 23:53 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-01-24 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-01-21 22:01 - 2016-11-16 07:41 - 000000000 ____D C:\Users\swenik\AppData\LocalLow\Mozilla
2019-01-21 19:52 - 2018-11-17 10:23 - 000000000 ____D C:\Program Files\rempl
2019-01-19 04:50 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2019-01-18 18:36 - 2015-05-24 10:52 - 000000000 ____D C:\AdwCleaner
2019-01-18 11:15 - 2018-04-12 00:38 - 000000000 ___RD C:\Program Files\Windows Defender
2019-01-15 18:50 - 2018-07-05 23:33 - 000000000 ____D C:\Users\swenik\AppData\Roaming\DAEMON Tools Lite
2019-01-14 15:58 - 2017-07-12 16:52 - 000592616 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-01-14 14:48 - 2017-07-12 16:43 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-01-14 14:48 - 2017-07-12 16:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-01-13 17:54 - 2018-01-07 18:40 - 000000000 ____D C:\Users\swenik\AppData\Local\ElevatedDiagnostics
2019-01-13 17:45 - 2018-10-07 17:07 - 000000000 ___HD C:\WINDOWS\msdownld.tmp
2019-01-13 17:45 - 2018-10-07 17:07 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2019-01-13 12:27 - 2017-07-13 15:23 - 000000000 ____D C:\Users\swenik\AppData\Roaming\vlc
2019-01-12 13:33 - 2018-05-17 09:10 - 000003362 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1935932718-3073885608-842228917-1001
2019-01-12 13:33 - 2018-05-17 08:50 - 000002394 _____ C:\Users\swenik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-12 11:19 - 2018-05-19 08:57 - 000000000 ____D C:\Users\swenik\AppData\Local\D3DSCache
2019-01-11 12:46 - 2017-07-12 16:43 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-01-09 19:22 - 2018-05-17 08:59 - 001689050 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-01-09 19:22 - 2018-04-12 16:50 - 000716276 _____ C:\WINDOWS\system32\perfh005.dat
2019-01-09 19:22 - 2018-04-12 16:50 - 000144534 _____ C:\WINDOWS\system32\perfc005.dat
2019-01-09 19:12 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-01-09 19:12 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-01-09 11:25 - 2017-07-12 19:07 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-01-09 11:23 - 2017-07-12 19:07 - 132790320 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-01-09 09:25 - 2018-06-29 20:48 - 000000000 ____D C:\Users\swenik\AppData\Local\AVAST Software
2019-01-08 17:52 - 2018-05-17 09:10 - 000004640 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-01-08 17:52 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-01-08 17:52 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-01-04 19:07 - 2017-11-23 20:55 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-01-04 12:27 - 2018-10-10 11:19 - 000042488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-01-04 12:27 - 2018-10-10 11:19 - 000042488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswc2418b6713afc9bc.tmp
2019-01-04 12:27 - 2018-06-20 23:01 - 000015488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2019-01-04 12:27 - 2018-06-20 23:01 - 000015488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw20cee4c791c0b18c.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 001034056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 001034056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw68dabdbb71e05ee5.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000474648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000474648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw2bd114d778793336.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000380144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000380144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw79d5e4f348759fc7.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000218056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000218056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswf23ec379d87773cf.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000203488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswf27a14c831bf2903.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000203488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000166472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000166472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswc6dd18a93fd92668.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000111992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000111992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswefa6cc9c7df37483.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000088144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000088144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw518c73d7494d065e.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000046584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000046584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7ef3e0e0cf34db1f.tmp
2019-01-04 12:27 - 2018-01-07 19:17 - 000239808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-01-04 12:27 - 2018-01-07 19:17 - 000239808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswca855b9bd47ec9b6.tmp
2019-01-03 17:00 - 2018-01-05 02:06 - 000000000 ____D C:\Users\swenik\AppData\Local\PlaceholderTileLogoFolder
2019-01-03 17:00 - 2017-12-01 18:47 - 000000000 ____D C:\Users\swenik\AppData\Local\Packages
2019-01-02 20:41 - 2018-07-13 00:15 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-01-02 20:41 - 2018-07-13 00:15 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-12-29 22:44 - 2017-08-09 21:12 - 000110968 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2018-12-29 22:44 - 2017-08-09 21:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-12-29 22:43 - 2017-08-09 21:11 - 000000000 ____D C:\Program Files\Java
2018-12-29 22:42 - 2017-09-25 16:45 - 000001040 _____ C:\Users\Public\Desktop\WinRAR.lnk
2018-12-29 22:42 - 2017-09-25 16:45 - 000000000 ____D C:\Users\swenik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-12-29 22:42 - 2017-09-25 16:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-12-29 22:42 - 2017-09-25 16:45 - 000000000 ____D C:\Program Files\WinRAR
2018-12-29 22:40 - 2017-07-13 15:23 - 000000920 _____ C:\Users\Public\Desktop\VLC media player.lnk
2018-12-29 22:36 - 2018-05-21 10:34 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-12-29 22:36 - 2018-05-21 10:34 - 000000000 ____D C:\Program Files\CCleaner
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-05-17 08:43
==================== End of FRST.txt ============================
Ran by swenik (administrator) on NB-DOMA (27-01-2019 01:16:53)
Running from C:\Users\swenik\Desktop
Loaded Profiles: swenik (Available Profiles: swenik)
Platform: Windows 10 Home Version 1803 17134.523 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1901.7-0\MsMpEng.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18112.14311.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1901.7-0\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\setup\New_13010938\instup.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13671640 2014-04-10] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [261512 2019-01-04] (AVAST Software)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [261512 2019-01-04] (AVAST Software)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [729704 2018-06-20] (Disc Soft Ltd)
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19589208 2018-12-10] (Piriform Software Ltd)
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\MountPoints2: {199c21b9-9ee6-11e8-9b52-f8a963e3c085} - "G:\autorun.exe"
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\MountPoints2: {9d8802d6-a43a-11e8-9b53-f8a963e3c085} - "H:\setup.exe"
HKU\S-1-5-21-1935932718-3073885608-842228917-1001\...\MountPoints2: {fbf0eb89-7bd4-11e8-9b4e-acb57dd570aa} - "F:\Mafia2.part01.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-12] (Google Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6f9c8a83-2515-4550-9e71-14a2dac0ec5f}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-12-29] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-12-29] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: c8cu0gji.default
FF ProfilePath: C:\Users\swenik\AppData\Roaming\Mozilla\Firefox\Profiles\c8cu0gji.default [2019-01-27]
FF Homepage: Mozilla\Firefox\Profiles\c8cu0gji.default -> hxxps://www.seznam.cz/
FF NewTabOverride: Mozilla\Firefox\Profiles\c8cu0gji.default -> Disabled: {ea614400-e918-4741-9a97-7a972ff7c30b}
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\swenik\AppData\Roaming\Mozilla\Firefox\Profiles\c8cu0gji.default\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2019-01-05]
FF Extension: (To Google Translate) - C:\Users\swenik\AppData\Roaming\Mozilla\Firefox\Profiles\c8cu0gji.default\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2018-11-15]
FF Extension: (Seznam doplněk - Esko) - C:\Users\swenik\AppData\Roaming\Mozilla\Firefox\Profiles\c8cu0gji.default\Extensions\sko-extension@firma.seznam.cz.xpi [2018-11-23]
FF Extension: (Avast SafePrice) - C:\Users\swenik\AppData\Roaming\Mozilla\Firefox\Profiles\c8cu0gji.default\Extensions\sp@avast.com.xpi [2018-04-04]
FF Extension: (Avast Online Security) - C:\Users\swenik\AppData\Roaming\Mozilla\Firefox\Profiles\c8cu0gji.default\Extensions\wrc@avast.com.xpi [2018-06-20]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_114.dll [2019-01-08] ()
FF Plugin: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-12-29] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-12-29] (Oracle Corporation)
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_114.dll [2019-01-08] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default [2019-01-22]
CHR Extension: (Prezentace) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-24]
CHR Extension: (YouTube) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-24]
CHR Extension: (Tabulky) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-05]
CHR Extension: (Gmail) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-07-24]
CHR Extension: (Chrome Media Router) - C:\Users\swenik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-01-07]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7834368 2019-01-04] (AVAST Software)
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [357816 2019-01-04] (AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-01-04] (AVAST Software)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3606632 2018-06-20] (Disc Soft Ltd)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2017-09-01] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11644656 2018-09-10] (TeamViewer GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\NisSrv.exe [4096976 2019-01-25] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MsMpEng.exe [113992 2019-01-25] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37304 2019-01-04] (AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [203488 2019-01-04] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [223056 2019-01-14] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196264 2019-01-04] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320888 2019-01-04] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [58160 2019-01-04] (AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-01-04] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [239808 2019-01-04] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46584 2019-01-04] (AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42488 2019-01-04] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [166472 2019-01-04] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111992 2019-01-04] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88144 2019-01-04] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1034056 2019-01-04] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [474648 2019-01-04] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [218056 2019-01-04] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [380144 2019-01-04] (AVAST Software)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-12-02] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-07-05] (Disc Soft Ltd)
S3 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064 2015-06-19] (Disc Soft Ltd)
R3 kmloop; C:\WINDOWS\system32\DRIVERS\loop.sys [16896 2018-04-12] (Microsoft Corporation)
S3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-07-18] (Acer Incorporated)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [136408 2019-01-23] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [100312 2013-12-10] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvacwu.inf_amd64_31f4ef4821269ebb\nvlddmkm.sys [14190520 2017-01-17] (NVIDIA Corporation)
S3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14680 2013-07-18] (Acer Incorporated)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-07-22] (Realtek )
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [761600 2015-06-24] (Realsil Semiconductor Corporation)
R3 SynRMIHID; C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys [61624 2015-08-21] (Synaptics Incorporated)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [213080 2018-08-14] (Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [222864 2018-08-14] (Oracle Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46488 2019-01-25] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [343032 2019-01-25] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [63480 2019-01-25] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-01-27 01:16 - 2019-01-27 05:14 - 000016207 _____ C:\Users\swenik\Desktop\FRST.txt
2019-01-26 20:09 - 2019-01-26 20:09 - 000000000 ___HD C:\OneDriveTemp
2019-01-26 16:26 - 2019-01-26 16:26 - 000000000 _____ C:\WINDOWS\system32\last.dump
2019-01-26 16:24 - 2019-01-04 12:27 - 000361352 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-01-25 03:08 - 2019-01-25 03:08 - 000000080 ___SH C:\bootTel.dat
2019-01-25 03:06 - 2019-01-25 03:06 - 000000000 __SHD C:\found.001
2019-01-23 15:21 - 2019-01-23 15:24 - 000000000 ____D C:\ProgramData\MB2Migration
2019-01-22 02:37 - 2019-01-23 15:30 - 000136408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2019-01-22 00:38 - 2019-01-22 00:38 - 000001175 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2019-01-22 00:36 - 2019-01-22 00:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2019-01-22 00:28 - 2015-04-14 09:38 - 000064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2019-01-22 00:28 - 2015-04-14 09:37 - 000107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2019-01-22 00:27 - 2015-04-14 09:37 - 000025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2019-01-22 00:26 - 2019-01-22 00:34 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2019-01-22 00:26 - 2019-01-22 00:26 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-01-22 00:23 - 2019-01-22 00:24 - 082482456 _____ (Malwarebytes ) C:\Users\swenik\Downloads\mb3-setup-consumer-3.6.1.2711-1.0.519-1.0.8888.exe
2019-01-21 17:44 - 2019-01-21 18:05 - 082430032 _____ (Malwarebytes ) C:\Users\swenik\Downloads\Nepotvrzeno 297367.crdownload
2019-01-21 17:27 - 2019-01-21 17:47 - 019341880 _____ (Piriform Software Ltd) C:\Users\swenik\Downloads\ccsetup552 (1).exe
2019-01-21 15:32 - 2019-01-21 15:35 - 019341880 _____ (Piriform Software Ltd) C:\Users\swenik\Downloads\ccsetup552.exe
2019-01-21 08:30 - 2019-01-26 16:19 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-01-21 04:48 - 2019-01-21 05:50 - 000007141 _____ C:\Users\swenik\Desktop\Fixlog.txt
2019-01-21 01:38 - 2019-01-21 01:47 - 002428416 _____ (Farbar) C:\Users\swenik\Desktop\FRST64.exe
2019-01-20 20:05 - 2019-01-25 00:16 - 000000000 ____D C:\WINDOWS\Minidump
2019-01-20 20:05 - 2019-01-24 23:36 - 646083769 _____ C:\WINDOWS\MEMORY.DMP
2019-01-20 20:05 - 2019-01-20 21:33 - 000539324 _____ C:\WINDOWS\Minidump\012019-31578-01.dmp
2019-01-18 13:13 - 2019-01-18 13:17 - 007320272 _____ (Malwarebytes) C:\Users\swenik\Desktop\adwcleaner_7.2.6.0.exe
2019-01-17 10:15 - 2019-01-21 00:04 - 000000000 ____D C:\Users\swenik\Desktop\FRST-OlderVersion
2019-01-14 16:32 - 2019-01-14 16:32 - 000223056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-01-14 16:32 - 2019-01-14 16:32 - 000223056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw22965ff98b8e36ee.tmp
2019-01-14 15:58 - 2019-01-14 15:58 - 000003400 _____ C:\Users\swenik\Documents\cc_20190114_155806.reg
2019-01-13 17:52 - 2019-01-13 17:52 - 000000000 ____D C:\Users\swenik\AppData\Roaming\The Creative Assembly
2019-01-13 17:52 - 2019-01-13 17:52 - 000000000 ____D C:\Users\swenik\AppData\Local\SKIDROW
2019-01-13 17:31 - 2019-01-16 23:00 - 000000000 ____D C:\Program Files (x86)\Sega
2019-01-13 17:19 - 2019-01-13 17:19 - 000000000 ____D C:\Users\swenik\Downloads\Empire TW čeština a další přídavky
2019-01-13 05:06 - 2019-01-13 12:08 - 3483983872 _____ C:\Users\swenik\Downloads\Empire Total War Complete Edition - CorePack.iso
2019-01-12 19:35 - 2019-01-12 23:02 - 3807952398 _____ C:\Users\swenik\Downloads\Empire TW čeština a další přídavky.7z
2019-01-12 01:08 - 2019-01-12 01:08 - 000000000 ____D C:\Users\swenik\Documents\Diablo III
2019-01-11 22:55 - 2019-01-11 22:55 - 000000932 _____ C:\Users\Public\Desktop\Diablo III.lnk
2019-01-11 22:55 - 2019-01-11 22:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
2019-01-11 22:45 - 2019-01-12 00:04 - 000000000 ____D C:\Program Files (x86)\Diablo III
2019-01-11 22:45 - 2019-01-11 22:45 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
2019-01-11 22:38 - 2019-01-11 22:38 - 000000000 ____D C:\Users\swenik\AppData\Local\Blizzard Entertainment
2019-01-11 22:37 - 2019-01-13 12:25 - 000000000 ____D C:\Users\swenik\AppData\Local\Battle.net
2019-01-11 22:37 - 2019-01-12 01:08 - 000000000 ____D C:\Users\swenik\AppData\Roaming\Battle.net
2019-01-11 22:37 - 2019-01-11 22:37 - 000000936 _____ C:\Users\Public\Desktop\Battle.net.lnk
2019-01-11 22:37 - 2019-01-11 22:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2019-01-11 22:36 - 2019-01-11 22:37 - 000000000 ____D C:\Program Files (x86)\Battle.net
2019-01-11 22:36 - 2019-01-11 22:36 - 000000000 ____D C:\Users\swenik\AppData\Local\Blizzard
2019-01-11 22:35 - 2019-01-11 22:36 - 000000000 ____D C:\ProgramData\Battle.net
2019-01-11 22:35 - 2019-01-11 22:35 - 004870640 _____ (Blizzard Entertainment) C:\Users\swenik\Downloads\Diablo-III-Setup.exe
2019-01-09 11:13 - 2019-01-01 14:50 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-01-09 11:13 - 2019-01-01 14:47 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowslivelogin.dll
2019-01-09 11:13 - 2019-01-01 14:46 - 012710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-01-09 11:13 - 2019-01-01 14:45 - 000714752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2019-01-09 11:13 - 2019-01-01 14:45 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2019-01-09 11:13 - 2019-01-01 14:43 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-01-09 11:13 - 2019-01-01 14:20 - 011902976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-01-09 11:13 - 2019-01-01 14:20 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowslivelogin.dll
2019-01-09 11:13 - 2019-01-01 14:18 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2019-01-09 11:13 - 2019-01-01 14:17 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2019-01-09 11:13 - 2019-01-01 08:14 - 001221432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-01-09 11:13 - 2019-01-01 08:14 - 001063224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-01-09 11:13 - 2019-01-01 08:14 - 001029944 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-01-09 11:13 - 2019-01-01 08:14 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-01-09 11:13 - 2019-01-01 08:14 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-01-09 11:13 - 2019-01-01 08:14 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-01-09 11:13 - 2019-01-01 08:13 - 003292152 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-01-09 11:13 - 2019-01-01 08:13 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-01-09 11:13 - 2019-01-01 08:13 - 000709728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-01-09 11:13 - 2019-01-01 08:13 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-01-09 11:13 - 2019-01-01 08:13 - 000170808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-01-09 11:13 - 2019-01-01 08:12 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-01-09 11:13 - 2019-01-01 08:12 - 007520104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-01-09 11:13 - 2019-01-01 08:12 - 002765344 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-01-09 11:13 - 2019-01-01 08:12 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-01-09 11:13 - 2019-01-01 08:12 - 002421288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-01-09 11:13 - 2019-01-01 08:12 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-01-09 11:13 - 2019-01-01 08:12 - 000268304 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-01-09 11:13 - 2019-01-01 08:12 - 000128824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-01-09 11:13 - 2019-01-01 08:12 - 000043536 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-01-09 11:13 - 2019-01-01 07:55 - 025856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-01-09 11:13 - 2019-01-01 07:50 - 022715392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-01-09 11:13 - 2019-01-01 07:50 - 004383744 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-01-09 11:13 - 2019-01-01 07:48 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-01-09 11:13 - 2019-01-01 07:48 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-01-09 11:13 - 2019-01-01 07:48 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2019-01-09 11:13 - 2019-01-01 07:47 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-01-09 11:13 - 2019-01-01 07:47 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-01-09 11:13 - 2019-01-01 07:46 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-01-09 11:13 - 2019-01-01 07:46 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-01-09 11:13 - 2019-01-01 07:46 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-01-09 11:13 - 2019-01-01 07:45 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-01-09 11:13 - 2019-01-01 07:45 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-01-09 11:13 - 2019-01-01 07:45 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-01-09 11:13 - 2019-01-01 07:44 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2019-01-09 11:13 - 2019-01-01 07:44 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-01-09 11:13 - 2019-01-01 07:44 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-01-09 11:13 - 2019-01-01 07:44 - 000662528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2019-01-09 11:13 - 2019-01-01 07:44 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-01-09 11:13 - 2019-01-01 07:43 - 001805312 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-01-09 11:13 - 2019-01-01 07:42 - 004939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-01-09 11:13 - 2019-01-01 07:42 - 002247680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2019-01-09 11:13 - 2019-01-01 07:42 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-01-09 11:13 - 2019-01-01 07:42 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-01-09 11:13 - 2019-01-01 07:41 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-01-09 11:13 - 2019-01-01 07:41 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-01-09 11:13 - 2019-01-01 07:41 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2019-01-09 11:13 - 2019-01-01 07:41 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 006571584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 002478664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 002253696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 000880048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 000581808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-01-09 11:13 - 2019-01-01 07:37 - 000381240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-01-09 11:13 - 2019-01-01 07:29 - 022016512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-01-09 11:13 - 2019-01-01 07:22 - 019405312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-01-09 11:13 - 2019-01-01 07:17 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-01-09 11:13 - 2019-01-01 07:16 - 005775872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-01-09 11:13 - 2019-01-01 07:16 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2019-01-09 11:13 - 2019-01-01 07:16 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2019-01-09 11:13 - 2019-01-01 07:15 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-01-09 11:13 - 2019-01-01 07:15 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-01-09 11:13 - 2019-01-01 07:15 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-01-09 11:13 - 2019-01-01 07:15 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-01-09 11:13 - 2019-01-01 07:14 - 004514816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-01-09 11:13 - 2019-01-01 07:14 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-01-09 11:13 - 2019-01-01 07:14 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-01-09 11:13 - 2019-01-01 07:13 - 001628160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-01-09 11:13 - 2019-01-01 07:13 - 000594432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-01-09 11:13 - 2019-01-01 07:13 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-01-09 11:13 - 2019-01-01 07:12 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-01-09 11:13 - 2019-01-01 07:12 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2019-01-09 11:13 - 2019-01-01 07:12 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-01-09 11:13 - 2019-01-01 07:12 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2019-01-09 11:13 - 2019-01-01 06:23 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2019-01-09 11:13 - 2018-12-19 05:49 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-01-06 18:02 - 2019-01-07 00:18 - 2594743496 _____ C:\Users\swenik\Downloads\Sedm samurajů _ 七人の侍 _ Shichinin no samurai _ Seven Samurai 1954, JPN - CZ tit, alfatanker.avi
2019-01-04 12:28 - 2019-01-04 12:27 - 000320888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswe0383eedbce394ce.tmp
2019-01-04 12:28 - 2019-01-04 12:27 - 000320888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys
2019-01-04 12:28 - 2019-01-04 12:27 - 000196264 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-01-04 12:28 - 2019-01-04 12:27 - 000196264 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw733e7c85ae38dfe5.tmp
2019-01-04 12:28 - 2019-01-04 12:27 - 000058160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-01-04 12:28 - 2019-01-04 12:27 - 000058160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7eb2dda450cfaa8b.tmp
2019-01-04 12:28 - 2019-01-04 12:27 - 000037304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-01-04 12:28 - 2019-01-04 12:27 - 000037304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw8cc201e7679be0bd.tmp
2019-01-01 03:02 - 2010-05-10 19:22 - 000000000 ____D C:\Users\swenik\Downloads\A je TO -( 71x trvanie 8 hod+)wmv
2019-01-01 01:01 - 2019-01-01 02:40 - 1646216474 _____ C:\Users\swenik\Downloads\A je TO -( 71x trvanie 8 hod+)wmv.rar
2018-12-29 23:21 - 2018-12-29 23:21 - 019299120 _____ (Piriform Software Ltd) C:\Users\swenik\Downloads\ccsetup551(1).exe
2018-12-29 22:42 - 2018-12-29 22:42 - 000004656 _____ C:\Users\swenik\Documents\cc_20181229_224234.reg
2018-12-29 22:33 - 2018-12-29 22:34 - 019299120 _____ (Piriform Software Ltd) C:\Users\swenik\Downloads\ccsetup551.exe
2018-12-29 01:34 - 2018-12-29 22:39 - 227422050 _____ C:\Users\swenik\Downloads\Robin Hood - 02 - Robin a carodej cast.2.avi.part
2018-12-29 01:34 - 2018-12-29 01:34 - 000000000 _____ C:\Users\swenik\Downloads\Robin Hood - 02 - Robin a carodej cast.2.avi
2018-12-28 01:33 - 2018-12-28 02:14 - 729353826 _____ C:\Users\swenik\Downloads\Robin Hood - 01 - Robin a carodej cast.1.avi
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-01-27 11:31 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-01-27 08:29 - 2018-05-17 09:10 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-01-27 06:46 - 2018-05-17 08:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-01-27 04:27 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-01-27 01:16 - 2018-03-22 19:12 - 000000000 ____D C:\FRST
2019-01-26 21:44 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-01-26 20:02 - 2015-11-24 17:47 - 000000000 ___RD C:\Users\swenik\OneDrive
2019-01-26 17:55 - 2017-08-17 21:31 - 000000000 ____D C:\Users\swenik\AppData\Local\CrashDumps
2019-01-26 16:24 - 2018-04-12 00:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-01-26 16:19 - 2015-05-24 22:16 - 000000000 __SHD C:\Users\swenik\IntelGraphicsProfiles
2019-01-26 16:18 - 2018-01-05 02:52 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-01-26 16:17 - 2018-05-17 09:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-01-26 16:17 - 2017-07-11 12:06 - 000000000 ____D C:\ProgramData\NVIDIA
2019-01-25 19:19 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-01-25 18:59 - 2018-05-17 08:50 - 000000000 ____D C:\Users\swenik
2019-01-25 18:47 - 2018-05-17 09:10 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-01-25 18:09 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-01-25 04:05 - 2018-01-07 19:03 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-01-24 23:53 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-01-24 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-01-21 22:01 - 2016-11-16 07:41 - 000000000 ____D C:\Users\swenik\AppData\LocalLow\Mozilla
2019-01-21 19:52 - 2018-11-17 10:23 - 000000000 ____D C:\Program Files\rempl
2019-01-19 04:50 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2019-01-18 18:36 - 2015-05-24 10:52 - 000000000 ____D C:\AdwCleaner
2019-01-18 11:15 - 2018-04-12 00:38 - 000000000 ___RD C:\Program Files\Windows Defender
2019-01-15 18:50 - 2018-07-05 23:33 - 000000000 ____D C:\Users\swenik\AppData\Roaming\DAEMON Tools Lite
2019-01-14 15:58 - 2017-07-12 16:52 - 000592616 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-01-14 14:48 - 2017-07-12 16:43 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-01-14 14:48 - 2017-07-12 16:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-01-13 17:54 - 2018-01-07 18:40 - 000000000 ____D C:\Users\swenik\AppData\Local\ElevatedDiagnostics
2019-01-13 17:45 - 2018-10-07 17:07 - 000000000 ___HD C:\WINDOWS\msdownld.tmp
2019-01-13 17:45 - 2018-10-07 17:07 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2019-01-13 12:27 - 2017-07-13 15:23 - 000000000 ____D C:\Users\swenik\AppData\Roaming\vlc
2019-01-12 13:33 - 2018-05-17 09:10 - 000003362 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1935932718-3073885608-842228917-1001
2019-01-12 13:33 - 2018-05-17 08:50 - 000002394 _____ C:\Users\swenik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-12 11:19 - 2018-05-19 08:57 - 000000000 ____D C:\Users\swenik\AppData\Local\D3DSCache
2019-01-11 12:46 - 2017-07-12 16:43 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-01-09 19:22 - 2018-05-17 08:59 - 001689050 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-01-09 19:22 - 2018-04-12 16:50 - 000716276 _____ C:\WINDOWS\system32\perfh005.dat
2019-01-09 19:22 - 2018-04-12 16:50 - 000144534 _____ C:\WINDOWS\system32\perfc005.dat
2019-01-09 19:12 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-01-09 19:12 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-01-09 11:25 - 2017-07-12 19:07 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-01-09 11:23 - 2017-07-12 19:07 - 132790320 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-01-09 09:25 - 2018-06-29 20:48 - 000000000 ____D C:\Users\swenik\AppData\Local\AVAST Software
2019-01-08 17:52 - 2018-05-17 09:10 - 000004640 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-01-08 17:52 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-01-08 17:52 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-01-04 19:07 - 2017-11-23 20:55 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-01-04 12:27 - 2018-10-10 11:19 - 000042488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-01-04 12:27 - 2018-10-10 11:19 - 000042488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswc2418b6713afc9bc.tmp
2019-01-04 12:27 - 2018-06-20 23:01 - 000015488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2019-01-04 12:27 - 2018-06-20 23:01 - 000015488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw20cee4c791c0b18c.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 001034056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 001034056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw68dabdbb71e05ee5.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000474648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000474648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw2bd114d778793336.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000380144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000380144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw79d5e4f348759fc7.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000218056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000218056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswf23ec379d87773cf.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000203488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswf27a14c831bf2903.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000203488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000166472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000166472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswc6dd18a93fd92668.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000111992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000111992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswefa6cc9c7df37483.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000088144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000088144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw518c73d7494d065e.tmp
2019-01-04 12:27 - 2018-05-16 17:20 - 000046584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2019-01-04 12:27 - 2018-05-16 17:20 - 000046584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7ef3e0e0cf34db1f.tmp
2019-01-04 12:27 - 2018-01-07 19:17 - 000239808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-01-04 12:27 - 2018-01-07 19:17 - 000239808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswca855b9bd47ec9b6.tmp
2019-01-03 17:00 - 2018-01-05 02:06 - 000000000 ____D C:\Users\swenik\AppData\Local\PlaceholderTileLogoFolder
2019-01-03 17:00 - 2017-12-01 18:47 - 000000000 ____D C:\Users\swenik\AppData\Local\Packages
2019-01-02 20:41 - 2018-07-13 00:15 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-01-02 20:41 - 2018-07-13 00:15 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-12-29 22:44 - 2017-08-09 21:12 - 000110968 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2018-12-29 22:44 - 2017-08-09 21:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-12-29 22:43 - 2017-08-09 21:11 - 000000000 ____D C:\Program Files\Java
2018-12-29 22:42 - 2017-09-25 16:45 - 000001040 _____ C:\Users\Public\Desktop\WinRAR.lnk
2018-12-29 22:42 - 2017-09-25 16:45 - 000000000 ____D C:\Users\swenik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-12-29 22:42 - 2017-09-25 16:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-12-29 22:42 - 2017-09-25 16:45 - 000000000 ____D C:\Program Files\WinRAR
2018-12-29 22:40 - 2017-07-13 15:23 - 000000920 _____ C:\Users\Public\Desktop\VLC media player.lnk
2018-12-29 22:36 - 2018-05-21 10:34 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-12-29 22:36 - 2018-05-21 10:34 - 000000000 ____D C:\Program Files\CCleaner
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-05-17 08:43
==================== End of FRST.txt ============================
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o konrolu logu, pomalý NB
FRST log jsem nechtěl, to už jsme řešili výše. Chtěl jsem test MBAM (pokud by nešel v normálním, sposťte v nouz. režimu). Zajímá mne, jestli tam není něco skryto, nebo zdali je to problém systému. MBAM v nouz režimu najde totéž, co v normálním.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o konrolu logu, pomalý NB
Ok, zkusím ho znovu. Ale v týdnu běžel asi půl dne a psalo to, že nic nenašel. Možná ten log ještě někde je. Zkusím ho najít.
Přispějete na provoz fóra?