Právě je 22 čer 2017 23:26

Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Všechny časy jsou v UTC + 1 hodina


Pravidla fóra


Pokud chcete pomoc, vložte log z RSIT [návod zde] nebo FRST [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz



Odeslat nové téma Toto téma je zamknuté. Nemůžete posílat nové příspěvky ani odpovídat na starší.  [ Příspěvků: 4 ] 
Autor Zpráva
 Předmět příspěvku: prosim o prev. kontrolu
PříspěvekNapsal: 20 dub 2017 09:25 
Offline
Návštěvník
Návštěvník

Registrován: 12 bře 2007 17:37
Příspěvky: 112
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-04-2017
Ran by cica18 (administrator) on DESKTOP-NV0E768 (20-04-2017 10:14:02)
Running from C:\Users\cica18\Desktop
Loaded Profiles: cica18 (Available Profiles: defaultuser0 & cica18)
Platform: Windows 10 Pro Version 1703 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\SecurityHealthService.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Foxit Software Inc.) C:\Program Files (x86)\FOXIT SOFTWARE\FOXIT READER\FoxitConnectedPDFService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(forum.viry.cz) C:\Users\cica18\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKU\S-1-5-21-1222840065-2771007936-1553905529-1001\...\Run: [Spotify Web Helper] => C:\Users\cica18\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1431664 2016-11-18] (Spotify Ltd)
HKU\S-1-5-21-1222840065-2771007936-1553905529-1001\...\Run: [Spotify] => C:\Users\cica18\AppData\Roaming\Spotify\Spotify.exe [6987376 2016-11-18] (Spotify Ltd)
HKU\S-1-5-21-1222840065-2771007936-1553905529-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27427808 2017-02-08] (Skype Technologies S.A.)
HKU\S-1-5-21-1222840065-2771007936-1553905529-1001\...\Run: [BingSvc] => C:\Users\cica18\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-1222840065-2771007936-1553905529-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2017-03-10]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138 192.168.1.1
Tcpip\..\Interfaces\{4a241b8e-e30a-4eca-a8f3-f6f2900fdd68}: [DhcpNameServer] 10.0.0.138 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-03-06] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-03-06] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-03-06] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)

FireFox:
========
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-01-19] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-01-19] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-01-19] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-01-19] (Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-03-06] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-03-06] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-11] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin HKU\S-1-5-21-1222840065-2771007936-1553905529-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\cica18\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2017-01-25] (Zoom Video Communications, Inc.)

Chrome:
=======
CHR HomePage: Default -> msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=en-us
CHR StartupUrls: Default -> "hxxp://www.pinnaclesports.com/","hxxp://www.marathonbet.com/","hxxp://www.bet365.com/","hxxp://www.betfair.com/","hxxp://www.bwin.com/","hxxp://www.tipsport.cz/","hxxp://www.ifortuna.cz/","hxxp://www.chance.cz/","hxxp://www.sazkabet.cz/","hxxp://www.synottip.cz/","hxxp://www.betonline.ag/","hxxp://www.dafabet.com/","hxxp://www.sbobet.com/","hxxp://www.bet-at-home.com/","hxxps://www.18bet.com/","hxxp://www.oddsportal.cz/","hxxp://acbetts.blogabet.com/","hxxp://www.tenisportal.cz/","hxxp://www.rumenige.cz/c","hxxp://www.sazkar.net/","hxxp://www.madjacksports.com/","hxxp://www.onthepunt.com.au/","hxxp://www.livesport.cz/","hxxp://www.email.cz/","hxxp://www.gmail.com/","hxxp://mysearch.avg.com/?cid={C3AE18FB-1280-4702-AD1E-A8D1BC0A3F58}&mid=23e9cf9cda5647d38dd2c9e043731449-a7796747391ef5a29846722e900d782d59f250ce&lang=en&ds=co011&coid=avgtbdisco&cmpid=&pr=sa&d=2014-02-06%2006:59:19&v=17.3.1.204&pid=safeguard&sg=0&sap=hp","hxxp://www.google.com"
CHR DefaultSearchURL: Default -> hxxp://www.google.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> google
CHR Profile: C:\Users\cica18\AppData\Local\Google\Chrome\User Data\Default [2017-04-20]
CHR Extension: (Prezentace Google) - C:\Users\cica18\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-10-05]
CHR Extension: (Dokumenty Google) - C:\Users\cica18\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-10-05]
CHR Extension: (Disk Google) - C:\Users\cica18\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-10-05]
CHR Extension: (TV) - C:\Users\cica18\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh [2016-10-05]
CHR Extension: (YouTube) - C:\Users\cica18\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-10-05]
CHR Extension: (Adblock Plus) - C:\Users\cica18\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-03-21]
CHR Extension: (TV program) - C:\Users\cica18\AppData\Local\Google\Chrome\User Data\Default\Extensions\eggkgjblbjpigonjpmblphnackhfigbo [2016-10-05]
CHR Extension: (Video Downloader professional) - C:\Users\cica18\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2016-10-05]
CHR Extension: (Bing) - C:\Users\cica18\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2017-01-27]
CHR Extension: (Tabulky Google) - C:\Users\cica18\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-10-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\cica18\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-10-05]
CHR Extension: (Crimson: Steam Pirates) - C:\Users\cica18\AppData\Local\Google\Chrome\User Data\Default\Extensions\glfbkgkceahodalogdpenjoekbacjfcj [2016-10-05]
CHR Extension: (AirMech) - C:\Users\cica18\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdahlabpinmfcemhcbcfoijcpoalfgdn [2016-10-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\cica18\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Gmail) - C:\Users\cica18\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-10-05]
CHR Extension: (Chrome Media Router) - C:\Users\cica18\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-03-31]
CHR HKU\S-1-5-21-1222840065-2771007936-1553905529-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3737792 2017-03-26] (Microsoft Corporation)
S3 DevicesFlowUserSvc; C:\WINDOWS\System32\DevicesFlowBroker.dll [689152 2017-03-18] (Microsoft Corporation)
S3 DevicesFlowUserSvc_97e3fe; C:\WINDOWS\system32\svchost.exe [47664 2017-03-18] (Microsoft Corporation)
S3 DevicesFlowUserSvc_97e3fe; C:\WINDOWS\SysWOW64\svchost.exe [40904 2017-03-18] (Microsoft Corporation)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-08-29] (Disc Soft Ltd)
R2 DusmSvc; C:\WINDOWS\System32\dusmsvc.dll [302592 2017-03-18] (Microsoft Corporation)
R2 FoxitReaderService; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitConnectedPDFService.exe [1659592 2017-02-24] (Foxit Software Inc.)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [33640 2017-04-07] (HP Inc.)
S3 IpxlatCfgSvc; C:\WINDOWS\System32\IpxlatCfg.dll [64000 2017-03-18] (Microsoft Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [3046688 2016-07-29] (IObit)
S3 NaturalAuthentication; C:\WINDOWS\System32\NaturalAuth.dll [723968 2017-03-18] (Microsoft Corporation)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119688 2016-12-11] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2180624 2016-12-11] (Electronic Arts)
S3 ose; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [198192 2017-03-25] (Microsoft Corporation) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 SecurityHealthService; C:\WINDOWS\system32\SecurityHealthService.exe [335808 2017-03-18] (Microsoft Corporation)
S3 SEMgrSvc; C:\WINDOWS\system32\SEMgrSvc.dll [1191424 2017-03-18] (Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-03-20] (Microsoft Corporation)
S3 spectrum; C:\WINDOWS\system32\spectrum.exe [891904 2017-03-18] (Microsoft Corporation)
R3 TokenBroker; C:\WINDOWS\System32\TokenBroker.dll [1054720 2017-03-18] (Microsoft Corporation)
R3 TokenBroker; C:\WINDOWS\SysWOW64\TokenBroker.dll [799232 2017-03-18] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WFDSConMgrSvc; C:\WINDOWS\System32\wfdsconmgrsvc.dll [555008 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
S3 wlpasvc; C:\WINDOWS\System32\lpasvc.dll [1295360 2017-03-18] (Microsoft Corporation)
S3 xbgm; C:\WINDOWS\System32\xbgmsvc.dll [301216 2017-03-18] (Microsoft Corporation)
S3 XboxGipSvc; C:\WINDOWS\System32\XboxGipSvc.dll [18944 2017-03-18] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [49448 2016-08-18] (Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0310456.inf_amd64_54a99fe241bea5ba\atikmdag.sys [28737560 2017-01-17] (Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0310456.inf_amd64_54a99fe241bea5ba\atikmpag.sys [530968 2017-01-17] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [101376 2016-12-08] (Advanced Micro Devices)
S3 CAD; C:\WINDOWS\System32\drivers\CAD.sys [53664 2017-03-18] (Microsoft Corporation)
S2 CldFlt; C:\WINDOWS\System32\drivers\cldflt.sys [12288 2017-03-18] (Microsoft Corporation)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-10-05] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-10-05] (Disc Soft Ltd)
R1 HWiNFO32; C:\Windows\SysWoW64\drivers\HWiNFO64A.SYS [27552 2016-10-05] (REALiX(tm))
S3 iaLPSS2i_GPIO2_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [85504 2017-03-18] (Intel Corporation)
S3 iaLPSS2i_I2C_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [168448 2017-03-18] (Intel Corporation)
S3 mausbhost; C:\WINDOWS\System32\drivers\mausbhost.sys [405408 2017-03-18] (Microsoft Corporation)
S3 mausbip; C:\WINDOWS\System32\drivers\mausbip.sys [51104 2017-03-18] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [122368 2017-03-18] (Microsoft Corporation)
S3 nvdimmn; C:\WINDOWS\System32\drivers\nvdimmn.sys [80896 2017-03-18] (Microsoft Corporation)
S3 pmem; C:\WINDOWS\System32\drivers\pmem.sys [101376 2017-03-18] (Microsoft Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 SpatialGraphFilter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [40352 2017-03-20] (Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
S3 WinNat; C:\WINDOWS\System32\drivers\winnat.sys [217088 2017-03-18] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVC: NaturalAuthentication -> C:\Windows\System32\NaturalAuth.dll (Microsoft Corporation)
NETSVC: xbgm -> C:\Windows\System32\xbgmsvc.dll (Microsoft Corporation)
NETSVC: TokenBroker -> C:\Windows\System32\TokenBroker.dll (Microsoft Corporation)
NETSVC: XboxGipSvc -> C:\Windows\System32\XboxGipSvc.dll (Microsoft Corporation)
NETSVCx32: TokenBroker -> C:\Windows\SysWOW64\TokenBroker.dll (Microsoft Corporation)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-04-20 10:14 - 2017-04-20 10:15 - 00018454 _____ C:\Users\cica18\Desktop\FRST.txt
2017-04-20 10:13 - 2017-04-20 10:14 - 00000000 ____D C:\FRST
2017-04-20 10:13 - 2017-04-20 10:13 - 00112640 _____ (forum.viry.cz) C:\Users\cica18\Desktop\FRSTLauncher.exe
2017-04-20 10:11 - 2017-04-20 10:11 - 02424832 _____ (Farbar) C:\Users\cica18\Desktop\FRST64.exe
2017-04-20 10:11 - 2017-04-20 10:11 - 00112640 _____ (forum.viry.cz) C:\Users\cica18\Downloads\Nepotvrzeno 648941.crdownload
2017-04-20 10:08 - 2017-04-20 10:08 - 00000000 ____D C:\WINDOWS\Panther
2017-04-20 07:20 - 2017-04-20 07:20 - 00000000 ____D C:\WINDOWS\Minidump
2017-04-19 11:40 - 2017-03-11 17:48 - 1720387548 _____ C:\Users\cica18\Downloads\Fantastic.Beasts.and.Where.to.Find.Them.2016.BDRip.XviD.AC3.CZ.SK-EVO_xvid.avi
2017-04-19 10:58 - 2017-04-19 10:58 - 23680512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 23675392 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 20505600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 19334144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 11869696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 08319392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-04-19 10:58 - 2017-04-19 10:58 - 08247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 06756920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 03672064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-04-19 10:58 - 2017-04-19 10:58 - 02957824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-04-19 10:58 - 2017-04-19 10:58 - 02444184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-04-19 10:58 - 2017-04-19 10:58 - 02085280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 01657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 01605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 01604312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 01411640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 01356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 01323880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 01147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-04-19 10:58 - 2017-04-19 10:58 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 01024416 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-04-19 10:58 - 2017-04-19 10:58 - 00986592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00805376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-04-19 10:58 - 2017-04-19 10:58 - 00626520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-04-19 10:58 - 2017-04-19 10:58 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-04-19 10:58 - 2017-04-19 10:58 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-04-19 10:58 - 2017-04-19 10:58 - 00409504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-04-19 10:58 - 2017-04-19 10:58 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00205728 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-04-19 10:58 - 2017-04-19 10:58 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-04-19 10:58 - 2017-04-19 10:58 - 00032004 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-04-19 10:56 - 2017-04-19 10:56 - 00543648 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-04-19 10:56 - 2017-04-19 10:56 - 00388000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-04-19 10:55 - 2017-04-19 10:55 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-04-19 10:55 - 2017-04-19 10:03 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-04-19 10:53 - 2017-04-19 10:53 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2017-04-19 10:53 - 2017-04-19 10:53 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-04-19 10:53 - 2017-04-19 10:53 - 00000000 ____D C:\Program Files\MSBuild
2017-04-19 10:53 - 2017-04-19 10:53 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-04-19 10:53 - 2017-04-19 10:53 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-04-19 10:52 - 2017-02-10 12:26 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-04-19 10:52 - 2017-02-10 12:26 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-04-19 10:52 - 2017-02-10 12:26 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-04-19 10:52 - 2017-02-10 12:21 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-04-19 10:52 - 2017-02-10 12:21 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-04-19 10:52 - 2017-02-10 12:21 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-04-19 10:40 - 2017-04-19 10:40 - 00003292 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-04-19 10:36 - 2017-04-19 10:36 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-04-19 10:33 - 2017-04-19 10:33 - 00000020 ___SH C:\Users\cica18\ntuser.ini
2017-04-19 10:33 - 2017-04-19 10:33 - 00000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2017-04-19 10:28 - 2017-04-19 10:30 - 00011433 _____ C:\WINDOWS\diagwrn.xml
2017-04-19 10:28 - 2017-04-19 10:30 - 00011433 _____ C:\WINDOWS\diagerr.xml
2017-04-19 10:24 - 2017-04-20 07:25 - 01817844 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-19 10:23 - 2017-04-20 07:20 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-04-19 10:23 - 2017-04-19 21:10 - 00003264 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForcica18
2017-04-19 10:23 - 2017-04-19 10:23 - 00022924 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-04-19 10:23 - 2017-04-19 10:23 - 00003764 _____ C:\WINDOWS\System32\Tasks\AMD Updater
2017-04-19 10:23 - 2017-04-19 10:23 - 00003398 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-04-19 10:23 - 2017-04-19 10:23 - 00003174 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-19 10:23 - 2017-04-19 10:23 - 00002750 _____ C:\WINDOWS\System32\Tasks\SmartDefrag_AutoAnalyze
2017-04-19 10:23 - 2017-04-19 10:23 - 00002556 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2017-04-19 10:23 - 2017-04-19 10:23 - 00002268 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (cica18)
2017-04-19 10:23 - 2017-04-19 10:23 - 00002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-04-19 10:23 - 2017-04-19 10:23 - 00002146 _____ C:\WINDOWS\System32\Tasks\StartCN
2017-04-19 10:23 - 2017-04-19 10:23 - 00000000 ____D C:\WINDOWS\System32\Tasks\Hewlett-Packard
2017-04-19 10:14 - 2017-04-19 10:14 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-04-19 10:14 - 2017-04-19 10:14 - 00000000 ____D C:\ProgramData\USOShared
2017-04-19 10:10 - 2017-04-19 10:15 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-04-19 10:07 - 2017-04-20 09:21 - 00000000 ____D C:\Users\cica18
2017-04-19 10:07 - 2017-04-19 10:22 - 00000000 ____D C:\Users\defaultuser0
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\defaultuser0\Šablony
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\defaultuser0\Soubory cookie
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\defaultuser0\Poslední
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\defaultuser0\Okolní tiskárny
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\defaultuser0\Okolní síť
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\defaultuser0\Nabídka Start
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\defaultuser0\Dokumenty
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\defaultuser0\Documents\Obrázky
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\defaultuser0\Documents\Hudba
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\defaultuser0\Documents\Filmy
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\defaultuser0\Data aplikací
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Local\Data aplikací
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\cica18\Šablony
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\cica18\Soubory cookie
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\cica18\Poslední
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\cica18\Okolní tiskárny
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\cica18\Okolní síť
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\cica18\Nabídka Start
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\cica18\Dokumenty
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\cica18\Documents\Obrázky
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\cica18\Documents\Hudba
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\cica18\Documents\Filmy
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\cica18\Data aplikací
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\cica18\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-04-19 10:07 - 2017-04-19 10:07 - 00000000 _SHDL C:\Users\cica18\AppData\Local\Data aplikací
2017-04-19 10:06 - 2017-04-19 10:16 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2017-04-19 10:06 - 2017-04-19 10:15 - 00000000 ____D C:\Program Files\AMD
2017-04-19 10:06 - 2017-04-19 10:06 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2017-04-19 10:06 - 2017-03-18 22:56 - 02233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-04-19 10:03 - 2017-04-20 07:20 - 00387912 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-04-19 10:03 - 2017-04-19 21:44 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-04-15 14:40 - 2017-04-15 14:38 - 00000123 _____ C:\Users\cica18\Desktop\metal radio.pls
2017-04-15 09:57 - 2017-04-15 10:07 - 00000000 ____D C:\Users\cica18\Downloads\Assassin's.Creed.2016.BDRip.XviD.CZ-TreZzoR
2017-04-14 09:54 - 2017-04-14 09:54 - 00000000 ____D C:\Users\cica18\AppData\Local\UNP
2017-04-14 07:55 - 2017-04-19 10:15 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-04-14 07:55 - 2017-04-14 07:56 - 00000000 ____D C:\Program Files\UNP
2017-04-05 19:10 - 2017-04-19 10:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
2017-04-05 19:10 - 2017-04-14 15:51 - 00000000 ____D C:\Program Files\Guild Wars 2
2017-04-05 19:10 - 2017-04-05 19:10 - 00000994 _____ C:\Users\Public\Desktop\Guild Wars 2.lnk
2017-04-05 19:09 - 2017-04-14 15:51 - 00000000 ____D C:\Users\cica18\AppData\Roaming\Guild Wars 2
2017-04-05 19:09 - 2017-04-05 19:09 - 00000000 ____D C:\Users\cica18\Downloads\bin64
2017-04-04 23:38 - 2017-04-04 23:38 - 00000000 ____D C:\Users\cica18\Downloads\king
2017-04-04 13:17 - 2017-04-19 10:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2017-04-04 13:17 - 2017-04-04 13:17 - 00002182 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2017-04-04 13:17 - 2017-04-04 13:17 - 00000000 ____D C:\Program Files (x86)\FOXIT SOFTWARE
2017-04-03 18:27 - 2017-04-10 14:28 - 00000000 ____D C:\Users\cica18\Downloads\Logan 2017 720p HD-TS V 2 x264 AC3-CPG
2017-04-03 18:26 - 2017-04-04 20:57 - 00000000 ____D C:\Users\cica18\Downloads\Metropolis (1927, DE, czsub v obraze)
2017-04-03 17:12 - 2017-04-03 18:26 - 00000000 ____D C:\Users\cica18\Downloads\Uvězněni v čase (Timecrimes, 2007)
2017-04-03 16:18 - 2017-04-03 16:30 - 00000000 ____D C:\Users\cica18\Downloads\Upstream Color
2017-04-03 13:57 - 2017-04-03 16:08 - 993892352 _____ C:\Users\cica18\Downloads\Zakazana planeta (1956).avi
2017-04-03 13:51 - 2017-04-03 14:06 - 00000000 ____D C:\Users\cica18\Downloads\Euro.2013.BRRip.480p.AC3.2.0.CZ
2017-04-03 13:49 - 2017-04-03 14:24 - 1468692480 _____ C:\Users\cica18\Downloads\Brazil.avi
2017-04-03 13:47 - 2017-04-03 14:16 - 1154602800 _____ C:\Users\cica18\Downloads\Westworld CZ.avi
2017-04-03 13:44 - 2017-04-03 17:12 - 00000000 ____D C:\Users\cica18\Downloads\Soylent Green 1973 (1080p Bluray x265 HEVC 10bit AAC 1 0 Tigole)[majo0007]
2017-04-03 13:43 - 2017-04-03 13:43 - 00000000 ____D C:\Users\cica18\Downloads\The Last Man On Earth 1964 720p BluRay x264-x0r
2017-04-02 23:20 - 2017-04-02 23:20 - 00056196 _____ C:\Users\cica18\Downloads\A170110_JAN_025_DANE_2016_MALY_3.XLSX
2017-04-02 08:15 - 2017-04-02 08:15 - 00087904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UNPUXWorker.exe
2017-03-26 23:37 - 2017-03-26 23:38 - 00000000 ____D C:\Users\cica18\Downloads\ash
2017-03-26 22:40 - 2017-03-26 22:40 - 00000000 ____D C:\Users\cica18\Downloads\REC
2017-03-26 10:05 - 2017-04-19 10:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2017-03-24 17:51 - 2017-04-19 10:15 - 00000000 ____D C:\Users\cica18\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Drakensang Online

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-04-20 09:20 - 2016-10-20 21:52 - 00000000 ____D C:\Users\cica18\Documents\Soubory aplikace Outlook
2017-04-20 09:05 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF
2017-04-20 07:31 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-04-20 07:31 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-04-20 07:31 - 2017-03-07 16:10 - 00000000 ____D C:\Users\cica18\Downloads\Harry Potter - Gold colection
2017-04-20 07:31 - 2016-10-20 21:44 - 00000000 ____D C:\hry
2017-04-20 07:27 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\appcompat
2017-04-20 07:26 - 2016-10-05 12:38 - 00000000 ____D C:\Users\cica18\AppData\Roaming\MPC-HC
2017-04-20 07:25 - 2017-03-20 06:39 - 00771022 _____ C:\WINDOWS\system32\perfh005.dat
2017-04-20 07:25 - 2017-03-20 06:39 - 00156956 _____ C:\WINDOWS\system32\perfc005.dat
2017-04-20 07:20 - 2017-03-11 16:48 - 00000368 _____ C:\WINDOWS\Tasks\HPCeeScheduleForcica18.job
2017-04-19 20:15 - 2017-03-18 22:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-04-19 11:02 - 2017-03-18 23:03 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-04-19 10:59 - 2017-03-18 23:06 - 00000000 ____D C:\WINDOWS\Setup
2017-04-19 10:57 - 2016-10-20 21:33 - 00002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2017-04-19 10:53 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2017-04-19 10:53 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\MUI
2017-04-19 10:50 - 2016-10-05 11:48 - 00000000 ____D C:\Users\cica18\AppData\Local\Packages
2017-04-19 10:40 - 2016-10-05 11:51 - 00002394 _____ C:\Users\cica18\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-04-19 10:40 - 2016-10-05 11:51 - 00000000 ___RD C:\Users\cica18\OneDrive
2017-04-19 10:33 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-04-19 10:33 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\rescache
2017-04-19 10:33 - 2016-10-05 11:48 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-04-19 10:32 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows NT
2017-04-19 10:31 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-04-19 10:31 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Registration
2017-04-19 10:31 - 2017-03-18 13:40 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-04-19 10:28 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-04-19 10:24 - 2017-03-20 06:41 - 00000000 ____D C:\WINDOWS\HoloShell
2017-04-19 10:22 - 2017-03-18 23:03 - 00000000 __RHD C:\Users\Public\Libraries
2017-04-19 10:20 - 2016-10-05 11:58 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-04-19 10:16 - 2017-03-18 13:40 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-04-19 10:15 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-04-19 10:15 - 2017-03-10 09:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2017-04-19 10:15 - 2017-03-10 09:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2017-04-19 10:15 - 2017-01-30 21:10 - 00000000 ____D C:\Users\cica18\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2017-04-19 10:15 - 2017-01-24 09:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Problem Report Wizard
2017-04-19 10:15 - 2017-01-24 09:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
2017-04-19 10:15 - 2017-01-10 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-04-19 10:15 - 2017-01-09 22:45 - 00000000 ____D C:\Users\cica18\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2017-04-19 10:15 - 2016-12-25 10:50 - 00000000 ____D C:\Users\cica18\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Etwok LLC
2017-04-19 10:15 - 2016-11-01 11:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shadow Warrior 2 [GOG.com]
2017-04-19 10:15 - 2016-10-27 17:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! 7
2017-04-19 10:15 - 2016-10-20 21:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2017-04-19 10:15 - 2016-10-20 21:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2017-04-19 10:15 - 2016-10-11 11:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trackmania Turbo
2017-04-19 10:15 - 2016-10-09 23:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brutal DOOM - Hell on Earth Starter Pack
2017-04-19 10:15 - 2016-10-08 14:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-04-19 10:15 - 2016-10-08 08:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2017-04-19 10:15 - 2016-10-08 07:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rise of the Tomb Raider
2017-04-19 10:15 - 2016-10-05 22:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2017-04-19 10:15 - 2016-10-05 22:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2017-04-19 10:15 - 2016-10-05 21:57 - 00000000 ____D C:\Users\cica18\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2017-04-19 10:15 - 2016-10-05 15:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2017-04-19 10:15 - 2016-10-05 14:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3
2017-04-19 10:15 - 2016-10-05 13:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
2017-04-19 10:15 - 2016-10-05 13:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2017-04-19 10:15 - 2016-10-05 12:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2017-04-19 10:15 - 2016-10-05 12:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
2017-04-19 10:15 - 2016-10-05 12:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView
2017-04-19 10:15 - 2016-10-05 12:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2017-04-19 10:15 - 2016-10-05 12:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
2017-04-19 10:15 - 2016-10-05 12:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2017-04-19 10:14 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\USOPrivate
2017-04-19 10:11 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\spool
2017-04-19 10:11 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-04-19 10:11 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-04-19 10:11 - 2017-01-27 18:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-04-19 10:11 - 2016-10-29 22:06 - 00000000 ____D C:\WINDOWS\system32\˙˙˙˙˙˙˙˙8
2017-04-19 10:11 - 2016-10-16 22:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2017-04-19 10:11 - 2016-10-05 22:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2017-04-19 10:10 - 2016-10-05 11:45 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\Packages
2017-04-19 10:09 - 2016-12-10 20:57 - 00000000 ____D C:\Users\cica18\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2017-04-19 10:06 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-04-18 08:40 - 2016-10-05 14:13 - 00000000 ____D C:\Users\cica18\AppData\Roaming\IObit
2017-04-18 08:40 - 2016-10-05 14:13 - 00000000 ____D C:\ProgramData\IObit
2017-04-18 08:40 - 2016-10-05 14:13 - 00000000 ____D C:\Program Files (x86)\IObit
2017-04-18 08:16 - 2016-10-20 21:04 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-04-17 22:39 - 2016-10-05 21:57 - 00000000 ____D C:\Users\cica18\AppData\Roaming\uTorrent
2017-04-17 18:33 - 2016-10-06 15:08 - 00000000 ____D C:\Users\cica18\AppData\Roaming\Skype
2017-04-16 10:43 - 2016-10-05 12:54 - 00000000 ____D C:\Users\cica18\AppData\Local\Battle.net
2017-04-16 10:03 - 2016-10-05 12:53 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-04-13 21:59 - 2016-10-05 14:14 - 00000000 ____D C:\ProgramData\ProductData
2017-04-13 16:51 - 2016-10-05 12:14 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-04-13 16:48 - 2016-10-05 12:13 - 148601744 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-04-11 17:04 - 2016-12-10 20:57 - 00000000 ____D C:\Users\cica18\AppData\Local\Ubisoft Game Launcher
2017-04-10 19:19 - 2016-10-11 08:51 - 00000000 ____D C:\Users\cica18\AppData\Roaming\Anvsoft
2017-04-10 17:48 - 2016-10-05 12:52 - 00000000 ____D C:\Users\cica18\AppData\Roaming\Battle.net
2017-04-10 14:35 - 2017-01-09 22:42 - 00000000 ____D C:\Users\cica18\AppData\Local\JDownloader 2.0
2017-04-08 17:05 - 2016-10-05 12:29 - 00532136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-04-05 16:32 - 2016-10-05 13:07 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2017-04-04 13:17 - 2016-10-05 22:10 - 00000000 ____D C:\ProgramData\Foxit Software
2017-04-04 11:24 - 2016-10-20 21:21 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-04-03 18:56 - 2017-03-18 23:06 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-04-03 18:56 - 2017-03-18 23:06 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-30 15:16 - 2016-10-05 11:58 - 00002220 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-03-26 10:05 - 2016-10-27 18:44 - 00001765 _____ C:\Users\Public\Desktop\Defraggler.lnk
2017-03-26 10:05 - 2016-10-27 18:44 - 00000000 ____D C:\Program Files\Defraggler
2017-03-25 12:00 - 2016-10-05 11:52 - 00000000 ____D C:\AMD
2017-03-24 17:51 - 2016-10-14 20:18 - 00002001 _____ C:\Users\cica18\Desktop\Drakensang Online.lnk
2017-03-24 17:51 - 2016-10-14 20:18 - 00000000 ____D C:\Program Files (x86)\Drakensang Online

==================== Files in the root of some directories =======

2016-11-01 09:50 - 2016-11-01 09:50 - 0003584 _____ () C:\Users\cica18\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-03-10 09:21 - 2017-03-10 10:38 - 0001187 _____ () C:\ProgramData\hpzinstall.log
2016-10-05 13:21 - 2016-10-05 13:21 - 0000114 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2017-02-13 11:08 - 2017-02-13 11:08 - 0000061 _____ () C:\ProgramData\SoftwareUpdateTemp.xml

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\HPCeeScheduleForcica18.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\cica18\Desktop" je 889 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]


==================== End Of Log ==============================


Nahoru
 Profil  
 
 Předmět příspěvku: Re: prosim o prev. kontrolu
PříspěvekNapsal: 20 dub 2017 15:06 
Offline
Moderátor
Moderátor
Uživatelský avatar

Registrován: 26 lis 2006 13:37
Příspěvky: 14680
Bydliště: ČR
Zdravím,

odinstaluj vše od IObit jinak tam nic špatného nevidím.

_________________
| Rsit | Mbam | AVPTool | Cure It |

O víkendu odpočívám :all_coholic:


Nahoru
 Profil  
 
 Předmět příspěvku: Re: prosim o prev. kontrolu
PříspěvekNapsal: 21 dub 2017 10:18 
Offline
Návštěvník
Návštěvník

Registrován: 12 bře 2007 17:37
Příspěvky: 112
diky


Nahoru
 Profil  
 
 Předmět příspěvku: Re: prosim o prev. kontrolu
PříspěvekNapsal: 21 dub 2017 19:18 
Offline
Moderátor
Moderátor
Uživatelský avatar

Registrován: 26 lis 2006 13:37
Příspěvky: 14680
Bydliště: ČR
Není zač a :closed:

_________________
| Rsit | Mbam | AVPTool | Cure It |

O víkendu odpočívám :all_coholic:


Nahoru
 Profil  
 
Zobrazit příspěvky za předchozí:  Seřadit podle  
Odeslat nové téma Toto téma je zamknuté. Nemůžete posílat nové příspěvky ani odpovídat na starší.  [ Příspěvků: 4 ] 

Všechny časy jsou v UTC + 1 hodina


Kdo je online

Uživatelé procházející toto fórum: Žádní registrovaní uživatelé


Nemůžete zakládat nová témata v tomto fóru
Nemůžete odpovídat v tomto fóru
Nemůžete upravovat své příspěvky v tomto fóru
Nemůžete mazat své příspěvky v tomto fóru
Nemůžete přikládat soubory v tomto fóru

Hledat:
Přejít na:  
Založeno na phpBB® Forum Software © phpBB Group
Český překlad – phpBB.cz