Právě je 17 zář 2019 08:30

Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Všechny časy jsou v UTC + 1 hodina


Pravidla fóra


Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz



Odeslat nové téma Toto téma je zamknuté. Nemůžete posílat nové příspěvky ani odpovídat na starší.  [ Příspěvků: 13 ] 
Autor Zpráva
 Předmět příspěvku: Kontrola logu...Děkuji
PříspěvekNapsal: 22 pro 2018 15:04 
Offline
Návštěvník
Návštěvník

Registrován: 23 pro 2009 21:08
Příspěvky: 33
Prosím o kontrolu, děkuji moc.


Logfile of random's system information tool 1.10 (written by random/random)
Run by Libor at 2018-12-22 14:44:27
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 17 GB (16%) free of 102 GB
Total RAM: 8173 MB (70% free)

HijackThis download failed

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe"
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Windows\SysWOW64\HsMgr.exe" Envoke
"C:\Windows\system\HsMgr64.exe" Envoke
"C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe" Minimum
"C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
AvastUI.exe /nogui
"C:\Program Files\ASUS Xonar DX Audio\Customapp\ASUSAUDIOCENTER.EXE"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="3144.0.293024098\1296227266" -parentBuildID 20181206201918 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - "C:\Users\Libor\AppData\LocalLow\Mozilla\Temp-{77e395a5-7205-440c-adbe-ac3825c8422f}" 3144 "\\.\pipe\gecko-crash-server-pipe.3144" 1268 gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="3144.3.884031436\1210282270" -childID 1 -isForBrowser -prefsHandle 1880 -prefMapHandle 1876 -prefsLen 1 -prefMapSize 194785 -schedulerPrefs 0001,2 -parentBuildID 20181206201918 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 3144 "\\.\pipe\gecko-crash-server-pipe.3144" 1900 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="3144.13.186150973\1251619930" -childID 2 -isForBrowser -prefsHandle 2364 -prefMapHandle 2524 -prefsLen 82 -prefMapSize 194785 -schedulerPrefs 0001,2 -parentBuildID 20181206201918 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 3144 "\\.\pipe\gecko-crash-server-pipe.3144" 2536 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="3144.20.552945480\447121495" -childID 3 -isForBrowser -prefsHandle 2968 -prefMapHandle 2972 -prefsLen 176 -prefMapSize 194785 -schedulerPrefs 0001,2 -parentBuildID 20181206201918 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 3144 "\\.\pipe\gecko-crash-server-pipe.3144" 2984 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="3144.27.2110794260\298168535" -childID 4 -isForBrowser -prefsHandle 3700 -prefMapHandle 3936 -prefsLen 5741 -prefMapSize 194785 -schedulerPrefs 0001,2 -parentBuildID 20181206201918 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 3144 "\\.\pipe\gecko-crash-server-pipe.3144" 3680 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="3144.34.1565662180\1814788235" -childID 5 -isForBrowser -prefsHandle 3700 -prefMapHandle 3948 -prefsLen 5741 -prefMapSize 194785 -schedulerPrefs 0001,2 -parentBuildID 20181206201918 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 3144 "\\.\pipe\gecko-crash-server-pipe.3144" 3708 tab
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"

taskeng.exe {0B196C0F-3DC4-4AC2-9646-9F28B610288F}
"C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe" /from_scheduler:1
"C:\Users\Libor\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup

=========Mozilla firefox=========

ProfilePath - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.google.com/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.191.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.191.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-10-20 480120]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-10-20 194424]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2017-06-08 1893312]
"Cmaudio8788"=C:\Windows\syswow64\RunDll32.exe [2017-03-30 45056]
"Cmaudio8788GX"=C:\Windows\syswow64\HsMgr.exe [2008-07-11 200704]
"Cmaudio8788GX64"=C:\Windows\system\HsMgr64.exe [2008-07-11 282112]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-11-22 242392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OscarEditor"=C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe [2012-08-17 3345408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
D:\Programy\iTunes\iTunesHelper.exe [2018-03-25 298296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Syncios device service]
C:\Program Files (x86)\Anvsoft\Syncios\SynciosDeviceService.exe [2018-06-29 2443384]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-10-06 601424]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Dell Display Manager.lnk - C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-12-22 14:44:27 ----D---- C:\rsit
2018-12-22 14:44:27 ----D---- C:\Program Files\trend micro
2018-12-20 17:16:33 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-12-20 17:16:33 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-12-20 17:16:33 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-12-20 17:16:33 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-12-20 17:16:33 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-12-20 17:16:33 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-12-20 17:16:33 ----A---- C:\Windows\system32\iertutil.dll
2018-12-20 17:16:33 ----A---- C:\Windows\system32\iernonce.dll
2018-12-20 17:16:33 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-12-20 17:16:33 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-12-20 17:16:32 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-12-20 17:16:32 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-12-20 17:16:32 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-12-20 17:16:32 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-12-20 17:16:32 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-12-20 17:16:32 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-12-20 17:16:32 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-12-20 17:16:32 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-12-20 17:16:32 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-12-20 17:16:32 ----A---- C:\Windows\system32\inseng.dll
2018-12-20 17:16:32 ----A---- C:\Windows\system32\ie4uinit.exe
2018-12-20 17:16:31 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-12-20 17:16:31 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-12-20 17:16:31 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-12-20 17:16:31 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-12-20 17:16:31 ----A---- C:\Windows\system32\urlmon.dll
2018-12-20 17:16:31 ----A---- C:\Windows\system32\occache.dll
2018-12-20 17:16:31 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-12-20 17:16:31 ----A---- C:\Windows\system32\iedkcs32.dll
2018-12-20 17:16:30 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-12-20 17:16:30 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-12-20 17:16:30 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-12-20 17:16:30 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-12-20 17:16:30 ----A---- C:\Windows\system32\msfeeds.dll
2018-12-20 17:16:30 ----A---- C:\Windows\system32\iesetup.dll
2018-12-20 17:16:30 ----A---- C:\Windows\system32\dxtrans.dll
2018-12-20 17:16:29 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-12-20 17:16:29 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-12-20 17:16:29 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-12-20 17:16:29 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-12-20 17:16:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-12-20 17:16:29 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-12-20 17:16:29 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-12-20 17:16:29 ----A---- C:\Windows\system32\vbscript.dll
2018-12-20 17:16:29 ----A---- C:\Windows\system32\dxtmsft.dll
2018-12-20 17:16:28 ----A---- C:\Windows\system32\webcheck.dll
2018-12-20 17:16:28 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-12-20 17:16:28 ----A---- C:\Windows\system32\mshtmled.dll
2018-12-20 17:16:28 ----A---- C:\Windows\system32\ieUnatt.exe
2018-12-20 17:16:28 ----A---- C:\Windows\system32\ieui.dll
2018-12-20 17:16:28 ----A---- C:\Windows\system32\ieframe.dll
2018-12-20 17:16:27 ----A---- C:\Windows\system32\wininet.dll
2018-12-20 17:16:27 ----A---- C:\Windows\system32\jsproxy.dll
2018-12-20 17:16:27 ----A---- C:\Windows\system32\jscript9diag.dll
2018-12-20 17:16:27 ----A---- C:\Windows\system32\jscript9.dll
2018-12-20 17:16:27 ----A---- C:\Windows\system32\jscript.dll
2018-12-20 17:16:27 ----A---- C:\Windows\system32\ieapfltr.dll
2018-12-20 17:16:26 ----A---- C:\Windows\system32\msrating.dll
2018-12-20 17:16:26 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-12-20 17:16:26 ----A---- C:\Windows\system32\mshtml.dll
2018-12-12 16:53:48 ----A---- C:\Windows\system32\wmp.dll
2018-12-12 16:53:46 ----A---- C:\Windows\SYSWOW64\wmp.dll
2018-12-12 16:53:46 ----A---- C:\Windows\system32\win32k.sys
2018-12-12 16:53:46 ----A---- C:\Windows\system32\rpcrt4.dll
2018-12-12 16:53:46 ----A---- C:\Windows\system32\msxml3.dll
2018-12-12 16:53:45 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-12-12 16:53:45 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-12-12 16:53:45 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-12-12 16:53:45 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2018-12-12 16:53:45 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2018-12-12 16:53:45 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-12-12 16:53:45 ----A---- C:\Windows\system32\msxml6.dll
2018-12-12 16:53:45 ----A---- C:\Windows\system32\gdi32.dll
2018-12-12 16:53:42 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2018-12-12 16:53:42 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-12-12 16:53:42 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2018-12-12 16:53:42 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2018-12-12 16:53:42 ----A---- C:\Windows\system32\t2embed.dll
2018-12-12 16:53:42 ----A---- C:\Windows\system32\ntdll.dll
2018-12-12 16:53:42 ----A---- C:\Windows\system32\hal.dll
2018-12-12 16:53:42 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-12-12 16:53:42 ----A---- C:\Windows\system32\atmfd.dll
2018-12-12 16:53:41 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2018-12-12 16:53:41 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2018-12-12 16:53:41 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2018-12-12 16:53:41 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-12-12 16:53:41 ----A---- C:\Windows\system32\wmploc.DLL
2018-12-12 16:53:41 ----A---- C:\Windows\system32\spwmp.dll
2018-12-12 16:53:41 ----A---- C:\Windows\system32\dxmasf.dll
2018-12-12 16:53:41 ----A---- C:\Windows\system32\drivers\msrpc.sys
2018-12-12 16:53:41 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-12-12 16:53:41 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-12-12 16:53:41 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-12-12 16:53:41 ----A---- C:\Windows\system32\certcli.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\wow64win.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\wow64cpu.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\wow64.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\winsrv.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\wdigest.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\tzres.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\TSpkg.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\sspisrv.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\sspicli.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\srcore.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\smss.exe
2018-12-12 16:53:40 ----A---- C:\Windows\system32\schannel.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\rpchttp.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\ncrypt.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\msv1_0.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\lsass.exe
2018-12-12 16:53:40 ----A---- C:\Windows\system32\lsasrv.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\lpk.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\KernelBase.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\kernel32.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\kerberos.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\fontsub.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-12-12 16:53:40 ----A---- C:\Windows\system32\drivers\processr.sys
2018-12-12 16:53:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-12-12 16:53:40 ----A---- C:\Windows\system32\drivers\intelppm.sys
2018-12-12 16:53:40 ----A---- C:\Windows\system32\drivers\appid.sys
2018-12-12 16:53:40 ----A---- C:\Windows\system32\drivers\amdppm.sys
2018-12-12 16:53:40 ----A---- C:\Windows\system32\drivers\amdk8.sys
2018-12-12 16:53:40 ----A---- C:\Windows\system32\dciman32.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\csrsrv.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\cryptbase.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\conhost.exe
2018-12-12 16:53:40 ----A---- C:\Windows\system32\bcrypt.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\advapi32.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\user.exe
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\lpk.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\srclient.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\secur32.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\rstrui.exe
2018-12-12 16:53:39 ----A---- C:\Windows\system32\ntvdm64.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\msxml3r.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\msobjs.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\msaudite.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\credssp.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\auditpol.exe
2018-12-12 16:53:39 ----A---- C:\Windows\system32\atmlib.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\appidsvc.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-12-12 16:53:39 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-12-12 16:53:39 ----A---- C:\Windows\system32\appidapi.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\apisetschema.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\adtschema.dll
2018-12-12 16:53:38 ----A---- C:\Windows\system32\msxml6r.dll

======List of files/folders modified in the last 1 month======

2018-12-22 14:44:34 ----D---- C:\Windows\Prefetch
2018-12-22 14:44:27 ----RD---- C:\Program Files
2018-12-22 14:37:42 ----D---- C:\Windows\Temp
2018-12-22 14:28:50 ----D---- C:\Windows\system32\config
2018-12-22 14:10:48 ----D---- C:\Windows\System32
2018-12-22 14:10:48 ----D---- C:\Windows\inf
2018-12-22 14:10:48 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-12-22 14:06:35 ----D---- C:\ProgramData\NVIDIA
2018-12-22 14:06:27 ----D---- C:\Windows
2018-12-22 13:18:32 ----D---- C:\Users\Libor\AppData\Roaming\MPC-HC
2018-12-22 13:11:51 ----D---- C:\Windows\debug
2018-12-22 13:11:50 ----D---- C:\Windows\Minidump
2018-12-22 13:06:58 ----D---- C:\Program Files\CCleaner
2018-12-22 11:51:47 ----D---- C:\Users\Libor\AppData\Roaming\foobar2000
2018-12-22 02:26:13 ----D---- C:\Users\Libor\AppData\Roaming\Messenger for Desktop
2018-12-21 14:31:42 ----D---- C:\Windows\rescache
2018-12-20 17:48:31 ----D---- C:\Windows\winsxs
2018-12-20 17:47:24 ----D---- C:\Windows\SYSWOW64\en-US
2018-12-20 17:47:24 ----D---- C:\Windows\SYSWOW64\cs-CZ
2018-12-20 17:47:24 ----D---- C:\Windows\SysWOW64
2018-12-20 17:47:24 ----D---- C:\Program Files\Internet Explorer
2018-12-20 17:47:23 ----D---- C:\Windows\system32\en-US
2018-12-20 17:47:23 ----D---- C:\Windows\system32\cs-CZ
2018-12-20 17:47:23 ----D---- C:\Program Files (x86)\Internet Explorer
2018-12-20 17:16:54 ----SHD---- C:\System Volume Information
2018-12-20 17:12:43 ----D---- C:\Windows\system32\catroot2
2018-12-15 10:50:50 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-12-15 10:50:50 ----D---- C:\Program Files (x86)\Mozilla Firefox
2018-12-13 02:51:40 ----D---- C:\Windows\system32\drivers
2018-12-13 02:51:40 ----D---- C:\Program Files\Windows Media Player
2018-12-13 02:51:40 ----D---- C:\Program Files (x86)\Windows Media Player
2018-12-13 02:51:39 ----D---- C:\Windows\system32\Boot
2018-12-13 02:51:39 ----D---- C:\Windows\AppPatch
2018-12-13 02:51:38 ----D---- C:\Windows\system32\DriverStore
2018-12-13 02:26:38 ----AC---- C:\Windows\system32\MRT.exe
2018-12-12 15:55:15 ----D---- C:\Windows\Microsoft.NET
2018-12-12 15:37:29 ----RSD---- C:\Windows\assembly
2018-12-12 11:09:24 ----SHD---- C:\Windows\Installer
2018-12-12 11:07:56 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2018-12-11 09:48:15 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2018-12-10 17:11:11 ----D---- C:\Users\Libor\AppData\Roaming\MB-Ruler
2018-11-30 00:08:23 ----D---- C:\Users\Libor\AppData\Roaming\Thunderbird
2018-11-29 12:19:55 ----RD---- C:\Program Files (x86)

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2018-11-22 201768]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2018-11-22 346592]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2018-11-22 59496]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2018-11-22 87432]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2018-11-22 380464]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2018-11-22 201240]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2018-11-22 230344]
R1 aswHdsKe;aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [2018-11-26 239840]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2018-11-22 42288]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2018-11-22 111800]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2018-11-22 1028680]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2018-11-22 469272]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2018-11-22 163208]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2018-11-22 208472]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-01-27 125416]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-01-27 385512]
R3 cmudaxp;ASUS Xonar DX Audio Interface; C:\Windows\system32\drivers\cmudaxp.sys [2011-03-10 2725376]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2017-06-08 218712]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2017-06-08 48064]
R3 nvvhci;NVVHCI Enumerator Service; C:\Windows\system32\DRIVERS\nvvhci.sys [2017-06-08 57792]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-02-16 428136]
R3 WinUSB;PS3Eye Camera USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-21 41984]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2018-11-22 46384]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-06-08 30144]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2016-12-21 54784]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2018-03-14 83768]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-11-22 324000]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-06-08 462968]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-06-08 449984]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-11-22 8188768]
S2 avast;Služba %1!s! Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-05 164984]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 SkypeUpdate;Skype Updater; D:\Programy\Skype\Updater\Updater.exe [2017-07-18 317408]
S3 avastm;Služba %1!s! Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-05 164984]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-12-14 116224]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2018-03-25 673592]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-12-14 227792]
S3 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-06-08 495040]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-06-08 495040]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2017-06-15 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]

-----------------EOF-----------------


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Kontrola logu...Děkuji
PříspěvekNapsal: 22 pro 2018 17:20 
Offline
Rádce
Rádce

Registrován: 30 pro 2013 22:29
Příspěvky: 2852
Bydliště: Bratislava
Ahoj :)

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
  • Nechaj zaskrtnute vsetky nalezy
  • Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah sem skopiruj

_________________
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

V pripade spokojnosti je mozne podporit forum. Dakujeme!


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Kontrola logu...Děkuji
PříspěvekNapsal: 22 pro 2018 18:20 
Offline
Návštěvník
Návštěvník

Registrován: 23 pro 2009 21:08
Příspěvky: 33
# -------------------------------
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build: 12-18-2018
# Database: 2018-12-21.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 12-22-2018
# Duration: 00:00:04
# OS: Windows 7 Home Premium
# Cleaned: 4
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BDF61FAE-9D19-40F0-8F34-688DEB334CA9}
Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1629 octets] - [22/12/2018 18:15:39]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Kontrola logu...Děkuji
PříspěvekNapsal: 22 pro 2018 21:04 
Offline
Rádce
Rádce

Registrován: 30 pro 2013 22:29
Příspěvky: 2852
Bydliště: Bratislava
:arrow: Poprosim o obidva logy z FRST (FRST.txt a Addition.txt) podla tohto navodu: https://forum.viry.cz/viewtopic.php?f=13&t=154679

_________________
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

V pripade spokojnosti je mozne podporit forum. Dakujeme!


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Kontrola logu...Děkuji
PříspěvekNapsal: 22 pro 2018 21:23 
Offline
Návštěvník
Návštěvník

Registrován: 23 pro 2009 21:08
Příspěvky: 33
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20.12.2018
Ran by Libor (administrator) on LIBOR-PC (22-12-2018 21:21:17)
Running from C:\Users\Libor\Desktop
Loaded Profiles: Libor (Available Profiles: Libor)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
() C:\Windows\SysWOW64\HsMgr.exe
() C:\Windows\system\HsMgr64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe
(EnTech Taiwan) C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CMedia) C:\Program Files\ASUS Xonar DX Audio\Customapp\AsusAudioCenter.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Oracle Corporation) C:\Program Files (x86)\Java\jre1.8.0_191\bin\javaw.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Irfan Skiljan) C:\Program Files (x86)\IrfanView\i_view32.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

"Path" (C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;D:\Programy\Skype\Phone\ -> %SystemRoot%\System32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;D:\Programy\Skype\Phone\) <==== Repaired successfully
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Cmaudio8788] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cmicnfgp.dll,CMICtrlWnd
HKLM\...\Run: [Cmaudio8788GX] => C:\Windows\syswow64\HsMgr.exe [200704 2008-07-11] ()
HKLM\...\Run: [Cmaudio8788GX64] => C:\Windows\system\HsMgr64.exe [282112 2008-07-11] ()
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242392 2018-11-22] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2124696679-2527748950-779481189-1000\...\Run: [OscarEditor] => C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe [3345408 2012-08-17] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Dell Display Manager.lnk [2018-06-14]
ShortcutTarget: Dell Display Manager.lnk -> C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe (EnTech Taiwan)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{EE6C1B93-765D-4C2B-A654-71465F06A68B}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKU\S-1-5-21-2124696679-2527748950-779481189-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.cz/?gws_rd=ssl
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-10-20] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-10-20] (Oracle Corporation)

FireFox:
========
FF DefaultProfile: x9z5u258.default
FF ProfilePath: C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default [2018-12-22]
FF Homepage: Mozilla\Firefox\Profiles\x9z5u258.default -> hxxps://www.google.com/
FF NewTab: Mozilla\Firefox\Profiles\x9z5u258.default -> hxxp://securedsearch.lavasoft.com/?pr=v ... 19__180929
FF Extension: (AdBlocker Ultimate) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default\Extensions\adblockultimate@adblockultimate.net.xpi [2018-12-19]
FF Extension: (Flash Video Downloader) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default\Extensions\artur.dubovoy@gmail.com.xpi [2018-12-19]
FF Extension: (Enhancer for YouTube™) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2018-12-19]
FF Extension: (uBlock Origin) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default\Extensions\uBlock0@raymondhill.net.xpi [2018-12-04]
FF Extension: (Avast Online Security) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default\Extensions\wrc@avast.com.xpi [2018-11-26]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2018-12-07]
FF Extension: (Video DownloadHelper) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-08-09]
FF Extension: (Vývojové sestavení Adblock Plus) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-12-07]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-10-20] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-10-20] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-03-14] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [8188768 2018-11-22] (AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [324000 2018-11-22] (AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software)
S2 SkypeUpdate; D:\Programy\Skype\Updater\Updater.exe [317408 2017-07-18] (Skype Technologies)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S3 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [201240 2018-11-22] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [230344 2018-11-22] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [201768 2018-11-22] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [346592 2018-11-22] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [59496 2018-11-22] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [239840 2018-11-26] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46384 2018-11-22] (AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42288 2018-11-22] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [163208 2018-11-22] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111800 2018-11-22] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [87432 2018-11-22] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1028680 2018-11-22] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [469272 2018-11-22] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [208472 2018-11-22] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [380464 2018-11-22] (AVAST Software)
R3 cmudaxp; C:\Windows\System32\drivers\cmudaxp.sys [2725376 2011-03-10] (C-Media Inc)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-06-08] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [48064 2017-06-08] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-06-08] (NVIDIA Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-12-22 21:21 - 2018-12-22 21:21 - 000012101 _____ C:\Users\Libor\Desktop\FRST.txt
2018-12-22 21:20 - 2018-12-22 21:21 - 000000000 ____D C:\FRST
2018-12-22 21:16 - 2018-12-22 21:16 - 002420224 _____ (Farbar) C:\Users\Libor\Desktop\FRST64.exe
2018-12-22 18:15 - 2018-12-22 18:16 - 000000000 ____D C:\AdwCleaner
2018-12-22 17:48 - 2018-12-22 17:48 - 007320272 _____ (Malwarebytes) C:\Users\Libor\Desktop\adwcleaner_7.2.6.0.exe
2018-12-22 14:44 - 2018-12-22 14:44 - 000000000 ____D C:\rsit
2018-12-22 14:44 - 2018-12-22 14:44 - 000000000 ____D C:\Program Files\trend micro
2018-12-22 14:42 - 2018-12-22 14:43 - 001222144 _____ C:\Users\Libor\Desktop\RSITx64.exe
2018-12-21 23:54 - 2018-12-22 00:24 - 366720167 _____ C:\Users\Libor\Downloads\incetjszxa092.mp4
2018-12-20 17:16 - 2018-12-15 01:06 - 000397088 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-12-20 17:16 - 2018-12-15 00:14 - 000348760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-12-20 17:16 - 2018-12-14 09:09 - 025736704 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-12-20 17:16 - 2018-12-14 09:01 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-12-20 17:16 - 2018-12-14 09:01 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-12-20 17:16 - 2018-12-14 08:51 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-12-20 17:16 - 2018-12-14 08:49 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-12-20 17:16 - 2018-12-14 08:49 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-12-20 17:16 - 2018-12-14 08:49 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-12-20 17:16 - 2018-12-14 08:48 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-12-20 17:16 - 2018-12-14 08:48 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-12-20 17:16 - 2018-12-14 08:42 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-12-20 17:16 - 2018-12-14 08:41 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-12-20 17:16 - 2018-12-14 08:39 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-12-20 17:16 - 2018-12-14 08:38 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-12-20 17:16 - 2018-12-14 08:38 - 000790016 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-12-20 17:16 - 2018-12-14 08:38 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-12-20 17:16 - 2018-12-14 08:38 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-12-20 17:16 - 2018-12-14 08:36 - 005779456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-12-20 17:16 - 2018-12-14 08:33 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-12-20 17:16 - 2018-12-14 08:30 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-12-20 17:16 - 2018-12-14 08:24 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2018-12-20 17:16 - 2018-12-14 08:24 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-12-20 17:16 - 2018-12-14 08:23 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-12-20 17:16 - 2018-12-14 08:21 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-12-20 17:16 - 2018-12-14 08:20 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-12-20 17:16 - 2018-12-14 08:18 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-12-20 17:16 - 2018-12-14 08:17 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-12-20 17:16 - 2018-12-14 08:09 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-12-20 17:16 - 2018-12-14 08:06 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-12-20 17:16 - 2018-12-14 08:06 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-12-20 17:16 - 2018-12-14 08:05 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-12-20 17:16 - 2018-12-14 08:04 - 002136064 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-12-20 17:16 - 2018-12-14 08:02 - 015284736 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-12-20 17:16 - 2018-12-14 07:58 - 020280832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-12-20 17:16 - 2018-12-14 07:57 - 004859904 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-12-20 17:16 - 2018-12-14 07:51 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2018-12-20 17:16 - 2018-12-14 07:45 - 001555968 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-12-20 17:16 - 2018-12-14 07:41 - 000498176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-12-20 17:16 - 2018-12-14 07:41 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2018-12-20 17:16 - 2018-12-14 07:40 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-12-20 17:16 - 2018-12-14 07:40 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2018-12-20 17:16 - 2018-12-14 07:39 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2018-12-20 17:16 - 2018-12-14 07:38 - 002295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-12-20 17:16 - 2018-12-14 07:35 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2018-12-20 17:16 - 2018-12-14 07:35 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2018-12-20 17:16 - 2018-12-14 07:34 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-12-20 17:16 - 2018-12-14 07:34 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-12-20 17:16 - 2018-12-14 07:33 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-12-20 17:16 - 2018-12-14 07:33 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2018-12-20 17:16 - 2018-12-14 07:32 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-12-20 17:16 - 2018-12-14 07:26 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-12-20 17:16 - 2018-12-14 07:23 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-12-20 17:16 - 2018-12-14 07:22 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2018-12-20 17:16 - 2018-12-14 07:22 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2018-12-20 17:16 - 2018-12-14 07:20 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-12-20 17:16 - 2018-12-14 07:19 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-12-20 17:16 - 2018-12-14 07:19 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2018-12-20 17:16 - 2018-12-14 07:18 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-12-20 17:16 - 2018-12-14 07:18 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2018-12-20 17:16 - 2018-12-14 07:14 - 013681152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-12-20 17:16 - 2018-12-14 07:13 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-12-20 17:16 - 2018-12-14 07:11 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-12-20 17:16 - 2018-12-14 07:11 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-12-20 17:16 - 2018-12-14 07:10 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2018-12-20 17:16 - 2018-12-14 06:58 - 004386816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-12-20 17:16 - 2018-12-14 06:54 - 001330176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-12-20 17:16 - 2018-12-14 06:52 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-12-15 21:47 - 2018-12-15 21:54 - 025538732 _____ C:\Users\Libor\Downloads\Aviation_News_2018-12.pdf
2018-12-14 11:25 - 2018-12-14 11:30 - 114505887 _____ C:\Users\Libor\Desktop\Islámské šátky ve školách nechceme.mp4
2018-12-12 16:53 - 2018-12-06 03:39 - 003227648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-12-12 16:53 - 2018-11-28 23:02 - 014635520 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2018-12-12 16:53 - 2018-11-28 23:02 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2018-12-12 16:53 - 2018-11-28 23:02 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2018-12-12 16:53 - 2018-11-28 23:02 - 000005632 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2018-12-12 16:53 - 2018-11-28 23:02 - 000005632 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2018-12-12 16:53 - 2018-11-28 22:50 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2018-12-12 16:53 - 2018-11-28 22:50 - 011411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2018-12-12 16:53 - 2018-11-28 22:38 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2018-12-12 16:53 - 2018-11-28 22:38 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2018-12-12 16:53 - 2018-11-28 22:38 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2018-12-12 16:53 - 2018-11-11 18:19 - 000631680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-12-12 16:53 - 2018-11-11 18:02 - 000262376 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-12-12 16:53 - 2018-11-11 18:01 - 005551848 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-12-12 16:53 - 2018-11-11 18:01 - 000708328 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-12-12 16:53 - 2018-11-11 18:01 - 000366824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2018-12-12 16:53 - 2018-11-11 18:01 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-12-12 16:53 - 2018-11-11 18:01 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2018-12-12 16:53 - 2018-11-11 18:00 - 001664360 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 001461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 001211904 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:49 - 004054760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2018-12-12 16:53 - 2018-11-11 17:49 - 003960040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2018-12-12 16:53 - 2018-11-11 17:47 - 001314104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:25 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2018-12-12 16:53 - 2018-11-11 17:25 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-12-12 16:53 - 2018-11-11 17:25 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2018-12-12 16:53 - 2018-11-11 17:24 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2018-12-12 16:53 - 2018-11-11 17:20 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2018-12-12 16:53 - 2018-11-11 17:20 - 000129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2018-12-12 16:53 - 2018-11-11 17:19 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2018-12-12 16:53 - 2018-11-11 17:19 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2018-12-12 16:53 - 2018-11-11 17:16 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-12-12 16:53 - 2018-11-11 17:16 - 000160768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-12-12 16:53 - 2018-11-11 17:16 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-12-12 16:53 - 2018-11-11 17:15 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2018-12-12 16:53 - 2018-11-11 17:15 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2018-12-12 16:53 - 2018-11-11 17:15 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2018-12-12 16:53 - 2018-11-11 17:15 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2018-12-12 16:53 - 2018-11-11 17:15 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2018-12-12 16:53 - 2018-11-11 17:15 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2018-12-12 16:53 - 2018-11-11 17:15 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2018-12-12 16:53 - 2018-11-11 17:15 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-12-12 16:53 - 2018-11-11 17:15 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2018-12-12 16:53 - 2018-11-11 17:15 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2018-12-12 16:53 - 2018-11-11 17:14 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2018-12-12 16:53 - 2018-11-11 17:13 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:13 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:13 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:13 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-12-12 16:53 - 2018-11-08 17:58 - 002009600 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2018-12-12 16:53 - 2018-11-08 17:58 - 001889280 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2018-12-12 16:53 - 2018-11-08 17:58 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2018-12-12 16:53 - 2018-11-08 17:58 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2018-12-12 16:53 - 2018-11-08 17:43 - 001391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2018-12-12 16:53 - 2018-11-08 17:43 - 001241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2018-12-12 16:53 - 2018-11-08 17:43 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2018-12-12 16:53 - 2018-11-08 17:43 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2018-12-12 16:53 - 2018-11-06 05:36 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2018-12-12 16:53 - 2018-11-06 05:20 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2018-12-12 16:53 - 2018-10-06 17:03 - 000383720 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2018-12-12 16:53 - 2018-10-06 16:59 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2018-12-12 16:53 - 2018-10-06 16:59 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2018-12-12 16:53 - 2018-10-06 16:58 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2018-12-12 16:53 - 2018-10-06 16:58 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2018-12-12 16:53 - 2018-10-06 16:58 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2018-12-12 16:53 - 2018-10-06 16:50 - 000309480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2018-12-12 16:53 - 2018-10-06 16:44 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2018-12-12 16:53 - 2018-10-06 16:44 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2018-12-12 16:53 - 2018-10-06 16:43 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2018-12-12 16:53 - 2018-10-06 16:43 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2018-12-12 16:53 - 2018-10-06 16:16 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2018-12-10 20:26 - 2018-12-10 20:26 - 001339412 _____ C:\Users\Libor\Desktop\38395.pdf
2018-12-10 20:20 - 2018-12-10 20:20 - 001063218 _____ C:\Users\Libor\Desktop\Composites-Aerospace-Applications.pdf
2018-12-09 13:08 - 2018-12-09 13:08 - 001322129 _____ C:\Users\Libor\Desktop\DT-Rus-VHF-Radar-2008.pdf
2018-12-08 20:28 - 2018-12-09 01:31 - 928982538 _____ C:\Users\Libor\Downloads\In_The_Midwest (1).mp4
2018-12-08 18:58 - 2018-12-08 19:35 - 057179116 _____ C:\Users\Libor\Downloads\In_The_Midwest.mp4
2018-12-08 14:01 - 2018-12-08 17:46 - 690332161 _____ C:\Users\Libor\Downloads\DickOnTrip.18.12.03.Shy.Indonesian.Kitty.CZECH.XXX.1080p.mp4
2018-12-08 10:54 - 2018-12-08 12:28 - 286409274 _____ C:\Users\Libor\Downloads\At_The_Adult_Theater (1).mp4
2018-12-08 10:53 - 2018-12-08 13:41 - 515374838 _____ C:\Users\Libor\Downloads\incetjszxa024 (1).mp4
2018-12-07 23:35 - 2018-12-08 00:47 - 654561779 _____ C:\Users\Libor\Downloads\incetjszxa028.mp4
2018-12-07 17:52 - 2018-12-07 17:56 - 066256085 _____ C:\Users\Libor\Desktop\Maxmilián Kašparů 3. díl Vrátili jsme se do mentality, která je podobná jako za socialismu.mp4
2018-12-07 11:54 - 2018-12-07 11:55 - 000000000 ____D C:\Users\Libor\Documents\D-test pdf
2018-12-07 11:09 - 2018-12-07 11:09 - 001138780 _____ C:\Users\Libor\Desktop\kita_internet_2018.pdf
2018-12-06 19:28 - 2018-12-06 19:28 - 001154324 _____ C:\Users\Libor\Desktop\06_Martyniak.pdf
2018-12-06 15:50 - 2018-12-06 15:50 - 001083161 _____ C:\Users\Libor\Desktop\Cenik_zakladnich_sluzeb_01_12_2018.pdf
2018-12-03 22:33 - 2018-12-04 01:46 - 592639478 _____ C:\Users\Libor\Downloads\incetjszxa001.mp4
2018-12-03 10:47 - 2018-12-03 10:47 - 000985789 _____ C:\Users\Libor\Desktop\35, Pack 1+1.pdf
2018-11-29 12:21 - 2018-11-29 12:21 - 000000000 ____D C:\Users\Libor\AppData\Local\fontconfig
2018-11-29 12:20 - 2018-11-29 12:20 - 000000000 ____D C:\Users\Libor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2018-11-25 19:20 - 2018-11-25 20:07 - 426914583 _____ C:\Users\Libor\Downloads\Clip_0023.mp4
2018-11-25 16:29 - 2017-10-02 20:01 - 092364952 _____ C:\Users\Libor\Downloads\UpsilonCaper-4ashleylanejonw.mp4
2018-11-22 02:14 - 2018-11-22 02:14 - 000378584 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-12-22 19:27 - 2009-07-14 05:45 - 000021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-12-22 19:27 - 2009-07-14 05:45 - 000021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-12-22 19:22 - 2018-10-20 21:14 - 000003232 _____ C:\Windows\System32\Tasks\{7E49FD1E-C496-4E67-B2E3-DDAF1C4D2556}
2018-12-22 19:22 - 2017-12-25 22:48 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-12-22 19:22 - 2017-10-04 12:17 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software
2018-12-22 19:22 - 2017-06-28 22:23 - 000002790 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2018-12-22 18:23 - 2011-04-12 09:34 - 000668542 _____ C:\Windows\system32\perfh005.dat
2018-12-22 18:23 - 2011-04-12 09:34 - 000141202 _____ C:\Windows\system32\perfc005.dat
2018-12-22 18:23 - 2009-07-14 06:13 - 001583226 _____ C:\Windows\system32\PerfStringBackup.INI
2018-12-22 18:23 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2018-12-22 18:19 - 2017-11-14 12:28 - 000000000 ____D C:\Users\Libor\AppData\Local\AVAST Software
2018-12-22 18:19 - 2017-06-15 12:53 - 000000000 ____D C:\Users\Libor\AppData\LocalLow\Mozilla
2018-12-22 18:17 - 2017-06-14 22:31 - 000000000 ____D C:\ProgramData\NVIDIA
2018-12-22 18:17 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-12-22 18:10 - 2017-09-21 10:29 - 000000000 ____D C:\Users\Libor\AppData\Roaming\Messenger for Desktop
2018-12-22 17:49 - 2017-09-13 11:42 - 000075734 _____ C:\Users\Libor\Desktop\Nový textový dokument.txt
2018-12-22 13:18 - 2017-06-15 23:14 - 000000000 ____D C:\Users\Libor\AppData\Roaming\MPC-HC
2018-12-22 13:11 - 2017-06-30 21:27 - 000000000 ____D C:\Windows\Minidump
2018-12-22 13:06 - 2017-06-28 22:23 - 000000000 ____D C:\Program Files\CCleaner
2018-12-22 11:51 - 2017-09-25 18:20 - 000000000 ____D C:\Users\Libor\AppData\Roaming\foobar2000
2018-12-21 14:59 - 2017-06-20 12:20 - 000032304 _____ C:\Users\Libor\Documents\WC.txt
2018-12-21 14:31 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2018-12-15 10:50 - 2017-06-15 12:52 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-12-15 10:50 - 2017-06-15 12:52 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-12-13 10:39 - 2009-07-14 05:45 - 000294952 _____ C:\Windows\system32\FNTCACHE.DAT
2018-12-13 02:26 - 2017-06-20 10:23 - 137260640 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-12-12 11:07 - 2017-06-30 21:45 - 001557940 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-12-11 10:03 - 2017-07-10 21:53 - 000000000 ____D C:\Users\Libor\Desktop\FAKTURA
2018-12-11 09:48 - 2017-01-30 11:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2018-12-10 17:11 - 2018-06-12 00:26 - 000000000 ____D C:\Users\Libor\AppData\Roaming\MB-Ruler
2018-12-09 10:38 - 2009-07-14 06:08 - 000032542 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2018-11-30 00:08 - 2014-01-28 11:13 - 000000000 ____D C:\Users\Libor\AppData\Roaming\Thunderbird
2018-11-29 14:38 - 2017-06-17 19:57 - 000000000 ____D C:\Users\Libor\Desktop\Zástupce
2018-11-26 18:14 - 2017-12-21 18:47 - 000239840 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-11-23 01:55 - 2018-04-05 09:49 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2018-11-22 02:14 - 2018-10-20 10:25 - 000042288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2018-11-22 02:14 - 2017-11-10 02:16 - 000201240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-11-22 02:14 - 2017-06-14 22:52 - 000469272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-11-22 02:14 - 2017-06-14 22:52 - 000380464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-11-22 02:14 - 2017-06-14 22:52 - 000208472 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-11-22 02:14 - 2017-06-14 22:52 - 000163208 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-11-22 02:14 - 2017-06-14 22:52 - 000111800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-11-22 02:14 - 2017-06-14 22:52 - 000087432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-11-22 02:14 - 2017-06-14 22:52 - 000046384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-11-22 02:14 - 2017-06-14 22:52 - 000003910 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-11-22 02:13 - 2017-06-14 22:52 - 001028680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-11-22 02:13 - 2017-06-14 22:52 - 000346592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbloga.sys
2018-11-22 02:13 - 2017-06-14 22:52 - 000230344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2018-11-22 02:13 - 2017-06-14 22:52 - 000201768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsha.sys
2018-11-22 02:13 - 2017-06-14 22:52 - 000059496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniva.sys

==================== Files in the root of some directories =======

2018-09-20 10:07 - 2018-09-20 10:07 - 000003584 _____ () C:\Users\Libor\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-10-20 11:40 - 2018-10-20 11:40 - 000000017 _____ () C:\Users\Libor\AppData\Local\resmon.resmoncfg

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-12-14 20:04

==================== End of FRST.txt ============================


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Kontrola logu...Děkuji
PříspěvekNapsal: 22 pro 2018 21:24 
Offline
Návštěvník
Návštěvník

Registrován: 23 pro 2009 21:08
Příspěvky: 33
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20.12.2018
Ran by Libor (22-12-2018 21:21:45)
Running from C:\Users\Libor\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2017-06-14 21:07:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2124696679-2527748950-779481189-500 - Administrator - Disabled)
Guest (S-1-5-21-2124696679-2527748950-779481189-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2124696679-2527748950-779481189-1002 - Limited - Enabled)
Libor (S-1-5-21-2124696679-2527748950-779481189-1000 - Administrator - Enabled) => C:\Users\Libor

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2124696679-2527748950-779481189-1000\...\uTorrent) (Version: 3.5.4.44520 - BitTorrent Inc.)
Aktualizace NVIDIA 25.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 25.0.0.0 - NVIDIA Corporation) Hidden
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 382.53 - NVIDIA Corporation) Hidden
Apple Mobile Device Support (HKLM\...\{A05FDFEC-4377-49E0-82CB-B6D1386E89DA}) (Version: 11.3.0.9 - Apple Inc.)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.6.3.0 - Asmedia Technology)
ASUS Xonar DX Audio Driver (HKLM\...\C-Media Oxygen HD Audio Driver) (Version: - )
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.8.2356 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 70.0.917.102 - AVAST Software)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.136.333 - AVAST Software) Hidden
BitTorrent (HKU\S-1-5-21-2124696679-2527748950-779481189-1000\...\BitTorrent) (Version: 7.10.4.44521 - BitTorrent Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.47 - Piriform)
CDisplayEx 1.10.33 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.)
CL-Eye Driver (HKLM-x32\...\CL-Eye Driver) (Version: 5.3.0.0341 - Code Laboratories, Inc.)
CPUID CPU-Z 1.79.1 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) <==== ATTENTION
Dell Display Manager (HKLM-x32\...\{AC50C05D-9D57-40F5-B2EF-AC402F14312B}_is1) (Version: - EnTech Taiwan)
foobar2000 v1.3.16 (HKLM-x32\...\foobar2000) (Version: 1.3.16 - Peter Pawlowski)
FormatFactory 4.4.1.0 (HKLM-x32\...\FormatFactory) (Version: 4.4.1.0 - Free Time)
FVD Downloader Module (HKLM-x32\...\{A3F74A3C-6824-4878-AB46-21280389D09F}) (Version: 1.0.8 - Nimbus)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.28 - Irfan Skiljan)
iTunes (HKLM\...\{565C813A-F1E1-4A1B-91D8-B2112D0D5518}) (Version: 12.7.4.76 - Apple Inc.)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
MB-Ruler (HKLM-x32\...\{7363206E-C7BD-45CD-89A0-792B28409811}_is1) (Version: 5.3 - Markus Bader)
Messenger for Desktop (HKU\S-1-5-21-2124696679-2527748950-779481189-1000\...\messengerfordesktop) (Version: 2.0.9 - MessengerForDesktop.com)
Microsoft .NET Framework 4.7 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 64.0 (x64 cs) (HKLM\...\Mozilla Firefox 64.0 (x64 cs)) (Version: 64.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0 - Mozilla)
Mozilla Thunderbird 60.3.3 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 60.3.3 (x86 cs)) (Version: 60.3.3 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 382.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.53 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.3 (HKLM-x32\...\{7308600A-5231-459C-A3E2-A637F842CACA}) (Version: 4.13.9783 - Apache Software Foundation)
OSCAR Editor (HKLM-x32\...\{ED21F22F-EF3A-446D-B4BB-AE92D916B7DA}) (Version: 12.08.0002 - A4TECH) Hidden
Ovládací panel NVIDIA 382.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 382.53 - NVIDIA Corporation) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{543F829B-4591-4B2F-AF63-6E6E6AE59EB2}) (Version: 6.4 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{0ECA3BB5-4410-414B-B226-241FF1C12CD0}) (Version: 6.4 - Apple Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.41.216.2011 - Realtek)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
Syncios 6.5.3 (HKLM-x32\...\Syncios) (Version: 6.5.3 - Anvsoft)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
War Thunder Launcher 1.0.3.69 (HKU\S-1-5-21-2124696679-2527748950-779481189-1000\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
X7 Oscar Editor (HKLM-x32\...\InstallShield_{ED21F22F-EF3A-446D-B4BB-AE92D916B7DA}) (Version: 12.08.0002 - A4TECH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-22] (AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-22] (AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-22] (AVAST Software)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-06-08] (NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-22] (AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {218980BC-4186-48E7-A568-1B78303264C2} - System32\Tasks\{7E49FD1E-C496-4E67-B2E3-DDAF1C4D2556} => C:\Windows\system32\pcalua.exe -a C:\Users\Libor\AppData\Local\Temp\jre-8u191-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATTENTION
Task: {24803DB4-BC29-41F8-8BC5-4859455095DF} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-06-08] (NVIDIA Corporation)
Task: {266E890E-2BC1-4A01-8DA2-277A68E37C59} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-06-08] (NVIDIA Corporation)
Task: {33182588-CCEF-43E1-BFDC-9F3DBAA56655} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-08] (NVIDIA Corporation)
Task: {33EFFCA1-5F64-432F-8BBF-9D33E6D59362} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-05] (AVAST Software)
Task: {33FA70F5-A4D5-4BFF-A634-878863069219} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2124696679-2527748950-779481189-1000
Task: {3BAC3717-6D48-409B-B5EE-24CB32184BBD} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-06-08] (NVIDIA Corporation)
Task: {513914BF-925C-4E46-8347-83440C236CD8} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-05] (AVAST Software)
Task: {54FA6B82-B3EC-4B3A-9EDF-E03ED075AC6A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-10-28] (AVAST Software)
Task: {683DEEC0-7B02-460D-AE8E-68D3A86EF0F2} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-09-19] (Piriform Ltd)
Task: {B0BB068B-2CDF-47B8-AA29-8E7364D33A69} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-09-19] (Piriform Ltd)
Task: {C4EDCD48-4414-41A3-BB88-48F47F0DEE2B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-06-08] (NVIDIA Corporation)
Task: {CC04D700-6FDA-4821-80E1-CEECA41DD576} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-08] (NVIDIA Corporation)
Task: {E914B6AF-5E39-4FF1-9967-A03FFBCCCA33} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-08] (NVIDIA Corporation)
Task: {F9E0C9F3-ACBE-4A86-ADD5-309D76E8CEDB} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-08] (NVIDIA Corporation)
Task: {FB843286-8FB7-4D6E-BCA0-A42006B6CBEC} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-11-22] (AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2017-06-14 22:23 - 2012-09-18 14:27 - 000192512 _____ () C:\Windows\System32\zlhp1020.dll
2017-06-14 22:23 - 2012-09-18 14:27 - 000065024 _____ () C:\Windows\system32\spool\PRTPROCS\x64\pphp1020.dll
2018-03-16 14:19 - 2018-03-16 14:19 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-11-30 18:54 - 2017-11-30 18:54 - 000088888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-06-14 22:35 - 2008-07-11 14:04 - 000200704 ____N () C:\Windows\SysWOW64\HsMgr.exe
2017-06-14 22:35 - 2008-07-11 14:03 - 000282112 ____N () C:\Windows\system\HsMgr64.exe
2018-11-22 02:14 - 2018-11-22 02:14 - 000728792 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
2012-08-17 10:37 - 2012-08-17 10:37 - 003345408 _____ () C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe
2018-11-22 02:13 - 2018-11-22 02:13 - 000919256 _____ () C:\Program Files\AVAST Software\Avast\anen.dll
2018-11-22 02:14 - 2018-11-22 02:14 - 000596696 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-12-22 14:07 - 2018-12-22 14:07 - 005734544 _____ () C:\Program Files\AVAST Software\Avast\defs\18122202\algo.dll
2018-11-22 02:13 - 2018-11-22 02:13 - 000496344 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-11-22 02:13 - 2018-11-22 02:13 - 000150744 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-11-22 02:13 - 2018-11-22 02:13 - 001112280 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-03-15 18:37 - 2018-03-15 18:37 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2010-12-02 16:56 - 2010-12-02 16:56 - 000815104 _____ () C:\Program Files (x86)\OSCAR Editor X7\Data\X7\Forms\OSD_Text\OSD_Text.dll
2011-01-09 19:45 - 2011-01-09 19:45 - 000088064 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_MouseDeviceManager.dll
2012-06-14 14:59 - 2012-06-14 14:59 - 002414080 _____ () C:\Program Files (x86)\OSCAR Editor X7\Data\X7\Forms\ScreenCapture\ScreenCapture.dll
2012-05-17 10:17 - 2012-05-17 10:17 - 001000448 _____ () C:\Program Files (x86)\OSCAR Editor X7\Data\X7\Forms\TrayIconWebAdvertisement\TrayIconWebAdvertisement.dll
2010-09-20 13:18 - 2010-09-20 13:18 - 000085504 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_ZoomControl.dll
2010-09-20 13:18 - 2010-09-20 13:18 - 000054272 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_ScrollbarControl.dll
2011-04-12 14:14 - 2011-04-12 14:14 - 000063488 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_AnalyzeGesturesInRight.dll
2010-11-01 19:16 - 2010-11-01 19:16 - 000062976 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_AnalyzeGesturesInOne.dll
2012-04-27 10:40 - 2012-04-27 10:40 - 000118272 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_Wheel4D.dll
2017-06-14 22:35 - 2011-04-19 13:56 - 000143360 ____N () C:\Program Files\ASUS Xonar DX Audio\Customapp\VmixP8.dll
2017-06-17 19:55 - 2017-06-17 19:55 - 000048640 _____ () C:\Program Files (x86)\IrfanView\Languages\CZECH1.DLL

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2124696679-2527748950-779481189-1000\...\localhost -> localhost

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2018-12-17 14:58 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2124696679-2527748950-779481189-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Libor\AppData\Roaming\IrfanView\IrfanView_Wallpaper.bmp
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\startupreg: iTunesHelper => "D:\Programy\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Syncios device service => C:\Program Files (x86)\Anvsoft\Syncios\SynciosDeviceService.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{F31D8144-9A16-4FE1-B6CB-ACDCD182CEF4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{DFA0CE4C-6D1F-4E8E-AC1D-5CEDF661CFF7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{D3489B79-63D4-409B-A649-6B49A90727F8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{3CD4F645-7EA3-4E89-9DAA-B6B9119864CD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{7984A514-B143-4E45-B967-78D0A9D34B76}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{DB9B12CE-C0C8-452F-A0B8-005C6C492785}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4909BF07-6FFB-4094-B021-2EFFA73D95B8}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1516AC2E-8848-4C82-8F2C-2C30BA06DA4D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{7BAA327B-C1AC-47AD-9025-599CBA94F32B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{034B6284-EEF2-4BD3-AB34-05F22128DA6E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{67B46CA1-6C5A-4AC3-ABA1-9E2D2F997DBB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{276705C2-8B76-45E2-BF70-84E6BECD9168}] => (Allow) D:\Programy\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{AD226E70-AA07-45AA-9F5D-F8A26F1CE0D3}C:\hry\warthunder\launcher.exe] => (Allow) C:\hry\warthunder\launcher.exe
FirewallRules: [UDP Query User{584FE971-9B8A-4499-8AE5-3ECF873952D8}C:\hry\warthunder\launcher.exe] => (Allow) C:\hry\warthunder\launcher.exe
FirewallRules: [{2DF82E10-29F5-4199-8ADF-53DA6C9E4199}] => (Block) C:\hry\warthunder\launcher.exe
FirewallRules: [{A2F896F5-C9AC-44B3-ADC4-B598FBD74903}] => (Block) C:\hry\warthunder\launcher.exe
FirewallRules: [TCP Query User{AA1B759C-D073-4F76-8A5D-C9E776D5D553}C:\hry\warthunder\win64\aces.exe] => (Allow) C:\hry\warthunder\win64\aces.exe
FirewallRules: [UDP Query User{7585EDE4-349B-4F67-B772-B670BEC0BBF4}C:\hry\warthunder\win64\aces.exe] => (Allow) C:\hry\warthunder\win64\aces.exe
FirewallRules: [{A2DCE992-18FA-4E89-9D55-9CAB5F642DF2}] => (Block) C:\hry\warthunder\win64\aces.exe
FirewallRules: [{C9F71EEC-B41C-4B30-B984-A7BCE5CE7D90}] => (Block) C:\hry\warthunder\win64\aces.exe
FirewallRules: [{71759282-D9AF-4C25-AA24-B360433F2100}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [{04E42047-755C-47F5-94E4-0D6C23DF7AF4}] => (Allow) D:\Programy\iTunes\iTunes.exe
FirewallRules: [{71D28E78-165E-4851-8A5D-EECD4ED9E028}] => (Allow) C:\Users\Libor\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BB972472-6C46-4970-835A-E9288E261DE6}] => (Allow) C:\Users\Libor\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F0C0D93E-2F9D-42D2-B419-4B11BFB3ADE7}] => (Allow) C:\Users\Libor\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{41893D84-2593-4DC9-A56B-4307D61258C8}] => (Allow) C:\Users\Libor\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{672F54A0-A7A9-4DD2-B2AC-61D04B2B8485}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{9893CD7F-0A98-40DF-9749-5035E4353AF8}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{44D3F26D-486F-41AD-9CBA-B091F64977FE}] => (Allow) C:\Program Files (x86)\Anvsoft\Syncios\pdt_syncios.exe
FirewallRules: [{4F2C503C-01D7-4D02-B819-56CF9317E943}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [{478C4D3B-2D8C-4E15-8ECA-FF75D2BE85A1}] => (Allow) C:\Users\Libor\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{71177191-F8CC-4907-B443-B8CE6C53781F}] => (Allow) C:\Users\Libor\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{BA4344DA-E57F-4233-BD2D-67D0374C97BD}] => (Allow) D:\Programy\iTunes\iTunes.exe
FirewallRules: [{74B94273-BAB6-45B3-BEC6-7ACDA7BB068B}] => (Allow) D:\Programy\iTunes\iTunes.exe
FirewallRules: [{50A8D45B-8C3F-41B4-98D3-8569029782CD}] => (Allow) D:\Programy\Skype\Phone\Skype.exe
FirewallRules: [{3E244952-C193-48DD-AE4B-A740A11F6946}] => (Allow) D:\Programy\Skype\Phone\Skype.exe
FirewallRules: [{8194EFB0-DD70-41D8-8B40-AC6A10C58212}] => (Allow) C:\Program Files (x86)\Anvsoft\Syncios\pdt_syncios.exe
FirewallRules: [{4B3CD0DF-8EEE-4E8C-959B-03B84A29448B}] => (Allow) C:\Program Files (x86)\Anvsoft\Syncios\pdt_syncios.exe
FirewallRules: [{B4814B6A-B6A0-45BC-8BEA-D4B814148CF1}] => (Allow) C:\Users\Libor\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{AB294414-1807-40E6-8479-B42CF0F844A5}] => (Allow) C:\Users\Libor\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{C7DC5C19-0C13-4719-874F-1CC40AD1F58F}C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe
FirewallRules: [UDP Query User{9A1B51EB-7700-4726-BBDA-BDEF2D0B3969}C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe
FirewallRules: [{FE55A5EC-E1E3-47D3-B77C-D5E38FBC8515}] => (Block) C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe
FirewallRules: [{3C65674B-566E-473E-81CF-277F1107A046}] => (Block) C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe
FirewallRules: [{7EC74F16-E66E-45D2-88B0-4BD8D326F821}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{763E7161-A64C-4157-831D-C354075EFA5C}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{0F0F09B5-425E-4508-9F64-DD2D0A603B5A}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
FirewallRules: [{9286566F-22E4-4696-9DA6-73D70623B3DF}] => (Allow) D:\Programy\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{D09BC034-58B2-4769-9530-184CB9AE6E4F}] => (Allow) D:\Programy\FormatFactory\FormatFactory.exe

==================== Restore Points =========================

20-12-2018 01:35:36 Naplánovaný kontrolní bod
20-12-2018 17:16:44 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/22/2018 06:17:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/22/2018 06:12:35 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/22/2018 02:07:16 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/22/2018 12:57:32 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/22/2018 12:48:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/22/2018 11:27:50 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/21/2018 10:50:06 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/20/2018 05:49:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.


System errors:
=============
Error: (12/22/2018 06:16:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Windows Media Player Network Sharing neuspěla při spuštění v důsledku následující chyby:
Služba nebyla zahájena, protože se nepodařilo přihlásit.

Error: (12/22/2018 06:16:58 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba WMPNetworkSvc se nemohla přihlásit jako NT AUTHORITY\NetworkService s aktuálně konfigurovaným heslem z důvodu následující chyby:
Požadavek není podporován.


Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).

Error: (12/22/2018 06:16:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Ochrana softwaru byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (12/22/2018 06:16:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (12/22/2018 06:16:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Apple Mobile Device Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (12/22/2018 06:16:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Telemetry Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.

Error: (12/22/2018 06:16:28 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Bonjour Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/22/2018 06:16:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Display Container LS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-2400 CPU @ 3.10GHz
Percentage of memory in use: 35%
Total physical RAM: 8173.24 MB
Available physical RAM: 5252.25 MB
Total Virtual: 16344.62 MB
Available Virtual: 12435.4 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:100 GB) (Free:15.97 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Disk) (Fixed) (Total:831.51 GB) (Free:73.72 GB) NTFS


==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 0A0DED59)
Partition 1: (Active) - (Size=100 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=831.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Kontrola logu...Děkuji
PříspěvekNapsal: 22 pro 2018 23:22 
Offline
Rádce
Rádce

Registrován: 30 pro 2013 22:29
Příspěvky: 2852
Bydliště: Bratislava
:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:
    Kód:
    Start
    CloseProcesses:
    CreateRestorePoint:

    PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
    File: C:\Users\Libor\AppData\Local\Temp\jre-8u191-windows-au.exe
    Folder: C:\Program Files\CPUID
    Folder: C:\Windows\Minidump
    ExportKey: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\CPUID CPU-Z_is1

    FF NewTab: Mozilla\Firefox\Profiles\x9z5u258.default -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10419__180929
    FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
    2018-12-22 14:44 - 2018-12-22 14:44 - 000000000 ____D C:\rsit
    2018-12-22 14:44 - 2018-12-22 14:44 - 000000000 ____D C:\Program Files\trend micro
    2018-12-22 14:42 - 2018-12-22 14:43 - 001222144 _____ C:\Users\Libor\Desktop\RSITx64.exe
    Task: {218980BC-4186-48E7-A568-1B78303264C2} - System32\Tasks\{7E49FD1E-C496-4E67-B2E3-DDAF1C4D2556} => C:\Windows\system32\pcalua.exe -a C:\Users\Libor\AppData\Local\Temp\jre-8u191-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATTENTION
    Task: {33FA70F5-A4D5-4BFF-A634-878863069219} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2124696679-2527748950-779481189-1000

    Hosts:
    EmptyTemp:
    End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj

_________________
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

V pripade spokojnosti je mozne podporit forum. Dakujeme!


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Kontrola logu...Děkuji
PříspěvekNapsal: 22 pro 2018 23:37 
Offline
Návštěvník
Návštěvník

Registrován: 23 pro 2009 21:08
Příspěvky: 33
Fix result of Farbar Recovery Scan Tool (x64) Version: 20.12.2018
Ran by Libor (22-12-2018 23:30:17) Run:1
Running from C:\Users\Libor\Desktop
Loaded Profiles: Libor (Available Profiles: Libor)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
File: C:\Users\Libor\AppData\Local\Temp\jre-8u191-windows-au.exe
Folder: C:\Program Files\CPUID
Folder: C:\Windows\Minidump
ExportKey: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\CPUID CPU-Z_is1

FF NewTab: Mozilla\Firefox\Profiles\x9z5u258.default -> hxxp://securedsearch.lavasoft.com/?pr=v ... 19__180929
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
2018-12-22 14:44 - 2018-12-22 14:44 - 000000000 ____D C:\rsit
2018-12-22 14:44 - 2018-12-22 14:44 - 000000000 ____D C:\Program Files\trend micro
2018-12-22 14:42 - 2018-12-22 14:43 - 001222144 _____ C:\Users\Libor\Desktop\RSITx64.exe
Task: {218980BC-4186-48E7-A568-1B78303264C2} - System32\Tasks\{7E49FD1E-C496-4E67-B2E3-DDAF1C4D2556} => C:\Windows\system32\pcalua.exe -a C:\Users\Libor\AppData\Local\Temp\jre-8u191-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATTENTION
Task: {33FA70F5-A4D5-4BFF-A634-878863069219} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2124696679-2527748950-779481189-1000

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========



Count : 188
Average :
Sum : 907682782
Maximum :
Minimum :
Property : Length


========= End of Powershell: =========


========================= File: C:\Users\Libor\AppData\Local\Temp\jre-8u191-windows-au.exe ========================

"C:\Users\Libor\AppData\Local\Temp\jre-8u191-windows-au.exe" => not found
====== End of File: ======


========================= Folder: C:\Program Files\CPUID ========================

not found.

====== End of Folder: ======


========================= Folder: C:\Windows\Minidump ========================


====== End of Folder: ======

================== ExportKey: ===================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\CPUID CPU-Z_is1]
"Inno Setup: Setup Version"="5.5.9 (a)"
"Inno Setup: App Path"="D:\Programy\CPU-Z"
"InstallLocation"="D:\Programy\CPU-Z\"
"Inno Setup: Icon Group"="CPU-Z"
"Inno Setup: User"="Libor"
"Inno Setup: Selected Tasks"="desktopicon"
"Inno Setup: Deselected Tasks"=""
"Inno Setup: Language"="default"
"DisplayName"="CPUID CPU-Z 1.79.1"
"DisplayIcon"="D:\Programy\CPU-Z\cpuz.exe"
"UninstallString"=""D:\Programy\CPU-Z\unins000.exe""
"QuietUninstallString"=""D:\Programy\CPU-Z\unins000.exe" /SILENT"
"NoModify"="1"
"NoRepair"="1"
"InstallDate"="20170630"
"EstimatedSize"="4075"

=== End of ExportKey ===
"Firefox newtab" => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
C:\rsit => moved successfully
C:\Program Files\trend micro => moved successfully
C:\Users\Libor\Desktop\RSITx64.exe => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{218980BC-4186-48E7-A568-1B78303264C2}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{218980BC-4186-48E7-A568-1B78303264C2}" => removed successfully
C:\Windows\System32\Tasks\{7E49FD1E-C496-4E67-B2E3-DDAF1C4D2556} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7E49FD1E-C496-4E67-B2E3-DDAF1C4D2556}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{33FA70F5-A4D5-4BFF-A634-878863069219}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{33FA70F5-A4D5-4BFF-A634-878863069219}" => removed successfully
C:\Windows\System32\Tasks\Games\UpdateCheck_S-1-5-21-2124696679-2527748950-779481189-1000 => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Games\UpdateCheck_S-1-5-21-2124696679-2527748950-779481189-1000" => removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 16994227 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 84 B
Edge => 0 B
Chrome => 0 B
Firefox => 507013519 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 58558540 B
systemprofile32 => 66228 B
LocalService => 66228 B
NetworkService => 66228 B
Libor => 30331058 B

RecycleBin => 26961000 B
EmptyTemp: => 618.4 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 23:31:43 ====


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Kontrola logu...Děkuji
PříspěvekNapsal: 23 pro 2018 00:38 
Offline
Rádce
Rádce

Registrován: 30 pro 2013 22:29
Příspěvky: 2852
Bydliště: Bratislava
:arrow: Ako to vyzera s PC? Su nejake problemy?

:arrow: Plocha ma cca 1 GB. Presun vsetky subory a zlozky z plochy do dokumentov a na ploche nechaj iba odkazy/zastupcov. Prilis velka velkost plochy moze sposobit spomalenie systemu.

_________________
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

V pripade spokojnosti je mozne podporit forum. Dakujeme!


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Kontrola logu...Děkuji
PříspěvekNapsal: 23 pro 2018 01:29 
Offline
Návštěvník
Návštěvník

Registrován: 23 pro 2009 21:08
Příspěvky: 33
Myslím že dobrý. Soubory z plochy přesunuty. :thumbsup:


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Kontrola logu...Děkuji
PříspěvekNapsal: 23 pro 2018 03:04 
Offline
Rádce
Rádce

Registrován: 30 pro 2013 22:29
Příspěvky: 2852
Bydliště: Bratislava
:arrow: Tak este upraceme po pouzitych nastrojoch:

_________________
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

V pripade spokojnosti je mozne podporit forum. Dakujeme!


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Kontrola logu...Děkuji
PříspěvekNapsal: 23 pro 2018 11:07 
Offline
Návštěvník
Návštěvník

Registrován: 23 pro 2009 21:08
Příspěvky: 33
Tak uklizeno. Díky!


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Kontrola logu...Děkuji
PříspěvekNapsal: 23 pro 2018 16:28 
Offline
Rádce
Rádce

Registrován: 30 pro 2013 22:29
Příspěvky: 2852
Bydliště: Bratislava
Nie je zaco, rad som pomohol :)

_________________
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

V pripade spokojnosti je mozne podporit forum. Dakujeme!


Nahoru
 Profil  
 
Zobrazit příspěvky za předchozí:  Seřadit podle  
Odeslat nové téma Toto téma je zamknuté. Nemůžete posílat nové příspěvky ani odpovídat na starší.  [ Příspěvků: 13 ] 

Všechny časy jsou v UTC + 1 hodina


Kdo je online

Uživatelé procházející toto fórum: Žádní registrovaní uživatelé


Nemůžete zakládat nová témata v tomto fóru
Nemůžete odpovídat v tomto fóru
Nemůžete upravovat své příspěvky v tomto fóru
Nemůžete mazat své příspěvky v tomto fóru
Nemůžete přikládat soubory v tomto fóru

Hledat:
Přejít na:  
Založeno na phpBB® Forum Software © phpBB Group
Český překlad – phpBB.cz
Přispějete na provoz fóra?