nechtěné reklamy při kliknutí vewebovém prohlížeči

[altrok]

fixlist.txt i samotny FRST musi byt ve stejne slozce (pro jednoduchost vsude uvadime plochu).

[Blondarson]

blick! měl jsem FRST uložený ve Stažených souborech.

Zde je potřebné:

Fix result of Farbar Recovery Scan Tool (x64) Version:27-12-2015
Ran by uzivatel (2015-12-28 08:08:03) Run:1
Running from C:\Users\uzivatel\Desktop
Loaded Profiles: uzivatel & DefaultAppPool (Available Profiles: uzivatel & Administrator & DefaultAppPool)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [ApnTBMon] => "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
C:\Program Files (x86)\AskPartnerNetwork
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2014-07-01] (Google Inc.)
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\uzivatel\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\uzivatel\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001 -> {13345C59-E136-45E8-938C-4FC0AF18BC1D} URL = hxxp://searchsimple-a.akamaihd.net/?affID=mt-dq&q={searchTerms}&r=609
BHO: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\PROGRA~2\SPYWAR~1\STINTE~2.DLL => No File
BHO-x32: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\PROGRA~2\SPYWAR~1\STINTE~1.DLL => No File
CHR HomePage: Profile 1 -> search.ask.com/?gct=hp
CHR DefaultSearchURL: Profile 1 -> hxxp://www.search.ask.com/web?q={searchTerms}
CHR DefaultSearchKeyword: Profile 1 -> search.ask.com
CHR DefaultSuggestURL: Profile 1 -> hxxp://ssmsp.ask.com/query?sstype=prefix&li=ff&q={searchTerms}
CHR Extension: (Pine Tree) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlihcdefnjnagpemfefaegdfdipiamnf [2015-10-11] [UpdateUrl: hxxp://wwwpinetreeinfoc-a.akamaihd.net/update/chrome] <==== ATTENTION
CHR Extension: (Shopping App by Ask) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aaaaahaeginbdcckocjkhbciadcafnep [2015-12-27]
CHR Extension: (Ask Search) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aaaaahlfahldnilidgnlikdckbfehhca [2015-11-17]
CHR Extension: (Ask Search) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf [2015-11-21]
CHR HKLM\...\Chrome\Extension: [aaaaahaeginbdcckocjkhbciadcafnep] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaahaeginbdcckocjkhbciadcafnep.crx <not found>
CHR HKLM\...\Chrome\Extension: [aaaaahlfahldnilidgnlikdckbfehhca] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaahlfahldnilidgnlikdckbfehhca.crx <not found>
CHR HKLM\...\Chrome\Extension: [aaaaaiabcopkplhgaedhbloeejhhankf] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaaiabcopkplhgaedhbloeejhhankf.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [aaaaahaeginbdcckocjkhbciadcafnep] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaahaeginbdcckocjkhbciadcafnep.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [aaaaahlfahldnilidgnlikdckbfehhca] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaahlfahldnilidgnlikdckbfehhca.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [aaaaaiabcopkplhgaedhbloeejhhankf] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaaiabcopkplhgaedhbloeejhhankf.crx <not found>
C:\ProgramData\AskPartnerNetwork
S2 ST2012_Svc; "C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe" [X]
U3 idsvc; no ImagePath
S1 {04f4591f-794f-4cd3-bd44-605ca9a098e2}Gw64; system32\drivers\{04f4591f-794f-4cd3-bd44-605ca9a098e2}Gw64.sys [X]
S1 {0f8b6559-f83b-4fe1-988e-fd7ce3f6fd44}Gw64; system32\drivers\{0f8b6559-f83b-4fe1-988e-fd7ce3f6fd44}Gw64.sys [X]
S1 {126336c7-4a78-4328-80f9-e30008142a02}Gw64; system32\drivers\{126336c7-4a78-4328-80f9-e30008142a02}Gw64.sys [X]
S1 {17cd0eb8-7649-4b79-8f2f-e32643468fda}Gw64; system32\drivers\{17cd0eb8-7649-4b79-8f2f-e32643468fda}Gw64.sys [X]
S1 {27134153-7909-46db-a364-f96d5c07d5e7}Gw64; system32\drivers\{27134153-7909-46db-a364-f96d5c07d5e7}Gw64.sys [X]
S1 {2911d039-4963-4ee7-b449-26ccdcdd182e}Gw64; system32\drivers\{2911d039-4963-4ee7-b449-26ccdcdd182e}Gw64.sys [X]
S1 {409b5616-88ab-4383-9b1b-91844015a4ae}Gw64; system32\drivers\{409b5616-88ab-4383-9b1b-91844015a4ae}Gw64.sys [X]
S1 {40a32ddf-7a0c-4c07-9d3b-239f5a0d115d}Gw64; system32\drivers\{40a32ddf-7a0c-4c07-9d3b-239f5a0d115d}Gw64.sys [X]
S1 {47ed07d3-68fa-4ddf-ab7f-f49b3b3825a3}Gw64; system32\drivers\{47ed07d3-68fa-4ddf-ab7f-f49b3b3825a3}Gw64.sys [X]
S1 {499ce51b-789d-4cf4-98f8-47f5524ee5d6}Gw64; system32\drivers\{499ce51b-789d-4cf4-98f8-47f5524ee5d6}Gw64.sys [X]
S1 {4f6a301e-2e78-4d46-a7d6-fd03ccefb66c}Gw64; system32\drivers\{4f6a301e-2e78-4d46-a7d6-fd03ccefb66c}Gw64.sys [X]
S1 {5a687576-2779-4df9-b22f-2700edeeda7a}Gw64; system32\drivers\{5a687576-2779-4df9-b22f-2700edeeda7a}Gw64.sys [X]
S1 {6160b90c-07fe-4175-aa9e-3e6573704de9}Gw64; system32\drivers\{6160b90c-07fe-4175-aa9e-3e6573704de9}Gw64.sys [X]
S1 {69d0fe69-abf1-49dc-94c8-927dc0b1e701}Gw64; system32\drivers\{69d0fe69-abf1-49dc-94c8-927dc0b1e701}Gw64.sys [X]
S1 {6a38cdc0-7a72-4785-b3ee-5db6ca7a7de5}Gw64; system32\drivers\{6a38cdc0-7a72-4785-b3ee-5db6ca7a7de5}Gw64.sys [X]
S1 {77dbb931-8f1c-4439-b524-1250dcb8f03f}Gw64; system32\drivers\{77dbb931-8f1c-4439-b524-1250dcb8f03f}Gw64.sys [X]
S1 {7a2924ed-67e5-4ad2-9143-610c2c792c1e}Gw64; system32\drivers\{7a2924ed-67e5-4ad2-9143-610c2c792c1e}Gw64.sys [X]
S1 {814b70f2-89de-4982-b4fb-8ca0819c757d}Gw64; system32\drivers\{814b70f2-89de-4982-b4fb-8ca0819c757d}Gw64.sys [X]
S1 {913a6d0f-a9c1-44ed-b0d6-773e3e22eafd}Gw64; system32\drivers\{913a6d0f-a9c1-44ed-b0d6-773e3e22eafd}Gw64.sys [X]
S1 {95d7b1b3-fd09-476b-973a-05652f2a62d9}Gw64; system32\drivers\{95d7b1b3-fd09-476b-973a-05652f2a62d9}Gw64.sys [X]
S1 {9ffa1362-5a89-4483-ab53-e729971bb7cf}Gw64; system32\drivers\{9ffa1362-5a89-4483-ab53-e729971bb7cf}Gw64.sys [X]
S1 {a5b4a5b4-74b5-494b-a6fd-2cfe081bbca9}Gw64; system32\drivers\{a5b4a5b4-74b5-494b-a6fd-2cfe081bbca9}Gw64.sys [X]
S1 {b0da6485-dd10-4f1a-8ab2-3ccb6b34e4ef}Gw64; system32\drivers\{b0da6485-dd10-4f1a-8ab2-3ccb6b34e4ef}Gw64.sys [X]
S1 {b9973bdd-ba10-4e1a-93ec-46821cb83585}Gw64; system32\drivers\{b9973bdd-ba10-4e1a-93ec-46821cb83585}Gw64.sys [X]
S1 {bed6a9a5-c682-4267-a965-f3e7a4ec3b06}Gw64; system32\drivers\{bed6a9a5-c682-4267-a965-f3e7a4ec3b06}Gw64.sys [X]
S1 {c7908ed8-e375-4125-97a1-cce7ce60fe1a}Gw64; system32\drivers\{c7908ed8-e375-4125-97a1-cce7ce60fe1a}Gw64.sys [X]
S1 {dd2c6dba-8747-4843-ba36-0ec5fda3cfaf}Gw64; system32\drivers\{dd2c6dba-8747-4843-ba36-0ec5fda3cfaf}Gw64.sys [X]
S1 {e8417e91-8e96-4433-ba1a-b629249540f5}Gw64; system32\drivers\{e8417e91-8e96-4433-ba1a-b629249540f5}Gw64.sys [X]
S1 {f9345fd3-b976-4de7-89b6-b3ba7c6aaf5b}Gw64; system32\drivers\{f9345fd3-b976-4de7-89b6-b3ba7c6aaf5b}Gw64.sys [X]
S1 {fcb340ad-66dd-4ad6-b5a6-cf198aae06ea}Gw64; system32\drivers\{fcb340ad-66dd-4ad6-b5a6-cf198aae06ea}Gw64.sys [X]
2015-12-27 23:31 - 2015-12-27 23:31 - 00014031 _____ C:\Users\uzivatel\Desktop\AdwCleaner[C1].txt
2015-12-27 23:13 - 2015-12-27 23:20 - 00000000 ____D C:\AdwCleaner
2015-12-27 23:11 - 2015-12-27 23:12 - 01743360 _____ C:\Users\uzivatel\Downloads\adwcleaner_5.026.exe
2015-12-27 20:09 - 2015-12-27 20:09 - 00045578 _____ C:\Users\uzivatel\Desktop\Addition kod.txt
2015-12-27 20:08 - 2015-12-27 20:08 - 00107775 _____ C:\Users\uzivatel\Desktop\FRST.txt
2015-12-27 19:52 - 2015-12-27 19:53 - 00045578 _____ C:\Users\uzivatel\Downloads\Addition.txt
2015-12-27 19:50 - 2015-12-27 23:45 - 00025656 _____ C:\Users\uzivatel\Downloads\FRST.txt
2015-12-27 19:48 - 2015-12-27 19:48 - 00029696 _____ C:\Users\uzivatel\AppData\Local\MSGBOX.EXE
2015-12-27 19:48 - 2015-12-27 19:48 - 00015327 _____ C:\Users\uzivatel\Desktop\LM.bat
Task: {58ACA16D-A874-443E-ABE5-1A6A4125A794} - System32\Tasks\{97D53701-DED2-4275-859A-75D70B50CEC1} => pcalua.exe -a D:\setup.exe -d D:\
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce => value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ApnTBMon => value removed successfully
"C:\Program Files (x86)\AskPartnerNetwork" => not found.
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\Software\Microsoft\Windows\CurrentVersion\Run\\swg => value not found.
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate => value not found.
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop => value not found.
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
"HKLM\SOFTWARE\Policies\Google" => key removed successfully
"HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{13345C59-E136-45E8-938C-4FC0AF18BC1D}" => key removed successfully
HKCR\CLSID\{13345C59-E136-45E8-938C-4FC0AF18BC1D} => key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{82A76710-4F98-4957-92BE-99648A4E2475}" => key removed successfully
"HKCR\CLSID\{82A76710-4F98-4957-92BE-99648A4E2475}" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{82A76710-4F98-4957-92BE-99648A4E2475}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{82A76710-4F98-4957-92BE-99648A4E2475}" => key removed successfully
Chrome HomePage => removed successfully
Chrome DefaultSearchURL => removed successfully
Chrome DefaultSearchKeyword => removed successfully
Chrome DefaultSuggestURL => removed successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlihcdefnjnagpemfefaegdfdipiamnf <==== ATTENTION => not found
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aaaaahaeginbdcckocjkhbciadcafnep => moved successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aaaaahlfahldnilidgnlikdckbfehhca => moved successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf => moved successfully
"HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaahaeginbdcckocjkhbciadcafnep" => key removed successfully
"HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaahlfahldnilidgnlikdckbfehhca" => key removed successfully
"HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\aaaaahaeginbdcckocjkhbciadcafnep" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\aaaaahlfahldnilidgnlikdckbfehhca" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf" => key removed successfully
"C:\ProgramData\AskPartnerNetwork" => not found.
ST2012_Svc => service removed successfully
idsvc => service removed successfully
{04f4591f-794f-4cd3-bd44-605ca9a098e2}Gw64 => service removed successfully
{0f8b6559-f83b-4fe1-988e-fd7ce3f6fd44}Gw64 => service removed successfully
{126336c7-4a78-4328-80f9-e30008142a02}Gw64 => service removed successfully
{17cd0eb8-7649-4b79-8f2f-e32643468fda}Gw64 => service removed successfully
{27134153-7909-46db-a364-f96d5c07d5e7}Gw64 => service removed successfully
{2911d039-4963-4ee7-b449-26ccdcdd182e}Gw64 => service removed successfully
{409b5616-88ab-4383-9b1b-91844015a4ae}Gw64 => service removed successfully
{40a32ddf-7a0c-4c07-9d3b-239f5a0d115d}Gw64 => service removed successfully
{47ed07d3-68fa-4ddf-ab7f-f49b3b3825a3}Gw64 => service removed successfully
{499ce51b-789d-4cf4-98f8-47f5524ee5d6}Gw64 => service removed successfully
{4f6a301e-2e78-4d46-a7d6-fd03ccefb66c}Gw64 => service removed successfully
{5a687576-2779-4df9-b22f-2700edeeda7a}Gw64 => service removed successfully
{6160b90c-07fe-4175-aa9e-3e6573704de9}Gw64 => service removed successfully
{69d0fe69-abf1-49dc-94c8-927dc0b1e701}Gw64 => service removed successfully
{6a38cdc0-7a72-4785-b3ee-5db6ca7a7de5}Gw64 => service removed successfully
{77dbb931-8f1c-4439-b524-1250dcb8f03f}Gw64 => service removed successfully
{7a2924ed-67e5-4ad2-9143-610c2c792c1e}Gw64 => service removed successfully
{814b70f2-89de-4982-b4fb-8ca0819c757d}Gw64 => service removed successfully
{913a6d0f-a9c1-44ed-b0d6-773e3e22eafd}Gw64 => service removed successfully
{95d7b1b3-fd09-476b-973a-05652f2a62d9}Gw64 => service removed successfully
{9ffa1362-5a89-4483-ab53-e729971bb7cf}Gw64 => service removed successfully
{a5b4a5b4-74b5-494b-a6fd-2cfe081bbca9}Gw64 => service removed successfully
{b0da6485-dd10-4f1a-8ab2-3ccb6b34e4ef}Gw64 => service removed successfully
{b9973bdd-ba10-4e1a-93ec-46821cb83585}Gw64 => service removed successfully
{bed6a9a5-c682-4267-a965-f3e7a4ec3b06}Gw64 => service removed successfully
{c7908ed8-e375-4125-97a1-cce7ce60fe1a}Gw64 => service removed successfully
{dd2c6dba-8747-4843-ba36-0ec5fda3cfaf}Gw64 => service removed successfully
{e8417e91-8e96-4433-ba1a-b629249540f5}Gw64 => service removed successfully
{f9345fd3-b976-4de7-89b6-b3ba7c6aaf5b}Gw64 => service removed successfully
{fcb340ad-66dd-4ad6-b5a6-cf198aae06ea}Gw64 => service removed successfully
C:\Users\uzivatel\Desktop\AdwCleaner[C1].txt => moved successfully
C:\AdwCleaner => moved successfully
C:\Users\uzivatel\Downloads\adwcleaner_5.026.exe => moved successfully
C:\Users\uzivatel\Desktop\Addition kod.txt => moved successfully
C:\Users\uzivatel\Desktop\FRST.txt => moved successfully
C:\Users\uzivatel\Downloads\Addition.txt => moved successfully
C:\Users\uzivatel\Downloads\FRST.txt => moved successfully
C:\Users\uzivatel\AppData\Local\MSGBOX.EXE => moved successfully
C:\Users\uzivatel\Desktop\LM.bat => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{58ACA16D-A874-443E-ABE5-1A6A4125A794}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{58ACA16D-A874-443E-ABE5-1A6A4125A794}" => key removed successfully
C:\WINDOWS\System32\Tasks\{97D53701-DED2-4275-859A-75D70B50CEC1} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{97D53701-DED2-4275-859A-75D70B50CEC1}" => key removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
EmptyTemp: => 753.5 MB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 08:09:59 ====

[altrok]

Dejte prosim nove logy FRST.txt a Addition.txt. Jak se chova pocitac? Pozorujete nejake problemy?

[Blondarson]

TĚCH REKLAM JSEM SE ZBAVIL. JEN KDYŽ SPUSTÍM MOZZILU TAK TAM NASKOČÍ JAKO ÚVODNÍ STRÁNKA REKLAMA TŘEBA NA WAR THUNDER APD. POČÍTAČ MAKÁ MNOHEM RYCHLEJI A CELKOVĚ JE LEPŠÍ.

[Blondarson]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:27-12-2015
Ran by uzivatel (administrator) on UZIVATE-3T5RH9M (28-12-2015 11:33:11)
Running from C:\Users\uzivatel\Desktop
Loaded Profiles: uzivatel (Available Profiles: uzivatel & Administrator & DefaultAppPool)
Platform: Windows 10 Pro Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.EXE
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
() C:\Program Files (x86)\WarThunder\aces.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2779024 2011-03-14] (CANON INC.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1282632 2013-07-23] (CANON INC.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2015-12-28] (AVAST Software)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [3013712 2015-12-14] (Valve Corporation)
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2015-12-19] (Electronic Arts)
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\Run: [GoogleChromeAutoLaunch_FA6F99A34873A093FA88EBF49A43251D] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [741704 2015-12-11] (Google Inc.)
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50749056 2015-12-08] (Skype Technologies S.A.)
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4566952 2014-06-24] (Safer-Networking Ltd.)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\uzivatel\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64\FileSyncShell64.dll [2015-12-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\uzivatel\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64\FileSyncShell64.dll [2015-12-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\uzivatel\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64\FileSyncShell64.dll [2015-12-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-12-28] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\uzivatel\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\FileSyncShell.dll [2015-12-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\uzivatel\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\FileSyncShell.dll [2015-12-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\uzivatel\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\FileSyncShell.dll [2015-12-13] (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{1892674f-8e87-4406-b5e3-7b4a1c8f3de9}: [DhcpNameServer] 192.168.99.251 192.168.99.243
Tcpip\..\Interfaces\{3ac208a5-0edb-4079-b53e-98b185f01385}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{a87ae84e-8b50-491f-8fdc-62cf94aa03bf}: [DhcpNameServer] 192.168.99.251 192.168.99.243

Internet Explorer:
==================
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130889328807330835&GUID=2E52DB38-611C-459A-BFF6-5A3D475378AE
HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.e-snet.cz
SearchScopes: HKLM -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001 -> DefaultScope {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001 -> {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001 -> {2A744E05-083F-4A30-A51C-9EFBC2D27142} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_20808
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-12-28] (AVAST Software)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-12-28] (AVAST Software)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)

FireFox:
========
FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll [2014-09-01] (EA Digital Illusions CE AB)
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2011-04-20] (CANON INC.)
FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll [2014-09-01] (EA Digital Illusions CE AB)
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-28]

Chrome:
=======
CHR Profile: C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Pine Tree) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlihcdefnjnagpemfefaegdfdipiamnf [2015-10-11] [UpdateUrl: hxxp://wwwpinetreeinfoc-a.akamaihd.net/update/chrome] <==== ATTENTION
CHR Profile: C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Prezentace Google) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-11]
CHR Extension: (Dokumenty Google) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-11]
CHR Extension: (Disk Google) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (YouTube) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-11]
CHR Extension: (Vyhledávání Google) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-01]
CHR Extension: (Tabulky Google) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-21]
CHR Extension: (Avast Online Security) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-12-28]
CHR Extension: (Skype) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-12-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-11]
CHR Extension: (Gmail) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-11]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-12-28]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2015-12-28] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [138192 2011-02-07] ()
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2015-12-19] (Electronic Arts)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-12-28] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-12-28] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-12-28] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-12-28] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1055560 2015-12-28] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [451040 2015-12-28] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2015-12-28] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-12-28] (AVAST Software)
R3 athr; C:\Windows\System32\drivers\athwnx.sys [4207104 2015-10-30] (Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Advanced Micro Devices)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-28 11:33 - 2015-12-28 11:34 - 00019488 _____ C:\Users\uzivatel\Desktop\FRST.txt
2015-12-28 08:08 - 2015-12-28 08:09 - 00015491 _____ C:\Users\uzivatel\Desktop\Fixlog.txt
2015-12-28 08:01 - 2015-12-28 08:01 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2015-12-28 07:53 - 2015-12-28 07:50 - 00386096 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-12-28 07:51 - 2015-12-28 07:53 - 00004006 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-12-28 07:51 - 2015-12-28 07:51 - 00451040 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-12-28 07:51 - 2015-12-28 07:51 - 00097648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-12-28 07:51 - 2015-12-28 07:51 - 00001985 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2015-12-28 07:51 - 2015-12-28 07:51 - 00001973 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-12-28 07:51 - 2015-12-28 07:51 - 00000000 ____D C:\Users\uzivatel\AppData\Roaming\AVAST Software
2015-12-28 07:51 - 2015-12-28 07:50 - 01055560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-12-28 07:51 - 2015-12-28 07:50 - 00273784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-12-28 07:51 - 2015-12-28 07:50 - 00155304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-12-28 07:51 - 2015-12-28 07:50 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-12-28 07:51 - 2015-12-28 07:50 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-12-28 07:51 - 2015-12-28 07:50 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-12-28 07:50 - 2015-12-28 07:50 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-12-28 07:46 - 2015-12-28 07:46 - 00000000 ____D C:\Program Files\AVAST Software
2015-12-28 07:45 - 2015-12-28 07:46 - 00000000 ____D C:\ProgramData\AVAST Software
2015-12-28 07:45 - 2015-12-28 07:45 - 05066104 _____ (AVAST Software) C:\Users\uzivatel\Downloads\avast_free_antivirus_setup_online.exe
2015-12-28 00:49 - 2015-12-28 00:49 - 00000000 _____ C:\Users\uzivatel\Desktop\Nový textový dokument.txt
2015-12-27 19:48 - 2015-12-27 19:48 - 00112640 _____ (forum.viry.cz) C:\Users\uzivatel\Downloads\FRSTLauncher.exe
2015-12-27 19:48 - 2015-12-27 19:48 - 00001132 _____ C:\Users\uzivatel\Desktop\FRSTLauncher – zástupce.lnk
2015-12-27 19:47 - 2015-12-28 11:33 - 00000000 ____D C:\FRST
2015-12-27 19:46 - 2015-12-27 19:46 - 02370560 _____ (Farbar) C:\Users\uzivatel\Downloads\FRST64 (1).exe
2015-12-27 19:43 - 2015-12-27 19:47 - 02370560 _____ (Farbar) C:\Users\uzivatel\Desktop\FRST64.exe
2015-12-27 16:54 - 2009-06-10 22:00 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20151227-165438.backup
2015-12-27 16:28 - 2015-12-27 16:29 - 00017773 _____ C:\WINDOWS\wininit.ini
2015-12-27 12:46 - 2015-12-27 12:46 - 00000000 ____D C:\Program Files\Common Files\AV
2015-12-27 12:46 - 2015-07-28 17:52 - 00821920 _____ (Safer-Networking Ltd. ) C:\Users\Public\Desktop\Post Win10 Spybot-install.exe
2015-12-27 12:36 - 2015-12-27 12:36 - 00001470 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2015-12-27 12:36 - 2015-12-27 12:36 - 00001458 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2015-12-27 12:36 - 2015-12-27 12:36 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2015-12-27 12:36 - 2015-12-27 12:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2015-12-27 12:35 - 2015-12-27 16:53 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-12-27 12:35 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe
2015-12-27 12:34 - 2015-12-27 12:46 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-12-27 12:31 - 2015-12-27 12:33 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\uzivatel\Downloads\spybot-2.4.exe
2015-12-27 10:51 - 2015-12-27 10:51 - 00980520 _____ (Generic ) C:\Users\uzivatel\Downloads\adobe_flash_player.exe
2015-12-27 09:26 - 2015-12-27 09:26 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-12-22 16:09 - 2015-12-22 16:09 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-12-21 07:18 - 2015-12-21 07:18 - 00734293 _____ C:\Users\uzivatel\Downloads\Daně2.pdf
2015-12-21 07:16 - 2015-12-21 07:16 - 00999807 _____ C:\Users\uzivatel\Downloads\Daně1.pdf
2015-12-20 09:10 - 2015-12-20 09:10 - 00000000 ____D C:\ProgramData\ATI
2015-12-19 08:57 - 2015-12-19 08:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-12-19 08:56 - 2015-12-19 08:56 - 00000000 ____D C:\Program Files\ATI Technologies
2015-12-19 08:36 - 2015-12-07 05:48 - 02544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-12-19 08:36 - 2015-12-07 05:48 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2015-12-19 08:36 - 2015-12-07 05:48 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2015-12-19 08:36 - 2015-12-07 05:07 - 16984064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-19 08:36 - 2015-12-07 04:58 - 24601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-12-19 08:36 - 2015-12-07 04:53 - 19339264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-12-19 08:36 - 2015-12-07 04:43 - 02598400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-19 08:35 - 2015-12-07 05:57 - 00973664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-12-19 08:35 - 2015-12-07 05:55 - 01281376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 01155944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 01092456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 01065080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 01020096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00983464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00884256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00823264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00526856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00502112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00498448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00462760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00450904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00337840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-12-19 08:35 - 2015-12-07 05:48 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-12-19 08:35 - 2015-12-07 05:47 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-12-19 08:35 - 2015-12-07 05:47 - 00898184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-12-19 08:35 - 2015-12-07 05:47 - 00716928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-12-19 08:35 - 2015-12-07 05:46 - 03671888 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-12-19 08:35 - 2015-12-07 05:46 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-12-19 08:35 - 2015-12-07 05:45 - 00264544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-19 08:35 - 2015-12-07 05:15 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-19 08:35 - 2015-12-07 05:10 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-19 08:35 - 2015-12-07 05:06 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2015-12-19 08:35 - 2015-12-07 05:03 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-12-19 08:35 - 2015-12-07 05:01 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-12-19 08:35 - 2015-12-07 05:00 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-19 08:35 - 2015-12-07 05:00 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-12-19 08:35 - 2015-12-07 04:59 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-12-19 08:35 - 2015-12-07 04:59 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-12-19 08:35 - 2015-12-07 04:59 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-12-19 08:35 - 2015-12-07 04:57 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2015-12-19 08:35 - 2015-12-07 04:56 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-12-19 08:35 - 2015-12-07 04:56 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-19 08:35 - 2015-12-07 04:51 - 01318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-19 08:35 - 2015-12-07 04:50 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-19 08:35 - 2015-12-07 04:49 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2015-12-19 08:35 - 2015-12-07 04:47 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-12-19 08:35 - 2015-12-07 04:45 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-19 08:35 - 2015-12-07 04:45 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-19 08:35 - 2015-12-07 04:45 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-19 08:35 - 2015-12-07 04:44 - 02796032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-12-19 08:35 - 2015-12-07 04:43 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-19 08:35 - 2015-12-07 04:41 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-12-19 08:35 - 2015-12-07 04:40 - 01995776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-19 08:35 - 2015-12-07 04:40 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2015-12-19 08:34 - 2015-12-07 05:49 - 00412512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2015-12-19 08:34 - 2015-12-07 05:48 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2015-12-19 08:34 - 2015-12-07 05:48 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2015-12-19 08:34 - 2015-12-07 05:47 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2015-12-19 08:34 - 2015-12-07 05:15 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-19 08:34 - 2015-12-07 05:09 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2015-12-19 08:34 - 2015-12-07 05:09 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-19 08:34 - 2015-12-07 05:09 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2015-12-19 08:34 - 2015-12-07 05:07 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2015-12-19 08:34 - 2015-12-07 05:07 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-19 08:34 - 2015-12-07 05:06 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-12-19 08:34 - 2015-12-07 05:06 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-12-19 08:34 - 2015-12-07 05:05 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-12-19 08:34 - 2015-12-07 05:05 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-19 08:34 - 2015-12-07 05:04 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2015-12-19 08:34 - 2015-12-07 05:04 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2015-12-19 08:34 - 2015-12-07 05:02 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2015-12-19 08:34 - 2015-12-07 05:02 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2015-12-19 08:34 - 2015-12-07 05:01 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundTransferHost.exe
2015-12-19 08:34 - 2015-12-07 05:00 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2015-12-19 08:34 - 2015-12-07 05:00 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-19 08:34 - 2015-12-07 04:59 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2015-12-19 08:34 - 2015-12-07 04:58 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-12-19 08:34 - 2015-12-07 04:57 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2015-12-19 08:34 - 2015-12-07 04:57 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2015-12-19 08:34 - 2015-12-07 04:55 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-12-19 08:34 - 2015-12-07 04:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-12-19 08:34 - 2015-12-07 04:54 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-12-19 08:34 - 2015-12-07 04:54 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2015-12-19 08:34 - 2015-12-07 04:53 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-12-19 08:34 - 2015-12-07 04:51 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2015-12-19 08:34 - 2015-12-07 04:48 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-12-19 08:34 - 2015-12-07 04:40 - 03593216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-12-19 08:34 - 2015-12-07 04:39 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-12-19 08:34 - 2015-12-07 04:38 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2015-12-19 08:34 - 2015-12-07 04:33 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2015-12-19 08:34 - 2015-12-07 04:32 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 47794160 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 39720944 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 30775792 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 27544560 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 25320432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 22327280 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 15725552 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 14310896 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 06686192 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 05216240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 01196032 _____ C:\WINDOWS\system32\amdocl_as64.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 01070592 _____ C:\WINDOWS\system32\amdocl_ld64.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 01004032 _____ C:\WINDOWS\SysWOW64\amdocl_as32.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 00935408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00935408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00807424 _____ C:\WINDOWS\SysWOW64\amdocl_ld32.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 00631792 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00524272 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00375792 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 00341488 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 00243696 _____ C:\WINDOWS\system32\clinfo.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 00213488 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00199664 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00198640 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00168944 _____ C:\WINDOWS\system32\atieah64.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 00165360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00152560 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 00150512 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00143344 _____ C:\WINDOWS\system32\amdhdl64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00136176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00132080 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00122352 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00111600 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00111088 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00103408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00096752 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00083952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00078320 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00078320 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00073712 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00071152 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00068080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00064496 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00060912 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00059888 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe
2015-12-16 20:07 - 2015-12-16 20:07 - 00059376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00057840 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00052208 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00048112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00038384 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00012784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2015-12-16 20:07 - 2015-12-16 20:07 - 00012784 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2015-12-16 20:06 - 2015-12-16 20:06 - 09355016 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2015-12-16 20:06 - 2015-12-16 20:06 - 07683096 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2015-12-16 20:06 - 2015-12-16 20:06 - 00471320 _____ C:\WINDOWS\system32\amdmiracast.dll
2015-12-16 20:06 - 2015-12-16 20:06 - 00088000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2015-12-16 20:06 - 2015-12-16 20:06 - 00088000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2015-12-16 20:06 - 2015-12-16 20:06 - 00081160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2015-12-16 20:06 - 2015-12-16 20:06 - 00081160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2015-12-16 18:04 - 2015-12-16 18:04 - 01547264 _____ C:\Users\uzivatel\Downloads\Hehe.pps
2015-12-16 18:00 - 2015-12-16 18:00 - 05017759 _____ C:\Users\uzivatel\Downloads\Hostice.ppsx
2015-12-13 18:24 - 2015-12-13 18:27 - 02271319 _____ C:\Users\uzivatel\Downloads\video-1450025232.mp4.mp4
2015-12-13 18:13 - 2015-12-13 18:15 - 16021232 _____ C:\Users\uzivatel\Downloads\video-1450026714.mp4.mp4
2015-12-13 14:41 - 2015-11-24 08:35 - 22393856 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-12-13 14:40 - 2015-12-01 08:12 - 02152800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-12-13 14:40 - 2015-11-24 13:07 - 01817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-12-13 14:40 - 2015-11-24 12:06 - 01540768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-12-13 14:40 - 2015-11-24 11:26 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-12-13 14:40 - 2015-11-24 10:37 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2015-12-13 14:40 - 2015-11-24 10:26 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-12-13 14:40 - 2015-11-24 09:58 - 00604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-12-13 14:40 - 2015-11-24 09:55 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-12-13 14:40 - 2015-11-24 09:52 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-12-13 14:40 - 2015-11-24 09:49 - 01648640 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2015-12-13 14:40 - 2015-11-24 09:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-12-13 14:40 - 2015-11-24 08:59 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-12-13 14:40 - 2015-11-24 08:57 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2015-12-13 14:40 - 2015-11-24 08:29 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-12-13 14:40 - 2015-11-24 08:23 - 13381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-12-13 14:40 - 2015-11-24 08:11 - 18678272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-12-13 14:40 - 2015-11-24 08:08 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-12-13 14:40 - 2015-11-24 08:04 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-12-13 14:40 - 2015-11-22 11:47 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-12-13 14:40 - 2015-11-22 11:47 - 02653816 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-13 14:40 - 2015-11-22 11:41 - 01859448 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-12-13 14:40 - 2015-11-22 11:41 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-12-13 14:40 - 2015-11-22 11:35 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-12-13 14:40 - 2015-11-22 11:34 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2015-12-13 14:40 - 2015-11-22 11:33 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2015-12-13 14:40 - 2015-11-22 11:33 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-13 14:40 - 2015-11-22 11:33 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-13 14:40 - 2015-11-22 11:30 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-12-13 14:40 - 2015-11-22 11:30 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-12-13 14:40 - 2015-11-22 11:26 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-12-13 14:40 - 2015-11-22 11:25 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll
2015-12-13 14:40 - 2015-11-22 11:24 - 02772584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2015-12-13 14:40 - 2015-11-22 11:20 - 00795840 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-12-13 14:40 - 2015-11-22 11:19 - 00440160 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-12-13 14:40 - 2015-11-22 11:14 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2015-12-13 14:40 - 2015-11-22 10:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-13 14:40 - 2015-11-22 10:54 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-13 14:40 - 2015-11-22 10:54 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2015-12-13 14:40 - 2015-11-22 10:50 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll
2015-12-13 14:40 - 2015-11-22 10:49 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2015-12-13 14:40 - 2015-11-22 10:45 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-12-13 14:40 - 2015-11-22 10:45 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-12-13 14:40 - 2015-11-22 10:43 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-12-13 14:40 - 2015-11-22 10:43 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-12-13 14:40 - 2015-11-22 10:42 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-12-13 14:40 - 2015-11-22 10:42 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll
2015-12-13 14:40 - 2015-11-22 10:41 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2015-12-13 14:40 - 2015-11-22 10:39 - 02126848 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-12-13 14:40 - 2015-11-22 10:39 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-12-13 14:40 - 2015-11-22 10:39 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-12-13 14:40 - 2015-11-22 10:39 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-12-13 14:40 - 2015-11-22 10:39 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-12-13 14:40 - 2015-11-22 10:38 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-12-13 14:40 - 2015-11-22 10:38 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-12-13 14:40 - 2015-11-22 10:38 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-12-13 14:40 - 2015-11-22 10:38 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2015-12-13 14:40 - 2015-11-22 10:38 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll
2015-12-13 14:40 - 2015-11-22 10:37 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2015-12-13 14:40 - 2015-11-22 10:37 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-13 14:40 - 2015-11-22 10:37 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-12-13 14:40 - 2015-11-22 10:36 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-13 14:40 - 2015-11-22 10:34 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2015-12-13 14:40 - 2015-11-22 10:34 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2015-12-13 14:40 - 2015-11-22 10:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2015-12-13 14:40 - 2015-11-22 10:32 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-12-13 14:40 - 2015-11-22 10:31 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-12-13 14:40 - 2015-11-22 10:31 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-12-13 14:40 - 2015-11-22 10:28 - 01734656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-12-13 14:40 - 2015-11-22 10:28 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-12-13 14:40 - 2015-11-22 10:28 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-12-13 14:40 - 2015-11-22 10:28 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-12-13 14:40 - 2015-11-22 10:28 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-12-13 14:40 - 2015-11-22 10:28 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-12-13 14:40 - 2015-11-22 10:27 - 03993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-13 14:40 - 2015-11-22 10:27 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-12-13 14:40 - 2015-11-22 10:27 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2015-12-13 14:40 - 2015-11-22 10:27 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2015-12-13 14:40 - 2015-11-22 10:26 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-12-13 14:40 - 2015-11-22 10:26 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-12-13 14:40 - 2015-11-22 10:26 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2015-12-13 14:40 - 2015-11-22 10:26 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-12-13 14:40 - 2015-11-22 10:25 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-12-13 14:40 - 2015-11-22 10:24 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-12-13 14:40 - 2015-11-22 10:24 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-12-13 14:40 - 2015-11-22 10:20 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2015-12-13 14:40 - 2015-11-22 10:18 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-12-13 14:40 - 2015-11-22 10:18 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-12-13 14:40 - 2015-11-22 10:18 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2015-12-13 14:40 - 2015-11-22 10:17 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-12-13 14:40 - 2015-11-22 10:17 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-12-13 14:40 - 2015-11-22 10:11 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-12-13 14:40 - 2015-11-21 07:21 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-12-13 14:40 - 2015-11-21 07:02 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-12-13 14:40 - 2015-11-21 06:29 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2015-12-13 14:40 - 2015-11-21 06:07 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2015-12-13 14:40 - 2015-11-13 07:51 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-12-13 14:40 - 2015-11-13 07:51 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-12-13 14:40 - 2015-11-13 07:51 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2015-12-13 14:40 - 2015-11-13 07:43 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-12-13 14:40 - 2015-11-13 07:43 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-12-13 14:40 - 2015-11-13 07:43 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2015-12-13 14:40 - 2015-11-13 07:43 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-12-13 14:40 - 2015-11-13 07:43 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2015-12-13 14:40 - 2015-11-13 07:42 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-12-13 14:40 - 2015-11-13 07:42 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-12-13 14:40 - 2015-11-13 07:41 - 22572632 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-12-13 14:40 - 2015-11-13 07:33 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2015-12-13 14:40 - 2015-11-13 07:33 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-12-13 14:40 - 2015-11-13 07:33 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-12-13 14:40 - 2015-11-13 07:32 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2015-12-13 14:40 - 2015-11-13 07:21 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2015-12-13 14:40 - 2015-11-13 07:21 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-12-13 14:40 - 2015-11-13 07:21 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-12-13 14:40 - 2015-11-13 07:21 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2015-12-13 14:40 - 2015-11-13 07:21 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-12-13 14:40 - 2015-11-13 07:21 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2015-12-13 14:40 - 2015-11-13 07:18 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-12-13 14:40 - 2015-11-13 07:09 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2015-12-13 14:40 - 2015-11-13 06:58 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-12-13 14:40 - 2015-11-13 06:58 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-12-13 14:40 - 2015-11-13 06:57 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2015-12-13 14:40 - 2015-11-13 06:55 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-12-13 14:40 - 2015-11-13 06:53 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2015-12-13 14:40 - 2015-11-13 06:50 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-12-13 14:40 - 2015-11-13 06:49 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-12-13 14:40 - 2015-11-13 06:39 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-12-13 14:40 - 2015-11-13 06:29 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-12-13 14:40 - 2015-11-13 06:27 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2015-12-13 14:40 - 2015-11-13 06:19 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-12-13 14:40 - 2015-11-05 13:05 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-12-13 14:40 - 2015-11-05 11:40 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-12-13 14:40 - 2015-11-05 11:25 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-12-13 14:40 - 2015-11-05 10:41 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-12-13 14:40 - 2015-11-05 10:13 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-12-13 14:40 - 2015-11-05 10:10 - 00803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-12-13 14:40 - 2015-11-05 09:18 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-12-13 14:40 - 2015-11-05 09:15 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-12-13 14:39 - 2015-11-24 11:01 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2015-12-13 14:39 - 2015-11-24 10:54 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2015-12-13 14:39 - 2015-11-24 10:53 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-12-13 14:39 - 2015-11-24 10:45 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll
2015-12-13 14:39 - 2015-11-24 10:19 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-12-13 14:39 - 2015-11-24 10:12 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2015-12-13 14:39 - 2015-11-24 09:54 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2015-12-13 14:39 - 2015-11-24 09:14 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2015-12-13 14:39 - 2015-11-22 11:00 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2015-12-13 14:39 - 2015-11-22 11:00 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2015-12-13 14:39 - 2015-11-22 10:57 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-13 14:39 - 2015-11-22 10:57 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-13 14:39 - 2015-11-22 10:57 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-13 14:39 - 2015-11-22 10:57 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-13 14:39 - 2015-11-22 10:56 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-13 14:39 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2015-12-13 14:39 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-13 14:39 - 2015-11-22 10:56 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll
2015-12-13 14:39 - 2015-11-22 10:55 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-13 14:39 - 2015-11-22 10:54 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-13 14:39 - 2015-11-22 10:54 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2015-12-13 14:39 - 2015-11-22 10:54 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll
2015-12-13 14:39 - 2015-11-22 10:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-12-13 14:39 - 2015-11-22 10:54 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2015-12-13 14:39 - 2015-11-22 10:54 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2015-12-13 14:39 - 2015-11-22 10:54 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-13 14:39 - 2015-11-22 10:52 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2015-12-13 14:39 - 2015-11-22 10:52 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-13 14:39 - 2015-11-22 10:52 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2015-12-13 14:39 - 2015-11-22 10:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-13 14:39 - 2015-11-22 10:51 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-12-13 14:39 - 2015-11-22 10:51 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-13 14:39 - 2015-11-22 10:51 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2015-12-13 14:39 - 2015-11-22 10:51 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2015-12-13 14:39 - 2015-11-22 10:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2015-12-13 14:39 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2015-12-13 14:39 - 2015-11-22 10:49 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll
2015-12-13 14:39 - 2015-11-22 10:48 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2015-12-13 14:39 - 2015-11-22 10:46 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-13 14:39 - 2015-11-22 10:45 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-12-13 14:39 - 2015-11-22 10:45 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll
2015-12-13 14:39 - 2015-11-22 10:45 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2015-12-13 14:39 - 2015-11-22 10:45 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-12-13 14:39 - 2015-11-22 10:45 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll
2015-12-13 14:39 - 2015-11-22 10:45 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2015-12-13 14:39 - 2015-11-22 10:45 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2015-12-13 14:39 - 2015-11-22 10:44 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2015-12-13 14:39 - 2015-11-22 10:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2015-12-13 14:39 - 2015-11-22 10:43 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-12-13 14:39 - 2015-11-22 10:43 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll
2015-12-13 14:39 - 2015-11-22 10:42 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-12-13 14:39 - 2015-11-22 10:42 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2015-12-13 14:39 - 2015-11-22 10:42 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2015-12-13 14:39 - 2015-11-22 10:41 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-12-13 14:39 - 2015-11-22 10:40 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-12-13 14:39 - 2015-11-22 10:40 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-12-13 14:39 - 2015-11-22 10:40 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2015-12-13 14:39 - 2015-11-22 10:40 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
2015-12-13 14:39 - 2015-11-22 10:39 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2015-12-13 14:39 - 2015-11-22 10:39 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2015-12-13 14:39 - 2015-11-22 10:39 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2015-12-13 14:39 - 2015-11-22 10:39 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2015-12-13 14:39 - 2015-11-22 10:39 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2015-12-13 14:39 - 2015-11-22 10:39 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2015-12-13 14:39 - 2015-11-22 10:34 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-13 14:39 - 2015-11-22 10:34 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-12-13 14:39 - 2015-11-22 10:34 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-13 14:39 - 2015-11-22 10:34 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-13 14:39 - 2015-11-22 10:33 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll
2015-12-13 14:39 - 2015-11-22 10:31 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-12-13 14:39 - 2015-11-22 10:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2015-12-13 14:39 - 2015-11-22 10:28 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2015-12-13 14:39 - 2015-11-22 10:28 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2015-12-13 14:39 - 2015-11-22 10:28 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2015-12-13 14:39 - 2015-11-22 10:27 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2015-12-13 14:39 - 2015-11-22 10:27 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-12-13 14:39 - 2015-11-22 10:25 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-12-13 14:39 - 2015-11-22 10:24 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2015-12-13 14:39 - 2015-11-22 10:24 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2015-12-13 14:39 - 2015-11-22 10:23 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-12-13 14:39 - 2015-11-21 06:44 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-12-13 14:39 - 2015-11-13 07:55 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2015-12-13 14:39 - 2015-11-13 07:42 - 00408128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2015-12-13 14:39 - 2015-11-13 07:07 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-12-13 14:39 - 2015-11-13 07:06 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-12-13 14:39 - 2015-11-13 07:05 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-12-13 14:39 - 2015-11-13 07:05 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-12-13 14:39 - 2015-11-13 07:05 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-12-13 14:39 - 2015-11-13 07:05 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2015-12-13 14:39 - 2015-11-13 07:04 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-12-13 14:39 - 2015-11-13 07:04 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2015-12-13 14:39 - 2015-11-13 07:04 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-12-13 14:39 - 2015-11-13 07:03 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-12-13 14:39 - 2015-11-13 07:00 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2015-12-13 14:39 - 2015-11-13 06:59 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2015-12-13 14:39 - 2015-11-13 06:56 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-12-13 14:39 - 2015-11-13 06:54 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-12-13 14:39 - 2015-11-13 06:40 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2015-12-13 14:39 - 2015-11-13 06:40 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll
2015-12-13 14:39 - 2015-11-13 06:34 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2015-12-13 14:39 - 2015-11-13 06:33 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-12-13 14:39 - 2015-11-13 06:30 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-12-13 14:39 - 2015-11-13 06:30 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-12-13 14:39 - 2015-11-13 06:23 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-12-13 14:39 - 2015-11-05 11:08 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2015-12-13 14:39 - 2015-11-05 11:08 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2015-12-13 14:39 - 2015-11-05 11:04 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-12-13 14:39 - 2015-11-05 11:00 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2015-12-13 14:39 - 2015-11-05 10:44 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-12-13 14:39 - 2015-11-05 10:03 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2015-12-13 14:39 - 2015-11-05 10:02 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2015-12-13 14:39 - 2015-11-05 09:59 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-12-13 14:39 - 2015-11-05 09:55 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2015-12-13 14:39 - 2015-11-05 09:42 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-12-13 12:20 - 2015-12-13 12:20 - 00000000 ____D C:\Users\uzivatel\AppData\Local\ActiveSync
2015-12-13 12:17 - 2015-12-13 12:17 - 00000020 ___SH C:\Users\uzivatel\ntuser.ini
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Šablony
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Poslední
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Okolní síť
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Dokumenty
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\Data aplikací
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-12-13 12:00 - 2015-12-13 12:00 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2015-12-13 11:55 - 2015-12-28 08:14 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-12-13 11:46 - 2015-12-13 11:46 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-12-13 11:46 - 2015-12-13 11:46 - 00000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs
2015-12-13 11:46 - 2015-12-13 11:46 - 00000000 ____D C:\Users\Default\AppData\Roaming\ATI
2015-12-13 11:46 - 2015-12-13 11:46 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-12-13 11:46 - 2015-12-13 11:46 - 00000000 ____D C:\Users\Default\AppData\Local\ATI
2015-12-13 11:46 - 2015-12-13 11:46 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs
2015-12-13 11:46 - 2015-12-13 11:46 - 00000000 ____D C:\Users\Default User\AppData\Roaming\ATI
2015-12-13 11:46 - 2015-12-13 11:46 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-12-13 11:46 - 2015-12-13 11:46 - 00000000 ____D C:\Users\Default User\AppData\Local\ATI
2015-12-13 11:42 - 2015-12-13 11:42 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-12-13 11:41 - 2015-12-13 11:47 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2015-12-13 11:39 - 2015-12-28 08:01 - 00000000 ____D C:\Users\DefaultAppPool
2015-12-13 11:39 - 2015-12-23 00:07 - 00000000 ____D C:\Users\uzivatel
2015-12-13 11:39 - 2015-12-13 11:51 - 00000000 ____D C:\Users\Administrator
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Šablony
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Soubory cookie
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Poslední
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Okolní tiskárny
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Okolní síť
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Nabídka Start
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Dokumenty
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Documents\Obrázky
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Documents\Hudba
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Documents\Filmy
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\Data aplikací
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\uzivatel\AppData\Local\Data aplikací
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Šablony
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Soubory cookie
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Poslední
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Okolní tiskárny
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Okolní síť
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Nabídka Start
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Dokumenty
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Obrázky
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Hudba
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Filmy
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\Data aplikací
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Data aplikací
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Šablony
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Soubory cookie
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Poslední
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Okolní tiskárny
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Okolní síť
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Nabídka Start
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Dokumenty
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Documents\Obrázky
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Documents\Hudba
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Documents\Filmy
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\Data aplikací
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-12-13 11:39 - 2015-12-13 11:39 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Data aplikací
2015-12-13 11:38 - 2015-12-22 16:10 - 02039646 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-13 11:38 - 2015-12-13 11:38 - 01949904 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-12-13 11:35 - 2015-12-19 08:56 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2015-12-13 11:35 - 2015-12-13 11:42 - 00000000 ____D C:\ProgramData\Package Cache
2015-12-13 11:35 - 2015-12-13 11:35 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2015-12-13 11:35 - 2015-12-13 11:35 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2015-12-13 11:34 - 2015-12-13 11:35 - 00000000 ____D C:\Program Files\AMD
2015-12-13 11:34 - 2015-10-30 08:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-12-13 11:31 - 2015-12-23 18:59 - 00345528 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-13 11:30 - 2015-12-13 18:00 - 00000000 ___DC C:\WINDOWS\Panther
2015-12-13 11:27 - 2015-12-13 11:27 - 00000000 ____D C:\Windows.old
2015-12-13 11:26 - 2015-12-13 11:26 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-12-13 11:23 - 2015-12-13 11:23 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-12-13 11:23 - 2015-12-13 11:23 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2015-12-13 11:23 - 2015-12-13 11:23 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-12-13 11:23 - 2015-12-13 11:23 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-12-13 11:23 - 2015-12-13 11:23 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-12-13 11:23 - 2015-12-13 11:23 - 00000000 ____D C:\Program Files\MSBuild
2015-12-13 11:23 - 2015-12-13 11:23 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-12-13 11:23 - 2015-12-13 11:23 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-12-13 11:23 - 2015-12-13 11:23 - 00000000 ____D C:\inetpub
2015-12-13 11:22 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-12-13 11:22 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-12-13 11:22 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-12-13 11:22 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-12-13 11:22 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-12-13 11:22 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-12-13 11:14 - 2015-12-13 11:14 - 00000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2015-12-12 06:39 - 2015-12-13 11:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-12-12 06:39 - 2015-12-12 06:39 - 00002658 _____ C:\Users\Public\Desktop\Skype.lnk
2015-12-10 22:07 - 2015-12-10 22:08 - 08685992 _____ C:\Users\uzivatel\Downloads\Tucny_M._a_R.Brzobohaty_nadhera.wmv
2015-12-10 21:54 - 2015-12-10 21:54 - 01257984 _____ C:\Users\uzivatel\Downloads\muž_a_žena.pps
2015-12-10 21:50 - 2015-12-10 21:50 - 00723755 _____ C:\Users\uzivatel\Downloads\IMG_6038.MOV
2015-12-10 21:50 - 2015-12-10 21:50 - 00000211 _____ C:\Users\uzivatel\Downloads\untitled-[1.2] (1).html
2015-12-10 21:49 - 2015-12-10 21:49 - 00000211 _____ C:\Users\uzivatel\Downloads\untitled-[1.2].html
2015-12-10 21:33 - 2015-12-10 21:34 - 03322880 _____ C:\Users\uzivatel\Downloads\mikulas.pps
2015-12-10 21:28 - 2015-12-10 21:28 - 01800704 _____ C:\Users\uzivatel\Downloads\Hoppalas_in_Bildern.pps
2015-12-06 09:41 - 2015-12-06 11:03 - 00000000 ____D C:\Users\uzivatel\AppData\Roaming\dvdcss
2015-11-29 18:00 - 2015-11-29 18:00 - 00024576 _____ C:\Users\uzivatel\Downloads\Měsíční_plán (6).xls
2015-11-29 17:55 - 2015-11-29 17:55 - 00023552 _____ C:\Users\uzivatel\Downloads\Měsíční_plán (5).xls

==================== One Month Modified files and folders ========

[Blondarson]

POKRAČOVÁNÍ RST

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-28 11:23 - 2014-06-29 17:33 - 00000000 ____D C:\Users\uzivatel\AppData\Roaming\Skype
2015-12-28 11:14 - 2014-06-11 14:31 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-12-28 10:17 - 2014-07-08 12:45 - 00000000 ____D C:\ProgramData\Origin
2015-12-28 09:22 - 2014-07-15 08:40 - 00000000 ____D C:\Program Files (x86)\WarThunder
2015-12-28 08:16 - 2014-06-29 16:21 - 00000000 ____D C:\Program Files (x86)\Steam
2015-12-28 08:14 - 2015-08-27 15:17 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-12-28 08:14 - 2014-07-01 07:04 - 00000000 ____D C:\Program Files\Google
2015-12-28 08:14 - 2014-07-01 07:04 - 00000000 ____D C:\Program Files (x86)\Google
2015-12-28 08:13 - 2015-10-30 07:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-12-28 08:08 - 2009-07-14 04:20 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2015-12-28 07:53 - 2015-10-30 07:28 - 00000000 ____D C:\Windows
2015-12-28 07:47 - 2015-08-27 15:40 - 00004218 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{ECEE36A5-191A-4AAC-AEFF-8C4875BBCD4F}
2015-12-28 00:40 - 2015-09-01 17:22 - 00000000 ____D C:\Users\uzivatel\AppData\Roaming\Seznam.cz
2015-12-28 00:40 - 2015-09-01 17:22 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2015-12-28 00:38 - 2014-07-01 07:04 - 00000000 ____D C:\Users\uzivatel\AppData\Local\Google
2015-12-28 00:38 - 2014-07-01 07:04 - 00000000 ____D C:\ProgramData\Google
2015-12-27 20:52 - 2009-07-14 03:34 - 00000580 _____ C:\WINDOWS\win.ini
2015-12-27 17:33 - 2015-01-02 07:38 - 00000000 ____D C:\ProgramData\CanonIJPLM
2015-12-27 17:29 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-12-27 09:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache
2015-12-23 23:12 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF
2015-12-23 19:08 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-22 16:10 - 2015-10-30 19:31 - 00843542 _____ C:\WINDOWS\system32\perfh005.dat
2015-12-22 16:10 - 2015-10-30 19:31 - 00192556 _____ C:\WINDOWS\system32\perfc005.dat
2015-12-22 16:09 - 2014-06-12 10:18 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-12-22 14:25 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-20 12:01 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-12-19 10:32 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-12-19 10:32 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning
2015-12-19 10:32 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2015-12-19 08:54 - 2014-06-11 14:49 - 00000000 ____D C:\AMD
2015-12-19 08:17 - 2014-07-08 12:45 - 00000000 ____D C:\Program Files (x86)\Origin
2015-12-17 17:40 - 2014-07-01 07:10 - 00002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-12-16 20:07 - 2015-11-04 16:48 - 21648880 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2015-12-16 20:07 - 2015-11-04 16:48 - 01256432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2015-12-16 20:07 - 2015-11-04 16:48 - 00874480 _____ (AMD) C:\WINDOWS\system32\coinst_15.20.dll
2015-12-16 20:07 - 2015-11-04 16:48 - 00683504 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2015-12-16 20:07 - 2015-11-04 16:48 - 00674288 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2015-12-16 20:07 - 2015-11-04 16:48 - 00451056 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2015-12-16 20:07 - 2015-11-04 16:48 - 00255472 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2015-12-16 20:06 - 2015-11-04 16:48 - 12088000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 10211016 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 08982432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 08864920 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 08009360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 07482560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 01479808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 01223544 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 00162232 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 00143056 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 00130064 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2015-12-16 20:06 - 2015-11-04 16:48 - 00112360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2015-12-16 17:30 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\appcompat
2015-12-16 17:24 - 2015-08-23 10:43 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-12-16 17:24 - 2014-06-11 14:39 - 00000000 ___RD C:\Users\uzivatel\Virtual Machines
2015-12-13 20:44 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-12-13 20:44 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-12-13 20:44 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-12-13 20:44 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-12-13 20:44 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-12-13 20:44 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-12-13 12:41 - 2015-08-23 10:43 - 00000000 ____D C:\Users\uzivatel\AppData\Local\Packages
2015-12-13 12:38 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2015-12-13 12:27 - 2015-08-23 10:48 - 00002453 _____ C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-12-13 12:27 - 2014-06-29 16:36 - 00000000 ___RD C:\Users\uzivatel\OneDrive
2015-12-13 12:19 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-12-13 12:19 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-12-13 12:00 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-12-13 12:00 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows NT
2015-12-13 12:00 - 2015-10-30 07:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-12-13 12:00 - 2015-08-23 09:10 - 00031404 _____ C:\WINDOWS\diagerr.xml
2015-12-13 12:00 - 2015-08-23 09:10 - 00030483 _____ C:\WINDOWS\diagwrn.xml
2015-12-13 11:58 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Registration
2015-12-13 11:56 - 2015-08-23 10:26 - 00023020 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-12-13 11:55 - 2015-10-30 08:24 - 00000000 __RSD C:\WINDOWS\Media
2015-12-13 11:55 - 2014-12-26 05:45 - 00002954 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-12-13 11:55 - 2014-07-01 07:04 - 00003504 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-13 11:55 - 2014-07-01 07:04 - 00003280 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-13 11:55 - 2014-06-11 14:31 - 00003194 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-12-13 11:54 - 2015-10-30 08:24 - 00000000 __RHD C:\Users\Public\Libraries
2015-12-13 11:47 - 2015-10-30 19:35 - 00000000 ____D C:\WINDOWS\ShellNew
2015-12-13 11:47 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-12-13 11:47 - 2015-01-05 17:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-12-13 11:47 - 2015-01-05 16:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-12-13 11:47 - 2015-01-02 07:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registrace uživatele zařízení Canon MG5300 series
2015-12-13 11:47 - 2015-01-02 07:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5300 series Manual
2015-12-13 11:47 - 2015-01-02 07:27 - 00000000 ____D C:\WINDOWS\system32\STRING
2015-12-13 11:47 - 2014-12-06 10:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-12-13 11:47 - 2014-07-15 08:40 - 00000000 ____D C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2015-12-13 11:47 - 2014-07-08 12:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-12-13 11:47 - 2014-07-01 07:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-12-13 11:47 - 2014-06-29 16:40 - 00000000 ____D C:\WINDOWS\cs
2015-12-13 11:47 - 2014-06-29 16:38 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-12-13 11:47 - 2014-06-29 16:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-12-13 11:47 - 2014-06-18 09:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-LINK
2015-12-13 11:47 - 2014-06-12 10:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-12-13 11:47 - 2014-06-11 14:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Commander
2015-12-13 11:47 - 2014-06-11 14:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2015-12-13 11:47 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-12-13 11:46 - 2015-07-10 10:05 - 00000000 ____D C:\Users\Default.migrated
2015-12-13 11:44 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-12-13 11:44 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-12-13 11:44 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\spool
2015-12-13 11:44 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\IME
2015-12-13 11:42 - 2015-10-30 08:24 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-12-13 11:42 - 2015-10-30 08:24 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-12-13 11:42 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\schemas
2015-12-13 11:42 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-12-13 11:42 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-12-13 11:42 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\USOPrivate
2015-12-13 11:42 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-12-13 11:42 - 2015-09-06 09:14 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2015-12-13 11:42 - 2015-01-02 07:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5300 series
2015-12-13 11:42 - 2014-07-27 11:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2015-12-13 11:42 - 2014-07-03 09:27 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information
2015-12-13 11:42 - 2014-06-12 12:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2015-12-13 11:37 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-12-13 11:31 - 2015-10-30 19:41 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2015-12-13 11:30 - 2015-10-30 08:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-12-13 11:23 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-12-13 11:23 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-12-13 11:23 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-12-13 11:23 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-12-13 11:23 - 2015-10-30 08:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2015-12-13 11:23 - 2015-10-30 08:19 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2015-12-13 11:23 - 2015-10-30 08:19 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2015-12-13 11:23 - 2015-10-30 08:19 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2015-12-13 11:23 - 2015-10-30 08:19 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-12-13 11:23 - 2015-10-30 08:19 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-12-13 11:23 - 2015-10-30 08:19 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2015-12-13 11:23 - 2015-10-30 08:18 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-12-13 11:23 - 2015-10-30 08:18 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\telnet.exe
2015-12-13 11:23 - 2015-10-30 08:18 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-12-13 11:23 - 2015-10-30 08:18 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-12-13 11:23 - 2015-10-30 08:18 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-12-13 11:23 - 2015-10-30 08:18 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-12-13 11:23 - 2015-10-30 08:18 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-12-13 11:23 - 2015-10-30 08:18 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-12-13 11:23 - 2015-10-30 08:18 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-12-13 11:23 - 2015-10-30 08:18 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-12-13 11:23 - 2015-10-30 08:18 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-12-13 11:11 - 2015-08-23 09:15 - 00008192 __RSH C:\BOOTSECT.BAK
2015-12-13 11:05 - 2015-10-30 20:11 - 00000000 ___HD C:\$WINDOWS.~BT
2015-12-13 09:27 - 2014-12-06 10:58 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-12-13 09:27 - 2014-12-06 10:58 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-12-13 09:22 - 2014-06-12 11:06 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-13 09:13 - 2014-06-12 11:06 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-12-12 06:39 - 2014-09-28 15:20 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-12-12 06:39 - 2014-09-28 15:20 - 00000000 ____D C:\Users\uzivatel\AppData\Local\Skype
2015-12-12 06:39 - 2014-06-29 17:32 - 00000000 ____D C:\ProgramData\Skype
2015-12-09 04:39 - 2010-11-21 04:27 - 00301728 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-12-06 18:30 - 2015-01-05 17:52 - 00000000 ____D C:\Users\uzivatel\AppData\Roaming\vlc
2015-12-01 01:33 - 2015-10-30 08:26 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-12-01 01:33 - 2015-10-30 08:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-12-23 20:19

==================== End of FRST.txt ============================

[Blondarson]

Additional scan result of Farbar Recovery Scan Tool (x64) Version:27-12-2015
Ran by uzivatel (2015-12-28 11:34:50)
Running from C:\Users\uzivatel\Desktop
Windows 10 Pro (X64) (2015-12-13 11:05:06)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4112901673-1865571380-2406517598-500 - Administrator - Disabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-4112901673-1865571380-2406517598-503 - Limited - Disabled)
Guest (S-1-5-21-4112901673-1865571380-2406517598-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4112901673-1865571380-2406517598-1003 - Limited - Enabled)
uzivatel (S-1-5-21-4112901673-1865571380-2406517598-1001 - Administrator - Enabled) => C:\Users\uzivatel

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.22 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0922-000001000000}) (Version: 9.22.00.0 - Igor Pavlov)
Adobe Reader XI (11.0.13) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2245 - AVAST Software)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: - )
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.5.0.0 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: - )
Canon MG5300 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5300_series) (Version: - Canon Inc.)
Canon MG5300 series On-screen Manual (HKLM-x32\...\Canon MG5300 series On-screen Manual) (Version: - )
Canon MP Navigator EX 5.0 (HKLM-x32\...\MP Navigator EX 5.0) (Version: - )
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.0.0 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: - )
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.3.0 - Canon Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
IL-2 Sturmovik: Cliffs of Dover (HKLM-x32\...\Steam App 63950) (Version: - 1C: Maddox Games)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
K-Lite Codec Pack 9.9.5 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.9.5 - )
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0405-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (HKLM-x32\...\{95140000-007D-0409-0000-0000000FF1CE}) (Version: 14.0.5120.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.4.11.2806 - Electronic Arts, Inc.)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.0 - pdfforge)
Prostředí Windows XP Mode (HKLM\...\{1374CC63-B520-4f3f-98E8-E9020BF01CFF}) (Version: 1.3.7600.16422 - Microsoft Corporation)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Registrace uživatele zařízení Canon MG5300 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG5300 series) (Version: - )
Search App by Ask (HKLM-x32\...\{4F524A2D-5350-4500-76A7-A758B70C2500}) (Version: 12.37.0.349 - APN, LLC) <==== ATTENTION
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.16 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.16.102 - Skype Technologies S.A.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
TL-WN851ND Driver (HKLM-x32\...\{4BAE4C76-44C3-418F-B715-6BBF5A65323E}) (Version: 1.00.0000 - TP-LINK)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
War Thunder Launcher 1.0.1.376 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\uzivatel\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\FileCoAuth.exe (Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {007A0541-6FD5-4C72-A158-2A872DE6DAE5} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-12-28] (AVAST Software)
Task: {011FA347-585B-4A6D-BFCC-E4270F74BC60} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {02E3EE98-4456-4DD5-A7A5-33D5F9C97213} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {066A9894-B411-4416-8699-7AB367258A91} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {070F2E7E-E16C-496C-800B-63FBC65926F2} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {08D101C0-4859-4EF8-8F3C-CFC570CFFB4F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {0E1A058A-5CEB-4FD4-B01E-BF77F628F57F} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-16] (Adobe Systems Incorporated)
Task: {0ED05B75-484F-452D-BD67-19F6B22A8164} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {0F3E3232-C934-4AC2-A7F6-3761839606CB} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {1572F8C6-87F4-4596-868F-0A99B984078A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {17308D94-792B-4AFD-974B-6D2BB8D15D19} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {1778BBB2-C6D6-4557-9662-97157A1282E8} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {181CA63B-6F58-4C9B-BB8F-DC9218722F63} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {182BADF0-0922-45D1-BC80-134E56D7CD78} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {1D47ACCA-4D19-4623-965F-F64D8D9940F3} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {33C99A8C-FC6E-4115-8902-1CD791B0121F} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {3761F137-B5A7-435D-AAAD-1D1CABB1942D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {4017DED6-BC89-4E3D-9ED6-0EE073DDEBF6} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {465A0316-3C6E-4248-ABE4-EEA250B8529E} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {4DFC7DEB-95FB-464B-80B3-0EEAD8311F9B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\SYSTEM32\MRT.EXE [2015-12-13] (Microsoft Corporation)
Task: {4E2BC656-67C2-42F3-92A9-6817D2A89D84} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {50137526-3981-4F95-9B7E-16FC04E790F4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {52F7A4F7-206D-472A-972B-D74C5B791CAF} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {53DC433E-C364-4769-92AC-41DD7556334B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {65BC39FC-F464-4BA0-9E88-2ED6A610B2FF} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {717ACBCE-C600-4C04-8B97-8020EE4D4699} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {99BEC8E9-21C2-481C-B291-F69E22301CE6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {A49AE608-7DF8-485B-806F-08D02DDE5377} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {B9BF4072-80E7-44D7-9554-F37CC150B3E5} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {BC4F3A98-11E8-432C-803A-04B7C7139494} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {BF6498DD-EE25-4C10-9766-C94E8D6F7091} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {C3C225A6-6E2A-4B42-9D7D-69D892144481} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {CBD3C970-3228-4684-A270-163F6AA68D94} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {D0462962-072C-4DAB-B863-5AEB85347BEA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {DAE7C5D8-3577-4B73-B56F-5042B41ABF85} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {DC1BE37E-FAC9-4D64-8CEB-B7375905B11D} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {E33122A9-FBB0-4B8C-B0F0-BF65FC8F323D} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {E7EF8709-AED1-49E6-B2AB-265F2641587D} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: {E8D3F32A-6FCF-4448-A0B3-50F14E406378} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {EDE438A1-7B8D-4073-8DED-C88C35E28D9D} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {EFD71CC6-2410-42B4-B9BE-CD067DCB1291} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {F0330C4E-EC6F-41A2-A923-40D5012B326A} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {F3223B82-BA10-4490-AC3E-230AD60154F2} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-01-02 07:38 - 2011-02-07 08:56 - 00138192 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2015-12-13 14:40 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-13 14:40 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-12-19 08:34 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2015-12-19 08:34 - 2015-12-07 05:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-12-19 08:36 - 2015-12-07 04:37 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-19 08:35 - 2015-12-07 04:33 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-19 08:36 - 2015-12-07 04:34 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-12-19 08:36 - 2015-12-07 04:36 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-12-17 16:56 - 2015-12-17 16:57 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2015-12-24 05:25 - 2015-12-24 05:25 - 23059992 _____ () C:\Program Files (x86)\WarThunder\aces.exe
2015-12-28 07:50 - 2015-12-28 07:50 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-12-28 07:50 - 2015-12-28 07:50 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-12-28 07:53 - 2015-12-28 07:53 - 02806272 _____ () C:\Program Files\AVAST Software\Avast\defs\15122706\algo.dll
2015-12-28 07:50 - 2015-12-28 07:50 - 00469008 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2015-12-27 12:35 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2015-12-27 12:35 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2015-12-27 12:35 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2015-12-27 12:35 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2015-12-27 12:35 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-05-16 16:36 - 2015-11-10 20:55 - 00778752 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-02-11 15:58 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2014-05-29 08:37 - 2015-12-14 21:01 - 02547280 _____ () C:\Program Files (x86)\Steam\video.dll
2014-09-15 18:00 - 2015-09-24 01:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2014-09-15 18:00 - 2015-09-24 01:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2014-09-15 18:00 - 2015-09-24 01:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2014-09-15 18:00 - 2015-09-24 01:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2014-09-15 18:00 - 2015-09-24 01:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-02-11 15:58 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-02-11 15:58 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2014-05-29 08:36 - 2015-12-14 21:01 - 00804432 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-08-09 08:55 - 2015-11-03 23:00 - 00201728 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2015-12-19 08:17 - 2015-12-19 08:16 - 01016832 _____ () C:\Program Files (x86)\Origin\platforms\qwindows.dll
2014-07-08 12:48 - 2015-12-19 08:15 - 00028160 _____ () C:\Program Files (x86)\Origin\imageformats\qgif.dll
2014-07-08 12:48 - 2015-12-19 08:15 - 00029696 _____ () C:\Program Files (x86)\Origin\imageformats\qico.dll
2014-07-08 12:48 - 2015-12-19 08:15 - 00256000 _____ () C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2014-07-08 12:48 - 2015-12-19 08:15 - 00266240 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll
2014-07-08 12:48 - 2015-12-19 08:15 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qtga.dll
2014-07-08 12:48 - 2015-12-19 08:15 - 00346112 _____ () C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2014-07-08 12:48 - 2015-12-19 08:15 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2015-11-25 20:18 - 2015-11-25 20:18 - 00147136 ____R () C:\Program Files (x86)\Skype\Phone\ssScreenVVS2.dll
2015-12-28 07:50 - 2015-12-28 07:50 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-05-01 14:35 - 2015-11-17 01:31 - 47846176 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-12-17 16:56 - 2015-12-17 16:57 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2015-12-17 16:56 - 2015-12-17 16:57 - 21845504 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2015-12-17 17:40 - 2015-12-11 04:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
2015-12-17 17:40 - 2015-12-11 04:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7865 more sites.

IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\...\123simsen.com -> www.123simsen.com

There are 7865 more sites.


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2015-12-27 16:54 - 00450709 ____R C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
127.0.0.1 www.123moviedownload.com

There are 15461 more lines.


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4112901673-1865571380-2406517598-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "ApnTBMon"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [UDP Query User{91D4C72D-8C83-4D08-943A-3F551B48CF5B}C:\program files (x86)\warthunder\win64\aces.exe] => (Allow) C:\program files (x86)\warthunder\win64\aces.exe
FirewallRules: [TCP Query User{6C9D8847-392D-460E-9AE1-BF9C1FD896A4}C:\program files (x86)\warthunder\win64\aces.exe] => (Allow) C:\program files (x86)\warthunder\win64\aces.exe
FirewallRules: [{ED86B7E2-FC10-44A6-8E6E-13354104E54B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{83C8E7B7-8626-4B7F-B43C-DD1085469DCC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{17F50FB9-23FE-48BC-913D-7BAD454C3C33}] => (Allow) C:\Users\uzivatel\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{074CA26E-2A75-4858-B67A-F1B0D3E3CDF1}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{19BCCD38-B5EB-45BB-854A-0739AD12CC33}] => (Allow) LPort=2869
FirewallRules: [{FB1E9532-FFF6-428F-81A3-58C87732592A}] => (Allow) LPort=1900
FirewallRules: [{615276AE-9947-4D69-A7F6-45C8ECFD6322}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{B5CD2EC3-6401-411F-9D0F-986B9743BFFF}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{72ED8E53-B7C0-4E58-A75D-9B4C23B0813A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\IL-2 Sturmovik Cliffs of Dover\Launcher.exe
FirewallRules: [{17EB095C-06EE-4275-AA3B-AA6A2FDDF922}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\IL-2 Sturmovik Cliffs of Dover\Launcher.exe
FirewallRules: [{13627104-A54B-4305-885B-3E28E2791726}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{9759D0B4-334C-40C6-8791-6E33DCF9E59B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{035EF86E-C246-4280-BE0A-21532B8F764A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{4B0C9F96-0578-44E6-BDCB-617D68219755}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{67E42BE9-EFF7-4B35-8C45-8DF5755180D4}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{BBBDADCD-60C8-47E7-ADFC-380A19E9C9F0}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{12FC15B3-FE6A-433E-AB1E-709E4E44A74B}] => (Allow) C:\Program Files (x86)\WarThunder\launcher.exe
FirewallRules: [{F82D9B7B-D915-4D26-8033-8ECCC8950062}] => (Allow) C:\Program Files (x86)\WarThunder\launcher.exe
FirewallRules: [{CF0D98D9-461C-4DE6-BD7F-D14B275CDE87}] => (Allow) LPort=80
FirewallRules: [{E9E52AE3-29C8-4938-9D45-183323E0943D}] => (Allow) LPort=443
FirewallRules: [{5E1F8B56-88D7-42EE-B9A8-3B285E5B2455}] => (Allow) LPort=20010
FirewallRules: [{0E497A10-B786-43BE-A2A8-9271C0621A8A}] => (Allow) LPort=3478
FirewallRules: [{0650B022-0AAF-4FA8-AF1D-340465B03865}] => (Allow) LPort=7850
FirewallRules: [{001F2F4E-0942-4A78-A909-065319121E62}] => (Allow) LPort=7852
FirewallRules: [{A480288D-E629-4949-A9E7-997822F96C4A}] => (Allow) LPort=7853
FirewallRules: [{6C58B760-A873-4E7B-9BD4-B89B9FF986CD}] => (Allow) LPort=27022
FirewallRules: [{965C54E0-CF2C-46C1-8D1C-E59A8F95A2ED}] => (Allow) LPort=6881
FirewallRules: [{E3D8F123-2DCB-471D-98BB-A7133A7CC183}] => (Allow) LPort=33333
FirewallRules: [{D204E4EE-09E3-45D9-932C-045C36B655A3}] => (Allow) LPort=20443
FirewallRules: [{3C12EB5D-029D-4BC5-B81D-EF03078557A1}] => (Allow) LPort=8090
FirewallRules: [TCP Query User{3A7539A6-EF10-4ED2-8727-FBBEFAFE6AFC}C:\program files (x86)\warthunder\aces.exe] => (Allow) C:\program files (x86)\warthunder\aces.exe
FirewallRules: [UDP Query User{A473EFD5-53AA-4846-B114-4FB06207D99D}C:\program files (x86)\warthunder\aces.exe] => (Allow) C:\program files (x86)\warthunder\aces.exe
FirewallRules: [{659624BC-8DB8-4E4C-93A7-69249CCBC599}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{7DC664EB-8932-4AFC-A2EA-AC72FC4FF24F}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{9A4EEF04-39F3-41E1-95CD-EBC979DC43EE}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [{7184B837-162B-47AC-AEA5-D92E30DF4C13}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [TCP Query User{05CD235E-0B64-4934-BC43-D5D8CD479998}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [UDP Query User{AB6BDD65-00DA-4E74-976A-EA82F29685BB}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [{624233A1-3E00-4647-9314-FF2F29CB32E2}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{69254415-EFA3-423C-825F-1210F1C0DBF7}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{AF354DE5-C8DF-4B3E-8E77-A860F2F7F143}C:\program files (x86)\warthunder\launcher.exe] => (Allow) C:\program files (x86)\warthunder\launcher.exe
FirewallRules: [UDP Query User{4E996B5E-D77A-4AFE-9C21-AEDA95E7FF8F}C:\program files (x86)\warthunder\launcher.exe] => (Allow) C:\program files (x86)\warthunder\launcher.exe
FirewallRules: [TCP Query User{971EB48D-1481-492E-9B7F-B1CCF1956407}C:\program files (x86)\warthunder\aces.exe] => (Allow) C:\program files (x86)\warthunder\aces.exe
FirewallRules: [UDP Query User{DF84A2B3-56FF-4777-A4E6-3A0CEC369EE6}C:\program files (x86)\warthunder\aces.exe] => (Allow) C:\program files (x86)\warthunder\aces.exe
FirewallRules: [{120DC493-4DF6-4D7A-8633-04C796C17109}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Restore Points =========================

27-12-2015 19:00:06 Windows Zálohování
28-12-2015 08:28:02 Windows Zálohování

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/28/2015 08:52:57 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (12/28/2015 08:28:21 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (12/28/2015 08:19:37 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: UZIVATE-3T5RH9M)
Description: Aplikaci Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (12/28/2015 08:19:37 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: UZIVATE-3T5RH9M)
Description: Aplikaci Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (12/28/2015 08:19:36 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SkypeHost.exe verze 10.1.0.2123 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.

ID procesu: 1870

Čas spuštění: 01d1413fe2f3d75c

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe

ID hlášení: 536706df-ad33-11e5-9c01-f04da229a4b5

Úplný název balíčku s chybou: Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe

ID aplikace související s balíčkem s chybou: ppleae38af2e007f4358a809ac99a64a67c1

Error: (12/28/2015 08:17:43 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: UZIVATE-3T5RH9M)
Description: Aplikaci Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (12/28/2015 07:54:08 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro Avast.VC110.DebugCRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1"1 se nezdařilo.
Závislé sestavení Avast.VC110.DebugCRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (12/28/2015 07:51:37 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro Avast.VC110.DebugCRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1"1 se nezdařilo.
Závislé sestavení Avast.VC110.DebugCRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (12/27/2015 11:20:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MicrosoftEdge.exe, verze: 11.0.10586.35, časové razítko: 0x56650318
Název chybujícího modulu: CoreUIComponents.dll, verze: 0.0.0.0, časové razítko: 0x565185e4
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000780cd
ID chybujícího procesu: 0x1dbc
Čas spuštění chybující aplikace: 0xMicrosoftEdge.exe0
Cesta k chybující aplikaci: MicrosoftEdge.exe1
Cesta k chybujícímu modulu: MicrosoftEdge.exe2
ID zprávy: MicrosoftEdge.exe3
Úplný název chybujícího balíčku: MicrosoftEdge.exe4
ID aplikace související s chybujícím balíčkem: MicrosoftEdge.exe5

Error: (12/27/2015 11:06:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MicrosoftEdge.exe, verze: 11.0.10586.35, časové razítko: 0x56650318
Název chybujícího modulu: MicrosoftEdge.exe, verze: 11.0.10586.35, časové razítko: 0x56650318
Kód výjimky: 0xc000041d
Posun chyby: 0x000000000001d1d7
ID chybujícího procesu: 0x340
Čas spuštění chybující aplikace: 0xMicrosoftEdge.exe0
Cesta k chybující aplikaci: MicrosoftEdge.exe1
Cesta k chybujícímu modulu: MicrosoftEdge.exe2
ID zprávy: MicrosoftEdge.exe3
Úplný název chybujícího balíčku: MicrosoftEdge.exe4
ID aplikace související s chybujícím balíčkem: MicrosoftEdge.exe5


System errors:
=============
Error: (12/28/2015 08:19:37 AM) (Source: DCOM) (EventID: 10010) (User: UZIVATE-3T5RH9M)
Description: App.AppXtjcey7sh4wvcw7hy21b0nmp0bq18dyzd.mca

Error: (12/28/2015 08:17:43 AM) (Source: DCOM) (EventID: 10010) (User: UZIVATE-3T5RH9M)
Description: App.AppXck5aaxyarfx8gxrgfk6pvakmmxeqvepc.mca

Error: (12/28/2015 08:14:39 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba NetTcpActivator závisí na službě NetTcpPortSharing, která neuspěla při spuštění v důsledku následující chyby:
%%1058

Error: (12/28/2015 08:13:41 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Hostitel synchronizace_d492e3 bylo dosaženo časového limitu (30000 ms).

Error: (12/28/2015 08:13:41 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Úložiště uživatelských dat_d492e3 bylo dosaženo časového limitu (30000 ms).

Error: (12/28/2015 08:13:31 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Přístup k uživatelským datům_d492e3 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (12/28/2015 08:13:31 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Úložiště uživatelských dat_d492e3 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (12/28/2015 08:13:31 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Data kontaktů_d492e3 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (12/28/2015 08:13:31 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_d492e3 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (12/28/2015 08:09:09 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Spybot-S&D 2 Scanner Service, ale tato akce selhala kvůli následující chybě:
%%1056


CodeIntegrity:
===================================
Date: 2015-12-27 09:26:35.679
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-27 09:26:35.629
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-27 09:26:34.713
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-27 09:26:34.700
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-27 09:26:34.664
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-27 09:26:34.651
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-27 09:26:34.607
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-27 09:26:34.595
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-27 09:26:34.558
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-27 09:26:34.474
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU E8400 @ 3.00GHz
Percentage of memory in use: 76%
Total physical RAM: 4029.61 MB
Available physical RAM: 964.35 MB
Total Virtual: 8125.61 MB
Available Virtual: 2976.66 MB

==================== Drives ================================

Drive c: (OSDisk) (Fixed) (Total:148.57 GB) (Free:17.93 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: () (CDROM) (Total:0.69 GB) (Free:0.68 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 9D79893D)
Partition 1: (Active) - (Size=148.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of Addition.txt ============================

[altrok]

Ulozte na plochu zoek.exe http://hijackthis.nl/smeenk/zoek.htm

• spustte jako spravce
• do velkeho okna zkopirujte script uvedeny nize
• kliknete na Run script
• po restartu na Vas vyskoci log (pripadne jej najdete v C:\zoek-results.log) - vlozte mi jej do pristi odpovedi

  Kód: Vybrat vše

  autoclean;
  emptyclsid;
  iedefaults;
  FFdefaults;
  CHRdefaults;

[Blondarson]

Zoek.exe v5.0.0.1 Updated 27-December-2015
Tool run by uzivatel on Łt 29.12.2015 at 8:36:56,71.
Microsoft Windows 10 Pro 10.0.10586 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\uzivatel\Downloads\zoek.exe [Scan current user] [Script inserted]

==== System Restore Info ======================

29.12.2015 8:40:19 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\Seznam.cz deleted successfully
C:\Program Files\Google deleted successfully
C:\PROGRA~3\CanonEPP deleted successfully
C:\PROGRA~3\CanonIJEPPEX2 deleted successfully
C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\Users\uzivatel\AppData\Local\ActiveSync deleted successfully
C:\Users\uzivatel\AppData\Local\NetworkTiles deleted successfully
C:\Users\uzivatel\AppData\Local\Opera Software deleted successfully
C:\Users\uzivatel\AppData\Local\PeerDistRepub deleted successfully
C:\Users\uzivatel\AppData\Local\Skype deleted successfully
C:\Users\uzivatel\AppData\Local\WarThunder deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-4112901673-1865571380-2406517598-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{82A76710-4F98-4957-92BE-99648A4E2475} deleted successfully
HKEY_USERS\S-1-5-21-4112901673-1865571380-2406517598-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{82A76710-4F98-4957-92BE-99648A4E2475} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-4112901673-1865571380-2406517598-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\Seznam.cz not found
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\WINDOWS\wininit.ini deleted
C:\WINDOWS\Syswow64\SETD0A3.tmp deleted
C:\Users\uzivatel\Desktop\Elite Unzip.lnk deleted
"C:\WINDOWS\Installer\1f97a.msi" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [28.12.2015 07:53]

==== Chromium Look ======================

Google Chrome Version: 46.0.2490.86

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[28.12.2015 07:50]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[12.10.2015 08:31]

Pine Tree - uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlihcdefnjnagpemfefaegdfdipiamnf
Avast Online Security - uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki
Skype - uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl

==== Chromium Fix ======================

C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\https_apipinetreeinfoc-a.akamaihd.net_0.localstorage deleted successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\https_apipinetreeinfoc-a.akamaihd.net_0.localstorage-journal deleted successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\https_hdapp1008-a.akamaihd.net_0.localstorage deleted successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\https_hdapp1008-a.akamaihd.net_0.localstorage-journal deleted successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_c.betrad.com_0.localstorage deleted successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage deleted successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage-journal deleted successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlihcdefnjnagpemfefaegdfdipiamnf deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkID= ... 3D475378AE"
"Default_Page_URL"="http://www.e-snet.cz"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkID= ... 3D475378AE"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.bing.com/search?q={searchTer ... DF&pc=MSE1
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.bing.com/search?q={searchTer ... DF&pc=MSE1
HKCU\SearchScopes "DefaultScope"="{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IESR02
HKCU\SearchScopes\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - http://www.bing.com/search?q={searchTer ... DF&pc=MSE1
HKCU\SearchScopes\{2A744E05-083F-4A30-A51C-9EFBC2D27142} - http://tv.seznam.cz/hledej?w={searchTer ... arch_20808
HKCU\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchT ... GB_csCZ595

==== Reset Google Chrome ======================

C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Preferences was reset successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Secure Preferences was reset successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Web Data was reset successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Web Data-journal was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D2A425F405350054677A7A857BC05200 deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4F524A2D-5350-4500-76A7-A758B70C2500} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\D2A425F405350054677A7A857BC05200 deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\uzivatel\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\uzivatel\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\uzivatel\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\uzivatel\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Profile 1\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=41 folders=31 28904785 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\uzivatel\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on Łt 29.12.2015 at 9:02:19,42 ======================

[altrok]

Problemy pretrvavaji?


Ulozte na plochu RogueKiller - http://www.bleepingcomputer.com/download/roguekiller/

• spustte jako spravce
• prijmete EULA podminky kliknutim na Accept
• vpravo kliknete na Scan (potrva az nekolik desitek minut)
• vpravo vyberte Report
• vpravo dole Export TXT
• report ulozte na plochu a jeho obsah vlozte do pristi odpovedi

[Blondarson]

RogueKiller V11.0.5.0 [Dec 28 2015] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com

Operační systém : Windows 10 (10.0.10586) 64 bits version
Spuštěno : Normální režim
Uživatel : uzivatel [Práva správce]
Started from : C:\Users\uzivatel\Downloads\RogueKiller.exe
Mód : Prohledat -- Datum : 12/29/2015 20:42:39

¤¤¤ Procesy : 0 ¤¤¤

¤¤¤ Registry : 3 ¤¤¤
[PUP] (X64) HKEY_LOCAL_MACHINE\Software\Partner -> Nalezeno
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-4112901673-1865571380-2406517598-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Nalezeno
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-4112901673-1865571380-2406517598-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Nalezeno

¤¤¤ Úlohy : 1 ¤¤¤
[Suspicious.Path] \Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan -- c:\Program Files\Microsoft Security Client\MpCmdRun.exe (Scan -ScheduleJob -RestrictPrivileges) -> Nalezeno

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 [Too big!] ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Nenahrán [0xc000036b]) ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: WDC WD1600AAJS-75M0A0 +++++
--- User ---
[MBR] 8e0c1bd7fcb686fdc10ad65f19fe7534
[BSP] 05fefa97bdd69287eae1e330a2b08ee9 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 152135 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 311574528 | Size: 450 MB
User = LL1 ... OK
User = LL2 ... OK

[Blondarson]

problém s reklamou jsem zaznamenal jen když jsem si klikl na spuštění nových dílů v seriálu na http://www.sledujufilmy.cz místo obrazovky, kde si spouštím film, naskočila reklama. tu jsem zrušil a pak vše makalo ok. jinak při normáním prohlížení jak Exploreru či Mozilly, už reklamní banery nevyskakují a nezasírají mi stránky. To je velká úleva!!!

připadne, že psaní je trochu opožděné. ale jen o milisekundu

[altrok]

Na malware vypada cisto, ale az budete mit cas, pustte tam jeste jeden sken. Nainstalujte MBAM a udelejte vlastni sken vsech disku - http://forum.viry.cz/viewtopic.php?f=29&t=144868

• Upozorneni: tento sken zabere od 30 minut po nekolik hodin

[Blondarson]

Super.moc dekuju za pomoc. Jste fakt borci!!! Samozrejme financne podporim forum. Mam sem report z MBAM scanu jeste zkopirovat?

[altrok]

Pokud je log cisty, neni treba.

• Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
• Oznacte jen moznost "Remove disinfection tools"
• kliknete na Run

Za financni podporu na provoz fora vam jmenem celeho tymu dekuji.