a narozdíl od printscreenů v návodu mám v FRSTLauncheru jen pět položek - chybí "internet" (jako úplně chybí, ne jen že by nebylo zaškrtnuté políčko).Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:18-04-2016
Ran by Petra (administrator) on DESKTOP-N1UJSR1 (22-04-2016 21:34:16)
Running from C:\Users\Petra Svarcova\Desktop
Loaded Profiles: Petra (Available Profiles: Petra)
Platform: Windows 10 Enterprise (X64) Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Program Files\Windows MultiPoint Server\WmsSelfHealingSvc.exe
(Microsoft Corporation) C:\Program Files\Windows MultiPoint Server\WmsSvc.exe
(Microsoft Corporation) C:\Windows\System32\inetsrv\inetinfo.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\System32\nfsclnt.exe
(Microsoft Corporation) C:\Windows\System32\snmp.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(Microsoft Corporation) C:\Windows\System32\vmms.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\System32\mqtgsvc.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation) C:\Program Files\Windows MultiPoint Server\WmsSessionAgent.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe
(Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-12-17] (Apple Inc.)
HKLM\...\Run: [MsmqIntCert] => "C:\WINDOWS\System32\regsvr32.exe" /s "C:\WINDOWS\System32\mqrt.dll"
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-10-30] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [408888 2015-06-08] (Power Software Ltd)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1867448 2015-12-18] (Adobe Systems Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595480 2016-03-20] (Oracle Corporation)
HKU\S-1-5-21-3727496388-735248901-704022088-1001\...\Run: [KSS] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe [1556448 2015-12-15] (AO Kaspersky Lab)
HKU\S-1-5-21-3727496388-735248901-704022088-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [31232 2015-07-10] (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{0c67319e-7b5e-4ad7-ba0d-12e7935227ae}: [NameServer] 93.153.117.1,93.153.117.33
Tcpip\..\Interfaces\{0c67319e-7b5e-4ad7-ba0d-12e7935227ae}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{41e7e1c1-badb-470c-95e0-496a17ac2b24}: [NameServer] 93.153.117.1,93.153.117.33
Tcpip\..\Interfaces\{41e7e1c1-badb-470c-95e0-496a17ac2b24}: [DhcpNameServer] 10.0.0.138 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-3727496388-735248901-704022088-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://windows.microsoft.com/cs-cz/hotmail/home?ocid=iehp
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-04-20] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll [2016-04-16] (Oracle Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-04-03] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-16] (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-04-20] (Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-04-03] (Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-03] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-03] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-03] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-03] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Petra Svarcova\AppData\Roaming\Mozilla\Firefox\Profiles\3nkge6ym.default
FF Homepage: hxxp://www.google.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-07] ()
FF Plugin: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-16] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-16] (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-07] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] ()
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-04-03] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-04-03] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-12] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-12] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems)
FF Extension: Adobe Acrobat DC - Create PDF - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2016-02-20]
FF Extension: Pin It button - C:\Users\Petra Svarcova\AppData\Roaming\Mozilla\Firefox\Profiles\3nkge6ym.default\Extensions\jid1-YcMV6ngYmQRA2w@jetpack.xpi [2016-01-22]
FF Extension: British English Dictionary (Marco Pinto) - C:\Users\Petra Svarcova\AppData\Roaming\Mozilla\Firefox\Profiles\3nkge6ym.default\Extensions\marcoagpinto@mail.telepac.pt [2016-03-31]
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Petra Svarcova\AppData\Roaming\Mozilla\Firefox\Profiles\3nkge6ym.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2016-02-28] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
Chrome:
=======
CHR Profile: C:\Users\Petra Svarcova\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Petra Svarcova\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-12]
CHR Extension: (Disk Google) - C:\Users\Petra Svarcova\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-12]
CHR Extension: (YouTube) - C:\Users\Petra Svarcova\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-12]
CHR Extension: (Vyhledávání Google) - C:\Users\Petra Svarcova\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petra Svarcova\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-12]
CHR Extension: (Gmail) - C:\Users\Petra Svarcova\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-12]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2016-02-12] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2838768 2016-04-03] (Microsoft Corporation)
S3 DsRoleSvc; C:\Windows\system32\dsrolesrv.dll [288256 2016-02-12] (Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2521440 2016-02-22] (ESET)
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1394360 2016-02-12] (Intel Corporation)
R2 ftpsvc; C:\Windows\system32\inetsrv\ftpsvc.dll [394752 2016-02-12] (Microsoft Corporation)
R2 HvHost; C:\Windows\System32\hvhostsvc.dll [57344 2016-02-12] (Microsoft Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [372152 2016-02-12] (Intel Corporation)
R2 IISADMIN; C:\Windows\system32\inetsrv\inetinfo.exe [16896 2016-02-12] (Microsoft Corporation)
R2 iprip; C:\Windows\System32\iprip.dll [35328 2016-02-12] (Microsoft Corporation)
R2 kss; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe [1556448 2015-12-15] (AO Kaspersky Lab)
R2 LPDSVC; C:\Windows\system32\lpdsvc.dll [48640 2016-02-12] (Microsoft Corporation)
R2 MSMQTriggers; C:\Windows\system32\mqtgsvc.exe [164864 2016-02-12] (Microsoft Corporation)
R2 NfsClnt; C:\Windows\system32\nfsclnt.exe [100352 2016-02-12] (Microsoft Corporation)
R2 SNMP; C:\Windows\System32\snmp.exe [51712 2016-02-12] (Microsoft Corporation)
R2 SNMP; C:\WINDOWS\SysWOW64\snmp.exe [46080 2016-02-12] (Microsoft Corporation)
S4 UwfServicingSvc; C:\Windows\System32\UwfServicingSvc.exe [48480 2015-11-05] (Microsoft Corporation)
R2 vmms; C:\Windows\system32\vmms.exe [12911104 2015-08-11] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
R2 Wms; C:\Program Files\Windows MultiPoint Server\WmsSvc.exe [909312 2015-07-18] (Microsoft Corporation)
R2 WmsRepair; C:\Program Files\Windows MultiPoint Server\WmsSelfHealingSvc.exe [68096 2016-02-12] (Microsoft Corporation)
S3 WMSVC; C:\Windows\system32\inetsrv\wmsvc.exe [12288 2016-02-12] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [101368 2015-12-14] (ASUS Corporation)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [53752 2016-02-12] (Intel Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [264552 2016-02-09] (ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [14976 2016-02-09] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [186784 2016-02-09] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [170792 2016-02-09] (ESET)
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [261624 2016-02-12] (Intel Corporation)
R1 hvservice; C:\Windows\System32\drivers\hvservice.sys [70496 2016-02-12] (Microsoft Corporation)
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [88256 2016-02-12] (Intel Corporation)
S3 lunparser; C:\Windows\System32\drivers\lunparser.sys [20992 2016-02-12] (Microsoft Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184304 2016-02-12] (Intel Corporation)
R3 NfsRdr; C:\Windows\System32\drivers\nfsrdr.sys [260608 2016-02-12] (Microsoft Corporation)
S3 passthruparser; C:\Windows\System32\drivers\passthruparser.sys [22528 2016-02-12] (Microsoft Corporation)
S3 pvhdparser; C:\Windows\System32\drivers\pvhdparser.sys [49152 2016-02-12] (Microsoft Corporation)
R3 RpcXdr; C:\Windows\System32\drivers\rpcxdr.sys [133120 2016-02-12] (Microsoft Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [410880 2016-02-12] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [4619520 2015-07-21] (Realtek Semiconductor Corporation )
R3 Synth3dVsp; C:\Windows\System32\drivers\synth3dvsp.sys [101888 2016-02-12] (Microsoft Corporation)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [24688 2016-04-21] ()
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
R0 uwfreg; C:\Windows\System32\drivers\uwfreg.sys [50528 2016-02-12] (Microsoft Corporation)
R0 uwfs; C:\Windows\System32\drivers\uwfs.sys [45408 2016-02-12] (Microsoft Corporation)
R0 uwfvol; C:\Windows\System32\drivers\uwfvol.sys [73568 2016-02-12] (Microsoft Corporation)
S3 vhdparser; C:\Windows\System32\drivers\vhdparser.sys [26112 2016-02-12] (Microsoft Corporation)
R2 VMSP; C:\Windows\System32\drivers\vmswitch.sys [883200 2016-03-16] (Microsoft Corporation)
S3 VMSVSF; C:\Windows\System32\drivers\vmswitch.sys [883200 2016-03-16] (Microsoft Corporation)
S3 VMSVSP; C:\Windows\System32\drivers\vmswitch.sys [883200 2016-03-16] (Microsoft Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 WinNat; C:\Windows\System32\drivers\winnat.sys [347648 2016-02-12] (Microsoft Corporation)
R3 WmsWlFltr; C:\Windows\System32\DRIVERS\WmsWlFltr.sys [48128 2016-02-12] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-04-22 21:21 - 2016-04-22 21:21 - 00016148 _____ C:\WINDOWS\system32\DESKTOP-N1UJSR1_Petra_HistoryPrediction.bin
2016-04-22 19:09 - 2016-04-22 19:09 - 00001821 _____ C:\Users\Petra Svarcova\Desktop\mbam.txt
2016-04-22 15:28 - 2016-04-22 15:28 - 00001171 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-04-22 15:28 - 2016-04-22 15:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-04-22 15:28 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-04-22 15:28 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-04-22 15:28 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-04-22 15:27 - 2016-04-22 15:23 - 22851472 _____ (Malwarebytes ) C:\Users\Petra Svarcova\Desktop\mbam-setup-2.2.1.1043.exe
2016-04-21 23:19 - 2016-04-21 23:19 - 00006970 _____ C:\Users\Petra Svarcova\Desktop\report2.txt
2016-04-21 22:57 - 2016-04-21 22:57 - 00007074 _____ C:\Users\Petra Svarcova\Desktop\report.txt
2016-04-21 22:39 - 2016-04-21 22:39 - 00024688 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2016-04-21 22:38 - 2016-04-21 23:20 - 00000000 ____D C:\ProgramData\RogueKiller
2016-04-21 22:38 - 2016-04-21 22:36 - 19764296 _____ C:\Users\Petra Svarcova\Desktop\RogueKiller.exe
2016-04-21 22:12 - 2016-04-21 22:14 - 00000000 ____D C:\AdwCleaner
2016-04-21 22:11 - 2016-04-21 22:09 - 03683904 _____ C:\Users\Petra Svarcova\Desktop\adwcleaner_5.112.exe
2016-04-21 21:36 - 2016-04-21 21:38 - 00020800 _____ C:\Users\Petra Svarcova\Desktop\Fixlog.txt
2016-04-21 19:20 - 2016-04-21 19:21 - 00034080 _____ C:\Users\Petra Svarcova\Desktop\Addition.txt
2016-04-21 19:19 - 2016-04-22 21:34 - 00019492 _____ C:\Users\Petra Svarcova\Desktop\FRST.txt
2016-04-21 19:19 - 2016-04-22 21:34 - 00000000 ____D C:\FRST
2016-04-21 19:16 - 2016-04-21 19:16 - 02375680 _____ (Farbar) C:\Users\Petra Svarcova\Desktop\FRST64.exe
2016-04-21 17:51 - 2016-04-21 17:51 - 00000000 ____D C:\Program Files (x86)\Product Key Reader
2016-04-21 17:30 - 2016-04-21 17:30 - 00016199 _____ C:\Users\Petra Svarcova\Desktop\info.txt
2016-04-21 15:00 - 2016-04-21 15:00 - 00000000 ____D C:\rsit
2016-04-21 14:59 - 2016-04-21 14:30 - 01222144 _____ C:\Users\Petra Svarcova\Desktop\RSITx64.exe
2016-04-18 18:14 - 2016-04-18 18:14 - 00000000 ____D C:\Users\Petra Svarcova\AppData\Local\GHISLER
2016-04-18 17:16 - 2016-04-18 17:21 - 00000000 ____D C:\totalcmd
2016-04-18 17:16 - 2016-04-18 17:16 - 00000000 ____D C:\Users\Petra Svarcova\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2016-04-18 17:16 - 2016-04-18 17:16 - 00000000 ____D C:\Users\Petra Svarcova\AppData\Roaming\GHISLER
2016-04-17 20:37 - 2016-04-17 20:38 - 00000000 ____D C:\Users\Petra Svarcova\AppData\Roaming\XMind
2016-04-17 20:36 - 2016-04-17 20:37 - 00000000 ____D C:\Program Files (x86)\XMind
2016-04-17 20:36 - 2016-04-17 20:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XMind
2016-04-16 17:43 - 2016-04-16 17:43 - 00002870 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-04-16 17:43 - 2016-04-16 17:43 - 00000000 ____D C:\Program Files\CCleaner
2016-04-16 10:02 - 2016-04-16 10:02 - 00000000 ____D C:\Users\Petra Svarcova\AppData\Local\ESET
2016-04-15 16:48 - 2016-04-16 17:10 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-04-15 16:48 - 2016-04-16 17:10 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2016-04-15 16:48 - 2016-04-15 16:48 - 00001128 _____ C:\Users\Public\Desktop\Kaspersky Security Scan.lnk
2016-04-15 16:48 - 2016-04-15 16:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Scan
2016-04-15 16:42 - 2016-04-15 16:42 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2016-04-13 20:15 - 2016-04-16 17:31 - 00000000 ____D C:\Users\Petra Svarcova\AppData\Local\FSDART
2016-04-13 20:10 - 2016-04-16 17:39 - 00000000 ____D C:\ProgramData\F-Secure
2016-04-13 20:10 - 2016-04-13 20:10 - 00000000 ____D C:\Users\Petra Svarcova\AppData\Local\F-Secure
2016-04-13 20:10 - 2016-04-13 19:50 - 00524248 _____ (F-Secure Corporation) C:\Users\Petra Svarcova\Desktop\F-SecureOnlineScanner.exe
2016-04-13 17:06 - 2016-03-29 08:40 - 03587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-04-13 17:06 - 2016-03-29 08:40 - 01381376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-04-13 17:06 - 2016-03-25 09:38 - 24593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-04-13 17:06 - 2016-03-25 09:25 - 12505600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-04-13 17:06 - 2016-03-25 09:14 - 07525376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-04-13 17:06 - 2016-03-25 09:13 - 19325440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-04-13 17:06 - 2016-03-25 08:55 - 11263488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-04-13 17:06 - 2016-03-25 08:54 - 05457408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-04-13 17:06 - 2016-03-16 06:56 - 03467784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-04-13 17:06 - 2016-03-16 06:56 - 01022664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-04-13 17:06 - 2016-03-16 06:56 - 00861512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-04-13 17:06 - 2016-03-16 06:55 - 02495768 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-13 17:06 - 2016-03-16 06:55 - 01951872 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-04-13 17:06 - 2016-03-16 06:55 - 01299032 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-04-13 17:06 - 2016-03-16 06:55 - 01127024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-04-13 17:06 - 2016-03-16 06:54 - 00595016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-04-13 17:06 - 2016-03-16 06:47 - 22610328 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-04-13 17:06 - 2016-03-16 06:47 - 03622272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-04-13 17:06 - 2016-03-16 06:47 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-04-13 17:06 - 2016-03-16 06:45 - 00140536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-04-13 17:06 - 2016-03-16 06:41 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2016-04-13 17:06 - 2016-03-16 06:41 - 00784224 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2016-04-13 17:06 - 2016-03-16 06:39 - 00983904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-04-13 17:06 - 2016-03-16 06:37 - 01010016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-04-13 17:06 - 2016-03-16 06:21 - 01767000 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-04-13 17:06 - 2016-03-16 06:21 - 01531888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-04-13 17:06 - 2016-03-16 06:11 - 21088728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-04-13 17:06 - 2016-03-16 06:11 - 02879024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-04-13 17:06 - 2016-03-16 06:11 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-04-13 17:06 - 2016-03-16 06:03 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-04-13 17:06 - 2016-03-16 06:00 - 21859840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-04-13 17:06 - 2016-03-16 05:56 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2016-04-13 17:06 - 2016-03-16 05:51 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-04-13 17:06 - 2016-03-16 05:49 - 01416192 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-04-13 17:06 - 2016-03-16 05:49 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-04-13 17:06 - 2016-03-16 05:45 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2016-04-13 17:06 - 2016-03-16 05:44 - 01016832 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-04-13 17:06 - 2016-03-16 05:42 - 01290240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-04-13 17:06 - 2016-03-16 05:40 - 00931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-04-13 17:06 - 2016-03-16 05:40 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-04-13 17:06 - 2016-03-16 05:40 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2016-04-13 17:06 - 2016-03-16 05:40 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-04-13 17:06 - 2016-03-16 05:40 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-04-13 17:06 - 2016-03-16 05:39 - 03363328 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-04-13 17:06 - 2016-03-16 05:38 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-04-13 17:06 - 2016-03-16 05:37 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-04-13 17:06 - 2016-03-16 05:37 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-04-13 17:06 - 2016-03-16 05:37 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-04-13 17:06 - 2016-03-16 05:36 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2016-04-13 17:06 - 2016-03-16 05:36 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-04-13 17:06 - 2016-03-16 05:36 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-04-13 17:06 - 2016-03-16 05:36 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\cemapi.dll
2016-04-13 17:06 - 2016-03-16 05:36 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-04-13 17:06 - 2016-03-16 05:36 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-04-13 17:06 - 2016-03-16 05:36 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-04-13 17:06 - 2016-03-16 05:36 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-04-13 17:06 - 2016-03-16 05:35 - 01794560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-04-13 17:06 - 2016-03-16 05:35 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxApplicabilityEngine.dll
2016-04-13 17:06 - 2016-03-16 05:34 - 01871872 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-04-13 17:06 - 2016-03-16 05:32 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-04-13 17:06 - 2016-03-16 05:21 - 18796544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-04-13 17:06 - 2016-03-16 05:18 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2016-04-13 17:06 - 2016-03-16 05:17 - 03680256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-04-13 17:06 - 2016-03-16 05:17 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-04-13 17:06 - 2016-03-16 05:17 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2016-04-13 17:06 - 2016-03-16 05:17 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxSip.dll
2016-04-13 17:06 - 2016-03-16 05:17 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-04-13 17:06 - 2016-03-16 05:14 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2016-04-13 17:06 - 2016-03-16 05:13 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2016-04-13 17:06 - 2016-03-16 05:13 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2016-04-13 17:06 - 2016-03-16 05:13 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2016-04-13 17:06 - 2016-03-16 05:13 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cemapi.dll
2016-04-13 17:06 - 2016-03-16 05:13 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2016-04-13 17:06 - 2016-03-16 05:13 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-04-13 17:06 - 2016-03-16 05:11 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-04-13 17:05 - 2016-03-16 06:55 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-04-13 17:05 - 2016-03-16 06:46 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-04-13 17:05 - 2016-03-16 06:41 - 00958816 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2016-04-13 17:05 - 2016-03-16 06:41 - 00927584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2016-04-13 17:05 - 2016-03-16 06:41 - 00607416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-04-13 17:05 - 2016-03-16 06:41 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-04-13 17:05 - 2016-03-16 06:08 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-04-13 17:05 - 2016-03-16 06:06 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-04-13 17:05 - 2016-03-16 06:05 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-04-13 17:05 - 2016-03-16 06:03 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-04-13 17:05 - 2016-03-16 05:56 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2016-04-13 17:05 - 2016-03-16 05:55 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2016-04-13 17:05 - 2016-03-16 05:55 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2016-04-13 17:05 - 2016-03-16 05:55 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2016-04-13 17:05 - 2016-03-16 05:55 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-04-13 17:05 - 2016-03-16 05:51 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-04-13 17:05 - 2016-03-16 05:47 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-04-13 17:05 - 2016-03-16 05:47 - 00511488 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-04-13 17:05 - 2016-03-16 05:47 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-04-13 17:05 - 2016-03-16 05:46 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2016-04-13 17:05 - 2016-03-16 05:43 - 00573952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-04-13 17:05 - 2016-03-16 05:43 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-04-13 17:05 - 2016-03-16 05:42 - 02180608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-04-13 17:05 - 2016-03-16 05:42 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-04-13 17:05 - 2016-03-16 05:41 - 00950272 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-04-13 17:05 - 2016-03-16 05:40 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-04-13 17:05 - 2016-03-16 05:40 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2016-04-13 17:05 - 2016-03-16 05:40 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2016-04-13 17:05 - 2016-03-16 05:39 - 00883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmswitch.sys
2016-04-13 17:05 - 2016-03-16 05:39 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-04-13 17:05 - 2016-03-16 05:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-04-13 17:05 - 2016-03-16 05:37 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-04-13 17:05 - 2016-03-16 05:37 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-04-13 17:05 - 2016-03-16 05:37 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-04-13 17:05 - 2016-03-16 05:36 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-04-13 17:05 - 2016-03-16 05:36 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2016-04-13 17:05 - 2016-03-16 05:36 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-04-13 17:05 - 2016-03-16 05:36 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2016-04-13 17:05 - 2016-03-16 05:36 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-04-13 17:05 - 2016-03-16 05:36 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-04-13 17:05 - 2016-03-16 05:35 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2016-04-13 17:05 - 2016-03-16 05:35 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2016-04-13 17:05 - 2016-03-16 05:35 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2016-04-13 17:05 - 2016-03-16 05:33 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-04-13 17:05 - 2016-03-16 05:31 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2016-04-13 17:05 - 2016-03-16 05:31 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2016-04-13 17:05 - 2016-03-16 05:31 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll
2016-04-13 17:05 - 2016-03-16 05:28 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwbase.dll
2016-04-13 17:05 - 2016-03-16 05:27 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-04-13 17:05 - 2016-03-16 05:24 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2016-04-13 17:05 - 2016-03-16 05:24 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2016-04-13 17:05 - 2016-03-16 05:24 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2016-04-13 17:05 - 2016-03-16 05:20 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-04-13 17:05 - 2016-03-16 05:18 - 00768000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-04-13 17:05 - 2016-03-16 05:17 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vaultcli.dll
2016-04-13 17:05 - 2016-03-16 05:16 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-04-13 17:05 - 2016-03-16 05:14 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2016-04-13 17:05 - 2016-03-16 05:14 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2016-04-13 17:05 - 2016-03-16 05:13 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2016-04-13 17:05 - 2016-03-16 05:13 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2016-04-13 17:05 - 2016-03-16 05:13 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\POSyncServices.dll
2016-04-13 17:05 - 2016-03-16 05:13 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll
2016-04-13 17:05 - 2016-03-16 05:13 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PimIndexMaintenanceClient.dll
2016-04-13 17:05 - 2016-03-16 05:13 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll
2016-04-13 17:05 - 2016-03-16 05:13 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll
2016-04-13 17:05 - 2016-03-16 05:12 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2016-04-13 17:05 - 2016-03-16 05:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-04-12 21:12 - 2016-04-13 17:21 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-04-10 20:36 - 2016-04-10 20:36 - 00477286 _____ C:\Users\Petra Svarcova\Downloads\Ger_ Dyslexia.pdf
2016-04-10 20:30 - 2016-04-10 20:30 - 00956380 _____ C:\Users\Petra Svarcova\Downloads\Dyslexia_ Galuschka.pdf
2016-04-07 22:25 - 2016-04-09 20:25 - 20355776 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2016-04-04 21:50 - 2016-04-16 19:54 - 00000000 ____D C:\Users\Petra Svarcova\Desktop\MUDr.Haubnerová-v
2016-03-30 22:07 - 2016-03-30 22:07 - 12057990 _____ C:\Users\Petra Svarcova\Downloads\document.pdf
2016-03-30 22:04 - 2016-03-30 22:04 - 00247820 _____ C:\Users\Petra Svarcova\Downloads\Recenze-Hendl.pdf
2016-03-30 22:00 - 2016-03-30 22:00 - 02125100 _____ C:\Users\Petra Svarcova\Downloads\RPTX_2014_1_11210_0_460937_0_162270.pdf
2016-03-30 22:00 - 2016-03-30 22:00 - 00154424 _____ C:\Users\Petra Svarcova\Downloads\RPBC_2014_1_11210_0_460937_0_162270.pdf
2016-03-30 22:00 - 2016-03-30 22:00 - 00154218 _____ C:\Users\Petra Svarcova\Downloads\RPBE_2014_1_11210_0_460937_0_162270.pdf
2016-03-30 21:58 - 2016-03-30 21:58 - 00193102 _____ C:\Users\Petra Svarcova\Downloads\Posudek oponenta_INFo zdroje ve farmacii.pdf
2016-03-26 23:32 - 2016-03-26 23:32 - 00000000 ____D C:\Users\Petra Svarcova\Documents\Vlastní šablony Office
2016-03-26 19:32 - 2016-03-26 19:32 - 14905374 _____ C:\Users\Petra Svarcova\Downloads\Specifické poruchy učení_diplomová práce.pdf
2016-03-26 17:58 - 2016-03-26 17:58 - 00000000 ____D C:\Users\Petra Svarcova\AppData\Local\Microsoft Help
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-04-22 21:25 - 2016-02-12 22:58 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-04-22 21:23 - 2016-02-12 22:35 - 02105588 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-04-22 21:23 - 2016-02-12 19:10 - 00850854 _____ C:\WINDOWS\system32\perfh005.dat
2016-04-22 21:23 - 2016-02-12 19:10 - 00197430 _____ C:\WINDOWS\system32\perfc005.dat
2016-04-22 21:23 - 2015-07-10 13:02 - 00000000 ____D C:\WINDOWS\INF
2016-04-22 21:22 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-04-22 21:21 - 2016-02-20 14:56 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-04-22 21:21 - 2016-02-12 22:44 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-04-22 21:19 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-04-22 21:18 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-04-22 20:20 - 2016-02-12 15:07 - 00004182 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{8A126287-9F83-4A8A-8A9B-500E99003B69}
2016-04-22 15:33 - 2016-02-12 18:42 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-04-21 23:10 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-04-21 22:33 - 2016-02-12 22:40 - 00000000 ____D C:\Users\Petra Svarcova\AppData\Local\Packages
2016-04-21 21:41 - 2015-07-10 14:20 - 00343952 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-04-21 21:37 - 2016-02-12 18:36 - 00000000 ____D C:\WINDOWS\System32\Tasks\R@1n-KMS
2016-04-20 22:42 - 2015-07-10 13:04 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-04-20 22:40 - 2016-02-12 16:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-04-20 22:36 - 2015-07-10 13:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-18 22:25 - 2016-02-12 22:40 - 00000000 ____D C:\Users\Petra Svarcova
2016-04-18 22:16 - 2016-02-21 23:13 - 00000000 ____D C:\Users\Petra Svarcova\Desktop\Smichov_fyzio
2016-04-18 21:47 - 2016-02-21 23:08 - 00000000 ____D C:\Users\Petra Svarcova\Desktop\Aj_Joan
2016-04-17 20:37 - 2016-02-12 22:49 - 00000000 ____D C:\Users\Petra Svarcova\.oracle_jre_usage
2016-04-16 20:45 - 2016-02-12 22:58 - 00000892 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-04-16 17:46 - 2016-02-20 14:27 - 00000000 ____D C:\Users\Petra Svarcova\AppData\Roaming\MPC-HC
2016-04-16 17:46 - 2016-02-12 22:49 - 00000000 ____D C:\Users\Petra Svarcova\AppData\Roaming\Azureus
2016-04-16 17:44 - 2016-02-12 22:23 - 00000000 ___DC C:\WINDOWS\Panther
2016-04-16 17:07 - 2016-02-12 22:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-04-16 17:07 - 2016-02-12 22:52 - 00000000 ____D C:\ProgramData\Oracle
2016-04-16 17:07 - 2016-02-12 22:52 - 00000000 ____D C:\Program Files\Java
2016-04-16 17:06 - 2016-02-12 22:53 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2016-04-15 20:13 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache
2016-04-13 17:26 - 2016-02-12 22:41 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-04-13 17:21 - 2016-02-12 22:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-13 17:19 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-04-13 17:12 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-04-13 17:11 - 2016-02-12 16:21 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-04-13 17:07 - 2016-02-12 16:20 - 135176864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-04-12 20:54 - 2016-02-12 22:49 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-09 20:26 - 2016-02-12 22:58 - 00003982 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-04-08 19:07 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-04-07 22:25 - 2016-02-12 22:58 - 00003816 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-04-06 20:32 - 2015-07-10 13:06 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-04-06 20:32 - 2015-07-10 13:06 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-04-03 20:34 - 2016-02-21 23:11 - 00000000 ____D C:\Users\Petra Svarcova\Desktop\Knihovnictvi
2016-03-28 20:07 - 2016-02-12 14:01 - 00000000 ____D C:\Users\Petra Svarcova\AppData\Local\WinZip
2016-03-26 18:10 - 2016-02-21 23:13 - 00000000 ____D C:\Users\Petra Svarcova\Documents\Recepty
2016-03-26 16:08 - 2016-02-21 23:22 - 00000000 ____D C:\Users\Petra Svarcova\Documents\FYZIOTERAPIE
2016-03-26 10:33 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-03-26 10:33 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-03-26 10:33 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-03-26 10:33 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
==================== Files in the root of some directories =======
2016-02-12 15:41 - 2016-02-12 15:41 - 0000006 ____S () C:\ProgramData\7deb20d34559016bd60c2e57072d0de6dc6e9757
2016-02-12 22:52 - 2016-02-12 22:52 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
C:\Users\Petra Svarcova\AppData\Local\Temp\dllnt_dump.dll
C:\Users\Petra Svarcova\AppData\Local\Temp\libeay32.dll
C:\Users\Petra Svarcova\AppData\Local\Temp\msvcr120.dll
C:\Users\Petra Svarcova\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-04-21 15:18
==================== End of FRST.txt ============================
Zbytky po Avastu odinstalujte pomoci oficialniho odinstalatoru - 
Přispějete na provoz fóra?