Dobrý den,
dovoluji si vás poprosit o kontrolu logu, jelikož poslední dobou mám velmi zpomalený internet. Nemohu si ani pustit video na YT. Na svém PC pozoruji, že i když tam nic nedělám a mám jen zapnutou plochu, tak větrák jede na plný výkon, což dříve nedělalo (hlavně když mám SSD, tak dříve byl totálně potichu). Když spustím správce úloh, tak vytížení Wi-Fi není velké, ale paměť s procesorem jedou minimálně na cca. 33%. Dále můj antivir Eset smart security po každém spuštění PC hlásí, že našel trojáka a pokaždé v jiné časti PC s tím, že ho vyléčil smazáním, což zdá se není pravda. A v neposlední řadě, když jsem dal ve správci úloh sledování prostředků, tak mi tam hodně hapruje Edge (Explorer) a to tak, že chvíli vypadá netečně najednou jeho nároky na systém začnou exponenciálně růst a zas padat, přitom ho vůbec nepoužívám.
Děkuji za případnou pomoc.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2017
Ran by user (administrator) on LENOVO-NTB (16-01-2017 22:00:54)
Running from C:\Users\user\Desktop
Loaded Profiles: user (Available Profiles: defaultuser0 & user)
Platform: Windows 10 Home Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Opera Software) C:\Program Files (x86)\Opera\42.0.2393.94\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\42.0.2393.94\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\42.0.2393.94\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\42.0.2393.94\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\42.0.2393.94\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\42.0.2393.94\opera.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079376 2016-11-29] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191568 2016-11-29] (Lenovo(beijing) Limited)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [277504 2012-07-09] (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-239169486-4084606830-2373920227-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2876704 2016-12-20] (Valve Corporation)
HKU\S-1-5-21-239169486-4084606830-2373920227-1001\...\Run: [dpinst] => C:\Users\user\AppData\Roaming\DIFX\dpinst.exe [7293280 2013-02-19] (TeamViewer GmbH)
HKU\S-1-5-21-239169486-4084606830-2373920227-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27226072 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-239169486-4084606830-2373920227-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd)
HKU\S-1-5-21-239169486-4084606830-2373920227-1001\...\Run: [Gaijin.Net Agent] => C:\Users\user\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [1798664 2016-12-29] ()
HKLM\...\Providers\b3r1vxdi: C:\Program Files (x86)\Plerbus Mapper\local64spl.dll
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
BootExecute: autocheck autochk * aswBoot.exe /M:22010e5e /wow /dir:"C:\Program Files\AVAST Software\Avast"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{333239db-8083-4662-bf17-6c779284d9a9}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{826e2ff2-22e3-4c01-836c-01b43cec027c}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
FireFox:
========
FF DefaultProfile: 7b3y3gki.default
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\7b3y3gki.default\Profiles\7b3y3gki.default [not found]
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7b3y3gki.default [2017-01-16]
FF Homepage: Mozilla\Firefox\Profiles\7b3y3gki.default -> google.com
FF Extension: (Fast search) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7b3y3gki.default\Extensions\amcontextmenu@loucypher [2016-12-23]
FF SearchPlugin: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7b3y3gki.default\searchplugins\j38sktxi.xml [2016-12-23]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-27] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-12-17] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default [2017-01-16]
CHR Extension: (Docs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-27]
CHR Extension: (Disk Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-27]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-27]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-27]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2015-03-27] (Broadcom Corporation.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2836296 2016-12-14] (ESET)
R2 IAStorDataMgrSvc; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [7168 2012-07-09] (Intel Corporation) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [337888 2016-05-03] (Intel Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-12] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-12] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-12-11] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-12-12] (NVIDIA Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [249032 2015-06-03] (Synaptics Incorporated)
S2 Themes; C:\Windows\system32\themeservice.dll [70656 2016-07-16] (Microsoft Corporation) [DependOnService: iThemes5]<==== ATTENTION
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
S2 Fogack; C:\Program Files (x86)\Gcerlearacy\CugentplkerseMapper.dll [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [173312 2015-03-27] (Broadcom Corporation.)
S2 DgiVecp; C:\Windows\SysWOW64\Drivers\DgiVecp.sys [40448 2003-07-29] (DeviceGuys, Inc.) [File not signed]
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [132272 2016-12-13] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [106768 2016-12-13] (ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15488 2016-12-13] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [180544 2016-12-13] (ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [49672 2016-12-13] (ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [77616 2016-12-13] (ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [96856 2016-12-13] (ESET)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 NETwNe64; C:\Windows\System32\drivers\NETwew00.sys [3341824 2016-07-16] (Intel Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_03205ffa8fdea79d\nvlddmkm.sys [14200880 2016-12-12] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-12-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [46016 2016-12-12] (NVIDIA Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-06-03] (Synaptics Incorporated)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
U0 aswVmm; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-01-16 22:00 - 2017-01-16 22:01 - 00011937 _____ C:\Users\user\Desktop\FRST.txt
2017-01-16 22:00 - 2017-01-16 22:00 - 00000000 ____D C:\FRST
2017-01-16 21:59 - 2017-01-16 21:59 - 00112640 _____ (forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
2017-01-16 21:58 - 2017-01-16 22:00 - 02419200 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2017-01-16 20:28 - 2017-01-16 20:28 - 00007600 _____ C:\Users\user\AppData\Local\Resmon.ResmonCfg
2017-01-15 21:47 - 2017-01-15 21:47 - 00000000 ____D C:\Users\user\Downloads\ČEŠTINA (1)
2017-01-11 12:03 - 2016-12-21 09:08 - 00245600 _____ (Microsoft Corporation) C:\Windows\system32\offlinesam.dll
2017-01-11 12:03 - 2016-12-21 09:08 - 00136032 _____ (Microsoft Corporation) C:\Windows\system32\ImplatSetup.dll
2017-01-11 12:03 - 2016-12-21 09:04 - 07816032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-01-11 12:03 - 2016-12-21 08:49 - 00328008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2017-01-11 12:03 - 2016-12-21 08:46 - 00624048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-01-11 12:03 - 2016-12-21 08:43 - 04130440 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2017-01-11 12:03 - 2016-12-21 08:43 - 01454504 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2017-01-11 12:03 - 2016-12-21 08:43 - 01071736 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2017-01-11 12:03 - 2016-12-21 08:43 - 00092512 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2017-01-11 12:03 - 2016-12-21 08:42 - 22224480 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-01-11 12:03 - 2016-12-21 08:42 - 01988560 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2017-01-11 12:03 - 2016-12-21 08:42 - 01702392 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2017-01-11 12:03 - 2016-12-21 08:42 - 01300600 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2017-01-11 12:03 - 2016-12-21 08:41 - 01600632 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2017-01-11 12:03 - 2016-12-21 08:37 - 00455520 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2017-01-11 12:03 - 2016-12-21 08:15 - 22563840 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-01-11 12:03 - 2016-12-21 08:14 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2017-01-11 12:03 - 2016-12-21 08:09 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\OneBackupHandler.dll
2017-01-11 12:03 - 2016-12-21 08:09 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BioFeedback.dll
2017-01-11 12:03 - 2016-12-21 08:08 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2017-01-11 12:03 - 2016-12-21 08:08 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2017-01-11 12:03 - 2016-12-21 08:08 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\DeveloperOptionsSettingsHandlers.dll
2017-01-11 12:03 - 2016-12-21 08:08 - 00211968 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2017-01-11 12:03 - 2016-12-21 08:07 - 00748544 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2017-01-11 12:03 - 2016-12-21 08:06 - 06285312 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2017-01-11 12:03 - 2016-12-21 08:06 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2017-01-11 12:03 - 2016-12-21 08:06 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgentUserBroker.exe
2017-01-11 12:03 - 2016-12-21 08:06 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-01-11 12:03 - 2016-12-21 08:05 - 00425984 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2017-01-11 12:03 - 2016-12-21 08:05 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\indexeddbserver.dll
2017-01-11 12:03 - 2016-12-21 08:05 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2017-01-11 12:03 - 2016-12-21 08:01 - 09131008 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2017-01-11 12:03 - 2016-12-21 08:00 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2017-01-11 12:03 - 2016-12-21 07:59 - 01908224 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2017-01-11 12:03 - 2016-12-21 07:59 - 00883712 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2017-01-11 12:03 - 2016-12-21 07:58 - 23678464 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-01-11 12:03 - 2016-12-21 07:57 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\fhsettingsprovider.dll
2017-01-11 12:03 - 2016-12-21 07:56 - 00947712 _____ (Microsoft Corporation) C:\Windows\system32\MSVP9DEC.dll
2017-01-11 12:03 - 2016-12-21 07:56 - 00936960 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
2017-01-11 12:03 - 2016-12-21 07:55 - 08129536 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2017-01-11 12:03 - 2016-12-21 07:55 - 04749312 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2017-01-11 12:03 - 2016-12-21 07:54 - 05511680 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2017-01-11 12:03 - 2016-12-21 07:53 - 06664192 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2017-01-11 12:03 - 2016-12-21 07:53 - 04474368 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2017-01-11 12:03 - 2016-12-21 07:51 - 08075776 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-01-11 12:03 - 2016-12-21 07:51 - 05611008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2017-01-11 12:03 - 2016-12-21 07:50 - 01490432 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-01-11 12:03 - 2016-12-21 07:49 - 04149248 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2017-01-11 12:03 - 2016-12-21 07:49 - 02691072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2017-01-11 12:03 - 2016-12-21 07:49 - 01062912 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2017-01-11 12:03 - 2016-12-21 07:47 - 01121280 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2017-01-11 12:03 - 2016-12-21 06:59 - 00218976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinesam.dll
2017-01-11 12:03 - 2016-12-21 06:09 - 00263472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2017-01-11 12:03 - 2016-12-21 06:02 - 03892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2017-01-11 12:03 - 2016-12-21 06:02 - 01852720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2017-01-11 12:03 - 2016-12-21 06:02 - 01360464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2017-01-11 12:03 - 2016-12-21 06:02 - 01277344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2017-01-11 12:03 - 2016-12-21 06:02 - 01201872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2017-01-11 12:03 - 2016-12-21 06:02 - 00980832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2017-01-11 12:03 - 2016-12-21 06:01 - 20969928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-01-11 12:03 - 2016-12-21 05:46 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2017-01-11 12:03 - 2016-12-21 05:43 - 00285184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-01-11 12:03 - 2016-12-21 05:41 - 00253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BioFeedback.dll
2017-01-11 12:03 - 2016-12-21 05:41 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-01-11 12:03 - 2016-12-21 05:40 - 00557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll
2017-01-11 12:03 - 2016-12-21 05:40 - 00318976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2017-01-11 12:03 - 2016-12-21 05:40 - 00237056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2017-01-11 12:03 - 2016-12-21 05:40 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe
2017-01-11 12:03 - 2016-12-21 05:39 - 01300480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll
2017-01-11 12:03 - 2016-12-21 05:39 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgentUserBroker.exe
2017-01-11 12:03 - 2016-12-21 05:38 - 00866816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Cred.dll
2017-01-11 12:03 - 2016-12-21 05:35 - 04612608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2017-01-11 12:03 - 2016-12-21 05:35 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\indexeddbserver.dll
2017-01-11 12:03 - 2016-12-21 05:34 - 07626752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-01-11 12:03 - 2016-12-21 05:33 - 19413504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-01-11 12:03 - 2016-12-21 05:32 - 19417600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-01-11 12:03 - 2016-12-21 05:30 - 05398016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2017-01-11 12:03 - 2016-12-21 05:30 - 01255936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2017-01-11 12:03 - 2016-12-21 05:27 - 00640000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
2017-01-11 12:03 - 2016-12-21 05:26 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVP9DEC.dll
2017-01-11 12:03 - 2016-12-21 05:25 - 07469056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-01-11 12:03 - 2016-12-21 05:25 - 06474752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2017-01-11 12:03 - 2016-12-21 05:24 - 06044160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2017-01-11 12:03 - 2016-12-21 05:22 - 01883648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2017-01-11 12:03 - 2016-12-14 06:41 - 01235296 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2017-01-11 12:03 - 2016-12-14 06:41 - 00590960 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2017-01-11 12:03 - 2016-12-14 06:34 - 02482280 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2017-01-11 12:03 - 2016-12-14 06:33 - 01356864 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2017-01-11 12:03 - 2016-12-14 06:23 - 00404832 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-01-11 12:03 - 2016-12-14 06:21 - 02206496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2017-01-11 12:03 - 2016-12-14 06:19 - 00584544 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2017-01-11 12:03 - 2016-12-14 06:18 - 00715104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2017-01-11 12:03 - 2016-12-14 06:18 - 00335712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2017-01-11 12:03 - 2016-12-14 06:17 - 00319288 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2017-01-11 12:03 - 2016-12-14 06:14 - 01694712 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2017-01-11 12:03 - 2016-12-14 06:14 - 00418952 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2017-01-11 12:03 - 2016-12-14 06:14 - 00089416 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2017-01-11 12:03 - 2016-12-14 06:01 - 01557808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2017-01-11 12:03 - 2016-12-14 06:01 - 00382784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2017-01-11 12:03 - 2016-12-14 06:01 - 00076984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2017-01-11 12:03 - 2016-12-14 05:48 - 01631232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2017-01-11 12:03 - 2016-12-14 05:46 - 01631232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-01-11 12:03 - 2016-12-14 05:46 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-01-11 12:03 - 2016-12-14 05:43 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\ScDeviceEnum.dll
2017-01-11 12:03 - 2016-12-14 05:42 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2017-01-11 12:03 - 2016-12-14 05:42 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2017-01-11 12:03 - 2016-12-14 05:42 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-11 12:03 - 2016-12-14 05:42 - 00167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2017-01-11 12:03 - 2016-12-14 05:41 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-01-11 12:03 - 2016-12-14 05:40 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
2017-01-11 12:03 - 2016-12-14 05:40 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudBackupSettings.dll
2017-01-11 12:03 - 2016-12-14 05:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2017-01-11 12:03 - 2016-12-14 05:39 - 00837632 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2017-01-11 12:03 - 2016-12-14 05:39 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2017-01-11 12:03 - 2016-12-14 05:39 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.CredDialogController.dll
2017-01-11 12:03 - 2016-12-14 05:38 - 17188864 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2017-01-11 12:03 - 2016-12-14 05:38 - 13869056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2017-01-11 12:03 - 2016-12-14 05:38 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\CloudBackupSettings.dll
2017-01-11 12:03 - 2016-12-14 05:38 - 00213504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.CredDialogController.dll
2017-01-11 12:03 - 2016-12-14 05:37 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2017-01-11 12:03 - 2016-12-14 05:36 - 01002496 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2017-01-11 12:03 - 2016-12-14 05:36 - 00539648 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2017-01-11 12:03 - 2016-12-14 05:36 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2017-01-11 12:03 - 2016-12-14 05:35 - 00755712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-01-11 12:03 - 2016-12-14 05:35 - 00712192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2017-01-11 12:03 - 2016-12-14 05:35 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2017-01-11 12:03 - 2016-12-14 05:35 - 00553984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2017-01-11 12:03 - 2016-12-14 05:32 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2017-01-11 12:03 - 2016-12-14 05:26 - 00932864 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-01-11 12:03 - 2016-12-14 05:26 - 00869888 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-01-11 12:03 - 2016-12-14 05:25 - 02009600 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll
2017-01-11 12:03 - 2016-12-14 05:24 - 01005568 _____ (Microsoft Corporation) C:\Windows\system32\D3D12.dll
2017-01-11 12:03 - 2016-12-14 05:24 - 00673792 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2017-01-11 12:03 - 2016-12-14 05:23 - 03134976 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2017-01-11 12:03 - 2016-12-14 05:23 - 01231872 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2017-01-11 12:03 - 2016-12-14 05:22 - 02748416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2017-01-11 12:03 - 2016-12-14 05:22 - 02317824 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-01-11 12:03 - 2016-12-14 05:22 - 01513472 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2017-01-11 12:03 - 2016-12-14 05:22 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2017-01-11 12:03 - 2016-12-14 05:21 - 03616768 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2017-01-11 12:03 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2017-01-11 12:03 - 2016-11-02 12:00 - 00534096 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2017-01-11 12:03 - 2016-11-02 11:28 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2017-01-11 12:03 - 2016-11-02 11:22 - 00337920 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2017-01-11 12:03 - 2016-11-02 11:21 - 00942080 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2017-01-11 12:03 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2017-01-11 12:02 - 2016-12-21 08:42 - 00241504 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2017-01-11 12:02 - 2016-12-21 08:13 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2017-01-11 12:02 - 2016-12-21 08:12 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\ProvPluginEng.dll
2017-01-11 12:02 - 2016-12-21 08:10 - 00234496 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2017-01-11 12:02 - 2016-12-21 08:08 - 01292288 _____ (Microsoft Corporation) C:\Windows\system32\MSVPXENC.dll
2017-01-11 12:02 - 2016-12-21 08:08 - 00349184 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2017-01-11 12:02 - 2016-12-21 07:53 - 01692672 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2017-01-11 12:02 - 2016-12-21 07:51 - 02275840 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2017-01-11 12:02 - 2016-12-21 05:24 - 05061120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2017-01-11 12:02 - 2016-12-21 05:24 - 03733504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2017-01-11 12:02 - 2016-12-21 05:24 - 00886272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2017-01-11 12:02 - 2016-12-21 05:22 - 00860672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2017-01-11 12:02 - 2016-12-14 06:08 - 00341344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-01-11 12:02 - 2016-12-14 06:06 - 00509792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2017-01-11 12:02 - 2016-12-14 05:45 - 00147968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2017-01-11 12:02 - 2016-12-14 05:40 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\ConsoleLogon.dll
2017-01-11 12:02 - 2016-12-14 05:40 - 00104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-11 12:02 - 2016-12-14 05:32 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3D12.dll
2017-01-11 12:02 - 2016-12-14 05:22 - 02998272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2017-01-11 12:02 - 2016-12-14 05:22 - 00707584 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2017-01-08 12:02 - 2017-01-08 12:02 - 00000000 ____D C:\Users\user\AppData\Local\MicrosoftEdge
2017-01-05 06:38 - 2017-01-05 06:38 - 00160484 _____ C:\Users\user\Downloads\[CzT]Transformers_Kolekce_2007_2014_CZ_EN_720pHD_.torrent
2017-01-04 06:37 - 2017-01-04 06:37 - 00033111 _____ C:\Users\user\Downloads\[CzT]November_Man_November_Man_The_2014_EN_CZ_720pHD_.torrent
2017-01-03 06:25 - 2017-01-03 06:25 - 00042774 _____ C:\Users\user\Downloads\[CzT]Kingsglaive_Final_Fantasy_XV_2016_CZ_1080pHD_.torrent
2017-01-02 09:54 - 2017-01-02 09:54 - 00030221 _____ C:\Users\user\Downloads\[CzT]Nevedomi_Oblivion_2013_CZ_1080pHD_.torrent
2016-12-31 09:39 - 2016-12-31 09:39 - 00000000 ____D C:\Users\user\AppData\Local\Gaijin
2016-12-31 09:39 - 2016-12-31 09:39 - 00000000 ____D C:\ProgramData\Gaijin
2016-12-31 09:38 - 2016-12-31 20:10 - 00000000 ____D C:\WarThunder
2016-12-31 09:38 - 2016-12-31 09:38 - 00001497 _____ C:\Users\Public\Desktop\WarThunder.lnk
2016-12-31 09:38 - 2016-12-31 09:38 - 00000000 ____D C:\Users\user\Documents\My Games
2016-12-31 09:38 - 2016-12-31 09:38 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2016-12-31 09:36 - 2016-12-31 09:37 - 07177328 _____ (Gaijin Entertainment ) C:\Users\user\Desktop\wt_launcher_1.0.1.741.exe
2016-12-29 21:56 - 2017-01-10 13:17 - 00000000 ____D C:\Users\user\AppData\Local\CrashDumps
2016-12-29 17:30 - 2016-12-29 17:30 - 00045617 _____ C:\Users\user\Downloads\[CzT]Zivi_mrtvi_The_Walking_Dead_S07E08_Hearts_Still_Beating_TvRip_720p_.torrent
2016-12-29 16:18 - 2016-12-29 16:18 - 00015670 _____ C:\Users\user\Downloads\[CzT]Zivi_mrtvi_The_Walking_Dead_S07E07_Sing_Me_a_Song_TvRip_720p_.torrent
2016-12-29 15:00 - 2016-12-30 12:09 - 00000958 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-12-29 15:00 - 2016-12-30 12:09 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-12-29 15:00 - 2016-12-29 15:02 - 00003900 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-12-29 15:00 - 2016-12-29 15:01 - 00004096 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-12-27 23:34 - 2017-01-09 22:58 - 00000000 ____D C:\Users\user\AppData\Roaming\TS3Client
2016-12-27 23:34 - 2016-12-27 23:34 - 00001241 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2016-12-27 23:34 - 2016-12-27 23:34 - 00000000 ____D C:\Users\user\AppData\Local\TeamSpeak 3 Client
2016-12-27 18:51 - 2017-01-05 22:27 - 00000000 ____D C:\Program Files\f09er35s
2016-12-27 15:54 - 2016-12-27 15:54 - 00000000 ____D C:\Users\user\AppData\Roaming\NVIDIA
2016-12-27 15:52 - 2016-12-28 10:46 - 00000000 ____D C:\Users\user\AppData\Local\NVIDIA Corporation
2016-12-27 15:52 - 2016-12-27 15:52 - 00001491 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-12-27 15:49 - 2016-12-27 15:49 - 00003990 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-27 15:49 - 2016-12-27 15:49 - 00003962 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-27 15:49 - 2016-12-27 15:49 - 00003926 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-27 15:49 - 2016-12-27 15:49 - 00003900 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-27 15:49 - 2016-12-27 15:49 - 00003738 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-27 15:49 - 2016-12-27 15:49 - 00003696 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-27 15:49 - 2016-12-27 15:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-12-27 15:49 - 2016-12-27 15:49 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-12-27 15:49 - 2016-12-12 04:03 - 01854400 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-12-27 15:49 - 2016-12-12 04:03 - 01755072 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-12-27 15:49 - 2016-12-12 04:03 - 01452480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-12-27 15:49 - 2016-12-12 04:03 - 01317312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-12-27 15:49 - 2016-12-12 04:03 - 00120256 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-12-27 15:49 - 2016-12-12 04:03 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2016-12-27 15:49 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-12-27 15:49 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-12-27 15:49 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-12-27 15:49 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-12-27 15:47 - 2016-12-12 22:27 - 00047032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2016-12-27 15:47 - 2016-12-12 04:03 - 40125496 _____ C:\Windows\system32\nvcompiler.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 35222976 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 34710584 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 28201408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 10912744 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 10803880 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 10353960 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 09158616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 08913328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 08761560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 03934504 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 03474392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 02950200 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 02587704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 01953336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437633.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437633.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 01038392 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00974784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00942528 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00894400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00802768 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00683640 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00643928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00572888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00438208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00394888 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00388544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00327408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00101824 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00091584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00046016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-12-27 15:47 - 2016-12-12 04:03 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-12-27 15:47 - 2016-12-12 04:03 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2016-12-27 14:58 - 2016-12-27 14:58 - 00002858 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-12-27 14:58 - 2016-12-27 14:58 - 00002350 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-27 14:58 - 2016-12-27 14:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-12-27 14:58 - 2016-12-27 14:58 - 00000000 ____D C:\Program Files\CCleaner
2016-12-27 14:57 - 2016-12-27 15:06 - 00003470 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-27 14:57 - 2016-12-27 15:06 - 00003346 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-12-27 14:57 - 2016-12-27 14:58 - 00000000 ____D C:\Users\user\AppData\Local\Google
2016-12-27 14:57 - 2016-12-27 14:58 - 00000000 ____D C:\Program Files (x86)\Google
2016-12-27 14:41 - 2016-12-27 14:41 - 00002106 _____ C:\Users\Public\Desktop\ESET Ochrana bankovnictví a online plateb.lnk
2016-12-27 14:41 - 2016-12-27 14:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2016-12-27 14:41 - 2016-12-27 14:41 - 00000000 ____D C:\ProgramData\ESET
2016-12-27 14:41 - 2016-12-27 14:41 - 00000000 ____D C:\Program Files\ESET
2016-12-27 14:03 - 2016-12-27 14:03 - 00000000 ____D C:\Users\user\AppData\Local\ESET
2016-12-27 14:01 - 2016-12-27 14:08 - 00034328 _____ (Sysinternals - www.sysinternals.com) C:\Windows\system32\Drivers\PROCEXP152.SYS
2016-12-27 13:59 - 2017-01-10 15:22 - 00000000 ____D C:\Program Files (x86)\Gubed
2016-12-27 13:59 - 2016-12-27 19:02 - 00000000 ____D C:\Program Files (x86)\WinArcher
2016-12-27 13:58 - 2016-12-27 14:44 - 00000000 ____D C:\ProgramData\WinSAPSvc
2016-12-27 13:56 - 2016-12-27 13:56 - 00000000 ___SD C:\Windows\SysWOW64\Microsoft
2016-12-27 13:54 - 2016-12-27 13:54 - 00001145 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-12-27 13:51 - 2017-01-10 16:00 - 00000000 ___HD C:\ProgramData\149q243c324g399
2016-12-27 13:51 - 2016-12-27 13:51 - 00016816 _____ C:\Windows\System32\Tasks\149q243c324g399
2016-12-27 13:48 - 2017-01-10 12:44 - 00000000 ____D C:\Program Files\b3r1vxdi
2016-12-27 13:05 - 2016-12-27 13:05 - 00000000 ____D C:\Program Files (x86)\j38sktxi
2016-12-26 14:58 - 2016-12-26 14:58 - 00003948 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1482760713
2016-12-26 14:58 - 2016-12-26 14:58 - 00001210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-12-26 14:58 - 2016-12-26 14:58 - 00000000 ____D C:\Users\user\AppData\Roaming\Opera Software
2016-12-26 14:58 - 2016-12-26 14:58 - 00000000 ____D C:\Users\user\AppData\Local\Opera Software
2016-12-26 14:57 - 2016-12-26 14:58 - 00000000 ____D C:\Program Files (x86)\Opera
2016-12-26 14:57 - 2016-12-26 14:57 - 01131680 _____ (Opera Software) C:\Users\user\Downloads\OperaSetup(1).exe
2016-12-26 11:22 - 2016-12-26 11:22 - 00002658 _____ C:\Users\Public\Desktop\Skype.lnk
2016-12-26 11:22 - 2016-12-26 11:22 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-12-26 11:22 - 2016-12-26 11:22 - 00000000 ____D C:\ProgramData\Skype
2016-12-26 11:22 - 2016-12-26 11:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-12-26 11:21 - 2016-12-26 11:22 - 43872728 _____ (Skype Technologies S.A.) C:\Users\user\Downloads\SkypeSetupFull.exe
2016-12-23 23:11 - 2016-12-23 23:11 - 00000000 ____D C:\Users\user\AppData\Roaming\WinRAR
2016-12-23 23:06 - 2016-12-27 14:45 - 00000000 ___HD C:\Users\user\AppData\Roaming\DIFX
2016-12-23 23:05 - 2017-01-16 21:33 - 00004198 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{667F7BBE-C027-48B6-80B6-2B9AF9F52187}
2016-12-23 23:05 - 2017-01-13 18:36 - 00000000 ____D C:\Program Files (x86)\Gcerlearacy
2016-12-23 23:05 - 2017-01-11 11:43 - 00000000 ____D C:\Program Files (x86)\Plerbus Mapper
2016-12-23 23:05 - 2016-12-27 14:45 - 00000000 ____D C:\Users\user\AppData\Roaming\Herwesymabiry
2016-12-23 23:05 - 2016-12-27 13:51 - 00016840 _____ C:\Windows\System32\Tasks\645358227d80t6674307
2016-12-23 23:05 - 2016-12-27 13:51 - 00000000 ___HD C:\ProgramData\645358227d80t6674307
2016-12-23 23:05 - 2016-12-23 23:05 - 00099678 _____ C:\Users\user\Downloads\Play WarThunder.ico
2016-12-23 23:05 - 2016-12-23 23:05 - 00006124 _____ C:\Windows\System32\Tasks\Cotagh Cache
2016-12-23 23:05 - 2016-12-23 23:05 - 00000000 ____D C:\Users\user\AppData\Roaming\Profiles
2016-12-23 23:05 - 2016-12-23 23:05 - 00000000 ____D C:\Users\user\AppData\Local\Programs
2016-12-23 23:05 - 2016-12-23 23:05 - 00000000 ____D C:\Users\user\AppData\Local\Fatergeanuverph
2016-12-23 17:05 - 2016-12-23 17:06 - 00000000 ____D C:\Users\user\Desktop\Stupava2016
2016-12-22 20:16 - 2016-12-22 20:16 - 02377944 _____ C:\Users\user\Downloads\winrar-x64-540cz.exe
2016-12-22 20:16 - 2016-12-22 20:16 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-12-22 20:16 - 2016-12-22 20:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-12-22 20:16 - 2016-12-22 20:16 - 00000000 ____D C:\Program Files\WinRAR
2016-12-22 20:11 - 2016-12-22 20:11 - 00510841 _____ C:\Users\user\Downloads\ČEŠTINA.rar
2016-12-18 20:30 - 2016-12-18 20:31 - 04121824 _____ (Husdawg, LLC) C:\Users\user\Downloads\Detection(2).exe
2016-12-17 11:57 - 2016-12-17 11:57 - 04324787 _____ C:\Users\user\Downloads\117.mp3
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-01-16 21:54 - 2016-07-16 12:45 - 00000000 ____D C:\Windows\INF
2017-01-16 21:10 - 2016-11-29 10:00 - 00000000 ____D C:\Windows\system32\SleepStudy
2017-01-16 20:35 - 2016-11-29 10:08 - 02474246 _____ C:\Windows\system32\PerfStringBackup.INI
2017-01-16 20:35 - 2016-07-16 23:25 - 00990308 _____ C:\Windows\system32\perfh005.dat
2017-01-16 20:35 - 2016-07-16 23:25 - 00246680 _____ C:\Windows\system32\perfc005.dat
2017-01-16 20:29 - 2016-11-29 10:50 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-16 20:29 - 2016-11-29 10:15 - 00000000 __SHD C:\Users\user\IntelGraphicsProfiles
2017-01-16 20:29 - 2016-11-29 10:00 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-01-16 20:29 - 2016-07-16 07:04 - 00262144 _____ C:\Windows\system32\config\BBI
2017-01-15 15:47 - 2016-11-29 10:07 - 00000000 ____D C:\Users\user\AppData\Roaming\vlc
2017-01-14 21:55 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\AppReadiness
2017-01-14 12:34 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\rescache
2017-01-13 17:53 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-13 17:53 - 2016-07-16 12:36 - 00000000 ____D C:\Windows\CbsTemp
2017-01-13 17:42 - 2016-11-29 10:02 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-01-13 17:42 - 2016-11-29 10:00 - 00224512 _____ C:\Windows\system32\FNTCACHE.DAT
2017-01-12 23:33 - 2016-07-16 12:47 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2017-01-12 23:33 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2017-01-12 23:33 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\oobe
2017-01-12 23:33 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\ShellExperiences
2017-01-12 23:33 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\Provisioning
2017-01-12 08:29 - 2016-11-29 10:06 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2017-01-11 14:11 - 2016-11-29 10:31 - 00000000 ____D C:\Windows\system32\MRT
2017-01-11 14:09 - 2016-11-29 10:31 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-10 12:26 - 2016-12-03 11:34 - 00004562 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-01-05 23:11 - 2016-11-30 06:53 - 00000000 ____D C:\Users\user\AppData\Roaming\uTorrent
2017-01-03 18:50 - 2016-11-29 16:05 - 00000000 ____D C:\Program Files (x86)\Steam
2016-12-31 09:39 - 2016-07-16 12:47 - 00000000 ___HD C:\ProgramData
2016-12-31 09:38 - 2016-07-16 12:47 - 00000000 __RHD C:\Users\Public\Desktop
2016-12-29 17:35 - 2016-11-29 10:02 - 00000000 ____D C:\Users\user\AppData\Local\Microsoft
2016-12-29 15:01 - 2016-11-29 10:06 - 00000000 ____D C:\Users\user\AppData\Local\Adobe
2016-12-29 15:01 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-12-29 15:01 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\Macromed
2016-12-29 15:00 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\Tasks
2016-12-28 21:32 - 2016-11-29 10:04 - 00000000 ____D C:\Users\user\AppData\Roaming\Skype
2016-12-27 23:34 - 2016-11-29 10:02 - 00000000 ____D C:\Users\user\AppData\Roaming
2016-12-27 18:51 - 2016-07-16 07:04 - 00000000 ___RD C:\Program Files
2016-12-27 15:53 - 2016-11-29 10:52 - 00000000 ____D C:\Users\user\AppData\Local\NVIDIA
2016-12-27 15:53 - 2016-11-29 10:14 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-12-27 15:49 - 2016-11-29 10:14 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-12-27 15:49 - 2016-11-29 10:14 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-12-27 15:49 - 2016-07-16 07:04 - 00000000 ___RD C:\Program Files (x86)
2016-12-27 14:59 - 2016-11-29 10:00 - 00000000 ____D C:\Windows\Panther
2016-12-27 14:59 - 2016-07-16 07:04 - 00000000 ____D C:\Windows\Logs
2016-12-27 14:44 - 2016-07-16 07:04 - 00000000 ____D C:\Windows\system32\CatRoot
2016-12-27 14:42 - 2016-07-16 12:47 - 00000000 ___HD C:\Windows\ELAMBKUP
2016-12-27 14:36 - 2016-11-29 10:10 - 00000000 ____D C:\Program Files\Microsoft Office
2016-12-27 14:36 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-12-27 14:36 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-12-27 14:35 - 2016-07-16 12:47 - 00000000 ___RD C:\Windows\assembly
2016-12-27 14:35 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Microsoft.NET
2016-12-27 14:35 - 2016-07-16 07:04 - 00000000 ____D C:\Program Files\Common Files
2016-12-27 09:30 - 2016-12-01 16:17 - 00000000 ____D C:\Users\user\AppData\LocalLow\Mozilla
2016-12-26 14:29 - 2016-11-29 10:02 - 00524288 ___SH C:\Users\user\NTUSER.DAT{4a3fb128-4ba3-11e6-80cd-b8ca3aed6f7f}.TMContainer00000000000000000002.regtrans-ms
2016-12-26 14:29 - 2016-11-29 10:02 - 00065536 ___SH C:\Users\user\NTUSER.DAT{4a3fb128-4ba3-11e6-80cd-b8ca3aed6f7f}.TM.blf
2016-12-26 11:22 - 2016-07-16 07:04 - 00000000 ____D C:\Program Files (x86)\Common Files
2016-12-23 23:06 - 2016-11-29 10:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-23 23:05 - 2016-07-16 12:47 - 00000918 _____ C:\Windows\system32\Drivers\etc\hosts
2016-12-23 00:13 - 2016-07-16 12:49 - 00835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-12-23 00:13 - 2016-07-16 12:49 - 00177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
==================== Files in the root of some directories =======
2017-01-16 20:28 - 2017-01-16 20:28 - 0007600 _____ () C:\Users\user\AppData\Local\Resmon.ResmonCfg
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-01-12 11:34
==================== End of FRST.txt ============================
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: (System) (Fixed) (Total:223.08 GB) (Free:101.51 GB) NTFS
Available physical RAM: 6209.51 MB
Total physical RAM: 8060.85 MB
Percentage of memory in use: 22%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: 6DE28E0F)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223.1 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWoW64\Macromed\Flash\FlashUtil32_24_0_0_186_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Smart Security 10.0.386.1 (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Smart Security 10.0.386.1 (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Personální firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\user\Desktop" je 4666 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Prosím o kontrolu logu
- Přílohy
-
- Addition.rar
- (8.41 KiB) Staženo 72 x
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
# AdwCleaner v6.042 - Log vytvořen 16/01/2017 v 22:31:43
# Aktualizováno dne 06/01/2017 z Malwarebytes
# Databáze : 2017-01-15.1 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : user - LENOVO-NTB
# Spuštěno z : C:\Users\user\Desktop\adwcleaner_6.042.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Složky ] *****
[-] Složka smazána: C:\ProgramData\WinSAPSvc
[#] Složka smazána po restartu: C:\ProgramData\winsapsvc
[-] Složka smazána: C:\Program Files (x86)\WinArcher
[#] Složka smazána po restartu: C:\Program Files (x86)\winarcher
[-] Složka smazána: C:\Program Files (x86)\Gubed
[-] Složka smazána: C:\Users\user\AppData\Roaming\Mozilla\Firefox\naweriweentcofise
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč smazán: HKU\.DEFAULT\Software\jhdbca
[#] Klíč smazán po restartu: HKU\S-1-5-18\Software\jhdbca
[-] Klíč smazán: HKLM\SOFTWARE\trotuxSoftware
[-] Klíč smazán: HKLM\SOFTWARE\ScreenShot
[-] Klíč smazán: HKLM\SOFTWARE\jhdbca
[-] Klíč smazán: HKLM\SOFTWARE\WinArcher
[-] Klíč smazán: [x64] HKLM\SOFTWARE\jhdbca
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1502 Bajty] - [16/01/2017 22:31:43]
C:\AdwCleaner\AdwCleaner[S0].txt - [1887 Bajty] - [16/01/2017 22:31:30]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1648 Bajty] ##########
# Aktualizováno dne 06/01/2017 z Malwarebytes
# Databáze : 2017-01-15.1 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : user - LENOVO-NTB
# Spuštěno z : C:\Users\user\Desktop\adwcleaner_6.042.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Složky ] *****
[-] Složka smazána: C:\ProgramData\WinSAPSvc
[#] Složka smazána po restartu: C:\ProgramData\winsapsvc
[-] Složka smazána: C:\Program Files (x86)\WinArcher
[#] Složka smazána po restartu: C:\Program Files (x86)\winarcher
[-] Složka smazána: C:\Program Files (x86)\Gubed
[-] Složka smazána: C:\Users\user\AppData\Roaming\Mozilla\Firefox\naweriweentcofise
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč smazán: HKU\.DEFAULT\Software\jhdbca
[#] Klíč smazán po restartu: HKU\S-1-5-18\Software\jhdbca
[-] Klíč smazán: HKLM\SOFTWARE\trotuxSoftware
[-] Klíč smazán: HKLM\SOFTWARE\ScreenShot
[-] Klíč smazán: HKLM\SOFTWARE\jhdbca
[-] Klíč smazán: HKLM\SOFTWARE\WinArcher
[-] Klíč smazán: [x64] HKLM\SOFTWARE\jhdbca
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1502 Bajty] - [16/01/2017 22:31:43]
C:\AdwCleaner\AdwCleaner[S0].txt - [1887 Bajty] - [16/01/2017 22:31:30]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1648 Bajty] ##########
Re: Prosím o kontrolu logu
Nový log po kontrole AdwCleanem:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2017
Ran by user (administrator) on LENOVO-NTB (16-01-2017 22:40:51)
Running from C:\Users\user\Desktop
Loaded Profiles: user (Available Profiles: defaultuser0 & user)
Platform: Windows 10 Home Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Opera Software) C:\Program Files (x86)\Opera\42.0.2393.94\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\42.0.2393.94\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\42.0.2393.94\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\42.0.2393.94\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\42.0.2393.94\opera.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Opera Software) C:\Program Files (x86)\Opera\42.0.2393.94\opera.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079376 2016-11-29] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191568 2016-11-29] (Lenovo(beijing) Limited)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [277504 2012-07-09] (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-239169486-4084606830-2373920227-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2876704 2016-12-20] (Valve Corporation)
HKU\S-1-5-21-239169486-4084606830-2373920227-1001\...\Run: [dpinst] => C:\Users\user\AppData\Roaming\DIFX\dpinst.exe [7293280 2013-02-19] (TeamViewer GmbH)
HKU\S-1-5-21-239169486-4084606830-2373920227-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27226072 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-239169486-4084606830-2373920227-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd)
HKU\S-1-5-21-239169486-4084606830-2373920227-1001\...\Run: [Gaijin.Net Agent] => C:\Users\user\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [1798664 2016-12-29] ()
HKLM\...\Providers\b3r1vxdi: C:\Program Files (x86)\Plerbus Mapper\local64spl.dll
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
BootExecute: autocheck autochk * aswBoot.exe /M:22010e5e /wow /dir:"C:\Program Files\AVAST Software\Avast"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{333239db-8083-4662-bf17-6c779284d9a9}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{826e2ff2-22e3-4c01-836c-01b43cec027c}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
FireFox:
========
FF DefaultProfile: 7b3y3gki.default
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7b3y3gki.default [2017-01-16]
FF Homepage: Mozilla\Firefox\Profiles\7b3y3gki.default -> google.com
FF Extension: (Fast search) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7b3y3gki.default\Extensions\amcontextmenu@loucypher [2016-12-23]
FF SearchPlugin: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7b3y3gki.default\searchplugins\j38sktxi.xml [2016-12-23]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-27] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-12-17] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default [2017-01-16]
CHR Extension: (Docs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-27]
CHR Extension: (Disk Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-27]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-27]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-27]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2015-03-27] (Broadcom Corporation.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2836296 2016-12-14] (ESET)
R2 IAStorDataMgrSvc; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [7168 2012-07-09] (Intel Corporation) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [337888 2016-05-03] (Intel Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-12] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-12] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-12-11] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-12-12] (NVIDIA Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [249032 2015-06-03] (Synaptics Incorporated)
S2 Themes; C:\Windows\system32\themeservice.dll [70656 2016-07-16] (Microsoft Corporation) [DependOnService: iThemes5]<==== ATTENTION
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
S2 Fogack; C:\Program Files (x86)\Gcerlearacy\CugentplkerseMapper.dll [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [173312 2015-03-27] (Broadcom Corporation.)
S2 DgiVecp; C:\Windows\SysWOW64\Drivers\DgiVecp.sys [40448 2003-07-29] (DeviceGuys, Inc.) [File not signed]
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [132272 2016-12-13] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [106768 2016-12-13] (ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15488 2016-12-13] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [180544 2016-12-13] (ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [49672 2016-12-13] (ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [77616 2016-12-13] (ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [96856 2016-12-13] (ESET)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 NETwNe64; C:\Windows\System32\drivers\NETwew00.sys [3341824 2016-07-16] (Intel Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_03205ffa8fdea79d\nvlddmkm.sys [14200880 2016-12-12] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-12-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [46016 2016-12-12] (NVIDIA Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-06-03] (Synaptics Incorporated)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
U0 aswVmm; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-01-16 22:40 - 2017-01-16 22:40 - 00015327 _____ C:\Users\user\Desktop\LM.bat
2017-01-16 22:33 - 2017-01-16 22:33 - 00001734 _____ C:\Users\user\Desktop\AdwCleaner[C0].txt
2017-01-16 22:30 - 2017-01-16 22:31 - 00000000 ____D C:\AdwCleaner
2017-01-16 22:29 - 2017-01-16 22:30 - 03988944 _____ C:\Users\user\Desktop\adwcleaner_6.042.exe
2017-01-16 22:03 - 2017-01-16 22:03 - 00008613 _____ C:\Users\user\Desktop\Addition.rar
2017-01-16 22:00 - 2017-01-16 22:41 - 00011846 _____ C:\Users\user\Desktop\FRST.txt
2017-01-16 22:00 - 2017-01-16 22:40 - 00000000 ____D C:\FRST
2017-01-16 21:59 - 2017-01-16 22:40 - 00029696 _____ C:\Users\user\AppData\Local\MSGBOX.EXE
2017-01-16 21:59 - 2017-01-16 21:59 - 00112640 _____ (forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
2017-01-16 21:58 - 2017-01-16 22:00 - 02419200 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2017-01-16 20:28 - 2017-01-16 20:28 - 00007600 _____ C:\Users\user\AppData\Local\Resmon.ResmonCfg
2017-01-15 21:47 - 2017-01-15 21:47 - 00000000 ____D C:\Users\user\Downloads\ČEŠTINA (1)
2017-01-11 12:03 - 2016-12-21 09:08 - 00245600 _____ (Microsoft Corporation) C:\Windows\system32\offlinesam.dll
2017-01-11 12:03 - 2016-12-21 09:08 - 00136032 _____ (Microsoft Corporation) C:\Windows\system32\ImplatSetup.dll
2017-01-11 12:03 - 2016-12-21 09:04 - 07816032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-01-11 12:03 - 2016-12-21 08:49 - 00328008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2017-01-11 12:03 - 2016-12-21 08:46 - 00624048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-01-11 12:03 - 2016-12-21 08:43 - 04130440 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2017-01-11 12:03 - 2016-12-21 08:43 - 01454504 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2017-01-11 12:03 - 2016-12-21 08:43 - 01071736 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2017-01-11 12:03 - 2016-12-21 08:43 - 00092512 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2017-01-11 12:03 - 2016-12-21 08:42 - 22224480 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-01-11 12:03 - 2016-12-21 08:42 - 01988560 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2017-01-11 12:03 - 2016-12-21 08:42 - 01702392 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2017-01-11 12:03 - 2016-12-21 08:42 - 01300600 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2017-01-11 12:03 - 2016-12-21 08:41 - 01600632 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2017-01-11 12:03 - 2016-12-21 08:37 - 00455520 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2017-01-11 12:03 - 2016-12-21 08:15 - 22563840 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-01-11 12:03 - 2016-12-21 08:14 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2017-01-11 12:03 - 2016-12-21 08:09 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\OneBackupHandler.dll
2017-01-11 12:03 - 2016-12-21 08:09 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BioFeedback.dll
2017-01-11 12:03 - 2016-12-21 08:08 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2017-01-11 12:03 - 2016-12-21 08:08 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2017-01-11 12:03 - 2016-12-21 08:08 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\DeveloperOptionsSettingsHandlers.dll
2017-01-11 12:03 - 2016-12-21 08:08 - 00211968 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2017-01-11 12:03 - 2016-12-21 08:07 - 00748544 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2017-01-11 12:03 - 2016-12-21 08:06 - 06285312 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2017-01-11 12:03 - 2016-12-21 08:06 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2017-01-11 12:03 - 2016-12-21 08:06 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgentUserBroker.exe
2017-01-11 12:03 - 2016-12-21 08:06 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-01-11 12:03 - 2016-12-21 08:05 - 00425984 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2017-01-11 12:03 - 2016-12-21 08:05 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\indexeddbserver.dll
2017-01-11 12:03 - 2016-12-21 08:05 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2017-01-11 12:03 - 2016-12-21 08:01 - 09131008 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2017-01-11 12:03 - 2016-12-21 08:00 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2017-01-11 12:03 - 2016-12-21 07:59 - 01908224 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2017-01-11 12:03 - 2016-12-21 07:59 - 00883712 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2017-01-11 12:03 - 2016-12-21 07:58 - 23678464 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-01-11 12:03 - 2016-12-21 07:57 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\fhsettingsprovider.dll
2017-01-11 12:03 - 2016-12-21 07:56 - 00947712 _____ (Microsoft Corporation) C:\Windows\system32\MSVP9DEC.dll
2017-01-11 12:03 - 2016-12-21 07:56 - 00936960 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
2017-01-11 12:03 - 2016-12-21 07:55 - 08129536 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2017-01-11 12:03 - 2016-12-21 07:55 - 04749312 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2017-01-11 12:03 - 2016-12-21 07:54 - 05511680 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2017-01-11 12:03 - 2016-12-21 07:53 - 06664192 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2017-01-11 12:03 - 2016-12-21 07:53 - 04474368 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2017-01-11 12:03 - 2016-12-21 07:51 - 08075776 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-01-11 12:03 - 2016-12-21 07:51 - 05611008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2017-01-11 12:03 - 2016-12-21 07:50 - 01490432 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-01-11 12:03 - 2016-12-21 07:49 - 04149248 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2017-01-11 12:03 - 2016-12-21 07:49 - 02691072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2017-01-11 12:03 - 2016-12-21 07:49 - 01062912 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2017-01-11 12:03 - 2016-12-21 07:47 - 01121280 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2017-01-11 12:03 - 2016-12-21 06:59 - 00218976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinesam.dll
2017-01-11 12:03 - 2016-12-21 06:09 - 00263472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2017-01-11 12:03 - 2016-12-21 06:02 - 03892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2017-01-11 12:03 - 2016-12-21 06:02 - 01852720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2017-01-11 12:03 - 2016-12-21 06:02 - 01360464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2017-01-11 12:03 - 2016-12-21 06:02 - 01277344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2017-01-11 12:03 - 2016-12-21 06:02 - 01201872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2017-01-11 12:03 - 2016-12-21 06:02 - 00980832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2017-01-11 12:03 - 2016-12-21 06:01 - 20969928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-01-11 12:03 - 2016-12-21 05:46 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2017-01-11 12:03 - 2016-12-21 05:43 - 00285184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-01-11 12:03 - 2016-12-21 05:41 - 00253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BioFeedback.dll
2017-01-11 12:03 - 2016-12-21 05:41 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-01-11 12:03 - 2016-12-21 05:40 - 00557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll
2017-01-11 12:03 - 2016-12-21 05:40 - 00318976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2017-01-11 12:03 - 2016-12-21 05:40 - 00237056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2017-01-11 12:03 - 2016-12-21 05:40 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe
2017-01-11 12:03 - 2016-12-21 05:39 - 01300480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll
2017-01-11 12:03 - 2016-12-21 05:39 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgentUserBroker.exe
2017-01-11 12:03 - 2016-12-21 05:38 - 00866816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Cred.dll
2017-01-11 12:03 - 2016-12-21 05:35 - 04612608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2017-01-11 12:03 - 2016-12-21 05:35 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\indexeddbserver.dll
2017-01-11 12:03 - 2016-12-21 05:34 - 07626752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-01-11 12:03 - 2016-12-21 05:33 - 19413504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-01-11 12:03 - 2016-12-21 05:32 - 19417600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-01-11 12:03 - 2016-12-21 05:30 - 05398016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2017-01-11 12:03 - 2016-12-21 05:30 - 01255936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2017-01-11 12:03 - 2016-12-21 05:27 - 00640000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
2017-01-11 12:03 - 2016-12-21 05:26 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVP9DEC.dll
2017-01-11 12:03 - 2016-12-21 05:25 - 07469056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-01-11 12:03 - 2016-12-21 05:25 - 06474752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2017-01-11 12:03 - 2016-12-21 05:24 - 06044160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2017-01-11 12:03 - 2016-12-21 05:22 - 01883648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2017-01-11 12:03 - 2016-12-14 06:41 - 01235296 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2017-01-11 12:03 - 2016-12-14 06:41 - 00590960 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2017-01-11 12:03 - 2016-12-14 06:34 - 02482280 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2017-01-11 12:03 - 2016-12-14 06:33 - 01356864 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2017-01-11 12:03 - 2016-12-14 06:23 - 00404832 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-01-11 12:03 - 2016-12-14 06:21 - 02206496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2017-01-11 12:03 - 2016-12-14 06:19 - 00584544 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2017-01-11 12:03 - 2016-12-14 06:18 - 00715104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2017-01-11 12:03 - 2016-12-14 06:18 - 00335712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2017-01-11 12:03 - 2016-12-14 06:17 - 00319288 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2017-01-11 12:03 - 2016-12-14 06:14 - 01694712 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2017-01-11 12:03 - 2016-12-14 06:14 - 00418952 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2017-01-11 12:03 - 2016-12-14 06:14 - 00089416 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2017-01-11 12:03 - 2016-12-14 06:01 - 01557808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2017-01-11 12:03 - 2016-12-14 06:01 - 00382784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2017-01-11 12:03 - 2016-12-14 06:01 - 00076984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2017-01-11 12:03 - 2016-12-14 05:48 - 01631232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2017-01-11 12:03 - 2016-12-14 05:46 - 01631232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-01-11 12:03 - 2016-12-14 05:46 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-01-11 12:03 - 2016-12-14 05:43 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\ScDeviceEnum.dll
2017-01-11 12:03 - 2016-12-14 05:42 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2017-01-11 12:03 - 2016-12-14 05:42 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2017-01-11 12:03 - 2016-12-14 05:42 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-11 12:03 - 2016-12-14 05:42 - 00167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2017-01-11 12:03 - 2016-12-14 05:41 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-01-11 12:03 - 2016-12-14 05:40 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
2017-01-11 12:03 - 2016-12-14 05:40 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudBackupSettings.dll
2017-01-11 12:03 - 2016-12-14 05:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2017-01-11 12:03 - 2016-12-14 05:39 - 00837632 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2017-01-11 12:03 - 2016-12-14 05:39 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2017-01-11 12:03 - 2016-12-14 05:39 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.CredDialogController.dll
2017-01-11 12:03 - 2016-12-14 05:38 - 17188864 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2017-01-11 12:03 - 2016-12-14 05:38 - 13869056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2017-01-11 12:03 - 2016-12-14 05:38 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\CloudBackupSettings.dll
2017-01-11 12:03 - 2016-12-14 05:38 - 00213504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.CredDialogController.dll
2017-01-11 12:03 - 2016-12-14 05:37 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2017-01-11 12:03 - 2016-12-14 05:36 - 01002496 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2017-01-11 12:03 - 2016-12-14 05:36 - 00539648 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2017-01-11 12:03 - 2016-12-14 05:36 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2017-01-11 12:03 - 2016-12-14 05:35 - 00755712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-01-11 12:03 - 2016-12-14 05:35 - 00712192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2017-01-11 12:03 - 2016-12-14 05:35 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2017-01-11 12:03 - 2016-12-14 05:35 - 00553984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2017-01-11 12:03 - 2016-12-14 05:32 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2017-01-11 12:03 - 2016-12-14 05:26 - 00932864 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-01-11 12:03 - 2016-12-14 05:26 - 00869888 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-01-11 12:03 - 2016-12-14 05:25 - 02009600 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll
2017-01-11 12:03 - 2016-12-14 05:24 - 01005568 _____ (Microsoft Corporation) C:\Windows\system32\D3D12.dll
2017-01-11 12:03 - 2016-12-14 05:24 - 00673792 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2017-01-11 12:03 - 2016-12-14 05:23 - 03134976 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2017-01-11 12:03 - 2016-12-14 05:23 - 01231872 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2017-01-11 12:03 - 2016-12-14 05:22 - 02748416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2017-01-11 12:03 - 2016-12-14 05:22 - 02317824 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-01-11 12:03 - 2016-12-14 05:22 - 01513472 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2017-01-11 12:03 - 2016-12-14 05:22 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2017-01-11 12:03 - 2016-12-14 05:21 - 03616768 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2017-01-11 12:03 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2017-01-11 12:03 - 2016-11-02 12:00 - 00534096 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2017-01-11 12:03 - 2016-11-02 11:28 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2017-01-11 12:03 - 2016-11-02 11:22 - 00337920 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2017-01-11 12:03 - 2016-11-02 11:21 - 00942080 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2017-01-11 12:03 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2017-01-11 12:02 - 2016-12-21 08:42 - 00241504 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2017-01-11 12:02 - 2016-12-21 08:13 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2017-01-11 12:02 - 2016-12-21 08:12 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\ProvPluginEng.dll
2017-01-11 12:02 - 2016-12-21 08:10 - 00234496 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2017-01-11 12:02 - 2016-12-21 08:08 - 01292288 _____ (Microsoft Corporation) C:\Windows\system32\MSVPXENC.dll
2017-01-11 12:02 - 2016-12-21 08:08 - 00349184 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2017-01-11 12:02 - 2016-12-21 07:53 - 01692672 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2017-01-11 12:02 - 2016-12-21 07:51 - 02275840 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2017-01-11 12:02 - 2016-12-21 05:24 - 05061120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2017-01-11 12:02 - 2016-12-21 05:24 - 03733504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2017-01-11 12:02 - 2016-12-21 05:24 - 00886272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2017-01-11 12:02 - 2016-12-21 05:22 - 00860672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2017-01-11 12:02 - 2016-12-14 06:08 - 00341344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-01-11 12:02 - 2016-12-14 06:06 - 00509792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2017-01-11 12:02 - 2016-12-14 05:45 - 00147968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2017-01-11 12:02 - 2016-12-14 05:40 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\ConsoleLogon.dll
2017-01-11 12:02 - 2016-12-14 05:40 - 00104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-11 12:02 - 2016-12-14 05:32 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3D12.dll
2017-01-11 12:02 - 2016-12-14 05:22 - 02998272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2017-01-11 12:02 - 2016-12-14 05:22 - 00707584 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2017-01-08 12:02 - 2017-01-08 12:02 - 00000000 ____D C:\Users\user\AppData\Local\MicrosoftEdge
2017-01-05 06:38 - 2017-01-05 06:38 - 00160484 _____ C:\Users\user\Downloads\[CzT]Transformers_Kolekce_2007_2014_CZ_EN_720pHD_.torrent
2017-01-04 06:37 - 2017-01-04 06:37 - 00033111 _____ C:\Users\user\Downloads\[CzT]November_Man_November_Man_The_2014_EN_CZ_720pHD_.torrent
2017-01-03 06:25 - 2017-01-03 06:25 - 00042774 _____ C:\Users\user\Downloads\[CzT]Kingsglaive_Final_Fantasy_XV_2016_CZ_1080pHD_.torrent
2017-01-02 09:54 - 2017-01-02 09:54 - 00030221 _____ C:\Users\user\Downloads\[CzT]Nevedomi_Oblivion_2013_CZ_1080pHD_.torrent
2016-12-31 09:39 - 2016-12-31 09:39 - 00000000 ____D C:\Users\user\AppData\Local\Gaijin
2016-12-31 09:39 - 2016-12-31 09:39 - 00000000 ____D C:\ProgramData\Gaijin
2016-12-31 09:38 - 2016-12-31 20:10 - 00000000 ____D C:\WarThunder
2016-12-31 09:38 - 2016-12-31 09:38 - 00001497 _____ C:\Users\Public\Desktop\WarThunder.lnk
2016-12-31 09:38 - 2016-12-31 09:38 - 00000000 ____D C:\Users\user\Documents\My Games
2016-12-31 09:38 - 2016-12-31 09:38 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2016-12-31 09:36 - 2016-12-31 09:37 - 07177328 _____ (Gaijin Entertainment ) C:\Users\user\Desktop\wt_launcher_1.0.1.741.exe
2016-12-29 21:56 - 2017-01-10 13:17 - 00000000 ____D C:\Users\user\AppData\Local\CrashDumps
2016-12-29 17:30 - 2016-12-29 17:30 - 00045617 _____ C:\Users\user\Downloads\[CzT]Zivi_mrtvi_The_Walking_Dead_S07E08_Hearts_Still_Beating_TvRip_720p_.torrent
2016-12-29 16:18 - 2016-12-29 16:18 - 00015670 _____ C:\Users\user\Downloads\[CzT]Zivi_mrtvi_The_Walking_Dead_S07E07_Sing_Me_a_Song_TvRip_720p_.torrent
2016-12-29 15:00 - 2016-12-30 12:09 - 00000958 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-12-29 15:00 - 2016-12-30 12:09 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-12-29 15:00 - 2016-12-29 15:02 - 00003900 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-12-29 15:00 - 2016-12-29 15:01 - 00004096 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-12-27 23:34 - 2017-01-09 22:58 - 00000000 ____D C:\Users\user\AppData\Roaming\TS3Client
2016-12-27 23:34 - 2016-12-27 23:34 - 00001241 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2016-12-27 23:34 - 2016-12-27 23:34 - 00000000 ____D C:\Users\user\AppData\Local\TeamSpeak 3 Client
2016-12-27 18:51 - 2017-01-05 22:27 - 00000000 ____D C:\Program Files\f09er35s
2016-12-27 15:54 - 2016-12-27 15:54 - 00000000 ____D C:\Users\user\AppData\Roaming\NVIDIA
2016-12-27 15:52 - 2016-12-28 10:46 - 00000000 ____D C:\Users\user\AppData\Local\NVIDIA Corporation
2016-12-27 15:52 - 2016-12-27 15:52 - 00001491 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-12-27 15:49 - 2016-12-27 15:49 - 00003990 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-27 15:49 - 2016-12-27 15:49 - 00003962 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-27 15:49 - 2016-12-27 15:49 - 00003926 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-27 15:49 - 2016-12-27 15:49 - 00003900 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-27 15:49 - 2016-12-27 15:49 - 00003738 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-27 15:49 - 2016-12-27 15:49 - 00003696 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-27 15:49 - 2016-12-27 15:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-12-27 15:49 - 2016-12-27 15:49 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-12-27 15:49 - 2016-12-12 04:03 - 01854400 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-12-27 15:49 - 2016-12-12 04:03 - 01755072 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-12-27 15:49 - 2016-12-12 04:03 - 01452480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-12-27 15:49 - 2016-12-12 04:03 - 01317312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-12-27 15:49 - 2016-12-12 04:03 - 00120256 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-12-27 15:49 - 2016-12-12 04:03 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2016-12-27 15:49 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-12-27 15:49 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-12-27 15:49 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-12-27 15:49 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-12-27 15:47 - 2016-12-12 22:27 - 00047032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2016-12-27 15:47 - 2016-12-12 04:03 - 40125496 _____ C:\Windows\system32\nvcompiler.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 35222976 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 34710584 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 28201408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 10912744 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 10803880 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 10353960 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 09158616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 08913328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 08761560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 03934504 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 03474392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 02950200 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 02587704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 01953336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437633.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437633.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 01038392 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00974784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00942528 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00894400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00802768 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00683640 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00643928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00572888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00438208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00394888 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00388544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00327408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00101824 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00091584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00046016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-12-27 15:47 - 2016-12-12 04:03 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-12-27 15:47 - 2016-12-12 04:03 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2016-12-27 14:58 - 2016-12-27 14:58 - 00002858 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-12-27 14:58 - 2016-12-27 14:58 - 00002350 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-27 14:58 - 2016-12-27 14:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-12-27 14:58 - 2016-12-27 14:58 - 00000000 ____D C:\Program Files\CCleaner
2016-12-27 14:57 - 2016-12-27 15:06 - 00003470 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-27 14:57 - 2016-12-27 15:06 - 00003346 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-12-27 14:57 - 2016-12-27 14:58 - 00000000 ____D C:\Users\user\AppData\Local\Google
2016-12-27 14:57 - 2016-12-27 14:58 - 00000000 ____D C:\Program Files (x86)\Google
2016-12-27 14:41 - 2016-12-27 14:41 - 00002106 _____ C:\Users\Public\Desktop\ESET Ochrana bankovnictví a online plateb.lnk
2016-12-27 14:41 - 2016-12-27 14:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2016-12-27 14:41 - 2016-12-27 14:41 - 00000000 ____D C:\ProgramData\ESET
2016-12-27 14:41 - 2016-12-27 14:41 - 00000000 ____D C:\Program Files\ESET
2016-12-27 14:03 - 2016-12-27 14:03 - 00000000 ____D C:\Users\user\AppData\Local\ESET
2016-12-27 14:01 - 2016-12-27 14:08 - 00034328 _____ (Sysinternals - www.sysinternals.com) C:\Windows\system32\Drivers\PROCEXP152.SYS
2016-12-27 13:56 - 2016-12-27 13:56 - 00000000 ___SD C:\Windows\SysWOW64\Microsoft
2016-12-27 13:54 - 2016-12-27 13:54 - 00001145 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-12-27 13:51 - 2017-01-10 16:00 - 00000000 ___HD C:\ProgramData\149q243c324g399
2016-12-27 13:51 - 2016-12-27 13:51 - 00016816 _____ C:\Windows\System32\Tasks\149q243c324g399
2016-12-27 13:48 - 2017-01-10 12:44 - 00000000 ____D C:\Program Files\b3r1vxdi
2016-12-27 13:05 - 2016-12-27 13:05 - 00000000 ____D C:\Program Files (x86)\j38sktxi
2016-12-26 14:58 - 2016-12-26 14:58 - 00003948 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1482760713
2016-12-26 14:58 - 2016-12-26 14:58 - 00001210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-12-26 14:58 - 2016-12-26 14:58 - 00000000 ____D C:\Users\user\AppData\Roaming\Opera Software
2016-12-26 14:58 - 2016-12-26 14:58 - 00000000 ____D C:\Users\user\AppData\Local\Opera Software
2016-12-26 14:57 - 2016-12-26 14:58 - 00000000 ____D C:\Program Files (x86)\Opera
2016-12-26 14:57 - 2016-12-26 14:57 - 01131680 _____ (Opera Software) C:\Users\user\Downloads\OperaSetup(1).exe
2016-12-26 11:22 - 2016-12-26 11:22 - 00002658 _____ C:\Users\Public\Desktop\Skype.lnk
2016-12-26 11:22 - 2016-12-26 11:22 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-12-26 11:22 - 2016-12-26 11:22 - 00000000 ____D C:\ProgramData\Skype
2016-12-26 11:22 - 2016-12-26 11:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-12-26 11:21 - 2016-12-26 11:22 - 43872728 _____ (Skype Technologies S.A.) C:\Users\user\Downloads\SkypeSetupFull.exe
2016-12-23 23:11 - 2016-12-23 23:11 - 00000000 ____D C:\Users\user\AppData\Roaming\WinRAR
2016-12-23 23:06 - 2016-12-27 14:45 - 00000000 ___HD C:\Users\user\AppData\Roaming\DIFX
2016-12-23 23:05 - 2017-01-16 21:33 - 00004198 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{667F7BBE-C027-48B6-80B6-2B9AF9F52187}
2016-12-23 23:05 - 2017-01-13 18:36 - 00000000 ____D C:\Program Files (x86)\Gcerlearacy
2016-12-23 23:05 - 2017-01-11 11:43 - 00000000 ____D C:\Program Files (x86)\Plerbus Mapper
2016-12-23 23:05 - 2016-12-27 14:45 - 00000000 ____D C:\Users\user\AppData\Roaming\Herwesymabiry
2016-12-23 23:05 - 2016-12-27 13:51 - 00016840 _____ C:\Windows\System32\Tasks\645358227d80t6674307
2016-12-23 23:05 - 2016-12-27 13:51 - 00000000 ___HD C:\ProgramData\645358227d80t6674307
2016-12-23 23:05 - 2016-12-23 23:05 - 00099678 _____ C:\Users\user\Downloads\Play WarThunder.ico
2016-12-23 23:05 - 2016-12-23 23:05 - 00006124 _____ C:\Windows\System32\Tasks\Cotagh Cache
2016-12-23 23:05 - 2016-12-23 23:05 - 00000000 ____D C:\Users\user\AppData\Roaming\Profiles
2016-12-23 23:05 - 2016-12-23 23:05 - 00000000 ____D C:\Users\user\AppData\Local\Programs
2016-12-23 23:05 - 2016-12-23 23:05 - 00000000 ____D C:\Users\user\AppData\Local\Fatergeanuverph
2016-12-23 17:05 - 2016-12-23 17:06 - 00000000 ____D C:\Users\user\Desktop\Stupava2016
2016-12-22 20:16 - 2016-12-22 20:16 - 02377944 _____ C:\Users\user\Downloads\winrar-x64-540cz.exe
2016-12-22 20:16 - 2016-12-22 20:16 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-12-22 20:16 - 2016-12-22 20:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-12-22 20:16 - 2016-12-22 20:16 - 00000000 ____D C:\Program Files\WinRAR
2016-12-22 20:11 - 2016-12-22 20:11 - 00510841 _____ C:\Users\user\Downloads\ČEŠTINA.rar
2016-12-18 20:30 - 2016-12-18 20:31 - 04121824 _____ (Husdawg, LLC) C:\Users\user\Downloads\Detection(2).exe
2016-12-17 11:57 - 2016-12-17 11:57 - 04324787 _____ C:\Users\user\Downloads\117.mp3
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-01-16 22:39 - 2016-11-29 10:08 - 02502896 _____ C:\Windows\system32\PerfStringBackup.INI
2017-01-16 22:39 - 2016-07-16 23:25 - 01005106 _____ C:\Windows\system32\perfh005.dat
2017-01-16 22:39 - 2016-07-16 23:25 - 00251080 _____ C:\Windows\system32\perfc005.dat
2017-01-16 22:32 - 2016-11-29 10:50 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-16 22:32 - 2016-11-29 10:15 - 00000000 __SHD C:\Users\user\IntelGraphicsProfiles
2017-01-16 22:32 - 2016-11-29 10:00 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-01-16 22:32 - 2016-07-16 07:04 - 00262144 _____ C:\Windows\system32\config\BBI
2017-01-16 21:54 - 2016-07-16 12:45 - 00000000 ____D C:\Windows\INF
2017-01-16 21:10 - 2016-11-29 10:00 - 00000000 ____D C:\Windows\system32\SleepStudy
2017-01-15 15:47 - 2016-11-29 10:07 - 00000000 ____D C:\Users\user\AppData\Roaming\vlc
2017-01-14 21:55 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\AppReadiness
2017-01-14 12:34 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\rescache
2017-01-13 17:53 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-13 17:53 - 2016-07-16 12:36 - 00000000 ____D C:\Windows\CbsTemp
2017-01-13 17:42 - 2016-11-29 10:02 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-01-13 17:42 - 2016-11-29 10:00 - 00224512 _____ C:\Windows\system32\FNTCACHE.DAT
2017-01-12 23:33 - 2016-07-16 12:47 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2017-01-12 23:33 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2017-01-12 23:33 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\oobe
2017-01-12 23:33 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\ShellExperiences
2017-01-12 23:33 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\Provisioning
2017-01-12 08:29 - 2016-11-29 10:06 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2017-01-11 14:11 - 2016-11-29 10:31 - 00000000 ____D C:\Windows\system32\MRT
2017-01-11 14:09 - 2016-11-29 10:31 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-10 12:26 - 2016-12-03 11:34 - 00004562 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-01-05 23:11 - 2016-11-30 06:53 - 00000000 ____D C:\Users\user\AppData\Roaming\uTorrent
2017-01-03 18:50 - 2016-11-29 16:05 - 00000000 ____D C:\Program Files (x86)\Steam
2016-12-31 09:38 - 2016-07-16 12:47 - 00000000 __RHD C:\Users\Public\Desktop
2016-12-29 17:35 - 2016-11-29 10:02 - 00000000 ____D C:\Users\user\AppData\Local\Microsoft
2016-12-29 15:01 - 2016-11-29 10:06 - 00000000 ____D C:\Users\user\AppData\Local\Adobe
2016-12-29 15:01 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-12-29 15:01 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\Macromed
2016-12-29 15:00 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\Tasks
2016-12-28 21:32 - 2016-11-29 10:04 - 00000000 ____D C:\Users\user\AppData\Roaming\Skype
2016-12-27 23:34 - 2016-11-29 10:02 - 00000000 ____D C:\Users\user\AppData\Roaming
2016-12-27 18:51 - 2016-07-16 07:04 - 00000000 ___RD C:\Program Files
2016-12-27 15:53 - 2016-11-29 10:52 - 00000000 ____D C:\Users\user\AppData\Local\NVIDIA
2016-12-27 15:53 - 2016-11-29 10:14 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-12-27 15:49 - 2016-11-29 10:14 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-12-27 15:49 - 2016-11-29 10:14 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-12-27 14:59 - 2016-11-29 10:00 - 00000000 ____D C:\Windows\Panther
2016-12-27 14:59 - 2016-07-16 07:04 - 00000000 ____D C:\Windows\Logs
2016-12-27 14:44 - 2016-07-16 07:04 - 00000000 ____D C:\Windows\system32\CatRoot
2016-12-27 14:42 - 2016-07-16 12:47 - 00000000 ___HD C:\Windows\ELAMBKUP
2016-12-27 14:36 - 2016-11-29 10:10 - 00000000 ____D C:\Program Files\Microsoft Office
2016-12-27 14:36 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-12-27 14:36 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-12-27 14:35 - 2016-07-16 12:47 - 00000000 ___RD C:\Windows\assembly
2016-12-27 14:35 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Microsoft.NET
2016-12-27 14:35 - 2016-07-16 07:04 - 00000000 ____D C:\Program Files\Common Files
2016-12-27 09:30 - 2016-12-01 16:17 - 00000000 ____D C:\Users\user\AppData\LocalLow\Mozilla
2016-12-26 14:29 - 2016-11-29 10:02 - 00524288 ___SH C:\Users\user\NTUSER.DAT{4a3fb128-4ba3-11e6-80cd-b8ca3aed6f7f}.TMContainer00000000000000000002.regtrans-ms
2016-12-26 14:29 - 2016-11-29 10:02 - 00065536 ___SH C:\Users\user\NTUSER.DAT{4a3fb128-4ba3-11e6-80cd-b8ca3aed6f7f}.TM.blf
2016-12-26 11:22 - 2016-07-16 07:04 - 00000000 ____D C:\Program Files (x86)\Common Files
2016-12-23 23:06 - 2016-11-29 10:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-23 23:05 - 2016-07-16 12:47 - 00000918 _____ C:\Windows\system32\Drivers\etc\hosts
2016-12-23 00:13 - 2016-07-16 12:49 - 00835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-12-23 00:13 - 2016-07-16 12:49 - 00177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
==================== Files in the root of some directories =======
2017-01-16 21:59 - 2017-01-16 22:40 - 0029696 _____ () C:\Users\user\AppData\Local\MSGBOX.EXE
2017-01-16 20:28 - 2017-01-16 20:28 - 0007600 _____ () C:\Users\user\AppData\Local\Resmon.ResmonCfg
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-01-12 11:34
==================== End of FRST.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2017
Ran by user (administrator) on LENOVO-NTB (16-01-2017 22:40:51)
Running from C:\Users\user\Desktop
Loaded Profiles: user (Available Profiles: defaultuser0 & user)
Platform: Windows 10 Home Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Opera Software) C:\Program Files (x86)\Opera\42.0.2393.94\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\42.0.2393.94\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\42.0.2393.94\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\42.0.2393.94\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\42.0.2393.94\opera.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Opera Software) C:\Program Files (x86)\Opera\42.0.2393.94\opera.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079376 2016-11-29] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191568 2016-11-29] (Lenovo(beijing) Limited)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [277504 2012-07-09] (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-239169486-4084606830-2373920227-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2876704 2016-12-20] (Valve Corporation)
HKU\S-1-5-21-239169486-4084606830-2373920227-1001\...\Run: [dpinst] => C:\Users\user\AppData\Roaming\DIFX\dpinst.exe [7293280 2013-02-19] (TeamViewer GmbH)
HKU\S-1-5-21-239169486-4084606830-2373920227-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27226072 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-239169486-4084606830-2373920227-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd)
HKU\S-1-5-21-239169486-4084606830-2373920227-1001\...\Run: [Gaijin.Net Agent] => C:\Users\user\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [1798664 2016-12-29] ()
HKLM\...\Providers\b3r1vxdi: C:\Program Files (x86)\Plerbus Mapper\local64spl.dll
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
BootExecute: autocheck autochk * aswBoot.exe /M:22010e5e /wow /dir:"C:\Program Files\AVAST Software\Avast"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{333239db-8083-4662-bf17-6c779284d9a9}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{826e2ff2-22e3-4c01-836c-01b43cec027c}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
FireFox:
========
FF DefaultProfile: 7b3y3gki.default
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7b3y3gki.default [2017-01-16]
FF Homepage: Mozilla\Firefox\Profiles\7b3y3gki.default -> google.com
FF Extension: (Fast search) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7b3y3gki.default\Extensions\amcontextmenu@loucypher [2016-12-23]
FF SearchPlugin: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7b3y3gki.default\searchplugins\j38sktxi.xml [2016-12-23]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-27] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-12-17] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default [2017-01-16]
CHR Extension: (Docs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-27]
CHR Extension: (Disk Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-27]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-27]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-27]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2015-03-27] (Broadcom Corporation.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2836296 2016-12-14] (ESET)
R2 IAStorDataMgrSvc; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [7168 2012-07-09] (Intel Corporation) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [337888 2016-05-03] (Intel Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-12] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-12] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-12-11] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-12-12] (NVIDIA Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [249032 2015-06-03] (Synaptics Incorporated)
S2 Themes; C:\Windows\system32\themeservice.dll [70656 2016-07-16] (Microsoft Corporation) [DependOnService: iThemes5]<==== ATTENTION
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
S2 Fogack; C:\Program Files (x86)\Gcerlearacy\CugentplkerseMapper.dll [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [173312 2015-03-27] (Broadcom Corporation.)
S2 DgiVecp; C:\Windows\SysWOW64\Drivers\DgiVecp.sys [40448 2003-07-29] (DeviceGuys, Inc.) [File not signed]
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [132272 2016-12-13] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [106768 2016-12-13] (ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15488 2016-12-13] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [180544 2016-12-13] (ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [49672 2016-12-13] (ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [77616 2016-12-13] (ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [96856 2016-12-13] (ESET)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 NETwNe64; C:\Windows\System32\drivers\NETwew00.sys [3341824 2016-07-16] (Intel Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_03205ffa8fdea79d\nvlddmkm.sys [14200880 2016-12-12] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-12-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [46016 2016-12-12] (NVIDIA Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-06-03] (Synaptics Incorporated)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
U0 aswVmm; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-01-16 22:40 - 2017-01-16 22:40 - 00015327 _____ C:\Users\user\Desktop\LM.bat
2017-01-16 22:33 - 2017-01-16 22:33 - 00001734 _____ C:\Users\user\Desktop\AdwCleaner[C0].txt
2017-01-16 22:30 - 2017-01-16 22:31 - 00000000 ____D C:\AdwCleaner
2017-01-16 22:29 - 2017-01-16 22:30 - 03988944 _____ C:\Users\user\Desktop\adwcleaner_6.042.exe
2017-01-16 22:03 - 2017-01-16 22:03 - 00008613 _____ C:\Users\user\Desktop\Addition.rar
2017-01-16 22:00 - 2017-01-16 22:41 - 00011846 _____ C:\Users\user\Desktop\FRST.txt
2017-01-16 22:00 - 2017-01-16 22:40 - 00000000 ____D C:\FRST
2017-01-16 21:59 - 2017-01-16 22:40 - 00029696 _____ C:\Users\user\AppData\Local\MSGBOX.EXE
2017-01-16 21:59 - 2017-01-16 21:59 - 00112640 _____ (forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
2017-01-16 21:58 - 2017-01-16 22:00 - 02419200 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2017-01-16 20:28 - 2017-01-16 20:28 - 00007600 _____ C:\Users\user\AppData\Local\Resmon.ResmonCfg
2017-01-15 21:47 - 2017-01-15 21:47 - 00000000 ____D C:\Users\user\Downloads\ČEŠTINA (1)
2017-01-11 12:03 - 2016-12-21 09:08 - 00245600 _____ (Microsoft Corporation) C:\Windows\system32\offlinesam.dll
2017-01-11 12:03 - 2016-12-21 09:08 - 00136032 _____ (Microsoft Corporation) C:\Windows\system32\ImplatSetup.dll
2017-01-11 12:03 - 2016-12-21 09:04 - 07816032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-01-11 12:03 - 2016-12-21 08:49 - 00328008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2017-01-11 12:03 - 2016-12-21 08:46 - 00624048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-01-11 12:03 - 2016-12-21 08:43 - 04130440 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2017-01-11 12:03 - 2016-12-21 08:43 - 01454504 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2017-01-11 12:03 - 2016-12-21 08:43 - 01071736 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2017-01-11 12:03 - 2016-12-21 08:43 - 00092512 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2017-01-11 12:03 - 2016-12-21 08:42 - 22224480 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-01-11 12:03 - 2016-12-21 08:42 - 01988560 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2017-01-11 12:03 - 2016-12-21 08:42 - 01702392 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2017-01-11 12:03 - 2016-12-21 08:42 - 01300600 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2017-01-11 12:03 - 2016-12-21 08:41 - 01600632 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2017-01-11 12:03 - 2016-12-21 08:37 - 00455520 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2017-01-11 12:03 - 2016-12-21 08:15 - 22563840 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-01-11 12:03 - 2016-12-21 08:14 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2017-01-11 12:03 - 2016-12-21 08:09 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\OneBackupHandler.dll
2017-01-11 12:03 - 2016-12-21 08:09 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BioFeedback.dll
2017-01-11 12:03 - 2016-12-21 08:08 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2017-01-11 12:03 - 2016-12-21 08:08 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2017-01-11 12:03 - 2016-12-21 08:08 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\DeveloperOptionsSettingsHandlers.dll
2017-01-11 12:03 - 2016-12-21 08:08 - 00211968 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2017-01-11 12:03 - 2016-12-21 08:07 - 00748544 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2017-01-11 12:03 - 2016-12-21 08:06 - 06285312 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2017-01-11 12:03 - 2016-12-21 08:06 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2017-01-11 12:03 - 2016-12-21 08:06 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgentUserBroker.exe
2017-01-11 12:03 - 2016-12-21 08:06 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-01-11 12:03 - 2016-12-21 08:05 - 00425984 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2017-01-11 12:03 - 2016-12-21 08:05 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\indexeddbserver.dll
2017-01-11 12:03 - 2016-12-21 08:05 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2017-01-11 12:03 - 2016-12-21 08:01 - 09131008 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2017-01-11 12:03 - 2016-12-21 08:00 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2017-01-11 12:03 - 2016-12-21 07:59 - 01908224 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2017-01-11 12:03 - 2016-12-21 07:59 - 00883712 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2017-01-11 12:03 - 2016-12-21 07:58 - 23678464 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-01-11 12:03 - 2016-12-21 07:57 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\fhsettingsprovider.dll
2017-01-11 12:03 - 2016-12-21 07:56 - 00947712 _____ (Microsoft Corporation) C:\Windows\system32\MSVP9DEC.dll
2017-01-11 12:03 - 2016-12-21 07:56 - 00936960 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
2017-01-11 12:03 - 2016-12-21 07:55 - 08129536 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2017-01-11 12:03 - 2016-12-21 07:55 - 04749312 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2017-01-11 12:03 - 2016-12-21 07:54 - 05511680 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2017-01-11 12:03 - 2016-12-21 07:53 - 06664192 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2017-01-11 12:03 - 2016-12-21 07:53 - 04474368 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2017-01-11 12:03 - 2016-12-21 07:51 - 08075776 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-01-11 12:03 - 2016-12-21 07:51 - 05611008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2017-01-11 12:03 - 2016-12-21 07:50 - 01490432 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-01-11 12:03 - 2016-12-21 07:49 - 04149248 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2017-01-11 12:03 - 2016-12-21 07:49 - 02691072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2017-01-11 12:03 - 2016-12-21 07:49 - 01062912 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2017-01-11 12:03 - 2016-12-21 07:47 - 01121280 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2017-01-11 12:03 - 2016-12-21 06:59 - 00218976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinesam.dll
2017-01-11 12:03 - 2016-12-21 06:09 - 00263472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2017-01-11 12:03 - 2016-12-21 06:02 - 03892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2017-01-11 12:03 - 2016-12-21 06:02 - 01852720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2017-01-11 12:03 - 2016-12-21 06:02 - 01360464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2017-01-11 12:03 - 2016-12-21 06:02 - 01277344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2017-01-11 12:03 - 2016-12-21 06:02 - 01201872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2017-01-11 12:03 - 2016-12-21 06:02 - 00980832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2017-01-11 12:03 - 2016-12-21 06:01 - 20969928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-01-11 12:03 - 2016-12-21 05:46 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2017-01-11 12:03 - 2016-12-21 05:43 - 00285184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-01-11 12:03 - 2016-12-21 05:41 - 00253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BioFeedback.dll
2017-01-11 12:03 - 2016-12-21 05:41 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-01-11 12:03 - 2016-12-21 05:40 - 00557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll
2017-01-11 12:03 - 2016-12-21 05:40 - 00318976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2017-01-11 12:03 - 2016-12-21 05:40 - 00237056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2017-01-11 12:03 - 2016-12-21 05:40 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe
2017-01-11 12:03 - 2016-12-21 05:39 - 01300480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll
2017-01-11 12:03 - 2016-12-21 05:39 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgentUserBroker.exe
2017-01-11 12:03 - 2016-12-21 05:38 - 00866816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Cred.dll
2017-01-11 12:03 - 2016-12-21 05:35 - 04612608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2017-01-11 12:03 - 2016-12-21 05:35 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\indexeddbserver.dll
2017-01-11 12:03 - 2016-12-21 05:34 - 07626752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-01-11 12:03 - 2016-12-21 05:33 - 19413504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-01-11 12:03 - 2016-12-21 05:32 - 19417600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-01-11 12:03 - 2016-12-21 05:30 - 05398016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2017-01-11 12:03 - 2016-12-21 05:30 - 01255936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2017-01-11 12:03 - 2016-12-21 05:27 - 00640000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
2017-01-11 12:03 - 2016-12-21 05:26 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVP9DEC.dll
2017-01-11 12:03 - 2016-12-21 05:25 - 07469056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-01-11 12:03 - 2016-12-21 05:25 - 06474752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2017-01-11 12:03 - 2016-12-21 05:24 - 06044160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2017-01-11 12:03 - 2016-12-21 05:22 - 01883648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2017-01-11 12:03 - 2016-12-14 06:41 - 01235296 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2017-01-11 12:03 - 2016-12-14 06:41 - 00590960 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2017-01-11 12:03 - 2016-12-14 06:34 - 02482280 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2017-01-11 12:03 - 2016-12-14 06:33 - 01356864 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2017-01-11 12:03 - 2016-12-14 06:23 - 00404832 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-01-11 12:03 - 2016-12-14 06:21 - 02206496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2017-01-11 12:03 - 2016-12-14 06:19 - 00584544 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2017-01-11 12:03 - 2016-12-14 06:18 - 00715104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2017-01-11 12:03 - 2016-12-14 06:18 - 00335712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2017-01-11 12:03 - 2016-12-14 06:17 - 00319288 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2017-01-11 12:03 - 2016-12-14 06:14 - 01694712 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2017-01-11 12:03 - 2016-12-14 06:14 - 00418952 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2017-01-11 12:03 - 2016-12-14 06:14 - 00089416 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2017-01-11 12:03 - 2016-12-14 06:01 - 01557808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2017-01-11 12:03 - 2016-12-14 06:01 - 00382784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2017-01-11 12:03 - 2016-12-14 06:01 - 00076984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2017-01-11 12:03 - 2016-12-14 05:48 - 01631232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2017-01-11 12:03 - 2016-12-14 05:46 - 01631232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-01-11 12:03 - 2016-12-14 05:46 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-01-11 12:03 - 2016-12-14 05:43 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\ScDeviceEnum.dll
2017-01-11 12:03 - 2016-12-14 05:42 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2017-01-11 12:03 - 2016-12-14 05:42 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2017-01-11 12:03 - 2016-12-14 05:42 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-11 12:03 - 2016-12-14 05:42 - 00167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2017-01-11 12:03 - 2016-12-14 05:41 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-01-11 12:03 - 2016-12-14 05:40 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
2017-01-11 12:03 - 2016-12-14 05:40 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudBackupSettings.dll
2017-01-11 12:03 - 2016-12-14 05:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2017-01-11 12:03 - 2016-12-14 05:39 - 00837632 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2017-01-11 12:03 - 2016-12-14 05:39 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2017-01-11 12:03 - 2016-12-14 05:39 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.CredDialogController.dll
2017-01-11 12:03 - 2016-12-14 05:38 - 17188864 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2017-01-11 12:03 - 2016-12-14 05:38 - 13869056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2017-01-11 12:03 - 2016-12-14 05:38 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\CloudBackupSettings.dll
2017-01-11 12:03 - 2016-12-14 05:38 - 00213504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.CredDialogController.dll
2017-01-11 12:03 - 2016-12-14 05:37 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2017-01-11 12:03 - 2016-12-14 05:36 - 01002496 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2017-01-11 12:03 - 2016-12-14 05:36 - 00539648 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2017-01-11 12:03 - 2016-12-14 05:36 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2017-01-11 12:03 - 2016-12-14 05:35 - 00755712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-01-11 12:03 - 2016-12-14 05:35 - 00712192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2017-01-11 12:03 - 2016-12-14 05:35 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2017-01-11 12:03 - 2016-12-14 05:35 - 00553984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2017-01-11 12:03 - 2016-12-14 05:32 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2017-01-11 12:03 - 2016-12-14 05:26 - 00932864 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-01-11 12:03 - 2016-12-14 05:26 - 00869888 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-01-11 12:03 - 2016-12-14 05:25 - 02009600 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll
2017-01-11 12:03 - 2016-12-14 05:24 - 01005568 _____ (Microsoft Corporation) C:\Windows\system32\D3D12.dll
2017-01-11 12:03 - 2016-12-14 05:24 - 00673792 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2017-01-11 12:03 - 2016-12-14 05:23 - 03134976 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2017-01-11 12:03 - 2016-12-14 05:23 - 01231872 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2017-01-11 12:03 - 2016-12-14 05:22 - 02748416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2017-01-11 12:03 - 2016-12-14 05:22 - 02317824 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-01-11 12:03 - 2016-12-14 05:22 - 01513472 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2017-01-11 12:03 - 2016-12-14 05:22 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2017-01-11 12:03 - 2016-12-14 05:21 - 03616768 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2017-01-11 12:03 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2017-01-11 12:03 - 2016-11-02 12:00 - 00534096 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2017-01-11 12:03 - 2016-11-02 11:28 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2017-01-11 12:03 - 2016-11-02 11:22 - 00337920 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2017-01-11 12:03 - 2016-11-02 11:21 - 00942080 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2017-01-11 12:03 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2017-01-11 12:02 - 2016-12-21 08:42 - 00241504 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2017-01-11 12:02 - 2016-12-21 08:13 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2017-01-11 12:02 - 2016-12-21 08:12 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\ProvPluginEng.dll
2017-01-11 12:02 - 2016-12-21 08:10 - 00234496 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2017-01-11 12:02 - 2016-12-21 08:08 - 01292288 _____ (Microsoft Corporation) C:\Windows\system32\MSVPXENC.dll
2017-01-11 12:02 - 2016-12-21 08:08 - 00349184 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2017-01-11 12:02 - 2016-12-21 07:53 - 01692672 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2017-01-11 12:02 - 2016-12-21 07:51 - 02275840 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2017-01-11 12:02 - 2016-12-21 05:24 - 05061120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2017-01-11 12:02 - 2016-12-21 05:24 - 03733504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2017-01-11 12:02 - 2016-12-21 05:24 - 00886272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2017-01-11 12:02 - 2016-12-21 05:22 - 00860672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2017-01-11 12:02 - 2016-12-14 06:08 - 00341344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-01-11 12:02 - 2016-12-14 06:06 - 00509792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2017-01-11 12:02 - 2016-12-14 05:45 - 00147968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2017-01-11 12:02 - 2016-12-14 05:40 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\ConsoleLogon.dll
2017-01-11 12:02 - 2016-12-14 05:40 - 00104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-11 12:02 - 2016-12-14 05:32 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3D12.dll
2017-01-11 12:02 - 2016-12-14 05:22 - 02998272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2017-01-11 12:02 - 2016-12-14 05:22 - 00707584 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2017-01-08 12:02 - 2017-01-08 12:02 - 00000000 ____D C:\Users\user\AppData\Local\MicrosoftEdge
2017-01-05 06:38 - 2017-01-05 06:38 - 00160484 _____ C:\Users\user\Downloads\[CzT]Transformers_Kolekce_2007_2014_CZ_EN_720pHD_.torrent
2017-01-04 06:37 - 2017-01-04 06:37 - 00033111 _____ C:\Users\user\Downloads\[CzT]November_Man_November_Man_The_2014_EN_CZ_720pHD_.torrent
2017-01-03 06:25 - 2017-01-03 06:25 - 00042774 _____ C:\Users\user\Downloads\[CzT]Kingsglaive_Final_Fantasy_XV_2016_CZ_1080pHD_.torrent
2017-01-02 09:54 - 2017-01-02 09:54 - 00030221 _____ C:\Users\user\Downloads\[CzT]Nevedomi_Oblivion_2013_CZ_1080pHD_.torrent
2016-12-31 09:39 - 2016-12-31 09:39 - 00000000 ____D C:\Users\user\AppData\Local\Gaijin
2016-12-31 09:39 - 2016-12-31 09:39 - 00000000 ____D C:\ProgramData\Gaijin
2016-12-31 09:38 - 2016-12-31 20:10 - 00000000 ____D C:\WarThunder
2016-12-31 09:38 - 2016-12-31 09:38 - 00001497 _____ C:\Users\Public\Desktop\WarThunder.lnk
2016-12-31 09:38 - 2016-12-31 09:38 - 00000000 ____D C:\Users\user\Documents\My Games
2016-12-31 09:38 - 2016-12-31 09:38 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2016-12-31 09:36 - 2016-12-31 09:37 - 07177328 _____ (Gaijin Entertainment ) C:\Users\user\Desktop\wt_launcher_1.0.1.741.exe
2016-12-29 21:56 - 2017-01-10 13:17 - 00000000 ____D C:\Users\user\AppData\Local\CrashDumps
2016-12-29 17:30 - 2016-12-29 17:30 - 00045617 _____ C:\Users\user\Downloads\[CzT]Zivi_mrtvi_The_Walking_Dead_S07E08_Hearts_Still_Beating_TvRip_720p_.torrent
2016-12-29 16:18 - 2016-12-29 16:18 - 00015670 _____ C:\Users\user\Downloads\[CzT]Zivi_mrtvi_The_Walking_Dead_S07E07_Sing_Me_a_Song_TvRip_720p_.torrent
2016-12-29 15:00 - 2016-12-30 12:09 - 00000958 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-12-29 15:00 - 2016-12-30 12:09 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-12-29 15:00 - 2016-12-29 15:02 - 00003900 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-12-29 15:00 - 2016-12-29 15:01 - 00004096 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-12-27 23:34 - 2017-01-09 22:58 - 00000000 ____D C:\Users\user\AppData\Roaming\TS3Client
2016-12-27 23:34 - 2016-12-27 23:34 - 00001241 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2016-12-27 23:34 - 2016-12-27 23:34 - 00000000 ____D C:\Users\user\AppData\Local\TeamSpeak 3 Client
2016-12-27 18:51 - 2017-01-05 22:27 - 00000000 ____D C:\Program Files\f09er35s
2016-12-27 15:54 - 2016-12-27 15:54 - 00000000 ____D C:\Users\user\AppData\Roaming\NVIDIA
2016-12-27 15:52 - 2016-12-28 10:46 - 00000000 ____D C:\Users\user\AppData\Local\NVIDIA Corporation
2016-12-27 15:52 - 2016-12-27 15:52 - 00001491 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-12-27 15:49 - 2016-12-27 15:49 - 00003990 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-27 15:49 - 2016-12-27 15:49 - 00003962 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-27 15:49 - 2016-12-27 15:49 - 00003926 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-27 15:49 - 2016-12-27 15:49 - 00003900 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-27 15:49 - 2016-12-27 15:49 - 00003738 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-27 15:49 - 2016-12-27 15:49 - 00003696 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-27 15:49 - 2016-12-27 15:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-12-27 15:49 - 2016-12-27 15:49 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-12-27 15:49 - 2016-12-12 04:03 - 01854400 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-12-27 15:49 - 2016-12-12 04:03 - 01755072 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-12-27 15:49 - 2016-12-12 04:03 - 01452480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-12-27 15:49 - 2016-12-12 04:03 - 01317312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-12-27 15:49 - 2016-12-12 04:03 - 00120256 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-12-27 15:49 - 2016-12-12 04:03 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2016-12-27 15:49 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-12-27 15:49 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-12-27 15:49 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-12-27 15:49 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-12-27 15:47 - 2016-12-12 22:27 - 00047032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2016-12-27 15:47 - 2016-12-12 04:03 - 40125496 _____ C:\Windows\system32\nvcompiler.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 35222976 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 34710584 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 28201408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 10912744 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 10803880 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 10353960 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 09158616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 08913328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 08761560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 03934504 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 03474392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 02950200 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 02587704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 01953336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437633.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437633.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 01038392 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00974784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00942528 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00894400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00802768 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00683640 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00643928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00572888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00438208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00394888 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00388544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00327408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00101824 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00091584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-12-27 15:47 - 2016-12-12 04:03 - 00046016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-12-27 15:47 - 2016-12-12 04:03 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-12-27 15:47 - 2016-12-12 04:03 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2016-12-27 14:58 - 2016-12-27 14:58 - 00002858 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-12-27 14:58 - 2016-12-27 14:58 - 00002350 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-27 14:58 - 2016-12-27 14:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-12-27 14:58 - 2016-12-27 14:58 - 00000000 ____D C:\Program Files\CCleaner
2016-12-27 14:57 - 2016-12-27 15:06 - 00003470 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-27 14:57 - 2016-12-27 15:06 - 00003346 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-12-27 14:57 - 2016-12-27 14:58 - 00000000 ____D C:\Users\user\AppData\Local\Google
2016-12-27 14:57 - 2016-12-27 14:58 - 00000000 ____D C:\Program Files (x86)\Google
2016-12-27 14:41 - 2016-12-27 14:41 - 00002106 _____ C:\Users\Public\Desktop\ESET Ochrana bankovnictví a online plateb.lnk
2016-12-27 14:41 - 2016-12-27 14:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2016-12-27 14:41 - 2016-12-27 14:41 - 00000000 ____D C:\ProgramData\ESET
2016-12-27 14:41 - 2016-12-27 14:41 - 00000000 ____D C:\Program Files\ESET
2016-12-27 14:03 - 2016-12-27 14:03 - 00000000 ____D C:\Users\user\AppData\Local\ESET
2016-12-27 14:01 - 2016-12-27 14:08 - 00034328 _____ (Sysinternals - www.sysinternals.com) C:\Windows\system32\Drivers\PROCEXP152.SYS
2016-12-27 13:56 - 2016-12-27 13:56 - 00000000 ___SD C:\Windows\SysWOW64\Microsoft
2016-12-27 13:54 - 2016-12-27 13:54 - 00001145 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-12-27 13:51 - 2017-01-10 16:00 - 00000000 ___HD C:\ProgramData\149q243c324g399
2016-12-27 13:51 - 2016-12-27 13:51 - 00016816 _____ C:\Windows\System32\Tasks\149q243c324g399
2016-12-27 13:48 - 2017-01-10 12:44 - 00000000 ____D C:\Program Files\b3r1vxdi
2016-12-27 13:05 - 2016-12-27 13:05 - 00000000 ____D C:\Program Files (x86)\j38sktxi
2016-12-26 14:58 - 2016-12-26 14:58 - 00003948 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1482760713
2016-12-26 14:58 - 2016-12-26 14:58 - 00001210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-12-26 14:58 - 2016-12-26 14:58 - 00000000 ____D C:\Users\user\AppData\Roaming\Opera Software
2016-12-26 14:58 - 2016-12-26 14:58 - 00000000 ____D C:\Users\user\AppData\Local\Opera Software
2016-12-26 14:57 - 2016-12-26 14:58 - 00000000 ____D C:\Program Files (x86)\Opera
2016-12-26 14:57 - 2016-12-26 14:57 - 01131680 _____ (Opera Software) C:\Users\user\Downloads\OperaSetup(1).exe
2016-12-26 11:22 - 2016-12-26 11:22 - 00002658 _____ C:\Users\Public\Desktop\Skype.lnk
2016-12-26 11:22 - 2016-12-26 11:22 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-12-26 11:22 - 2016-12-26 11:22 - 00000000 ____D C:\ProgramData\Skype
2016-12-26 11:22 - 2016-12-26 11:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-12-26 11:21 - 2016-12-26 11:22 - 43872728 _____ (Skype Technologies S.A.) C:\Users\user\Downloads\SkypeSetupFull.exe
2016-12-23 23:11 - 2016-12-23 23:11 - 00000000 ____D C:\Users\user\AppData\Roaming\WinRAR
2016-12-23 23:06 - 2016-12-27 14:45 - 00000000 ___HD C:\Users\user\AppData\Roaming\DIFX
2016-12-23 23:05 - 2017-01-16 21:33 - 00004198 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{667F7BBE-C027-48B6-80B6-2B9AF9F52187}
2016-12-23 23:05 - 2017-01-13 18:36 - 00000000 ____D C:\Program Files (x86)\Gcerlearacy
2016-12-23 23:05 - 2017-01-11 11:43 - 00000000 ____D C:\Program Files (x86)\Plerbus Mapper
2016-12-23 23:05 - 2016-12-27 14:45 - 00000000 ____D C:\Users\user\AppData\Roaming\Herwesymabiry
2016-12-23 23:05 - 2016-12-27 13:51 - 00016840 _____ C:\Windows\System32\Tasks\645358227d80t6674307
2016-12-23 23:05 - 2016-12-27 13:51 - 00000000 ___HD C:\ProgramData\645358227d80t6674307
2016-12-23 23:05 - 2016-12-23 23:05 - 00099678 _____ C:\Users\user\Downloads\Play WarThunder.ico
2016-12-23 23:05 - 2016-12-23 23:05 - 00006124 _____ C:\Windows\System32\Tasks\Cotagh Cache
2016-12-23 23:05 - 2016-12-23 23:05 - 00000000 ____D C:\Users\user\AppData\Roaming\Profiles
2016-12-23 23:05 - 2016-12-23 23:05 - 00000000 ____D C:\Users\user\AppData\Local\Programs
2016-12-23 23:05 - 2016-12-23 23:05 - 00000000 ____D C:\Users\user\AppData\Local\Fatergeanuverph
2016-12-23 17:05 - 2016-12-23 17:06 - 00000000 ____D C:\Users\user\Desktop\Stupava2016
2016-12-22 20:16 - 2016-12-22 20:16 - 02377944 _____ C:\Users\user\Downloads\winrar-x64-540cz.exe
2016-12-22 20:16 - 2016-12-22 20:16 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-12-22 20:16 - 2016-12-22 20:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-12-22 20:16 - 2016-12-22 20:16 - 00000000 ____D C:\Program Files\WinRAR
2016-12-22 20:11 - 2016-12-22 20:11 - 00510841 _____ C:\Users\user\Downloads\ČEŠTINA.rar
2016-12-18 20:30 - 2016-12-18 20:31 - 04121824 _____ (Husdawg, LLC) C:\Users\user\Downloads\Detection(2).exe
2016-12-17 11:57 - 2016-12-17 11:57 - 04324787 _____ C:\Users\user\Downloads\117.mp3
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-01-16 22:39 - 2016-11-29 10:08 - 02502896 _____ C:\Windows\system32\PerfStringBackup.INI
2017-01-16 22:39 - 2016-07-16 23:25 - 01005106 _____ C:\Windows\system32\perfh005.dat
2017-01-16 22:39 - 2016-07-16 23:25 - 00251080 _____ C:\Windows\system32\perfc005.dat
2017-01-16 22:32 - 2016-11-29 10:50 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-16 22:32 - 2016-11-29 10:15 - 00000000 __SHD C:\Users\user\IntelGraphicsProfiles
2017-01-16 22:32 - 2016-11-29 10:00 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-01-16 22:32 - 2016-07-16 07:04 - 00262144 _____ C:\Windows\system32\config\BBI
2017-01-16 21:54 - 2016-07-16 12:45 - 00000000 ____D C:\Windows\INF
2017-01-16 21:10 - 2016-11-29 10:00 - 00000000 ____D C:\Windows\system32\SleepStudy
2017-01-15 15:47 - 2016-11-29 10:07 - 00000000 ____D C:\Users\user\AppData\Roaming\vlc
2017-01-14 21:55 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\AppReadiness
2017-01-14 12:34 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\rescache
2017-01-13 17:53 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-13 17:53 - 2016-07-16 12:36 - 00000000 ____D C:\Windows\CbsTemp
2017-01-13 17:42 - 2016-11-29 10:02 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-01-13 17:42 - 2016-11-29 10:00 - 00224512 _____ C:\Windows\system32\FNTCACHE.DAT
2017-01-12 23:33 - 2016-07-16 12:47 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2017-01-12 23:33 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2017-01-12 23:33 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\oobe
2017-01-12 23:33 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\ShellExperiences
2017-01-12 23:33 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\Provisioning
2017-01-12 08:29 - 2016-11-29 10:06 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2017-01-11 14:11 - 2016-11-29 10:31 - 00000000 ____D C:\Windows\system32\MRT
2017-01-11 14:09 - 2016-11-29 10:31 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-10 12:26 - 2016-12-03 11:34 - 00004562 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-01-05 23:11 - 2016-11-30 06:53 - 00000000 ____D C:\Users\user\AppData\Roaming\uTorrent
2017-01-03 18:50 - 2016-11-29 16:05 - 00000000 ____D C:\Program Files (x86)\Steam
2016-12-31 09:38 - 2016-07-16 12:47 - 00000000 __RHD C:\Users\Public\Desktop
2016-12-29 17:35 - 2016-11-29 10:02 - 00000000 ____D C:\Users\user\AppData\Local\Microsoft
2016-12-29 15:01 - 2016-11-29 10:06 - 00000000 ____D C:\Users\user\AppData\Local\Adobe
2016-12-29 15:01 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-12-29 15:01 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\Macromed
2016-12-29 15:00 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\Tasks
2016-12-28 21:32 - 2016-11-29 10:04 - 00000000 ____D C:\Users\user\AppData\Roaming\Skype
2016-12-27 23:34 - 2016-11-29 10:02 - 00000000 ____D C:\Users\user\AppData\Roaming
2016-12-27 18:51 - 2016-07-16 07:04 - 00000000 ___RD C:\Program Files
2016-12-27 15:53 - 2016-11-29 10:52 - 00000000 ____D C:\Users\user\AppData\Local\NVIDIA
2016-12-27 15:53 - 2016-11-29 10:14 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-12-27 15:49 - 2016-11-29 10:14 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-12-27 15:49 - 2016-11-29 10:14 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-12-27 14:59 - 2016-11-29 10:00 - 00000000 ____D C:\Windows\Panther
2016-12-27 14:59 - 2016-07-16 07:04 - 00000000 ____D C:\Windows\Logs
2016-12-27 14:44 - 2016-07-16 07:04 - 00000000 ____D C:\Windows\system32\CatRoot
2016-12-27 14:42 - 2016-07-16 12:47 - 00000000 ___HD C:\Windows\ELAMBKUP
2016-12-27 14:36 - 2016-11-29 10:10 - 00000000 ____D C:\Program Files\Microsoft Office
2016-12-27 14:36 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-12-27 14:36 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-12-27 14:35 - 2016-07-16 12:47 - 00000000 ___RD C:\Windows\assembly
2016-12-27 14:35 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Microsoft.NET
2016-12-27 14:35 - 2016-07-16 07:04 - 00000000 ____D C:\Program Files\Common Files
2016-12-27 09:30 - 2016-12-01 16:17 - 00000000 ____D C:\Users\user\AppData\LocalLow\Mozilla
2016-12-26 14:29 - 2016-11-29 10:02 - 00524288 ___SH C:\Users\user\NTUSER.DAT{4a3fb128-4ba3-11e6-80cd-b8ca3aed6f7f}.TMContainer00000000000000000002.regtrans-ms
2016-12-26 14:29 - 2016-11-29 10:02 - 00065536 ___SH C:\Users\user\NTUSER.DAT{4a3fb128-4ba3-11e6-80cd-b8ca3aed6f7f}.TM.blf
2016-12-26 11:22 - 2016-07-16 07:04 - 00000000 ____D C:\Program Files (x86)\Common Files
2016-12-23 23:06 - 2016-11-29 10:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-23 23:05 - 2016-07-16 12:47 - 00000918 _____ C:\Windows\system32\Drivers\etc\hosts
2016-12-23 00:13 - 2016-07-16 12:49 - 00835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-12-23 00:13 - 2016-07-16 12:49 - 00177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
==================== Files in the root of some directories =======
2017-01-16 21:59 - 2017-01-16 22:40 - 0029696 _____ () C:\Users\user\AppData\Local\MSGBOX.EXE
2017-01-16 20:28 - 2017-01-16 20:28 - 0007600 _____ () C:\Users\user\AppData\Local\Resmon.ResmonCfg
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-01-12 11:34
==================== End of FRST.txt ============================
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
U0 aswVmm; no ImagePath
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Program Files\b3r1vxdi
C:\Program Files (x86)\j38sktxi
C:\Windows\System32\Tasks\645358227d80t6674307
C:\ProgramData\645358227d80t6674307
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Fix result of Farbar Recovery Scan Tool (x64) Version: 15-01-2017
Ran by user (18-01-2017 19:54:32) Run:1
Running from C:\Users\user\Desktop
Loaded Profiles: user (Available Profiles: defaultuser0 & user)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
U0 aswVmm; no ImagePath
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Program Files\b3r1vxdi
C:\Program Files (x86)\j38sktxi
C:\Windows\System32\Tasks\645358227d80t6674307
C:\ProgramData\645358227d80t6674307
EmptyTemp:
End
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast => key removed successfully
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
HKLM\System\CurrentControlSet\Services\aswVmm => key removed successfully
aswVmm => service removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\Program Files\b3r1vxdi => moved successfully
C:\Program Files (x86)\j38sktxi => moved successfully
C:\Windows\System32\Tasks\645358227d80t6674307 => moved successfully
C:\ProgramData\645358227d80t6674307 => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 32882314 B
Java, Flash, Steam htmlcache => 318862232 B
Windows/system/drivers => 729 B
Edge => 510 B
Chrome => 14987414 B
Firefox => 13880628 B
Opera => 368557314 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 1311344 B
systemprofile32 => 134 B
LocalService => 2450 B
NetworkService => 0 B
defaultuser0 => 588289 B
user => 35343366 B
RecycleBin => 8711 B
EmptyTemp: => 750 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 19:54:35 ====
Ran by user (18-01-2017 19:54:32) Run:1
Running from C:\Users\user\Desktop
Loaded Profiles: user (Available Profiles: defaultuser0 & user)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
U0 aswVmm; no ImagePath
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Program Files\b3r1vxdi
C:\Program Files (x86)\j38sktxi
C:\Windows\System32\Tasks\645358227d80t6674307
C:\ProgramData\645358227d80t6674307
EmptyTemp:
End
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast => key removed successfully
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
HKLM\System\CurrentControlSet\Services\aswVmm => key removed successfully
aswVmm => service removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\Program Files\b3r1vxdi => moved successfully
C:\Program Files (x86)\j38sktxi => moved successfully
C:\Windows\System32\Tasks\645358227d80t6674307 => moved successfully
C:\ProgramData\645358227d80t6674307 => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 32882314 B
Java, Flash, Steam htmlcache => 318862232 B
Windows/system/drivers => 729 B
Edge => 510 B
Chrome => 14987414 B
Firefox => 13880628 B
Opera => 368557314 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 1311344 B
systemprofile32 => 134 B
LocalService => 2450 B
NetworkService => 0 B
defaultuser0 => 588289 B
user => 35343366 B
RecycleBin => 8711 B
EmptyTemp: => 750 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 19:54:35 ====
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Trochu se zrychlilo načítání stránek a např. i načítání map v googlu. Videa na YT si už můžu pustit v 720p kvalitě s malými seky místo 360p, ale stále to není to, co to bylo.
Děkuji za dosavadní pomoc
Děkuji za dosavadní pomoc
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Zkuste defragmentovat disk.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Prosím napište mi, kam se k funkci defragmentace disku dostanu, jelikož vždy když to napíši do vyhledávače, tak mě to hodí do nějaké nabídky disků, kde je jenom tlačítko pro optimalizaci, které když spustím, tak to napíše, že je vše OK a tím to hasne.
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Klik pravým myšítkem na příslušný disk (v tento počítač)>vlastnosti>nástroje>defragmentace.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Tak jsem defragmentoval disk, ale nepomohlo to. Tak jsem zapátral po internetu a na doporučení jednoho člověka jsem si stáhl Spybota. Spy dokončil scan systému a vyhodil mi tento log. Já osobně mu moc nerozumím ale i přes to jsem si všiml nějakého trojského koně a nevím jestli mi je to už odstranilo nebo to musím udělat ručně.
Děkuji za případnou další pomoc.
Search results from Spybot - Search & Destroy
19.01.2017 18:20:08
Scan took 00:27:33.
21 items found.
Win32.Graftor: [SBI $65843C8D] Settings (Registry Value, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\help
Category=Trojans
ThreatLevel=10
Weblink=http://forums.spybot.info/forumdisplay.php?54
Win32.Graftor: [SBI $C7B8B297] Data (File, nothing done)
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7b3y3gki.default\searchplugins\j38sktxi.xml
Category=Trojans
ThreatLevel=10
Weblink=http://forums.spybot.info/forumdisplay.php?54
Properties.size=0
Properties.md5=D41D8CD98F00B204E9800998ECF8427E
Internet Explorer: [SBI $1E8157BE] Typed URL list (Registry Key, nothing done)
HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\TypedURLs
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Internet Explorer: [SBI $1E8157BE] Typed URL list (Registry Key, nothing done)
HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\TypedURLs
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Internet Explorer: [SBI $1E8157BE] Typed URL list (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1000\Software\Microsoft\Internet Explorer\TypedURLs
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
MS DirectInput: [SBI $9A063C91] Most recent application (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\DirectInput\MostRecentApplication\Name
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
MS DirectInput: [SBI $7B184199] Most recent application ID (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\DirectInput\MostRecentApplication\Id
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Windows.OpenWith: [SBI $F7204896] Open with list - .AVI extension (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.AVI\OpenWithList
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Windows Explorer: [SBI $AA0766B5] Stream history (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StreamMRU
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Windows Explorer: [SBI $D20DA0AD] Recent file global history (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Windows Media SDK: [SBI $37AAEDE6] Computer name (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\Windows Media\WMSDK\General\ComputerName
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Windows Media SDK: [SBI $CAA58B6E] Unique ID (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\Windows Media\WMSDK\General\UniqueID
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Windows Media SDK: [SBI $BACCD0DA] Volume serial number (Registry Value, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\Windows Media\WMSDK\General\VolumeSerialNumber
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Cache: [SBI $49804B54] Browser: Cache (95) (Browser: Cache, nothing done)
Category=Browser
ThreatLevel=1
Weblink=http://forums.spybot.info/forumdisplay.php?54
History: [SBI $49804B54] Browser: History (1) (Browser: History, nothing done)
Category=Browser
ThreatLevel=1
Weblink=http://forums.spybot.info/forumdisplay.php?54
--- Spybot - Search & Destroy version: 2.6.44.134 DLL (build: 20160321) ---
2014-06-24 blindman.exe (2.4.40.151)
2014-06-24 explorer.exe (2.4.40.181)
2014-06-24 SDBootCD.exe (2.4.40.109)
2016-03-21 SDCleaner.exe (2.6.44.110)
2014-06-24 SDDelFile.exe (2.4.40.94)
2013-06-18 SDDisableProxy.exe
2014-06-24 SDFiles.exe (2.4.40.135)
2014-06-24 SDFileScanHelper.exe (2.4.40.1)
2014-06-24 SDFSSvc.exe (2.4.40.217)
2014-06-24 SDHelp.exe (2.4.40.1)
2014-04-25 SDHookHelper.exe (2.3.39.2)
2014-04-25 SDHookInst32.exe (2.3.39.2)
2014-04-25 SDHookInst64.exe (2.3.39.2)
2016-03-21 SDImmunize.exe (2.6.44.130)
2014-06-24 SDLogReport.exe (2.4.40.107)
2014-06-24 SDOnAccess.exe (2.4.40.11)
2014-06-24 SDPESetup.exe (2.4.40.3)
2014-06-24 SDPEStart.exe (2.4.40.86)
2014-06-24 SDPhoneScan.exe (2.4.40.28)
2014-06-24 SDPRE.exe (2.4.40.22)
2014-06-24 SDPrepPos.exe (2.4.40.15)
2014-06-24 SDQuarantine.exe (2.4.40.103)
2014-06-24 SDRootAlyzer.exe (2.4.40.116)
2014-06-24 SDSBIEdit.exe (2.4.40.39)
2016-03-21 SDScan.exe (2.6.44.181)
2014-06-24 SDScript.exe (2.4.40.54)
2016-03-21 SDSettings.exe (2.6.44.141)
2014-06-24 SDShell.exe (2.4.40.2)
2014-06-24 SDShred.exe (2.4.40.108)
2014-06-24 SDSysRepair.exe (2.4.40.102)
2014-06-24 SDTools.exe (2.4.40.157)
2014-06-24 SDTray.exe (2.4.40.129)
2014-06-27 SDUpdate.exe (2.4.40.94)
2016-09-21 SDUpdSvc.exe (2.5.44.79)
2014-06-24 SDWelcome.exe (2.4.40.130)
2016-11-24 SDWSCSvc.exe (2.5.55.3)
2016-05-02 spybotsd2-install-iefreezefix.exe (2.4.40.0)
2016-11-30 spybotsd2-install-wsc-update-a.exe (2.6.52.0)
2014-07-31 spybotsd2-translation-esx.exe
2013-06-19 spybotsd2-translation-frx.exe
2015-03-25 spybotsd2-translation-hrx.exe
2014-08-25 spybotsd2-translation-hux2.exe
2014-10-01 spybotsd2-translation-nlx2.exe
2014-11-05 spybotsd2-translation-ukx.exe
2016-09-21 spybotsd2-updater-update.exe (2.6.52.0)
2015-07-28 spybotsd2-windows-upgrade-installer.exe (1.4.0.0)
2017-01-19 unins000.exe (51.1052.0.0)
1999-12-02 xcacls.exe
2012-08-23 borlndmm.dll (10.0.2288.42451)
2012-09-05 DelZip190.dll (1.9.0.107)
2016-03-21 DelZip192.dll (1.9.2.132)
2012-09-10 libeay32.dll (1.0.0.4)
2012-09-10 libssl32.dll (1.0.0.4)
2014-04-25 NotificationSpreader.dll
2014-06-24 SDAdvancedCheckLibrary.dll (2.4.40.98)
2014-04-25 SDAV.dll
2014-06-24 SDECon32.dll (2.4.40.114)
2014-06-24 SDECon64.dll (2.3.39.113)
2014-06-24 SDEvents.dll (2.4.40.2)
2014-06-24 SDFileScanLibrary.dll (2.4.40.14)
2014-04-25 SDHook32.dll (2.3.39.2)
2014-04-25 SDHook64.dll (2.3.39.2)
2014-06-24 SDImmunizeLibrary.dll (2.4.40.2)
2014-06-24 SDLicense.dll (2.4.40.0)
2014-06-24 SDLists.dll (2.4.40.4)
2014-06-24 SDResources.dll (2.4.40.7)
2016-03-21 SDScanLibrary.dll (2.6.44.134)
2014-06-24 SDTasks.dll (2.4.40.15)
2014-06-24 SDWinLogon.dll (2.4.40.0)
2012-08-23 sqlite3.dll
2012-09-10 ssleay32.dll (1.0.0.4)
2014-06-24 Tools.dll (2.4.40.36)
2016-10-28 Includes\Adware-000.sbi (*)
2015-08-05 Includes\Adware-001.sbi (*)
2017-01-18 Includes\Adware-C.sbi (*)
2014-01-13 Includes\Adware.sbi (*)
2014-01-13 Includes\AdwareC.sbi (*)
2010-08-13 Includes\Cookies.sbi (*)
2014-11-14 Includes\Dialer-000.sbi (*)
2014-11-14 Includes\Dialer-001.sbi (*)
2016-11-16 Includes\Dialer-C.sbi (*)
2014-01-13 Includes\Dialer.sbi (*)
2014-01-13 Includes\DialerC.sbi (*)
2014-01-09 Includes\Fraud-000.sbi (*)
2014-01-09 Includes\Fraud-001.sbi (*)
2014-03-31 Includes\Fraud-002.sbi (*)
2016-07-06 Includes\Fraud-003.sbi (*)
2012-11-14 Includes\HeavyDuty.sbi (*)
2014-11-14 Includes\Hijackers-000.sbi (*)
2014-11-14 Includes\Hijackers-001.sbi (*)
2016-11-09 Includes\Hijackers-C.sbi (*)
2014-01-13 Includes\Hijackers.sbi (*)
2014-01-13 Includes\HijackersC.sbi (*)
2014-01-08 Includes\iPhone-000.sbi (*)
2014-01-08 Includes\iPhone.sbi (*)
2016-05-27 Includes\Keyloggers-000.sbi (*)
2016-08-31 Includes\Keyloggers-C.sbi (*)
2014-01-13 Includes\Keyloggers.sbi (*)
2014-01-13 Includes\KeyloggersC.sbi (*)
2015-06-25 Includes\Malware-000.sbi (*)
2014-11-14 Includes\Malware-001.sbi (*)
2016-06-14 Includes\Malware-002.sbi (*)
2014-11-14 Includes\Malware-004.sbi (*)
2014-11-14 Includes\Malware-005.sbi (*)
2014-02-26 Includes\Malware-006.sbi (*)
2014-01-09 Includes\Malware-007.sbi (*)
2016-12-07 Includes\Malware-C.sbi (*)
2014-01-13 Includes\Malware.sbi (*)
2013-12-23 Includes\MalwareC.sbi (*)
2014-11-14 Includes\PUPS-000.sbi (*)
2014-01-15 Includes\PUPS-001.sbi (*)
2014-01-15 Includes\PUPS-002.sbi (*)
2017-01-18 Includes\PUPS-C.sbi (*)
2012-11-14 Includes\PUPS.sbi (*)
2014-01-07 Includes\PUPSC.sbi (*)
2014-01-08 Includes\Security-000.sbi (*)
2015-12-02 Includes\Security-C.sbi (*)
2014-01-21 Includes\Security.sbi (*)
2014-01-21 Includes\SecurityC.sbi (*)
2015-11-11 Includes\Spyware-000.sbi (*)
2015-05-06 Includes\Spyware-001.sbi (*)
2016-08-10 Includes\Spyware-C.sbi (*)
2014-01-21 Includes\Spyware.sbi (*)
2014-01-21 Includes\SpywareC.sbi (*)
2011-06-07 Includes\Tracks.sbi (*)
2012-11-19 Includes\Tracks.uti (*)
2014-01-15 Includes\Trojans-000.sbi (*)
2014-01-15 Includes\Trojans-001.sbi (*)
2016-01-20 Includes\Trojans-003.sbi (*)
2014-01-15 Includes\Trojans-004.sbi (*)
2014-03-19 Includes\Trojans-005.sbi (*)
2014-01-15 Includes\Trojans-007.sbi (*)
2014-07-09 Includes\Trojans-009.sbi (*)
2017-01-18 Includes\Trojans-C.sbi (*)
2014-01-15 Includes\Trojans-OG-000.sbi (*)
2014-01-15 Includes\Trojans-TD-000.sbi (*)
2014-01-15 Includes\Trojans-VM-000.sbi (*)
2014-01-15 Includes\Trojans-VM-001.sbi (*)
2014-01-15 Includes\Trojans-VM-002.sbi (*)
2014-01-15 Includes\Trojans-VM-003.sbi (*)
2014-01-15 Includes\Trojans-VM-004.sbi (*)
2014-01-15 Includes\Trojans-VM-005.sbi (*)
2014-01-15 Includes\Trojans-VM-007.sbi (*)
2014-01-15 Includes\Trojans-VM-008.sbi (*)
2014-01-15 Includes\Trojans-VM-009.sbi (*)
2014-01-15 Includes\Trojans-VM-010.sbi (*)
2014-01-15 Includes\Trojans-VM-011.sbi (*)
2014-01-15 Includes\Trojans-VM-012.sbi (*)
2014-01-15 Includes\Trojans-VM-013.sbi (*)
2014-01-15 Includes\Trojans-VM-014.sbi (*)
2014-01-15 Includes\Trojans-VM-015.sbi (*)
2014-01-15 Includes\Trojans-VM-016.sbi (*)
2014-01-15 Includes\Trojans-VM-017.sbi (*)
2014-01-15 Includes\Trojans-VM-018.sbi (*)
2014-01-15 Includes\Trojans-VM-020.sbi (*)
2014-01-15 Includes\Trojans-VM-021.sbi (*)
2014-01-15 Includes\Trojans-VM-022.sbi (*)
2014-01-15 Includes\Trojans-VM-023.sbi (*)
2014-01-15 Includes\Trojans-VM-024.sbi (*)
2014-01-15 Includes\Trojans-ZB-000.sbi (*)
2016-02-03 Includes\Trojans-ZL-000.sbi (*)
2014-01-09 Includes\Trojans.sbi (*)
2014-01-16 Includes\TrojansC-01.sbi (*)
2014-01-16 Includes\TrojansC-02.sbi (*)
2014-01-16 Includes\TrojansC-03.sbi (*)
2014-01-16 Includes\TrojansC-04.sbi (*)
2014-01-16 Includes\TrojansC-05.sbi (*)
2014-01-09 Includes\TrojansC.sbi (*)
Děkuji za případnou další pomoc.
Search results from Spybot - Search & Destroy
19.01.2017 18:20:08
Scan took 00:27:33.
21 items found.
Win32.Graftor: [SBI $65843C8D] Settings (Registry Value, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\help
Category=Trojans
ThreatLevel=10
Weblink=http://forums.spybot.info/forumdisplay.php?54
Win32.Graftor: [SBI $C7B8B297] Data (File, nothing done)
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\7b3y3gki.default\searchplugins\j38sktxi.xml
Category=Trojans
ThreatLevel=10
Weblink=http://forums.spybot.info/forumdisplay.php?54
Properties.size=0
Properties.md5=D41D8CD98F00B204E9800998ECF8427E
Internet Explorer: [SBI $1E8157BE] Typed URL list (Registry Key, nothing done)
HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\TypedURLs
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Internet Explorer: [SBI $1E8157BE] Typed URL list (Registry Key, nothing done)
HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\TypedURLs
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Internet Explorer: [SBI $1E8157BE] Typed URL list (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1000\Software\Microsoft\Internet Explorer\TypedURLs
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
MS DirectInput: [SBI $9A063C91] Most recent application (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\DirectInput\MostRecentApplication\Name
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
MS DirectInput: [SBI $7B184199] Most recent application ID (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\DirectInput\MostRecentApplication\Id
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Windows.OpenWith: [SBI $F7204896] Open with list - .AVI extension (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.AVI\OpenWithList
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Windows Explorer: [SBI $AA0766B5] Stream history (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StreamMRU
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Windows Explorer: [SBI $D20DA0AD] Recent file global history (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Windows Media SDK: [SBI $37AAEDE6] Computer name (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\Windows Media\WMSDK\General\ComputerName
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Windows Media SDK: [SBI $CAA58B6E] Unique ID (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\Windows Media\WMSDK\General\UniqueID
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Windows Media SDK: [SBI $BACCD0DA] Volume serial number (Registry Value, nothing done)
HKEY_USERS\S-1-5-21-239169486-4084606830-2373920227-1001\Software\Microsoft\Windows Media\WMSDK\General\VolumeSerialNumber
Category=Tracks
ThreatLevel=2
Weblink=http://forums.spybot.info/forumdisplay.php?54
Cache: [SBI $49804B54] Browser: Cache (95) (Browser: Cache, nothing done)
Category=Browser
ThreatLevel=1
Weblink=http://forums.spybot.info/forumdisplay.php?54
History: [SBI $49804B54] Browser: History (1) (Browser: History, nothing done)
Category=Browser
ThreatLevel=1
Weblink=http://forums.spybot.info/forumdisplay.php?54
--- Spybot - Search & Destroy version: 2.6.44.134 DLL (build: 20160321) ---
2014-06-24 blindman.exe (2.4.40.151)
2014-06-24 explorer.exe (2.4.40.181)
2014-06-24 SDBootCD.exe (2.4.40.109)
2016-03-21 SDCleaner.exe (2.6.44.110)
2014-06-24 SDDelFile.exe (2.4.40.94)
2013-06-18 SDDisableProxy.exe
2014-06-24 SDFiles.exe (2.4.40.135)
2014-06-24 SDFileScanHelper.exe (2.4.40.1)
2014-06-24 SDFSSvc.exe (2.4.40.217)
2014-06-24 SDHelp.exe (2.4.40.1)
2014-04-25 SDHookHelper.exe (2.3.39.2)
2014-04-25 SDHookInst32.exe (2.3.39.2)
2014-04-25 SDHookInst64.exe (2.3.39.2)
2016-03-21 SDImmunize.exe (2.6.44.130)
2014-06-24 SDLogReport.exe (2.4.40.107)
2014-06-24 SDOnAccess.exe (2.4.40.11)
2014-06-24 SDPESetup.exe (2.4.40.3)
2014-06-24 SDPEStart.exe (2.4.40.86)
2014-06-24 SDPhoneScan.exe (2.4.40.28)
2014-06-24 SDPRE.exe (2.4.40.22)
2014-06-24 SDPrepPos.exe (2.4.40.15)
2014-06-24 SDQuarantine.exe (2.4.40.103)
2014-06-24 SDRootAlyzer.exe (2.4.40.116)
2014-06-24 SDSBIEdit.exe (2.4.40.39)
2016-03-21 SDScan.exe (2.6.44.181)
2014-06-24 SDScript.exe (2.4.40.54)
2016-03-21 SDSettings.exe (2.6.44.141)
2014-06-24 SDShell.exe (2.4.40.2)
2014-06-24 SDShred.exe (2.4.40.108)
2014-06-24 SDSysRepair.exe (2.4.40.102)
2014-06-24 SDTools.exe (2.4.40.157)
2014-06-24 SDTray.exe (2.4.40.129)
2014-06-27 SDUpdate.exe (2.4.40.94)
2016-09-21 SDUpdSvc.exe (2.5.44.79)
2014-06-24 SDWelcome.exe (2.4.40.130)
2016-11-24 SDWSCSvc.exe (2.5.55.3)
2016-05-02 spybotsd2-install-iefreezefix.exe (2.4.40.0)
2016-11-30 spybotsd2-install-wsc-update-a.exe (2.6.52.0)
2014-07-31 spybotsd2-translation-esx.exe
2013-06-19 spybotsd2-translation-frx.exe
2015-03-25 spybotsd2-translation-hrx.exe
2014-08-25 spybotsd2-translation-hux2.exe
2014-10-01 spybotsd2-translation-nlx2.exe
2014-11-05 spybotsd2-translation-ukx.exe
2016-09-21 spybotsd2-updater-update.exe (2.6.52.0)
2015-07-28 spybotsd2-windows-upgrade-installer.exe (1.4.0.0)
2017-01-19 unins000.exe (51.1052.0.0)
1999-12-02 xcacls.exe
2012-08-23 borlndmm.dll (10.0.2288.42451)
2012-09-05 DelZip190.dll (1.9.0.107)
2016-03-21 DelZip192.dll (1.9.2.132)
2012-09-10 libeay32.dll (1.0.0.4)
2012-09-10 libssl32.dll (1.0.0.4)
2014-04-25 NotificationSpreader.dll
2014-06-24 SDAdvancedCheckLibrary.dll (2.4.40.98)
2014-04-25 SDAV.dll
2014-06-24 SDECon32.dll (2.4.40.114)
2014-06-24 SDECon64.dll (2.3.39.113)
2014-06-24 SDEvents.dll (2.4.40.2)
2014-06-24 SDFileScanLibrary.dll (2.4.40.14)
2014-04-25 SDHook32.dll (2.3.39.2)
2014-04-25 SDHook64.dll (2.3.39.2)
2014-06-24 SDImmunizeLibrary.dll (2.4.40.2)
2014-06-24 SDLicense.dll (2.4.40.0)
2014-06-24 SDLists.dll (2.4.40.4)
2014-06-24 SDResources.dll (2.4.40.7)
2016-03-21 SDScanLibrary.dll (2.6.44.134)
2014-06-24 SDTasks.dll (2.4.40.15)
2014-06-24 SDWinLogon.dll (2.4.40.0)
2012-08-23 sqlite3.dll
2012-09-10 ssleay32.dll (1.0.0.4)
2014-06-24 Tools.dll (2.4.40.36)
2016-10-28 Includes\Adware-000.sbi (*)
2015-08-05 Includes\Adware-001.sbi (*)
2017-01-18 Includes\Adware-C.sbi (*)
2014-01-13 Includes\Adware.sbi (*)
2014-01-13 Includes\AdwareC.sbi (*)
2010-08-13 Includes\Cookies.sbi (*)
2014-11-14 Includes\Dialer-000.sbi (*)
2014-11-14 Includes\Dialer-001.sbi (*)
2016-11-16 Includes\Dialer-C.sbi (*)
2014-01-13 Includes\Dialer.sbi (*)
2014-01-13 Includes\DialerC.sbi (*)
2014-01-09 Includes\Fraud-000.sbi (*)
2014-01-09 Includes\Fraud-001.sbi (*)
2014-03-31 Includes\Fraud-002.sbi (*)
2016-07-06 Includes\Fraud-003.sbi (*)
2012-11-14 Includes\HeavyDuty.sbi (*)
2014-11-14 Includes\Hijackers-000.sbi (*)
2014-11-14 Includes\Hijackers-001.sbi (*)
2016-11-09 Includes\Hijackers-C.sbi (*)
2014-01-13 Includes\Hijackers.sbi (*)
2014-01-13 Includes\HijackersC.sbi (*)
2014-01-08 Includes\iPhone-000.sbi (*)
2014-01-08 Includes\iPhone.sbi (*)
2016-05-27 Includes\Keyloggers-000.sbi (*)
2016-08-31 Includes\Keyloggers-C.sbi (*)
2014-01-13 Includes\Keyloggers.sbi (*)
2014-01-13 Includes\KeyloggersC.sbi (*)
2015-06-25 Includes\Malware-000.sbi (*)
2014-11-14 Includes\Malware-001.sbi (*)
2016-06-14 Includes\Malware-002.sbi (*)
2014-11-14 Includes\Malware-004.sbi (*)
2014-11-14 Includes\Malware-005.sbi (*)
2014-02-26 Includes\Malware-006.sbi (*)
2014-01-09 Includes\Malware-007.sbi (*)
2016-12-07 Includes\Malware-C.sbi (*)
2014-01-13 Includes\Malware.sbi (*)
2013-12-23 Includes\MalwareC.sbi (*)
2014-11-14 Includes\PUPS-000.sbi (*)
2014-01-15 Includes\PUPS-001.sbi (*)
2014-01-15 Includes\PUPS-002.sbi (*)
2017-01-18 Includes\PUPS-C.sbi (*)
2012-11-14 Includes\PUPS.sbi (*)
2014-01-07 Includes\PUPSC.sbi (*)
2014-01-08 Includes\Security-000.sbi (*)
2015-12-02 Includes\Security-C.sbi (*)
2014-01-21 Includes\Security.sbi (*)
2014-01-21 Includes\SecurityC.sbi (*)
2015-11-11 Includes\Spyware-000.sbi (*)
2015-05-06 Includes\Spyware-001.sbi (*)
2016-08-10 Includes\Spyware-C.sbi (*)
2014-01-21 Includes\Spyware.sbi (*)
2014-01-21 Includes\SpywareC.sbi (*)
2011-06-07 Includes\Tracks.sbi (*)
2012-11-19 Includes\Tracks.uti (*)
2014-01-15 Includes\Trojans-000.sbi (*)
2014-01-15 Includes\Trojans-001.sbi (*)
2016-01-20 Includes\Trojans-003.sbi (*)
2014-01-15 Includes\Trojans-004.sbi (*)
2014-03-19 Includes\Trojans-005.sbi (*)
2014-01-15 Includes\Trojans-007.sbi (*)
2014-07-09 Includes\Trojans-009.sbi (*)
2017-01-18 Includes\Trojans-C.sbi (*)
2014-01-15 Includes\Trojans-OG-000.sbi (*)
2014-01-15 Includes\Trojans-TD-000.sbi (*)
2014-01-15 Includes\Trojans-VM-000.sbi (*)
2014-01-15 Includes\Trojans-VM-001.sbi (*)
2014-01-15 Includes\Trojans-VM-002.sbi (*)
2014-01-15 Includes\Trojans-VM-003.sbi (*)
2014-01-15 Includes\Trojans-VM-004.sbi (*)
2014-01-15 Includes\Trojans-VM-005.sbi (*)
2014-01-15 Includes\Trojans-VM-007.sbi (*)
2014-01-15 Includes\Trojans-VM-008.sbi (*)
2014-01-15 Includes\Trojans-VM-009.sbi (*)
2014-01-15 Includes\Trojans-VM-010.sbi (*)
2014-01-15 Includes\Trojans-VM-011.sbi (*)
2014-01-15 Includes\Trojans-VM-012.sbi (*)
2014-01-15 Includes\Trojans-VM-013.sbi (*)
2014-01-15 Includes\Trojans-VM-014.sbi (*)
2014-01-15 Includes\Trojans-VM-015.sbi (*)
2014-01-15 Includes\Trojans-VM-016.sbi (*)
2014-01-15 Includes\Trojans-VM-017.sbi (*)
2014-01-15 Includes\Trojans-VM-018.sbi (*)
2014-01-15 Includes\Trojans-VM-020.sbi (*)
2014-01-15 Includes\Trojans-VM-021.sbi (*)
2014-01-15 Includes\Trojans-VM-022.sbi (*)
2014-01-15 Includes\Trojans-VM-023.sbi (*)
2014-01-15 Includes\Trojans-VM-024.sbi (*)
2014-01-15 Includes\Trojans-ZB-000.sbi (*)
2016-02-03 Includes\Trojans-ZL-000.sbi (*)
2014-01-09 Includes\Trojans.sbi (*)
2014-01-16 Includes\TrojansC-01.sbi (*)
2014-01-16 Includes\TrojansC-02.sbi (*)
2014-01-16 Includes\TrojansC-03.sbi (*)
2014-01-16 Includes\TrojansC-04.sbi (*)
2014-01-16 Includes\TrojansC-05.sbi (*)
2014-01-09 Includes\TrojansC.sbi (*)
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Dejte smazat. Spybot je už ale poněkud za zenitem.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Možná, že ano. Ale po vyčištění PC Spybotem jede vše tak, jak má. Zatím. 
Tímto uzavírám toto téma a děkuji za veškerou pomoc.
Tímto uzavírám toto téma a děkuji za veškerou pomoc.-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
OK, rádo se stalo!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?