Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zamořený PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119670
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zamořený PC
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zamořený PC
Omlouvám se,
na začátku mne nenapadlo vložit ten log fyzicky. A po částech toho je strašně moc.
Takže tady je
na začátku mne nenapadlo vložit ten log fyzicky. A po částech toho je strašně moc.
Takže tady je
- Přílohy
-
- MWB log.zip
- (21.39 KiB) Staženo 70 x
-
Rudy
- Site Admin
- Příspěvky: 119670
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zamořený PC
Všechny nálezy MBAM smažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zamořený PC
Zdravím,
zatím se to jeví jako čisté. Uvidím, jak se bude počítač chovat dále. Pro jistotu přikládám report
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-04-2017 01
Ran by Golfstar (administrator) on GOLFSTAR1 (19-04-2017 19:58:32)
Running from C:\Users\Golfstar\Desktop
Loaded Profiles: Golfstar (Available Profiles: Golfstar & Bíba)
Platform: Windows 10 Pro Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\reader_sl.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672664 2015-01-17] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1803976 2016-12-09] (NVIDIA Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-04-04] (AVAST Software)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-06-09] (CANON INC.)
HKU\S-1-5-21-1702488835-1983202832-4074137989-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2017-02-07] (Disc Soft Ltd)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Golfstar\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Golfstar\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Golfstar\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Golfstar\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Golfstar\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Golfstar\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Golfstar\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Golfstar\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-04-04] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-04-04] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Mozilla Firefox.lnk [2017-04-12]
ShortcutTarget: Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (No File)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{2a80756e-0938-4e11-99d0-0754bab631cf}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{71c2fb54-53e8-4da4-bf47-85d8ac52238d}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-1702488835-1983202832-4074137989-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1702488835-1983202832-4074137989-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1702488835-1983202832-4074137989-1001 -> {4E739F84-3E81-4553-A622-9A839958943C} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-03-12] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-03-12] (Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
FireFox:
========
FF ProfilePath: C:\Users\Golfstar\AppData\Roaming\Mozilla\Firefox\Profiles\b2d0gye8.default-1492016320756 [2017-04-16]
FF NewTab: Mozilla\Firefox\Profiles\b2d0gye8.default-1492016320756 -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\b2d0gye8.default-1492016320756 -> about:home
FF Extension: (Disable Prefetch) - C:\Users\Golfstar\AppData\Roaming\Mozilla\Firefox\Profiles\b2d0gye8.default-1492016320756\features\{0b819a28-c59a-46e0-8f69-ea58ef041fba}\disable-prefetch@mozilla.org.xpi [2017-04-13]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF48 [2017-04-04]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF48 [2017-04-04]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_148.dll [2017-04-11] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_148.dll [2017-04-11] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-03-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-03-12] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-11] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1702488835-1983202832-4074137989-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Golfstar\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [No File]
FF Plugin HKU\S-1-5-21-1702488835-1983202832-4074137989-1001: thehappycloud.com/HappyCloudPlugin -> C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll [2013-05-05] (The Happy Cloud)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-04-19] <==== ATTENTION
CHR Extension: (Prezentace Google) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-04-18]
CHR Extension: (Dokumenty Google) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-18]
CHR Extension: (Disk Google) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-18]
CHR Extension: (YouTube) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-18]
CHR Extension: (Adobe Acrobat) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-04-18]
CHR Extension: (Avast SafePrice) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-04-18]
CHR Extension: (Tabulky Google) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-04-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-18]
CHR Extension: (Gmail) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-18]
CHR Extension: (Chrome Media Router) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-18]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7398336 2017-04-04] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [261712 2017-04-04] (AVAST Software)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2016-03-28] (BitRaider, LLC)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-02-07] (Disc Soft Ltd)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-14] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2017-02-19] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2184208 2017-02-19] (Electronic Arts)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2016-10-25] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2017-03-28] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [307736 2017-04-04] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [189768 2017-04-04] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [334088 2017-04-04] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [48528 2017-04-04] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [38296 2017-04-04] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [32600 2017-04-04] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [127112 2017-04-04] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [101152 2017-04-04] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [75704 2017-04-04] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [1005048 2017-04-04] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [556784 2017-04-04] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [164064 2017-04-04] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [339696 2017-04-04] (AVAST Software)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2016-03-28] (BitRaider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-03-05] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-03-05] (Disc Soft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77440 2017-03-22] ()
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [186304 2017-04-18] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [111544 2017-04-19] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [43968 2017-04-19] (Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [251832 2017-04-19] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [92096 2017-04-19] (Malwarebytes)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 vmci; \SystemRoot\System32\drivers\vmci.sys [X]
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X]
S2 VMnetBridge; system32\DRIVERS\vmnetbridge.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-04-19 19:42 - 2017-04-19 19:42 - 00000000 ____D C:\Users\Golfstar\AppData\Local\PeerDistRepub
2017-04-18 22:25 - 2017-04-18 22:25 - 00021900 _____ C:\Users\Golfstar\Desktop\MWB log.zip
2017-04-18 22:16 - 2017-04-18 22:16 - 00734844 _____ C:\Users\Golfstar\Desktop\MWB log.txt
2017-04-18 22:05 - 2017-04-19 19:45 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-04-18 22:05 - 2017-04-19 19:45 - 00111544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-04-18 22:05 - 2017-04-19 19:45 - 00092096 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-04-18 22:05 - 2017-04-19 19:45 - 00043968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-04-18 22:05 - 2017-04-18 22:05 - 00186304 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-04-18 22:05 - 2017-04-18 22:05 - 00001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-04-18 22:05 - 2017-04-18 22:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-04-18 22:05 - 2017-04-18 22:05 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-04-18 22:05 - 2017-04-18 22:05 - 00000000 ____D C:\Program Files\Malwarebytes
2017-04-18 22:05 - 2017-03-22 11:02 - 00077440 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-04-17 09:13 - 2017-04-17 09:13 - 00000000 ____D C:\Users\Bíba\AppData\Local\ActiveSync
2017-04-16 23:49 - 2017-04-16 23:49 - 00000000 ____D C:\Users\Golfstar\AppData\Local\ActiveSync
2017-04-16 23:26 - 2017-04-16 21:59 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2017-04-16 21:59 - 2017-04-16 23:21 - 00000000 ____D C:\zoek_backup
2017-04-16 21:58 - 2017-04-16 21:59 - 01309184 _____ C:\Users\Golfstar\Desktop\zoek.exe
2017-04-16 18:18 - 2017-04-16 18:26 - 00005681 _____ C:\Users\Golfstar\Desktop\Fixlog.txt
2017-04-16 18:17 - 2017-04-19 19:58 - 00000000 ____D C:\Users\Golfstar\Desktop\FRST-OlderVersion
2017-04-16 15:36 - 2017-04-16 15:36 - 00046990 _____ C:\Users\Golfstar\Downloads\00000000015101238840_255036339_20170331_3_MCZS.pdf
2017-04-15 01:46 - 2017-04-19 19:58 - 00018985 _____ C:\Users\Golfstar\Desktop\FRST.txt
2017-04-15 00:39 - 2017-04-15 00:39 - 00058707 _____ C:\Users\Golfstar\Desktop\FRST3.txt
2017-04-15 00:38 - 2017-04-16 18:33 - 00053063 _____ C:\Users\Golfstar\Desktop\Addition.txt
2017-04-15 00:35 - 2017-04-19 19:58 - 00000000 ____D C:\FRST
2017-04-15 00:29 - 2017-04-19 19:58 - 02424832 _____ (Farbar) C:\Users\Golfstar\Desktop\FRST64.exe
2017-04-15 00:01 - 2017-04-15 00:01 - 00001031 _____ C:\Users\Golfstar\Desktop\RegCleaner.lnk
2017-04-15 00:01 - 2017-04-15 00:01 - 00000000 ____D C:\Program Files (x86)\RegCleaner
2017-04-12 19:11 - 2017-04-19 19:42 - 00000000 ____D C:\AdwCleaner
2017-04-12 19:11 - 2017-04-12 19:11 - 04089296 _____ C:\Users\Golfstar\Desktop\adwcleaner_6.045.exe
2017-04-12 19:03 - 2017-04-16 23:55 - 00000555 _____ C:\Users\Golfstar\Desktop\JRT.txt
2017-04-11 21:43 - 2017-04-11 21:43 - 00388608 _____ (Trend Micro Inc.) C:\Users\Golfstar\Downloads\hijackthis(2).exe
2017-04-11 21:04 - 2017-04-11 21:04 - 00000000 _____ C:\WINDOWS\SysWOW64\1
2017-04-11 20:26 - 2017-03-28 10:51 - 00602256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-04-11 20:26 - 2017-03-28 10:50 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-04-11 20:26 - 2017-03-28 09:53 - 06958304 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-04-11 20:26 - 2017-03-28 09:45 - 00958120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-04-11 20:26 - 2017-03-28 09:44 - 02944592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-04-11 20:26 - 2017-03-28 09:44 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-04-11 20:26 - 2017-03-28 09:41 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-04-11 20:26 - 2017-03-28 09:40 - 05240440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-04-11 20:26 - 2017-03-28 09:08 - 00546968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-04-11 20:26 - 2017-03-28 09:08 - 00316248 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-04-11 20:26 - 2017-03-28 09:06 - 01522664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-04-11 20:26 - 2017-03-28 09:06 - 01370736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2017-04-11 20:26 - 2017-03-28 08:37 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-04-11 20:26 - 2017-03-28 08:23 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-04-11 20:26 - 2017-03-28 08:12 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-04-11 20:26 - 2017-03-28 08:07 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2017-04-11 20:26 - 2017-03-28 08:06 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2017-04-11 20:26 - 2017-03-28 07:57 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2017-04-11 20:26 - 2017-03-28 07:56 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2017-04-11 20:26 - 2017-03-28 07:53 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-04-11 20:26 - 2017-03-28 07:47 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-04-11 20:26 - 2017-03-28 07:43 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2017-04-11 20:26 - 2017-03-28 07:42 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-04-11 20:26 - 2017-03-28 07:41 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-04-11 20:26 - 2017-03-28 07:35 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2017-04-11 20:26 - 2017-03-28 07:33 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-04-11 20:26 - 2017-03-28 07:33 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-04-11 20:26 - 2017-03-28 07:32 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2017-04-11 20:26 - 2017-03-28 07:18 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-04-11 20:26 - 2017-03-28 07:18 - 01542656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-04-11 20:26 - 2017-03-28 07:11 - 01501696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-04-11 20:26 - 2017-03-28 07:08 - 02878976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-04-11 20:26 - 2017-03-28 07:04 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2017-04-11 20:26 - 2017-03-28 06:47 - 04405248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2017-04-11 20:26 - 2017-03-28 06:45 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-04-11 20:26 - 2017-03-28 06:41 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-04-11 20:26 - 2017-03-28 06:13 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-04-11 20:26 - 2017-03-18 18:41 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-04-11 20:25 - 2017-03-28 12:20 - 00100192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2017-04-11 20:25 - 2017-03-28 12:18 - 01997840 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-04-11 20:25 - 2017-03-28 12:17 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-04-11 20:25 - 2017-03-28 12:17 - 00800080 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-04-11 20:25 - 2017-03-28 11:51 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2017-04-11 20:25 - 2017-03-28 11:18 - 08710320 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-04-11 20:25 - 2017-03-28 11:12 - 01322760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-04-11 20:25 - 2017-03-28 11:11 - 03698216 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-04-11 20:25 - 2017-03-28 11:11 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-04-11 20:25 - 2017-03-28 11:06 - 06604992 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-04-11 20:25 - 2017-03-28 11:05 - 06536248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2017-04-11 20:25 - 2017-03-28 10:59 - 00262400 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2017-04-11 20:25 - 2017-03-28 10:52 - 00168360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2017-04-11 20:25 - 2017-03-28 10:51 - 01557776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-04-11 20:25 - 2017-03-28 10:28 - 01777792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-04-11 20:25 - 2017-03-28 10:12 - 00388888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-04-11 20:25 - 2017-03-28 10:05 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-04-11 20:25 - 2017-03-28 09:52 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-04-11 20:25 - 2017-03-28 09:51 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-04-11 20:25 - 2017-03-28 09:49 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-04-11 20:25 - 2017-03-28 09:42 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-04-11 20:25 - 2017-03-28 09:35 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-04-11 20:25 - 2017-03-28 09:31 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-04-11 20:25 - 2017-03-28 09:29 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2017-04-11 20:25 - 2017-03-28 09:21 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-04-11 20:25 - 2017-03-28 09:18 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-04-11 20:25 - 2017-03-28 09:17 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-04-11 20:25 - 2017-03-28 09:16 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2017-04-11 20:25 - 2017-03-28 09:14 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-04-11 20:25 - 2017-03-28 09:10 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-04-11 20:25 - 2017-03-28 09:01 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-04-11 20:25 - 2017-03-28 08:56 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2017-04-11 20:25 - 2017-03-28 08:55 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-04-11 20:25 - 2017-03-28 08:54 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-04-11 20:25 - 2017-03-28 08:53 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-04-11 20:25 - 2017-03-28 08:51 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-04-11 20:25 - 2017-03-28 08:48 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-04-11 20:25 - 2017-03-28 08:46 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-04-11 20:25 - 2017-03-28 08:44 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2017-04-11 20:25 - 2017-03-28 08:42 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2017-04-11 20:25 - 2017-03-28 08:41 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-04-11 20:25 - 2017-03-28 08:26 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-04-11 20:25 - 2017-03-28 08:26 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-04-11 20:25 - 2017-03-28 08:25 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-04-11 20:25 - 2017-03-28 08:20 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-04-11 20:25 - 2017-03-28 08:17 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-04-11 20:25 - 2017-03-28 08:12 - 01729536 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-04-11 20:25 - 2017-03-28 08:10 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-04-11 20:25 - 2017-03-28 08:06 - 03405312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-04-11 20:25 - 2017-03-28 08:05 - 07977984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2017-04-11 20:25 - 2017-03-28 08:01 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-04-11 20:25 - 2017-03-28 08:01 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2017-04-11 20:25 - 2017-03-28 07:56 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-04-11 20:25 - 2017-03-28 07:53 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-04-11 20:25 - 2017-03-28 07:44 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-04-11 20:25 - 2017-03-28 07:42 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-04-11 20:25 - 2017-03-28 07:42 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-04-11 20:25 - 2017-03-28 07:41 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-04-11 20:25 - 2017-03-28 07:40 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-04-11 20:25 - 2017-03-28 07:39 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2017-04-11 20:25 - 2017-03-28 07:36 - 04895744 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-04-11 20:25 - 2017-03-28 07:36 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-04-11 20:25 - 2017-03-28 07:29 - 22375424 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-04-11 20:25 - 2017-03-28 07:22 - 06312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-04-11 20:25 - 2017-03-28 07:20 - 24604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-04-11 20:25 - 2017-03-28 07:20 - 13392384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-04-11 20:25 - 2017-03-28 07:19 - 02911744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-04-11 20:25 - 2017-03-28 07:06 - 07856640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-04-11 20:25 - 2017-03-28 06:48 - 03664384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-04-11 20:25 - 2017-03-28 06:46 - 19344896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-04-11 20:25 - 2017-03-28 06:45 - 18671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-04-11 20:25 - 2017-03-28 06:45 - 12134912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-04-11 20:25 - 2017-03-28 06:31 - 05670912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-04-11 20:25 - 2017-03-18 22:39 - 22560744 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-04-11 20:24 - 2017-03-28 12:19 - 00202480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2017-04-11 20:24 - 2017-03-28 12:14 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-04-11 20:24 - 2017-03-28 12:12 - 00061792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2017-04-11 20:24 - 2017-03-28 11:08 - 00566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-04-11 20:24 - 2017-03-28 11:05 - 01540216 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-04-11 20:24 - 2017-03-28 11:05 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-04-11 20:24 - 2017-03-28 11:03 - 01128104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-04-11 20:24 - 2017-03-28 11:03 - 00625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-04-11 20:24 - 2017-03-28 10:30 - 00379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-04-11 20:24 - 2017-03-28 10:29 - 01986912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-04-11 20:24 - 2017-03-28 10:29 - 00636304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-04-11 20:24 - 2017-03-28 10:29 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-04-11 20:24 - 2017-03-28 10:28 - 01594928 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2017-04-11 20:24 - 2017-03-28 09:52 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdProxy.dll
2017-04-11 20:24 - 2017-03-28 09:51 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-04-11 20:24 - 2017-03-28 09:50 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-04-11 20:24 - 2017-03-28 09:48 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-04-11 20:24 - 2017-03-28 09:40 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-04-11 20:24 - 2017-03-28 09:38 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2017-04-11 20:24 - 2017-03-28 09:37 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2017-04-11 20:24 - 2017-03-28 09:28 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2017-04-11 20:24 - 2017-03-28 09:20 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2017-04-11 20:24 - 2017-03-28 09:20 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2017-04-11 20:24 - 2017-03-28 09:18 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-04-11 20:24 - 2017-03-28 09:15 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-04-11 20:24 - 2017-03-28 09:13 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-04-11 20:24 - 2017-03-28 09:09 - 00715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-04-11 20:24 - 2017-03-28 08:55 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2017-04-11 20:24 - 2017-03-28 08:53 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-04-11 20:24 - 2017-03-28 08:41 - 04456448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-04-11 20:24 - 2017-03-28 08:40 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2017-04-11 20:24 - 2017-03-28 08:21 - 03586048 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-04-11 20:24 - 2017-03-28 08:19 - 01674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-04-11 20:24 - 2017-03-28 08:16 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-04-11 20:24 - 2017-03-28 07:55 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-04-11 20:24 - 2017-03-28 07:30 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-04-11 20:24 - 2017-03-28 07:01 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-04-08 19:26 - 2017-04-08 19:26 - 00645990 _____ C:\Users\Golfstar\Documents\Souhlas Mačeta.pdf
2017-04-08 19:25 - 2017-04-08 19:25 - 00672790 _____ C:\Users\Golfstar\Documents\Souhlas Azimut.pdf
2017-04-08 19:18 - 2017-04-08 19:18 - 00580455 _____ C:\Users\Golfstar\Documents\Souhlas Robin.pdf
2017-04-08 19:09 - 2017-04-08 19:09 - 01061427 _____ C:\Users\Golfstar\Downloads\ZkracenyVypis_1585.pdf
2017-04-08 13:25 - 2017-04-08 13:25 - 00493901 _____ C:\Users\Golfstar\Downloads\metodika_7_inventarizace (1).pdf
2017-04-08 13:24 - 2017-04-08 13:25 - 00493901 _____ C:\Users\Golfstar\Downloads\metodika_7_inventarizace.pdf
2017-04-08 13:15 - 2017-04-08 13:15 - 01576714 _____ C:\Users\Golfstar\Downloads\SouhlasyKandidatu_1585.zip
2017-04-07 12:51 - 2017-04-07 12:51 - 00000000 ____D C:\Users\Default\AppData\Local\AMD
2017-04-07 12:51 - 2017-04-07 12:51 - 00000000 ____D C:\Users\Default User\AppData\Local\AMD
2017-04-07 07:45 - 2017-04-19 19:42 - 00000000 ____D C:\Update
2017-04-07 07:43 - 2017-04-10 20:00 - 00000000 ____D C:\Program Files\MK
2017-04-06 23:37 - 2017-04-06 23:37 - 00002775 _____ C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2017-04-06 23:37 - 2017-04-06 23:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2017-04-06 23:37 - 2017-04-06 23:37 - 00000000 ____D C:\Program Files (x86)\Sophos
2017-04-06 23:34 - 2017-04-06 23:35 - 164764280 _____ (Sophos Limited) C:\Users\Golfstar\Downloads\Sophos Virus Removal Tool (1).exe
2017-04-06 23:32 - 2017-04-06 23:32 - 00000000 ____D C:\ProgramData\Sophos
2017-04-06 23:30 - 2017-04-12 19:01 - 01663904 _____ (Malwarebytes) C:\Users\Golfstar\Desktop\JRT.exe
2017-04-06 22:14 - 2017-04-06 22:14 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2017-04-06 22:12 - 2017-04-06 22:22 - 00136962 _____ C:\WINDOWS\ntbtlog.txt
2017-04-04 19:20 - 2017-04-04 19:20 - 00399944 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-04-03 20:45 - 2017-04-03 21:38 - 471699570 _____ C:\Users\Golfstar\Downloads\The.Walking.Dead.S07E16.cz.tit..avi
2017-04-01 15:13 - 2017-04-01 15:13 - 00000000 ___HD C:\$WINDOWS.~BT
2017-03-29 21:00 - 2017-03-29 21:18 - 334823390 _____ C:\Users\Golfstar\Downloads\The.Walking.Dead.S07E15.cz.tit..avi
2017-03-29 19:44 - 2017-03-29 20:04 - 356193958 _____ C:\Users\Golfstar\Downloads\The.Walking.Dead.S07E14.cz.tit..avi
2017-03-29 19:13 - 2017-03-29 19:43 - 524679426 _____ C:\Users\Golfstar\Downloads\The.Walking.Dead.S07E13.cz.tit..avi
2017-03-28 21:45 - 2017-03-28 22:16 - 527046222 _____ C:\Users\Golfstar\Downloads\The.Walking.Dead.S07E12.cz.tit..avi
2017-03-28 21:11 - 2017-03-28 21:35 - 408304714 _____ C:\Users\Golfstar\Downloads\The.Walking.Dead.S07E11.cz.tit..avi
2017-03-27 23:03 - 2017-03-27 23:38 - 626845494 _____ C:\Users\Golfstar\Downloads\The.Walking.Dead.S07E10.cz.tit..avi
2017-03-27 22:38 - 2017-03-27 22:59 - 314294272 _____ C:\Users\Golfstar\Downloads\The.Walking.Dead.S07E09.cz-tit.avi
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-04-19 19:51 - 2016-07-23 10:07 - 02039786 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-19 19:51 - 2016-04-27 08:11 - 00843726 _____ C:\WINDOWS\system32\perfh005.dat
2017-04-19 19:51 - 2016-04-27 08:11 - 00192740 _____ C:\WINDOWS\system32\perfc005.dat
2017-04-19 19:51 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2017-04-19 19:44 - 2016-07-23 10:03 - 00000000 ____D C:\ProgramData\NVIDIA
2017-04-19 19:44 - 2016-04-27 08:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-04-19 19:44 - 2014-09-22 13:21 - 00000902 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1702488835-1983202832-4074137989-1003Core.job
2017-04-19 19:43 - 2015-10-30 08:28 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2017-04-19 19:27 - 2014-09-22 13:21 - 00000924 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1702488835-1983202832-4074137989-1003UA.job
2017-04-19 18:58 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-04-19 18:53 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2017-04-19 18:43 - 2015-06-18 06:31 - 00000930 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1702488835-1983202832-4074137989-1001UA.job
2017-04-19 14:42 - 2015-06-18 06:31 - 00000878 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1702488835-1983202832-4074137989-1001Core.job
2017-04-19 12:16 - 2016-06-05 01:12 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2017-04-19 11:48 - 2014-09-02 18:13 - 00000000 ____D C:\Users\Bíba\AppData\Roaming\Skype
2017-04-19 10:05 - 2016-06-07 00:06 - 00000000 ____D C:\Users\Bíba\AppData\Local\Battle.net
2017-04-19 10:05 - 2016-06-05 01:09 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-04-17 09:11 - 2016-07-30 10:50 - 00000290 __RSH C:\Users\Bíba\ntuser.pol
2017-04-17 09:11 - 2016-07-23 10:08 - 00000000 ____D C:\Users\Bíba
2017-04-16 23:18 - 2016-07-23 10:08 - 00000000 ____D C:\Users\Golfstar
2017-04-16 23:18 - 2009-07-14 05:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-04-16 18:25 - 2016-07-23 13:13 - 00000008 __RSH C:\Users\Golfstar\ntuser.pol
2017-04-16 18:20 - 2016-11-22 00:02 - 00000000 ____D C:\Users\Golfstar\AppData\LocalLow\Temp
2017-04-16 15:36 - 2016-11-12 00:54 - 00000000 ____D C:\ProgramData\CanonIJPLM
2017-04-16 13:40 - 2014-11-29 23:30 - 00000000 ____D C:\Users\Golfstar\Documents\Skaut
2017-04-15 07:51 - 2016-12-15 08:15 - 00003276 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-04-15 07:51 - 2016-07-30 10:53 - 00002427 _____ C:\Users\Bíba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-04-15 07:51 - 2016-07-30 10:53 - 00000000 ___RD C:\Users\Bíba\OneDrive
2017-04-14 23:05 - 2016-07-23 13:18 - 00002439 _____ C:\Users\Golfstar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-04-14 23:05 - 2016-07-23 13:18 - 00000000 ___RD C:\Users\Golfstar\OneDrive
2017-04-13 23:34 - 2015-02-06 12:11 - 00000000 ____D C:\Program Files (x86)\PDF Architect 2
2017-04-13 23:32 - 2014-08-28 21:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-04-13 23:23 - 2016-11-19 00:10 - 00000000 ____D C:\Users\Golfstar\AppData\LocalLow\Mozilla
2017-04-13 23:18 - 2016-07-23 10:28 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-04-13 23:18 - 2015-11-10 07:32 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-04-13 23:18 - 2014-12-22 14:16 - 00001379 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-04-13 07:02 - 2016-11-19 08:43 - 00000000 ____D C:\Users\Bíba\AppData\LocalLow\Mozilla
2017-04-12 19:28 - 2017-03-10 09:32 - 00000000 ____D C:\Users\Golfstar\Downloads\backups
2017-04-12 19:23 - 2017-03-09 23:43 - 00004268 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-04-12 19:19 - 2017-03-07 13:45 - 00000000 ____D C:\Users\Default\AppData\Roaming\Kyubey
2017-04-12 19:19 - 2017-03-07 13:45 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Kyubey
2017-04-12 19:17 - 2017-03-17 20:22 - 00000000 ____D C:\WINDOWS\system32\log
2017-04-12 07:12 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2017-04-12 04:26 - 2016-04-27 09:00 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-04-12 00:08 - 2014-12-22 14:16 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-04-11 22:29 - 2014-08-29 00:15 - 00000000 ____D C:\ProgramData\HappyCloud
2017-04-11 22:27 - 2014-08-30 23:08 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-04-11 22:26 - 2016-09-04 21:32 - 00000000 ____D C:\ProgramData\Electronic Arts
2017-04-11 22:25 - 2016-07-23 10:28 - 00003470 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-04-11 22:25 - 2016-07-23 10:28 - 00003346 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-11 21:49 - 2016-04-26 23:46 - 04780000 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-04-11 21:46 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-04-11 21:46 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-04-11 21:46 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-04-11 21:46 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2017-04-11 21:46 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-04-11 21:46 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Defender
2017-04-11 21:46 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-04-11 21:46 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-04-11 21:41 - 2016-09-09 00:12 - 00000000 ____D C:\Users\Golfstar\AppData\Local\CrashDumps
2017-04-11 21:41 - 2015-01-17 21:25 - 00000000 ___HD C:\Program Files (x86)\Temp
2017-04-11 21:04 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-04-11 21:04 - 2014-08-28 00:15 - 148601744 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-04-11 21:04 - 2014-08-28 00:15 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-04-11 19:42 - 2017-02-06 09:57 - 00000000 ____D C:\Users\Bíba\AppData\Local\CrashDumps
2017-04-11 15:02 - 2016-07-23 10:28 - 00004592 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-04-11 15:02 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-04-11 15:02 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-04-11 14:02 - 2016-12-23 00:44 - 00004470 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-04-08 00:40 - 2016-06-05 01:10 - 00000000 ____D C:\Users\Golfstar\AppData\Local\Battle.net
2017-04-05 08:13 - 2016-07-23 10:28 - 00004010 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1458712455
2017-04-05 08:13 - 2016-03-23 07:54 - 00001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-04-04 19:20 - 2017-03-09 23:43 - 00334088 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
2017-04-04 19:20 - 2017-03-09 23:43 - 00307736 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2017-04-04 19:20 - 2017-03-09 23:43 - 00189768 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2017-04-04 19:20 - 2017-03-09 23:43 - 00048528 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2017-04-04 19:20 - 2016-03-23 07:53 - 00032600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2017-04-04 19:20 - 2014-08-28 21:26 - 01005048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-04-04 19:20 - 2014-08-28 21:26 - 00556784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-04-04 19:20 - 2014-08-28 21:26 - 00339696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-04-04 19:20 - 2014-08-28 21:26 - 00164064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-04-04 19:20 - 2014-08-28 21:26 - 00127112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-04-04 19:20 - 2014-08-28 21:26 - 00101152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-04-04 19:20 - 2014-08-28 21:26 - 00075704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-04-04 19:20 - 2014-08-28 21:26 - 00038296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-04-01 21:05 - 2015-10-30 09:26 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-04-01 21:05 - 2015-10-30 09:26 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-04-01 15:13 - 2016-07-23 10:59 - 00000000 ___DC C:\WINDOWS\Panther
2017-03-31 01:13 - 2016-07-23 10:28 - 00003954 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1423217291
2017-03-31 01:13 - 2015-02-06 12:08 - 00001208 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2017-03-31 01:13 - 2015-02-06 12:07 - 00000000 ____D C:\Program Files (x86)\Opera
2017-03-28 11:15 - 2016-04-27 08:52 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-03-23 12:49 - 2016-11-12 08:13 - 00000000 ____D C:\Users\Bíba\AppData\Roaming\Canon
==================== Files in the root of some directories =======
2016-09-02 00:12 - 2016-09-02 00:12 - 0001907 _____ () C:\Users\Golfstar\AppData\Local\recently-used.xbel
2016-09-04 22:31 - 2016-09-04 22:31 - 0000017 _____ () C:\Users\Golfstar\AppData\Local\resmon.resmoncfg
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-04-13 08:09
==================== End of FRST.txt ============================
zatím se to jeví jako čisté. Uvidím, jak se bude počítač chovat dále. Pro jistotu přikládám report
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-04-2017 01
Ran by Golfstar (administrator) on GOLFSTAR1 (19-04-2017 19:58:32)
Running from C:\Users\Golfstar\Desktop
Loaded Profiles: Golfstar (Available Profiles: Golfstar & Bíba)
Platform: Windows 10 Pro Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\reader_sl.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672664 2015-01-17] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1803976 2016-12-09] (NVIDIA Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-04-04] (AVAST Software)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-06-09] (CANON INC.)
HKU\S-1-5-21-1702488835-1983202832-4074137989-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2017-02-07] (Disc Soft Ltd)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Golfstar\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Golfstar\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Golfstar\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Golfstar\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Golfstar\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Golfstar\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Golfstar\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Golfstar\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-04-04] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-04-04] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Mozilla Firefox.lnk [2017-04-12]
ShortcutTarget: Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (No File)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{2a80756e-0938-4e11-99d0-0754bab631cf}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{71c2fb54-53e8-4da4-bf47-85d8ac52238d}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-1702488835-1983202832-4074137989-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1702488835-1983202832-4074137989-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1702488835-1983202832-4074137989-1001 -> {4E739F84-3E81-4553-A622-9A839958943C} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-03-12] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-03-12] (Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
FireFox:
========
FF ProfilePath: C:\Users\Golfstar\AppData\Roaming\Mozilla\Firefox\Profiles\b2d0gye8.default-1492016320756 [2017-04-16]
FF NewTab: Mozilla\Firefox\Profiles\b2d0gye8.default-1492016320756 -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\b2d0gye8.default-1492016320756 -> about:home
FF Extension: (Disable Prefetch) - C:\Users\Golfstar\AppData\Roaming\Mozilla\Firefox\Profiles\b2d0gye8.default-1492016320756\features\{0b819a28-c59a-46e0-8f69-ea58ef041fba}\disable-prefetch@mozilla.org.xpi [2017-04-13]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF48 [2017-04-04]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF48 [2017-04-04]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_148.dll [2017-04-11] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_148.dll [2017-04-11] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-03-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-03-12] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-11] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1702488835-1983202832-4074137989-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Golfstar\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [No File]
FF Plugin HKU\S-1-5-21-1702488835-1983202832-4074137989-1001: thehappycloud.com/HappyCloudPlugin -> C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll [2013-05-05] (The Happy Cloud)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-04-19] <==== ATTENTION
CHR Extension: (Prezentace Google) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-04-18]
CHR Extension: (Dokumenty Google) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-18]
CHR Extension: (Disk Google) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-18]
CHR Extension: (YouTube) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-18]
CHR Extension: (Adobe Acrobat) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-04-18]
CHR Extension: (Avast SafePrice) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-04-18]
CHR Extension: (Tabulky Google) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-04-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-18]
CHR Extension: (Gmail) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-18]
CHR Extension: (Chrome Media Router) - C:\Users\Golfstar\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-18]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7398336 2017-04-04] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [261712 2017-04-04] (AVAST Software)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2016-03-28] (BitRaider, LLC)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-02-07] (Disc Soft Ltd)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-14] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2017-02-19] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2184208 2017-02-19] (Electronic Arts)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2016-10-25] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2017-03-28] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [307736 2017-04-04] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [189768 2017-04-04] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [334088 2017-04-04] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [48528 2017-04-04] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [38296 2017-04-04] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [32600 2017-04-04] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [127112 2017-04-04] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [101152 2017-04-04] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [75704 2017-04-04] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [1005048 2017-04-04] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [556784 2017-04-04] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [164064 2017-04-04] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [339696 2017-04-04] (AVAST Software)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2016-03-28] (BitRaider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-03-05] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-03-05] (Disc Soft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77440 2017-03-22] ()
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [186304 2017-04-18] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [111544 2017-04-19] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [43968 2017-04-19] (Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [251832 2017-04-19] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [92096 2017-04-19] (Malwarebytes)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 vmci; \SystemRoot\System32\drivers\vmci.sys [X]
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X]
S2 VMnetBridge; system32\DRIVERS\vmnetbridge.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-04-19 19:42 - 2017-04-19 19:42 - 00000000 ____D C:\Users\Golfstar\AppData\Local\PeerDistRepub
2017-04-18 22:25 - 2017-04-18 22:25 - 00021900 _____ C:\Users\Golfstar\Desktop\MWB log.zip
2017-04-18 22:16 - 2017-04-18 22:16 - 00734844 _____ C:\Users\Golfstar\Desktop\MWB log.txt
2017-04-18 22:05 - 2017-04-19 19:45 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-04-18 22:05 - 2017-04-19 19:45 - 00111544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-04-18 22:05 - 2017-04-19 19:45 - 00092096 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-04-18 22:05 - 2017-04-19 19:45 - 00043968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-04-18 22:05 - 2017-04-18 22:05 - 00186304 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-04-18 22:05 - 2017-04-18 22:05 - 00001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-04-18 22:05 - 2017-04-18 22:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-04-18 22:05 - 2017-04-18 22:05 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-04-18 22:05 - 2017-04-18 22:05 - 00000000 ____D C:\Program Files\Malwarebytes
2017-04-18 22:05 - 2017-03-22 11:02 - 00077440 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-04-17 09:13 - 2017-04-17 09:13 - 00000000 ____D C:\Users\Bíba\AppData\Local\ActiveSync
2017-04-16 23:49 - 2017-04-16 23:49 - 00000000 ____D C:\Users\Golfstar\AppData\Local\ActiveSync
2017-04-16 23:26 - 2017-04-16 21:59 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2017-04-16 21:59 - 2017-04-16 23:21 - 00000000 ____D C:\zoek_backup
2017-04-16 21:58 - 2017-04-16 21:59 - 01309184 _____ C:\Users\Golfstar\Desktop\zoek.exe
2017-04-16 18:18 - 2017-04-16 18:26 - 00005681 _____ C:\Users\Golfstar\Desktop\Fixlog.txt
2017-04-16 18:17 - 2017-04-19 19:58 - 00000000 ____D C:\Users\Golfstar\Desktop\FRST-OlderVersion
2017-04-16 15:36 - 2017-04-16 15:36 - 00046990 _____ C:\Users\Golfstar\Downloads\00000000015101238840_255036339_20170331_3_MCZS.pdf
2017-04-15 01:46 - 2017-04-19 19:58 - 00018985 _____ C:\Users\Golfstar\Desktop\FRST.txt
2017-04-15 00:39 - 2017-04-15 00:39 - 00058707 _____ C:\Users\Golfstar\Desktop\FRST3.txt
2017-04-15 00:38 - 2017-04-16 18:33 - 00053063 _____ C:\Users\Golfstar\Desktop\Addition.txt
2017-04-15 00:35 - 2017-04-19 19:58 - 00000000 ____D C:\FRST
2017-04-15 00:29 - 2017-04-19 19:58 - 02424832 _____ (Farbar) C:\Users\Golfstar\Desktop\FRST64.exe
2017-04-15 00:01 - 2017-04-15 00:01 - 00001031 _____ C:\Users\Golfstar\Desktop\RegCleaner.lnk
2017-04-15 00:01 - 2017-04-15 00:01 - 00000000 ____D C:\Program Files (x86)\RegCleaner
2017-04-12 19:11 - 2017-04-19 19:42 - 00000000 ____D C:\AdwCleaner
2017-04-12 19:11 - 2017-04-12 19:11 - 04089296 _____ C:\Users\Golfstar\Desktop\adwcleaner_6.045.exe
2017-04-12 19:03 - 2017-04-16 23:55 - 00000555 _____ C:\Users\Golfstar\Desktop\JRT.txt
2017-04-11 21:43 - 2017-04-11 21:43 - 00388608 _____ (Trend Micro Inc.) C:\Users\Golfstar\Downloads\hijackthis(2).exe
2017-04-11 21:04 - 2017-04-11 21:04 - 00000000 _____ C:\WINDOWS\SysWOW64\1
2017-04-11 20:26 - 2017-03-28 10:51 - 00602256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-04-11 20:26 - 2017-03-28 10:50 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-04-11 20:26 - 2017-03-28 09:53 - 06958304 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-04-11 20:26 - 2017-03-28 09:45 - 00958120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-04-11 20:26 - 2017-03-28 09:44 - 02944592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-04-11 20:26 - 2017-03-28 09:44 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-04-11 20:26 - 2017-03-28 09:41 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-04-11 20:26 - 2017-03-28 09:40 - 05240440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-04-11 20:26 - 2017-03-28 09:08 - 00546968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-04-11 20:26 - 2017-03-28 09:08 - 00316248 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-04-11 20:26 - 2017-03-28 09:06 - 01522664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-04-11 20:26 - 2017-03-28 09:06 - 01370736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2017-04-11 20:26 - 2017-03-28 08:37 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-04-11 20:26 - 2017-03-28 08:23 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-04-11 20:26 - 2017-03-28 08:12 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-04-11 20:26 - 2017-03-28 08:07 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2017-04-11 20:26 - 2017-03-28 08:06 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2017-04-11 20:26 - 2017-03-28 07:57 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2017-04-11 20:26 - 2017-03-28 07:56 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2017-04-11 20:26 - 2017-03-28 07:53 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-04-11 20:26 - 2017-03-28 07:47 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-04-11 20:26 - 2017-03-28 07:43 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2017-04-11 20:26 - 2017-03-28 07:42 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-04-11 20:26 - 2017-03-28 07:41 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-04-11 20:26 - 2017-03-28 07:35 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2017-04-11 20:26 - 2017-03-28 07:33 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-04-11 20:26 - 2017-03-28 07:33 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-04-11 20:26 - 2017-03-28 07:32 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2017-04-11 20:26 - 2017-03-28 07:18 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-04-11 20:26 - 2017-03-28 07:18 - 01542656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-04-11 20:26 - 2017-03-28 07:11 - 01501696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-04-11 20:26 - 2017-03-28 07:08 - 02878976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-04-11 20:26 - 2017-03-28 07:04 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2017-04-11 20:26 - 2017-03-28 06:47 - 04405248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2017-04-11 20:26 - 2017-03-28 06:45 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-04-11 20:26 - 2017-03-28 06:41 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-04-11 20:26 - 2017-03-28 06:13 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-04-11 20:26 - 2017-03-18 18:41 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-04-11 20:25 - 2017-03-28 12:20 - 00100192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2017-04-11 20:25 - 2017-03-28 12:18 - 01997840 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-04-11 20:25 - 2017-03-28 12:17 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-04-11 20:25 - 2017-03-28 12:17 - 00800080 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-04-11 20:25 - 2017-03-28 11:51 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2017-04-11 20:25 - 2017-03-28 11:18 - 08710320 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-04-11 20:25 - 2017-03-28 11:12 - 01322760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-04-11 20:25 - 2017-03-28 11:11 - 03698216 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-04-11 20:25 - 2017-03-28 11:11 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-04-11 20:25 - 2017-03-28 11:06 - 06604992 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-04-11 20:25 - 2017-03-28 11:05 - 06536248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2017-04-11 20:25 - 2017-03-28 10:59 - 00262400 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2017-04-11 20:25 - 2017-03-28 10:52 - 00168360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2017-04-11 20:25 - 2017-03-28 10:51 - 01557776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-04-11 20:25 - 2017-03-28 10:28 - 01777792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-04-11 20:25 - 2017-03-28 10:12 - 00388888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-04-11 20:25 - 2017-03-28 10:05 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-04-11 20:25 - 2017-03-28 09:52 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-04-11 20:25 - 2017-03-28 09:51 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-04-11 20:25 - 2017-03-28 09:49 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-04-11 20:25 - 2017-03-28 09:42 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-04-11 20:25 - 2017-03-28 09:35 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-04-11 20:25 - 2017-03-28 09:31 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-04-11 20:25 - 2017-03-28 09:29 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2017-04-11 20:25 - 2017-03-28 09:21 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-04-11 20:25 - 2017-03-28 09:18 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-04-11 20:25 - 2017-03-28 09:17 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-04-11 20:25 - 2017-03-28 09:16 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2017-04-11 20:25 - 2017-03-28 09:14 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-04-11 20:25 - 2017-03-28 09:10 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-04-11 20:25 - 2017-03-28 09:01 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-04-11 20:25 - 2017-03-28 08:56 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2017-04-11 20:25 - 2017-03-28 08:55 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-04-11 20:25 - 2017-03-28 08:54 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-04-11 20:25 - 2017-03-28 08:53 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-04-11 20:25 - 2017-03-28 08:51 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-04-11 20:25 - 2017-03-28 08:48 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-04-11 20:25 - 2017-03-28 08:46 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-04-11 20:25 - 2017-03-28 08:44 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2017-04-11 20:25 - 2017-03-28 08:42 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2017-04-11 20:25 - 2017-03-28 08:41 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-04-11 20:25 - 2017-03-28 08:26 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-04-11 20:25 - 2017-03-28 08:26 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-04-11 20:25 - 2017-03-28 08:25 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-04-11 20:25 - 2017-03-28 08:20 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-04-11 20:25 - 2017-03-28 08:17 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-04-11 20:25 - 2017-03-28 08:12 - 01729536 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-04-11 20:25 - 2017-03-28 08:10 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-04-11 20:25 - 2017-03-28 08:06 - 03405312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-04-11 20:25 - 2017-03-28 08:05 - 07977984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2017-04-11 20:25 - 2017-03-28 08:01 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-04-11 20:25 - 2017-03-28 08:01 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2017-04-11 20:25 - 2017-03-28 07:56 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-04-11 20:25 - 2017-03-28 07:53 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-04-11 20:25 - 2017-03-28 07:44 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-04-11 20:25 - 2017-03-28 07:42 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-04-11 20:25 - 2017-03-28 07:42 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-04-11 20:25 - 2017-03-28 07:41 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-04-11 20:25 - 2017-03-28 07:40 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-04-11 20:25 - 2017-03-28 07:39 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2017-04-11 20:25 - 2017-03-28 07:36 - 04895744 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-04-11 20:25 - 2017-03-28 07:36 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-04-11 20:25 - 2017-03-28 07:29 - 22375424 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-04-11 20:25 - 2017-03-28 07:22 - 06312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-04-11 20:25 - 2017-03-28 07:20 - 24604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-04-11 20:25 - 2017-03-28 07:20 - 13392384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-04-11 20:25 - 2017-03-28 07:19 - 02911744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-04-11 20:25 - 2017-03-28 07:06 - 07856640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-04-11 20:25 - 2017-03-28 06:48 - 03664384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-04-11 20:25 - 2017-03-28 06:46 - 19344896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-04-11 20:25 - 2017-03-28 06:45 - 18671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-04-11 20:25 - 2017-03-28 06:45 - 12134912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-04-11 20:25 - 2017-03-28 06:31 - 05670912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-04-11 20:25 - 2017-03-18 22:39 - 22560744 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-04-11 20:24 - 2017-03-28 12:19 - 00202480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2017-04-11 20:24 - 2017-03-28 12:14 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-04-11 20:24 - 2017-03-28 12:12 - 00061792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2017-04-11 20:24 - 2017-03-28 11:08 - 00566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-04-11 20:24 - 2017-03-28 11:05 - 01540216 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-04-11 20:24 - 2017-03-28 11:05 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-04-11 20:24 - 2017-03-28 11:03 - 01128104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-04-11 20:24 - 2017-03-28 11:03 - 00625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-04-11 20:24 - 2017-03-28 10:30 - 00379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-04-11 20:24 - 2017-03-28 10:29 - 01986912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-04-11 20:24 - 2017-03-28 10:29 - 00636304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-04-11 20:24 - 2017-03-28 10:29 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-04-11 20:24 - 2017-03-28 10:28 - 01594928 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2017-04-11 20:24 - 2017-03-28 09:52 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdProxy.dll
2017-04-11 20:24 - 2017-03-28 09:51 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-04-11 20:24 - 2017-03-28 09:50 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-04-11 20:24 - 2017-03-28 09:48 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-04-11 20:24 - 2017-03-28 09:40 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-04-11 20:24 - 2017-03-28 09:38 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2017-04-11 20:24 - 2017-03-28 09:37 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2017-04-11 20:24 - 2017-03-28 09:28 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2017-04-11 20:24 - 2017-03-28 09:20 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2017-04-11 20:24 - 2017-03-28 09:20 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2017-04-11 20:24 - 2017-03-28 09:18 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-04-11 20:24 - 2017-03-28 09:15 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-04-11 20:24 - 2017-03-28 09:13 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-04-11 20:24 - 2017-03-28 09:09 - 00715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-04-11 20:24 - 2017-03-28 08:55 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2017-04-11 20:24 - 2017-03-28 08:53 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-04-11 20:24 - 2017-03-28 08:41 - 04456448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-04-11 20:24 - 2017-03-28 08:40 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2017-04-11 20:24 - 2017-03-28 08:21 - 03586048 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-04-11 20:24 - 2017-03-28 08:19 - 01674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-04-11 20:24 - 2017-03-28 08:16 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-04-11 20:24 - 2017-03-28 07:55 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-04-11 20:24 - 2017-03-28 07:30 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-04-11 20:24 - 2017-03-28 07:01 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-04-08 19:26 - 2017-04-08 19:26 - 00645990 _____ C:\Users\Golfstar\Documents\Souhlas Mačeta.pdf
2017-04-08 19:25 - 2017-04-08 19:25 - 00672790 _____ C:\Users\Golfstar\Documents\Souhlas Azimut.pdf
2017-04-08 19:18 - 2017-04-08 19:18 - 00580455 _____ C:\Users\Golfstar\Documents\Souhlas Robin.pdf
2017-04-08 19:09 - 2017-04-08 19:09 - 01061427 _____ C:\Users\Golfstar\Downloads\ZkracenyVypis_1585.pdf
2017-04-08 13:25 - 2017-04-08 13:25 - 00493901 _____ C:\Users\Golfstar\Downloads\metodika_7_inventarizace (1).pdf
2017-04-08 13:24 - 2017-04-08 13:25 - 00493901 _____ C:\Users\Golfstar\Downloads\metodika_7_inventarizace.pdf
2017-04-08 13:15 - 2017-04-08 13:15 - 01576714 _____ C:\Users\Golfstar\Downloads\SouhlasyKandidatu_1585.zip
2017-04-07 12:51 - 2017-04-07 12:51 - 00000000 ____D C:\Users\Default\AppData\Local\AMD
2017-04-07 12:51 - 2017-04-07 12:51 - 00000000 ____D C:\Users\Default User\AppData\Local\AMD
2017-04-07 07:45 - 2017-04-19 19:42 - 00000000 ____D C:\Update
2017-04-07 07:43 - 2017-04-10 20:00 - 00000000 ____D C:\Program Files\MK
2017-04-06 23:37 - 2017-04-06 23:37 - 00002775 _____ C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2017-04-06 23:37 - 2017-04-06 23:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2017-04-06 23:37 - 2017-04-06 23:37 - 00000000 ____D C:\Program Files (x86)\Sophos
2017-04-06 23:34 - 2017-04-06 23:35 - 164764280 _____ (Sophos Limited) C:\Users\Golfstar\Downloads\Sophos Virus Removal Tool (1).exe
2017-04-06 23:32 - 2017-04-06 23:32 - 00000000 ____D C:\ProgramData\Sophos
2017-04-06 23:30 - 2017-04-12 19:01 - 01663904 _____ (Malwarebytes) C:\Users\Golfstar\Desktop\JRT.exe
2017-04-06 22:14 - 2017-04-06 22:14 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2017-04-06 22:12 - 2017-04-06 22:22 - 00136962 _____ C:\WINDOWS\ntbtlog.txt
2017-04-04 19:20 - 2017-04-04 19:20 - 00399944 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-04-03 20:45 - 2017-04-03 21:38 - 471699570 _____ C:\Users\Golfstar\Downloads\The.Walking.Dead.S07E16.cz.tit..avi
2017-04-01 15:13 - 2017-04-01 15:13 - 00000000 ___HD C:\$WINDOWS.~BT
2017-03-29 21:00 - 2017-03-29 21:18 - 334823390 _____ C:\Users\Golfstar\Downloads\The.Walking.Dead.S07E15.cz.tit..avi
2017-03-29 19:44 - 2017-03-29 20:04 - 356193958 _____ C:\Users\Golfstar\Downloads\The.Walking.Dead.S07E14.cz.tit..avi
2017-03-29 19:13 - 2017-03-29 19:43 - 524679426 _____ C:\Users\Golfstar\Downloads\The.Walking.Dead.S07E13.cz.tit..avi
2017-03-28 21:45 - 2017-03-28 22:16 - 527046222 _____ C:\Users\Golfstar\Downloads\The.Walking.Dead.S07E12.cz.tit..avi
2017-03-28 21:11 - 2017-03-28 21:35 - 408304714 _____ C:\Users\Golfstar\Downloads\The.Walking.Dead.S07E11.cz.tit..avi
2017-03-27 23:03 - 2017-03-27 23:38 - 626845494 _____ C:\Users\Golfstar\Downloads\The.Walking.Dead.S07E10.cz.tit..avi
2017-03-27 22:38 - 2017-03-27 22:59 - 314294272 _____ C:\Users\Golfstar\Downloads\The.Walking.Dead.S07E09.cz-tit.avi
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-04-19 19:51 - 2016-07-23 10:07 - 02039786 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-19 19:51 - 2016-04-27 08:11 - 00843726 _____ C:\WINDOWS\system32\perfh005.dat
2017-04-19 19:51 - 2016-04-27 08:11 - 00192740 _____ C:\WINDOWS\system32\perfc005.dat
2017-04-19 19:51 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2017-04-19 19:44 - 2016-07-23 10:03 - 00000000 ____D C:\ProgramData\NVIDIA
2017-04-19 19:44 - 2016-04-27 08:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-04-19 19:44 - 2014-09-22 13:21 - 00000902 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1702488835-1983202832-4074137989-1003Core.job
2017-04-19 19:43 - 2015-10-30 08:28 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2017-04-19 19:27 - 2014-09-22 13:21 - 00000924 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1702488835-1983202832-4074137989-1003UA.job
2017-04-19 18:58 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-04-19 18:53 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2017-04-19 18:43 - 2015-06-18 06:31 - 00000930 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1702488835-1983202832-4074137989-1001UA.job
2017-04-19 14:42 - 2015-06-18 06:31 - 00000878 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1702488835-1983202832-4074137989-1001Core.job
2017-04-19 12:16 - 2016-06-05 01:12 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2017-04-19 11:48 - 2014-09-02 18:13 - 00000000 ____D C:\Users\Bíba\AppData\Roaming\Skype
2017-04-19 10:05 - 2016-06-07 00:06 - 00000000 ____D C:\Users\Bíba\AppData\Local\Battle.net
2017-04-19 10:05 - 2016-06-05 01:09 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-04-17 09:11 - 2016-07-30 10:50 - 00000290 __RSH C:\Users\Bíba\ntuser.pol
2017-04-17 09:11 - 2016-07-23 10:08 - 00000000 ____D C:\Users\Bíba
2017-04-16 23:18 - 2016-07-23 10:08 - 00000000 ____D C:\Users\Golfstar
2017-04-16 23:18 - 2009-07-14 05:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-04-16 18:25 - 2016-07-23 13:13 - 00000008 __RSH C:\Users\Golfstar\ntuser.pol
2017-04-16 18:20 - 2016-11-22 00:02 - 00000000 ____D C:\Users\Golfstar\AppData\LocalLow\Temp
2017-04-16 15:36 - 2016-11-12 00:54 - 00000000 ____D C:\ProgramData\CanonIJPLM
2017-04-16 13:40 - 2014-11-29 23:30 - 00000000 ____D C:\Users\Golfstar\Documents\Skaut
2017-04-15 07:51 - 2016-12-15 08:15 - 00003276 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-04-15 07:51 - 2016-07-30 10:53 - 00002427 _____ C:\Users\Bíba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-04-15 07:51 - 2016-07-30 10:53 - 00000000 ___RD C:\Users\Bíba\OneDrive
2017-04-14 23:05 - 2016-07-23 13:18 - 00002439 _____ C:\Users\Golfstar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-04-14 23:05 - 2016-07-23 13:18 - 00000000 ___RD C:\Users\Golfstar\OneDrive
2017-04-13 23:34 - 2015-02-06 12:11 - 00000000 ____D C:\Program Files (x86)\PDF Architect 2
2017-04-13 23:32 - 2014-08-28 21:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-04-13 23:23 - 2016-11-19 00:10 - 00000000 ____D C:\Users\Golfstar\AppData\LocalLow\Mozilla
2017-04-13 23:18 - 2016-07-23 10:28 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-04-13 23:18 - 2015-11-10 07:32 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-04-13 23:18 - 2014-12-22 14:16 - 00001379 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-04-13 07:02 - 2016-11-19 08:43 - 00000000 ____D C:\Users\Bíba\AppData\LocalLow\Mozilla
2017-04-12 19:28 - 2017-03-10 09:32 - 00000000 ____D C:\Users\Golfstar\Downloads\backups
2017-04-12 19:23 - 2017-03-09 23:43 - 00004268 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-04-12 19:19 - 2017-03-07 13:45 - 00000000 ____D C:\Users\Default\AppData\Roaming\Kyubey
2017-04-12 19:19 - 2017-03-07 13:45 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Kyubey
2017-04-12 19:17 - 2017-03-17 20:22 - 00000000 ____D C:\WINDOWS\system32\log
2017-04-12 07:12 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2017-04-12 04:26 - 2016-04-27 09:00 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-04-12 00:08 - 2014-12-22 14:16 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-04-11 22:29 - 2014-08-29 00:15 - 00000000 ____D C:\ProgramData\HappyCloud
2017-04-11 22:27 - 2014-08-30 23:08 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-04-11 22:26 - 2016-09-04 21:32 - 00000000 ____D C:\ProgramData\Electronic Arts
2017-04-11 22:25 - 2016-07-23 10:28 - 00003470 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-04-11 22:25 - 2016-07-23 10:28 - 00003346 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-11 21:49 - 2016-04-26 23:46 - 04780000 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-04-11 21:46 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-04-11 21:46 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-04-11 21:46 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-04-11 21:46 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2017-04-11 21:46 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-04-11 21:46 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Defender
2017-04-11 21:46 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-04-11 21:46 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-04-11 21:41 - 2016-09-09 00:12 - 00000000 ____D C:\Users\Golfstar\AppData\Local\CrashDumps
2017-04-11 21:41 - 2015-01-17 21:25 - 00000000 ___HD C:\Program Files (x86)\Temp
2017-04-11 21:04 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-04-11 21:04 - 2014-08-28 00:15 - 148601744 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-04-11 21:04 - 2014-08-28 00:15 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-04-11 19:42 - 2017-02-06 09:57 - 00000000 ____D C:\Users\Bíba\AppData\Local\CrashDumps
2017-04-11 15:02 - 2016-07-23 10:28 - 00004592 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-04-11 15:02 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-04-11 15:02 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-04-11 14:02 - 2016-12-23 00:44 - 00004470 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-04-08 00:40 - 2016-06-05 01:10 - 00000000 ____D C:\Users\Golfstar\AppData\Local\Battle.net
2017-04-05 08:13 - 2016-07-23 10:28 - 00004010 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1458712455
2017-04-05 08:13 - 2016-03-23 07:54 - 00001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-04-04 19:20 - 2017-03-09 23:43 - 00334088 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
2017-04-04 19:20 - 2017-03-09 23:43 - 00307736 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2017-04-04 19:20 - 2017-03-09 23:43 - 00189768 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2017-04-04 19:20 - 2017-03-09 23:43 - 00048528 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2017-04-04 19:20 - 2016-03-23 07:53 - 00032600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2017-04-04 19:20 - 2014-08-28 21:26 - 01005048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-04-04 19:20 - 2014-08-28 21:26 - 00556784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-04-04 19:20 - 2014-08-28 21:26 - 00339696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-04-04 19:20 - 2014-08-28 21:26 - 00164064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-04-04 19:20 - 2014-08-28 21:26 - 00127112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-04-04 19:20 - 2014-08-28 21:26 - 00101152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-04-04 19:20 - 2014-08-28 21:26 - 00075704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-04-04 19:20 - 2014-08-28 21:26 - 00038296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-04-01 21:05 - 2015-10-30 09:26 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-04-01 21:05 - 2015-10-30 09:26 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-04-01 15:13 - 2016-07-23 10:59 - 00000000 ___DC C:\WINDOWS\Panther
2017-03-31 01:13 - 2016-07-23 10:28 - 00003954 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1423217291
2017-03-31 01:13 - 2015-02-06 12:08 - 00001208 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2017-03-31 01:13 - 2015-02-06 12:07 - 00000000 ____D C:\Program Files (x86)\Opera
2017-03-28 11:15 - 2016-04-27 08:52 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-03-23 12:49 - 2016-11-12 08:13 - 00000000 ____D C:\Users\Bíba\AppData\Roaming\Canon
==================== Files in the root of some directories =======
2016-09-02 00:12 - 2016-09-02 00:12 - 0001907 _____ () C:\Users\Golfstar\AppData\Local\recently-used.xbel
2016-09-04 22:31 - 2016-09-04 22:31 - 0000017 _____ () C:\Users\Golfstar\AppData\Local\resmon.resmoncfg
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-04-13 08:09
==================== End of FRST.txt ============================
-
Rudy
- Site Admin
- Příspěvky: 119670
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zamořený PC
Log je OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zamořený PC
Děkuji za pomoc.
Pokud se zasejc nějaký něřád vrátí, tak se ozvu.
Ještě jednou díky a je fajn, že tu takhle někdo pomáhá proti různým škodičům.
Pokud se zasejc nějaký něřád vrátí, tak se ozvu.
Ještě jednou díky a je fajn, že tu takhle někdo pomáhá proti různým škodičům.
-
Rudy
- Site Admin
- Příspěvky: 119670
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zamořený PC
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?