Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Kontrola logu...Děkuji

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
ratamata
Návštěvník
Návštěvník
Příspěvky: 33
Registrován: 23 pro 2009 21:08

Kontrola logu...Děkuji

#1 Příspěvek od ratamata »

Prosím o kontrolu, děkuji moc.


Logfile of random's system information tool 1.10 (written by random/random)
Run by Libor at 2018-12-22 14:44:27
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 17 GB (16%) free of 102 GB
Total RAM: 8173 MB (70% free)

HijackThis download failed

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe"
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Windows\SysWOW64\HsMgr.exe" Envoke
"C:\Windows\system\HsMgr64.exe" Envoke
"C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe" Minimum
"C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
AvastUI.exe /nogui
"C:\Program Files\ASUS Xonar DX Audio\Customapp\ASUSAUDIOCENTER.EXE"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="3144.0.293024098\1296227266" -parentBuildID 20181206201918 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - "C:\Users\Libor\AppData\LocalLow\Mozilla\Temp-{77e395a5-7205-440c-adbe-ac3825c8422f}" 3144 "\\.\pipe\gecko-crash-server-pipe.3144" 1268 gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="3144.3.884031436\1210282270" -childID 1 -isForBrowser -prefsHandle 1880 -prefMapHandle 1876 -prefsLen 1 -prefMapSize 194785 -schedulerPrefs 0001,2 -parentBuildID 20181206201918 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 3144 "\\.\pipe\gecko-crash-server-pipe.3144" 1900 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="3144.13.186150973\1251619930" -childID 2 -isForBrowser -prefsHandle 2364 -prefMapHandle 2524 -prefsLen 82 -prefMapSize 194785 -schedulerPrefs 0001,2 -parentBuildID 20181206201918 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 3144 "\\.\pipe\gecko-crash-server-pipe.3144" 2536 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="3144.20.552945480\447121495" -childID 3 -isForBrowser -prefsHandle 2968 -prefMapHandle 2972 -prefsLen 176 -prefMapSize 194785 -schedulerPrefs 0001,2 -parentBuildID 20181206201918 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 3144 "\\.\pipe\gecko-crash-server-pipe.3144" 2984 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="3144.27.2110794260\298168535" -childID 4 -isForBrowser -prefsHandle 3700 -prefMapHandle 3936 -prefsLen 5741 -prefMapSize 194785 -schedulerPrefs 0001,2 -parentBuildID 20181206201918 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 3144 "\\.\pipe\gecko-crash-server-pipe.3144" 3680 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="3144.34.1565662180\1814788235" -childID 5 -isForBrowser -prefsHandle 3700 -prefMapHandle 3948 -prefsLen 5741 -prefMapSize 194785 -schedulerPrefs 0001,2 -parentBuildID 20181206201918 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 3144 "\\.\pipe\gecko-crash-server-pipe.3144" 3708 tab
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"

taskeng.exe {0B196C0F-3DC4-4AC2-9646-9F28B610288F}
"C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe" /from_scheduler:1
"C:\Users\Libor\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup

=========Mozilla firefox=========

ProfilePath - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.google.com/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.191.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.191.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-10-20 480120]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-10-20 194424]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2017-06-08 1893312]
"Cmaudio8788"=C:\Windows\syswow64\RunDll32.exe [2017-03-30 45056]
"Cmaudio8788GX"=C:\Windows\syswow64\HsMgr.exe [2008-07-11 200704]
"Cmaudio8788GX64"=C:\Windows\system\HsMgr64.exe [2008-07-11 282112]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-11-22 242392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OscarEditor"=C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe [2012-08-17 3345408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
D:\Programy\iTunes\iTunesHelper.exe [2018-03-25 298296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Syncios device service]
C:\Program Files (x86)\Anvsoft\Syncios\SynciosDeviceService.exe [2018-06-29 2443384]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-10-06 601424]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Dell Display Manager.lnk - C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-12-22 14:44:27 ----D---- C:\rsit
2018-12-22 14:44:27 ----D---- C:\Program Files\trend micro
2018-12-20 17:16:33 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-12-20 17:16:33 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-12-20 17:16:33 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-12-20 17:16:33 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-12-20 17:16:33 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-12-20 17:16:33 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-12-20 17:16:33 ----A---- C:\Windows\system32\iertutil.dll
2018-12-20 17:16:33 ----A---- C:\Windows\system32\iernonce.dll
2018-12-20 17:16:33 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-12-20 17:16:33 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-12-20 17:16:32 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-12-20 17:16:32 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-12-20 17:16:32 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-12-20 17:16:32 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-12-20 17:16:32 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-12-20 17:16:32 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-12-20 17:16:32 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-12-20 17:16:32 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-12-20 17:16:32 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-12-20 17:16:32 ----A---- C:\Windows\system32\inseng.dll
2018-12-20 17:16:32 ----A---- C:\Windows\system32\ie4uinit.exe
2018-12-20 17:16:31 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-12-20 17:16:31 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-12-20 17:16:31 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-12-20 17:16:31 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-12-20 17:16:31 ----A---- C:\Windows\system32\urlmon.dll
2018-12-20 17:16:31 ----A---- C:\Windows\system32\occache.dll
2018-12-20 17:16:31 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-12-20 17:16:31 ----A---- C:\Windows\system32\iedkcs32.dll
2018-12-20 17:16:30 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-12-20 17:16:30 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-12-20 17:16:30 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-12-20 17:16:30 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-12-20 17:16:30 ----A---- C:\Windows\system32\msfeeds.dll
2018-12-20 17:16:30 ----A---- C:\Windows\system32\iesetup.dll
2018-12-20 17:16:30 ----A---- C:\Windows\system32\dxtrans.dll
2018-12-20 17:16:29 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-12-20 17:16:29 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-12-20 17:16:29 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-12-20 17:16:29 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-12-20 17:16:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-12-20 17:16:29 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-12-20 17:16:29 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-12-20 17:16:29 ----A---- C:\Windows\system32\vbscript.dll
2018-12-20 17:16:29 ----A---- C:\Windows\system32\dxtmsft.dll
2018-12-20 17:16:28 ----A---- C:\Windows\system32\webcheck.dll
2018-12-20 17:16:28 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-12-20 17:16:28 ----A---- C:\Windows\system32\mshtmled.dll
2018-12-20 17:16:28 ----A---- C:\Windows\system32\ieUnatt.exe
2018-12-20 17:16:28 ----A---- C:\Windows\system32\ieui.dll
2018-12-20 17:16:28 ----A---- C:\Windows\system32\ieframe.dll
2018-12-20 17:16:27 ----A---- C:\Windows\system32\wininet.dll
2018-12-20 17:16:27 ----A---- C:\Windows\system32\jsproxy.dll
2018-12-20 17:16:27 ----A---- C:\Windows\system32\jscript9diag.dll
2018-12-20 17:16:27 ----A---- C:\Windows\system32\jscript9.dll
2018-12-20 17:16:27 ----A---- C:\Windows\system32\jscript.dll
2018-12-20 17:16:27 ----A---- C:\Windows\system32\ieapfltr.dll
2018-12-20 17:16:26 ----A---- C:\Windows\system32\msrating.dll
2018-12-20 17:16:26 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-12-20 17:16:26 ----A---- C:\Windows\system32\mshtml.dll
2018-12-12 16:53:48 ----A---- C:\Windows\system32\wmp.dll
2018-12-12 16:53:46 ----A---- C:\Windows\SYSWOW64\wmp.dll
2018-12-12 16:53:46 ----A---- C:\Windows\system32\win32k.sys
2018-12-12 16:53:46 ----A---- C:\Windows\system32\rpcrt4.dll
2018-12-12 16:53:46 ----A---- C:\Windows\system32\msxml3.dll
2018-12-12 16:53:45 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-12-12 16:53:45 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-12-12 16:53:45 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-12-12 16:53:45 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2018-12-12 16:53:45 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2018-12-12 16:53:45 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-12-12 16:53:45 ----A---- C:\Windows\system32\msxml6.dll
2018-12-12 16:53:45 ----A---- C:\Windows\system32\gdi32.dll
2018-12-12 16:53:42 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2018-12-12 16:53:42 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-12-12 16:53:42 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2018-12-12 16:53:42 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2018-12-12 16:53:42 ----A---- C:\Windows\system32\t2embed.dll
2018-12-12 16:53:42 ----A---- C:\Windows\system32\ntdll.dll
2018-12-12 16:53:42 ----A---- C:\Windows\system32\hal.dll
2018-12-12 16:53:42 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-12-12 16:53:42 ----A---- C:\Windows\system32\atmfd.dll
2018-12-12 16:53:41 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2018-12-12 16:53:41 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2018-12-12 16:53:41 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2018-12-12 16:53:41 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-12-12 16:53:41 ----A---- C:\Windows\system32\wmploc.DLL
2018-12-12 16:53:41 ----A---- C:\Windows\system32\spwmp.dll
2018-12-12 16:53:41 ----A---- C:\Windows\system32\dxmasf.dll
2018-12-12 16:53:41 ----A---- C:\Windows\system32\drivers\msrpc.sys
2018-12-12 16:53:41 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-12-12 16:53:41 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-12-12 16:53:41 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-12-12 16:53:41 ----A---- C:\Windows\system32\certcli.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-12-12 16:53:40 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\wow64win.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\wow64cpu.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\wow64.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\winsrv.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\wdigest.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\tzres.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\TSpkg.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\sspisrv.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\sspicli.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\srcore.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\smss.exe
2018-12-12 16:53:40 ----A---- C:\Windows\system32\schannel.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\rpchttp.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\ncrypt.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\msv1_0.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\lsass.exe
2018-12-12 16:53:40 ----A---- C:\Windows\system32\lsasrv.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\lpk.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\KernelBase.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\kernel32.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\kerberos.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\fontsub.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-12-12 16:53:40 ----A---- C:\Windows\system32\drivers\processr.sys
2018-12-12 16:53:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-12-12 16:53:40 ----A---- C:\Windows\system32\drivers\intelppm.sys
2018-12-12 16:53:40 ----A---- C:\Windows\system32\drivers\appid.sys
2018-12-12 16:53:40 ----A---- C:\Windows\system32\drivers\amdppm.sys
2018-12-12 16:53:40 ----A---- C:\Windows\system32\drivers\amdk8.sys
2018-12-12 16:53:40 ----A---- C:\Windows\system32\dciman32.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\csrsrv.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\cryptbase.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\conhost.exe
2018-12-12 16:53:40 ----A---- C:\Windows\system32\bcrypt.dll
2018-12-12 16:53:40 ----A---- C:\Windows\system32\advapi32.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-12-12 16:53:39 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\user.exe
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\lpk.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-12-12 16:53:39 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\srclient.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\secur32.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\rstrui.exe
2018-12-12 16:53:39 ----A---- C:\Windows\system32\ntvdm64.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\msxml3r.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\msobjs.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\msaudite.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\credssp.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\auditpol.exe
2018-12-12 16:53:39 ----A---- C:\Windows\system32\atmlib.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\appidsvc.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-12-12 16:53:39 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-12-12 16:53:39 ----A---- C:\Windows\system32\appidapi.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\apisetschema.dll
2018-12-12 16:53:39 ----A---- C:\Windows\system32\adtschema.dll
2018-12-12 16:53:38 ----A---- C:\Windows\system32\msxml6r.dll

======List of files/folders modified in the last 1 month======

2018-12-22 14:44:34 ----D---- C:\Windows\Prefetch
2018-12-22 14:44:27 ----RD---- C:\Program Files
2018-12-22 14:37:42 ----D---- C:\Windows\Temp
2018-12-22 14:28:50 ----D---- C:\Windows\system32\config
2018-12-22 14:10:48 ----D---- C:\Windows\System32
2018-12-22 14:10:48 ----D---- C:\Windows\inf
2018-12-22 14:10:48 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-12-22 14:06:35 ----D---- C:\ProgramData\NVIDIA
2018-12-22 14:06:27 ----D---- C:\Windows
2018-12-22 13:18:32 ----D---- C:\Users\Libor\AppData\Roaming\MPC-HC
2018-12-22 13:11:51 ----D---- C:\Windows\debug
2018-12-22 13:11:50 ----D---- C:\Windows\Minidump
2018-12-22 13:06:58 ----D---- C:\Program Files\CCleaner
2018-12-22 11:51:47 ----D---- C:\Users\Libor\AppData\Roaming\foobar2000
2018-12-22 02:26:13 ----D---- C:\Users\Libor\AppData\Roaming\Messenger for Desktop
2018-12-21 14:31:42 ----D---- C:\Windows\rescache
2018-12-20 17:48:31 ----D---- C:\Windows\winsxs
2018-12-20 17:47:24 ----D---- C:\Windows\SYSWOW64\en-US
2018-12-20 17:47:24 ----D---- C:\Windows\SYSWOW64\cs-CZ
2018-12-20 17:47:24 ----D---- C:\Windows\SysWOW64
2018-12-20 17:47:24 ----D---- C:\Program Files\Internet Explorer
2018-12-20 17:47:23 ----D---- C:\Windows\system32\en-US
2018-12-20 17:47:23 ----D---- C:\Windows\system32\cs-CZ
2018-12-20 17:47:23 ----D---- C:\Program Files (x86)\Internet Explorer
2018-12-20 17:16:54 ----SHD---- C:\System Volume Information
2018-12-20 17:12:43 ----D---- C:\Windows\system32\catroot2
2018-12-15 10:50:50 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-12-15 10:50:50 ----D---- C:\Program Files (x86)\Mozilla Firefox
2018-12-13 02:51:40 ----D---- C:\Windows\system32\drivers
2018-12-13 02:51:40 ----D---- C:\Program Files\Windows Media Player
2018-12-13 02:51:40 ----D---- C:\Program Files (x86)\Windows Media Player
2018-12-13 02:51:39 ----D---- C:\Windows\system32\Boot
2018-12-13 02:51:39 ----D---- C:\Windows\AppPatch
2018-12-13 02:51:38 ----D---- C:\Windows\system32\DriverStore
2018-12-13 02:26:38 ----AC---- C:\Windows\system32\MRT.exe
2018-12-12 15:55:15 ----D---- C:\Windows\Microsoft.NET
2018-12-12 15:37:29 ----RSD---- C:\Windows\assembly
2018-12-12 11:09:24 ----SHD---- C:\Windows\Installer
2018-12-12 11:07:56 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2018-12-11 09:48:15 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2018-12-10 17:11:11 ----D---- C:\Users\Libor\AppData\Roaming\MB-Ruler
2018-11-30 00:08:23 ----D---- C:\Users\Libor\AppData\Roaming\Thunderbird
2018-11-29 12:19:55 ----RD---- C:\Program Files (x86)

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2018-11-22 201768]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2018-11-22 346592]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2018-11-22 59496]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2018-11-22 87432]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2018-11-22 380464]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2018-11-22 201240]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2018-11-22 230344]
R1 aswHdsKe;aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [2018-11-26 239840]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2018-11-22 42288]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2018-11-22 111800]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2018-11-22 1028680]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2018-11-22 469272]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2018-11-22 163208]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2018-11-22 208472]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-01-27 125416]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-01-27 385512]
R3 cmudaxp;ASUS Xonar DX Audio Interface; C:\Windows\system32\drivers\cmudaxp.sys [2011-03-10 2725376]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2017-06-08 218712]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2017-06-08 48064]
R3 nvvhci;NVVHCI Enumerator Service; C:\Windows\system32\DRIVERS\nvvhci.sys [2017-06-08 57792]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-02-16 428136]
R3 WinUSB;PS3Eye Camera USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-21 41984]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2018-11-22 46384]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-06-08 30144]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2016-12-21 54784]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2018-03-14 83768]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-11-22 324000]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-06-08 462968]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-06-08 449984]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-11-22 8188768]
S2 avast;Služba %1!s! Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-05 164984]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 SkypeUpdate;Skype Updater; D:\Programy\Skype\Updater\Updater.exe [2017-07-18 317408]
S3 avastm;Služba %1!s! Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-05 164984]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-12-14 116224]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2018-03-25 673592]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-12-14 227792]
S3 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-06-08 495040]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-06-08 495040]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2017-06-15 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]

-----------------EOF-----------------

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Kontrola logu...Děkuji

#2 Příspěvek od Conder »

Ahoj :)

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
  • Nechaj zaskrtnute vsetky nalezy
  • Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

ratamata
Návštěvník
Návštěvník
Příspěvky: 33
Registrován: 23 pro 2009 21:08

Re: Kontrola logu...Děkuji

#3 Příspěvek od ratamata »

# -------------------------------
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build: 12-18-2018
# Database: 2018-12-21.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 12-22-2018
# Duration: 00:00:04
# OS: Windows 7 Home Premium
# Cleaned: 4
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BDF61FAE-9D19-40F0-8F34-688DEB334CA9}
Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1629 octets] - [22/12/2018 18:15:39]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Kontrola logu...Děkuji

#4 Příspěvek od Conder »

:arrow: Poprosim o obidva logy z FRST (FRST.txt a Addition.txt) podla tohto navodu: https://forum.viry.cz/viewtopic.php?f=13&t=154679
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

ratamata
Návštěvník
Návštěvník
Příspěvky: 33
Registrován: 23 pro 2009 21:08

Re: Kontrola logu...Děkuji

#5 Příspěvek od ratamata »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20.12.2018
Ran by Libor (administrator) on LIBOR-PC (22-12-2018 21:21:17)
Running from C:\Users\Libor\Desktop
Loaded Profiles: Libor (Available Profiles: Libor)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
() C:\Windows\SysWOW64\HsMgr.exe
() C:\Windows\system\HsMgr64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe
(EnTech Taiwan) C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CMedia) C:\Program Files\ASUS Xonar DX Audio\Customapp\AsusAudioCenter.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Oracle Corporation) C:\Program Files (x86)\Java\jre1.8.0_191\bin\javaw.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Irfan Skiljan) C:\Program Files (x86)\IrfanView\i_view32.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

"Path" (C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;D:\Programy\Skype\Phone\ -> %SystemRoot%\System32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;D:\Programy\Skype\Phone\) <==== Repaired successfully
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Cmaudio8788] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cmicnfgp.dll,CMICtrlWnd
HKLM\...\Run: [Cmaudio8788GX] => C:\Windows\syswow64\HsMgr.exe [200704 2008-07-11] ()
HKLM\...\Run: [Cmaudio8788GX64] => C:\Windows\system\HsMgr64.exe [282112 2008-07-11] ()
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242392 2018-11-22] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2124696679-2527748950-779481189-1000\...\Run: [OscarEditor] => C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe [3345408 2012-08-17] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Dell Display Manager.lnk [2018-06-14]
ShortcutTarget: Dell Display Manager.lnk -> C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe (EnTech Taiwan)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{EE6C1B93-765D-4C2B-A654-71465F06A68B}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKU\S-1-5-21-2124696679-2527748950-779481189-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.cz/?gws_rd=ssl
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-10-20] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-10-20] (Oracle Corporation)

FireFox:
========
FF DefaultProfile: x9z5u258.default
FF ProfilePath: C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default [2018-12-22]
FF Homepage: Mozilla\Firefox\Profiles\x9z5u258.default -> hxxps://www.google.com/
FF NewTab: Mozilla\Firefox\Profiles\x9z5u258.default -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10419__180929
FF Extension: (AdBlocker Ultimate) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default\Extensions\adblockultimate@adblockultimate.net.xpi [2018-12-19]
FF Extension: (Flash Video Downloader) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default\Extensions\artur.dubovoy@gmail.com.xpi [2018-12-19]
FF Extension: (Enhancer for YouTube™) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2018-12-19]
FF Extension: (uBlock Origin) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default\Extensions\uBlock0@raymondhill.net.xpi [2018-12-04]
FF Extension: (Avast Online Security) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default\Extensions\wrc@avast.com.xpi [2018-11-26]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2018-12-07]
FF Extension: (Video DownloadHelper) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-08-09]
FF Extension: (Vývojové sestavení Adblock Plus) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\x9z5u258.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-12-07]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-10-20] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-10-20] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-03-14] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [8188768 2018-11-22] (AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [324000 2018-11-22] (AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software)
S2 SkypeUpdate; D:\Programy\Skype\Updater\Updater.exe [317408 2017-07-18] (Skype Technologies)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S3 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [201240 2018-11-22] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [230344 2018-11-22] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [201768 2018-11-22] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [346592 2018-11-22] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [59496 2018-11-22] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [239840 2018-11-26] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46384 2018-11-22] (AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42288 2018-11-22] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [163208 2018-11-22] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111800 2018-11-22] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [87432 2018-11-22] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1028680 2018-11-22] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [469272 2018-11-22] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [208472 2018-11-22] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [380464 2018-11-22] (AVAST Software)
R3 cmudaxp; C:\Windows\System32\drivers\cmudaxp.sys [2725376 2011-03-10] (C-Media Inc)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-06-08] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [48064 2017-06-08] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-06-08] (NVIDIA Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-12-22 21:21 - 2018-12-22 21:21 - 000012101 _____ C:\Users\Libor\Desktop\FRST.txt
2018-12-22 21:20 - 2018-12-22 21:21 - 000000000 ____D C:\FRST
2018-12-22 21:16 - 2018-12-22 21:16 - 002420224 _____ (Farbar) C:\Users\Libor\Desktop\FRST64.exe
2018-12-22 18:15 - 2018-12-22 18:16 - 000000000 ____D C:\AdwCleaner
2018-12-22 17:48 - 2018-12-22 17:48 - 007320272 _____ (Malwarebytes) C:\Users\Libor\Desktop\adwcleaner_7.2.6.0.exe
2018-12-22 14:44 - 2018-12-22 14:44 - 000000000 ____D C:\rsit
2018-12-22 14:44 - 2018-12-22 14:44 - 000000000 ____D C:\Program Files\trend micro
2018-12-22 14:42 - 2018-12-22 14:43 - 001222144 _____ C:\Users\Libor\Desktop\RSITx64.exe
2018-12-21 23:54 - 2018-12-22 00:24 - 366720167 _____ C:\Users\Libor\Downloads\incetjszxa092.mp4
2018-12-20 17:16 - 2018-12-15 01:06 - 000397088 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-12-20 17:16 - 2018-12-15 00:14 - 000348760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-12-20 17:16 - 2018-12-14 09:09 - 025736704 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-12-20 17:16 - 2018-12-14 09:01 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-12-20 17:16 - 2018-12-14 09:01 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-12-20 17:16 - 2018-12-14 08:51 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-12-20 17:16 - 2018-12-14 08:49 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-12-20 17:16 - 2018-12-14 08:49 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-12-20 17:16 - 2018-12-14 08:49 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-12-20 17:16 - 2018-12-14 08:48 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-12-20 17:16 - 2018-12-14 08:48 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-12-20 17:16 - 2018-12-14 08:42 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-12-20 17:16 - 2018-12-14 08:41 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-12-20 17:16 - 2018-12-14 08:39 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-12-20 17:16 - 2018-12-14 08:38 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-12-20 17:16 - 2018-12-14 08:38 - 000790016 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-12-20 17:16 - 2018-12-14 08:38 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-12-20 17:16 - 2018-12-14 08:38 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-12-20 17:16 - 2018-12-14 08:36 - 005779456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-12-20 17:16 - 2018-12-14 08:33 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-12-20 17:16 - 2018-12-14 08:30 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-12-20 17:16 - 2018-12-14 08:24 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2018-12-20 17:16 - 2018-12-14 08:24 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-12-20 17:16 - 2018-12-14 08:23 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-12-20 17:16 - 2018-12-14 08:21 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-12-20 17:16 - 2018-12-14 08:20 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-12-20 17:16 - 2018-12-14 08:18 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-12-20 17:16 - 2018-12-14 08:17 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-12-20 17:16 - 2018-12-14 08:09 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-12-20 17:16 - 2018-12-14 08:06 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-12-20 17:16 - 2018-12-14 08:06 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-12-20 17:16 - 2018-12-14 08:05 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-12-20 17:16 - 2018-12-14 08:04 - 002136064 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-12-20 17:16 - 2018-12-14 08:02 - 015284736 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-12-20 17:16 - 2018-12-14 07:58 - 020280832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-12-20 17:16 - 2018-12-14 07:57 - 004859904 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-12-20 17:16 - 2018-12-14 07:51 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2018-12-20 17:16 - 2018-12-14 07:45 - 001555968 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-12-20 17:16 - 2018-12-14 07:41 - 000498176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-12-20 17:16 - 2018-12-14 07:41 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2018-12-20 17:16 - 2018-12-14 07:40 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-12-20 17:16 - 2018-12-14 07:40 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2018-12-20 17:16 - 2018-12-14 07:39 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2018-12-20 17:16 - 2018-12-14 07:38 - 002295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-12-20 17:16 - 2018-12-14 07:35 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2018-12-20 17:16 - 2018-12-14 07:35 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2018-12-20 17:16 - 2018-12-14 07:34 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-12-20 17:16 - 2018-12-14 07:34 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-12-20 17:16 - 2018-12-14 07:33 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-12-20 17:16 - 2018-12-14 07:33 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2018-12-20 17:16 - 2018-12-14 07:32 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-12-20 17:16 - 2018-12-14 07:26 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-12-20 17:16 - 2018-12-14 07:23 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-12-20 17:16 - 2018-12-14 07:22 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2018-12-20 17:16 - 2018-12-14 07:22 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2018-12-20 17:16 - 2018-12-14 07:20 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-12-20 17:16 - 2018-12-14 07:19 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-12-20 17:16 - 2018-12-14 07:19 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2018-12-20 17:16 - 2018-12-14 07:18 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-12-20 17:16 - 2018-12-14 07:18 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2018-12-20 17:16 - 2018-12-14 07:14 - 013681152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-12-20 17:16 - 2018-12-14 07:13 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-12-20 17:16 - 2018-12-14 07:11 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-12-20 17:16 - 2018-12-14 07:11 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-12-20 17:16 - 2018-12-14 07:10 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2018-12-20 17:16 - 2018-12-14 06:58 - 004386816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-12-20 17:16 - 2018-12-14 06:54 - 001330176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-12-20 17:16 - 2018-12-14 06:52 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-12-15 21:47 - 2018-12-15 21:54 - 025538732 _____ C:\Users\Libor\Downloads\Aviation_News_2018-12.pdf
2018-12-14 11:25 - 2018-12-14 11:30 - 114505887 _____ C:\Users\Libor\Desktop\Islámské šátky ve školách nechceme.mp4
2018-12-12 16:53 - 2018-12-06 03:39 - 003227648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-12-12 16:53 - 2018-11-28 23:02 - 014635520 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2018-12-12 16:53 - 2018-11-28 23:02 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2018-12-12 16:53 - 2018-11-28 23:02 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2018-12-12 16:53 - 2018-11-28 23:02 - 000005632 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2018-12-12 16:53 - 2018-11-28 23:02 - 000005632 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2018-12-12 16:53 - 2018-11-28 22:50 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2018-12-12 16:53 - 2018-11-28 22:50 - 011411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2018-12-12 16:53 - 2018-11-28 22:38 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2018-12-12 16:53 - 2018-11-28 22:38 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2018-12-12 16:53 - 2018-11-28 22:38 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2018-12-12 16:53 - 2018-11-11 18:19 - 000631680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-12-12 16:53 - 2018-11-11 18:02 - 000262376 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-12-12 16:53 - 2018-11-11 18:01 - 005551848 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-12-12 16:53 - 2018-11-11 18:01 - 000708328 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-12-12 16:53 - 2018-11-11 18:01 - 000366824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2018-12-12 16:53 - 2018-11-11 18:01 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-12-12 16:53 - 2018-11-11 18:01 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2018-12-12 16:53 - 2018-11-11 18:00 - 001664360 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 001461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 001211904 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2018-12-12 16:53 - 2018-11-11 17:58 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:49 - 004054760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2018-12-12 16:53 - 2018-11-11 17:49 - 003960040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2018-12-12 16:53 - 2018-11-11 17:47 - 001314104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2018-12-12 16:53 - 2018-11-11 17:45 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:44 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:25 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2018-12-12 16:53 - 2018-11-11 17:25 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-12-12 16:53 - 2018-11-11 17:25 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2018-12-12 16:53 - 2018-11-11 17:24 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2018-12-12 16:53 - 2018-11-11 17:20 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2018-12-12 16:53 - 2018-11-11 17:20 - 000129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2018-12-12 16:53 - 2018-11-11 17:19 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2018-12-12 16:53 - 2018-11-11 17:19 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2018-12-12 16:53 - 2018-11-11 17:16 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-12-12 16:53 - 2018-11-11 17:16 - 000160768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-12-12 16:53 - 2018-11-11 17:16 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-12-12 16:53 - 2018-11-11 17:15 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2018-12-12 16:53 - 2018-11-11 17:15 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2018-12-12 16:53 - 2018-11-11 17:15 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2018-12-12 16:53 - 2018-11-11 17:15 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2018-12-12 16:53 - 2018-11-11 17:15 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2018-12-12 16:53 - 2018-11-11 17:15 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2018-12-12 16:53 - 2018-11-11 17:15 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2018-12-12 16:53 - 2018-11-11 17:15 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-12-12 16:53 - 2018-11-11 17:15 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2018-12-12 16:53 - 2018-11-11 17:15 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2018-12-12 16:53 - 2018-11-11 17:14 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2018-12-12 16:53 - 2018-11-11 17:13 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:13 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:13 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-12-12 16:53 - 2018-11-11 17:13 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-12-12 16:53 - 2018-11-08 17:58 - 002009600 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2018-12-12 16:53 - 2018-11-08 17:58 - 001889280 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2018-12-12 16:53 - 2018-11-08 17:58 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2018-12-12 16:53 - 2018-11-08 17:58 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2018-12-12 16:53 - 2018-11-08 17:43 - 001391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2018-12-12 16:53 - 2018-11-08 17:43 - 001241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2018-12-12 16:53 - 2018-11-08 17:43 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2018-12-12 16:53 - 2018-11-08 17:43 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2018-12-12 16:53 - 2018-11-06 05:36 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2018-12-12 16:53 - 2018-11-06 05:20 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2018-12-12 16:53 - 2018-10-06 17:03 - 000383720 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2018-12-12 16:53 - 2018-10-06 16:59 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2018-12-12 16:53 - 2018-10-06 16:59 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2018-12-12 16:53 - 2018-10-06 16:58 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2018-12-12 16:53 - 2018-10-06 16:58 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2018-12-12 16:53 - 2018-10-06 16:58 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2018-12-12 16:53 - 2018-10-06 16:50 - 000309480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2018-12-12 16:53 - 2018-10-06 16:44 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2018-12-12 16:53 - 2018-10-06 16:44 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2018-12-12 16:53 - 2018-10-06 16:43 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2018-12-12 16:53 - 2018-10-06 16:43 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2018-12-12 16:53 - 2018-10-06 16:16 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2018-12-10 20:26 - 2018-12-10 20:26 - 001339412 _____ C:\Users\Libor\Desktop\38395.pdf
2018-12-10 20:20 - 2018-12-10 20:20 - 001063218 _____ C:\Users\Libor\Desktop\Composites-Aerospace-Applications.pdf
2018-12-09 13:08 - 2018-12-09 13:08 - 001322129 _____ C:\Users\Libor\Desktop\DT-Rus-VHF-Radar-2008.pdf
2018-12-08 20:28 - 2018-12-09 01:31 - 928982538 _____ C:\Users\Libor\Downloads\In_The_Midwest (1).mp4
2018-12-08 18:58 - 2018-12-08 19:35 - 057179116 _____ C:\Users\Libor\Downloads\In_The_Midwest.mp4
2018-12-08 14:01 - 2018-12-08 17:46 - 690332161 _____ C:\Users\Libor\Downloads\DickOnTrip.18.12.03.Shy.Indonesian.Kitty.CZECH.XXX.1080p.mp4
2018-12-08 10:54 - 2018-12-08 12:28 - 286409274 _____ C:\Users\Libor\Downloads\At_The_Adult_Theater (1).mp4
2018-12-08 10:53 - 2018-12-08 13:41 - 515374838 _____ C:\Users\Libor\Downloads\incetjszxa024 (1).mp4
2018-12-07 23:35 - 2018-12-08 00:47 - 654561779 _____ C:\Users\Libor\Downloads\incetjszxa028.mp4
2018-12-07 17:52 - 2018-12-07 17:56 - 066256085 _____ C:\Users\Libor\Desktop\Maxmilián Kašparů 3. díl Vrátili jsme se do mentality, která je podobná jako za socialismu.mp4
2018-12-07 11:54 - 2018-12-07 11:55 - 000000000 ____D C:\Users\Libor\Documents\D-test pdf
2018-12-07 11:09 - 2018-12-07 11:09 - 001138780 _____ C:\Users\Libor\Desktop\kita_internet_2018.pdf
2018-12-06 19:28 - 2018-12-06 19:28 - 001154324 _____ C:\Users\Libor\Desktop\06_Martyniak.pdf
2018-12-06 15:50 - 2018-12-06 15:50 - 001083161 _____ C:\Users\Libor\Desktop\Cenik_zakladnich_sluzeb_01_12_2018.pdf
2018-12-03 22:33 - 2018-12-04 01:46 - 592639478 _____ C:\Users\Libor\Downloads\incetjszxa001.mp4
2018-12-03 10:47 - 2018-12-03 10:47 - 000985789 _____ C:\Users\Libor\Desktop\35, Pack 1+1.pdf
2018-11-29 12:21 - 2018-11-29 12:21 - 000000000 ____D C:\Users\Libor\AppData\Local\fontconfig
2018-11-29 12:20 - 2018-11-29 12:20 - 000000000 ____D C:\Users\Libor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2018-11-25 19:20 - 2018-11-25 20:07 - 426914583 _____ C:\Users\Libor\Downloads\Clip_0023.mp4
2018-11-25 16:29 - 2017-10-02 20:01 - 092364952 _____ C:\Users\Libor\Downloads\UpsilonCaper-4ashleylanejonw.mp4
2018-11-22 02:14 - 2018-11-22 02:14 - 000378584 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-12-22 19:27 - 2009-07-14 05:45 - 000021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-12-22 19:27 - 2009-07-14 05:45 - 000021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-12-22 19:22 - 2018-10-20 21:14 - 000003232 _____ C:\Windows\System32\Tasks\{7E49FD1E-C496-4E67-B2E3-DDAF1C4D2556}
2018-12-22 19:22 - 2017-12-25 22:48 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-12-22 19:22 - 2017-10-04 12:17 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software
2018-12-22 19:22 - 2017-06-28 22:23 - 000002790 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2018-12-22 18:23 - 2011-04-12 09:34 - 000668542 _____ C:\Windows\system32\perfh005.dat
2018-12-22 18:23 - 2011-04-12 09:34 - 000141202 _____ C:\Windows\system32\perfc005.dat
2018-12-22 18:23 - 2009-07-14 06:13 - 001583226 _____ C:\Windows\system32\PerfStringBackup.INI
2018-12-22 18:23 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2018-12-22 18:19 - 2017-11-14 12:28 - 000000000 ____D C:\Users\Libor\AppData\Local\AVAST Software
2018-12-22 18:19 - 2017-06-15 12:53 - 000000000 ____D C:\Users\Libor\AppData\LocalLow\Mozilla
2018-12-22 18:17 - 2017-06-14 22:31 - 000000000 ____D C:\ProgramData\NVIDIA
2018-12-22 18:17 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-12-22 18:10 - 2017-09-21 10:29 - 000000000 ____D C:\Users\Libor\AppData\Roaming\Messenger for Desktop
2018-12-22 17:49 - 2017-09-13 11:42 - 000075734 _____ C:\Users\Libor\Desktop\Nový textový dokument.txt
2018-12-22 13:18 - 2017-06-15 23:14 - 000000000 ____D C:\Users\Libor\AppData\Roaming\MPC-HC
2018-12-22 13:11 - 2017-06-30 21:27 - 000000000 ____D C:\Windows\Minidump
2018-12-22 13:06 - 2017-06-28 22:23 - 000000000 ____D C:\Program Files\CCleaner
2018-12-22 11:51 - 2017-09-25 18:20 - 000000000 ____D C:\Users\Libor\AppData\Roaming\foobar2000
2018-12-21 14:59 - 2017-06-20 12:20 - 000032304 _____ C:\Users\Libor\Documents\WC.txt
2018-12-21 14:31 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2018-12-15 10:50 - 2017-06-15 12:52 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-12-15 10:50 - 2017-06-15 12:52 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-12-13 10:39 - 2009-07-14 05:45 - 000294952 _____ C:\Windows\system32\FNTCACHE.DAT
2018-12-13 02:26 - 2017-06-20 10:23 - 137260640 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-12-12 11:07 - 2017-06-30 21:45 - 001557940 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-12-11 10:03 - 2017-07-10 21:53 - 000000000 ____D C:\Users\Libor\Desktop\FAKTURA
2018-12-11 09:48 - 2017-01-30 11:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2018-12-10 17:11 - 2018-06-12 00:26 - 000000000 ____D C:\Users\Libor\AppData\Roaming\MB-Ruler
2018-12-09 10:38 - 2009-07-14 06:08 - 000032542 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2018-11-30 00:08 - 2014-01-28 11:13 - 000000000 ____D C:\Users\Libor\AppData\Roaming\Thunderbird
2018-11-29 14:38 - 2017-06-17 19:57 - 000000000 ____D C:\Users\Libor\Desktop\Zástupce
2018-11-26 18:14 - 2017-12-21 18:47 - 000239840 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-11-23 01:55 - 2018-04-05 09:49 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2018-11-22 02:14 - 2018-10-20 10:25 - 000042288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2018-11-22 02:14 - 2017-11-10 02:16 - 000201240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-11-22 02:14 - 2017-06-14 22:52 - 000469272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-11-22 02:14 - 2017-06-14 22:52 - 000380464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-11-22 02:14 - 2017-06-14 22:52 - 000208472 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-11-22 02:14 - 2017-06-14 22:52 - 000163208 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-11-22 02:14 - 2017-06-14 22:52 - 000111800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-11-22 02:14 - 2017-06-14 22:52 - 000087432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-11-22 02:14 - 2017-06-14 22:52 - 000046384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-11-22 02:14 - 2017-06-14 22:52 - 000003910 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-11-22 02:13 - 2017-06-14 22:52 - 001028680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-11-22 02:13 - 2017-06-14 22:52 - 000346592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbloga.sys
2018-11-22 02:13 - 2017-06-14 22:52 - 000230344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2018-11-22 02:13 - 2017-06-14 22:52 - 000201768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsha.sys
2018-11-22 02:13 - 2017-06-14 22:52 - 000059496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniva.sys

==================== Files in the root of some directories =======

2018-09-20 10:07 - 2018-09-20 10:07 - 000003584 _____ () C:\Users\Libor\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-10-20 11:40 - 2018-10-20 11:40 - 000000017 _____ () C:\Users\Libor\AppData\Local\resmon.resmoncfg

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-12-14 20:04

==================== End of FRST.txt ============================

ratamata
Návštěvník
Návštěvník
Příspěvky: 33
Registrován: 23 pro 2009 21:08

Re: Kontrola logu...Děkuji

#6 Příspěvek od ratamata »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20.12.2018
Ran by Libor (22-12-2018 21:21:45)
Running from C:\Users\Libor\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2017-06-14 21:07:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2124696679-2527748950-779481189-500 - Administrator - Disabled)
Guest (S-1-5-21-2124696679-2527748950-779481189-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2124696679-2527748950-779481189-1002 - Limited - Enabled)
Libor (S-1-5-21-2124696679-2527748950-779481189-1000 - Administrator - Enabled) => C:\Users\Libor

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2124696679-2527748950-779481189-1000\...\uTorrent) (Version: 3.5.4.44520 - BitTorrent Inc.)
Aktualizace NVIDIA 25.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 25.0.0.0 - NVIDIA Corporation) Hidden
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 382.53 - NVIDIA Corporation) Hidden
Apple Mobile Device Support (HKLM\...\{A05FDFEC-4377-49E0-82CB-B6D1386E89DA}) (Version: 11.3.0.9 - Apple Inc.)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.6.3.0 - Asmedia Technology)
ASUS Xonar DX Audio Driver (HKLM\...\C-Media Oxygen HD Audio Driver) (Version: - )
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.8.2356 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 70.0.917.102 - AVAST Software)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.136.333 - AVAST Software) Hidden
BitTorrent (HKU\S-1-5-21-2124696679-2527748950-779481189-1000\...\BitTorrent) (Version: 7.10.4.44521 - BitTorrent Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.47 - Piriform)
CDisplayEx 1.10.33 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.)
CL-Eye Driver (HKLM-x32\...\CL-Eye Driver) (Version: 5.3.0.0341 - Code Laboratories, Inc.)
CPUID CPU-Z 1.79.1 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) <==== ATTENTION
Dell Display Manager (HKLM-x32\...\{AC50C05D-9D57-40F5-B2EF-AC402F14312B}_is1) (Version: - EnTech Taiwan)
foobar2000 v1.3.16 (HKLM-x32\...\foobar2000) (Version: 1.3.16 - Peter Pawlowski)
FormatFactory 4.4.1.0 (HKLM-x32\...\FormatFactory) (Version: 4.4.1.0 - Free Time)
FVD Downloader Module (HKLM-x32\...\{A3F74A3C-6824-4878-AB46-21280389D09F}) (Version: 1.0.8 - Nimbus)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.28 - Irfan Skiljan)
iTunes (HKLM\...\{565C813A-F1E1-4A1B-91D8-B2112D0D5518}) (Version: 12.7.4.76 - Apple Inc.)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
MB-Ruler (HKLM-x32\...\{7363206E-C7BD-45CD-89A0-792B28409811}_is1) (Version: 5.3 - Markus Bader)
Messenger for Desktop (HKU\S-1-5-21-2124696679-2527748950-779481189-1000\...\messengerfordesktop) (Version: 2.0.9 - MessengerForDesktop.com)
Microsoft .NET Framework 4.7 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 64.0 (x64 cs) (HKLM\...\Mozilla Firefox 64.0 (x64 cs)) (Version: 64.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0 - Mozilla)
Mozilla Thunderbird 60.3.3 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 60.3.3 (x86 cs)) (Version: 60.3.3 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 382.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.53 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.3 (HKLM-x32\...\{7308600A-5231-459C-A3E2-A637F842CACA}) (Version: 4.13.9783 - Apache Software Foundation)
OSCAR Editor (HKLM-x32\...\{ED21F22F-EF3A-446D-B4BB-AE92D916B7DA}) (Version: 12.08.0002 - A4TECH) Hidden
Ovládací panel NVIDIA 382.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 382.53 - NVIDIA Corporation) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{543F829B-4591-4B2F-AF63-6E6E6AE59EB2}) (Version: 6.4 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{0ECA3BB5-4410-414B-B226-241FF1C12CD0}) (Version: 6.4 - Apple Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.41.216.2011 - Realtek)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
Syncios 6.5.3 (HKLM-x32\...\Syncios) (Version: 6.5.3 - Anvsoft)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
War Thunder Launcher 1.0.3.69 (HKU\S-1-5-21-2124696679-2527748950-779481189-1000\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
X7 Oscar Editor (HKLM-x32\...\InstallShield_{ED21F22F-EF3A-446D-B4BB-AE92D916B7DA}) (Version: 12.08.0002 - A4TECH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-22] (AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-22] (AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-22] (AVAST Software)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-06-08] (NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-22] (AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {218980BC-4186-48E7-A568-1B78303264C2} - System32\Tasks\{7E49FD1E-C496-4E67-B2E3-DDAF1C4D2556} => C:\Windows\system32\pcalua.exe -a C:\Users\Libor\AppData\Local\Temp\jre-8u191-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATTENTION
Task: {24803DB4-BC29-41F8-8BC5-4859455095DF} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-06-08] (NVIDIA Corporation)
Task: {266E890E-2BC1-4A01-8DA2-277A68E37C59} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-06-08] (NVIDIA Corporation)
Task: {33182588-CCEF-43E1-BFDC-9F3DBAA56655} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-08] (NVIDIA Corporation)
Task: {33EFFCA1-5F64-432F-8BBF-9D33E6D59362} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-05] (AVAST Software)
Task: {33FA70F5-A4D5-4BFF-A634-878863069219} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2124696679-2527748950-779481189-1000
Task: {3BAC3717-6D48-409B-B5EE-24CB32184BBD} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-06-08] (NVIDIA Corporation)
Task: {513914BF-925C-4E46-8347-83440C236CD8} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-05] (AVAST Software)
Task: {54FA6B82-B3EC-4B3A-9EDF-E03ED075AC6A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-10-28] (AVAST Software)
Task: {683DEEC0-7B02-460D-AE8E-68D3A86EF0F2} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-09-19] (Piriform Ltd)
Task: {B0BB068B-2CDF-47B8-AA29-8E7364D33A69} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-09-19] (Piriform Ltd)
Task: {C4EDCD48-4414-41A3-BB88-48F47F0DEE2B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-06-08] (NVIDIA Corporation)
Task: {CC04D700-6FDA-4821-80E1-CEECA41DD576} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-08] (NVIDIA Corporation)
Task: {E914B6AF-5E39-4FF1-9967-A03FFBCCCA33} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-08] (NVIDIA Corporation)
Task: {F9E0C9F3-ACBE-4A86-ADD5-309D76E8CEDB} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-08] (NVIDIA Corporation)
Task: {FB843286-8FB7-4D6E-BCA0-A42006B6CBEC} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-11-22] (AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2017-06-14 22:23 - 2012-09-18 14:27 - 000192512 _____ () C:\Windows\System32\zlhp1020.dll
2017-06-14 22:23 - 2012-09-18 14:27 - 000065024 _____ () C:\Windows\system32\spool\PRTPROCS\x64\pphp1020.dll
2018-03-16 14:19 - 2018-03-16 14:19 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-11-30 18:54 - 2017-11-30 18:54 - 000088888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-06-14 22:35 - 2008-07-11 14:04 - 000200704 ____N () C:\Windows\SysWOW64\HsMgr.exe
2017-06-14 22:35 - 2008-07-11 14:03 - 000282112 ____N () C:\Windows\system\HsMgr64.exe
2018-11-22 02:14 - 2018-11-22 02:14 - 000728792 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
2012-08-17 10:37 - 2012-08-17 10:37 - 003345408 _____ () C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe
2018-11-22 02:13 - 2018-11-22 02:13 - 000919256 _____ () C:\Program Files\AVAST Software\Avast\anen.dll
2018-11-22 02:14 - 2018-11-22 02:14 - 000596696 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-12-22 14:07 - 2018-12-22 14:07 - 005734544 _____ () C:\Program Files\AVAST Software\Avast\defs\18122202\algo.dll
2018-11-22 02:13 - 2018-11-22 02:13 - 000496344 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-11-22 02:13 - 2018-11-22 02:13 - 000150744 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-11-22 02:13 - 2018-11-22 02:13 - 001112280 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-03-15 18:37 - 2018-03-15 18:37 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2010-12-02 16:56 - 2010-12-02 16:56 - 000815104 _____ () C:\Program Files (x86)\OSCAR Editor X7\Data\X7\Forms\OSD_Text\OSD_Text.dll
2011-01-09 19:45 - 2011-01-09 19:45 - 000088064 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_MouseDeviceManager.dll
2012-06-14 14:59 - 2012-06-14 14:59 - 002414080 _____ () C:\Program Files (x86)\OSCAR Editor X7\Data\X7\Forms\ScreenCapture\ScreenCapture.dll
2012-05-17 10:17 - 2012-05-17 10:17 - 001000448 _____ () C:\Program Files (x86)\OSCAR Editor X7\Data\X7\Forms\TrayIconWebAdvertisement\TrayIconWebAdvertisement.dll
2010-09-20 13:18 - 2010-09-20 13:18 - 000085504 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_ZoomControl.dll
2010-09-20 13:18 - 2010-09-20 13:18 - 000054272 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_ScrollbarControl.dll
2011-04-12 14:14 - 2011-04-12 14:14 - 000063488 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_AnalyzeGesturesInRight.dll
2010-11-01 19:16 - 2010-11-01 19:16 - 000062976 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_AnalyzeGesturesInOne.dll
2012-04-27 10:40 - 2012-04-27 10:40 - 000118272 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_Wheel4D.dll
2017-06-14 22:35 - 2011-04-19 13:56 - 000143360 ____N () C:\Program Files\ASUS Xonar DX Audio\Customapp\VmixP8.dll
2017-06-17 19:55 - 2017-06-17 19:55 - 000048640 _____ () C:\Program Files (x86)\IrfanView\Languages\CZECH1.DLL

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2124696679-2527748950-779481189-1000\...\localhost -> localhost

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2018-12-17 14:58 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2124696679-2527748950-779481189-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Libor\AppData\Roaming\IrfanView\IrfanView_Wallpaper.bmp
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\startupreg: iTunesHelper => "D:\Programy\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Syncios device service => C:\Program Files (x86)\Anvsoft\Syncios\SynciosDeviceService.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{F31D8144-9A16-4FE1-B6CB-ACDCD182CEF4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{DFA0CE4C-6D1F-4E8E-AC1D-5CEDF661CFF7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{D3489B79-63D4-409B-A649-6B49A90727F8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{3CD4F645-7EA3-4E89-9DAA-B6B9119864CD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{7984A514-B143-4E45-B967-78D0A9D34B76}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{DB9B12CE-C0C8-452F-A0B8-005C6C492785}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4909BF07-6FFB-4094-B021-2EFFA73D95B8}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1516AC2E-8848-4C82-8F2C-2C30BA06DA4D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{7BAA327B-C1AC-47AD-9025-599CBA94F32B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{034B6284-EEF2-4BD3-AB34-05F22128DA6E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{67B46CA1-6C5A-4AC3-ABA1-9E2D2F997DBB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{276705C2-8B76-45E2-BF70-84E6BECD9168}] => (Allow) D:\Programy\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{AD226E70-AA07-45AA-9F5D-F8A26F1CE0D3}C:\hry\warthunder\launcher.exe] => (Allow) C:\hry\warthunder\launcher.exe
FirewallRules: [UDP Query User{584FE971-9B8A-4499-8AE5-3ECF873952D8}C:\hry\warthunder\launcher.exe] => (Allow) C:\hry\warthunder\launcher.exe
FirewallRules: [{2DF82E10-29F5-4199-8ADF-53DA6C9E4199}] => (Block) C:\hry\warthunder\launcher.exe
FirewallRules: [{A2F896F5-C9AC-44B3-ADC4-B598FBD74903}] => (Block) C:\hry\warthunder\launcher.exe
FirewallRules: [TCP Query User{AA1B759C-D073-4F76-8A5D-C9E776D5D553}C:\hry\warthunder\win64\aces.exe] => (Allow) C:\hry\warthunder\win64\aces.exe
FirewallRules: [UDP Query User{7585EDE4-349B-4F67-B772-B670BEC0BBF4}C:\hry\warthunder\win64\aces.exe] => (Allow) C:\hry\warthunder\win64\aces.exe
FirewallRules: [{A2DCE992-18FA-4E89-9D55-9CAB5F642DF2}] => (Block) C:\hry\warthunder\win64\aces.exe
FirewallRules: [{C9F71EEC-B41C-4B30-B984-A7BCE5CE7D90}] => (Block) C:\hry\warthunder\win64\aces.exe
FirewallRules: [{71759282-D9AF-4C25-AA24-B360433F2100}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [{04E42047-755C-47F5-94E4-0D6C23DF7AF4}] => (Allow) D:\Programy\iTunes\iTunes.exe
FirewallRules: [{71D28E78-165E-4851-8A5D-EECD4ED9E028}] => (Allow) C:\Users\Libor\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BB972472-6C46-4970-835A-E9288E261DE6}] => (Allow) C:\Users\Libor\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F0C0D93E-2F9D-42D2-B419-4B11BFB3ADE7}] => (Allow) C:\Users\Libor\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{41893D84-2593-4DC9-A56B-4307D61258C8}] => (Allow) C:\Users\Libor\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{672F54A0-A7A9-4DD2-B2AC-61D04B2B8485}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{9893CD7F-0A98-40DF-9749-5035E4353AF8}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{44D3F26D-486F-41AD-9CBA-B091F64977FE}] => (Allow) C:\Program Files (x86)\Anvsoft\Syncios\pdt_syncios.exe
FirewallRules: [{4F2C503C-01D7-4D02-B819-56CF9317E943}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [{478C4D3B-2D8C-4E15-8ECA-FF75D2BE85A1}] => (Allow) C:\Users\Libor\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{71177191-F8CC-4907-B443-B8CE6C53781F}] => (Allow) C:\Users\Libor\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{BA4344DA-E57F-4233-BD2D-67D0374C97BD}] => (Allow) D:\Programy\iTunes\iTunes.exe
FirewallRules: [{74B94273-BAB6-45B3-BEC6-7ACDA7BB068B}] => (Allow) D:\Programy\iTunes\iTunes.exe
FirewallRules: [{50A8D45B-8C3F-41B4-98D3-8569029782CD}] => (Allow) D:\Programy\Skype\Phone\Skype.exe
FirewallRules: [{3E244952-C193-48DD-AE4B-A740A11F6946}] => (Allow) D:\Programy\Skype\Phone\Skype.exe
FirewallRules: [{8194EFB0-DD70-41D8-8B40-AC6A10C58212}] => (Allow) C:\Program Files (x86)\Anvsoft\Syncios\pdt_syncios.exe
FirewallRules: [{4B3CD0DF-8EEE-4E8C-959B-03B84A29448B}] => (Allow) C:\Program Files (x86)\Anvsoft\Syncios\pdt_syncios.exe
FirewallRules: [{B4814B6A-B6A0-45BC-8BEA-D4B814148CF1}] => (Allow) C:\Users\Libor\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{AB294414-1807-40E6-8479-B42CF0F844A5}] => (Allow) C:\Users\Libor\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{C7DC5C19-0C13-4719-874F-1CC40AD1F58F}C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe
FirewallRules: [UDP Query User{9A1B51EB-7700-4726-BBDA-BDEF2D0B3969}C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe
FirewallRules: [{FE55A5EC-E1E3-47D3-B77C-D5E38FBC8515}] => (Block) C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe
FirewallRules: [{3C65674B-566E-473E-81CF-277F1107A046}] => (Block) C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe
FirewallRules: [{7EC74F16-E66E-45D2-88B0-4BD8D326F821}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{763E7161-A64C-4157-831D-C354075EFA5C}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{0F0F09B5-425E-4508-9F64-DD2D0A603B5A}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
FirewallRules: [{9286566F-22E4-4696-9DA6-73D70623B3DF}] => (Allow) D:\Programy\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{D09BC034-58B2-4769-9530-184CB9AE6E4F}] => (Allow) D:\Programy\FormatFactory\FormatFactory.exe

==================== Restore Points =========================

20-12-2018 01:35:36 Naplánovaný kontrolní bod
20-12-2018 17:16:44 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/22/2018 06:17:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/22/2018 06:12:35 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/22/2018 02:07:16 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/22/2018 12:57:32 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/22/2018 12:48:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/22/2018 11:27:50 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/21/2018 10:50:06 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/20/2018 05:49:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.


System errors:
=============
Error: (12/22/2018 06:16:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Windows Media Player Network Sharing neuspěla při spuštění v důsledku následující chyby:
Služba nebyla zahájena, protože se nepodařilo přihlásit.

Error: (12/22/2018 06:16:58 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba WMPNetworkSvc se nemohla přihlásit jako NT AUTHORITY\NetworkService s aktuálně konfigurovaným heslem z důvodu následující chyby:
Požadavek není podporován.


Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).

Error: (12/22/2018 06:16:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Ochrana softwaru byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (12/22/2018 06:16:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (12/22/2018 06:16:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Apple Mobile Device Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (12/22/2018 06:16:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Telemetry Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.

Error: (12/22/2018 06:16:28 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Bonjour Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/22/2018 06:16:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Display Container LS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-2400 CPU @ 3.10GHz
Percentage of memory in use: 35%
Total physical RAM: 8173.24 MB
Available physical RAM: 5252.25 MB
Total Virtual: 16344.62 MB
Available Virtual: 12435.4 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:100 GB) (Free:15.97 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Disk) (Fixed) (Total:831.51 GB) (Free:73.72 GB) NTFS


==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 0A0DED59)
Partition 1: (Active) - (Size=100 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=831.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Kontrola logu...Děkuji

#7 Příspěvek od Conder »

:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

    Kód: Vybrat vše

    Start
    CloseProcesses:
    CreateRestorePoint:
    
    PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
    File: C:\Users\Libor\AppData\Local\Temp\jre-8u191-windows-au.exe
    Folder: C:\Program Files\CPUID
    Folder: C:\Windows\Minidump
    ExportKey: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\CPUID CPU-Z_is1
    
    FF NewTab: Mozilla\Firefox\Profiles\x9z5u258.default -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10419__180929
    FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
    2018-12-22 14:44 - 2018-12-22 14:44 - 000000000 ____D C:\rsit
    2018-12-22 14:44 - 2018-12-22 14:44 - 000000000 ____D C:\Program Files\trend micro
    2018-12-22 14:42 - 2018-12-22 14:43 - 001222144 _____ C:\Users\Libor\Desktop\RSITx64.exe
    Task: {218980BC-4186-48E7-A568-1B78303264C2} - System32\Tasks\{7E49FD1E-C496-4E67-B2E3-DDAF1C4D2556} => C:\Windows\system32\pcalua.exe -a C:\Users\Libor\AppData\Local\Temp\jre-8u191-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATTENTION
    Task: {33FA70F5-A4D5-4BFF-A634-878863069219} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2124696679-2527748950-779481189-1000
    
    Hosts:
    EmptyTemp:
    End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

ratamata
Návštěvník
Návštěvník
Příspěvky: 33
Registrován: 23 pro 2009 21:08

Re: Kontrola logu...Děkuji

#8 Příspěvek od ratamata »

Fix result of Farbar Recovery Scan Tool (x64) Version: 20.12.2018
Ran by Libor (22-12-2018 23:30:17) Run:1
Running from C:\Users\Libor\Desktop
Loaded Profiles: Libor (Available Profiles: Libor)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
File: C:\Users\Libor\AppData\Local\Temp\jre-8u191-windows-au.exe
Folder: C:\Program Files\CPUID
Folder: C:\Windows\Minidump
ExportKey: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\CPUID CPU-Z_is1

FF NewTab: Mozilla\Firefox\Profiles\x9z5u258.default -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10419__180929
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
2018-12-22 14:44 - 2018-12-22 14:44 - 000000000 ____D C:\rsit
2018-12-22 14:44 - 2018-12-22 14:44 - 000000000 ____D C:\Program Files\trend micro
2018-12-22 14:42 - 2018-12-22 14:43 - 001222144 _____ C:\Users\Libor\Desktop\RSITx64.exe
Task: {218980BC-4186-48E7-A568-1B78303264C2} - System32\Tasks\{7E49FD1E-C496-4E67-B2E3-DDAF1C4D2556} => C:\Windows\system32\pcalua.exe -a C:\Users\Libor\AppData\Local\Temp\jre-8u191-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATTENTION
Task: {33FA70F5-A4D5-4BFF-A634-878863069219} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2124696679-2527748950-779481189-1000

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========



Count : 188
Average :
Sum : 907682782
Maximum :
Minimum :
Property : Length


========= End of Powershell: =========


========================= File: C:\Users\Libor\AppData\Local\Temp\jre-8u191-windows-au.exe ========================

"C:\Users\Libor\AppData\Local\Temp\jre-8u191-windows-au.exe" => not found
====== End of File: ======


========================= Folder: C:\Program Files\CPUID ========================

not found.

====== End of Folder: ======


========================= Folder: C:\Windows\Minidump ========================


====== End of Folder: ======

================== ExportKey: ===================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\CPUID CPU-Z_is1]
"Inno Setup: Setup Version"="5.5.9 (a)"
"Inno Setup: App Path"="D:\Programy\CPU-Z"
"InstallLocation"="D:\Programy\CPU-Z\"
"Inno Setup: Icon Group"="CPU-Z"
"Inno Setup: User"="Libor"
"Inno Setup: Selected Tasks"="desktopicon"
"Inno Setup: Deselected Tasks"=""
"Inno Setup: Language"="default"
"DisplayName"="CPUID CPU-Z 1.79.1"
"DisplayIcon"="D:\Programy\CPU-Z\cpuz.exe"
"UninstallString"=""D:\Programy\CPU-Z\unins000.exe""
"QuietUninstallString"=""D:\Programy\CPU-Z\unins000.exe" /SILENT"
"NoModify"="1"
"NoRepair"="1"
"InstallDate"="20170630"
"EstimatedSize"="4075"

=== End of ExportKey ===
"Firefox newtab" => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
C:\rsit => moved successfully
C:\Program Files\trend micro => moved successfully
C:\Users\Libor\Desktop\RSITx64.exe => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{218980BC-4186-48E7-A568-1B78303264C2}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{218980BC-4186-48E7-A568-1B78303264C2}" => removed successfully
C:\Windows\System32\Tasks\{7E49FD1E-C496-4E67-B2E3-DDAF1C4D2556} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7E49FD1E-C496-4E67-B2E3-DDAF1C4D2556}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{33FA70F5-A4D5-4BFF-A634-878863069219}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{33FA70F5-A4D5-4BFF-A634-878863069219}" => removed successfully
C:\Windows\System32\Tasks\Games\UpdateCheck_S-1-5-21-2124696679-2527748950-779481189-1000 => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Games\UpdateCheck_S-1-5-21-2124696679-2527748950-779481189-1000" => removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 16994227 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 84 B
Edge => 0 B
Chrome => 0 B
Firefox => 507013519 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 58558540 B
systemprofile32 => 66228 B
LocalService => 66228 B
NetworkService => 66228 B
Libor => 30331058 B

RecycleBin => 26961000 B
EmptyTemp: => 618.4 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 23:31:43 ====

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Kontrola logu...Děkuji

#9 Příspěvek od Conder »

:arrow: Ako to vyzera s PC? Su nejake problemy?

:arrow: Plocha ma cca 1 GB. Presun vsetky subory a zlozky z plochy do dokumentov a na ploche nechaj iba odkazy/zastupcov. Prilis velka velkost plochy moze sposobit spomalenie systemu.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

ratamata
Návštěvník
Návštěvník
Příspěvky: 33
Registrován: 23 pro 2009 21:08

Re: Kontrola logu...Děkuji

#10 Příspěvek od ratamata »

Myslím že dobrý. Soubory z plochy přesunuty. :thumbsup:

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Kontrola logu...Děkuji

#11 Příspěvek od Conder »

:arrow: Tak este upraceme po pouzitych nastrojoch:
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

ratamata
Návštěvník
Návštěvník
Příspěvky: 33
Registrován: 23 pro 2009 21:08

Re: Kontrola logu...Děkuji

#12 Příspěvek od ratamata »

Tak uklizeno. Díky!

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Kontrola logu...Děkuji

#13 Příspěvek od Conder »

Nie je zaco, rad som pomohol :)
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Zamčeno