Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Preventivní kontrola

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
pokerkan
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 17 srp 2010 17:54

Preventivní kontrola

#1 Příspěvek od pokerkan »

Add_Frst.zip
(24.6 KiB) Staženo 79 x
Zdravím, prosím o preventivní kontrolu. Předem moc děkuji !

Logfile of random's system information tool 1.10 (written by random/random)
Run by VacKor at 2019-07-10 12:41:02
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 7 GB (2%) free of 477 GB
Total RAM: 3838 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:41:27, on 10.7.2019
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19400)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
C:\Program Files\trend micro\VacKor.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [HDAudDeck] c:\program files (x86)\via\viaudioi\vdeck\vdeck.exe -r
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Služba %1!s! Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall Service (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Služba %1!s! Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Secure Browser Elevation Service (AvastSecureBrowserElevationService) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Application\75.0.1447.80\elevation_service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\75.0.3770.100\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9103 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
taskeng.exe {587C2579-329E-44D5-B65E-E943D56D4741}
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\viakaraokesrv.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2016
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\AVAST Software\Avast\aswidsagent.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
atieclxx
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe"
"C:\Program Files\Microsoft IntelliType Pro\itype.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe"
AvastUI.exe /nogui
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\VacKor\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\VacKor\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\VacKor\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=75.0.3770.100 --initial-client-data=0x88,0x8c,0x90,0x84,0x94,0x7fedad33ef8,0x7fedad33f08,0x7fedad33f18
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=2556 --on-initialized-event-handle=360 --parent-handle=376 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1040,14027291205789046568,8985088097529418042,131072 --gpu-preferences=KAAAAAAAAADgAAAgAQAAAAAAAAAAAGAAAAAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=308310722660482301 --mojo-platform-channel-handle=1072 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1040,14027291205789046568,8985088097529418042,131072 --lang=cs --service-sandbox-type=network --service-request-channel-token=743217183119952195 --mojo-platform-channel-handle=1384 /prefetch:8
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1040,14027291205789046568,8985088097529418042,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=1 --service-request-channel-token=14914028106164713209 --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2236 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1040,14027291205789046568,8985088097529418042,131072 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=1 --service-request-channel-token=850338652706645941 --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2252 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1040,14027291205789046568,8985088097529418042,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=1 --service-request-channel-token=17642301536053298719 --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3032 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1040,14027291205789046568,8985088097529418042,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=1 --service-request-channel-token=16784372707404921541 --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2156 /prefetch:1
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1040,14027291205789046568,8985088097529418042,131072 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=1 --service-request-channel-token=7336590010354952995 --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1964 /prefetch:1
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=heartbeat --hourly
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --heartbeat --hourly
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=crashpad-handler "--user-data-dir=C:\Users\VacKor\AppData\Local\AVAST Software\Browser\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\VacKor\AppData\Local\AVAST Software\Browser\User Data\Crashpad" "--metrics-dir=C:\Users\VacKor\AppData\Local\AVAST Software\Browser\User Data" --url=fake_url --annotation=plat=Win32 --annotation=prod=Avast --annotation=ver=75.0.1447.80 --initial-client-data=0x9c,0xa0,0xa4,0x98,0xa8,0x736799d0,0x736799e0,0x736799ec
"taskhost.exe"
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=watcher --main-thread-id=3616 --on-initialized-event-handle=336 --parent-handle=340 /prefetch:6
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=gpu-process --field-trial-handle=1140,18036523254470974215,12326393481300723930,131072 --gpu-preferences=KAAAAAAAAADgAAAwAQAAAAAAAAAAAGAAAAAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=13881752173533142574 --mojo-platform-channel-handle=1144 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=utility --field-trial-handle=1140,18036523254470974215,12326393481300723930,131072 --lang=cs --service-sandbox-type=network --service-request-channel-token=18067821100524603589 --mojo-platform-channel-handle=1564 /prefetch:8
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
notepad "C:\Users\VacKor\Desktop\FRST.txt"
notepad "C:\Users\VacKor\Desktop\Addition.txt"
C:\Windows\system32\AUDIODG.EXE 0x494
"C:\Users\VacKor\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\VacKor\AppData\Roaming\Mozilla\Firefox\Profiles\sh9hc1df.default-1423319141345

prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.223 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_223.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@hypercosm.com/HypercosmPlayer]
"Description"=Hypercosm Player
"Path"=C:\Program Files (x86)\Hypercosm\Hypercosm Player\components\nphypercosm.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.191.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.191.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.7]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.5.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.7]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.223 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_223.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}

C:\Users\VacKor\AppData\Roaming\Mozilla\Firefox\Profiles\sh9hc1df.default-1423319141345\searchplugins\
seznam-avast.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-11-03 480120]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-03 194424]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"itype"=c:\Program Files\Microsoft IntelliType Pro\itype.exe [2011-04-13 1860496]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2019-05-26 262024]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Smart Cleaning]
C:\Program Files\CCleaner\CCleaner64.exe [2019-06-04 22691064]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HDAudDeck]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-10-06 601424]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-02-10 98304]
"NUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-04-27 113288]
"HDAudDeck"=c:\program files (x86)\via\viaudioi\vdeck\vdeck.exe [2010-06-25 2441840]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2019-07-10 12:41:03 ----D---- C:\Program Files\trend micro
2019-07-10 12:41:02 ----D---- C:\rsit
2019-07-10 12:30:44 ----D---- C:\FRST
2019-07-10 08:31:46 ----SHD---- C:\Config.Msi
2019-07-10 08:14:13 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2019-07-10 08:14:12 ----A---- C:\Windows\SYSWOW64\usp10.dll
2019-07-10 08:14:06 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2019-07-10 08:13:59 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2019-07-10 08:13:59 ----A---- C:\Windows\SYSWOW64\credssp.dll
2019-07-10 08:13:58 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2019-07-10 08:13:58 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2019-07-10 08:13:57 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2019-07-10 08:13:57 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2019-07-10 08:13:57 ----A---- C:\Windows\SYSWOW64\mssign32.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-07-10 08:13:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2019-07-10 08:13:56 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2019-07-10 08:13:56 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2019-07-10 08:13:56 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2019-07-10 08:13:56 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2019-07-10 08:13:55 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2019-07-10 08:13:46 ----A---- C:\Windows\SYSWOW64\inseng.dll
2019-07-10 08:13:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2019-07-10 08:13:45 ----A---- C:\Windows\SYSWOW64\msrating.dll
2019-07-10 08:13:45 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2019-07-10 08:13:40 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2019-07-10 08:13:40 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2019-07-10 08:13:36 ----A---- C:\Windows\SYSWOW64\wininet.dll
2019-07-10 08:13:36 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2019-07-10 08:13:33 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2019-07-10 08:13:30 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2019-07-10 08:13:29 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2019-07-10 08:13:29 ----A---- C:\Windows\SYSWOW64\evr.dll
2019-07-10 08:13:29 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2019-07-10 08:13:27 ----A---- C:\Windows\SYSWOW64\Dism.exe
2019-07-10 08:13:27 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2019-07-10 08:13:26 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2019-07-10 08:13:26 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2019-07-10 08:13:26 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2019-07-10 08:13:26 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2019-07-10 08:13:26 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2019-07-10 08:13:25 ----A---- C:\Windows\SYSWOW64\ole32.dll
2019-07-10 08:13:24 ----A---- C:\Windows\SYSWOW64\certcli.dll
2019-07-10 08:13:21 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2019-07-10 08:13:19 ----A---- C:\Windows\SYSWOW64\wow32.dll
2019-07-10 08:13:19 ----A---- C:\Windows\SYSWOW64\wlansec.dll
2019-07-10 08:13:19 ----A---- C:\Windows\SYSWOW64\user.exe
2019-07-10 08:13:19 ----A---- C:\Windows\SYSWOW64\setup16.exe
2019-07-10 08:13:19 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2019-07-10 08:13:19 ----A---- C:\Windows\SYSWOW64\instnm.exe
2019-07-10 08:13:18 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2019-07-10 08:13:18 ----A---- C:\Windows\SYSWOW64\wlanhlp.dll
2019-07-10 08:13:18 ----A---- C:\Windows\SYSWOW64\wlanapi.dll
2019-07-10 08:13:17 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2019-07-10 08:13:17 ----A---- C:\Windows\SYSWOW64\sscore.dll
2019-07-10 08:13:17 ----A---- C:\Windows\SYSWOW64\srclient.dll
2019-07-10 08:13:17 ----A---- C:\Windows\SYSWOW64\schannel.dll
2019-07-10 08:13:17 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2019-07-10 08:13:17 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2019-07-10 08:13:17 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2019-07-10 08:13:16 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2019-07-10 08:13:16 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2019-07-10 08:13:16 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2019-07-10 08:13:16 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2019-07-10 08:13:16 ----A---- C:\Windows\SYSWOW64\jscript.dll
2019-07-10 08:13:13 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2019-07-10 08:13:12 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2019-07-10 08:13:12 ----A---- C:\Windows\SYSWOW64\msscp.dll
2019-07-10 08:13:12 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2019-07-10 08:13:12 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2019-07-10 08:13:12 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2019-07-10 08:13:12 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2019-07-10 08:13:11 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2019-07-10 08:13:11 ----A---- C:\Windows\SYSWOW64\wmp.dll
2019-07-10 08:13:11 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2019-07-10 08:13:10 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2019-07-10 08:13:10 ----A---- C:\Windows\SYSWOW64\mfps.dll
2019-07-10 08:13:10 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2019-07-10 08:13:10 ----A---- C:\Windows\SYSWOW64\mferror.dll
2019-07-10 08:13:10 ----A---- C:\Windows\SYSWOW64\mf.dll
2019-07-10 08:13:10 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2019-07-10 08:13:09 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2019-07-10 08:13:09 ----A---- C:\Windows\SYSWOW64\secur32.dll
2019-07-10 08:13:09 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2019-07-10 08:13:09 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2019-07-10 08:13:09 ----A---- C:\Windows\SYSWOW64\ieui.dll
2019-07-10 08:13:08 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2019-07-10 08:13:08 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2019-07-10 08:13:08 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2019-07-10 08:13:07 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2019-07-10 08:13:07 ----A---- C:\Windows\SYSWOW64\occache.dll
2019-07-10 08:13:07 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2019-07-10 08:13:07 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2019-07-10 08:13:06 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2019-07-10 08:13:06 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2019-07-10 08:13:05 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2019-07-10 08:13:05 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2019-07-10 08:13:05 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2019-07-10 08:13:05 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2019-07-10 08:13:03 ----A---- C:\Windows\SYSWOW64\quartz.dll
2019-07-10 08:13:02 ----A---- C:\Windows\SYSWOW64\oleres.dll
2019-07-10 08:13:02 ----A---- C:\Windows\SYSWOW64\comcat.dll
2019-07-10 08:13:02 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2019-07-10 08:13:02 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2019-07-10 08:13:02 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2019-07-10 08:13:02 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2019-07-10 08:13:02 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2019-07-10 08:10:59 ----A---- C:\Windows\system32\wow64win.dll
2019-07-10 08:10:59 ----A---- C:\Windows\system32\wow64cpu.dll
2019-07-10 08:10:59 ----A---- C:\Windows\system32\wow64.dll
2019-07-10 08:10:59 ----A---- C:\Windows\system32\ntvdm64.dll
2019-07-10 08:10:57 ----A---- C:\Windows\system32\wlansvc.dll
2019-07-10 08:10:57 ----A---- C:\Windows\system32\wlansec.dll
2019-07-10 08:10:57 ----A---- C:\Windows\system32\wlanmsm.dll
2019-07-10 08:10:57 ----A---- C:\Windows\system32\wlanhlp.dll
2019-07-10 08:10:57 ----A---- C:\Windows\system32\wlanapi.dll
2019-07-10 08:10:57 ----A---- C:\Windows\system32\wintrust.dll
2019-07-10 08:10:57 ----A---- C:\Windows\system32\winsrv.dll
2019-07-10 08:10:56 ----A---- C:\Windows\system32\win32k.sys
2019-07-10 08:10:41 ----A---- C:\Windows\system32\drivers\videoprt.sys
2019-07-10 08:10:40 ----A---- C:\Windows\system32\usp10.dll
2019-07-10 08:10:27 ----A---- C:\Windows\system32\mstscax.dll
2019-07-10 08:10:25 ----A---- C:\Windows\system32\srcore.dll
2019-07-10 08:10:25 ----A---- C:\Windows\system32\srclient.dll
2019-07-10 08:10:24 ----A---- C:\Windows\system32\rstrui.exe
2019-07-10 08:10:23 ----A---- C:\Windows\system32\smss.exe
2019-07-10 08:10:23 ----A---- C:\Windows\system32\apisetschema.dll
2019-07-10 08:10:22 ----A---- C:\Windows\system32\sscore.dll
2019-07-10 08:10:21 ----A---- C:\Windows\system32\srvsvc.dll
2019-07-10 08:10:21 ----A---- C:\Windows\system32\drivers\srv2.sys
2019-07-10 08:10:21 ----A---- C:\Windows\system32\drivers\srv.sys
2019-07-10 08:10:20 ----A---- C:\Windows\system32\drivers\srvnet.sys
2019-07-10 08:10:20 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2019-07-10 08:10:20 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2019-07-10 08:10:20 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2019-07-10 08:10:11 ----A---- C:\Windows\system32\wdigest.dll
2019-07-10 08:10:11 ----A---- C:\Windows\system32\vbscript.dll
2019-07-10 08:10:11 ----A---- C:\Windows\system32\TSpkg.dll
2019-07-10 08:10:11 ----A---- C:\Windows\system32\schannel.dll
2019-07-10 08:10:11 ----A---- C:\Windows\system32\msv1_0.dll
2019-07-10 08:10:11 ----A---- C:\Windows\system32\kerberos.dll
2019-07-10 08:10:11 ----A---- C:\Windows\system32\jscript9diag.dll
2019-07-10 08:10:11 ----A---- C:\Windows\system32\jscript9.dll
2019-07-10 08:10:11 ----A---- C:\Windows\system32\jscript.dll
2019-07-10 08:10:11 ----A---- C:\Windows\system32\credssp.dll
2019-07-10 08:10:10 ----A---- C:\Windows\system32\rpchttp.dll
2019-07-10 08:10:10 ----A---- C:\Windows\system32\rpcrt4.dll
2019-07-10 08:10:10 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2019-07-10 08:10:04 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2019-07-10 08:09:50 ----A---- C:\Windows\system32\ntoskrnl.exe
2019-07-10 08:09:45 ----A---- C:\Windows\system32\ntdll.dll
2019-07-10 08:09:43 ----A---- C:\Windows\system32\drivers\npfs.sys
2019-07-10 08:09:42 ----A---- C:\Windows\system32\ncrypt.dll
2019-07-10 08:09:42 ----A---- C:\Windows\system32\mssign32.dll
2019-07-10 08:09:40 ----A---- C:\Windows\system32\msobjs.dll
2019-07-10 08:09:40 ----A---- C:\Windows\system32\msaudite.dll
2019-07-10 08:09:40 ----A---- C:\Windows\system32\auditpol.exe
2019-07-10 08:09:39 ----A---- C:\Windows\system32\msmmsp.dll
2019-07-10 08:09:39 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2019-07-10 08:09:39 ----A---- C:\Windows\system32\adtschema.dll
2019-07-10 08:09:38 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-07-10 08:09:38 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-07-10 08:09:38 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-07-10 08:09:38 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-07-10 08:09:38 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-07-10 08:09:38 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-07-10 08:09:38 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-07-10 08:09:38 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-07-10 08:09:38 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-07-10 08:09:38 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-07-10 08:09:37 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-07-10 08:09:37 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-07-10 08:09:36 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-07-10 08:09:36 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-07-10 08:09:36 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-07-10 08:09:36 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-07-10 08:09:36 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-07-10 08:09:36 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-07-10 08:09:36 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-07-10 08:09:36 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-07-10 08:09:36 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-07-10 08:09:36 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-07-10 08:09:36 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-07-10 08:09:36 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-07-10 08:09:36 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-07-10 08:09:36 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-07-10 08:09:36 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-07-10 08:09:36 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-07-10 08:09:35 ----A---- C:\Windows\system32\mfplat.dll
2019-07-10 08:09:34 ----A---- C:\Windows\system32\wmdrmsdk.dll
2019-07-10 08:09:34 ----A---- C:\Windows\system32\msscp.dll
2019-07-10 08:09:33 ----A---- C:\Windows\system32\msnetobj.dll
2019-07-10 08:09:33 ----A---- C:\Windows\system32\drmv2clt.dll
2019-07-10 08:09:32 ----A---- C:\Windows\system32\drmmgrtn.dll
2019-07-10 08:09:32 ----A---- C:\Windows\system32\blackbox.dll
2019-07-10 08:09:29 ----A---- C:\Windows\system32\wmploc.DLL
2019-07-10 08:09:28 ----A---- C:\Windows\system32\wmp.dll
2019-07-10 08:09:28 ----A---- C:\Windows\system32\spwmp.dll
2019-07-10 08:09:28 ----A---- C:\Windows\system32\rrinstaller.exe
2019-07-10 08:09:28 ----A---- C:\Windows\system32\mfps.dll
2019-07-10 08:09:28 ----A---- C:\Windows\system32\dxmasf.dll
2019-07-10 08:09:27 ----A---- C:\Windows\system32\mfpmp.exe
2019-07-10 08:09:27 ----A---- C:\Windows\system32\mferror.dll
2019-07-10 08:09:27 ----A---- C:\Windows\system32\mf.dll
2019-07-10 08:09:19 ----A---- C:\Windows\system32\sspisrv.dll
2019-07-10 08:09:19 ----A---- C:\Windows\system32\sspicli.dll
2019-07-10 08:09:19 ----A---- C:\Windows\system32\secur32.dll
2019-07-10 08:09:19 ----A---- C:\Windows\system32\lsass.exe
2019-07-10 08:09:18 ----A---- C:\Windows\system32\lsasrv.dll
2019-07-10 08:09:18 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2019-07-10 08:09:18 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2019-07-10 08:09:11 ----A---- C:\Windows\system32\KernelBase.dll
2019-07-10 08:09:11 ----A---- C:\Windows\system32\kernel32.dll
2019-07-10 08:09:02 ----A---- C:\Windows\system32\ieui.dll
2019-07-10 08:09:02 ----A---- C:\Windows\system32\ieframe.dll
2019-07-10 08:08:56 ----A---- C:\Windows\system32\inseng.dll
2019-07-10 08:08:52 ----A---- C:\Windows\system32\iesetup.dll
2019-07-10 08:08:52 ----A---- C:\Windows\system32\iernonce.dll
2019-07-10 08:08:52 ----A---- C:\Windows\system32\ie4uinit.exe
2019-07-10 08:08:51 ----A---- C:\Windows\system32\webcheck.dll
2019-07-10 08:08:51 ----A---- C:\Windows\system32\occache.dll
2019-07-10 08:08:51 ----A---- C:\Windows\system32\msrating.dll
2019-07-10 08:08:51 ----A---- C:\Windows\system32\iertutil.dll
2019-07-10 08:08:50 ----A---- C:\Windows\system32\MshtmlDac.dll
2019-07-10 08:08:48 ----A---- C:\Windows\system32\ieUnatt.exe
2019-07-10 08:08:42 ----A---- C:\Windows\system32\ieetwproxystub.dll
2019-07-10 08:08:42 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2019-07-10 08:08:42 ----A---- C:\Windows\system32\ieetwcollector.exe
2019-07-10 08:08:38 ----A---- C:\Windows\system32\mshtmlmedia.dll
2019-07-10 08:08:38 ----A---- C:\Windows\system32\mshtml.dll
2019-07-10 08:08:37 ----A---- C:\Windows\system32\mshtmled.dll
2019-07-10 08:08:36 ----A---- C:\Windows\system32\msfeeds.dll
2019-07-10 08:08:17 ----A---- C:\Windows\system32\dxtrans.dll
2019-07-10 08:08:17 ----A---- C:\Windows\system32\dxtmsft.dll
2019-07-10 08:08:01 ----A---- C:\Windows\system32\iedkcs32.dll
2019-07-10 08:08:01 ----A---- C:\Windows\system32\ieapfltr.dll
2019-07-10 08:07:47 ----A---- C:\Windows\system32\wininet.dll
2019-07-10 08:07:47 ----A---- C:\Windows\system32\jsproxy.dll
2019-07-10 08:07:41 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-07-10 08:07:36 ----A---- C:\Windows\system32\urlmon.dll
2019-07-10 08:07:35 ----A---- C:\Windows\system32\hal.dll
2019-07-10 08:07:33 ----A---- C:\Windows\system32\evr.dll
2019-07-10 08:07:32 ----A---- C:\Windows\system32\DWrite.dll
2019-07-10 08:07:31 ----A---- C:\Windows\system32\quartz.dll
2019-07-10 08:07:31 ----A---- C:\Windows\system32\qdvd.dll
2019-07-10 08:07:28 ----A---- C:\Windows\system32\Dism.exe
2019-07-10 08:07:27 ----A---- C:\Windows\system32\csrsrv.dll
2019-07-10 08:07:27 ----A---- C:\Windows\system32\cryptui.dll
2019-07-10 08:07:27 ----A---- C:\Windows\system32\cryptsvc.dll
2019-07-10 08:07:27 ----A---- C:\Windows\system32\cryptsp.dll
2019-07-10 08:07:27 ----A---- C:\Windows\system32\cryptnet.dll
2019-07-10 08:07:27 ----A---- C:\Windows\system32\cryptbase.dll
2019-07-10 08:07:27 ----A---- C:\Windows\system32\crypt32.dll
2019-07-10 08:07:25 ----A---- C:\Windows\system32\oleres.dll
2019-07-10 08:07:25 ----A---- C:\Windows\system32\conhost.exe
2019-07-10 08:07:25 ----A---- C:\Windows\system32\comcat.dll
2019-07-10 08:07:24 ----A---- C:\Windows\system32\rpcss.dll
2019-07-10 08:07:24 ----A---- C:\Windows\system32\ole32.dll
2019-07-10 08:07:23 ----A---- C:\Windows\system32\certcli.dll
2019-07-10 08:07:21 ----A---- C:\Windows\system32\bcrypt.dll
2019-07-10 08:07:19 ----A---- C:\Windows\system32\setbcdlocale.dll
2019-07-10 08:07:19 ----A---- C:\Windows\system32\EncDump.dll
2019-07-10 08:07:19 ----A---- C:\Windows\system32\audiosrv.dll
2019-07-10 08:07:19 ----A---- C:\Windows\system32\AudioSes.dll
2019-07-10 08:07:19 ----A---- C:\Windows\system32\AUDIOKSE.dll
2019-07-10 08:07:18 ----A---- C:\Windows\system32\drivers\appid.sys
2019-07-10 08:07:18 ----A---- C:\Windows\system32\AudioEng.dll
2019-07-10 08:07:18 ----A---- C:\Windows\system32\audiodg.exe
2019-07-10 08:07:18 ----A---- C:\Windows\system32\appidsvc.dll
2019-07-10 08:07:18 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2019-07-10 08:07:18 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2019-07-10 08:07:18 ----A---- C:\Windows\system32\appidapi.dll
2019-07-10 08:07:17 ----A---- C:\Windows\system32\advapi32.dll
2019-07-10 08:07:15 ----A---- C:\Windows\system32\invagent.dll
2019-07-10 08:07:14 ----A---- C:\Windows\system32\devinv.dll
2019-07-10 08:07:14 ----A---- C:\Windows\system32\CompatTelRunner.exe
2019-07-10 08:07:13 ----A---- C:\Windows\system32\appraiser.dll
2019-07-10 08:07:13 ----A---- C:\Windows\system32\aitstatic.exe
2019-07-10 08:07:13 ----A---- C:\Windows\system32\aepic.dll
2019-07-10 08:07:13 ----A---- C:\Windows\system32\aeinv.dll
2019-07-10 08:07:13 ----A---- C:\Windows\system32\acmigration.dll
2019-07-10 08:07:11 ----A---- C:\Windows\system32\pcawrk.exe
2019-07-10 08:07:11 ----A---- C:\Windows\system32\pcasvc.dll
2019-07-10 08:07:11 ----A---- C:\Windows\system32\pcalua.exe
2019-07-10 08:07:11 ----A---- C:\Windows\system32\pcaevts.dll
2019-07-10 08:07:11 ----A---- C:\Windows\system32\pcadm.dll
2019-07-10 08:07:11 ----A---- C:\Windows\system32\generaltel.dll
2019-07-10 08:07:11 ----A---- C:\Windows\system32\centel.dll
2019-07-10 08:06:45 ----A---- C:\Windows\system32\drivers\processr.sys
2019-07-10 08:06:45 ----A---- C:\Windows\system32\drivers\intelppm.sys
2019-07-10 08:06:45 ----A---- C:\Windows\system32\drivers\amdppm.sys
2019-07-10 08:06:45 ----A---- C:\Windows\system32\drivers\amdk8.sys
2019-07-03 20:42:42 ----D---- C:\Users\VacKor\AppData\Roaming\Google
2019-06-11 20:02:34 ----A---- C:\Windows\system32\shell32.dll
2019-06-11 20:02:32 ----A---- C:\Windows\SYSWOW64\shell32.dll
2019-06-11 20:02:29 ----A---- C:\Windows\system32\schedsvc.dll
2019-06-11 20:02:29 ----A---- C:\Windows\system32\FntCache.dll
2019-06-11 20:02:28 ----A---- C:\Windows\system32\ucrtbase.dll
2019-06-11 20:02:28 ----A---- C:\Windows\system32\drivers\tcpip.sys
2019-06-11 20:02:27 ----A---- C:\Windows\SYSWOW64\userenv.dll
2019-06-11 20:02:27 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2019-06-11 20:02:27 ----A---- C:\Windows\SYSWOW64\msi.dll
2019-06-11 20:02:27 ----A---- C:\Windows\system32\wuaueng.dll
2019-06-11 20:02:27 ----A---- C:\Windows\system32\userenv.dll
2019-06-11 20:02:27 ----A---- C:\Windows\system32\msi.dll
2019-06-11 20:02:25 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2019-06-11 20:02:25 ----A---- C:\Windows\SYSWOW64\msjet40.dll
2019-06-11 20:02:25 ----A---- C:\Windows\system32\taskcomp.dll
2019-06-11 20:02:24 ----A---- C:\Windows\system32\clfs.sys
2019-06-11 20:02:23 ----A---- C:\Windows\SYSWOW64\msexcl40.dll
2019-06-11 20:02:22 ----A---- C:\Windows\SYSWOW64\msrd3x40.dll
2019-06-11 20:02:22 ----A---- C:\Windows\SYSWOW64\msltus40.dll
2019-06-11 20:02:22 ----A---- C:\Windows\system32\mf3216.dll
2019-06-11 20:02:21 ----A---- C:\Windows\SYSWOW64\mf3216.dll
2019-06-11 20:02:21 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2019-06-11 20:02:21 ----A---- C:\Windows\system32\wucltux.dll
2019-06-11 20:02:21 ----A---- C:\Windows\system32\wuapi.dll
2019-06-11 20:02:21 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2019-06-11 20:02:21 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2019-06-11 20:02:21 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2019-06-11 20:02:21 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2019-06-11 20:02:20 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2019-06-11 20:02:19 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2019-06-11 20:02:19 ----A---- C:\Windows\system32\drivers\netio.sys
2019-06-11 20:02:19 ----A---- C:\Windows\system32\consent.exe
2019-06-11 20:02:19 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2019-06-11 20:02:18 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2019-06-11 20:02:18 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2019-06-11 20:02:18 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2019-06-11 20:02:18 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2019-06-11 20:02:17 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2019-06-11 20:02:17 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2019-06-11 20:02:17 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2019-06-11 20:02:17 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2019-06-11 20:02:17 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2019-06-11 20:02:17 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2019-06-11 20:02:17 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2019-06-11 20:02:17 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2019-06-11 20:02:16 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2019-06-11 20:02:15 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2019-06-11 20:02:13 ----A---- C:\Windows\system32\gdi32.dll
2019-06-11 20:02:12 ----A---- C:\Windows\SYSWOW64\tzres.dll
2019-06-11 20:02:12 ----A---- C:\Windows\system32\tzres.dll
2019-06-11 20:02:12 ----A---- C:\Windows\system32\ExplorerFrame.dll
2019-06-11 20:02:11 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2019-06-11 20:02:11 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2019-06-11 20:02:11 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2019-06-11 20:02:11 ----A---- C:\Windows\SYSWOW64\authui.dll
2019-06-11 20:02:11 ----A---- C:\Windows\system32\msihnd.dll
2019-06-11 20:02:11 ----A---- C:\Windows\system32\msiexec.exe
2019-06-11 20:02:11 ----A---- C:\Windows\system32\authui.dll
2019-06-11 20:02:11 ----A---- C:\Windows\system32\appinfo.dll
2019-06-11 20:02:10 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2019-06-11 20:02:10 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2019-06-11 20:02:10 ----A---- C:\Windows\system32\wuwebv.dll
2019-06-11 20:02:10 ----A---- C:\Windows\system32\wudriver.dll
2019-06-11 20:02:09 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2019-06-11 20:02:08 ----A---- C:\Windows\system32\cdosys.dll
2019-06-11 20:02:07 ----A---- C:\Windows\system32\wups2.dll
2019-06-11 20:02:07 ----A---- C:\Windows\system32\wups.dll
2019-06-11 20:02:07 ----A---- C:\Windows\system32\wuauclt.exe
2019-06-11 20:02:05 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2019-06-11 20:02:05 ----A---- C:\Windows\system32\WinSetupUI.dll
2019-06-11 20:02:02 ----A---- C:\Windows\SYSWOW64\wups.dll
2019-06-11 20:02:02 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2019-06-11 20:02:01 ----A---- C:\Windows\system32\wuapp.exe
2019-06-11 20:02:00 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2019-06-11 20:02:00 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2019-06-11 20:02:00 ----A---- C:\Windows\system32\msimsg.dll
2019-06-11 20:02:00 ----A---- C:\Windows\system32\msimg32.dll
2019-06-11 20:01:59 ----A---- C:\Windows\SYSWOW64\msimg32.dll

======List of files/folders modified in the last 1 month======

2019-07-10 12:41:25 ----D---- C:\Windows\Prefetch
2019-07-10 12:41:24 ----D---- C:\Windows\system32\drivers\etc
2019-07-10 12:41:03 ----D---- C:\Program Files
2019-07-10 12:40:57 ----D---- C:\Windows\Temp
2019-07-10 12:38:36 ----D---- C:\Windows\Microsoft.NET
2019-07-10 12:36:43 ----D---- C:\Windows
2019-07-10 12:27:13 ----D---- C:\Users\VacKor\AppData\Roaming\vlc
2019-07-10 12:26:00 ----D---- C:\Windows\System32
2019-07-10 12:26:00 ----D---- C:\Windows\inf
2019-07-10 12:26:00 ----A---- C:\Windows\system32\PerfStringBackup.INI
2019-07-10 12:17:11 ----RSD---- C:\Windows\assembly
2019-07-10 12:09:26 ----D---- C:\Windows\winsxs
2019-07-10 12:07:43 ----D---- C:\Windows\system32\config
2019-07-10 12:02:38 ----D---- C:\Windows\SYSWOW64\Dism
2019-07-10 12:02:38 ----D---- C:\Windows\SYSWOW64\cs-CZ
2019-07-10 12:02:38 ----D---- C:\Program Files\Windows Media Player
2019-07-10 12:02:38 ----D---- C:\Program Files\Internet Explorer
2019-07-10 12:02:38 ----D---- C:\Program Files (x86)\Windows Media Player
2019-07-10 12:02:38 ----D---- C:\Program Files (x86)\Internet Explorer
2019-07-10 12:02:37 ----D---- C:\Windows\SYSWOW64\en-US
2019-07-10 12:02:37 ----D---- C:\Windows\SysWOW64
2019-07-10 12:02:37 ----D---- C:\Windows\system32\drivers\en-US
2019-07-10 12:02:37 ----D---- C:\Windows\system32\drivers
2019-07-10 12:02:37 ----D---- C:\Windows\system32\Dism
2019-07-10 12:02:37 ----D---- C:\Windows\system32\appraiser
2019-07-10 12:02:36 ----SD---- C:\Windows\system32\CompatTel
2019-07-10 12:02:36 ----D---- C:\Windows\system32\en-US
2019-07-10 12:02:36 ----D---- C:\Windows\system32\cs-CZ
2019-07-10 12:02:35 ----D---- C:\Windows\system32\Boot
2019-07-10 12:02:35 ----D---- C:\Windows\AppPatch
2019-07-10 12:02:33 ----D---- C:\Windows\system32\DriverStore
2019-07-10 11:54:26 ----SHD---- C:\System Volume Information
2019-07-10 11:52:56 ----D---- C:\Down
2019-07-10 11:43:01 ----SHD---- C:\Windows\Installer
2019-07-10 08:38:37 ----D---- C:\ProgramData\Adobe
2019-07-10 08:33:04 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2019-07-10 08:27:19 ----D---- C:\Windows\system32\catroot2
2019-07-10 08:26:25 ----D---- C:\Windows\system32\MRT
2019-07-10 08:18:11 ----D---- C:\Users\VacKor\AppData\Roaming\Adobe
2019-07-10 08:11:40 ----AC---- C:\Windows\system32\MRT.exe
2019-07-09 22:09:46 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2019-07-09 22:09:39 ----D---- C:\Windows\system32\Macromed
2019-07-09 22:09:33 ----D---- C:\Windows\SYSWOW64\Macromed
2019-06-30 07:34:58 ----D---- C:\Windows\system32\NDF
2019-06-28 13:32:44 ----D---- C:\Windows\system32\Tasks
2019-06-13 18:22:45 ----D---- C:\Windows\rescache
2019-06-11 21:53:49 ----D---- C:\Windows\debug
2019-06-11 20:29:11 ----D---- C:\Program Files (x86)\Mozilla Firefox

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsh.sys [2019-05-26 205848]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniv.sys [2019-05-26 61472]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2019-05-26 87944]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2019-05-30 385880]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-08-24 16440]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2009-08-04 13440]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2009-07-06 13368]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2019-05-26 207448]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriver.sys [2019-05-26 262496]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2019-05-26 42288]
R1 aswNetSec;aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [2019-05-26 549200]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2019-05-26 112312]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2019-05-26 1030784]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2019-05-26 477584]
R1 RrNetCapFilterDriver;RadioRip Filter Driver; C:\Windows\system32\DRIVERS\RrNetCapFilterDriver.sys [2013-12-18 24744]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2019-06-20 168104]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2019-06-17 225600]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-02-16 11922944]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-02-16 359936]
R3 aswNetNd6;Avast Firewall NDIS6 Helper; C:\Windows\system32\DRIVERS\aswNetNd6.sys [2017-07-01 38152]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-01-28 116736]
R3 dc3d;MS Hardware Device Detection Driver (USB); C:\Windows\system32\DRIVERS\dc3d.sys [2011-04-13 52640]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 15416]
R3 NuidFltr;NUID filter driver; C:\Windows\system32\DRIVERS\NuidFltr.sys [2011-04-13 23968]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-04-27 83080]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2014-02-18 181760]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-02-16 888536]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2010-05-15 1327520]
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2014-02-19 21712]
S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 Ser2pl;Prolific Serial port WDF driver; C:\Windows\system32\DRIVERS\ser2pl64.sys [2012-07-30 158720]
S3 tbhsd;Audials Sound Capturing; C:\Windows\system32\drivers\tbhsd.sys [2013-12-18 47240]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2015-04-30 23200]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-12-16 83984]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-02-16 238080]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2019-05-26 409224]
R2 avast! Firewall;Avast Firewall Service; C:\Program Files\AVAST Software\Avast\afwServ.exe [2019-05-26 416512]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2018-03-26 128584]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2014-02-13 27768]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 2292096]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2019-05-29 6844776]
S2 avast;Služba %1!s! Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-06-01 164984]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2019-07-09 335416]
S3 avastm;Služba %1!s! Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-06-01 164984]
S3 AvastSecureBrowserElevationService;Avast Secure Browser Elevation Service; C:\Program Files (x86)\AVAST Software\Browser\Application\75.0.1447.80\elevation_service.exe [2019-06-12 978720]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\75.0.3770.100\elevation_service.exe [2019-06-18 1098224]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2019-06-18 116224]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2019-02-01 6562472]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2019-03-24 238544]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-05-16 271920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-07-10 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-03-26 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]

-----------------EOF-----------------
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivní kontrola

#2 Příspěvek od Conder »

Ahoj :)

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
  • Nechaj zaskrtnute vsetky nalezy
  • Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
pokerkan
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 17 srp 2010 17:54

Re: Preventivní kontrola

#3 Příspěvek od pokerkan »

# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-06-28.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-11-2019
# Duration: 00:00:14
# OS: Windows 7 Home Premium
# Cleaned: 27
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files (x86)\IOBIT\Driver Booster
Deleted C:\ProgramData\IOBIT\Driver Booster
Deleted C:\ProgramData\IObit\Advanced SystemCare V7
Deleted C:\Users\VacKor\AppData\LocalLow\IObit\Advanced SystemCare V7
Deleted C:\Users\VacKor\AppData\Local\Seznam.cz
Deleted C:\Users\VacKor\AppData\Roaming\IOBIT\Driver Booster
Deleted C:\Users\VacKor\AppData\Roaming\IObit\Advanced SystemCare V7
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare V7

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Seznam.cz
Deleted HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted HKLM\SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted HKLM\Software\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted HKLM\Software\Classes\TypeLib\{60AD0991-ECD4-49DC-B170-8B7E7C60F51B}
Deleted HKLM\Software\Wow6432Node\IObit\Advanced SystemCare 7
Deleted HKLM\Software\Wow6432Node\IObit\RealTimeProtector
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{60AD0991-ECD4-49DC-B170-8B7E7C60F51B}

***** [ Chromium (and derivatives) ] *****

Deleted Amazon Shopping Assistant by Spigot
Deleted Amazon Shopping Assistant by Spigot
Deleted Domain Error Assistant
Deleted Ebay Shopping Assistant by Spigot
Deleted Slick Savings
Deleted Slick Savings
Deleted Slick Savings
Deleted bbmegnmpleoagolcnjnejdacakedpcgd
Deleted gkcefkcdkepgkpbgncjchhbjgoanleod
Deleted nfengeggddojhakldhlpjdlddgkkjkdd

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [3361 octets] - [11/07/2019 06:16:22]
AdwCleaner[S01].txt - [3422 octets] - [11/07/2019 06:31:52]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivní kontrola

#4 Příspěvek od Conder »

:arrow: Poprosim o obidva logy z FRST (FRST.txt a Addition.txt) podla tohto navodu: https://forum.viry.cz/viewtopic.php?f=13&t=154679
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
pokerkan
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 17 srp 2010 17:54

Re: Preventivní kontrola

#5 Příspěvek od pokerkan »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10-07-2019
Ran by VacKor (administrator) on TEST-PC (11-07-2019 18:58:30)
Running from C:\Users\VacKor\Desktop
Loaded Profiles: VacKor (Available Profiles: VacKor)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft IntelliType Pro\itype.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(VIA Technologies Inc. -> VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [itype] => c:\Program Files\Microsoft IntelliType Pro\itype.exe [1860496 2011-04-13] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [262024 2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-02-10] (Advanced Micro Devices, Inc.) [File not signed]
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [HDAudDeck] => c:\program files (x86)\via\viaudioi\vdeck\vdeck.exe [2441840 2010-06-25] (VIA Technologies Inc. -> VIA)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [11264 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [VIDC.WMV3] => C:\Windows\SysWOW64\wmv9vcm.dll [1415680 2003-06-23] (Microsoft Corporation) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\75.0.3770.100\Installer\chrmstp.exe [2019-06-18] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\75.0.1447.80\Installer\chrmstp.exe [2019-06-28] (AVAST Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2019-05-03] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0BF9536F-FCB7-4BBA-81F4-E0ABF94002D9} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-4161623063-1077891321-1027309549-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [141312 2014-06-10] (RealNetworks, Inc.) [File not signed]
Task: {0EA4BB5C-7A10-415B-A11B-A0159BB399EA} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1815792 2019-06-12] (AVAST Software s.r.o. -> AVAST Software)
Task: {1175ABA1-431B-44F7-8226-7FB450034760} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {1987397F-D99C-4391-B71B-DEE4D70FB7B8} - System32\Tasks\{13B6E6DE-E632-498A-91B6-FD3910BB786D} => D:\Instal\Grafika\Xara_CZ\SETUP.EXE [24048 1996-05-27] () [File not signed]
Task: {23E7D025-A300-400F-9557-FE7E076DF9A4} - System32\Tasks\Microsoft_Hardware_Launch_IType_exe => c:\Program Files\Microsoft IntelliType Pro\IType.exe [1860496 2011-04-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {27BC11E8-0D7D-47F4-B528-306B81D653BF} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-4161623063-1077891321-1027309549-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
Task: {284C0BFE-5571-4A8B-B0EC-BEB5AD99ED8D} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-4161623063-1077891321-1027309549-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [141312 2014-06-10] (RealNetworks, Inc.) [File not signed]
Task: {2A9F9C66-4761-4014-B807-5E2A6BF164CD} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-4161623063-1077891321-1027309549-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {2D24DED0-F237-4D20-8A59-D143E0310FC7} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2281944 2019-06-04] (AVAST Software s.r.o. -> AVAST Software)
Task: {538DC8F0-0795-46E8-8514-F40EEB4066F8} - System32\Tasks\{B1BFE420-799F-410C-AE90-651B2BD74357} => D:\Instal\Grafika\Xara_CZ\SETUP.EXE [24048 1996-05-27] () [File not signed]
Task: {5515036E-5972-4EAF-9790-BD4E7E825625} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-4161623063-1077891321-1027309549-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {678B489D-D007-40DA-B3F3-B6063F2E480A} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-4161623063-1077891321-1027309549-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [141312 2014-06-10] (RealNetworks, Inc.) [File not signed]
Task: {6FA9E6E2-4DB5-41C0-931B-4279C29A7A2D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2934152 2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
Task: {81504BE2-AB84-4668-AAF8-A29A210A2E46} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {86AB3B5E-6F9C-4A70-AADE-DEB66D9E20DF} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {966B6FA4-34B3-4A9D-BC67-0092A3C35D28} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1815792 2019-06-12] (AVAST Software s.r.o. -> AVAST Software)
Task: {9B0C6C27-081B-468D-B658-FCAEE2EDE571} - System32\Tasks\{044FD781-8E2C-4902-B1C8-B523978A5F68} => D:\Instal\Grafika\Xara_CZ\SETUP.EXE [24048 1996-05-27] () [File not signed]
Task: {A7AE7889-E5A1-47E9-825A-B2E6DB049195} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {AF28B46E-B404-4292-8B64-0E329670672A} - System32\Tasks\{584255F4-7283-4EED-921A-A42E49E2D7E2} => C:\Windows\system32\pcalua.exe -a E:\Install\USB-Driver\Setup.exe -d E:\Install\USB-Driver
Task: {B0DB04D2-2687-4D2F-AEC7-9F7BB57146C1} - System32\Tasks\{E16B73D8-F885-4030-A473-E1CA82379656} => D:\Instal\Grafika\Xara_CZ\SETUP.EXE [24048 1996-05-27] () [File not signed]
Task: {B307DFC5-6DAA-4263-9BB8-E23BCB916E60} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-07-09] (Adobe Inc. -> Adobe)
Task: {D5CEFF5C-0D05-47FF-A4D4-88F94548B57A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {DB7281FC-821A-4065-9278-7B4FDA65500F} - System32\Tasks\ASUS\ASUS Update Checker => C:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe [121472 2009-12-28] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {E007E496-1AE5-43CB-97FE-D0D69A8C1D5A} - System32\Tasks\{435A3B21-6B52-4BDF-9C66-EB939FF57B65} => C:\Program Files (x86)\Skype\\Phone\Skype.exe
Task: {E387CE84-1CDC-44A8-8CF0-E3FF7271FBD8} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_Plugin.exe [1457208 2019-07-09] (Adobe Inc. -> Adobe)
Task: {E9742AB6-B68A-4965-A643-D76060DFCF9C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16664352 2019-06-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {EF08015F-F5DA-4509-8A94-7CA3BA915324} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-06-01] (AVAST Software s.r.o. -> AVAST Software)
Task: {F557A9D2-F6ED-4961-B310-C0E0C473A0B2} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-4161623063-1077891321-1027309549-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [141312 2014-06-10] (RealNetworks, Inc.) [File not signed]
Task: {F7BE1C2F-B500-442C-A14C-FC427B8180DB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-06-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {FC48B1AD-80F8-4160-B812-774FE0565264} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-06-01] (AVAST Software s.r.o. -> AVAST Software)
Task: {FCC6383E-469F-43AB-903B-69CC644C1566} - System32\Tasks\{4A41EADC-F795-48D4-9DF9-FA599CC3B063} => C:\Windows\system32\pcalua.exe -a D:\Instal\EAC\eac-0.95b4.exe -d D:\Instal\EAC

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{E79E767F-937C-4159-B204-DCCCD2F0BDAF}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/?clid=22668
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/?clid=22668
SearchScopes: HKLM-x32 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-11-03] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-03] (Oracle America, Inc. -> Oracle Corporation)
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File

FireFox:
========
FF ProfilePath: C:\Users\VacKor\AppData\Roaming\Mozilla\Firefox\Profiles\sh9hc1df.default-1423319141345 [2019-05-26]
FF Homepage: Mozilla\Firefox\Profiles\sh9hc1df.default-1423319141345 -> hxxps://www.seznam.cz/?clid=22668
FF NewTab: Mozilla\Firefox\Profiles\sh9hc1df.default-1423319141345 -> about:newtab
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\VacKor\AppData\Roaming\Mozilla\Firefox\Profiles\sh9hc1df.default-1423319141345\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2019-03-24]
FF Extension: (Avast Passwords) - C:\Users\VacKor\AppData\Roaming\Mozilla\Firefox\Profiles\sh9hc1df.default-1423319141345\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2019-05-13] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\VacKor\AppData\Roaming\Mozilla\Firefox\Profiles\sh9hc1df.default-1423319141345\Extensions\langpack-cs@firefox.mozilla.org.xpi [2019-05-13]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\VacKor\AppData\Roaming\Mozilla\Firefox\Profiles\sh9hc1df.default-1423319141345\Extensions\sp@avast.com.xpi [2019-04-01]
FF Extension: (Avast Online Security) - C:\Users\VacKor\AppData\Roaming\Mozilla\Firefox\Profiles\sh9hc1df.default-1423319141345\Extensions\wrc@avast.com.xpi [2018-06-22]
FF SearchPlugin: C:\Users\VacKor\AppData\Roaming\Mozilla\Firefox\Profiles\sh9hc1df.default-1423319141345\searchplugins\seznam-avast.xml [2016-10-19]
FF Extension: (Skype Click to Call) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2017-08-26] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => not found
FF HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: (Download videos and MP3s from YouTube) - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-02-09] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_223.dll [2019-07-09] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_223.dll [2019-07-09] (Adobe Inc. -> )
FF Plugin-x32: @hypercosm.com/HypercosmPlayer -> C:\Program Files (x86)\Hypercosm\Hypercosm Player\components\nphypercosm.dll [2011-02-11] (Hypercosm LLC -> Hypercosm LLC) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-11-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-11-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "www.google.com"
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\VacKor\AppData\Local\Google\Chrome\User Data\Default [2019-07-11]
CHR Extension: (Disk Google) - C:\Users\VacKor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\VacKor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-13]
CHR Extension: (Vyhledávání Google) - C:\Users\VacKor\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\VacKor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-16]
CHR Extension: (AdBlock) - C:\Users\VacKor\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-07-10]
CHR Extension: (Avast Online Security) - C:\Users\VacKor\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-07-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\VacKor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Gmail) - C:\Users\VacKor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\VacKor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-07]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [238080 2014-02-16] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6844776 2019-05-29] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-06-01] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [409224 2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [416512 2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-06-01] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\75.0.1447.80\elevation_service.exe [978720 2019-06-12] (AVAST Software s.r.o. -> AVAST Software)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-05-16] (Nero AG -> Nero AG)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2014-02-13] (VIA Technologies Inc. -> VIA Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [11922944 2014-02-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [359936 2014-02-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] (ASUSTeK Computer Inc. -> )
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-06] (ASUSTeK Computer Inc. -> )
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [207448 2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [262496 2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [205848 2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [61472 2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42288 2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [168104 2019-06-20] (AVAST Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2017-07-01] (AVAST Software s.r.o. -> AVAST Software)
R1 aswNetSec; C:\Windows\System32\drivers\aswNetSec.sys [549200 2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [112312 2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [87944 2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1030784 2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [477584 2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [225600 2019-06-17] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [385880 2019-05-30] (AVAST Software s.r.o. -> AVAST Software)
R3 AtiHdmiService; C:\Windows\System32\drivers\AtiHdmi.sys [116736 2010-01-28] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies, Inc.)
R0 AtiPcie; C:\Windows\System32\DRIVERS\AtiPcie.sys [16440 2009-08-24] (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] (ASUSTeK Computer Inc. -> )
R3 nusb3xhc; C:\Windows\System32\DRIVERS\nusb3xhc.sys [181760 2014-02-18] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19032 2012-06-18] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12384 2012-06-18] (MiniTool Solution Ltd -> )
R1 RrNetCapFilterDriver; C:\Windows\System32\DRIVERS\RrNetCapFilterDriver.sys [24744 2013-12-18] (Audials AG -> Audials AG)
S3 Ser2pl; C:\Windows\System32\DRIVERS\ser2pl64.sys [158720 2012-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1327520 2010-05-15] (VIA Technologies Inc. -> VIA Technologies, Inc.)
S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64.sys [23200 2015-04-30] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-11 18:54 - 2019-07-11 18:54 - 000000000 ____D C:\Users\VacKor\Desktop\FRST-OlderVersion
2019-07-11 18:36 - 2019-07-11 18:36 - 000000000 ____D C:\Users\VacKor\AppData\Local\{52FA352A-F5AC-457E-9AD4-D87A71F35471}
2019-07-11 06:12 - 2019-07-11 06:12 - 000000000 ____D C:\Users\VacKor\AppData\Local\{2955F9B6-DF7C-4F27-8D60-BDCE8AEDFBC1}
2019-07-10 17:22 - 2019-07-10 17:23 - 000000000 ____D C:\Users\VacKor\AppData\Local\{71DB26F5-8B3E-4223-9615-7DF25B3F02CA}
2019-07-10 13:02 - 2019-07-10 13:02 - 000025188 _____ C:\Users\VacKor\Desktop\Add_Frst.zip
2019-07-10 12:41 - 2019-07-10 12:41 - 000000000 ____D C:\rsit
2019-07-10 12:41 - 2019-07-10 12:41 - 000000000 ____D C:\Program Files\trend micro
2019-07-10 12:35 - 2019-07-10 12:39 - 000041935 _____ C:\Users\VacKor\Desktop\Addition.txt
2019-07-10 12:30 - 2019-07-11 19:01 - 000029043 _____ C:\Users\VacKor\Desktop\FRST.txt
2019-07-10 12:30 - 2019-07-11 18:58 - 000000000 ____D C:\FRST
2019-07-10 11:52 - 2019-07-10 11:52 - 001222144 _____ C:\Users\VacKor\Desktop\RSITx64.exe
2019-07-10 11:46 - 2019-07-11 18:54 - 002095104 _____ (Farbar) C:\Users\VacKor\Desktop\FRST64.exe
2019-07-10 08:14 - 2019-06-21 05:05 - 000628224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2019-07-10 08:14 - 2019-06-19 05:06 - 006135296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2019-07-10 08:14 - 2019-06-12 17:21 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2019-07-10 08:13 - 2019-06-28 07:23 - 000428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2019-07-10 08:13 - 2019-06-28 07:23 - 000392704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlansec.dll
2019-07-10 08:13 - 2019-06-28 07:23 - 000083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2019-07-10 08:13 - 2019-06-28 07:23 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2019-07-10 08:13 - 2019-06-21 03:41 - 001251840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2019-07-10 08:13 - 2019-06-20 10:15 - 000348976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-07-10 08:13 - 2019-06-18 05:56 - 020274688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-07-10 08:13 - 2019-06-18 05:51 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2019-07-10 08:13 - 2019-06-18 05:39 - 000496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-07-10 08:13 - 2019-06-18 05:39 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2019-07-10 08:13 - 2019-06-18 05:38 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2019-07-10 08:13 - 2019-06-18 05:38 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2019-07-10 08:13 - 2019-06-18 05:37 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2019-07-10 08:13 - 2019-06-18 05:35 - 002297344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-07-10 08:13 - 2019-06-18 05:32 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-07-10 08:13 - 2019-06-18 05:32 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2019-07-10 08:13 - 2019-06-18 05:30 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-07-10 08:13 - 2019-06-18 05:29 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-07-10 08:13 - 2019-06-18 05:29 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-07-10 08:13 - 2019-06-18 05:29 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2019-07-10 08:13 - 2019-06-18 05:21 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2019-07-10 08:13 - 2019-06-18 05:16 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2019-07-10 08:13 - 2019-06-18 05:16 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2019-07-10 08:13 - 2019-06-18 05:16 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-07-10 08:13 - 2019-06-18 05:13 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2019-07-10 08:13 - 2019-06-18 05:13 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-07-10 08:13 - 2019-06-18 05:11 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-07-10 08:13 - 2019-06-18 05:10 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2019-07-10 08:13 - 2019-06-18 05:07 - 004494336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-07-10 08:13 - 2019-06-18 05:04 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-07-10 08:13 - 2019-06-18 05:03 - 013706752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-07-10 08:13 - 2019-06-18 05:03 - 002060288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-07-10 08:13 - 2019-06-18 05:03 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-07-10 08:13 - 2019-06-18 05:02 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2019-07-10 08:13 - 2019-06-18 04:44 - 004386304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-07-10 08:13 - 2019-06-18 04:41 - 001323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-07-10 08:13 - 2019-06-18 04:39 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-07-10 08:13 - 2019-06-12 17:23 - 004057320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2019-07-10 08:13 - 2019-06-12 17:23 - 003964136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2019-07-10 08:13 - 2019-06-12 17:22 - 001314104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-07-10 08:13 - 2019-06-12 17:21 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2019-07-10 08:13 - 2019-06-12 17:21 - 011411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2019-07-10 08:13 - 2019-06-12 17:21 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-07-10 08:13 - 2019-06-12 17:21 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-07-10 08:13 - 2019-06-12 17:21 - 000617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2019-07-10 08:13 - 2019-06-12 17:21 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-07-10 08:13 - 2019-06-12 17:21 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2019-07-10 08:13 - 2019-06-12 17:21 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-07-10 08:13 - 2019-06-12 17:21 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2019-07-10 08:13 - 2019-06-12 17:21 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 003207168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 001329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssign32.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-07-10 08:13 - 2019-06-12 17:20 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 001177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 001005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 17:06 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2019-07-10 08:13 - 2019-06-12 17:06 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2019-07-10 08:13 - 2019-06-12 17:06 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2019-07-10 08:13 - 2019-06-12 17:05 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2019-07-10 08:13 - 2019-06-12 17:04 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2019-07-10 08:13 - 2019-06-12 16:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2019-07-10 08:13 - 2019-06-12 16:54 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2019-07-10 08:13 - 2019-06-12 16:49 - 000205312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Dism.exe
2019-07-10 08:13 - 2019-06-12 16:48 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2019-07-10 08:13 - 2019-06-12 16:48 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2019-07-10 08:13 - 2019-06-12 16:48 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2019-07-10 08:13 - 2019-06-12 16:48 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2019-07-10 08:13 - 2019-06-12 16:47 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2019-07-10 08:13 - 2019-06-12 16:46 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 16:46 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 16:46 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-07-10 08:13 - 2019-06-12 16:46 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-07-10 08:13 - 2019-06-07 17:18 - 001425920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2019-07-10 08:13 - 2019-06-07 17:18 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2019-07-10 08:13 - 2019-06-07 16:55 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2019-07-10 08:10 - 2019-06-28 07:24 - 000887808 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2019-07-10 08:10 - 2019-06-28 07:24 - 000448512 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2019-07-10 08:10 - 2019-06-28 07:24 - 000414208 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2019-07-10 08:10 - 2019-06-28 07:24 - 000118784 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2019-07-10 08:10 - 2019-06-28 07:24 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2019-07-10 08:10 - 2019-06-21 05:09 - 000806400 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2019-07-10 08:10 - 2019-06-21 04:44 - 003229696 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-07-10 08:10 - 2019-06-19 03:52 - 007081984 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-07-10 08:10 - 2019-06-18 06:07 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-07-10 08:10 - 2019-06-18 05:59 - 005775872 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-07-10 08:10 - 2019-06-18 05:56 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-07-10 08:10 - 2019-06-18 05:55 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-07-10 08:10 - 2019-06-18 05:48 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-07-10 08:10 - 2019-06-12 17:08 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-07-10 08:10 - 2019-06-12 17:08 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-07-10 08:10 - 2019-06-12 17:08 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2019-07-10 08:10 - 2019-06-12 17:08 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-07-10 08:10 - 2019-06-12 17:08 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2019-07-10 08:10 - 2019-06-12 17:08 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-07-10 08:10 - 2019-06-12 17:08 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-07-10 08:10 - 2019-06-12 17:08 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-07-10 08:10 - 2019-06-12 17:08 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-07-10 08:10 - 2019-06-12 17:08 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2019-07-10 08:10 - 2019-06-12 17:08 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-07-10 08:10 - 2019-06-12 17:07 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-07-10 08:10 - 2019-06-12 17:07 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-07-10 08:10 - 2019-06-12 17:07 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-07-10 08:10 - 2019-06-12 17:07 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-07-10 08:10 - 2019-06-12 17:07 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-07-10 08:10 - 2019-06-12 17:07 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-07-10 08:10 - 2019-06-12 17:07 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2019-07-10 08:10 - 2019-06-12 17:06 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-07-10 08:10 - 2019-06-12 17:01 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2019-07-10 08:10 - 2019-06-12 16:39 - 000129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-07-10 08:10 - 2019-06-12 16:38 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-07-10 08:10 - 2019-06-12 16:36 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-07-10 08:10 - 2019-06-12 16:36 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-07-10 08:10 - 2019-06-12 16:36 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-07-10 08:10 - 2019-06-12 16:36 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-07-10 08:10 - 2019-06-12 16:36 - 000160768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-07-10 08:10 - 2019-06-12 16:36 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-07-10 08:10 - 2019-06-12 16:35 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-07-10 08:09 - 2019-06-18 05:57 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-07-10 08:09 - 2019-06-18 05:19 - 015311872 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-07-10 08:09 - 2019-06-12 17:11 - 000153832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-07-10 08:09 - 2019-06-12 17:11 - 000094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2019-07-10 08:09 - 2019-06-12 17:10 - 005550824 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-07-10 08:09 - 2019-06-12 17:10 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-07-10 08:09 - 2019-06-12 17:09 - 001664352 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-07-10 08:09 - 2019-06-12 17:08 - 014637568 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2019-07-10 08:09 - 2019-06-12 17:08 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2019-07-10 08:09 - 2019-06-12 17:08 - 000782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2019-07-10 08:09 - 2019-06-12 17:08 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-07-10 08:09 - 2019-06-12 17:08 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-07-10 08:09 - 2019-06-12 17:08 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2019-07-10 08:09 - 2019-06-12 17:08 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2019-07-10 08:09 - 2019-06-12 17:07 - 004120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2019-07-10 08:09 - 2019-06-12 17:07 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-07-10 08:09 - 2019-06-12 17:07 - 001202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2019-07-10 08:09 - 2019-06-12 17:07 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-07-10 08:09 - 2019-06-12 17:07 - 000641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2019-07-10 08:09 - 2019-06-12 17:07 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2019-07-10 08:09 - 2019-06-12 17:07 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2019-07-10 08:09 - 2019-06-12 17:07 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-07-10 08:09 - 2019-06-12 17:07 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2019-07-10 08:09 - 2019-06-12 17:07 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-07-10 08:09 - 2019-06-12 17:07 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2019-07-10 08:09 - 2019-06-12 17:07 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-07-10 08:09 - 2019-06-12 17:07 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll
2019-07-10 08:09 - 2019-06-12 17:07 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-07-10 08:09 - 2019-06-12 17:07 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-07-10 08:09 - 2019-06-12 17:07 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2019-07-10 08:09 - 2019-06-12 17:07 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2019-07-10 08:09 - 2019-06-12 17:07 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 17:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-07-10 08:09 - 2019-06-12 16:50 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2019-07-10 08:09 - 2019-06-12 16:49 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2019-07-10 08:09 - 2019-06-12 16:42 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-07-10 08:09 - 2019-06-12 16:35 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-07-10 08:09 - 2019-06-12 16:35 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-07-10 08:08 - 2019-06-20 11:11 - 000396896 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-07-10 08:08 - 2019-06-18 06:34 - 025730560 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-07-10 08:08 - 2019-06-18 06:21 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-07-10 08:08 - 2019-06-18 06:21 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-07-10 08:08 - 2019-06-18 06:09 - 002903552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-07-10 08:08 - 2019-06-18 06:08 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-07-10 08:08 - 2019-06-18 06:07 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-07-10 08:08 - 2019-06-18 06:07 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-07-10 08:08 - 2019-06-18 06:07 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-07-10 08:08 - 2019-06-18 05:59 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-07-10 08:08 - 2019-06-18 05:56 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-07-10 08:08 - 2019-06-18 05:56 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-07-10 08:08 - 2019-06-18 05:45 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-07-10 08:08 - 2019-06-18 05:38 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-07-10 08:08 - 2019-06-18 05:38 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-07-10 08:08 - 2019-06-18 05:35 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-07-10 08:08 - 2019-06-18 05:34 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-07-10 08:08 - 2019-06-18 05:32 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-07-10 08:08 - 2019-06-18 05:30 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-07-10 08:08 - 2019-06-18 05:21 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-07-10 08:08 - 2019-06-18 05:20 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-07-10 08:08 - 2019-06-18 05:20 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-07-10 08:08 - 2019-06-18 05:17 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-07-10 08:08 - 2019-06-18 04:43 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-07-10 08:07 - 2019-06-18 08:41 - 001649664 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2019-07-10 08:07 - 2019-06-18 06:00 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-07-10 08:07 - 2019-06-18 05:39 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-07-10 08:07 - 2019-06-18 05:17 - 002136064 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-07-10 08:07 - 2019-06-18 05:06 - 004858880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-07-10 08:07 - 2019-06-18 04:55 - 001557504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-07-10 08:07 - 2019-06-13 05:25 - 000160488 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-07-10 08:07 - 2019-06-13 05:21 - 000732160 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2019-07-10 08:07 - 2019-06-12 17:15 - 000631680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-07-10 08:07 - 2019-06-12 17:11 - 000708328 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-07-10 08:07 - 2019-06-12 17:11 - 000262376 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-07-10 08:07 - 2019-06-12 17:07 - 001574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2019-07-10 08:07 - 2019-06-12 17:07 - 001484800 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2019-07-10 08:07 - 2019-06-12 17:07 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2019-07-10 08:07 - 2019-06-12 17:07 - 000632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2019-07-10 08:07 - 2019-06-12 17:07 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2019-07-10 08:07 - 2019-06-12 17:07 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2019-07-10 08:07 - 2019-06-12 17:07 - 000371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2019-07-10 08:07 - 2019-06-12 17:07 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2019-07-10 08:07 - 2019-06-12 17:07 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2019-07-10 08:07 - 2019-06-12 17:07 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2019-07-10 08:07 - 2019-06-12 17:07 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2019-07-10 08:07 - 2019-06-12 17:07 - 000081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2019-07-10 08:07 - 2019-06-12 17:07 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-07-10 08:07 - 2019-06-12 17:07 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-07-10 08:07 - 2019-06-12 17:07 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-07-10 08:07 - 2019-06-12 17:07 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2019-07-10 08:07 - 2019-06-12 17:07 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2019-07-10 08:07 - 2019-06-12 17:06 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-07-10 08:07 - 2019-06-12 17:06 - 000680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2019-07-10 08:07 - 2019-06-12 17:06 - 000438784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2019-07-10 08:07 - 2019-06-12 17:06 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2019-07-10 08:07 - 2019-06-12 17:06 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-07-10 08:07 - 2019-06-12 17:06 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-07-10 08:07 - 2019-06-12 17:06 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-07-10 08:07 - 2019-06-12 16:49 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2019-07-10 08:07 - 2019-06-12 16:42 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-07-10 08:07 - 2019-06-12 16:42 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-07-10 08:07 - 2019-06-12 16:42 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-07-10 08:07 - 2019-06-12 16:39 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-07-10 08:07 - 2019-06-12 16:37 - 000274944 _____ (Microsoft Corporation) C:\Windows\system32\Dism.exe
2019-07-10 08:07 - 2019-06-12 16:37 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2019-07-10 08:07 - 2019-06-12 16:37 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2019-07-10 08:07 - 2019-06-11 04:59 - 002863104 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2019-07-10 08:07 - 2019-06-11 04:59 - 001712640 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-07-10 08:07 - 2019-06-11 04:59 - 000801792 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2019-07-10 08:07 - 2019-06-11 04:59 - 000634368 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2019-07-10 08:07 - 2019-06-11 04:59 - 000501760 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2019-07-10 08:07 - 2019-06-11 04:59 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-07-10 08:07 - 2019-06-11 04:59 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-07-10 08:07 - 2019-06-11 04:59 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2019-07-10 08:07 - 2019-06-07 17:08 - 002072576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-07-10 08:07 - 2019-06-07 17:08 - 000516096 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-07-10 08:07 - 2019-06-07 17:08 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2019-07-10 08:07 - 2019-06-07 17:07 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2019-07-10 08:06 - 2019-06-12 16:35 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-07-10 08:06 - 2019-06-12 16:35 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-07-10 08:06 - 2019-06-12 16:35 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-07-10 08:06 - 2019-06-12 16:35 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-07-09 21:59 - 2019-07-09 21:59 - 000000000 ____D C:\Users\VacKor\AppData\Local\{B0A7F836-93D7-4CF5-9F21-82CDC26A1CB3}
2019-07-04 19:24 - 2019-07-04 19:24 - 000002309 _____ C:\Users\VacKor\AppData\Local\recently-used.xbel
2019-07-04 17:01 - 2019-07-04 17:01 - 000000000 ____D C:\Users\VacKor\AppData\Local\{674F3D6A-A77D-4689-B2BA-2A1C5DD4BFCD}
2019-07-03 20:42 - 2019-07-03 20:42 - 000000000 ____D C:\Users\VacKor\AppData\Roaming\Google
2019-07-03 17:59 - 2019-07-03 17:59 - 000000000 ____D C:\Users\VacKor\AppData\Local\{4B217076-4F6B-4D4C-A64E-F813A0BB320A}
2019-07-02 17:50 - 2019-07-02 17:50 - 000000000 ____D C:\Users\VacKor\AppData\Local\{970512BE-9B44-4EBB-ACB1-E4195D60698A}
2019-07-01 18:08 - 2019-07-01 18:08 - 000000000 ____D C:\Users\VacKor\AppData\Local\{152E94A1-6353-4809-8B9D-D62035D9B90E}
2019-06-30 21:03 - 2019-06-30 21:03 - 000000000 ____D C:\Users\VacKor\AppData\Local\{F9BCD306-44C9-4C34-AD18-3633157F5F14}
2019-06-30 09:03 - 2019-06-30 09:03 - 000000000 ____D C:\Users\VacKor\AppData\Local\{8D811833-DDCC-48F7-A578-2AEBF11B3574}
2019-06-29 19:51 - 2019-06-29 19:51 - 000000000 ____D C:\Users\VacKor\AppData\Local\{76807D2A-439E-4078-91FD-6FD960125673}
2019-06-29 07:51 - 2019-06-29 07:51 - 000000000 ____D C:\Users\VacKor\AppData\Local\{FF22F749-DF29-48AD-A25E-4BD4F8473BCD}
2019-06-28 19:51 - 2019-06-28 19:51 - 000000000 ____D C:\Users\VacKor\AppData\Local\{5E8968C8-B51D-4D9C-87AE-42193C8AACD5}
2019-06-28 07:34 - 2019-06-28 07:34 - 000000000 ____D C:\Users\VacKor\AppData\Local\{AF7927A5-B2E9-49DF-95AD-9F5E214059ED}
2019-06-27 16:35 - 2019-06-27 16:35 - 000000000 ____D C:\Users\VacKor\AppData\Local\{CC2DDEF9-8B83-4566-9922-3E21E9878A1B}
2019-06-26 16:16 - 2019-06-26 16:16 - 000000000 ____D C:\Users\VacKor\AppData\Local\{D970CB05-6686-41A3-98EF-A87CF40822A2}
2019-06-25 18:04 - 2019-06-25 18:04 - 000000000 ____D C:\Users\VacKor\AppData\Local\{CDA9D3E6-B427-48B8-A2FF-128B121471A0}
2019-06-24 18:28 - 2019-06-24 18:28 - 000000000 ____D C:\Users\VacKor\AppData\Local\{CD0A979B-5D8E-4E5C-88AA-EE150119E6C7}
2019-06-23 19:43 - 2019-06-23 19:43 - 000000000 ____D C:\Users\VacKor\AppData\Local\{2B2A6B3D-3B68-416D-A4C3-FCD009C4F86D}
2019-06-23 07:43 - 2019-06-23 07:43 - 000000000 ____D C:\Users\VacKor\AppData\Local\{1D73F635-66D6-4330-9D6A-02579669A331}
2019-06-22 19:43 - 2019-06-22 19:43 - 000000000 ____D C:\Users\VacKor\AppData\Local\{F05852B7-E936-4B40-A54A-B3A9B0632D41}
2019-06-22 11:39 - 2019-06-22 11:39 - 006906696 _____ C:\Users\VacKor\Downloads\metodika_vysadby.pdf
2019-06-22 07:43 - 2019-06-22 07:43 - 000000000 ____D C:\Users\VacKor\AppData\Local\{6B318DE1-BA50-4417-A1BD-9535AC3873D8}
2019-06-21 19:42 - 2019-06-21 19:42 - 000000000 ____D C:\Users\VacKor\AppData\Local\{D4FD79D4-6562-452C-BBEB-524E5A370F2D}
2019-06-21 07:28 - 2019-06-21 07:28 - 000000000 ____D C:\Users\VacKor\AppData\Local\{C9956879-57B4-4000-BFCD-2D10F9407CDF}
2019-06-20 19:27 - 2019-06-20 19:27 - 000000000 ____D C:\Users\VacKor\AppData\Local\{409DCB3C-5EA9-40B2-8F40-37D24D2433EA}
2019-06-20 07:27 - 2019-06-20 07:27 - 000000000 ____D C:\Users\VacKor\AppData\Local\{422BCF16-DB28-43FF-9DAC-E619245EDBAA}
2019-06-19 17:58 - 2019-06-19 17:58 - 000000000 ____D C:\Users\VacKor\AppData\Local\{EF6363C2-64E3-48F0-B1F9-07CC66A17349}
2019-06-18 17:50 - 2019-06-18 17:50 - 000000000 ____D C:\Users\VacKor\AppData\Local\{E66214F7-A458-4C2D-B32A-D7692BB7F051}
2019-06-17 17:51 - 2019-06-17 17:51 - 000000000 ____D C:\Users\VacKor\AppData\Local\{A2F45F15-EA42-449E-B55D-0FB700A14AF3}
2019-06-16 18:09 - 2019-06-16 18:09 - 000000000 ____D C:\Users\VacKor\AppData\Local\{A0EA18E4-96A3-4423-8D13-77AD160B0F8D}
2019-06-16 06:08 - 2019-06-16 06:08 - 000000000 ____D C:\Users\VacKor\AppData\Local\{F56D5FC7-5DFE-41A3-B5FB-FD01ACC08FE9}
2019-06-15 09:38 - 2019-06-15 09:38 - 000000000 ____D C:\Users\VacKor\AppData\Local\{421A4D80-8BF2-4F3C-AB38-24953378D381}
2019-06-14 20:37 - 2019-06-14 20:37 - 000000000 ____D C:\Users\VacKor\AppData\Local\{D3291A31-876A-4C1A-8F81-8296007B28CE}
2019-06-13 17:05 - 2019-06-13 17:05 - 000000000 ____D C:\Users\VacKor\AppData\Local\{8C1D7439-EC5C-4BCD-A2FE-44EDAC6B39F2}
2019-06-12 18:09 - 2019-06-12 18:09 - 000000000 ____D C:\Users\VacKor\AppData\Local\{7EB5E463-C135-4271-9FDB-DE403BD6DDD8}
2019-06-11 20:31 - 2019-06-11 20:31 - 000001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2019-06-11 20:02 - 2019-06-04 01:11 - 001110528 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2019-06-11 20:02 - 2019-06-04 01:11 - 000474112 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2019-06-11 20:02 - 2019-06-04 01:10 - 000304640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskcomp.dll
2019-06-11 20:02 - 2019-05-25 02:04 - 014185984 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2019-06-11 20:02 - 2019-05-25 02:03 - 001867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2019-06-11 20:02 - 2019-05-25 01:59 - 012880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2019-06-11 20:02 - 2019-05-25 01:58 - 001499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2019-06-11 20:02 - 2019-05-23 04:06 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-06-11 20:02 - 2019-05-23 04:06 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-06-11 20:02 - 2019-05-23 04:06 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2019-06-11 20:02 - 2019-05-23 03:58 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2019-06-11 20:02 - 2019-05-23 03:58 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-06-11 20:02 - 2019-05-23 02:05 - 001182208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2019-06-11 20:02 - 2019-05-17 20:21 - 000372456 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2019-06-11 20:02 - 2019-05-13 16:44 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-06-11 20:02 - 2019-05-13 16:44 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-06-11 20:02 - 2019-05-13 16:44 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2019-06-11 20:02 - 2019-05-13 16:44 - 000241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll
2019-06-11 20:02 - 2019-05-09 17:18 - 002368000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-06-11 20:02 - 2019-05-09 17:18 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2019-06-11 20:02 - 2019-05-09 17:18 - 000025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2019-06-11 20:02 - 2019-05-09 17:17 - 001806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2019-06-11 20:02 - 2019-05-09 17:17 - 000805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2019-06-11 20:02 - 2019-05-09 17:09 - 000114400 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2019-06-11 20:02 - 2019-05-09 17:07 - 003247616 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-06-11 20:02 - 2019-05-09 17:07 - 000504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2019-06-11 20:02 - 2019-05-09 17:07 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2019-06-11 20:02 - 2019-05-09 17:06 - 001942016 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2019-06-11 20:02 - 2019-05-09 17:06 - 001133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2019-06-11 20:02 - 2019-05-09 17:06 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2019-06-11 20:02 - 2019-05-09 16:51 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2019-06-11 20:02 - 2019-05-09 16:40 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2019-06-11 20:02 - 2019-04-30 04:07 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2019-06-11 20:02 - 2019-04-30 03:56 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2019-06-11 20:02 - 2019-04-25 17:18 - 000083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2019-06-11 20:02 - 2019-04-25 17:06 - 000110592 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2019-06-11 20:02 - 2019-04-24 17:11 - 001893096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-06-11 20:02 - 2019-04-24 17:09 - 000377064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2019-06-11 20:02 - 2019-04-24 17:09 - 000287976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2019-06-11 20:02 - 2019-04-12 15:05 - 000994384 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000064248 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000020944 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000019408 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000017656 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000017656 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000016120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000015608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000014288 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000014072 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000013560 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000012752 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000012536 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000012240 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000012024 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000012024 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000012024 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000012024 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000012024 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000011512 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000011512 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000011512 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:05 - 000011504 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000914584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000065784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000021752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000018680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000017352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000017144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000015608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000015096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000013560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000013560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000013048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000012024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000012024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000011728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000011000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000011000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000011000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2019-06-11 20:02 - 2019-04-12 15:04 - 000011000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2019-06-11 20:02 - 2019-04-09 17:17 - 000174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2019-06-11 20:02 - 2019-04-09 17:05 - 003165184 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2019-06-11 20:02 - 2019-04-09 17:05 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2019-06-11 20:02 - 2019-04-09 17:05 - 000192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2019-06-11 20:02 - 2019-04-09 17:05 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2019-06-11 20:02 - 2019-04-09 17:05 - 000093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2019-06-11 20:02 - 2019-04-09 17:05 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2019-06-11 20:02 - 2019-04-09 17:05 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2019-06-11 20:02 - 2019-04-09 17:03 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2019-06-11 20:02 - 2019-04-09 16:53 - 002651136 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2019-06-11 20:02 - 2019-04-09 16:52 - 000709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2019-06-11 20:02 - 2019-04-09 16:52 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2019-06-11 20:02 - 2019-04-09 16:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2019-06-11 20:02 - 2019-04-09 16:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2019-06-11 20:02 - 2019-04-09 16:52 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2019-06-11 20:02 - 2019-04-09 16:52 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2019-06-11 20:01 - 2019-05-23 03:58 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
2019-06-11 17:44 - 2019-06-11 17:44 - 000000000 ____D C:\Users\VacKor\AppData\Local\{C51CC413-AD4F-465D-BA2F-B803CAFCFBC4}

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-11 17:05 - 2009-07-14 06:45 - 000029120 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-07-11 17:05 - 2009-07-14 06:45 - 000029120 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-07-11 16:59 - 2018-11-09 16:43 - 000002790 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2019-07-11 16:59 - 2018-03-13 20:09 - 000004528 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-07-11 16:59 - 2017-12-30 08:54 - 000004128 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-07-11 16:59 - 2015-12-03 18:22 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software
2019-07-11 16:59 - 2012-09-25 20:15 - 000004396 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2019-07-11 16:59 - 2011-07-11 17:56 - 000003050 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_IType_exe
2019-07-11 16:59 - 2011-07-10 16:38 - 000002878 _____ C:\Windows\System32\Tasks\{435A3B21-6B52-4BDF-9C66-EB939FF57B65}
2019-07-11 15:03 - 2014-01-09 23:22 - 000000000 ____D C:\Down
2019-07-11 06:40 - 2017-04-15 07:06 - 000000000 ____D C:\Users\VacKor\AppData\Local\AVAST Software
2019-07-11 06:35 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-07-11 06:33 - 2014-02-13 21:45 - 000000000 ____D C:\Users\VacKor\AppData\LocalLow\IObit
2019-07-11 06:33 - 2014-02-13 21:44 - 000000000 ____D C:\ProgramData\IObit
2019-07-11 06:33 - 2014-02-13 21:44 - 000000000 ____D C:\Program Files (x86)\IObit
2019-07-11 06:33 - 2014-02-13 21:43 - 000000000 ____D C:\Users\VacKor\AppData\Roaming\IObit
2019-07-11 06:29 - 2017-09-10 21:11 - 000000000 ____D C:\AdwCleaner
2019-07-10 12:27 - 2011-07-10 09:47 - 000000000 ____D C:\Users\VacKor\AppData\Roaming\vlc
2019-07-10 12:26 - 2011-04-12 10:34 - 000668882 _____ C:\Windows\system32\perfh005.dat
2019-07-10 12:26 - 2011-04-12 10:34 - 000141542 _____ C:\Windows\system32\perfc005.dat
2019-07-10 12:26 - 2009-07-14 07:13 - 001584626 _____ C:\Windows\system32\PerfStringBackup.INI
2019-07-10 12:26 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2019-07-10 12:17 - 2017-03-09 20:21 - 000004168 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2019-07-10 12:07 - 2009-07-14 06:45 - 000360712 _____ C:\Windows\system32\FNTCACHE.DAT
2019-07-10 12:02 - 2014-12-11 16:15 - 000000000 ____D C:\Windows\system32\appraiser
2019-07-10 12:02 - 2014-04-27 20:55 - 000000000 ___SD C:\Windows\system32\CompatTel
2019-07-10 12:02 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\SysWOW64\Dism
2019-07-10 12:02 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\Dism
2019-07-10 08:38 - 2011-07-10 13:42 - 000000000 ____D C:\ProgramData\Adobe
2019-07-10 08:33 - 2014-01-30 04:05 - 001559340 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2019-07-10 08:26 - 2013-08-12 06:12 - 000000000 ____D C:\Windows\system32\MRT
2019-07-10 08:18 - 2011-07-08 22:51 - 000000000 ____D C:\Users\VacKor\AppData\Roaming\Adobe
2019-07-10 08:11 - 2011-07-13 19:00 - 136618864 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-07-09 22:09 - 2012-09-25 20:15 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-07-09 22:09 - 2012-09-25 20:15 - 000000000 ____D C:\Windows\system32\Macromed
2019-07-09 22:09 - 2011-07-08 22:51 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-07-09 22:09 - 2011-07-08 22:51 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-06-30 07:34 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
2019-06-28 13:32 - 2019-04-17 15:35 - 000003732 _____ C:\Windows\System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2019-06-28 13:32 - 2019-04-17 15:35 - 000003150 _____ C:\Windows\System32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2019-06-28 13:32 - 2018-06-01 08:39 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2019-06-28 13:32 - 2018-06-01 08:39 - 000002386 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2019-06-20 17:47 - 2011-07-18 13:19 - 000168104 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2019-06-18 18:07 - 2014-08-28 20:57 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-06-17 17:53 - 2014-01-01 15:26 - 000225600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2019-06-13 18:22 - 2017-09-14 17:15 - 000000000 ____D C:\Windows\rescache
2019-06-11 20:29 - 2018-11-09 16:45 - 000001310 _____ C:\Users\Public\Desktop\Skype.lnk
2019-06-11 20:29 - 2018-08-03 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-06-11 20:29 - 2017-08-26 08:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-06-11 20:26 - 2017-12-30 08:54 - 000000782 _____ C:\Users\Public\Desktop\CCleaner.lnk

==================== Files in the root of some directories ================

2019-07-04 19:24 - 2019-07-04 19:24 - 000002309 _____ () C:\Users\VacKor\AppData\Local\recently-used.xbel
2011-07-10 19:43 - 2011-09-25 19:59 - 000007622 _____ () C:\Users\VacKor\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-07-10 11:02
==================== End of FRST.txt ============================
Nahoru
pokerkan
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 17 srp 2010 17:54

Re: Preventivní kontrola

#6 Příspěvek od pokerkan »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-07-2019
Ran by VacKor (11-07-2019 19:02:53)
Running from C:\Users\VacKor\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2011-07-08 20:23:19)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4161623063-1077891321-1027309549-500 - Administrator - Disabled)
Guest (S-1-5-21-4161623063-1077891321-1027309549-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4161623063-1077891321-1027309549-1002 - Limited - Enabled)
VacKor (S-1-5-21-4161623063-1077891321-1027309549-1000 - Administrator - Enabled) => C:\Users\VacKor

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1900-000001000000}) (Version: 19.00.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20034 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.223 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.223 - Adobe)
Adobe Photoshop CS (HKLM-x32\...\{EFB21DE7-8C19-4A88-BB28-A766E16493BC}) (Version: CS - Adobe Systems, Inc.)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_HOMESTUDENTR_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_HOMESTUDENTR_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_HOMESTUDENTR_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
ASUSUpdate (HKLM-x32\...\{587178E7-B1DF-494E-9838-FA4DD36E873C}) (Version: 7.18.03 - ASUSTeK Computer Inc.)
ATI Catalyst Install Manager (HKLM\...\{2A13EF26-4D68-B2D7-A486-DBBD2FDE366B}) (Version: 3.0.765.0 - ATI Technologies, Inc.)
Audials (HKLM-x32\...\{15FA1110-CA8E-43E4-BD79-A28A897CD563}) (Version: 11.0.48200.0 - Audials AG)
Avast Internet Security (HKLM-x32\...\Avast Antivirus) (Version: 19.5.2378 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 75.0.1447.80 - AVAST Software)
Canon MP540 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP540_series) (Version: - )
ccc-core-static (HKLM-x32\...\{8ADE5280-35CA-CF98-A456-F66B98C77244}) (Version: 2010.0210.2206.39615 - Název společnosti:) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.58 - Piriform)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DVDFab 8.2.1.5 (10/10/2012) Qt (HKLM-x32\...\DVDFab 8 Qt_is1) (Version: - Fengtao Software Inc.)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Exact Audio Copy 0.95b4 (HKLM-x32\...\Exact Audio Copy) (Version: 0.95b4 - Andre Wiethoff)
FormatFactory 3.2.1.0 (HKLM-x32\...\FormatFactory) (Version: 3.2.1.0 - Free Time)
FOTOLAB CEWE fotosvet (HKLM-x32\...\FOTOLAB CEWE fotosvet) (Version: 6.3.6 - CEWE Stiftung u Co. KGaA)
Free WMA to MP3 Converter 1.16 (HKLM-x32\...\Free WMA to MP3 Converter_is1) (Version: - Jodix Technologies Ltd.)
Free YouTube Download version 3.2.19.1219 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.19.1219 - DVDVideoSoft Ltd.)
Google Earth Pro (HKLM-x32\...\{9D524A1E-F2FC-444D-B12A-7592CEB56EB5}) (Version: 7.3.2.5776 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 75.0.3770.100 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Hypercosm Player 3.52 (HKLM-x32\...\Hypercosm Player 5_is1) (Version: - Hypercosm, LLC.)
Inkscape 0.92.4 (HKLM-x32\...\Inkscape) (Version: 0.92.4 - Inkscape Project)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Malwarebytes verze 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
MediaCoder 0.8.25.5555 (HKLM-x32\...\MediaCoder) (Version: 0.8.25.5555 - Broad Intelligence)
Microsoft .NET Framework 4.7.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft IntelliType Pro 8.1 (HKLM\...\Microsoft IntelliType Pro 8.1) (Version: 8.15.406.0 - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Windows Media Video 9 VCM (HKLM-x32\...\WMV9_VCM) (Version: - )
MiniTool Partition Wizard Home Edition 7.5 (HKLM-x32\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.)
Mozilla Firefox 66.0.1 (x64 en-US) (HKLM\...\Mozilla Firefox 66.0.1 (x64 en-US)) (Version: 66.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 66.0.1.7020 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nero 7 Ultra Edition (HKLM-x32\...\{D98C0C51-F9BB-4EE4-B791-22BF6EE31029}) (Version: 7.02.8633 - Nero AG)
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Hidden
Prohlížeč Seznam.cz (HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\Seznam Browser) (Version: 4.1.1 - Seznam.cz a.s.)
Rajče průvodce verze 1.59.52.267 (HKLM-x32\...\rajce.net_is1) (Version: - rajce.net)
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks)
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.23.623.2010 - Realtek)
RealUpgrade 1.1 (HKLM-x32\...\{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}) (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Recuva (HKLM\...\Recuva) (Version: - Piriform)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.4.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.4.0 - Renesas Electronics Corporation)
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.9.12585 - Skype Technologies S.A.)
Skype verze 8.46 (HKLM-x32\...\Skype_is1) (Version: 8.46 - Skype Technologies S.A.)
Sony Ericsson Software (HKLM-x32\...\Sony Ericsson) (Version: - )
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.7 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Xara Xtreme 5 (HKLM\...\{1C78055D-F54D-46F4-9A51-19E3CF6BB20E}) (Version: 5.1.2.17971 - Xara Group Ltd) Hidden
Xara Xtreme 5 (HKLM-x32\...\MAGIX_{1C78055D-F54D-46F4-9A51-19E3CF6BB20E}) (Version: 5.1.2.17971 - Xara Group Ltd)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2010-02-10] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-05-26] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

ShortcutWithArgument: C:\Users\VacKor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b8da4a38624bbb1e\Feedback.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=gfdkimpbcpahaombhbimeihdjnejgicl
ShortcutWithArgument: C:\Users\VacKor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b38c8a402571e3e7\Seznam.cz.lnk -> C:\Users\VacKor\AppData\Roaming\Seznam Browser\Seznam.cz.exe (Seznam.cz) -> --user-data-dir="C:\Users\VacKor\AppData\Local\Seznam.cz\User Data" --profile-directory=Default --app-id=ckjpageadhfekbilpnlbcjgbflimllbk

==================== Loaded Modules (Whitelisted) ==============

2009-04-22 17:38 - 2009-04-22 17:38 - 000065536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
2011-07-08 22:35 - 2011-07-08 22:35 - 000008192 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3693.39586__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3693.39726__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3693.39593__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000007168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3693.39581__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3693.39736__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000006144 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3693.39587__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000006144 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3693.39588__90ba9c70f846762e\AEM.Server.Shared.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.3693.39589__90ba9c70f846762e\AEM.Server.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000019456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0.3693.39719__90ba9c70f846762e\CCC.Implementation.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000007680 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3693.39582__90ba9c70f846762e\CLI.Component.Client.Shared.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000010240 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3693.39599__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000024576 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3693.39583__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000049152 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3693.39587__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3693.39586__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000057344 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3693.39592__90ba9c70f846762e\CLI.Component.SkinFactory.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000577536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3693.39712__90ba9c70f846762e\CLI.Component.Systemtray.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3693.39614__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3693.39583__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3693.39586__90ba9c70f846762e\CLI.Foundation.Private.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3693.39720__90ba9c70f846762e\CLI.Foundation.XManifest.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000098304 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.3693.39581__90ba9c70f846762e\CLI.Foundation.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\DEM.Graphics\2.0.3693.39592__90ba9c70f846762e\DEM.Graphics.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3693.39585__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000065536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3693.39717__90ba9c70f846762e\LOG.Foundation.Implementation.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000036864 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3693.39584__90ba9c70f846762e\LOG.Foundation.Private.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.3693.39579__90ba9c70f846762e\LOG.Foundation.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.3693.39585__90ba9c70f846762e\MOM.Foundation.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000106496 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.3693.39720__90ba9c70f846762e\MOM.Implementation.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3693.39581__90ba9c70f846762e\NEWAEM.Foundation.dll
2009-12-11 12:09 - 2009-12-11 12:09 - 000073728 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ADL.Foundation.dll
2009-06-17 05:27 - 2009-06-17 05:27 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000040960 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3693.39599__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 001220608 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3693.39601__90ba9c70f846762e\CLI.Component.Dashboard.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000061440 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3693.39591__90ba9c70f846762e\CLI.Component.Runtime.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000405504 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3693.39615__90ba9c70f846762e\CLI.Component.Wizard.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000380928 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3693.39594__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000151552 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3693.39584__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
2009-04-22 17:37 - 2009-04-22 17:37 - 000065536 _____ (ATI Technologies Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
2011-07-08 22:35 - 2011-07-08 22:35 - 000016384 _____ (ATI Technologies Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll
2011-07-08 22:35 - 2011-07-08 22:35 - 000045056 _____ (ATI Technologies Inc.) [File not signed] C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\...\100sexlinks.com -> 100sexlinks.com

There are 4788 more sites.


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2019-07-10 12:41 - 000000828 _____ C:\Windows\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\Windows Live\Shared
HKU\S-1-5-21-4161623063-1077891321-1027309549-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\VacKor\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: HDAudDeck =>
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{1B7EDF6A-9F65-488D-886F-C7D921B91A13}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B9FB5512-5F18-403A-A95D-5F4F37112453}] => (Allow) LPort=2869
FirewallRules: [{5E76647C-FD7F-47D8-A2D2-0A1DC8650E84}] => (Allow) LPort=1900
FirewallRules: [{E5F7E50A-1A4C-43AC-AF57-24623EC26D54}] => (Allow) C:\Windows\SysWOW64\msiexec.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{4A4E1EB2-A79B-4EC0-8853-063C24DDDEE6}] => (Allow) C:\Windows\SysWOW64\msiexec.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{70AE6300-0903-4A7A-B039-11F7E63EADFF}E:\easysetupassistant\wr741n\easysetupassistant.exe] => (Allow) E:\easysetupassistant\wr741n\easysetupassistant.exe No File
FirewallRules: [UDP Query User{0AF4A5B8-AC3F-4964-B2B6-E477054E6931}E:\easysetupassistant\wr741n\easysetupassistant.exe] => (Allow) E:\easysetupassistant\wr741n\easysetupassistant.exe No File
FirewallRules: [{DD63938E-B7EA-4AC7-AFF2-4EAED852264D}] => (Block) E:\easysetupassistant\wr741n\easysetupassistant.exe No File
FirewallRules: [{6D921F66-14CA-4196-8859-66D8DDC62BC0}] => (Block) E:\easysetupassistant\wr741n\easysetupassistant.exe No File
FirewallRules: [{076D8F3D-C6E9-47EA-975C-80C8409C3985}] => (Allow) C:\Program Files (x86)\Audials\Audials 11\Audials.exe (Audials AG -> Audials AG)
FirewallRules: [{0B07E1A3-45F2-4404-9613-9E3B32903581}] => (Allow) LPort=12972
FirewallRules: [{68351963-4574-4AA3-B674-F740BACF2396}] => (Allow) LPort=14714
FirewallRules: [{0964C5D2-BF69-420B-AF94-43AA9B282CD3}] => (Allow) LPort=31931
FirewallRules: [{B989EDE5-9F45-49CD-BB0F-6938E472B7E9}] => (Allow) LPort=8743
FirewallRules: [{33D0B35B-20F6-41D3-95E7-802B0B153930}] => (Allow) LPort=8643
FirewallRules: [{D6F85AE0-81CD-47A2-917C-A7D4757D8D2A}] => (Allow) LPort=7676
FirewallRules: [{121B1E28-B33B-4E05-8F7E-FDFD94320EAB}] => (Allow) LPort=7679
FirewallRules: [{EAE8A647-AAF1-4FBE-9BE4-2582E8DC0C6E}] => (Allow) LPort=24234
FirewallRules: [{4371BF3F-8CC6-4D71-A9CB-779EEEADA088}] => (Allow) LPort=7900
FirewallRules: [{32DB69D3-5E8F-4AE2-9631-653779C1B446}] => (Allow) LPort=1900
FirewallRules: [{A9875E2D-435A-48F0-88FE-E5E9EC78F369}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C777C196-EF69-4644-93FC-7CF2998D2003}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{8F86821C-184E-4738-A781-EE4F2E412D1C}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{37D64A34-F48F-49BC-8B58-F09382A8FAB0}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1F84FF8A-C6A2-49FA-ADFB-90BBEF1789C5}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C5347FE9-1939-48E8-87DB-B29303C31C44}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{78845011-2642-4061-B723-45F660AA8211}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{244FBD28-7CC7-49D9-A0C6-F28EAE11C8E6}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{F59BD028-4183-41D2-BAF3-174782C4E5BD}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4C4A9368-2670-47C1-9161-6673AD308160}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{41FA01A4-E4BD-4793-9330-6E7D6F9D66FD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{B9595822-5657-48A3-817D-1D2BA306AC45}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)

==================== Restore Points =========================

29-06-2019 08:15:18 Naplánovaný kontrolní bod
10-07-2019 08:06:20 Windows Update
10-07-2019 11:53:15 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/11/2019 06:43:01 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (07/11/2019 05:43:01 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (07/11/2019 04:43:06 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (07/11/2019 04:28:14 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (07/11/2019 02:53:12 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (07/11/2019 12:42:50 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (07/11/2019 10:13:29 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (07/11/2019 07:43:02 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.


System errors:
=============
Error: (07/11/2019 06:42:12 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Windows Update přestala během spouštění reagovat.

Error: (07/11/2019 06:39:01 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Microsoft .NET Framework NGEN v4.0.30319_X64 bylo dosaženo časového limitu (30000 ms).

Error: (07/11/2019 06:33:45 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Ochrana softwaru byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (07/11/2019 06:33:45 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (07/11/2019 06:33:45 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Live ID Sign-in Assistant byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (07/11/2019 06:33:45 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/11/2019 06:33:45 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AMD External Events Utility byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/11/2019 06:33:44 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba VIA Karaoke digital mixer Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
===================================
Date: 2016-09-21 05:55:59.510
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{74459CFD-F005-40E1-B0C2-0C58E6A8F327}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE

Date: 2016-06-01 06:01:40.649
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{C9E32B1E-CB40-4243-AAA2-C4879C4B37B2}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE

Date: 2016-01-07 06:00:51.671
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{77B05833-44E0-48B7-A6F8-BB25FC1834DA}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE

Date: 2015-12-11 06:01:11.856
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{BD63B491-FF15-407E-A8C4-56ACB2E440DC}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE

Date: 2015-11-26 06:01:10.115
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{5329EB43-A1AC-42FA-9D72-7405839D4D85}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE

Date: 2015-06-05 11:26:43.369
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0

Date: 2015-06-05 11:26:43.354
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:
Zdroj aktualizace:Složka aktualizace podpisů
Typ podpisu:Antispywarový program
Typ aktualizace:Delta
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.

Date: 2014-02-16 16:14:20.365
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0

==================== Memory info ===========================

BIOS: American Megatrends Inc. 0704 01/06/2012
Motherboard: ASUSTeK Computer INC. M4A88T-M/USB3
Processor: AMD Athlon(tm) II X2 245e Processor
Percentage of memory in use: 71%
Total physical RAM: 3838.05 MB
Available physical RAM: 1082.09 MB
Total Virtual: 7674.25 MB
Available Virtual: 4506.63 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:6.5 GB) NTFS
Drive d: (Data) (Fixed) (Total:298.09 GB) (Free:46.59 GB) NTFS

\\?\Volume{ba69887d-a9c0-11e0-85b1-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: A263278F)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 298.1 GB) (Disk ID: CF25CF25)
Partition 1: (Not Active) - (Size=298.1 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivní kontrola

#7 Příspěvek od Conder »

:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

    Kód: Vybrat vše

    Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum

Task: {1175ABA1-431B-44F7-8226-7FB450034760} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {1987397F-D99C-4391-B71B-DEE4D70FB7B8} - System32\Tasks\{13B6E6DE-E632-498A-91B6-FD3910BB786D} => D:\Instal\Grafika\Xara_CZ\SETUP.EXE [24048 1996-05-27] () [File not signed]
Task: {538DC8F0-0795-46E8-8514-F40EEB4066F8} - System32\Tasks\{B1BFE420-799F-410C-AE90-651B2BD74357} => D:\Instal\Grafika\Xara_CZ\SETUP.EXE [24048 1996-05-27] () [File not signed]
Task: {9B0C6C27-081B-468D-B658-FCAEE2EDE571} - System32\Tasks\{044FD781-8E2C-4902-B1C8-B523978A5F68} => D:\Instal\Grafika\Xara_CZ\SETUP.EXE [24048 1996-05-27] () [File not signed]
Task: {AF28B46E-B404-4292-8B64-0E329670672A} - System32\Tasks\{584255F4-7283-4EED-921A-A42E49E2D7E2} => C:\Windows\system32\pcalua.exe -a E:\Install\USB-Driver\Setup.exe -d E:\Install\USB-Driver
Task: {B0DB04D2-2687-4D2F-AEC7-9F7BB57146C1} - System32\Tasks\{E16B73D8-F885-4030-A473-E1CA82379656} => D:\Instal\Grafika\Xara_CZ\SETUP.EXE [24048 1996-05-27] () [File not signed]
Task: {FCC6383E-469F-43AB-903B-69CC644C1566} - System32\Tasks\{4A41EADC-F795-48D4-9DF9-FA599CC3B063} => C:\Windows\system32\pcalua.exe -a D:\Instal\EAC\eac-0.95b4.exe -d D:\Instal\EAC
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -  No File
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => not found
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
Folder: C:\Users\VacKor\AppData\Local\{52FA352A-F5AC-457E-9AD4-D87A71F35471}
Folder: C:\Users\VacKor\AppData\Local\{2955F9B6-DF7C-4F27-8D60-BDCE8AEDFBC1}
Folder: C:\Users\VacKor\AppData\Local\{71DB26F5-8B3E-4223-9615-7DF25B3F02CA}
2019-07-11 18:54 - 2019-07-11 18:54 - 000000000 ____D C:\Users\VacKor\Desktop\FRST-OlderVersion
2019-07-10 12:41 - 2019-07-10 12:41 - 000000000 ____D C:\rsit
2019-07-10 12:41 - 2019-07-10 12:41 - 000000000 ____D C:\Program Files\trend micro
2019-07-10 11:52 - 2019-07-10 11:52 - 001222144 _____ C:\Users\VacKor\Desktop\RSITx64.exe
2019-07-11 06:33 - 2014-02-13 21:45 - 000000000 ____D C:\Users\VacKor\AppData\LocalLow\IObit
2019-07-11 06:33 - 2014-02-13 21:44 - 000000000 ____D C:\ProgramData\IObit
2019-07-11 06:33 - 2014-02-13 21:44 - 000000000 ____D C:\Program Files (x86)\IObit
2019-07-11 06:33 - 2014-02-13 21:43 - 000000000 ____D C:\Users\VacKor\AppData\Roaming\IObit
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  -> No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  -> No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  -> No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  -> No File

C:\Program Files\IObit
C:\Program Files (x86)\IObit
C:\Program Files\Common Files\IObit
C:\ProgramData\IObit
C:\ProgramData\ProductData
C:\Users\VacKor\AppData\Local\IObit
C:\Users\VacKor\AppData\LocalLow\IObit
C:\Users\VacKor\AppData\Roaming\IObit
C:\Users\VacKor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\*Driver Booster*
C:\Users\VacKor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\*Advanced SystemCare*
C:\Users\Default\AppData\Local\IObit
C:\Users\Default\AppData\LocalLow\IObit
C:\Users\Default\AppData\Roaming\IObit
C:\Users\Public\Desktop\*Driver Booster*
C:\Users\Public\Desktop\*Advanced SystemCare*
C:\Windows\IObit
C:\Windows\Tasks\ImCleanDisabled
C:\ProgramData\{13CFD044-61E4-4EAC-AD61-02536D961216}
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 5
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare

Hosts:
EmptyTemp:
End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
pokerkan
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 17 srp 2010 17:54

Re: Preventivní kontrola

#8 Příspěvek od pokerkan »

Fix result of Farbar Recovery Scan Tool (x64) Version: 10-07-2019
Ran by VacKor (11-07-2019 20:50:03) Run:1
Running from C:\Users\VacKor\Desktop
Loaded Profiles: VacKor (Available Profiles: VacKor)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum

Task: {1175ABA1-431B-44F7-8226-7FB450034760} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {1987397F-D99C-4391-B71B-DEE4D70FB7B8} - System32\Tasks\{13B6E6DE-E632-498A-91B6-FD3910BB786D} => D:\Instal\Grafika\Xara_CZ\SETUP.EXE [24048 1996-05-27] () [File not signed]
Task: {538DC8F0-0795-46E8-8514-F40EEB4066F8} - System32\Tasks\{B1BFE420-799F-410C-AE90-651B2BD74357} => D:\Instal\Grafika\Xara_CZ\SETUP.EXE [24048 1996-05-27] () [File not signed]
Task: {9B0C6C27-081B-468D-B658-FCAEE2EDE571} - System32\Tasks\{044FD781-8E2C-4902-B1C8-B523978A5F68} => D:\Instal\Grafika\Xara_CZ\SETUP.EXE [24048 1996-05-27] () [File not signed]
Task: {AF28B46E-B404-4292-8B64-0E329670672A} - System32\Tasks\{584255F4-7283-4EED-921A-A42E49E2D7E2} => C:\Windows\system32\pcalua.exe -a E:\Install\USB-Driver\Setup.exe -d E:\Install\USB-Driver
Task: {B0DB04D2-2687-4D2F-AEC7-9F7BB57146C1} - System32\Tasks\{E16B73D8-F885-4030-A473-E1CA82379656} => D:\Instal\Grafika\Xara_CZ\SETUP.EXE [24048 1996-05-27] () [File not signed]
Task: {FCC6383E-469F-43AB-903B-69CC644C1566} - System32\Tasks\{4A41EADC-F795-48D4-9DF9-FA599CC3B063} => C:\Windows\system32\pcalua.exe -a D:\Instal\EAC\eac-0.95b4.exe -d D:\Instal\EAC
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => not found
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
Folder: C:\Users\VacKor\AppData\Local\{52FA352A-F5AC-457E-9AD4-D87A71F35471}
Folder: C:\Users\VacKor\AppData\Local\{2955F9B6-DF7C-4F27-8D60-BDCE8AEDFBC1}
Folder: C:\Users\VacKor\AppData\Local\{71DB26F5-8B3E-4223-9615-7DF25B3F02CA}
2019-07-11 18:54 - 2019-07-11 18:54 - 000000000 ____D C:\Users\VacKor\Desktop\FRST-OlderVersion
2019-07-10 12:41 - 2019-07-10 12:41 - 000000000 ____D C:\rsit
2019-07-10 12:41 - 2019-07-10 12:41 - 000000000 ____D C:\Program Files\trend micro
2019-07-10 11:52 - 2019-07-10 11:52 - 001222144 _____ C:\Users\VacKor\Desktop\RSITx64.exe
2019-07-11 06:33 - 2014-02-13 21:45 - 000000000 ____D C:\Users\VacKor\AppData\LocalLow\IObit
2019-07-11 06:33 - 2014-02-13 21:44 - 000000000 ____D C:\ProgramData\IObit
2019-07-11 06:33 - 2014-02-13 21:44 - 000000000 ____D C:\Program Files (x86)\IObit
2019-07-11 06:33 - 2014-02-13 21:43 - 000000000 ____D C:\Users\VacKor\AppData\Roaming\IObit
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => -> No File

C:\Program Files\IObit
C:\Program Files (x86)\IObit
C:\Program Files\Common Files\IObit
C:\ProgramData\IObit
C:\ProgramData\ProductData
C:\Users\VacKor\AppData\Local\IObit
C:\Users\VacKor\AppData\LocalLow\IObit
C:\Users\VacKor\AppData\Roaming\IObit
C:\Users\VacKor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\*Driver Booster*
C:\Users\VacKor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\*Advanced SystemCare*
C:\Users\Default\AppData\Local\IObit
C:\Users\Default\AppData\LocalLow\IObit
C:\Users\Default\AppData\Roaming\IObit
C:\Users\Public\Desktop\*Driver Booster*
C:\Users\Public\Desktop\*Advanced SystemCare*
C:\Windows\IObit
C:\Windows\Tasks\ImCleanDisabled
C:\ProgramData\{13CFD044-61E4-4EAC-AD61-02536D961216}
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 5
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========



Count : 28
Average :
Sum : 18707557
Maximum :
Minimum :
Property : Length


========= End of Powershell: =========

"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1175ABA1-431B-44F7-8226-7FB450034760}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1175ABA1-431B-44F7-8226-7FB450034760}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1987397F-D99C-4391-B71B-DEE4D70FB7B8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1987397F-D99C-4391-B71B-DEE4D70FB7B8}" => removed successfully
C:\Windows\System32\Tasks\{13B6E6DE-E632-498A-91B6-FD3910BB786D} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{13B6E6DE-E632-498A-91B6-FD3910BB786D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{538DC8F0-0795-46E8-8514-F40EEB4066F8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{538DC8F0-0795-46E8-8514-F40EEB4066F8}" => removed successfully
C:\Windows\System32\Tasks\{B1BFE420-799F-410C-AE90-651B2BD74357} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B1BFE420-799F-410C-AE90-651B2BD74357}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9B0C6C27-081B-468D-B658-FCAEE2EDE571}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9B0C6C27-081B-468D-B658-FCAEE2EDE571}" => removed successfully
C:\Windows\System32\Tasks\{044FD781-8E2C-4902-B1C8-B523978A5F68} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{044FD781-8E2C-4902-B1C8-B523978A5F68}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AF28B46E-B404-4292-8B64-0E329670672A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AF28B46E-B404-4292-8B64-0E329670672A}" => removed successfully
C:\Windows\System32\Tasks\{584255F4-7283-4EED-921A-A42E49E2D7E2} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{584255F4-7283-4EED-921A-A42E49E2D7E2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B0DB04D2-2687-4D2F-AEC7-9F7BB57146C1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B0DB04D2-2687-4D2F-AEC7-9F7BB57146C1}" => removed successfully
C:\Windows\System32\Tasks\{E16B73D8-F885-4030-A473-E1CA82379656} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E16B73D8-F885-4030-A473-E1CA82379656}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FCC6383E-469F-43AB-903B-69CC644C1566}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FCC6383E-469F-43AB-903B-69CC644C1566}" => removed successfully
C:\Windows\System32\Tasks\{4A41EADC-F795-48D4-9DF9-FA599CC3B063} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{4A41EADC-F795-48D4-9DF9-FA599CC3B063}" => removed successfully
HKLM\Software\Classes\PROTOCOLS\Handler\skype4com => removed successfully
HKLM\Software\Classes\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} => not found
"HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}" => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki => removed successfully

========================= Folder: C:\Users\VacKor\AppData\Local\{52FA352A-F5AC-457E-9AD4-D87A71F35471} ========================


====== End of Folder: ======


========================= Folder: C:\Users\VacKor\AppData\Local\{2955F9B6-DF7C-4F27-8D60-BDCE8AEDFBC1} ========================


====== End of Folder: ======


========================= Folder: C:\Users\VacKor\AppData\Local\{71DB26F5-8B3E-4223-9615-7DF25B3F02CA} ========================


====== End of Folder: ======

C:\Users\VacKor\Desktop\FRST-OlderVersion => moved successfully
C:\rsit => moved successfully
C:\Program Files\trend micro => moved successfully
C:\Users\VacKor\Desktop\RSITx64.exe => moved successfully
C:\Users\VacKor\AppData\LocalLow\IObit => moved successfully
C:\ProgramData\IObit => moved successfully
C:\Program Files (x86)\IObit => moved successfully
C:\Users\VacKor\AppData\Roaming\IObit => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt1 => removed successfully
HKLM\Software\Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt2 => removed successfully
HKLM\Software\Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt3 => removed successfully
HKLM\Software\Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt4 => removed successfully
HKLM\Software\Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => not found
"C:\Program Files\IObit" => not found
"C:\Program Files (x86)\IObit" => not found
"C:\Program Files\Common Files\IObit" => not found
"C:\ProgramData\IObit" => not found
C:\ProgramData\ProductData => moved successfully
"C:\Users\VacKor\AppData\Local\IObit" => not found
"C:\Users\VacKor\AppData\LocalLow\IObit" => not found
"C:\Users\VacKor\AppData\Roaming\IObit" => not found

=========== "C:\Users\VacKor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\*Driver Booster*" ==========

not found

========= End -> "C:\Users\VacKor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\*Driver Booster*" ========


=========== "C:\Users\VacKor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\*Advanced SystemCare*" ==========

not found

========= End -> "C:\Users\VacKor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\*Advanced SystemCare*" ========

"C:\Users\Default\AppData\Local\IObit" => not found
"C:\Users\Default\AppData\LocalLow\IObit" => not found
"C:\Users\Default\AppData\Roaming\IObit" => not found

=========== "C:\Users\Public\Desktop\*Driver Booster*" ==========

not found

========= End -> "C:\Users\Public\Desktop\*Driver Booster*" ========


=========== "C:\Users\Public\Desktop\*Advanced SystemCare*" ==========

not found

========= End -> "C:\Users\Public\Desktop\*Advanced SystemCare*" ========

"C:\Windows\IObit" => not found
C:\Windows\Tasks\ImCleanDisabled => moved successfully
"C:\ProgramData\{13CFD044-61E4-4EAC-AD61-02536D961216}" => not found
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 5" => not found
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare" => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8113139 B
Java, Flash, Steam htmlcache => 1195 B
Windows/system/drivers => 248261229 B
Edge => 0 B
Chrome => 348654689 B
Firefox => 23499919 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 42219635 B
systemprofile32 => 128 B
LocalService => 0 B
NetworkService => 0 B
VacKor => 141867762 B

RecycleBin => 238612971 B
EmptyTemp: => 1010.5 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 20:54:22 ====
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivní kontrola

#9 Příspěvek od Conder »

:arrow: Ako to vyzera s PC? Su nejake problemy?

:arrow: V PC boli aj nejake zbytky po IObit programoch (zrejme uz boli odinstalovane). Neodporucam pouzivat ziadne programy od IObit (napr. Driver Booster, Advanced SystemCare, Uninstaller, atd.), kedze su to cinske smejdy, ktore mozu poskodit system.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
pokerkan
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 17 srp 2010 17:54

Re: Preventivní kontrola

#10 Příspěvek od pokerkan »

Vypadá to dobře. Díky za pomoc ! :thumbsup:
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivní kontrola

#11 Příspěvek od Conder »

:arrow: Tak este upraceme po pouzitych nastrojoch:
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
pokerkan
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 17 srp 2010 17:54

Re: Preventivní kontrola

#12 Příspěvek od pokerkan »

Desinfekce vydesinfikována, kapříci plují. Ještě jednou dík !
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivní kontrola

#13 Příspěvek od Conder »

Nie je zaco, rad som pomohol :)
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
Zamčeno

Zpět na „Preventivní kontroly logů“