VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

mystarting123?

https://forum.viry.cz:443/viewtopic.php?t=152186

Stránka 1 z 1

mystarting123?

Napsal: 25 kvě 2017 19:18
od buko1
Zdravím.

Potreboval by som poradiť s malware (dúfam). Už dlhšiu dobu sa mi opakovane vypína chrome a následne sa mi menia domovské stránky a predvolené vyhľadávanie (naposledy na mystarting123). ADWcleaner mi vždy nájde nejaké potvory, ktoré odstráni, ale po pár dňoch je všetko ako predtým a potvory sú späť (predpokladám, že to niečo, čo ich aktivuje je uložené hlbšie ako bežný malware).

Vopred ďakujem.

Prikladám log z FRST:

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-05-2017
Ran by StB (administrator) on DOMACI_SERVER (25-05-2017 20:07:07)
Running from C:\Users\StB\Desktop
Loaded Profiles: StB (Available Profiles: StB)
Platform: Windows 10 Pro Version 1703 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe
(CrypKey (Canada) Ltd.) C:\Windows\System32\Crypserv.exe
(SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Plays.tv, LLC) C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.2.4.1\WsAppService.exe
(AMD) C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpert.exe
(Lenovo) C:\Program Files (x86)\MagicPlus\MagicPlus_helper.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
() C:\Windows\vsnp325.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe
(GOG.com) C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\csisyncclient.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GOG Galaxy Notifications Renderer.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
(AMD) C:\Windows\SysWOW64\WinMsgBalloonServer.exe
(AMD) C:\Windows\SysWOW64\WinMsgBalloonClient.exe
(LG Electronics Inc.) C:\Program Files (x86)\LG Software\LG Smart Share\Update\SmartShareTray.exe
(LG Electronics Inc.) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe
(LG Electronics Inc.) C:\Program Files (x86)\LG Software\LG Smart Share\DMC\Aggregation.exe
(LG Electronics Inc.) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\AutoThumb.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD64.EXE
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [snp325] => C:\WINDOWS\vsnp325.exe [827392 2006-10-10] ()
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-05-09] (AVAST Software)
HKLM-x32\...\Run: [PlaysTV] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [71440 2016-03-11] (Plays.tv, LLC)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58640 2016-08-23] (Raptr, Inc)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKU\S-1-5-21-3732695641-3302276906-4015890814-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3019552 2017-04-26] (Valve Corporation)
HKU\S-1-5-21-3732695641-3302276906-4015890814-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [4954176 2017-05-23] (GOG.com)
HKU\S-1-5-21-3732695641-3302276906-4015890814-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2017-02-07] (Disc Soft Ltd)
HKU\S-1-5-21-3732695641-3302276906-4015890814-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9772248 2017-05-05] (Piriform Ltd)
HKU\S-1-5-21-3732695641-3302276906-4015890814-1001\...\Run: [GoogleChromeAutoLaunch_E1BBD17618E81CDDADB23758351533C6] => "C:\AVANT\webkit\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-3732695641-3302276906-4015890814-1001\...\MountPoints2: {cfc2f76e-3899-11e7-8bed-e0cb4eb4951b} - "J:\HiSuiteDownLoader.exe" 
IFEO\GoogleUpdate.exe: [Debugger] 324095823984.exe
IFEO\GoogleUpdaterService.exe: [Debugger] 8736459873644.exe
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-03-14] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-03-14] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-03-14] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-09] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-09] (AVAST Software)
GroupPolicy: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{68e6ac6f-8c49-4663-a172-876dd03535eb}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
SearchScopes: HKU\S-1-5-21-3732695641-3302276906-4015890814-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04
SearchScopes: HKU\S-1-5-21-3732695641-3302276906-4015890814-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2017-04-11] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-03-14] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll [2017-04-11] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-05-14] (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL [2017-03-14] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-14] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)

Edge: 
======
Edge HomeButtonPage: HKU\S-1-5-21-3732695641-3302276906-4015890814-1001 -> hxxp://www.google.com

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-09] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-12-21] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-14] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-14] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-12] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\NPSPWRAP.DLL [2015-12-21] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-17] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-04-07] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-04-07] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-04-07] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3732695641-3302276906-4015890814-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\StB\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-10-26] (Unity Technologies ApS)

Chrome: 
=======
CHR StartupUrls: Default -> "hxxps://www.google.sk/"
CHR Profile: C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default [2017-05-25]
CHR Extension: (Prezentácie Google) - C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-05-17]
CHR Extension: (Magio GO) - C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\anoiechkjklgabdfompidjolhpfdpjdd [2017-05-17]
CHR Extension: (Dokumenty Google) - C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-05-17]
CHR Extension: (Disk Google) - C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-17]
CHR Extension: (YouTube) - C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-17]
CHR Extension: (Adblock Plus) - C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-05-17]
CHR Extension: (Tanki Online) - C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkifmaekogpcmnmhfkbpcebbnkdhfidn [2017-05-17]
CHR Extension: (Adobe Acrobat) - C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-05-17]
CHR Extension: (Avast SafePrice) - C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-05-17]
CHR Extension: (Tabuľky Google) - C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-05-17]
CHR Extension: (Tanki Online test RU8) - C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\fffipfkehbcackogmadfllmgeldonnmf [2017-05-17]
CHR Extension: (♫ \) - C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\foggdpaifopabhlnlilpijhhcoajgfpd [2017-05-17]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-05-18]
CHR Extension: (Avast Online Security) - C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-05-17]
CHR Extension: (Little Alchemy) - C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2017-05-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-17]
CHR Extension: (Gmail) - C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-05-17]
CHR Extension: (Chrome Media Router) - C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-17]
CHR HKLM-x32\...\Chrome\Extension: [anoiechkjklgabdfompidjolhpfdpjdd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7346208 2017-05-09] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-05-09] (AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3042544 2017-03-14] (Microsoft Corporation)
R2 Crypkey License; C:\WINDOWS\system32\crypserv.exe [122880 2008-05-08] (CrypKey (Canada) Ltd.) [File not signed]
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-02-07] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [392480 2017-02-10] (EasyAntiCheat Ltd)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [512576 2017-05-23] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7955008 2017-05-19] (GOG.com)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2017-04-11] ()
R2 PlaysService; C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe [32528 2016-03-11] (Plays.tv, LLC)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-03-20] (Microsoft Corporation)
R2 VIAKaraokeService; C:\WINDOWS\system32\viakaraokesrv.exe [36504 2015-06-22] (VIA Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.2.4.1\WsAppService.exe [417792 2016-07-12] (Wondershare) [File not signed]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [49448 2016-08-18] (Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0313824.inf_amd64_cff8240637965d03\atikmdag.sys [36560408 2017-05-04] (Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0313824.inf_amd64_cff8240637965d03\atikmpag.sys [529936 2017-05-04] (Advanced Micro Devices, Inc.)
R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [311808 2017-05-09] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [190256 2017-05-09] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [334576 2017-05-09] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [49016 2017-05-09] (AVAST Software s.r.o.)
S3 aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [85552 2017-03-08] (AVAST Software)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [38296 2017-05-09] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [32600 2017-05-09] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [128648 2017-05-09] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [101152 2017-05-09] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [75704 2017-05-09] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [1007160 2017-05-09] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [569192 2017-05-09] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [158880 2017-05-14] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [339696 2017-05-09] (AVAST Software)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [101376 2016-12-08] (Advanced Micro Devices)
R0 C211D892; C:\WINDOWS\System32\drivers\C211D892.sys [478392 2017-05-17] (Kaspersky Lab ZAO)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-12-24] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-05-02] (Disc Soft Ltd)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [27552 2016-01-31] (REALiX(tm))
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2017-04-11] (Huawei Technologies Co., Ltd.)
R3 MTsensor; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] ()
R1 NetworkX; C:\WINDOWS\system32\ckldrv.sys [28664 2008-03-17] ()
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-03-18] (Realtek                                            )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
R3 SNP325; C:\WINDOWS\system32\DRIVERS\snp325.sys [10526080 2007-01-27] (Sonix Co. Ltd.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
R1 ZAM; C:\WINDOWS\System32\drivers\zam64.sys [203680 2017-02-25] (Zemana Ltd.)
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [203680 2017-02-25] (Zemana Ltd.)
U3 idsvc; no ImagePath
S3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-05-25 20:07 - 2017-05-25 20:07 - 00000000 ____D C:\Users\StB\Desktop\FRST-OlderVersion
2017-05-25 19:49 - 2017-05-25 19:50 - 63364552 _____ (Malwarebytes ) C:\Users\StB\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.122-1.0.1976.exe
2017-05-25 19:37 - 2017-05-25 19:37 - 03619960 _____ (Google) C:\Users\StB\Downloads\chrome_cleanup_tool.exe
2017-05-25 19:27 - 2017-05-25 19:28 - 00000000 _____ C:\WINDOWS\SysWOW64\2
2017-05-25 19:26 - 2017-05-25 19:26 - 04110280 _____ C:\Users\StB\Desktop\adwcleaner_6.047.exe
2017-05-25 19:18 - 2017-05-25 19:18 - 04023251 _____ C:\Users\StB\Downloads\_ABC 1977--15 - Zvonice z Hronseku.rar
2017-05-25 17:01 - 2017-05-25 17:01 - 00000000 ___HD C:\OneDriveTemp
2017-05-25 16:59 - 2017-05-25 16:59 - 00000000 ____D C:\Cosusp
2017-05-24 19:11 - 2017-05-24 19:12 - 02886961 _____ C:\Users\StB\Downloads\_Fiddlers Green - ERCOUPE.rar
2017-05-24 19:11 - 2017-05-24 19:12 - 02763250 _____ C:\Users\StB\Downloads\_Peri Paperhobby - BV-212.rar
2017-05-23 19:19 - 2017-05-23 19:19 - 05512071 _____ C:\Users\StB\Downloads\_Levsha 2006-11 - 4 Uaz.rar
2017-05-23 17:57 - 2017-05-23 17:57 - 00440762 _____ C:\Users\StB\Downloads\Informačný_materiál_sankcie_EU_RU (1).pdf
2017-05-23 17:55 - 2017-05-23 17:55 - 00440762 _____ C:\Users\StB\Downloads\Informačný_materiál_sankcie_EU_RU.pdf
2017-05-23 13:57 - 2017-05-23 13:57 - 00102080 _____ C:\Users\StB\Downloads\Clubcard+Poukážka.pdf
2017-05-23 13:52 - 2017-05-23 13:52 - 03073587 _____ C:\Users\StB\Downloads\kupóny.pdf
2017-05-22 13:48 - 2017-05-22 13:49 - 06158240 _____ C:\Users\StB\Downloads\_ABC 1979-22 - Sopwith Triplane 1-72 (1).rar
2017-05-22 13:48 - 2017-05-22 13:49 - 05494991 _____ C:\Users\StB\Downloads\_WHM 1512 - Cessna 310B.rar
2017-05-22 13:48 - 2017-05-22 13:49 - 05241475 _____ C:\Users\StB\Downloads\_Pavel Styl - Zvonicka na Cyrilove (1).rar
2017-05-22 13:48 - 2017-05-22 13:49 - 04817214 _____ C:\Users\StB\Downloads\_IAFM - DISCOVERY.rar
2017-05-22 13:40 - 2017-05-22 13:40 - 04707083 _____ C:\Users\StB\Downloads\forge-1.11.2-13.20.0.2304-installer.jar
2017-05-22 13:32 - 2017-05-22 13:32 - 04424046 _____ C:\Users\StB\Downloads\forge-1.11.2-13.20.0.2228-installer.jar
2017-05-22 13:28 - 2017-05-22 13:29 - 06974626 _____ C:\Users\StB\Downloads\industrialcraft-2-2.7.33-ex111.jar
2017-05-22 13:22 - 2017-05-22 13:22 - 04075159 _____ () C:\Users\StB\Downloads\liteloader-installer-1.11.2-00-SNAPSHOT (1).exe
2017-05-21 14:09 - 2017-05-21 14:09 - 06158240 _____ C:\Users\StB\Downloads\_ABC 1979-22 - Sopwith Triplane 1-72.rar
2017-05-21 14:09 - 2017-05-21 14:09 - 05241475 _____ C:\Users\StB\Downloads\_Pavel Styl - Zvonicka na Cyrilove.rar
2017-05-21 14:09 - 2017-05-21 14:09 - 04461254 _____ C:\Users\StB\Downloads\_ABC 1977-01 - Diorаma pro stavebnici Mig-19.rar
2017-05-21 14:09 - 2017-05-21 14:09 - 03010979 _____ C:\Users\StB\Downloads\_ABC 1977-01 - Druzice Sputnik 3.rar
2017-05-21 14:09 - 2017-05-21 14:09 - 01838547 _____ C:\Users\StB\Downloads\_IAFM - KFIR C2.rar
2017-05-21 14:09 - 2017-05-21 14:09 - 00238048 _____ C:\Users\StB\Downloads\_Thai Paperwork 004 - Fokker D XXI.rar
2017-05-19 19:49 - 2017-05-19 19:49 - 00000000 _____ C:\Users\StB\Downloads\1495216193158.DownloadFile
2017-05-18 20:36 - 2017-05-18 20:37 - 01152154 _____ C:\Users\StB\Downloads\_Model Cardboard - PBY-5 Catalina 1-50.rar
2017-05-18 20:36 - 2017-05-18 20:37 - 01089870 _____ C:\Users\StB\Downloads\_Bobs CM - Douglas DC-6B Water Bomber.rar
2017-05-18 20:34 - 2017-05-18 20:42 - 49454375 _____ C:\Users\StB\Downloads\50. Mi-28H.pdf
2017-05-18 17:00 - 2017-05-18 19:37 - 00000000 ____D C:\Reimward
2017-05-17 21:04 - 2017-05-17 21:05 - 02727234 _____ C:\Users\StB\Downloads\_IAFM - Ouragon.rar
2017-05-17 21:04 - 2017-05-17 21:05 - 02566199 _____ C:\Users\StB\Downloads\_ABC 1976-17 - Doplnky kolejiste.rar
2017-05-17 21:04 - 2017-05-17 21:05 - 00555159 _____ C:\Users\StB\Downloads\_star wars - Tie Fighter.rar
2017-05-17 20:22 - 2017-05-25 19:27 - 00000000 ____D C:\Users\StB\AppData\Local\Google
2017-05-17 20:22 - 2017-05-17 20:22 - 00002360 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-17 20:22 - 2017-05-17 20:22 - 00002348 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-05-17 20:21 - 2017-05-17 20:22 - 00000000 ____D C:\Program Files (x86)\Google
2017-05-17 20:18 - 2017-05-17 20:18 - 00000000 ___HD C:\$AV_ASW
2017-05-17 19:51 - 2017-05-17 19:58 - 00000000 ____D C:\KVRT_Data
2017-05-17 19:51 - 2017-05-17 19:51 - 00478392 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\C211D892.sys
2017-05-17 19:47 - 2017-05-17 19:51 - 114223136 _____ (Kaspersky Lab ZAO) C:\Users\StB\Desktop\KVRT.exe
2017-05-17 19:30 - 2017-05-17 19:31 - 00030506 _____ C:\Users\StB\Desktop\Addition.txt
2017-05-17 19:16 - 2017-05-25 20:07 - 00022440 _____ C:\Users\StB\Desktop\FRST.txt
2017-05-17 19:16 - 2017-05-17 19:16 - 00000000 ____D C:\FRST
2017-05-17 19:13 - 2017-05-25 20:07 - 02429952 _____ (Farbar) C:\Users\StB\Desktop\FRST64.exe
2017-05-17 17:30 - 2017-05-17 17:30 - 00002862 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-05-17 17:30 - 2017-05-17 17:30 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-05-17 17:30 - 2017-05-17 17:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-05-17 17:29 - 2017-05-17 17:30 - 00000000 ____D C:\Program Files\CCleaner
2017-05-16 21:19 - 2017-05-16 21:19 - 00000000 ____D C:\Users\StB\Downloads\GoogleChromePortable
2017-05-16 21:18 - 2017-05-16 21:18 - 00000000 ____D C:\GoogleChromePortable
2017-05-16 20:34 - 2017-05-17 19:08 - 00000000 ____D C:\Program Files\trend micro
2017-05-16 20:34 - 2017-05-16 20:34 - 01222144 _____ C:\Users\StB\Desktop\RSITx64.exe
2017-05-16 20:34 - 2017-05-16 20:34 - 00000000 ____D C:\rsit
2017-05-16 19:50 - 2017-05-09 19:48 - 00400456 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-05-16 19:27 - 2017-05-16 19:27 - 05515715 _____ C:\Users\StB\Downloads\_Digital Navy - P 26.rar
2017-05-16 19:27 - 2017-05-16 19:27 - 04338700 _____ C:\Users\StB\Downloads\_ABC 1976-21 - Samohybny kanon SU-152.rar
2017-05-16 19:27 - 2017-05-16 19:27 - 01493216 _____ C:\Users\StB\Downloads\_Paper-Replika - F-15E Tiger Meet 2005.rar
2017-05-16 17:21 - 2017-05-16 19:37 - 00000000 ____D C:\Terward
2017-05-15 21:01 - 2017-05-15 21:01 - 03661931 _____ C:\Users\StB\Downloads\_WHM 1625 - F-86D Sabre.rar
2017-05-15 21:01 - 2017-05-15 21:01 - 01863139 _____ C:\Users\StB\Downloads\_ABC 1976-23 - Hazedlo Delta.rar
2017-05-15 21:01 - 2017-05-15 21:01 - 01280705 _____ C:\Users\StB\Downloads\_IAFM - F-84.rar
2017-05-15 19:53 - 2017-05-15 19:53 - 00643788 _____ C:\Users\StB\Downloads\DVORCE.rar
2017-05-14 19:38 - 2017-05-14 19:39 - 01702743 _____ C:\Users\StB\Downloads\_ABC 1976-16 - Slon.rar
2017-05-14 17:13 - 2017-05-14 17:13 - 00001064 _____ C:\Users\Public\Desktop\HiSuite.lnk
2017-05-14 17:13 - 2017-05-14 17:13 - 00000000 ____D C:\Users\StB\Documents\HiSuite
2017-05-14 17:13 - 2017-05-14 17:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite
2017-05-14 17:12 - 2017-05-14 17:13 - 00000000 ____D C:\Program Files (x86)\HiSuite
2017-05-14 17:12 - 2017-04-11 04:17 - 02152176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFUpdate_01009.dll
2017-05-14 17:12 - 2017-04-11 04:17 - 01721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2017-05-14 17:12 - 2017-04-11 04:17 - 01721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfCoInstaller01009.dll
2017-05-14 17:12 - 2017-04-11 04:17 - 01002728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winusbcoinstaller2.dll
2017-05-14 17:12 - 2017-04-11 04:17 - 00287232 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\hw_quusbnet.sys
2017-05-14 17:12 - 2017-04-11 04:17 - 00226560 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\hw_quusbmdm.sys
2017-05-14 17:12 - 2017-04-11 04:17 - 00127360 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\hw_cdcacm.sys
2017-05-14 17:12 - 2017-04-11 04:17 - 00116864 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\hw_usbdev.sys
2017-05-14 17:12 - 2017-04-11 04:17 - 00018944 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_usbccgpfilter.sys
2017-05-14 15:56 - 2017-05-14 17:17 - 00000000 ____D C:\Users\StB\AppData\Local\Hisuite
2017-05-14 15:34 - 2017-05-14 15:34 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-05-14 15:34 - 2017-05-14 15:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-05-14 15:21 - 2017-05-14 15:27 - 17403694 _____ C:\Users\StB\Downloads\FreeRapid-0.9u4.zip
2017-05-13 22:16 - 2017-05-13 22:17 - 03630976 _____ C:\Users\StB\Downloads\_YAMAHA - YZ450FM.rar
2017-05-13 22:16 - 2017-05-13 22:17 - 01912096 _____ C:\Users\StB\Downloads\_J. Lätzsch - Trabant P 50 Cabriolet.rar
2017-05-13 22:16 - 2017-05-13 22:16 - 01048118 _____ C:\Users\StB\Downloads\_ABC 1976-14 - Zebra.rar
2017-05-13 14:28 - 2017-05-13 22:26 - 00974072 _____ (Microsoft Corporation) C:\Users\StB\Downloads\windowsserver2003-kb4012598-x64-custom-enu_f24d8723f246145524b9030e4752c96430981211 (1).exe
2017-05-13 14:28 - 2017-05-13 22:26 - 00681712 _____ (Microsoft Corporation) C:\Users\StB\Downloads\windowsxp-kb4012598-x86-embedded-custom-enu_8f2c266f83a7e1b100ddb9acd4a6a3ab5ecd4059 (1).exe
2017-05-13 14:27 - 2017-05-13 14:27 - 00681200 _____ (Microsoft Corporation) C:\Users\StB\Downloads\windowsxp-kb4012598-x86-custom-enu_eceb7d5023bbb23c0dc633e46b9c2f14fa6ee9dd (2).exe
2017-05-13 12:54 - 2017-05-13 12:55 - 00974072 _____ (Microsoft Corporation) C:\Users\StB\Downloads\windowsserver2003-kb4012598-x64-custom-enu_f24d8723f246145524b9030e4752c96430981211.exe
2017-05-13 12:54 - 2017-05-13 12:55 - 00681712 _____ (Microsoft Corporation) C:\Users\StB\Downloads\windowsxp-kb4012598-x86-embedded-custom-enu_8f2c266f83a7e1b100ddb9acd4a6a3ab5ecd4059.exe
2017-05-13 12:54 - 2017-05-13 12:55 - 00681200 _____ (Microsoft Corporation) C:\Users\StB\Downloads\windowsxp-kb4012598-x86-custom-enu_eceb7d5023bbb23c0dc633e46b9c2f14fa6ee9dd.exe
2017-05-13 10:15 - 2017-05-13 10:15 - 00000000 ____D C:\Users\StB\AppData\Roaming\Google
2017-05-12 18:28 - 2017-05-12 18:28 - 04275939 _____ C:\Users\StB\Downloads\_ABC 1976-11 - Severozapadni Morava.rar
2017-05-12 16:22 - 2017-05-12 16:22 - 00738368 _____ (Oracle Corporation) C:\Users\StB\Downloads\JavaSetup8u131 (1).exe
2017-05-12 16:20 - 2017-05-12 16:20 - 01157656 _____ (Oracle Corporation) C:\Users\StB\Downloads\JavaUninstallTool.exe
2017-05-11 20:58 - 2017-05-11 20:58 - 02000632 _____ C:\Users\StB\Downloads\_ABC 1976-09 - GRZPO.rar
2017-05-11 20:57 - 2017-05-11 20:58 - 04082830 _____ C:\Users\StB\Downloads\_MB - Caledonia.rar
2017-05-11 20:38 - 2017-05-11 20:42 - 12226657 _____ C:\Users\StB\Downloads\Su-76.rar
2017-05-11 19:01 - 2017-05-11 19:01 - 00738368 _____ (Oracle Corporation) C:\Users\StB\Downloads\JavaSetup8u131.exe
2017-05-11 18:53 - 2017-05-11 18:58 - 20091007 _____ C:\Users\StB\Downloads\_Avangards 03 - McDonnell Douglas F-15 Eagle.rar
2017-05-11 17:34 - 2017-05-11 17:37 - 10792252 _____ C:\Users\StB\Downloads\_Halinski KA 1994-01 - F-16C Fighting Falcon.rar
2017-05-11 17:33 - 2017-05-11 17:34 - 08490534 _____ C:\Users\StB\Downloads\OVK LP,LOVK 80,120,150,200.pdf
2017-05-10 20:25 - 2017-05-10 20:25 - 04075159 _____ () C:\Users\StB\Downloads\liteloader-installer-1.11.2-00-SNAPSHOT.exe
2017-05-10 20:10 - 2017-05-10 20:10 - 00000279 _____ C:\Users\StB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kôš (3).lnk
2017-05-10 19:39 - 2017-05-10 19:39 - 01115902 _____ C:\Users\StB\Downloads\_ABC 1976-08 - Papousek (1).rar
2017-05-10 19:38 - 2017-05-10 19:38 - 02699096 _____ C:\Users\StB\Downloads\_Fiddlers Green - Sabre Jet F-86.rar
2017-05-10 19:38 - 2017-05-10 19:38 - 02379715 _____ C:\Users\StB\Downloads\_ABC 1976-08 - Figurka Sporilek.rar
2017-05-10 19:38 - 2017-05-10 19:38 - 01279980 _____ C:\Users\StB\Downloads\_ABC 1976-08 - Kluzak ABC.rar
2017-05-10 19:38 - 2017-05-10 19:38 - 01115902 _____ C:\Users\StB\Downloads\_ABC 1976-08 - Papousek.rar
2017-05-10 19:38 - 2017-05-10 19:38 - 00670019 _____ C:\Users\StB\Downloads\_Papel Mod 02 - Gurgel X12-TR.rar
2017-05-09 21:37 - 2017-04-28 02:51 - 20505600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-05-09 21:37 - 2017-04-19 08:12 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-05-09 21:37 - 2017-04-19 07:34 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-05-09 21:36 - 2017-04-28 03:38 - 01411128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-05-09 21:36 - 2017-04-28 03:19 - 01839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-05-09 21:36 - 2017-04-28 03:12 - 01604312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-05-09 21:36 - 2017-04-28 03:12 - 00543640 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-05-09 21:36 - 2017-04-28 03:11 - 02158544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-05-09 21:36 - 2017-04-28 03:09 - 01557288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2017-05-09 21:36 - 2017-04-28 03:08 - 08320920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-05-09 21:36 - 2017-04-28 03:08 - 02399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-05-09 21:36 - 2017-04-28 03:08 - 02330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-05-09 21:36 - 2017-04-28 03:07 - 06759512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-05-09 21:36 - 2017-04-28 03:07 - 00988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-05-09 21:36 - 2017-04-28 03:00 - 02444192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-05-09 21:36 - 2017-04-28 02:59 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-05-09 21:36 - 2017-04-28 02:59 - 02635336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-05-09 21:36 - 2017-04-28 02:59 - 00388000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-05-09 21:36 - 2017-04-28 02:59 - 00207264 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-05-09 21:36 - 2017-04-28 02:57 - 03116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-05-09 21:36 - 2017-04-28 02:56 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-09 21:36 - 2017-04-28 02:55 - 21353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-05-09 21:36 - 2017-04-28 02:55 - 01325456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-05-09 21:36 - 2017-04-28 02:52 - 02957824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-05-09 21:36 - 2017-04-28 02:46 - 19335168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-05-09 21:36 - 2017-04-28 02:40 - 11870208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-05-09 21:36 - 2017-04-28 02:40 - 06292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-05-09 21:36 - 2017-04-28 02:40 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-05-09 21:36 - 2017-04-28 02:39 - 03655680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-05-09 21:36 - 2017-04-28 02:26 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-05-09 21:36 - 2017-04-28 02:15 - 03672064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-05-09 21:36 - 2017-04-28 02:11 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-05-09 21:36 - 2017-04-28 02:05 - 01075712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-05-09 21:36 - 2017-04-28 02:04 - 23681024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-05-09 21:36 - 2017-04-28 02:00 - 08244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-05-09 21:36 - 2017-04-28 01:58 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-05-09 21:36 - 2017-04-28 01:58 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-05-09 21:36 - 2017-04-28 01:57 - 04730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-05-09 21:36 - 2017-04-28 01:57 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-05-09 21:36 - 2017-04-28 01:57 - 01803264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-05-09 21:36 - 2017-04-19 08:11 - 04446208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-09 21:36 - 2017-04-19 08:10 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-05-09 21:36 - 2017-04-19 08:10 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-05-09 21:36 - 2017-04-19 08:08 - 01103872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-05-09 21:36 - 2017-04-19 08:06 - 02651648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-05-09 21:36 - 2017-04-19 08:04 - 01356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-05-09 21:36 - 2017-04-19 08:04 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-09 21:36 - 2017-04-19 07:59 - 02435584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-05-09 21:36 - 2017-04-19 07:58 - 20374424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-05-09 21:36 - 2017-04-19 07:29 - 02298880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-05-09 21:36 - 2017-04-14 02:35 - 04848440 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-05-09 21:36 - 2017-04-14 02:35 - 00741784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-09 21:36 - 2017-04-14 02:33 - 02085280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-05-09 21:36 - 2017-04-14 02:32 - 01320352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-05-09 21:36 - 2017-04-14 02:25 - 01854880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-05-09 21:36 - 2017-04-14 01:43 - 04469832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-05-09 21:36 - 2017-04-14 01:39 - 07931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-05-09 21:36 - 2017-04-14 01:39 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaserver.exe
2017-05-09 21:36 - 2017-04-14 01:39 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-05-09 21:36 - 2017-04-14 01:37 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2017-05-09 21:36 - 2017-04-14 01:35 - 01433600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-09 21:36 - 2017-04-14 01:33 - 01269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-05-09 21:36 - 2017-04-14 01:31 - 01611776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-05-09 21:36 - 2017-04-14 01:29 - 02499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-05-09 21:36 - 2017-04-14 01:29 - 01583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-05-09 21:36 - 2017-04-14 01:29 - 01295872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-05-09 21:36 - 2017-04-14 01:28 - 02443776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-05-09 21:36 - 2017-04-14 01:26 - 01257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-05-09 21:36 - 2017-04-14 01:24 - 01628160 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-05-09 21:36 - 2017-04-14 01:21 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-05-09 21:36 - 2017-04-14 01:18 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaserver.exe
2017-05-09 21:36 - 2017-04-14 01:18 - 00362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-05-09 21:36 - 2017-04-14 01:08 - 01463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-05-09 21:35 - 2017-04-28 03:19 - 00605936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-05-09 21:35 - 2017-04-28 03:18 - 02259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-05-09 21:35 - 2017-04-28 03:16 - 00599576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2017-05-09 21:35 - 2017-04-28 03:08 - 00775824 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-05-09 21:35 - 2017-04-28 03:06 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-09 21:35 - 2017-04-28 03:06 - 00708712 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2017-05-09 21:35 - 2017-04-28 03:05 - 00923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-05-09 21:35 - 2017-04-28 03:04 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-05-09 21:35 - 2017-04-28 03:03 - 00667040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-05-09 21:35 - 2017-04-28 02:59 - 00027040 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2017-05-09 21:35 - 2017-04-28 02:58 - 01852776 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2017-05-09 21:35 - 2017-04-28 02:58 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-05-09 21:35 - 2017-04-28 02:53 - 00387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-05-09 21:35 - 2017-04-28 02:52 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-05-09 21:35 - 2017-04-28 02:49 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2017-05-09 21:35 - 2017-04-28 02:46 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-05-09 21:35 - 2017-04-28 02:45 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-05-09 21:35 - 2017-04-28 02:44 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-05-09 21:35 - 2017-04-28 02:44 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-05-09 21:35 - 2017-04-28 02:42 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-05-09 21:35 - 2017-04-28 02:42 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-05-09 21:35 - 2017-04-28 02:42 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-05-09 21:35 - 2017-04-28 02:41 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-05-09 21:35 - 2017-04-28 02:40 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-05-09 21:35 - 2017-04-28 02:40 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-05-09 21:35 - 2017-04-28 02:39 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-05-09 21:35 - 2017-04-28 02:39 - 02859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-05-09 21:35 - 2017-04-28 02:38 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-05-09 21:35 - 2017-04-28 02:37 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-05-09 21:35 - 2017-04-28 02:37 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-05-09 21:35 - 2017-04-28 02:34 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-05-09 21:35 - 2017-04-28 02:33 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-05-09 21:35 - 2017-04-28 02:15 - 01051648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-05-09 21:35 - 2017-04-28 02:11 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2017-05-09 21:35 - 2017-04-28 02:09 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-05-09 21:35 - 2017-04-28 02:08 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-05-09 21:35 - 2017-04-28 02:08 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-05-09 21:35 - 2017-04-28 02:07 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-05-09 21:35 - 2017-04-28 02:06 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-05-09 21:35 - 2017-04-28 02:06 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-05-09 21:35 - 2017-04-28 02:06 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-05-09 21:35 - 2017-04-28 02:05 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-05-09 21:35 - 2017-04-28 02:04 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-09 21:35 - 2017-04-28 02:04 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-05-09 21:35 - 2017-04-28 02:04 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-09 21:35 - 2017-04-28 02:03 - 01085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-05-09 21:35 - 2017-04-28 02:03 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-05-09 21:35 - 2017-04-28 02:03 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-09 21:35 - 2017-04-28 02:03 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-05-09 21:35 - 2017-04-28 02:01 - 02077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-05-09 21:35 - 2017-04-28 02:01 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-09 21:35 - 2017-04-28 01:59 - 04396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-09 21:35 - 2017-04-28 01:59 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-05-09 21:35 - 2017-04-28 01:59 - 02056192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-05-09 21:35 - 2017-04-28 01:59 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-05-09 21:35 - 2017-04-28 01:59 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-05-09 21:35 - 2017-04-28 01:57 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-05-09 21:35 - 2017-04-28 01:54 - 00985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-05-09 21:35 - 2017-04-28 01:54 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-05-09 21:35 - 2017-04-28 01:54 - 00722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-05-09 21:35 - 2017-04-28 01:54 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-05-09 21:35 - 2017-04-28 01:52 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2017-05-09 21:35 - 2017-04-19 09:07 - 00712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-05-09 21:35 - 2017-04-19 09:06 - 00651680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-09 21:35 - 2017-04-19 09:04 - 00142240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2017-05-09 21:35 - 2017-04-19 09:02 - 00716440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2017-05-09 21:35 - 2017-04-19 08:19 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-05-09 21:35 - 2017-04-19 08:18 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2017-05-09 21:35 - 2017-04-19 08:16 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2017-05-09 21:35 - 2017-04-19 08:15 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2017-05-09 21:35 - 2017-04-19 08:14 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2017-05-09 21:35 - 2017-04-19 08:13 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-05-09 21:35 - 2017-04-19 08:13 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-05-09 21:35 - 2017-04-19 08:12 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-05-09 21:35 - 2017-04-19 08:12 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2017-05-09 21:35 - 2017-04-19 08:11 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-05-09 21:35 - 2017-04-19 08:10 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2017-05-09 21:35 - 2017-04-19 08:08 - 00681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-05-09 21:35 - 2017-04-19 08:07 - 01242624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-05-09 21:35 - 2017-04-19 08:07 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-05-09 21:35 - 2017-04-19 08:02 - 00559000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-05-09 21:35 - 2017-04-19 08:01 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
2017-05-09 21:35 - 2017-04-19 07:59 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-05-09 21:35 - 2017-04-19 07:37 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2017-05-09 21:35 - 2017-04-19 07:36 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-05-09 21:35 - 2017-04-19 07:35 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-05-09 21:35 - 2017-04-19 07:34 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-05-09 21:35 - 2017-04-19 07:34 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2017-05-09 21:35 - 2017-04-19 07:32 - 01285120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2017-05-09 21:35 - 2017-04-19 07:30 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-05-09 21:35 - 2017-04-14 02:35 - 00673112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2017-05-09 21:35 - 2017-04-14 02:30 - 00105456 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2017-05-09 21:35 - 2017-04-14 02:25 - 01452960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-05-09 21:35 - 2017-04-14 01:43 - 00523296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2017-05-09 21:35 - 2017-04-14 01:41 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2017-05-09 21:35 - 2017-04-14 01:41 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-05-09 21:35 - 2017-04-14 01:40 - 00095584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2017-05-09 21:35 - 2017-04-14 01:39 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-05-09 21:35 - 2017-04-14 01:39 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2017-05-09 21:35 - 2017-04-14 01:38 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2017-05-09 21:35 - 2017-04-14 01:38 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-05-09 21:35 - 2017-04-14 01:37 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-05-09 21:35 - 2017-04-14 01:37 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2017-05-09 21:35 - 2017-04-14 01:37 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-05-09 21:35 - 2017-04-14 01:36 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-05-09 21:35 - 2017-04-14 01:36 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-05-09 21:35 - 2017-04-14 01:35 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2017-05-09 21:35 - 2017-04-14 01:35 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-05-09 21:35 - 2017-04-14 01:34 - 01468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-05-09 21:35 - 2017-04-14 01:34 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2017-05-09 21:35 - 2017-04-14 01:33 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-05-09 21:35 - 2017-04-14 01:31 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-05-09 21:35 - 2017-04-14 01:29 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-05-09 21:35 - 2017-04-14 01:29 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-05-09 21:35 - 2017-04-14 01:25 - 00750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-05-09 21:35 - 2017-04-14 01:21 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-05-09 21:35 - 2017-04-14 01:15 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2017-05-09 21:35 - 2017-04-14 01:15 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-05-09 21:35 - 2017-04-14 01:13 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2017-05-09 21:35 - 2017-04-14 01:13 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-05-09 21:35 - 2017-04-14 01:06 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-05-09 21:35 - 2017-04-14 01:04 - 00392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-05-09 21:35 - 2017-04-14 01:01 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-05-09 21:34 - 2017-04-28 02:52 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-05-09 21:34 - 2017-04-28 02:49 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-05-09 21:34 - 2017-04-28 02:46 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2017-05-09 21:34 - 2017-04-28 02:42 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-05-09 21:34 - 2017-04-28 02:40 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-05-09 21:34 - 2017-04-28 02:38 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-05-09 21:34 - 2017-04-28 02:14 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-09 21:34 - 2017-04-28 02:11 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-05-09 21:34 - 2017-04-28 02:09 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-05-09 21:34 - 2017-04-28 02:08 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-05-09 21:34 - 2017-04-28 02:06 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-05-09 21:34 - 2017-04-28 02:03 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-05-09 21:34 - 2017-04-28 02:02 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-05-09 21:04 - 2017-05-09 21:04 - 00300348 _____ C:\Users\StB\Downloads\VUB ucty.pdf
2017-05-08 18:37 - 2017-05-08 18:37 - 02984042 _____ C:\Users\StB\Downloads\_KEL 070 - Cance Vought F4U-4 Corsaire.rar
2017-05-08 18:37 - 2017-05-08 18:37 - 01630937 _____ C:\Users\StB\Downloads\_Saturn - Suzuki SX4 WRC.rar
2017-05-08 18:36 - 2017-05-08 18:37 - 02458220 _____ C:\Users\StB\Downloads\_Byairclassique - DH-4A-G-EAMU kit Cover.rar
2017-05-08 18:36 - 2017-05-08 18:36 - 03171145 _____ C:\Users\StB\Downloads\_Levsha 2002-06 - 03 (1).rar
2017-05-07 21:09 - 2017-05-07 21:09 - 00000000 ____D C:\Users\StB\.TeamSpeak 3
2017-05-07 21:09 - 2017-05-07 21:09 - 00000000 ____D C:\Users\StB\.QtWebEngineProcess
2017-05-07 10:55 - 2017-05-07 10:56 - 03653107 _____ C:\Users\StB\Downloads\_ABC 1976-02 - Slevarna.rar
2017-05-07 10:55 - 2017-05-07 10:56 - 03171145 _____ C:\Users\StB\Downloads\_Levsha 2002-06 - 03.rar
2017-05-07 10:55 - 2017-05-07 10:56 - 02863410 _____ C:\Users\StB\Downloads\_RocketmanTan - Graf Zeppelin-class Aircraft Carrier Flugzeugträger A.rar
2017-05-07 10:55 - 2017-05-07 10:55 - 02651758 _____ C:\Users\StB\Downloads\_Models n` Moore - USS Marrietta.rar
2017-05-07 10:55 - 2017-05-07 10:55 - 00494379 _____ C:\Users\StB\Downloads\_Pavel Styl - Hřbitovní kostel ve Žďáru nad Sázavou.rar
2017-05-07 10:49 - 2017-05-07 10:49 - 03802898 _____ C:\Users\StB\Downloads\buildcraft-7.99.1.jar
2017-05-06 21:10 - 2017-05-06 21:10 - 02634775 _____ C:\Users\StB\Downloads\extrautils2-1.11.2-1.3.3.jar
2017-05-06 21:05 - 2017-05-06 21:06 - 00167657 _____ C:\Users\StB\Downloads\Aquaculture-1.11.2-1.5.0.33.jar
2017-05-05 22:44 - 2017-05-05 22:45 - 03749583 _____ C:\Users\StB\Downloads\_Fiddlers Green - P-26 Pea Shooter.rar
2017-05-05 22:44 - 2017-05-05 22:45 - 02988431 _____ C:\Users\StB\Downloads\_Hitoshi Shinozaki - Peugeot 207.rar
2017-05-05 22:44 - 2017-05-05 22:45 - 01278536 _____ C:\Users\StB\Downloads\_Thai Paperwork 003 - Baby A6M5 Zero.rar
2017-05-05 19:50 - 2017-05-05 19:50 - 00003160 _____ C:\WINDOWS\System32\Tasks\StartCN
2017-05-05 19:50 - 2017-05-05 19:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
2017-05-04 18:52 - 2017-05-04 18:52 - 04886062 _____ C:\Users\StB\Downloads\_ABC 1975-21 - Stredni Evropa v Druhohorach.rar
2017-05-04 18:52 - 2017-05-04 18:52 - 01676729 _____ C:\Users\StB\Downloads\_Pavel Styl - Melkovice.rar
2017-05-04 18:48 - 2017-05-04 18:48 - 10322968 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdvlk64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 08480280 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdvlk32.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2017-05-04 18:48 - 2017-05-04 18:48 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2017-05-04 18:48 - 2017-05-04 18:48 - 02536984 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 02199064 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 01041432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 01041432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00864792 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00794624 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2017-05-04 18:48 - 2017-05-04 18:48 - 00794624 _____ C:\WINDOWS\system32\atiapfxx.blb
2017-05-04 18:48 - 2017-05-04 18:48 - 00777744 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2017-05-04 18:48 - 2017-05-04 18:48 - 00696856 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00574464 _____ C:\WINDOWS\system32\amdmiracast.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00552472 _____ C:\WINDOWS\system32\dgtrayicon.exe
2017-05-04 18:48 - 2017-05-04 18:48 - 00552464 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2017-05-04 18:48 - 2017-05-04 18:48 - 00547344 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00531984 _____ C:\WINDOWS\system32\GameManager64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00515096 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00484368 _____ C:\WINDOWS\system32\atieah64.exe
2017-05-04 18:48 - 2017-05-04 18:48 - 00478744 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00467992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00411672 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2017-05-04 18:48 - 2017-05-04 18:48 - 00366104 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00360984 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00334864 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2017-05-04 18:48 - 2017-05-04 18:48 - 00279064 _____ C:\WINDOWS\system32\clinfo.exe
2017-05-04 18:48 - 2017-05-04 18:48 - 00277008 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00245784 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00242704 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00204312 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00196840 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00192024 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00170520 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00168464 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00165064 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00157360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00151576 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00149096 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00139736 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00135696 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00134168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00131936 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00131936 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00123416 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00121880 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00116728 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00115728 _____ C:\WINDOWS\system32\atidxx64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00113176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00112664 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00103176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00103176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00102424 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00099864 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00092184 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00075800 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00069656 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00045592 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00043032 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00029720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00029720 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2017-05-04 18:48 - 2017-05-04 18:48 - 00000144 _____ C:\WINDOWS\SysWOW64\amd-vulkan32.json
2017-05-04 18:48 - 2017-05-04 18:48 - 00000144 _____ C:\WINDOWS\system32\amd-vulkan64.json
2017-05-04 18:46 - 2017-05-04 18:46 - 00000000 ____D C:\Users\StB\AppData\Roaming\Mozilla
2017-05-03 19:42 - 2017-05-03 19:42 - 00000000 _____ C:\WINDOWS\SysWOW64\22
2017-05-03 19:42 - 2017-05-03 19:42 - 00000000 _____ C:\WINDOWS\SysWOW64\1111111
2017-05-03 18:42 - 2017-05-03 18:43 - 03831318 _____ C:\Users\StB\Downloads\_3 Krapki - Chance-Vought F4U-1D Corsair.rar
2017-05-03 18:42 - 2017-05-03 18:43 - 02666676 _____ C:\Users\StB\Downloads\_ABC 1975-19 - MPR Renesancni radnice.rar
2017-05-03 18:42 - 2017-05-03 18:43 - 02088509 _____ C:\Users\StB\Downloads\_ABC 1975-19 - Kosmodrom (1).rar
2017-05-03 18:42 - 2017-05-03 18:42 - 00979562 _____ C:\Users\StB\Downloads\_Digital Navy - Admirable.rar
2017-05-03 18:40 - 2017-05-03 18:43 - 56524693 _____ C:\Users\StB\Downloads\49. Mars-700.pdf
2017-05-02 21:26 - 2017-05-02 21:26 - 02088509 _____ C:\Users\StB\Downloads\_ABC 1975-19 - Kosmodrom.rar
2017-05-02 18:35 - 2017-05-02 18:35 - 10177993 _____ C:\Users\StB\Downloads\ViesCraft-1.11.2-4.24.0.jar
2017-05-01 19:25 - 2017-05-01 19:25 - 03881778 _____ C:\Users\StB\Downloads\_ABC 1975-16 - Zastava 1100.rar
2017-05-01 19:25 - 2017-05-01 19:25 - 01906149 _____ C:\Users\StB\Downloads\_Paper-replika - F-15E Idolmaster Chihaya Kisaragi.rar
2017-05-01 19:25 - 2017-05-01 19:25 - 01212120 _____ C:\Users\StB\Downloads\_Model Cardboard 2002 - Kawasaki Ki-61 Hien.rar
2017-04-30 12:42 - 2017-04-30 12:42 - 00000000 ____D C:\Users\Public\Documents\Pyro Studios
2017-04-30 12:37 - 2017-04-30 12:46 - 00000000 ____D C:\Users\StB\Documents\Pyro Studios
2017-04-30 12:37 - 2017-04-30 12:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Commandos - Behind Enemy Lines [GOG.com]
2017-04-30 09:42 - 2017-04-30 09:42 - 04208807 _____ C:\Users\StB\Downloads\_WHM 1240 - Braunschweig.rar
2017-04-30 09:42 - 2017-04-30 09:42 - 03576418 _____ C:\Users\StB\Downloads\_ABC 1975-15 - Jihocesky statek ze Sobeslavska.rar
2017-04-30 09:42 - 2017-04-30 09:42 - 02164056 _____ C:\Users\StB\Downloads\_Peri Paperhobby - AVIA B 71.rar
2017-04-29 22:06 - 2017-04-29 22:09 - 08377122 _____ C:\Users\StB\Downloads\Zastava1100 ABC 1975-16.rar
2017-04-29 19:01 - 2017-04-29 19:01 - 06752384 _____ (ESET spol. s r.o.) C:\Users\StB\Downloads\ESETOnlineScanner_SKY.exe
2017-04-28 20:01 - 2017-04-28 20:01 - 00000000 _____ C:\Users\StB\Downloads\1493402508970.DownloadFile
2017-04-28 18:51 - 2017-04-28 18:52 - 08436976 _____ C:\Users\StB\Downloads\_Kin Shinozaki 15 - 1996 Suzuki Wagon R Shevrolet Astro.rar
2017-04-28 18:51 - 2017-04-28 18:52 - 03470304 _____ C:\Users\StB\Downloads\_YAMAHA - SR400.rar
2017-04-27 18:34 - 2017-05-03 19:40 - 00000000 _____ C:\WINDOWS\SysWOW64\11
2017-04-26 17:00 - 2017-05-04 18:39 - 00000000 ____D C:\WINDOWS\psgo
2017-04-25 19:40 - 2017-04-25 19:40 - 02409243 _____ C:\Users\StB\Downloads\_ABC 2007-14 - Remorker.rar
2017-04-25 17:53 - 2017-04-25 17:53 - 00453649 _____ C:\Users\StB\Downloads\Zmluva - text (3).pdf
2017-04-25 17:39 - 2017-05-05 19:46 - 00000000 ____D C:\Users\StB\AppData\LocalLow\AMD
2017-04-25 16:37 - 2017-04-25 16:37 - 00000000 ____D C:\Users\StB\AppData\Local\GOG.com

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-05-25 20:07 - 2017-02-25 22:13 - 00079946 _____ C:\WINDOWS\ZAM.krnl.trace
2017-05-25 20:07 - 2017-02-25 22:13 - 00049940 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2017-05-25 20:04 - 2016-11-02 19:30 - 00000000 ____D C:\AdwCleaner
2017-05-25 20:04 - 2015-12-21 14:59 - 00000000 ____D C:\Program Files (x86)\Steam
2017-05-25 19:44 - 2015-12-21 17:06 - 00000000 ___RD C:\Users\StB\OneDrive
2017-05-25 19:42 - 2017-04-06 20:57 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-05-25 19:42 - 2017-04-06 20:33 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2017-05-25 19:42 - 2017-03-18 13:40 - 01048576 _____ C:\WINDOWS\system32\config\BBI
2017-05-25 19:35 - 2017-04-06 20:57 - 00004204 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{C59446D8-1DF7-40BE-B773-BBC147000FD7}
2017-05-25 19:06 - 2017-04-06 20:31 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-05-25 18:12 - 2015-12-21 18:28 - 00000000 ____D C:\Users\StB\Documents\Súbory programu Outlook
2017-05-25 17:12 - 2017-03-07 18:38 - 00000000 _____ C:\WINDOWS\SysWOW64\1
2017-05-25 17:06 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-05-25 17:06 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-05-25 16:57 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-05-24 19:23 - 2016-12-26 11:23 - 00000000 ____D C:\VYDAVKY
2017-05-24 19:19 - 2015-12-25 18:43 - 00000000 ____D C:\Users\StB\AppData\Roaming\.minecraft
2017-05-23 13:23 - 2015-12-21 19:23 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-05-23 13:21 - 2015-12-21 19:23 - 132223576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-05-23 13:20 - 2015-12-21 19:49 - 00000000 ____D C:\Users\StB\AppData\Roaming\vlc
2017-05-23 13:18 - 2016-05-28 23:17 - 00000000 ____D C:\Program Files (x86)\GalaxyClient
2017-05-21 23:18 - 2015-12-31 21:45 - 00000000 ____D C:\Users\StB\Documents\Dokumenty vlastne
2017-05-21 09:29 - 2015-12-24 20:37 - 00680960 ___SH C:\Users\StB\Desktop\Thumbs.db
2017-05-18 20:51 - 2017-04-06 20:35 - 00000000 ____D C:\Users\StB
2017-05-18 19:45 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF
2017-05-17 21:38 - 2016-08-29 10:17 - 00000000 ____D C:\Users\StB\AppData\Local\Downloaded Installations
2017-05-17 21:38 - 2015-12-21 17:00 - 00000000 ____D C:\Users\StB\AppData\Local\Packages
2017-05-17 20:21 - 2017-04-06 20:57 - 00003454 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-05-17 20:21 - 2017-04-06 20:57 - 00003330 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-05-17 19:58 - 2015-12-22 08:32 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-05-17 19:35 - 2017-04-07 17:21 - 00000000 ____D C:\Users\StB\AppData\Local\Deployment
2017-05-17 19:35 - 2017-04-06 20:57 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2017-05-17 19:34 - 2016-06-07 20:43 - 00001143 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-05-17 17:31 - 2017-04-06 19:33 - 00000000 ___DC C:\WINDOWS\Panther
2017-05-17 17:31 - 2016-03-04 18:26 - 00000000 ____D C:\Users\StB\AppData\Roaming\TS3Client
2017-05-17 17:31 - 2015-12-21 17:26 - 00000000 ____D C:\Users\StB\AppData\Roaming\XnView
2017-05-16 20:26 - 2017-02-25 21:49 - 14554768 _____ (Copyright 2017.) C:\Users\StB\Downloads\Zemana.AntiMalware.Portable.exe
2017-05-16 20:11 - 2016-02-20 13:06 - 00100864 ___SH C:\Users\StB\Downloads\Thumbs.db
2017-05-16 19:51 - 2017-04-06 20:57 - 00004038 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1458763367
2017-05-16 19:51 - 2017-04-06 20:57 - 00003994 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-05-16 19:51 - 2016-11-03 17:58 - 00001967 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2017-05-16 19:51 - 2016-03-23 22:02 - 00001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-05-16 19:51 - 2016-02-15 19:17 - 00001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2017-05-16 17:39 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-05-16 17:38 - 2015-12-21 17:37 - 00000000 ____D C:\Program Files\Microsoft Office 15
2017-05-16 17:20 - 2017-03-18 22:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-05-14 20:07 - 2015-12-22 22:22 - 00000000 ____D C:\FFOutput
2017-05-14 17:34 - 2017-04-06 20:55 - 01420426 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-14 17:34 - 2016-09-30 19:24 - 00361924 _____ C:\WINDOWS\system32\perfh01B.dat
2017-05-14 17:34 - 2016-09-30 19:24 - 00112524 _____ C:\WINDOWS\system32\perfc01B.dat
2017-05-14 15:36 - 2015-12-21 13:49 - 00000000 ____D C:\ProgramData\Oracle
2017-05-14 15:34 - 2015-12-21 13:49 - 00000000 ____D C:\Program Files (x86)\Java
2017-05-14 13:18 - 2015-12-21 15:59 - 00158880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-05-14 13:00 - 2016-01-01 19:26 - 00000000 ____D C:\Users\StB\AppData\Local\Windows Live
2017-05-14 13:00 - 2015-12-22 21:57 - 00000000 ____D C:\Users\StB\AppData\Roaming\avidemux
2017-05-13 22:32 - 2016-04-23 19:02 - 00000000 ____D C:\Users\StB\AppData\Local\ElevatedDiagnostics
2017-05-11 16:57 - 2017-03-15 21:24 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-05-11 16:57 - 2015-12-21 15:17 - 00000000 ____D C:\ProgramData\Skype
2017-05-11 16:52 - 2017-04-13 19:36 - 00000000 ____D C:\Users\StB\AppData\Local\IE Tab
2017-05-10 22:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\rescache
2017-05-10 20:18 - 2016-05-27 11:11 - 00000000 ____D C:\VIDEO - DOMACE
2017-05-10 19:31 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-05-09 22:15 - 2015-12-21 17:00 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-05-09 22:12 - 2017-04-06 20:31 - 00413720 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-05-09 22:11 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-05-09 22:11 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-05-09 22:11 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-05-09 22:11 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-05-09 22:11 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-05-09 22:11 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-05-09 22:11 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-05-09 22:11 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Provisioning
2017-05-09 22:11 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-05-09 22:11 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-05-09 22:11 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-05-09 22:11 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-05-09 20:25 - 2017-03-18 13:40 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-05-09 19:48 - 2015-12-21 15:59 - 00569192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-05-09 19:48 - 2015-12-21 15:59 - 00339696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-05-09 19:48 - 2015-12-21 15:59 - 00128648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-05-09 19:48 - 2015-12-21 15:59 - 00101152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-05-09 19:48 - 2015-12-21 15:59 - 00075704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-05-09 19:48 - 2015-12-21 15:59 - 00038296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-05-09 19:46 - 2017-02-08 15:12 - 00334576 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
2017-05-09 19:46 - 2017-02-08 15:12 - 00311808 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2017-05-09 19:46 - 2017-02-08 15:12 - 00190256 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2017-05-09 19:46 - 2017-02-08 15:12 - 00049016 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2017-05-09 19:46 - 2016-03-23 22:02 - 00032600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2017-05-09 19:46 - 2015-12-21 15:59 - 01007160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-05-09 17:12 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-05-09 17:12 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-05-08 16:31 - 2016-04-02 08:21 - 00000000 ____D C:\MP3
2017-05-07 23:55 - 2015-12-21 15:17 - 00000000 ____D C:\Users\StB\AppData\Roaming\Skype
2017-05-07 21:13 - 2015-12-28 18:43 - 00000000 ____D C:\Users\StB\AppData\Local\Frontier_Developments
2017-05-07 21:09 - 2016-03-04 18:20 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2017-05-06 18:19 - 2017-04-06 20:57 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-05-05 19:36 - 2016-02-22 20:05 - 00000000 ____D C:\AMD
2017-05-04 18:48 - 2017-04-11 20:11 - 00925208 _____ (AMD) C:\WINDOWS\system32\coinst_17.10.dll
2017-05-04 18:48 - 2017-03-21 18:24 - 01517080 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2017-05-03 19:45 - 2017-02-02 20:03 - 00000000 ____D C:\Users\StB\AppData\LocalLow\Mozilla
2017-04-30 08:14 - 2017-01-07 13:56 - 00000000 ____D C:\Users\StB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WorldofTanks
2017-04-29 03:05 - 2017-03-18 23:06 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-04-29 03:05 - 2017-03-18 23:06 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-04-27 18:36 - 2016-12-09 19:34 - 00000000 ____D C:\ProgramData\Apple
2017-04-25 17:37 - 2016-04-25 11:37 - 00000000 ____D C:\Program Files (x86)\VulkanRT

==================== Files in the root of some directories =======

2015-12-21 13:42 - 2015-12-21 13:44 - 6420480 _____ () C:\Program Files (x86)\GUT1880.tmp
2015-12-24 16:44 - 2017-02-25 23:59 - 0002828 _____ () C:\Users\StB\AppData\Local\config.dat
2016-11-26 12:12 - 2017-02-04 22:37 - 0007168 _____ () C:\Users\StB\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-01-30 15:42 - 2017-01-30 15:42 - 0000001 _____ () C:\Users\StB\AppData\Local\llftool.4.40.agreement
2016-12-04 11:45 - 2016-12-04 11:45 - 0000106 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2017-01-11 19:07 - 2017-03-25 08:43 - 0000060 _____ () C:\ProgramData\SoftwareUpdateTemp.xml

Some files in TEMP:
====================
2017-05-22 13:58 - 2017-05-22 13:58 - 0019968 ____N (Red Hat®, Inc.) C:\Users\StB\AppData\Local\Temp\jansi-64-135417874885861584.dll
2017-05-24 19:20 - 2017-05-24 19:20 - 0019968 ____N (Red Hat®, Inc.) C:\Users\StB\AppData\Local\Temp\jansi-64-1433584748344225514.dll
2017-05-21 19:50 - 2017-05-21 19:50 - 0019968 ____N (Red Hat®, Inc.) C:\Users\StB\AppData\Local\Temp\jansi-64-3128182232483503437.dll
2017-05-21 09:30 - 2017-05-21 09:30 - 0019968 ____N (Red Hat®, Inc.) C:\Users\StB\AppData\Local\Temp\jansi-64-3834142107346419094.dll
2017-05-22 13:37 - 2017-05-22 13:37 - 0019968 ____N (Red Hat®, Inc.) C:\Users\StB\AppData\Local\Temp\jansi-64-4087699880243233751.dll
2017-05-21 20:10 - 2017-05-21 20:10 - 0019968 ____N (Red Hat®, Inc.) C:\Users\StB\AppData\Local\Temp\jansi-64-4197766390781594947.dll
2017-05-19 20:27 - 2017-05-19 20:27 - 0019968 ____N (Red Hat®, Inc.) C:\Users\StB\AppData\Local\Temp\jansi-64-4627648815312279684.dll
2017-05-22 13:43 - 2017-05-22 13:43 - 0019968 ____N (Red Hat®, Inc.) C:\Users\StB\AppData\Local\Temp\jansi-64-5035740994537420056.dll
2017-05-20 22:35 - 2017-05-20 22:35 - 0019968 ____N (Red Hat®, Inc.) C:\Users\StB\AppData\Local\Temp\jansi-64-5335717613238095286.dll
2017-05-21 14:19 - 2017-05-21 14:19 - 0019968 ____N (Red Hat®, Inc.) C:\Users\StB\AppData\Local\Temp\jansi-64-5876909817952361686.dll
2017-05-18 21:25 - 2017-05-18 21:25 - 0019968 ____N (Red Hat®, Inc.) C:\Users\StB\AppData\Local\Temp\jansi-64-6426103777855214503.dll
2017-05-22 12:48 - 2017-05-22 12:48 - 0019968 ____N (Red Hat®, Inc.) C:\Users\StB\AppData\Local\Temp\jansi-64-7138426559052585387.dll
2017-05-22 18:52 - 2017-05-22 18:52 - 0019968 ____N (Red Hat®, Inc.) C:\Users\StB\AppData\Local\Temp\jansi-64-720389699569216154.dll
2017-05-22 13:24 - 2017-05-22 13:24 - 0019968 ____N (Red Hat®, Inc.) C:\Users\StB\AppData\Local\Temp\jansi-64-8271975058568844669.dll
2017-05-23 19:16 - 2017-05-23 19:16 - 0019968 ____N (Red Hat®, Inc.) C:\Users\StB\AppData\Local\Temp\jansi-64-8867586458413143686.dll
2017-05-20 19:29 - 2017-05-20 19:29 - 0019968 ____N (Red Hat®, Inc.) C:\Users\StB\AppData\Local\Temp\jansi-64-9100286881969957682.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-05-17 21:12

==================== End of FRST.txt ============================

Re: mystarting123?

Napsal: 25 kvě 2017 19:23
od Rudy
Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: mystarting123?

Napsal: 25 kvě 2017 19:33
od buko1
ADWcleaner

Kód: Vybrat vše

# AdwCleaner v6.047 - *Logfile created 25/05/2017 *at 20:29:42
# *Updated on 19/05/2017 by Malwarebytes
# *Database : 2017-05-23.1 [*Local]
# *Operating System : Windows 10 Pro  (X64)
# *Username : StB - DOMACI_SERVER
# *Running from : C:\Users\StB\Desktop\adwcleaner_6.047.exe
# *Mode: Clean
# *Support : https://www.malwarebytes.com/support



***** [ *Services ] *****



***** [ *Folders ] *****



***** [ *Files ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ *Shortcuts ] *****



***** [ *Scheduled Tasks ] *****



***** [ *Registry ] *****



***** [ *Browsers ] *****



*************************

:: *"Tracing" keys deleted
:: *Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [3769 *Bytes] - [02/11/2016 19:34:14]
C:\AdwCleaner\AdwCleaner[C10].txt - [838 *Bytes] - [25/05/2017 20:29:42]
C:\AdwCleaner\AdwCleaner[C2].txt - [6669 *Bytes] - [16/05/2017 21:05:00]
C:\AdwCleaner\AdwCleaner[C3].txt - [1509 *Bytes] - [17/05/2017 17:23:13]
C:\AdwCleaner\AdwCleaner[C4].txt - [1657 *Bytes] - [17/05/2017 17:37:49]
C:\AdwCleaner\AdwCleaner[C5].txt - [2493 *Bytes] - [18/05/2017 17:11:42]
C:\AdwCleaner\AdwCleaner[C6].txt - [2540 *Bytes] - [18/05/2017 19:41:44]
C:\AdwCleaner\AdwCleaner[C7].txt - [2160 *Bytes] - [18/05/2017 20:09:41]
C:\AdwCleaner\AdwCleaner[C8].txt - [2725 *Bytes] - [25/05/2017 19:30:28]
C:\AdwCleaner\AdwCleaner[C9].txt - [2517 *Bytes] - [25/05/2017 19:41:50]
C:\AdwCleaner\AdwCleaner[S0].txt - [3393 *Bytes] - [02/11/2016 19:33:31]
C:\AdwCleaner\AdwCleaner[S10].txt - [2746 *Bytes] - [25/05/2017 19:30:06]
C:\AdwCleaner\AdwCleaner[S11].txt - [2866 *Bytes] - [25/05/2017 19:41:36]
C:\AdwCleaner\AdwCleaner[S12].txt - [2728 *Bytes] - [25/05/2017 20:04:35]
C:\AdwCleaner\AdwCleaner[S13].txt - [2803 *Bytes] - [25/05/2017 20:28:22]
C:\AdwCleaner\AdwCleaner[S1].txt - [6585 *Bytes] - [16/05/2017 21:04:18]
C:\AdwCleaner\AdwCleaner[S2].txt - [1466 *Bytes] - [16/05/2017 21:10:44]
C:\AdwCleaner\AdwCleaner[S3].txt - [1540 *Bytes] - [16/05/2017 21:40:11]
C:\AdwCleaner\AdwCleaner[S4].txt - [1614 *Bytes] - [17/05/2017 17:20:11]
C:\AdwCleaner\AdwCleaner[S5].txt - [1688 *Bytes] - [17/05/2017 17:22:53]
C:\AdwCleaner\AdwCleaner[S6].txt - [1836 *Bytes] - [17/05/2017 17:37:37]
C:\AdwCleaner\AdwCleaner[S7].txt - [2419 *Bytes] - [18/05/2017 17:05:30]
C:\AdwCleaner\AdwCleaner[S8].txt - [2478 *Bytes] - [18/05/2017 19:40:29]
C:\AdwCleaner\AdwCleaner[S9].txt - [2293 *Bytes] - [18/05/2017 20:08:23]

########## EOF - C:\AdwCleaner\AdwCleaner[C10].txt - [2544 *Bytes] ##########

Re: mystarting123?

Napsal: 25 kvě 2017 20:18
od Rudy
Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKU\S-1-5-21-3732695641-3302276906-4015890814-1001\...\MountPoints2: {cfc2f76e-3899-11e7-8bed-e0cb4eb4951b} - "J:\HiSuiteDownLoader.exe"
IFEO\GoogleUpdate.exe: [Debugger] 324095823984.exe
IFEO\GoogleUpdaterService.exe: [Debugger] 8736459873644.exe
GroupPolicy: Restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-3732695641-3302276906-4015890814-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE04
SearchScopes: HKU\S-1-5-21-3732695641-3302276906-4015890814-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE04
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
U3 idsvc; no ImagePath
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Program Files (x86)\GUT1880.tmp
C:\Users\StB\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\StB\AppData\Local\Temp

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: mystarting123?

Napsal: 25 kvě 2017 22:07
od buko1

Kód: Vybrat vše

Fix result of Farbar Recovery Scan Tool (x64) Version: 24-05-2017
Ran by StB (25-05-2017 22:59:35) Run:1
Running from C:\Users\StB\Desktop
Loaded Profiles: StB (Available Profiles: StB)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKU\S-1-5-21-3732695641-3302276906-4015890814-1001\...\MountPoints2: {cfc2f76e-3899-11e7-8bed-e0cb4eb4951b} - "J:\HiSuiteDownLoader.exe"
IFEO\GoogleUpdate.exe: [Debugger] 324095823984.exe
IFEO\GoogleUpdaterService.exe: [Debugger] 8736459873644.exe
GroupPolicy: Restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-3732695641-3302276906-4015890814-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04
SearchScopes: HKU\S-1-5-21-3732695641-3302276906-4015890814-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
U3 idsvc; no ImagePath
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Program Files (x86)\GUT1880.tmp
C:\Users\StB\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\StB\AppData\Local\Temp

EmptyTemp:
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-3732695641-3302276906-4015890814-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cfc2f76e-3899-11e7-8bed-e0cb4eb4951b} => key removed successfully
HKCR\CLSID\{cfc2f76e-3899-11e7-8bed-e0cb4eb4951b} => key not found. 
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\GoogleUpdate.exe => key not found. 
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\GoogleUpdaterService.exe => key not found. 
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKU\S-1-5-21-3732695641-3302276906-4015890814-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-21-3732695641-3302276906-4015890814-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found. 
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki => key removed successfully
HKLM\System\CurrentControlSet\Services\idsvc => key removed successfully
idsvc => service removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\Program Files (x86)\GUT1880.tmp => moved successfully
C:\Users\StB\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully

"C:\Users\StB\AppData\Local\Temp" folder move:

Could not move "C:\Users\StB\AppData\Local\Temp" => Scheduled to move on reboot.


=========== EmptyTemp: ==========

BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 51291964 B
Java, Flash, Steam htmlcache => 306694623 B
Windows/system/drivers => 46703310 B
Edge => 4292 B
Chrome => 247371755 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 14712 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 6 B
LocalService => 10610 B
NetworkService => 0 B
StB => 83904876 B

RecycleBin => 0 B
EmptyTemp: => 709.4 MB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 25-05-2017 23:01:36)

C:\Users\StB\AppData\Local\Temp => moved successfully

==== End of Fixlog 23:01:40 ====

Re: mystarting123?

Napsal: 26 kvě 2017 16:14
od Rudy
Smazáno. Nastala nějaká změna?

Re: mystarting123?

Napsal: 26 kvě 2017 17:24
od buko1
Ani nie. Mystarting123 sa stále nastavuje v chrome ako predvolené nastavenie vyhľadávania. Aj keď ho v nastavení vymažem, po opätovnom spustení chrome je tam zas.

Re: mystarting123?

Napsal: 26 kvě 2017 17:36
od Rudy
Spusťte postupně tyto utility:

1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize




autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;





Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: http://thisisudax.org/downloads/JRT.exe
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.

Re: mystarting123?

Napsal: 26 kvě 2017 21:08
od buko1
Log ZOEK:

Kód: Vybrat vše

Zoek.exe v5.0.0.1 Updated 27-09-2015
Tool run by StB on pi 26. 05. 2017 at 20:57:38,56.
Microsoft Windows 10 Pro 10.0.15063  x64
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\StB\Desktop\zoek.exe [Scan all users] [Script inserted] 

==== System Restore Info ======================

26. 5. 2017 20:59:23 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp. 
# 
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows. 
# 
# This file contains the mappings of IP addresses to host names. Each 
# entry should be kept on an individual line. The IP address should 
# be placed in the first column followed by the corresponding host name. 
# The IP address and the host name should be separated by at least one 
# space. 
# 
# Additionally, comments (such as these) may be inserted on individual 
# lines or following the machine name denoted by a '#' symbol. 
# 
# For example: 
# 
#      102.54.94.97     rhino.acme.com          # source server 
#       38.25.63.10     x.acme.com              # x client host 
 
127.0.0.1       localhost 

==== Empty Folders Check ======================

C:\PROGRA~2\Calibre2 deleted successfully
C:\PROGRA~2\Zemana AntiMalware deleted successfully
C:\PROGRA~2\COMMON~1\AV deleted successfully
C:\Program Files\Plumbytes Software deleted successfully
C:\Program Files\VibrateGameDeviceDriver deleted successfully
C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\PROGRA~3\Verimatrix deleted successfully
C:\Users\StB\AppData\Local\ActiveSync deleted successfully
C:\Users\StB\AppData\Local\calibre-cache deleted successfully
C:\Users\StB\AppData\Local\DBG deleted successfully
C:\Users\StB\AppData\Local\GHISLER deleted successfully
C:\Users\StB\AppData\Local\PeerDistRepub deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistPub deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistRepub deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Crypkey License deleted successfully

==== Deleting Files \ Folders ======================

C:\PROGRA~2\Calibre2 not found
C:\PROGRA~2\Zemana AntiMalware not found
C:\Users\StB\AppData\Roaming\calibre deleted
C:\Users\StB\.android deleted
C:\PROGRA~2\GUM187F.tmp deleted
C:\PROGRA~2\Wondershare deleted
C:\PROGRA~2\COMMON~1\Wondershare deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\StB\AppData\Local\{12A8CCFE-3C33-4995-BAD8-074E4C5B22FD} deleted
C:\Users\StB\AppData\Local\Unity deleted
C:\Users\StB\AppData\Local\Wondershare deleted
C:\Users\StB\AppData\Local\CrashRpt deleted
C:\Users\StB\AppData\LocalLow\Unity deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\WINDOWS\Syswow64\SET188C.tmp deleted
C:\WINDOWS\Syswow64\SET1B2E.tmp deleted
C:\WINDOWS\Syswow64\SET21DE.tmp deleted
C:\WINDOWS\Syswow64\SET2728.tmp deleted
C:\WINDOWS\Syswow64\SET2AE9.tmp deleted
C:\WINDOWS\Syswow64\SET2B68.tmp deleted
C:\WINDOWS\Syswow64\SET2D1B.tmp deleted
C:\WINDOWS\Syswow64\SET2DAA.tmp deleted
C:\WINDOWS\Syswow64\SET2DEA.tmp deleted
C:\WINDOWS\Syswow64\SET327E.tmp deleted
C:\WINDOWS\Syswow64\SET3DBB.tmp deleted
C:\WINDOWS\Syswow64\SET3F53.tmp deleted
C:\WINDOWS\Syswow64\SET44C8.tmp deleted
C:\WINDOWS\Syswow64\SET44F9.tmp deleted
C:\WINDOWS\Syswow64\SET4509.tmp deleted
C:\WINDOWS\Syswow64\SET4958.tmp deleted
C:\WINDOWS\Syswow64\SET4D28.tmp deleted
C:\WINDOWS\Syswow64\SET502F.tmp deleted
C:\WINDOWS\Syswow64\SET5200.tmp deleted
C:\WINDOWS\Syswow64\SET54FB.tmp deleted
C:\WINDOWS\Syswow64\SET553.tmp deleted
C:\WINDOWS\Syswow64\SET5AE0.tmp deleted
C:\WINDOWS\Syswow64\SET5FE5.tmp deleted
C:\WINDOWS\Syswow64\SET6025.tmp deleted
C:\WINDOWS\Syswow64\SET6AC3.tmp deleted
C:\WINDOWS\Syswow64\SET7B0B.tmp deleted
C:\WINDOWS\Syswow64\SET896D.tmp deleted
C:\WINDOWS\Syswow64\SET8A4E.tmp deleted
C:\WINDOWS\Syswow64\SET94BB.tmp deleted
C:\WINDOWS\Syswow64\SETA135.tmp deleted
C:\WINDOWS\Syswow64\SETA28F.tmp deleted
C:\WINDOWS\Syswow64\SETA93F.tmp deleted
C:\WINDOWS\Syswow64\SETAE2C.tmp deleted
C:\WINDOWS\Syswow64\SETB4EA.tmp deleted
C:\WINDOWS\Syswow64\SETBA6D.tmp deleted
C:\WINDOWS\Syswow64\SETC90D.tmp deleted
C:\WINDOWS\Syswow64\SETC95D.tmp deleted
C:\WINDOWS\Syswow64\SETCE25.tmp deleted
C:\WINDOWS\Syswow64\SETD173.tmp deleted
C:\WINDOWS\Syswow64\SETE4B6.tmp deleted
C:\WINDOWS\Syswow64\SETF186.tmp deleted
"C:\Users\StB\AppData\Roaming\.technic" deleted

==== Fake Chromium Profiles Check ======================

Fake profile C:\Users\Default\AppData\Local\Google\Chrome deleted

==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
anoiechkjklgabdfompidjolhpfdpjdd - No path found[]
efaidnbmnnnibpcajpcglclefindmkaj - No path found[]
eofcbnmajmjmplflapaojjnihcjkigck - No path found[]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - No path found[]

Magio GO - StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\anoiechkjklgabdfompidjolhpfdpjdd
Tanki Online - StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkifmaekogpcmnmhfkbpcebbnkdhfidn
Avast SafePrice - StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Tanki Online test RU8 - StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\fffipfkehbcackogmadfllmgeldonnmf
♫ \Minecraftable\ - Minecraft Parody ... - StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\foggdpaifopabhlnlilpijhhcoajgfpd
Little Alchemy - StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd
Chrome Media Router - StB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== Chromium Fix ======================

C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.davebestdeals.com_0.localstorage-journal deleted successfully
C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.davebestdeals.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{67C334C0-408D-4E6D-B5A7-0ADD6AFFA252} Google  Url="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}"

==== Reset Google Chrome ======================

C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences.bak was reset successfully
C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Web Data will be reset at reboot
C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal will be reset at reboot

==== Deleting Registry Keys ======================

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\UnityWebPlayer deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HTC Sync Loader deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default.migrated\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\StB\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\StB\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Cache will be emptied at reboot

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=3435 folders=1093 1081912864 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\StB\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Web Data" not found
"C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal" not found
"C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0" deleted
"C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1" deleted
"C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2" deleted
"C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3" deleted
"C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Cache\index" deleted
"C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.davebestdeals.com_0.localstorage" not deleted
"C:\Users\StB\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.davebestdeals.com_0.localstorage" not deleted

==== EOF on pi 26. 05. 2017 at 21:47:53,67 ======================

Log JRT:

Kód: Vybrat vše

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.3 (04.10.2017)
Operating System: Windows 10 Pro x64 
Ran by StB (Administrator) on pi 26. 05. 2017 at 21:50:18,86
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 1 

Successfully deleted: C:\Users\StB\AppData\Roaming\worldoftanks (Folder) 



Registry: 2 

Successfully deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_7A478397CD5E192FDB8C417996980C84 (Registry Value) 
Successfully deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_E1BBD17618E81CDDADB23758351533C6 (Registry Value) 




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on pi 26. 05. 2017 at 21:55:05,50
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Re: mystarting123?

Napsal: 26 kvě 2017 21:11
od Rudy
Jak to vypadá nyní?

Re: mystarting123?

Napsal: 27 kvě 2017 08:26
od buko1
Nastala - ale asi nie tá očakávaná. V nastavení vyhľadávania Chrome pribudol bing a yahoo, ale stále sa ako primárne vyhľadávanie nastavuje mystarting123.

Re: mystarting123?

Napsal: 27 kvě 2017 12:06
od Rudy
Teď už nezbude, než Chrome přeinstalovat. Chrome zazálohujte pomocí ChromeBackup: http://www.stahuj.centrum.cz/internet_a ... me-backup/ . Pka Chrome odinstalujte vč. jeho profilu (podadresáře Chrome v c:\users\StB\appdata\local, c:\users\StB\appdata\roaming, c:\users\StB\data aplikací, c:\users\StB\local settings a v c:\program data musí být smazány. Potom proveďte novou, čistou instalaci Chrome a zpět ze zálohy nakopírujte pouze záložky a hesla.

Re: mystarting123?

Napsal: 28 kvě 2017 08:22
od buko1
Urobené. V novej inštalácii sa už nezobrazuje a neaktivuje.

Dik.

Re: mystarting123?

Napsal: 28 kvě 2017 10:30
od Rudy
Rádo se stalo! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz