VIRY.CZ

Dobrý večer,
prosím o kontrolu logu.
Děkuji.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-08-2017
Ran by Jana (administrator) on JANA-PC (23-08-2017 22:31:07)
Running from C:\Users\Jana\Desktop
Loaded Profiles: Jana & DefaultAppPool (Available Profiles: Jana & DefaultAppPool)
Platform: Microsoft Windows 10 Pro Version 1703 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Windows\System32\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation.) C:\Program Files\Microsoft\BingBar\7.1.362.0\SeaPort.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x86__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(forum.viry.cz) C:\Users\Jana\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [485280 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12021464 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-02-05] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [hpqSRMon] => C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2012-12-19] (Pixart Imaging Inc)
HKU\S-1-5-21-2765438030-1672544448-820615667-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7348440 2017-03-03] (Piriform Ltd)
HKU\S-1-5-21-2765438030-1672544448-820615667-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [27011712 2016-10-17] (Skype Technologies S.A.)
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [515072 2017-03-18] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2014-05-06]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{28fa4622-3f47-4e98-bdf7-31b9d2bb47ce}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-2765438030-1672544448-820615667-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKU\S-1-5-21-2765438030-1672544448-820615667-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97 ... -SearchBox
SearchScopes: HKU\S-1-5-21-2765438030-1672544448-820615667-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97 ... -SearchBox
SearchScopes: HKU\S-1-5-21-2765438030-1672544448-820615667-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20] (Hewlett-Packard Co.)
BHO: No Name -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> No File
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20] (Hewlett-Packard Co.)
Toolbar: HKLM - No Name - {8dcb7100-df86-4384-8842-8fa844297b3f} - No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2016-09-23] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Jana\AppData\Roaming\Mozilla\Firefox\Profiles\18jcc2d6.default-1435436363271 [2017-08-23]
FF Homepage: Mozilla\Firefox\Profiles\18jcc2d6.default-1435436363271 -> hxxp://www.seznam.cz/
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2014-05-06] [not signed]
FF HKU\S-1-5-21-2765438030-1672544448-820615667-1001\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-08-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2765438030-1672544448-820615667-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Jana\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Profile: C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default [2017-08-23]
CHR Extension: (Dokumenty Google) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-17]
CHR Extension: (Disk Google) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-05]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2017-03-18]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2017-02-22]
CHR Extension: (YouTube) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-05]
CHR Extension: (Vyhledávání Google) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-05]
CHR Extension: (Adblock Super) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\knebimhcckndhiglamoabbnifdkijidd [2015-10-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-23]
CHR Extension: (Gmail) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-03]
CHR Extension: (Chrome Media Router) - C:\Users\Jana\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-08]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [File not signed]
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44544 2008-12-03] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-02-05] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15904544 2014-02-05] (NVIDIA Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2008-12-03] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [66872 2014-05-06] ()
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2545848 2017-03-19] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [265352 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [82488 2017-07-11] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [34080 2013-12-27] (NVIDIA Corporation)
R3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [5120 2012-12-19] ()
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37464 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [243104 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [96672 2017-03-18] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-23 22:31 - 2017-08-23 22:31 - 000013310 ____C C:\Users\Jana\Desktop\FRST.txt
2017-08-23 22:30 - 2017-08-23 22:31 - 000000000 ____D C:\FRST
2017-08-23 22:29 - 2017-08-23 22:23 - 000112640 ____C (forum.viry.cz) C:\Users\Jana\Desktop\FRSTLauncher.exe
2017-08-23 22:10 - 2017-08-23 22:10 - 000000000 ____D C:\Windows.old
2017-08-23 22:08 - 2017-08-23 22:08 - 020504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 019336192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 013841408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 011870208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 006761568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 006728192 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 006269440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 005961728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 005862816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 005820984 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 005808640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 005721600 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 004213656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 003464704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 003447296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 002956288 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-08-23 22:08 - 2017-08-23 22:08 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 002424024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 002370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 002259768 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 002211840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 002165752 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 002122240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 002081184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-08-23 22:08 - 2017-08-23 22:08 - 002040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 002023832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-08-23 22:08 - 2017-08-23 22:08 - 001972128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-08-23 22:08 - 2017-08-23 22:08 - 001854832 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 001831936 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 001585152 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-08-23 22:08 - 2017-08-23 22:08 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 001513984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 001377280 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjet40.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 001291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 001244160 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 001208320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 001195760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 001156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 001126912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 001087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000988168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000967584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000962048 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000952832 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswdat10.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000866808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000864248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000844800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000805816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000760832 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000755616 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000750496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000698384 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000665600 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000661504 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-08-23 22:08 - 2017-08-23 22:08 - 000641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswstr10.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrepl40.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000610584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000597920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-08-23 22:08 - 2017-08-23 22:08 - 000587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000582560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-08-23 22:08 - 2017-08-23 22:08 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000572320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2017-08-23 22:08 - 2017-08-23 22:08 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsvcs.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000551200 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000518144 _____ C:\WINDOWS\system32\msjetoledb40.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxbde40.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000440184 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000434592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2017-08-23 22:08 - 2017-08-23 22:08 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000414296 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000406544 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspbde40.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000359552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000358816 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000358816 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000349600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrd3x40.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msexcl40.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrd2x40.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjtes40.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000280472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000277432 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000273312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-08-23 22:08 - 2017-08-23 22:08 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstext40.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msltus40.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000239008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-08-23 22:08 - 2017-08-23 22:08 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000216504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000176024 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000173984 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000173104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000168864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-08-23 22:08 - 2017-08-23 22:08 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjint40.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\qasf.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000133904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000100232 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000096648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000095648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-08-23 22:08 - 2017-08-23 22:08 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2017-08-23 22:08 - 2017-08-23 22:08 - 000090464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjter40.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2017-08-23 22:08 - 2017-08-23 22:08 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000060312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-08-23 22:08 - 2017-08-23 22:08 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2017-08-23 22:08 - 2017-08-23 22:08 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2017-08-23 22:08 - 2017-08-23 22:08 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\IpNatHlpClient.dll
2017-08-23 22:03 - 2017-08-23 22:03 - 001792512 ____C (Farbar) C:\Users\Jana\Desktop\FRST.exe
2017-08-23 22:02 - 2017-03-17 22:45 - 005739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2017-08-23 22:02 - 2017-03-17 22:43 - 002629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2017-08-23 22:02 - 2017-03-17 22:35 - 005484544 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2017-08-23 22:01 - 2017-08-23 22:01 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2017-08-23 22:01 - 2017-08-23 21:16 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2017-08-23 21:59 - 2017-08-23 21:59 - 000000000 ____D C:\WINDOWS\system32\XPSViewer
2017-08-23 21:59 - 2017-08-23 21:59 - 000000000 ____D C:\WINDOWS\system32\msmq
2017-08-23 21:59 - 2017-08-23 21:59 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2017-08-23 21:59 - 2017-08-23 21:59 - 000000000 ____D C:\Program Files\Reference Assemblies
2017-08-23 21:59 - 2017-08-23 21:59 - 000000000 ____D C:\Program Files\MSBuild
2017-08-23 21:59 - 2017-08-23 21:59 - 000000000 ____D C:\inetpub
2017-08-23 21:58 - 2017-02-10 12:21 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-08-23 21:58 - 2017-02-10 12:21 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-08-23 21:58 - 2017-02-10 12:21 - 000035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-08-23 21:54 - 2017-08-23 21:54 - 008162248 ____C (Malwarebytes) C:\Users\Jana\Downloads\adwcleaner-7-0-0-0.exe
2017-08-23 21:53 - 2017-08-23 21:53 - 008185288 ____C (Malwarebytes) C:\Users\Jana\Desktop\adwcleaner_7.0.1.0.exe
2017-08-23 21:46 - 2017-08-23 21:46 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2017-08-23 21:43 - 2017-08-23 21:43 - 000000020 ___SH C:\Users\Jana\ntuser.ini
2017-08-23 21:39 - 2017-08-23 21:40 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2017-08-23 21:39 - 2017-08-23 21:40 - 000011433 _____ C:\WINDOWS\diagerr.xml
2017-08-23 21:35 - 2017-08-23 21:35 - 000000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2017-08-23 21:27 - 2017-08-23 21:27 - 000001487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-08-23 21:27 - 2017-08-23 21:27 - 000000000 ____D C:\ProgramData\USOShared
2017-08-23 21:24 - 2017-08-23 21:24 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-08-23 21:24 - 2017-08-23 21:24 - 000000000 ____D C:\Program Files\Common Files\SpeechEngines
2017-08-23 21:22 - 2017-08-23 21:46 - 000000000 ____D C:\Users\Jana
2017-08-23 21:22 - 2017-08-23 21:33 - 000000000 ____D C:\Users\DefaultAppPool
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\Jana\Šablony
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\Jana\Soubory cookie
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\Jana\Poslední
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\Jana\Okolní tiskárny
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\Jana\Okolní síť
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\Jana\Nabídka Start
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\Jana\Dokumenty
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\Jana\Documents\Obrázky
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\Jana\Documents\Hudba
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\Jana\Documents\Filmy
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\Jana\Data aplikací
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\Jana\AppData\Local\Data aplikací
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Šablony
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Soubory cookie
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Poslední
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Okolní tiskárny
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Okolní síť
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Nabídka Start
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Dokumenty
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Obrázky
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Hudba
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Filmy
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Data aplikací
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-08-23 21:22 - 2017-08-23 21:22 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Data aplikací
2017-08-23 21:19 - 2017-08-23 21:36 - 002013706 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-08-23 21:19 - 2017-08-23 21:30 - 000000000 ____D C:\ProgramData\NVIDIA
2017-08-23 21:18 - 2017-08-23 21:24 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-08-23 21:18 - 2017-08-23 21:24 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-08-23 21:18 - 2017-08-23 21:18 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2017-08-23 21:18 - 2017-08-23 21:18 - 000000000 ____D C:\WINDOWS\system32\RTCOM
2017-08-23 21:18 - 2017-08-23 21:18 - 000000000 ____D C:\Program Files\Realtek
2017-08-23 21:18 - 2016-11-14 13:00 - 004395456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-08-23 21:18 - 2016-11-14 13:00 - 003069496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc.dll
2017-08-23 21:18 - 2016-11-14 13:00 - 002563128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-08-23 21:18 - 2016-11-14 13:00 - 000677312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2017-08-23 21:18 - 2016-11-14 13:00 - 000381888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-08-23 21:18 - 2016-11-14 13:00 - 000070200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-08-23 21:18 - 2016-11-11 21:51 - 007513855 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-08-23 21:16 - 2017-08-23 21:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-08-23 21:16 - 2017-08-23 21:30 - 000218552 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-08-12 09:40 - 2017-08-23 21:50 - 000000000 ___DC C:\WINDOWS\Panther
2017-08-06 08:44 - 2017-08-06 08:44 - 000285476 ____C C:\Users\Jana\Downloads\informace-pro-rodice-taborniku-stan-v-or-brezova.pdf
2017-08-06 08:43 - 2017-08-06 08:43 - 000081803 ____C C:\Users\Jana\Downloads\Nástupní list Březová.pdf
2017-08-05 10:21 - 2017-08-05 10:21 - 001765851 ____C C:\Users\Jana\Downloads\Katalog Vše z Essens1.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-23 22:25 - 2017-03-18 20:21 - 000000000 ____D C:\WINDOWS\INF
2017-08-23 22:15 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-08-23 22:14 - 2017-03-18 20:23 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-08-23 22:10 - 2017-03-18 20:25 - 000000000 ____D C:\WINDOWS\Setup
2017-08-23 22:10 - 2017-03-18 20:14 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-08-23 22:09 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2017-08-23 22:09 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-08-23 22:09 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-08-23 22:09 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-08-23 22:09 - 2017-03-18 20:23 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-08-23 22:02 - 2017-03-19 10:57 - 000000000 ____D C:\WINDOWS\OCR
2017-08-23 22:00 - 2016-05-14 00:13 - 000000000 ___DC C:\Users\Jana\AppData\Local\Packages
2017-08-23 21:59 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\MUI
2017-08-23 21:59 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2017-08-23 21:59 - 2017-03-18 20:18 - 000611840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2017-08-23 21:59 - 2017-03-18 20:18 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2017-08-23 21:59 - 2017-03-18 20:18 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2017-08-23 21:59 - 2017-03-18 20:18 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2017-08-23 21:59 - 2017-03-18 20:18 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2017-08-23 21:59 - 2017-03-18 20:18 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2017-08-23 21:58 - 2017-03-18 20:19 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2017-08-23 21:58 - 2017-03-18 20:19 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2017-08-23 21:58 - 2017-03-18 20:19 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2017-08-23 21:58 - 2017-03-18 20:19 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2017-08-23 21:58 - 2017-03-18 20:19 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2017-08-23 21:58 - 2017-03-18 20:19 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2017-08-23 21:58 - 2017-03-18 20:19 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2017-08-23 21:58 - 2017-03-18 20:18 - 000973312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2017-08-23 21:58 - 2017-03-18 20:18 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2017-08-23 21:58 - 2017-03-18 20:18 - 000261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2017-08-23 21:58 - 2017-03-18 20:18 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2017-08-23 21:58 - 2017-03-18 20:18 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2017-08-23 21:58 - 2017-03-18 20:18 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2017-08-23 21:58 - 2017-03-18 20:18 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2017-08-23 21:58 - 2017-03-18 20:18 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2017-08-23 21:58 - 2017-03-18 20:18 - 000009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2017-08-23 21:57 - 2017-03-20 18:35 - 000000000 ____D C:\AdwCleaner
2017-08-23 21:51 - 2016-05-14 00:22 - 000002394 _____ C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-08-23 21:51 - 2016-05-14 00:22 - 000000000 __RDC C:\Users\Jana\OneDrive
2017-08-23 21:45 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\rescache
2017-08-23 21:43 - 2017-03-18 20:23 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-08-23 21:43 - 2016-05-14 00:17 - 000000000 _RHDC C:\Users\Public\AccountPictures
2017-08-23 21:42 - 2017-03-18 20:23 - 000000000 ____D C:\Program Files\Windows NT
2017-08-23 21:41 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-08-23 21:41 - 2017-03-18 08:02 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-08-23 21:39 - 2017-03-18 20:23 - 000000000 ___HD C:\Program Files\WindowsApps
2017-08-23 21:39 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\Registration
2017-08-23 21:39 - 2016-07-16 10:29 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-08-23 21:36 - 2017-03-19 10:56 - 000836026 _____ C:\WINDOWS\system32\perfh005.dat
2017-08-23 21:36 - 2017-03-19 10:56 - 000187066 _____ C:\WINDOWS\system32\perfc005.dat
2017-08-23 21:35 - 2016-05-13 23:54 - 000021592 ____C C:\WINDOWS\system32\emptyregdb.dat
2017-08-23 21:34 - 2017-03-18 20:23 - 000000000 __RHD C:\Users\Public\Libraries
2017-08-23 21:34 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\Media
2017-08-23 21:33 - 2014-05-05 15:57 - 000002228 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-23 21:29 - 2017-03-18 08:02 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2017-08-23 21:28 - 2017-07-07 21:08 - 000000000 ____D C:\WINDOWS\system32\UNP
2017-08-23 21:28 - 2017-03-21 18:23 - 000000000 ____D C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Philips Media Convertor v1.2
2017-08-23 21:28 - 2017-03-20 20:00 - 000000000 ____D C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
2017-08-23 21:28 - 2017-03-20 20:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU
2017-08-23 21:28 - 2017-03-18 20:23 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-08-23 21:28 - 2016-12-14 23:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Teta CEWE fotosvet
2017-08-23 21:28 - 2015-12-13 20:52 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-08-23 21:28 - 2015-03-26 19:47 - 000000000 ___DC C:\WINDOWS\system32\vbox
2017-08-23 21:28 - 2014-05-06 17:47 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2017-08-23 21:28 - 2014-05-06 15:35 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2017-08-23 21:28 - 2014-05-06 15:22 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2017-08-23 21:28 - 2014-05-06 14:59 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2017-08-23 21:28 - 2014-05-05 21:20 - 000000000 ___DC C:\Users\Jana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-08-23 21:28 - 2014-05-05 21:20 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-08-23 21:28 - 2014-05-05 19:02 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-08-23 21:25 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\spool
2017-08-23 21:25 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-08-23 21:25 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-08-23 21:25 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\IME
2017-08-23 21:25 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\schemas
2017-08-23 21:25 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-08-23 21:25 - 2016-05-14 19:46 - 000000000 ___DC C:\WINDOWS\system32\MRT
2017-08-23 21:25 - 2015-10-30 17:10 - 000000000 ___DC C:\WINDOWS\ShellNew
2017-08-23 21:25 - 2014-05-06 15:27 - 000000000 ___DC C:\WINDOWS\system32\appmgmt
2017-08-23 21:24 - 2017-03-18 20:23 - 000000000 __SHD C:\Program Files\Windows Sidebar
2017-08-23 21:24 - 2017-03-18 20:23 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-08-23 21:24 - 2015-12-23 20:04 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-08-23 21:24 - 2014-05-06 15:42 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2017-08-23 21:19 - 2017-03-18 08:02 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2017-08-23 21:18 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\Help
2017-08-23 20:45 - 2014-05-05 16:40 - 000008192 _RSHC C:\BOOTSECT.BAK
2017-08-23 20:41 - 2017-07-11 08:13 - 000000000 ___HD C:\$WINDOWS.~BT
2017-08-18 20:15 - 2014-05-05 16:08 - 000449704 ____C (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-08-10 17:28 - 2014-05-06 18:05 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2017-08-09 22:22 - 2016-05-14 19:46 - 137505280 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories =======

2014-11-30 19:49 - 2016-05-01 19:17 - 000010240 ____C () C:\Users\Jana\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-08-23 21:18 - 2017-08-23 21:18 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
2014-05-06 17:45 - 2016-05-16 22:00 - 000001723 ____C () C:\ProgramData\hpzinstall.log

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Available physical RAM: 701.71 MB
Total physical RAM: 2047.55 MB
Percentage of memory in use: 65%

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Jana\Desktop" je 2565 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk
C:\Program Files\McAfee Security Scan\3.11.266\SSScheduler.exe [x]

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]

==================== End Of Log ==============================

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

# AdwCleaner 7.0.1.0 - Logfile created on Thu Aug 24 20:43:01 2017
# Updated on 2017/05/08 by Malwarebytes
# Database: 08-22-2017.4
# Running on Windows 10 Pro (X86)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries.

*************************

C:/AdwCleaner/AdwCleaner[C0].txt - [1926 B] - [2017/3/20 16:39:7]
C:/AdwCleaner/AdwCleaner[S0].txt - [2070 B] - [2017/3/20 16:37:41]
C:/AdwCleaner/AdwCleaner[S1].txt - [1079 B] - [2017/8/23 19:57:6]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt ##########

Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:

Start
SearchScopes: HKU\S-1-5-21-2765438030-1672544448-820615667-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97 ... -SearchBox
SearchScopes: HKU\S-1-5-21-2765438030-1672544448-820615667-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97 ... -SearchBox
SearchScopes: HKU\S-1-5-21-2765438030-1672544448-820615667-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO: No Name -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> No File
Toolbar: HKLM - No Name - {8dcb7100-df86-4384-8842-8fa844297b3f} - No File
C:\ProgramData\DP45977C.lfl
C:\Program Files\McAfee Security Scan
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Z logu:

Velikost slozky "C:\Users\Jana\Desktop" je 2565 MB.

To je příliš mnoho a může to způsobovat zpomalení startu systému. Vytvořte v C:\Users\Jana novou složku, do níž přesuňte všechna data z plochy (kromě zástupců). Na plochu si pak dejte zástupce té složky pro snazší přístup.

Fix result of Farbar Recovery Scan Tool (x86) Version: 20-08-2017
Ran by Jana (25-08-2017 23:31:25) Run:1
Running from C:\Users\Jana\Desktop
Loaded Profiles: Jana (Available Profiles: Jana & DefaultAppPool)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
SearchScopes: HKU\S-1-5-21-2765438030-1672544448-820615667-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97 ... -SearchBox
SearchScopes: HKU\S-1-5-21-2765438030-1672544448-820615667-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97 ... -SearchBox
SearchScopes: HKU\S-1-5-21-2765438030-1672544448-820615667-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO: No Name -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> No File
Toolbar: HKLM - No Name - {8dcb7100-df86-4384-8842-8fa844297b3f} - No File
C:\ProgramData\DP45977C.lfl
C:\Program Files\McAfee Security Scan
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk

EmptyTemp:
End
*****************

HKU\S-1-5-21-2765438030-1672544448-820615667-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-21-2765438030-1672544448-820615667-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key removed successfully.
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKU\S-1-5-21-2765438030-1672544448-820615667-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => key removed successfully.
HKLM\Software\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} => key removed successfully.
HKLM\Software\Classes\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{8dcb7100-df86-4384-8842-8fa844297b3f} => value removed successfully.
HKLM\Software\Classes\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f} => key not found.
C:\ProgramData\DP45977C.lfl => moved successfully
"C:\Program Files\McAfee Security Scan" => not found.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => Error: No automatic fix found for this entry.

=========== EmptyTemp: ==========

BITS transfer queue => 6053888 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 19998117 B
Java, Flash, Steam htmlcache => 523 B
Windows/system/drivers => 1427661 B
Edge => 3111215 B
Chrome => 106183900 B
Firefox => 18441530 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
LocalService => 0 B
NetworkService => 7734 B
Jana => 8308264 B
DefaultAppPool => 0 B

RecycleBin => 8185406 B
EmptyTemp: => 163.8 MB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 23:31:57 ====

Smazáno. Log by již měl být OK.

Paráda. Děkuji za kontrolu.

Rádo se stalo!

VIRY.CZ

Prosím o kontrolu logu

Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu