VIRY.CZ

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02-11-2017 02
Ran by Špelec (administrator) on ŠPELEC-PC (07-11-2017 21:57:28)
Running from C:\Users\Špelec\Desktop
Loaded Profiles: Špelec (Available Profiles: Špelec & antoninwojcik1 & tonylee)
Platform: Microsoft Windows 10 Home Version 1607 14393.1770 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(ZSMCSNAP) C:\WINDOWS\ZSSnp211.exe
() C:\WINDOWS\Domino.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Facebook) C:\Users\Špelec\AppData\Local\Facebook\Games\FacebookGameroom.exe
(Microsoft Corporation) C:\WINDOWS\System32\wermgr.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe
(Microsoft Corporation) C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\WINDOWS\System32\browser_broker.exe
(Microsoft Corporation) C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Opera Software) C:\Program Files\Opera\48.0.2685.52\opera_autoupdate.exe
(Opera Software) C:\Program Files\Opera\launcher.exe
(Opera Software) C:\Program Files\Opera\48.0.2685.52\opera_autoupdate.exe
(Microsoft Corporation) C:\WINDOWS\System32\backgroundTaskHost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ZSSnp211] => C:\WINDOWS\ZSSnp211.exe [57344 2007-04-06] (ZSMCSNAP)
HKLM\...\Run: [Domino] => C:\WINDOWS\Domino.exe [49152 2006-08-18] ()
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-10-11] (AVAST Software)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [483840 2017-04-28] (Microsoft Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-2906948890-3372974042-1230140830-1000\...\MountPoints2: {443bf757-65ae-11e6-89be-806e6f6e6963} - "D:\autorun.exe"
Startup: C:\Users\Špelec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2017-06-17]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Špelec\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook)
BootExecute: autocheck autochk /m /P \Device\HarddiskVolume1autocheck autochk *

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{528ba2a0-7302-474c-9b64-373e69dd118d}: [DhcpNameServer] 192.168.44.1
Tcpip\..\Interfaces\{8f1e7342-e256-4485-af39-0fdf97a43b5d}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-2906948890-3372974042-1230140830-1000 -> hxxp://seznam.cz/

FireFox:
========
FF DefaultProfile: kd9csxxj.default
FF ProfilePath: C:\Users\Špelec\AppData\Roaming\Mozilla\Firefox\Profiles\kd9csxxj.default [2017-10-21]
FF Extension: (Avast SafePrice) - C:\Users\Špelec\AppData\Roaming\Mozilla\Firefox\Profiles\kd9csxxj.default\Extensions\sp@avast.com.xpi [2017-07-03]
FF Extension: (Avast Online Security) - C:\Users\Špelec\AppData\Roaming\Mozilla\Firefox\Profiles\kd9csxxj.default\Extensions\wrc@avast.com.xpi [2017-09-04]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com/
CHR Profile: C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default [2017-11-07]
CHR Extension: (Prezentace) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-28]
CHR Extension: (Dokumenty) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-28]
CHR Extension: (Disk Google) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-19]
CHR Extension: (YouTube) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-19]
CHR Extension: (Avast SafePrice) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-11-07]
CHR Extension: (Tabulky) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-07]
CHR Extension: (Filmy Google Play) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdijeikdkaembjbdobgfkoidjkpbmlkd [2016-08-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-11-07]
CHR Extension: (Gmail) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-19]
CHR Extension: (Chrome Media Router) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-07]
CHR Profile: C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-10-28]
CHR Profile: C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\System Profile [2017-10-28]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5828816 2017-10-11] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-10-11] (AVAST Software)
S3 PrintNotify; C:\WINDOWS\system32\spool\drivers\W32X86\3\PrintConfig.dll [2717184 2017-03-28] (Microsoft Corporation) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271488 2017-04-28] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2017-08-08] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriverx.sys [255624 2017-10-11] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidshx.sys [157416 2017-10-11] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswblogx.sys [276736 2017-10-11] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbunivx.sys [50384 2017-10-11] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [42856 2017-10-11] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [39784 2017-09-04] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [124952 2017-10-11] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [99560 2017-10-11] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [70864 2017-10-11] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [783648 2017-11-07] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [499560 2017-10-11] (AVAST Software)
S2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [149824 2017-10-11] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [297840 2017-10-11] (AVAST Software)
S3 BthMtpEnum; C:\WINDOWS\system32\DRIVERS\BthMtpEnum.sys [53248 2016-07-16] (Microsoft Corporation)
R3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109184 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 LVUSBSta; C:\WINDOWS\system32\DRIVERS\LVUSBSta.sys [22016 2005-01-19] (Labtec Inc.)
S3 NdisImPlatformMp; C:\WINDOWS\System32\drivers\NdisImPlatform.sys [109568 2016-07-16] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 netwlv32; C:\WINDOWS\System32\drivers\netwlv32.sys [6637056 2016-07-16] (Intel Corporation)
S3 PID_0928; C:\WINDOWS\system32\DRIVERS\LV561AV.SYS [211712 2005-01-19] (Labtec Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [16384 2016-07-16] (Microsoft Corporation)
S3 vvftav211; C:\WINDOWS\system32\drivers\vvftav211.sys [480128 2007-12-10] (Vimicro Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [119952 2016-07-15] (MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
S3 ZSMC30x; C:\WINDOWS\System32\Drivers\ZS211.sys [1472000 2007-12-13] (ZSMC.Corporation)
S3 MBAMProtection; \??\C:\WINDOWS\system32\drivers\mbam.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-11-07 21:57 - 2017-11-07 21:58 - 000011511 _____ C:\Users\Špelec\Desktop\FRST.txt
2017-11-07 21:51 - 2017-11-07 21:51 - 000112640 _____ (forum.viry.cz) C:\Users\Špelec\Downloads\FRSTLauncher.exe
2017-11-07 21:39 - 2017-11-07 21:57 - 000000000 ____D C:\FRST
2017-11-07 21:38 - 2017-11-07 21:39 - 001799680 _____ (Farbar) C:\Users\Špelec\Desktop\FRST.exe
2017-11-07 21:24 - 2017-11-07 21:24 - 000000000 ____D C:\Program Files\DIFX
2017-11-07 21:21 - 2017-11-07 21:22 - 038189742 _____ C:\Users\Špelec\Desktop\ASUS_WiFi_XP_32_z13215.zip
2017-11-07 21:21 - 2017-11-07 21:21 - 000132406 _____ C:\Users\Špelec\Desktop\3b7ce358bcfee7a581768514cc0ca78e (1).zip
2017-11-07 21:20 - 2017-11-07 21:20 - 000132406 _____ C:\Users\Špelec\Desktop\3b7ce358bcfee7a581768514cc0ca78e.zip
2017-11-03 21:46 - 2017-11-03 21:46 - 000007614 _____ C:\Users\Špelec\AppData\Local\Resmon.ResmonCfg
2017-11-03 21:12 - 2017-11-03 21:12 - 000001975 _____ C:\Users\Špelec\Desktop\Seznam.cz.lnk
2017-11-03 21:12 - 2017-11-03 21:12 - 000001955 _____ C:\Users\Špelec\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.lnk
2017-11-03 20:21 - 2016-08-19 01:09 - 000000160 _____ C:\Users\Špelec\Downloads\Flash Player Auto-Updater (2).settings
2017-11-02 00:08 - 2017-11-02 00:22 - 000000000 ____D C:\Users\tonylee\AppData\LocalLow\Mozilla
2017-11-02 00:07 - 2017-11-02 00:08 - 000000000 ____D C:\Users\tonylee\AppData\Roaming\Mozilla
2017-11-02 00:07 - 2017-11-02 00:07 - 000000000 ____D C:\Users\tonylee\AppData\Local\Mozilla
2017-10-25 17:50 - 2017-10-25 17:50 - 000000000 ____D C:\Users\Public\Documents\MDMDiagnostics
2017-10-22 00:55 - 2016-08-19 01:09 - 000000160 _____ C:\Users\Špelec\Downloads\Flash Player Auto-Updater (1).settings
2017-10-22 00:54 - 2016-08-19 01:09 - 000000160 _____ C:\Users\Špelec\Downloads\Flash Player Auto-Updater.settings
2017-10-21 22:44 - 2017-10-21 22:44 - 000000000 ____D C:\Users\tonylee\AppData\Roaming\AVAST Software
2017-10-21 22:44 - 2017-10-21 22:44 - 000000000 ____D C:\Users\tonylee\AppData\Local\CEF
2017-10-21 22:37 - 2017-10-28 22:04 - 000000000 ____D C:\Users\tonylee\AppData\Local\ConnectedDevicesPlatform
2017-10-21 22:37 - 2017-10-25 01:37 - 000000000 ____D C:\Users\tonylee
2017-10-21 22:37 - 2017-10-21 23:03 - 000002282 _____ C:\Users\tonylee\Desktop\Google Chrome.lnk
2017-10-21 22:37 - 2017-10-21 22:39 - 000000000 ____D C:\Users\tonylee\AppData\Local\Packages
2017-10-21 22:37 - 2017-10-21 22:37 - 000000020 ___SH C:\Users\tonylee\ntuser.ini
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Šablony
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Soubory cookie
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Poslední
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Okolní tiskárny
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Okolní síť
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Nabídka Start
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Dokumenty
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Documents\Obrázky
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Documents\Hudba
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Documents\Filmy
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Data aplikací
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\AppData\Local\Data aplikací
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 ____D C:\Users\tonylee\AppData\Roaming\Adobe
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 ____D C:\Users\tonylee\AppData\Local\VirtualStore
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 ____D C:\Users\tonylee\AppData\Local\TileDataLayer
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 ____D C:\Users\tonylee\AppData\Local\Google
2017-10-21 02:33 - 2017-10-21 02:33 - 000000000 ____D C:\$WINDOWS.~BT
2017-10-21 02:32 - 2017-10-21 02:34 - 000000000 ___HD C:\$SysReset
2017-10-18 22:03 - 2017-10-18 22:03 - 000017408 _____ C:\WINDOWS\system32\rpcnetp.exe
2017-10-18 22:03 - 2017-10-18 22:03 - 000017408 _____ C:\WINDOWS\system32\rpcnetp.dll
2017-10-12 14:10 - 2017-10-12 14:10 - 000000000 _____ C:\WINDOWS\system32\MRT-KB890830.exe
2017-10-11 09:39 - 2017-09-18 04:04 - 000918304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-10-11 09:39 - 2017-09-18 03:52 - 006672680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-10-11 09:39 - 2017-09-18 03:33 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-10-11 09:39 - 2017-09-18 03:32 - 000203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-10-11 09:39 - 2017-09-18 03:31 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-10-11 09:39 - 2017-09-18 03:29 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-10-11 09:39 - 2017-09-18 03:23 - 000857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2017-10-11 09:39 - 2017-09-18 03:23 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-10-11 09:39 - 2017-09-18 03:23 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-10-11 09:39 - 2017-09-18 03:22 - 001323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2017-10-11 09:39 - 2017-09-18 03:22 - 001137664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2017-10-11 09:39 - 2017-09-18 03:22 - 000626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-10-11 09:39 - 2017-09-18 03:22 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-10-11 09:39 - 2017-09-18 03:22 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-10-11 09:39 - 2017-09-18 03:22 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-10-11 09:39 - 2017-09-18 03:20 - 002641920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-10-11 09:39 - 2017-09-18 03:18 - 007470592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-10-11 09:39 - 2017-09-18 03:15 - 000754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-10-11 09:39 - 2017-09-18 03:14 - 001988096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-10-11 09:39 - 2017-09-18 03:14 - 001890816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-10-11 09:39 - 2017-09-18 03:14 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-10-11 09:39 - 2017-09-18 03:13 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-10-11 09:39 - 2017-09-18 03:13 - 000589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-10-11 09:39 - 2017-09-18 03:11 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-10-11 09:39 - 2017-09-14 23:52 - 001431232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-10-11 09:39 - 2017-09-14 23:33 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2017-10-11 09:39 - 2017-09-14 23:25 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2017-10-11 09:39 - 2017-09-14 23:22 - 003520512 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2017-10-11 09:39 - 2017-09-14 23:18 - 000846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2017-10-11 09:39 - 2017-09-14 23:15 - 003106304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2017-10-11 09:39 - 2017-09-14 23:15 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2017-10-11 09:39 - 2017-03-04 07:23 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2017-10-11 09:39 - 2017-03-04 07:18 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2017-10-11 09:39 - 2017-03-04 06:57 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-10-11 09:39 - 2016-08-06 05:06 - 000023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2017-10-11 09:38 - 2017-09-18 04:04 - 001725144 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-10-11 09:38 - 2017-09-18 04:01 - 000798512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2017-10-11 09:38 - 2017-09-18 03:55 - 005722320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 020967840 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 004023560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 001845512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 001360464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 001277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 000981888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-10-11 09:38 - 2017-09-18 03:37 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-10-11 09:38 - 2017-09-18 03:27 - 004615168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-10-11 09:38 - 2017-09-18 03:27 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-10-11 09:38 - 2017-09-18 03:26 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-10-11 09:38 - 2017-09-18 03:26 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2017-10-11 09:38 - 2017-09-18 03:25 - 002333184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2017-10-11 09:38 - 2017-09-18 03:23 - 000238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-10-11 09:38 - 2017-09-18 03:21 - 018364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-10-11 09:38 - 2017-09-18 03:20 - 019414016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-10-11 09:38 - 2017-09-18 03:15 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-10-11 09:38 - 2017-09-18 03:14 - 003663360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-10-11 09:38 - 2017-09-18 03:14 - 001997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2017-10-11 09:38 - 2017-09-14 23:49 - 001202936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-10-11 09:38 - 2017-09-14 23:30 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-10-11 09:38 - 2017-09-14 23:27 - 000615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2017-10-11 09:38 - 2017-09-14 23:18 - 001104896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-10-11 09:37 - 2017-09-18 04:05 - 000497424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-10-11 09:37 - 2017-09-18 04:05 - 000102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2017-10-11 09:37 - 2017-09-18 04:04 - 005994848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-10-11 09:37 - 2017-09-18 04:04 - 001953632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-10-11 09:37 - 2017-09-18 04:01 - 000133296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2017-10-11 09:37 - 2017-09-18 03:54 - 000355168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2017-10-11 09:37 - 2017-09-18 03:54 - 000186208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-10-11 09:37 - 2017-09-18 03:48 - 000043952 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2017-10-11 09:37 - 2017-09-18 03:33 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmojiDS.dll
2017-10-11 09:37 - 2017-09-18 03:33 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransliterationRanker.dll
2017-10-11 09:37 - 2017-09-18 03:33 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpninputrouter.dll
2017-10-11 09:37 - 2017-09-18 03:32 - 000138752 _____ C:\WINDOWS\system32\IHDS.dll
2017-10-11 09:37 - 2017-09-18 03:32 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\StaticDictDS.dll
2017-10-11 09:37 - 2017-09-18 03:32 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\RuleBasedDS.dll
2017-10-11 09:37 - 2017-09-18 03:32 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2017-10-11 09:37 - 2017-09-18 03:31 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-10-11 09:37 - 2017-09-18 03:31 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpndecoder.dll
2017-10-11 09:37 - 2017-09-18 03:31 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\VocabRoamingHandler.dll
2017-10-11 09:37 - 2017-09-18 03:31 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\chxranker.dll
2017-10-11 09:37 - 2017-09-18 03:30 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtCangjieDS.dll
2017-10-11 09:37 - 2017-09-18 03:30 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChsPinyinRanker.dll
2017-10-11 09:37 - 2017-09-18 03:30 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\chxinputrouter.dll
2017-10-11 09:37 - 2017-09-18 03:30 - 000220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpnranker.dll
2017-10-11 09:37 - 2017-09-18 03:29 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-10-11 09:37 - 2017-09-18 03:29 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtfDecoder.dll
2017-10-11 09:37 - 2017-09-18 03:27 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtQuickDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxAPDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimeChsPinyinMainDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxHAPDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtHkStrokeDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-10-11 09:37 - 2017-09-18 03:25 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChsStrokeDS.dll
2017-10-11 09:37 - 2017-09-18 03:24 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2017-10-11 09:37 - 2017-09-18 03:23 - 000816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2017-10-11 09:37 - 2017-09-18 03:22 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2017-10-11 09:37 - 2017-09-18 03:20 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-10-11 09:37 - 2017-09-18 03:18 - 012204032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-10-11 09:37 - 2017-09-18 03:14 - 002649600 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-10-11 09:37 - 2017-09-18 03:14 - 000675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2017-10-11 09:37 - 2017-09-18 03:14 - 000657408 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-10-11 09:37 - 2017-09-18 03:13 - 001013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2017-10-11 09:37 - 2017-09-18 03:13 - 000751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-10-11 09:37 - 2017-09-18 03:13 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2017-10-11 09:37 - 2017-09-18 03:13 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2017-10-11 09:37 - 2017-09-18 03:11 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\trie.dll
2017-10-11 09:37 - 2017-09-18 03:11 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFFuzzyDS.dll
2017-10-11 09:37 - 2017-09-18 03:11 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFSpellcheckDS.dll
2017-10-11 09:37 - 2017-09-14 23:18 - 002682880 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2017-10-11 09:37 - 2017-09-14 23:17 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2017-10-11 09:37 - 2017-03-04 07:23 - 000193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2017-10-11 09:37 - 2017-03-04 07:16 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2017-10-11 09:36 - 2017-09-18 04:27 - 001336160 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-10-11 09:36 - 2017-09-18 04:27 - 000218976 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2017-10-11 09:36 - 2017-09-18 04:27 - 000113504 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-10-11 09:36 - 2017-09-18 04:01 - 000145760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2017-10-11 09:36 - 2017-09-18 03:59 - 000341344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-10-11 09:36 - 2017-09-18 03:54 - 000523792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-10-11 09:36 - 2017-09-18 03:52 - 001384704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-10-11 09:36 - 2017-09-18 03:51 - 000198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-10-11 09:36 - 2017-09-18 03:51 - 000178016 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-10-11 09:36 - 2017-09-18 03:50 - 001409024 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-10-11 09:36 - 2017-09-18 03:50 - 001344992 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-10-11 09:36 - 2017-09-18 03:49 - 001260784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-10-11 09:36 - 2017-09-18 03:33 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2017-10-11 09:36 - 2017-09-18 03:31 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-10-11 09:36 - 2017-09-18 03:30 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-10-11 09:36 - 2017-09-18 03:30 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-10-11 09:36 - 2017-09-18 03:29 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-10-11 09:36 - 2017-09-18 03:29 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2017-10-11 09:36 - 2017-09-18 03:28 - 000406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2017-10-11 09:36 - 2017-09-18 03:28 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-10-11 09:36 - 2017-09-18 03:27 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPTpm12.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000367104 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-10-11 09:36 - 2017-09-18 03:25 - 000493568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2017-10-11 09:36 - 2017-09-18 03:25 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2017-10-11 09:36 - 2017-09-18 03:25 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-10-11 09:36 - 2017-09-18 03:25 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-10-11 09:36 - 2017-09-18 03:24 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2017-10-11 09:36 - 2017-09-18 03:24 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-10-11 09:36 - 2017-09-18 03:24 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-10-11 09:36 - 2017-09-18 03:23 - 001013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-10-11 09:36 - 2017-09-18 03:23 - 000693760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-10-11 09:36 - 2017-09-18 03:23 - 000636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-10-11 09:36 - 2017-09-18 03:23 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-10-11 09:36 - 2017-09-18 03:22 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2017-10-11 09:36 - 2017-09-18 03:21 - 001584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-10-11 09:36 - 2017-09-18 03:20 - 003774464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-10-11 09:36 - 2017-09-18 03:19 - 002750976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2017-10-11 09:36 - 2017-09-18 03:19 - 000303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2017-10-11 09:36 - 2017-09-18 03:19 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2017-10-11 09:36 - 2017-09-18 03:18 - 000734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 006474752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-10-11 09:36 - 2017-09-18 03:14 - 002997760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-10-11 09:36 - 2017-09-18 03:14 - 002740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 002483712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 001599488 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 001556992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 001170944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 001116672 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-10-11 09:36 - 2017-09-18 03:13 - 001239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-10-11 09:36 - 2017-09-18 03:13 - 000920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-10-11 09:36 - 2017-09-18 03:13 - 000886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-10-11 09:36 - 2017-09-14 23:59 - 000096064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-10-11 09:36 - 2017-09-14 23:52 - 000136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-10-11 09:36 - 2017-09-14 23:51 - 001980776 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2017-10-11 09:36 - 2017-09-14 23:31 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-10-11 09:36 - 2017-09-14 23:30 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollUI.dll
2017-10-11 09:36 - 2017-09-14 23:30 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB7.dll
2017-10-11 09:36 - 2017-09-14 23:30 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2017-10-11 09:36 - 2017-09-14 23:30 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2017-10-11 09:36 - 2017-09-14 23:28 - 007626240 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-10-11 09:36 - 2017-09-14 23:28 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2017-10-11 09:36 - 2017-09-14 23:28 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2017-10-11 09:36 - 2017-09-14 23:27 - 000662528 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-10-11 09:36 - 2017-09-14 23:26 - 001167360 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2017-10-11 09:36 - 2017-09-14 23:26 - 000636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2017-10-11 09:36 - 2017-09-14 23:26 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-10-11 09:36 - 2017-09-14 23:26 - 000387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2017-10-11 09:36 - 2017-09-14 23:26 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\certreq.exe
2017-10-11 09:36 - 2017-09-14 23:17 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-10-11 09:36 - 2017-09-14 23:14 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2017-10-11 09:36 - 2017-09-14 03:04 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswstr10.dll
2017-10-11 09:36 - 2017-09-14 03:04 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\system32\msexcl40.dll
2017-10-11 09:36 - 2017-09-14 03:04 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjint40.dll
2017-10-11 09:36 - 2017-03-04 07:24 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2017-10-11 09:36 - 2017-03-04 07:22 - 000216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-10-11 09:36 - 2017-03-04 07:00 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-10-11 03:02 - 2017-10-11 03:02 - 000304816 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-10-11 03:00 - 2017-10-11 03:00 - 005490688 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-11-07 21:57 - 2016-08-19 08:14 - 000000000 ____D C:\Program Files\Opera
2017-11-07 21:24 - 2016-07-16 09:28 - 000000000 ____D C:\WINDOWS\INF
2017-11-07 21:14 - 2016-08-24 16:36 - 000783648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2017-11-07 21:06 - 2017-01-14 06:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-11-07 21:05 - 2016-07-16 03:22 - 002097152 _____ C:\WINDOWS\system32\config\BBI
2017-11-07 20:44 - 2017-07-03 18:14 - 000001078 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2017-11-07 20:42 - 2016-08-19 07:53 - 004350710 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-11-07 20:42 - 2016-07-16 18:01 - 001948184 _____ C:\WINDOWS\system32\perfh005.dat
2017-11-07 20:42 - 2016-07-16 18:01 - 000527844 _____ C:\WINDOWS\system32\perfc005.dat
2017-11-07 20:25 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-11-07 19:51 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-11-07 04:58 - 2017-01-14 05:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-11-06 23:55 - 2017-04-06 13:48 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-11-06 23:55 - 2017-04-06 13:48 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-11-06 23:52 - 2017-09-09 15:11 - 000000000 ____D C:\Users\antoninwojcik1\AppData\LocalLow\Mozilla
2017-11-03 21:35 - 2016-07-16 09:19 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-11-03 21:12 - 2016-08-27 07:16 - 000000000 ____D C:\Users\Špelec\AppData\Roaming\Seznam Browser
2017-11-03 21:12 - 2016-08-27 07:16 - 000000000 ____D C:\Users\Špelec\AppData\Local\Seznam.cz
2017-10-29 22:31 - 2017-07-24 19:57 - 000000000 ____D C:\Program Files\UNP
2017-10-29 22:29 - 2016-07-16 09:26 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2017-10-29 22:29 - 2016-07-16 09:26 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2017-10-29 22:29 - 2016-07-16 09:26 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2017-10-29 22:29 - 2016-07-16 09:26 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2017-10-28 19:42 - 2016-08-19 08:02 - 000000176 _____ C:\WINDOWS\win.ini
2017-10-28 19:09 - 2016-09-05 18:55 - 000000375 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2017-10-28 11:08 - 2017-01-14 05:47 - 000000000 ____D C:\Users\Špelec
2017-10-21 23:54 - 2017-09-09 16:35 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-10-21 23:54 - 2017-09-09 16:35 - 000000000 ____D C:\Program Files\Malwarebytes
2017-10-21 22:37 - 2016-02-13 14:21 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-10-20 19:38 - 2017-02-06 22:19 - 000000000 ____D C:\Users\Špelec\Desktop\DCIM
2017-10-18 23:35 - 2017-09-09 16:28 - 066347240 _____ (Malwarebytes ) C:\Users\antoninwojcik1\Downloads\mb3-setup-consumer-3.2.2.2018(1).exe
2017-10-18 01:58 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\rescache
2017-10-16 17:19 - 2017-01-14 05:38 - 000000000 ___DC C:\WINDOWS\Panther
2017-10-16 17:16 - 2016-07-16 03:22 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-10-16 17:16 - 2016-01-16 17:16 - 000008192 __RSH C:\BOOTSECT.BAK
2017-10-16 17:06 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\Registration
2017-10-16 17:03 - 2017-01-14 06:09 - 000015903 _____ C:\WINDOWS\diagwrn.xml
2017-10-16 17:03 - 2017-01-14 06:09 - 000015833 _____ C:\WINDOWS\diagerr.xml
2017-10-13 23:12 - 2016-07-16 09:29 - 000000000 ___HD C:\Program Files\WindowsApps
2017-10-13 14:07 - 2017-01-14 05:39 - 000193128 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-10-13 14:03 - 2016-07-16 09:29 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-10-13 14:03 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-10-13 13:27 - 2017-09-29 20:00 - 000000000 ____D C:\Program Files\rempl
2017-10-12 14:14 - 2016-08-19 18:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-10-12 14:09 - 2016-08-19 18:49 - 124059592 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-10-12 13:59 - 2016-09-28 20:41 - 000068072 _____ (Absolute Software Corp.) C:\WINDOWS\system32\agremove.exe
2017-10-11 03:03 - 2017-06-06 14:37 - 000055160 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000777952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys.151008566331203
2017-10-11 03:02 - 2016-08-24 16:36 - 000499560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000297840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000149824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000124952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000099560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000070864 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000042856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-10-11 03:02 - 2016-08-24 16:30 - 000000000 ____D C:\ProgramData\AVAST Software
2017-10-11 03:01 - 2017-03-15 14:42 - 000276736 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswblogx.sys
2017-10-11 03:01 - 2017-03-15 14:42 - 000255624 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdriverx.sys
2017-10-11 03:01 - 2017-03-15 14:42 - 000157416 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidshx.sys
2017-10-11 03:01 - 2017-03-15 14:42 - 000050384 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbunivx.sys
2017-10-11 03:00 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\Macromed

==================== Files in the root of some directories =======

2017-11-03 21:46 - 2017-11-03 21:46 - 000007614 _____ () C:\Users\Špelec\AppData\Local\Resmon.ResmonCfg

Some files in TEMP:
====================
2017-07-27 00:33 - 2017-07-27 00:34 - 018309328 _____ (Microsoft Corporation) C:\Users\Špelec\AppData\Local\Temp\MediaCreationTool.exe
2016-08-16 08:48 - 2016-08-16 08:48 - 000488960 _____ () C:\Users\Špelec\AppData\Local\Temp\sqlite3.exe
2017-05-12 04:04 - 2017-05-12 08:14 - 000000000 _____ () C:\Users\Špelec\AppData\Local\Temp\{57800645-8DB2-4E5F-B580-A949E6F2D3F7}-58.0.3029.110_57.0.2987.133_chrome_updater.exe

Some zero byte size files/folders:
==========================
C:\Windows\System32\BackgroundMediaPolicy.dll
C:\Windows\System32\MRT-KB890830.exe
C:\Windows\System32\msxml6r.dll
C:\Windows\System32\wpnprv.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-11-03 20:15

==================== End of FRST.txt ============================

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

# AdwCleaner 7.0.4.0 - Logfile created on Tue Nov 07 21:31:11 2017
# Updated on 2017/27/10 by Malwarebytes
# Database: 11-07-2017.1
# Running on Windows 10 Home (X86)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

PUP.Optional.Reimage, C:\Windows\Reimage.ini

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\d19h7q92ya6ec9.cloudfront.net
PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\d19h7q92ya6ec9.cloudfront.net
PUP.Optional.Reimage, [Key] - HKLM\SOFTWARE\Reimage

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

PUP.Optional.MindSpark, Plugin found: FromDocToPDF -
PUP.Optional.MindSpark, Plugin found: EasyPDFCombine -
PUP.Optional.MindSpark, Plugin found: Search Extension by Ask -

/!\ Please Reset the Chrome Synchronization before cleaning the Chrome Preferences: https://support.google.com/chrome/answer/3097271

*************************

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########

Dejte nový log FRST.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02-11-2017 02
Ran by Špelec (administrator) on ŠPELEC-PC (07-11-2017 23:57:32)
Running from C:\Users\Špelec\Desktop
Loaded Profiles: Špelec (Available Profiles: Špelec & antoninwojcik1 & tonylee)
Platform: Microsoft Windows 10 Home Version 1607 14393.1770 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(ZSMCSNAP) C:\WINDOWS\ZSSnp211.exe
() C:\WINDOWS\Domino.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Facebook) C:\Users\Špelec\AppData\Local\Facebook\Games\FacebookGameroom.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Corporation) C:\WINDOWS\System32\Magnify.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe
(Malwarebytes) C:\Users\Špelec\Desktop\adwcleaner_7.0.4.0.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe
(Microsoft Corporation) C:\WINDOWS\System32\AtBroker.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ZSSnp211] => C:\WINDOWS\ZSSnp211.exe [57344 2007-04-06] (ZSMCSNAP)
HKLM\...\Run: [Domino] => C:\WINDOWS\Domino.exe [49152 2006-08-18] ()
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-10-11] (AVAST Software)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [483840 2017-04-28] (Microsoft Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-2906948890-3372974042-1230140830-1000\...\MountPoints2: {443bf757-65ae-11e6-89be-806e6f6e6963} - "D:\autorun.exe"
Startup: C:\Users\Špelec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2017-06-17]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Špelec\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook)
BootExecute: autocheck autochk /m /P \Device\HarddiskVolume1autocheck autochk *

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{8f1e7342-e256-4485-af39-0fdf97a43b5d}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-2906948890-3372974042-1230140830-1000 -> hxxp://seznam.cz/

FireFox:
========
FF DefaultProfile: kd9csxxj.default
FF ProfilePath: C:\Users\Špelec\AppData\Roaming\Mozilla\Firefox\Profiles\kd9csxxj.default [2017-10-21]
FF Extension: (Avast SafePrice) - C:\Users\Špelec\AppData\Roaming\Mozilla\Firefox\Profiles\kd9csxxj.default\Extensions\sp@avast.com.xpi [2017-07-03]
FF Extension: (Avast Online Security) - C:\Users\Špelec\AppData\Roaming\Mozilla\Firefox\Profiles\kd9csxxj.default\Extensions\wrc@avast.com.xpi [2017-09-04]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com/
CHR Profile: C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default [2017-11-07]
CHR Extension: (Prezentace) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-28]
CHR Extension: (Dokumenty) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-28]
CHR Extension: (Disk Google) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-19]
CHR Extension: (YouTube) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-19]
CHR Extension: (Avast SafePrice) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-11-07]
CHR Extension: (Tabulky) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-07]
CHR Extension: (Filmy Google Play) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdijeikdkaembjbdobgfkoidjkpbmlkd [2016-08-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-11-07]
CHR Extension: (Gmail) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-19]
CHR Extension: (Chrome Media Router) - C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-07]
CHR Profile: C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-10-28]
CHR Profile: C:\Users\Špelec\AppData\Local\Google\Chrome\User Data\System Profile [2017-10-28]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5828816 2017-10-11] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-10-11] (AVAST Software)
S3 PrintNotify; C:\WINDOWS\system32\spool\drivers\W32X86\3\PrintConfig.dll [2717184 2017-03-28] (Microsoft Corporation) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271488 2017-04-28] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2017-08-08] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriverx.sys [255624 2017-10-11] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidshx.sys [157416 2017-10-11] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswblogx.sys [276736 2017-10-11] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbunivx.sys [50384 2017-10-11] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [42856 2017-10-11] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [39784 2017-09-04] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [124952 2017-10-11] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [99560 2017-10-11] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [70864 2017-10-11] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [783648 2017-11-07] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [499560 2017-10-11] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [149824 2017-10-11] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [297840 2017-10-11] (AVAST Software)
S3 BthMtpEnum; C:\WINDOWS\system32\DRIVERS\BthMtpEnum.sys [53248 2016-07-16] (Microsoft Corporation)
R3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109184 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 LVUSBSta; C:\WINDOWS\system32\DRIVERS\LVUSBSta.sys [22016 2005-01-19] (Labtec Inc.)
S3 NdisImPlatformMp; C:\WINDOWS\System32\drivers\NdisImPlatform.sys [109568 2016-07-16] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 netwlv32; C:\WINDOWS\System32\drivers\netwlv32.sys [6637056 2016-07-16] (Intel Corporation)
S3 PID_0928; C:\WINDOWS\system32\DRIVERS\LV561AV.SYS [211712 2005-01-19] (Labtec Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [16384 2016-07-16] (Microsoft Corporation)
S3 vvftav211; C:\WINDOWS\system32\drivers\vvftav211.sys [480128 2007-12-10] (Vimicro Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [119952 2016-07-15] (MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
S3 ZSMC30x; C:\WINDOWS\System32\Drivers\ZS211.sys [1472000 2007-12-13] (ZSMC.Corporation)
S3 MBAMProtection; \??\C:\WINDOWS\system32\drivers\mbam.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-11-07 22:27 - 2017-11-07 23:55 - 000000000 ____D C:\AdwCleaner
2017-11-07 22:27 - 2017-11-07 22:27 - 008261584 _____ (Malwarebytes) C:\Users\Špelec\Desktop\adwcleaner_7.0.4.0.exe
2017-11-07 22:16 - 2017-11-07 22:16 - 000000000 ____D C:\rsit
2017-11-07 22:16 - 2017-11-07 22:16 - 000000000 ____D C:\Program Files\trend micro
2017-11-07 22:15 - 2017-11-07 22:16 - 001107968 _____ C:\Users\Špelec\Desktop\RSIT.exe
2017-11-07 22:00 - 2017-11-07 22:01 - 000025216 _____ C:\Users\Špelec\Desktop\Addition.txt
2017-11-07 21:57 - 2017-11-07 23:58 - 000011288 _____ C:\Users\Špelec\Desktop\FRST.txt
2017-11-07 21:51 - 2017-11-07 21:51 - 000112640 _____ (forum.viry.cz) C:\Users\Špelec\Downloads\FRSTLauncher.exe
2017-11-07 21:39 - 2017-11-07 23:57 - 000000000 ____D C:\FRST
2017-11-07 21:38 - 2017-11-07 21:39 - 001799680 _____ (Farbar) C:\Users\Špelec\Desktop\FRST.exe
2017-11-07 21:24 - 2017-11-07 21:24 - 000000000 ____D C:\Program Files\DIFX
2017-11-07 21:21 - 2017-11-07 21:22 - 038189742 _____ C:\Users\Špelec\Desktop\ASUS_WiFi_XP_32_z13215.zip
2017-11-07 21:21 - 2017-11-07 21:21 - 000132406 _____ C:\Users\Špelec\Desktop\3b7ce358bcfee7a581768514cc0ca78e (1).zip
2017-11-07 21:20 - 2017-11-07 21:20 - 000132406 _____ C:\Users\Špelec\Desktop\3b7ce358bcfee7a581768514cc0ca78e.zip
2017-11-03 21:46 - 2017-11-03 21:46 - 000007614 _____ C:\Users\Špelec\AppData\Local\Resmon.ResmonCfg
2017-11-03 21:12 - 2017-11-03 21:12 - 000001975 _____ C:\Users\Špelec\Desktop\Seznam.cz.lnk
2017-11-03 21:12 - 2017-11-03 21:12 - 000001955 _____ C:\Users\Špelec\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.lnk
2017-11-03 20:21 - 2016-08-19 01:09 - 000000160 _____ C:\Users\Špelec\Downloads\Flash Player Auto-Updater (2).settings
2017-11-02 00:08 - 2017-11-02 00:22 - 000000000 ____D C:\Users\tonylee\AppData\LocalLow\Mozilla
2017-11-02 00:07 - 2017-11-02 00:08 - 000000000 ____D C:\Users\tonylee\AppData\Roaming\Mozilla
2017-11-02 00:07 - 2017-11-02 00:07 - 000000000 ____D C:\Users\tonylee\AppData\Local\Mozilla
2017-10-25 17:50 - 2017-10-25 17:50 - 000000000 ____D C:\Users\Public\Documents\MDMDiagnostics
2017-10-22 00:55 - 2016-08-19 01:09 - 000000160 _____ C:\Users\Špelec\Downloads\Flash Player Auto-Updater (1).settings
2017-10-22 00:54 - 2016-08-19 01:09 - 000000160 _____ C:\Users\Špelec\Downloads\Flash Player Auto-Updater.settings
2017-10-21 22:44 - 2017-10-21 22:44 - 000000000 ____D C:\Users\tonylee\AppData\Roaming\AVAST Software
2017-10-21 22:44 - 2017-10-21 22:44 - 000000000 ____D C:\Users\tonylee\AppData\Local\CEF
2017-10-21 22:37 - 2017-10-28 22:04 - 000000000 ____D C:\Users\tonylee\AppData\Local\ConnectedDevicesPlatform
2017-10-21 22:37 - 2017-10-25 01:37 - 000000000 ____D C:\Users\tonylee
2017-10-21 22:37 - 2017-10-21 23:03 - 000002282 _____ C:\Users\tonylee\Desktop\Google Chrome.lnk
2017-10-21 22:37 - 2017-10-21 22:39 - 000000000 ____D C:\Users\tonylee\AppData\Local\Packages
2017-10-21 22:37 - 2017-10-21 22:37 - 000000020 ___SH C:\Users\tonylee\ntuser.ini
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Šablony
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Soubory cookie
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Poslední
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Okolní tiskárny
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Okolní síť
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Nabídka Start
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Dokumenty
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Documents\Obrázky
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Documents\Hudba
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Documents\Filmy
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\Data aplikací
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 _SHDL C:\Users\tonylee\AppData\Local\Data aplikací
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 ____D C:\Users\tonylee\AppData\Roaming\Adobe
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 ____D C:\Users\tonylee\AppData\Local\VirtualStore
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 ____D C:\Users\tonylee\AppData\Local\TileDataLayer
2017-10-21 22:37 - 2017-10-21 22:37 - 000000000 ____D C:\Users\tonylee\AppData\Local\Google
2017-10-21 02:33 - 2017-10-21 02:33 - 000000000 ____D C:\$WINDOWS.~BT
2017-10-21 02:32 - 2017-10-21 02:34 - 000000000 ___HD C:\$SysReset
2017-10-18 22:03 - 2017-10-18 22:03 - 000017408 _____ C:\WINDOWS\system32\rpcnetp.exe
2017-10-18 22:03 - 2017-10-18 22:03 - 000017408 _____ C:\WINDOWS\system32\rpcnetp.dll
2017-10-12 14:10 - 2017-10-12 14:10 - 000000000 _____ C:\WINDOWS\system32\MRT-KB890830.exe
2017-10-11 09:39 - 2017-09-18 04:04 - 000918304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-10-11 09:39 - 2017-09-18 03:52 - 006672680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-10-11 09:39 - 2017-09-18 03:33 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-10-11 09:39 - 2017-09-18 03:32 - 000203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-10-11 09:39 - 2017-09-18 03:31 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-10-11 09:39 - 2017-09-18 03:29 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-10-11 09:39 - 2017-09-18 03:23 - 000857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2017-10-11 09:39 - 2017-09-18 03:23 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-10-11 09:39 - 2017-09-18 03:23 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-10-11 09:39 - 2017-09-18 03:22 - 001323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2017-10-11 09:39 - 2017-09-18 03:22 - 001137664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2017-10-11 09:39 - 2017-09-18 03:22 - 000626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-10-11 09:39 - 2017-09-18 03:22 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-10-11 09:39 - 2017-09-18 03:22 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-10-11 09:39 - 2017-09-18 03:22 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-10-11 09:39 - 2017-09-18 03:20 - 002641920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-10-11 09:39 - 2017-09-18 03:18 - 007470592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-10-11 09:39 - 2017-09-18 03:15 - 000754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-10-11 09:39 - 2017-09-18 03:14 - 001988096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-10-11 09:39 - 2017-09-18 03:14 - 001890816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-10-11 09:39 - 2017-09-18 03:14 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-10-11 09:39 - 2017-09-18 03:13 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-10-11 09:39 - 2017-09-18 03:13 - 000589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-10-11 09:39 - 2017-09-18 03:11 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-10-11 09:39 - 2017-09-14 23:52 - 001431232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-10-11 09:39 - 2017-09-14 23:33 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2017-10-11 09:39 - 2017-09-14 23:25 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2017-10-11 09:39 - 2017-09-14 23:22 - 003520512 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2017-10-11 09:39 - 2017-09-14 23:18 - 000846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2017-10-11 09:39 - 2017-09-14 23:15 - 003106304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2017-10-11 09:39 - 2017-09-14 23:15 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2017-10-11 09:39 - 2017-03-04 07:23 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2017-10-11 09:39 - 2017-03-04 07:18 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2017-10-11 09:39 - 2017-03-04 06:57 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-10-11 09:39 - 2016-08-06 05:06 - 000023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2017-10-11 09:38 - 2017-09-18 04:04 - 001725144 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-10-11 09:38 - 2017-09-18 04:01 - 000798512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2017-10-11 09:38 - 2017-09-18 03:55 - 005722320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 020967840 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 004023560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 001845512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 001360464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 001277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-10-11 09:38 - 2017-09-18 03:52 - 000981888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-10-11 09:38 - 2017-09-18 03:37 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-10-11 09:38 - 2017-09-18 03:27 - 004615168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-10-11 09:38 - 2017-09-18 03:27 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-10-11 09:38 - 2017-09-18 03:26 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-10-11 09:38 - 2017-09-18 03:26 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2017-10-11 09:38 - 2017-09-18 03:25 - 002333184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2017-10-11 09:38 - 2017-09-18 03:23 - 000238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-10-11 09:38 - 2017-09-18 03:21 - 018364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-10-11 09:38 - 2017-09-18 03:20 - 019414016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-10-11 09:38 - 2017-09-18 03:15 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-10-11 09:38 - 2017-09-18 03:14 - 003663360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-10-11 09:38 - 2017-09-18 03:14 - 001997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2017-10-11 09:38 - 2017-09-14 23:49 - 001202936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-10-11 09:38 - 2017-09-14 23:30 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-10-11 09:38 - 2017-09-14 23:27 - 000615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2017-10-11 09:38 - 2017-09-14 23:18 - 001104896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-10-11 09:37 - 2017-09-18 04:05 - 000497424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-10-11 09:37 - 2017-09-18 04:05 - 000102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2017-10-11 09:37 - 2017-09-18 04:04 - 005994848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-10-11 09:37 - 2017-09-18 04:04 - 001953632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-10-11 09:37 - 2017-09-18 04:01 - 000133296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2017-10-11 09:37 - 2017-09-18 03:54 - 000355168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2017-10-11 09:37 - 2017-09-18 03:54 - 000186208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-10-11 09:37 - 2017-09-18 03:48 - 000043952 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2017-10-11 09:37 - 2017-09-18 03:33 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmojiDS.dll
2017-10-11 09:37 - 2017-09-18 03:33 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransliterationRanker.dll
2017-10-11 09:37 - 2017-09-18 03:33 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpninputrouter.dll
2017-10-11 09:37 - 2017-09-18 03:32 - 000138752 _____ C:\WINDOWS\system32\IHDS.dll
2017-10-11 09:37 - 2017-09-18 03:32 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\StaticDictDS.dll
2017-10-11 09:37 - 2017-09-18 03:32 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\RuleBasedDS.dll
2017-10-11 09:37 - 2017-09-18 03:32 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2017-10-11 09:37 - 2017-09-18 03:31 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-10-11 09:37 - 2017-09-18 03:31 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpndecoder.dll
2017-10-11 09:37 - 2017-09-18 03:31 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\VocabRoamingHandler.dll
2017-10-11 09:37 - 2017-09-18 03:31 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\chxranker.dll
2017-10-11 09:37 - 2017-09-18 03:30 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtCangjieDS.dll
2017-10-11 09:37 - 2017-09-18 03:30 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChsPinyinRanker.dll
2017-10-11 09:37 - 2017-09-18 03:30 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\chxinputrouter.dll
2017-10-11 09:37 - 2017-09-18 03:30 - 000220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpnranker.dll
2017-10-11 09:37 - 2017-09-18 03:29 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-10-11 09:37 - 2017-09-18 03:29 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtfDecoder.dll
2017-10-11 09:37 - 2017-09-18 03:27 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtQuickDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxAPDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimeChsPinyinMainDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxHAPDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtHkStrokeDS.dll
2017-10-11 09:37 - 2017-09-18 03:26 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-10-11 09:37 - 2017-09-18 03:25 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChsStrokeDS.dll
2017-10-11 09:37 - 2017-09-18 03:24 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2017-10-11 09:37 - 2017-09-18 03:23 - 000816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2017-10-11 09:37 - 2017-09-18 03:22 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2017-10-11 09:37 - 2017-09-18 03:20 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-10-11 09:37 - 2017-09-18 03:18 - 012204032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-10-11 09:37 - 2017-09-18 03:14 - 002649600 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-10-11 09:37 - 2017-09-18 03:14 - 000675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2017-10-11 09:37 - 2017-09-18 03:14 - 000657408 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-10-11 09:37 - 2017-09-18 03:13 - 001013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2017-10-11 09:37 - 2017-09-18 03:13 - 000751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-10-11 09:37 - 2017-09-18 03:13 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2017-10-11 09:37 - 2017-09-18 03:13 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2017-10-11 09:37 - 2017-09-18 03:11 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\trie.dll
2017-10-11 09:37 - 2017-09-18 03:11 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFFuzzyDS.dll
2017-10-11 09:37 - 2017-09-18 03:11 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFSpellcheckDS.dll
2017-10-11 09:37 - 2017-09-14 23:18 - 002682880 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2017-10-11 09:37 - 2017-09-14 23:17 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2017-10-11 09:37 - 2017-03-04 07:23 - 000193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2017-10-11 09:37 - 2017-03-04 07:16 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2017-10-11 09:36 - 2017-09-18 04:27 - 001336160 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-10-11 09:36 - 2017-09-18 04:27 - 000218976 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2017-10-11 09:36 - 2017-09-18 04:27 - 000113504 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-10-11 09:36 - 2017-09-18 04:01 - 000145760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2017-10-11 09:36 - 2017-09-18 03:59 - 000341344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-10-11 09:36 - 2017-09-18 03:54 - 000523792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-10-11 09:36 - 2017-09-18 03:52 - 001384704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-10-11 09:36 - 2017-09-18 03:51 - 000198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-10-11 09:36 - 2017-09-18 03:51 - 000178016 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-10-11 09:36 - 2017-09-18 03:50 - 001409024 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-10-11 09:36 - 2017-09-18 03:50 - 001344992 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-10-11 09:36 - 2017-09-18 03:49 - 001260784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-10-11 09:36 - 2017-09-18 03:33 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2017-10-11 09:36 - 2017-09-18 03:31 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-10-11 09:36 - 2017-09-18 03:30 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-10-11 09:36 - 2017-09-18 03:30 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-10-11 09:36 - 2017-09-18 03:29 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-10-11 09:36 - 2017-09-18 03:29 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2017-10-11 09:36 - 2017-09-18 03:28 - 000406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2017-10-11 09:36 - 2017-09-18 03:28 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-10-11 09:36 - 2017-09-18 03:27 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPTpm12.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000367104 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-10-11 09:36 - 2017-09-18 03:26 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-10-11 09:36 - 2017-09-18 03:25 - 000493568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2017-10-11 09:36 - 2017-09-18 03:25 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2017-10-11 09:36 - 2017-09-18 03:25 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-10-11 09:36 - 2017-09-18 03:25 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-10-11 09:36 - 2017-09-18 03:24 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2017-10-11 09:36 - 2017-09-18 03:24 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-10-11 09:36 - 2017-09-18 03:24 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-10-11 09:36 - 2017-09-18 03:23 - 001013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-10-11 09:36 - 2017-09-18 03:23 - 000693760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-10-11 09:36 - 2017-09-18 03:23 - 000636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-10-11 09:36 - 2017-09-18 03:23 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-10-11 09:36 - 2017-09-18 03:22 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2017-10-11 09:36 - 2017-09-18 03:21 - 001584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-10-11 09:36 - 2017-09-18 03:20 - 003774464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-10-11 09:36 - 2017-09-18 03:19 - 002750976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2017-10-11 09:36 - 2017-09-18 03:19 - 000303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2017-10-11 09:36 - 2017-09-18 03:19 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2017-10-11 09:36 - 2017-09-18 03:18 - 000734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 006474752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-10-11 09:36 - 2017-09-18 03:14 - 002997760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-10-11 09:36 - 2017-09-18 03:14 - 002740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 002483712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 001599488 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 001556992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 001170944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-10-11 09:36 - 2017-09-18 03:14 - 001116672 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-10-11 09:36 - 2017-09-18 03:13 - 001239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-10-11 09:36 - 2017-09-18 03:13 - 000920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-10-11 09:36 - 2017-09-18 03:13 - 000886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-10-11 09:36 - 2017-09-14 23:59 - 000096064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-10-11 09:36 - 2017-09-14 23:52 - 000136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-10-11 09:36 - 2017-09-14 23:51 - 001980776 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2017-10-11 09:36 - 2017-09-14 23:31 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-10-11 09:36 - 2017-09-14 23:30 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollUI.dll
2017-10-11 09:36 - 2017-09-14 23:30 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB7.dll
2017-10-11 09:36 - 2017-09-14 23:30 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2017-10-11 09:36 - 2017-09-14 23:30 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2017-10-11 09:36 - 2017-09-14 23:28 - 007626240 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-10-11 09:36 - 2017-09-14 23:28 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2017-10-11 09:36 - 2017-09-14 23:28 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2017-10-11 09:36 - 2017-09-14 23:27 - 000662528 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-10-11 09:36 - 2017-09-14 23:26 - 001167360 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2017-10-11 09:36 - 2017-09-14 23:26 - 000636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2017-10-11 09:36 - 2017-09-14 23:26 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-10-11 09:36 - 2017-09-14 23:26 - 000387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2017-10-11 09:36 - 2017-09-14 23:26 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\certreq.exe
2017-10-11 09:36 - 2017-09-14 23:17 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-10-11 09:36 - 2017-09-14 23:14 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2017-10-11 09:36 - 2017-09-14 03:04 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswstr10.dll
2017-10-11 09:36 - 2017-09-14 03:04 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\system32\msexcl40.dll
2017-10-11 09:36 - 2017-09-14 03:04 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjint40.dll
2017-10-11 09:36 - 2017-03-04 07:24 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2017-10-11 09:36 - 2017-03-04 07:22 - 000216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-10-11 09:36 - 2017-03-04 07:00 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-10-11 03:02 - 2017-10-11 03:02 - 000304816 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-10-11 03:00 - 2017-10-11 03:00 - 005490688 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-11-07 23:49 - 2016-08-19 08:14 - 000000000 ____D C:\Program Files\Opera
2017-11-07 23:36 - 2017-01-14 06:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-11-07 23:35 - 2016-07-16 03:22 - 002097152 _____ C:\WINDOWS\system32\config\BBI
2017-11-07 21:24 - 2016-07-16 09:28 - 000000000 ____D C:\WINDOWS\INF
2017-11-07 21:14 - 2016-08-24 16:36 - 000783648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2017-11-07 20:44 - 2017-07-03 18:14 - 000001078 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2017-11-07 20:42 - 2016-08-19 07:53 - 004350710 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-11-07 20:42 - 2016-07-16 18:01 - 001948184 _____ C:\WINDOWS\system32\perfh005.dat
2017-11-07 20:42 - 2016-07-16 18:01 - 000527844 _____ C:\WINDOWS\system32\perfc005.dat
2017-11-07 20:25 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-11-07 19:51 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-11-07 04:58 - 2017-01-14 05:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-11-06 23:55 - 2017-04-06 13:48 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-11-06 23:55 - 2017-04-06 13:48 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-11-06 23:52 - 2017-09-09 15:11 - 000000000 ____D C:\Users\antoninwojcik1\AppData\LocalLow\Mozilla
2017-11-03 21:35 - 2016-07-16 09:19 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-11-03 21:12 - 2016-08-27 07:16 - 000000000 ____D C:\Users\Špelec\AppData\Roaming\Seznam Browser
2017-11-03 21:12 - 2016-08-27 07:16 - 000000000 ____D C:\Users\Špelec\AppData\Local\Seznam.cz
2017-10-29 22:31 - 2017-07-24 19:57 - 000000000 ____D C:\Program Files\UNP
2017-10-29 22:29 - 2016-07-16 09:26 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2017-10-29 22:29 - 2016-07-16 09:26 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2017-10-29 22:29 - 2016-07-16 09:26 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2017-10-29 22:29 - 2016-07-16 09:26 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2017-10-28 19:42 - 2016-08-19 08:02 - 000000176 _____ C:\WINDOWS\win.ini
2017-10-28 19:09 - 2016-09-05 18:55 - 000000375 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2017-10-28 11:08 - 2017-01-14 05:47 - 000000000 ____D C:\Users\Špelec
2017-10-21 23:54 - 2017-09-09 16:35 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-10-21 23:54 - 2017-09-09 16:35 - 000000000 ____D C:\Program Files\Malwarebytes
2017-10-21 22:37 - 2016-02-13 14:21 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-10-20 19:38 - 2017-02-06 22:19 - 000000000 ____D C:\Users\Špelec\Desktop\DCIM
2017-10-18 23:35 - 2017-09-09 16:28 - 066347240 _____ (Malwarebytes ) C:\Users\antoninwojcik1\Downloads\mb3-setup-consumer-3.2.2.2018(1).exe
2017-10-18 01:58 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\rescache
2017-10-16 17:19 - 2017-01-14 05:38 - 000000000 ___DC C:\WINDOWS\Panther
2017-10-16 17:16 - 2016-07-16 03:22 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-10-16 17:16 - 2016-01-16 17:16 - 000008192 __RSH C:\BOOTSECT.BAK
2017-10-16 17:06 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\Registration
2017-10-16 17:03 - 2017-01-14 06:09 - 000015903 _____ C:\WINDOWS\diagwrn.xml
2017-10-16 17:03 - 2017-01-14 06:09 - 000015833 _____ C:\WINDOWS\diagerr.xml
2017-10-13 23:12 - 2016-07-16 09:29 - 000000000 ___HD C:\Program Files\WindowsApps
2017-10-13 14:07 - 2017-01-14 05:39 - 000193128 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-10-13 14:03 - 2016-07-16 09:29 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-10-13 14:03 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-10-13 13:27 - 2017-09-29 20:00 - 000000000 ____D C:\Program Files\rempl
2017-10-12 14:14 - 2016-08-19 18:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-10-12 14:09 - 2016-08-19 18:49 - 124059592 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-10-12 13:59 - 2016-09-28 20:41 - 000068072 _____ (Absolute Software Corp.) C:\WINDOWS\system32\agremove.exe
2017-10-11 03:03 - 2017-06-06 14:37 - 000055160 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000499560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000297840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000149824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000124952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000099560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000070864 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-10-11 03:02 - 2016-08-24 16:36 - 000042856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-10-11 03:02 - 2016-08-24 16:30 - 000000000 ____D C:\ProgramData\AVAST Software
2017-10-11 03:01 - 2017-03-15 14:42 - 000276736 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswblogx.sys
2017-10-11 03:01 - 2017-03-15 14:42 - 000255624 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdriverx.sys
2017-10-11 03:01 - 2017-03-15 14:42 - 000157416 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidshx.sys
2017-10-11 03:01 - 2017-03-15 14:42 - 000050384 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbunivx.sys
2017-10-11 03:00 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\Macromed

==================== Files in the root of some directories =======

2017-11-03 21:46 - 2017-11-03 21:46 - 000007614 _____ () C:\Users\Špelec\AppData\Local\Resmon.ResmonCfg

Some files in TEMP:
====================
2017-07-27 00:33 - 2017-07-27 00:34 - 018309328 _____ (Microsoft Corporation) C:\Users\Špelec\AppData\Local\Temp\MediaCreationTool.exe
2016-08-16 08:48 - 2016-08-16 08:48 - 000488960 _____ () C:\Users\Špelec\AppData\Local\Temp\sqlite3.exe
2017-05-12 04:04 - 2017-05-12 08:14 - 000000000 _____ () C:\Users\Špelec\AppData\Local\Temp\{57800645-8DB2-4E5F-B580-A949E6F2D3F7}-58.0.3029.110_57.0.2987.133_chrome_updater.exe

Some zero byte size files/folders:
==========================
C:\Windows\System32\BackgroundMediaPolicy.dll
C:\Windows\System32\MRT-KB890830.exe
C:\Windows\System32\msxml6r.dll
C:\Windows\System32\wpnprv.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-11-03 20:15

==================== End of FRST.txt ============================

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-2906948890-3372974042-1230140830-1000\...\MountPoints2: {443bf757-65ae-11e6-89be-806e6f6e6963} - "D:\autorun.exe"
C:\Users\Špelec\AppData\Local\Temp

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

VIRY.CZ

Prosim o kontrolu logu - Prioritni problem je nefunkcnost wi

Prosim o kontrolu logu - Prioritni problem je nefunkcnost wi

Re: Prosim o kontrolu logu - Prioritni problem je nefunkcnos

Re: Prosim o kontrolu logu - Prioritni problem je nefunkcnos

Re: Prosim o kontrolu logu - Prioritni problem je nefunkcnos

Re: Prosim o kontrolu logu - Prioritni problem je nefunkcnos

Re: Prosim o kontrolu logu - Prioritni problem je nefunkcnos