VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Nemuzu zapnout antivirovou ochranu pred viry v realnem case

https://forum.viry.cz:443/viewtopic.php?t=155096

Stránka 1 z 1

Nemuzu zapnout antivirovou ochranu pred viry v realnem case

Napsal: 07 lis 2018 20:07
od kvaska
Dobry den, nemuzu zapnout ochranu a navic kdyz spustim chrome, tak mi porad vyskakuje nejake okno 111 s textem uprostred 1111 a jde zamknout jen krizkem.

Posilam FRST scan:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 07.11.2018
Ran by David a Domča (administrator) on DESKTOP-CH7J00S (07-11-2018 20:05:41)
Running from C:\Users\David a Domča\Downloads
Loaded Profiles: David a Domča (Available Profiles: David a Domča)
Platform: Windows 10 Home Version 1803 17134.345 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
() C:\Users\David a Domča\AppData\Roaming\CRMSvc\CRMSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(WinZip Computing) C:\Program Files\WinZip\WzPreloader.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Suunto) C:\Users\David a Domča\AppData\Local\Apps\2.0\P8ZL0A4G.2AW\N097EL5T.622\move..tion_7b728a49b2b0d019_0001.0005_cab60a8d7bc05604\Moveslink2.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9235936 2017-08-10] (Realtek Semiconductor)
HKLM\...\Run: [WinZip PreLoader] => C:\Program Files\WinZip\WzPreloader.exe [124032 2018-04-22] (WinZip Computing)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3208992 2018-10-13] (Valve Corporation)
HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\...\Run: [Moveslink2] => C:\Users\David a Domča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Suunto\Moveslink2.appref-ms -auto
HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\...\MountPoints2: {f1cebb46-8725-11e8-8a58-fcaa14c5e738} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Ribbons.scr [148480 2018-04-12] (Microsoft Corporation)
Startup: C:\Users\David a Domča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\sbciagwu.lnk [2018-11-07]
ShortcutTarget: sbciagwu.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 81.200.55.169 81.200.48.13
Tcpip\..\Interfaces\{803ce1ba-bfbe-4227-880c-ee5b7de5e7aa}: [DhcpNameServer] 81.200.55.169 81.200.48.13

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-3790302877-2324764744-3276189103-1001 -> {083280CB-5FDA-4B1F-9D19-7E5EFB2D4138} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3790302877-2324764744-3276189103-1001 -> {1552F4B3-5A03-44E3-9E7D-2277C2293AB3} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_12454
SearchScopes: HKU\S-1-5-21-3790302877-2324764744-3276189103-1001 -> {4DAC81AD-74D6-424F-AA9D-60CE97E22F7F} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_12454
SearchScopes: HKU\S-1-5-21-3790302877-2324764744-3276189103-1001 -> {5D5B3F56-41A3-4948-B976-5F7A6C7EFD81} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_12454
SearchScopes: HKU\S-1-5-21-3790302877-2324764744-3276189103-1001 -> {960195B4-F93A-4DE7-AD06-11EEF3CF1C9D} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_12454
SearchScopes: HKU\S-1-5-21-3790302877-2324764744-3276189103-1001 -> {97C770CA-8230-4ADD-84C2-E0762D508E54} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3790302877-2324764744-3276189103-1001 -> {AB1116D3-C872-4A51-A2FF-12B0995D54BE} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3790302877-2324764744-3276189103-1001 -> {D9ADD77C-1BE2-493D-BF99-080C3F0C7031} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3790302877-2324764744-3276189103-1001 -> {DF71151E-024F-4558-8E14-89786BED05DE} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454

FireFox:
========
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-08-23] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-08-23] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-09-20] (Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default [2018-11-07]
CHR Extension: (Prezentace) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-08-23]
CHR Extension: (Dokumenty) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-08-23]
CHR Extension: (Disk Google) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (YouTube) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-08-23]
CHR Extension: (Tabulky) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-08-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-23]
CHR Extension: (AdBlock) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-10-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-08-23]
CHR Extension: (Gmail) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-08-23]
CHR Extension: (Chrome Media Router) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-26]
CHR HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7212480 2018-08-08] ()
R2 CRMSvc; C:\Users\David a Domča\AppData\Roaming\CRMSvc\CRMSvc.exe [1469440 2018-11-07] () [File not signed] <==== ATTENTION
R2 MicroV2Service; C:\Users\David a Domča\AppData\Local\William\William.dll [581632 2018-11-07] () [File not signed]
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2016-06-15] (HP Inc.) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2016-06-15] (HP Inc.) [File not signed]
S4 ssh-agent; C:\Windows\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11644656 2018-08-13] (TeamViewer GmbH)
S2 evhkkprs; C:\Windows\SysWOW64\evhkkprs\oqlctnun.exe [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [146856 2015-03-10] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [21928 2015-03-10] (Windows (R) Win 7 DDK provider)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys [16936048 2017-11-09] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [604160 2018-04-12] (Realtek )
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46184 2018-10-23] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [60408 2018-10-23] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-07 19:53 - 2018-11-07 19:53 - 000007266 _____ C:\Users\David a Domča\Downloads\Fixlog.txt
2018-11-07 19:43 - 2018-11-07 19:53 - 000042035 _____ C:\Users\David a Domča\Downloads\Addition.txt
2018-11-07 19:42 - 2018-11-07 20:05 - 000012596 _____ C:\Users\David a Domča\Downloads\FRST.txt
2018-11-07 19:42 - 2018-11-07 20:05 - 000000000 ____D C:\FRST
2018-11-07 19:42 - 2018-11-07 19:42 - 002415616 _____ (Farbar) C:\Users\David a Domča\Downloads\FRST64.exe
2018-11-07 19:41 - 2018-11-07 19:41 - 000000000 ____D C:\Program Files (x86)\trend micro
2018-11-07 19:40 - 2018-11-07 19:40 - 000000000 ____D C:\rsit
2018-11-07 19:40 - 2018-11-07 19:40 - 000000000 ____D C:\Program Files\trend micro
2018-11-07 19:20 - 2018-11-07 19:59 - 000000000 ____D C:\Users\David a Domča\Downloads\backups
2018-11-07 19:17 - 2018-11-07 19:17 - 000388608 _____ (Trend Micro Inc.) C:\Users\David a Domča\Downloads\hijackthis.exe
2018-11-07 19:16 - 2018-11-07 19:16 - 001611944 _____ (Secure Download Ltd. ) C:\Users\David a Domča\Downloads\Registry_Activation
2018-11-07 19:10 - 2018-11-07 19:10 - 000000270 __RSH C:\Users\David a Domča\ntuser.pol
2018-11-07 19:09 - 2018-11-07 19:09 - 000000000 ____D C:\Users\David a Domča\AppData\Roaming\CRMSvc
2018-11-07 19:08 - 2018-11-07 19:16 - 000722944 _____ C:\Users\David a Domča\AppData\Local\sham.db
2018-11-07 19:08 - 2018-11-07 19:08 - 000140800 _____ C:\Users\David a Domča\AppData\Local\installer.dat
2018-11-07 19:08 - 2018-11-07 19:08 - 000011568 _____ C:\Users\David a Domča\AppData\Local\InstallationConfiguration.xml
2018-11-07 19:03 - 2018-11-07 19:03 - 000000000 ____D C:\Users\David a Domča\AppData\Local\Turbo.net
2018-11-07 19:02 - 2018-11-07 19:02 - 000586240 _____ C:\Users\David a Domča\AppData\Roaming\AutoHot.exe
2018-11-07 19:02 - 2018-11-07 19:02 - 000000000 ____D C:\Users\David a Domča\AppData\Roaming\Microleaves
2018-11-07 19:02 - 2018-11-07 19:02 - 000000000 ____D C:\Users\David a Domča\AppData\Local\William
2018-11-07 19:02 - 2018-11-07 19:02 - 000000000 ____D C:\Users\David a Domča\AppData\Local\AdvinstAnalytics
2018-11-07 19:01 - 2018-11-07 19:14 - 000003592 _____ C:\Windows\System32\Tasks\SVC Update
2018-11-07 19:01 - 2018-11-07 19:10 - 000000000 ____D C:\Program Files\WinRAR
2018-11-07 19:01 - 2018-11-07 19:09 - 000000000 ____D C:\Program Files (x86)\KMSPico 10.2.1 Final
2018-11-07 19:01 - 2018-11-07 19:07 - 000000000 ____D C:\Users\David a Domča\Downloads\KMSPico 10.2.1 [DazTeam.TW]
2018-11-07 19:01 - 2018-11-07 19:01 - 000000000 ____D C:\Users\David a Domča\AppData\Roaming\WinRAR
2018-11-07 19:01 - 2018-11-07 19:01 - 000000000 ____D C:\Users\David a Domča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-11-07 19:01 - 2018-11-07 19:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-11-07 19:00 - 2018-11-07 19:00 - 004988475 _____ C:\Users\David a Domča\Downloads\KMSPico 10.2.1 [DazTeam.TW].zip
2018-11-01 05:07 - 2018-11-07 18:56 - 000000000 ____D C:\Users\David a Domča\AppData\LocalLow\uTorrent
2018-10-31 15:48 - 2018-10-31 16:26 - 000000000 ____D C:\Users\David a Domča\Downloads\The.Equalizer.2.2018.HDRip.XviD.AC3-EVO
2018-10-28 21:28 - 2018-10-28 21:28 - 000014051 _____ C:\Users\David a Domča\Desktop\ČísloPříjmeníJménostátdisciplína.odt
2018-10-28 21:26 - 2018-10-28 21:26 - 000160452 _____ C:\Users\David a Domča\Desktop\Studentský průkaz.pdf
2018-10-28 21:01 - 2018-10-28 21:01 - 000012327 _____ C:\Users\David a Domča\Desktop\ikt.odt
2018-10-28 20:20 - 2018-10-28 20:20 - 000160452 _____ C:\Users\David a Domča\Downloads\Studentský průkaz.pdf
2018-10-28 17:06 - 2018-10-28 17:07 - 001477627 _____ C:\Users\David a Domča\Downloads\onegin.pdf
2018-10-28 16:40 - 2018-10-28 23:17 - 000000000 ____D C:\Users\David a Domča\Downloads\Mission.Impossible.Fallout.2018.HC.HDRip.XviD.AC3-EVO[EtMovies]
2018-10-28 16:05 - 2018-10-28 16:17 - 2533638089 ____R C:\Users\David a Domča\Downloads\Mission.Impossible.Fallout.2018.1080p.HC.HDRip.x264.AC3.MkvCage.ws.mkv
2018-10-25 16:27 - 2018-10-25 16:55 - 503856194 _____ C:\Users\David a Domča\Downloads\Medvidek Pu - 17 Prasatko a jeho velky pribeh.avi
2018-10-23 19:20 - 2018-10-23 19:20 - 000000136 ____H C:\Users\David a Domča\Downloads\.~lock.11. Náklady.doc#
2018-10-23 19:19 - 2018-10-23 19:19 - 000000136 ____H C:\Users\David a Domča\Downloads\.~lock.10. Zákoník práce,Zaměstnanci.doc#
2018-10-23 19:17 - 2018-10-23 19:17 - 000000136 ____H C:\Users\David a Domča\Downloads\.~lock.9. Personalistika.doc#
2018-10-23 19:04 - 2018-10-23 19:04 - 000454581 _____ C:\Users\David a Domča\Desktop\ucto.pdf
2018-10-23 19:03 - 2018-10-23 19:03 - 000051691 _____ C:\Users\David a Domča\Downloads\Cvičení+-+účtová+třída+2+-+Kr.+finanční+maj..docm
2018-10-23 19:00 - 2018-10-23 19:00 - 000000136 ____H C:\Users\David a Domča\Downloads\.~lock.10.+Operace+-+krátkodobý+fin.+majetek.doc#
2018-10-23 18:50 - 2018-10-23 18:50 - 000000136 ____H C:\Users\David a Domča\Downloads\.~lock.4. Smlouvy.doc#
2018-10-20 11:52 - 2018-11-04 17:50 - 000000000 ____D C:\Users\David a Domča\Desktop\vinted
2018-10-20 11:51 - 2018-10-20 11:52 - 000000000 ____D C:\Users\David a Domča\Desktop\mantinel
2018-10-19 07:57 - 2018-10-19 07:58 - 000000000 ____D C:\Users\David a Domča\Desktop\zidicla
2018-10-16 17:14 - 2018-10-16 18:30 - 835977152 _____ C:\Users\David a Domča\Downloads\Medvídek Pú (2011) CZ dabing.avi
2018-10-13 08:46 - 2018-10-13 08:59 - 145072176 _____ C:\Users\David a Domča\Downloads\Krtkova-dobrodruzstvi-02_Krtek-a-auticko.avi
2018-10-13 07:48 - 2018-10-13 08:13 - 458247270 _____ C:\Users\David a Domča\Downloads\Medvidek Pu - 10 Vesela spolecenska vychova.avi
2018-10-13 06:54 - 2018-10-13 07:25 - 543241548 _____ C:\Users\David a Domča\Downloads\Medvidek Pu - 16 Medvidkova prani.avi
2018-10-10 07:53 - 2018-09-21 05:09 - 004790160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2018-10-10 07:53 - 2018-09-21 05:09 - 002253696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-10-10 07:53 - 2018-09-21 05:09 - 001427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll
2018-10-10 07:53 - 2018-09-21 05:08 - 002765344 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-10-10 07:53 - 2018-09-21 05:08 - 001566720 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll
2018-10-10 07:53 - 2018-09-21 05:08 - 000709936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2018-10-10 07:53 - 2018-09-21 05:08 - 000170808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-10-10 07:53 - 2018-09-21 05:07 - 000604664 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2018-10-10 07:53 - 2018-09-21 04:57 - 002900992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2018-10-10 07:53 - 2018-09-21 04:42 - 000209408 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2018-10-10 07:53 - 2018-09-21 04:41 - 003396096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2018-10-10 07:53 - 2018-09-21 04:40 - 002368000 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2018-10-10 07:53 - 2018-09-21 04:39 - 001708544 _____ (Microsoft Corporation) C:\Windows\system32\MSPhotography.dll
2018-10-10 07:53 - 2018-09-21 04:39 - 001535488 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-10-10 07:53 - 2018-09-21 04:39 - 000625152 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2018-10-10 07:53 - 2018-09-21 04:38 - 002172928 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2018-10-10 07:53 - 2018-09-21 04:38 - 001551360 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2018-10-10 07:53 - 2018-09-21 04:37 - 002904064 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2018-10-10 07:53 - 2018-09-21 04:37 - 002236928 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2018-10-10 07:53 - 2018-09-21 04:37 - 001211904 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2018-10-10 07:53 - 2018-09-21 04:36 - 001159680 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2018-10-10 07:53 - 2018-09-21 04:36 - 001034240 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2018-10-10 07:53 - 2018-09-21 04:36 - 000401920 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2018-10-10 07:53 - 2018-09-20 10:37 - 001634944 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2018-10-10 07:53 - 2018-09-20 10:19 - 001121792 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2018-10-10 07:53 - 2018-09-20 10:18 - 003649024 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2018-10-10 07:53 - 2018-09-20 10:17 - 001856000 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2018-10-10 07:53 - 2018-09-20 09:46 - 001454440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2018-10-10 07:53 - 2018-09-20 09:34 - 012500992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2018-10-10 07:53 - 2018-09-20 09:29 - 002891776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2018-10-10 07:53 - 2018-09-20 09:29 - 001586176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2018-10-10 07:53 - 2018-09-20 07:43 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MixedRealityCapture.dll
2018-10-10 07:53 - 2018-09-20 06:52 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MixedRealityCapture.dll
2018-10-10 07:53 - 2018-09-20 05:29 - 006569856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-10-10 07:53 - 2018-09-20 05:29 - 001989232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2018-10-10 07:53 - 2018-09-20 05:28 - 001129544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2018-10-10 07:53 - 2018-09-20 05:28 - 000567256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2018-10-10 07:53 - 2018-09-20 05:17 - 006661632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2018-10-10 07:53 - 2018-09-20 05:13 - 003711488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-10-10 07:53 - 2018-09-20 05:11 - 005777920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2018-10-10 07:53 - 2018-09-20 05:11 - 000561152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-10-10 07:53 - 2018-09-20 05:10 - 001221128 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2018-10-10 07:53 - 2018-09-20 05:10 - 001029432 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2018-10-10 07:53 - 2018-09-20 05:09 - 009089848 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-10-10 07:53 - 2018-09-20 05:09 - 007520096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2018-10-10 07:53 - 2018-09-20 05:09 - 002825232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2018-10-10 07:53 - 2018-09-20 05:09 - 002462888 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2018-10-10 07:53 - 2018-09-20 05:09 - 000885952 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2018-10-10 07:53 - 2018-09-20 05:09 - 000793088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2018-10-10 07:53 - 2018-09-20 05:09 - 000713472 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll
2018-10-10 07:53 - 2018-09-20 05:09 - 000412984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2018-10-10 07:53 - 2018-09-20 05:08 - 004191232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-10-10 07:53 - 2018-09-20 05:08 - 001627648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-10-10 07:53 - 2018-09-20 04:44 - 008188928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2018-10-10 07:53 - 2018-09-20 04:42 - 004866560 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-10-10 07:53 - 2018-09-20 04:41 - 007577088 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2018-10-10 07:53 - 2018-09-20 04:41 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2018-10-10 07:53 - 2018-09-20 04:40 - 003090432 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2018-10-10 07:53 - 2018-09-20 04:40 - 000808448 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2018-10-10 07:53 - 2018-09-20 04:40 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-10-10 07:53 - 2018-09-08 04:57 - 002571128 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-10-10 07:53 - 2018-09-08 04:44 - 001980984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-10-10 07:53 - 2018-09-08 04:29 - 000174080 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2018-10-10 07:53 - 2018-09-08 04:27 - 003348992 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2018-10-10 07:53 - 2018-09-08 04:25 - 000466432 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2018-10-10 07:52 - 2018-09-21 10:18 - 021386888 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2018-10-10 07:52 - 2018-09-21 10:01 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2018-10-10 07:52 - 2018-09-21 09:22 - 020381784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2018-10-10 07:52 - 2018-09-21 09:12 - 000150016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2018-10-10 07:52 - 2018-09-21 05:14 - 000661056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2018-10-10 07:52 - 2018-09-21 05:13 - 000480568 _____ (Microsoft Corporation) C:\Windows\system32\dcntel.dll
2018-10-10 07:52 - 2018-09-21 05:12 - 001035256 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2018-10-10 07:52 - 2018-09-21 05:11 - 000753056 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2018-10-10 07:52 - 2018-09-21 05:09 - 001062920 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2018-10-10 07:52 - 2018-09-21 05:09 - 000129088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2018-10-10 07:52 - 2018-09-21 05:08 - 004404720 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2018-10-10 07:52 - 2018-09-21 05:08 - 001456720 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-10-10 07:52 - 2018-09-21 05:08 - 001257864 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-10-10 07:52 - 2018-09-21 05:08 - 001140672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-10-10 07:52 - 2018-09-21 05:08 - 000982600 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2018-10-10 07:52 - 2018-09-21 05:08 - 000261008 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2018-10-10 07:52 - 2018-09-21 04:58 - 005307392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2018-10-10 07:52 - 2018-09-21 04:57 - 001361408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll
2018-10-10 07:52 - 2018-09-21 04:56 - 000331264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2018-10-10 07:52 - 2018-09-21 04:54 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2018-10-10 07:52 - 2018-09-21 04:53 - 001006080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2018-10-10 07:52 - 2018-09-21 04:43 - 001627136 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2018-10-10 07:52 - 2018-09-21 04:39 - 003320320 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2018-10-10 07:52 - 2018-09-21 04:37 - 000604160 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2018-10-10 07:52 - 2018-09-21 04:36 - 000932352 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2018-10-10 07:52 - 2018-09-21 04:36 - 000505344 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2018-10-10 07:52 - 2018-09-20 10:40 - 000348160 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2018-10-10 07:52 - 2018-09-20 10:23 - 006602240 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2018-10-10 07:52 - 2018-09-20 10:22 - 013572096 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2018-10-10 07:52 - 2018-09-20 10:18 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-10-10 07:52 - 2018-09-20 10:17 - 002874368 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2018-10-10 07:52 - 2018-09-20 10:17 - 001364992 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2018-10-10 07:52 - 2018-09-20 10:16 - 000127488 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll
2018-10-10 07:52 - 2018-09-20 09:35 - 005669888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2018-10-10 07:52 - 2018-09-20 09:30 - 000344576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-10-10 07:52 - 2018-09-20 09:29 - 002824704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2018-10-10 07:52 - 2018-09-20 09:28 - 000102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpshell.dll
2018-10-10 07:52 - 2018-09-20 05:29 - 006039368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2018-10-10 07:52 - 2018-09-20 05:29 - 001513032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2018-10-10 07:52 - 2018-09-20 05:29 - 000357056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2018-10-10 07:52 - 2018-09-20 05:28 - 000581792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll
2018-10-10 07:52 - 2018-09-20 05:21 - 022013440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2018-10-10 07:52 - 2018-09-20 05:15 - 019404288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-10-10 07:52 - 2018-09-20 05:12 - 000272200 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave.dll
2018-10-10 07:52 - 2018-09-20 05:12 - 000269128 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave_secure.dll
2018-10-10 07:52 - 2018-09-20 05:11 - 000608768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2018-10-10 07:52 - 2018-09-20 05:11 - 000578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2018-10-10 07:52 - 2018-09-20 05:11 - 000074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dtdump.exe
2018-10-10 07:52 - 2018-09-20 05:10 - 002719032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2018-10-10 07:52 - 2018-09-20 05:10 - 000566800 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2018-10-10 07:52 - 2018-09-20 05:10 - 000500536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-10-10 07:52 - 2018-09-20 05:10 - 000355840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2018-10-10 07:52 - 2018-09-20 05:10 - 000134968 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2018-10-10 07:52 - 2018-09-20 05:10 - 000076088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2018-10-10 07:52 - 2018-09-20 05:09 - 007432136 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2018-10-10 07:52 - 2018-09-20 05:09 - 002421248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2018-10-10 07:52 - 2018-09-20 05:09 - 001767096 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2018-10-10 07:52 - 2018-09-20 05:09 - 001540096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpserverbase.dll
2018-10-10 07:52 - 2018-09-20 05:09 - 001097744 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2018-10-10 07:52 - 2018-09-20 04:53 - 025851392 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2018-10-10 07:52 - 2018-09-20 04:46 - 022715392 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-10-10 07:52 - 2018-09-20 04:44 - 004383744 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2018-10-10 07:52 - 2018-09-20 04:43 - 000052736 _____ C:\Windows\system32\runexehelper.exe
2018-10-10 07:52 - 2018-09-20 04:42 - 000433664 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2018-10-10 07:52 - 2018-09-20 04:42 - 000099328 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2018-10-10 07:52 - 2018-09-20 04:41 - 000898560 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2018-10-10 07:52 - 2018-09-20 04:41 - 000894464 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2018-10-10 07:52 - 2018-09-20 04:41 - 000319488 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2018-10-10 07:52 - 2018-09-20 04:38 - 001724416 _____ (Microsoft Corporation) C:\Windows\system32\rdpserverbase.dll
2018-10-10 07:52 - 2018-09-20 04:38 - 000433664 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2018-10-10 07:52 - 2018-09-20 04:37 - 004615680 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-10-10 07:52 - 2018-09-20 04:37 - 001804288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-10-10 07:52 - 2018-09-20 04:36 - 001375232 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2018-10-10 07:52 - 2018-09-20 03:21 - 000001312 _____ C:\Windows\system32\tcbres.wim
2018-10-10 07:52 - 2018-09-20 02:28 - 000343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2018-10-10 07:52 - 2018-09-08 09:12 - 000452112 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2018-10-10 07:52 - 2018-09-08 09:07 - 002868536 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2018-10-10 07:52 - 2018-09-08 09:07 - 001610552 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2018-10-10 07:52 - 2018-09-08 09:07 - 000792376 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2018-10-10 07:52 - 2018-09-08 09:07 - 000689464 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-10-10 07:52 - 2018-09-08 09:07 - 000612360 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2018-10-10 07:52 - 2018-09-08 09:07 - 000309560 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2018-10-10 07:52 - 2018-09-08 09:07 - 000144696 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-10-10 07:52 - 2018-09-08 09:07 - 000069944 _____ (Microsoft Corporation) C:\Windows\system32\win32appinventorycsp.dll
2018-10-10 07:52 - 2018-09-08 09:02 - 000645112 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-10-10 07:52 - 2018-09-08 09:02 - 000540984 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2018-10-10 07:52 - 2018-09-08 08:58 - 001639352 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2018-10-10 07:52 - 2018-09-08 08:58 - 001520744 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2018-10-10 07:52 - 2018-09-08 08:57 - 000204800 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2018-10-10 07:52 - 2018-09-08 08:44 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\fdBth.dll
2018-10-10 07:52 - 2018-09-08 08:43 - 000085504 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2018-10-10 07:52 - 2018-09-08 08:43 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\SCardBi.dll
2018-10-10 07:52 - 2018-09-08 08:42 - 000256000 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2018-10-10 07:52 - 2018-09-08 08:42 - 000188928 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2018-10-10 07:52 - 2018-09-08 08:42 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.XamlHost.dll
2018-10-10 07:52 - 2018-09-08 08:42 - 000114176 _____ (Microsoft Corporation) C:\Windows\system32\bthci.dll
2018-10-10 07:52 - 2018-09-08 08:41 - 000258560 _____ (Microsoft Corporation) C:\Windows\system32\SCardSvr.dll
2018-10-10 07:52 - 2018-09-08 08:40 - 001724928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2018-10-10 07:52 - 2018-09-08 08:40 - 000677888 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2018-10-10 07:52 - 2018-09-08 08:40 - 000593408 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2018-10-10 07:52 - 2018-09-08 08:40 - 000522240 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2018-10-10 07:52 - 2018-09-08 08:40 - 000402944 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2018-10-10 07:52 - 2018-09-08 08:40 - 000249344 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2018-10-10 07:52 - 2018-09-08 08:39 - 005505024 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2018-10-10 07:52 - 2018-09-08 08:39 - 002052096 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2018-10-10 07:52 - 2018-09-08 08:39 - 001787904 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2018-10-10 07:52 - 2018-09-08 08:39 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2018-10-10 07:52 - 2018-09-08 08:38 - 001288192 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2018-10-10 07:52 - 2018-09-08 08:38 - 001004544 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2018-10-10 07:52 - 2018-09-08 08:38 - 000986112 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2018-10-10 07:52 - 2018-09-08 08:38 - 000882688 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2018-10-10 07:52 - 2018-09-08 08:38 - 000836608 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2018-10-10 07:52 - 2018-09-08 08:37 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2018-10-10 07:52 - 2018-09-08 08:16 - 000482080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-10-10 07:52 - 2018-09-08 08:14 - 001328056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2018-10-10 07:52 - 2018-09-08 08:13 - 001626656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2018-10-10 07:52 - 2018-09-08 08:13 - 000181288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2018-10-10 07:52 - 2018-09-08 08:03 - 000084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2018-10-10 07:52 - 2018-09-08 08:03 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdBth.dll
2018-10-10 07:52 - 2018-09-08 08:02 - 000236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2018-10-10 07:52 - 2018-09-08 08:00 - 000548864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2018-10-10 07:52 - 2018-09-08 07:59 - 001530368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2018-10-10 07:52 - 2018-09-08 07:59 - 001452544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2018-10-10 07:52 - 2018-09-08 07:59 - 000485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2018-10-10 07:52 - 2018-09-08 07:59 - 000133632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.XamlHost.dll
2018-10-10 07:52 - 2018-09-08 07:58 - 001308672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2018-10-10 07:52 - 2018-09-08 07:58 - 000897536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2018-10-10 07:52 - 2018-09-08 07:58 - 000775680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2018-10-10 07:52 - 2018-09-08 07:57 - 005391360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2018-10-10 07:52 - 2018-09-08 07:57 - 000625664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2018-10-10 07:52 - 2018-09-08 07:57 - 000423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2018-10-10 07:52 - 2018-09-08 07:57 - 000223744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthprops.cpl
2018-10-10 07:52 - 2018-09-08 07:56 - 000080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2018-10-10 07:52 - 2018-09-08 05:08 - 000462880 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2018-10-10 07:52 - 2018-09-08 04:59 - 000433664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2018-10-10 07:52 - 2018-09-08 04:59 - 000361544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2018-10-10 07:52 - 2018-09-08 04:58 - 000744976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2018-10-10 07:52 - 2018-09-08 04:58 - 000376120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2018-10-10 07:52 - 2018-09-08 04:58 - 000368440 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2018-10-10 07:52 - 2018-09-08 04:57 - 001016984 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2018-10-10 07:52 - 2018-09-08 04:57 - 000930616 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2018-10-10 07:52 - 2018-09-08 04:57 - 000482384 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_enclave.dll
2018-10-10 07:52 - 2018-09-08 04:57 - 000368448 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2018-10-10 07:52 - 2018-09-08 04:57 - 000267576 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2018-10-10 07:52 - 2018-09-08 04:51 - 000380728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll
2018-10-10 07:52 - 2018-09-08 04:45 - 000295416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
2018-10-10 07:52 - 2018-09-08 04:45 - 000286824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2018-10-10 07:52 - 2018-09-08 04:44 - 000829752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2018-10-10 07:52 - 2018-09-08 04:43 - 001174448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2018-10-10 07:52 - 2018-09-08 04:43 - 000269104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2018-10-10 07:52 - 2018-09-08 04:32 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dumpstorport.sys
2018-10-10 07:52 - 2018-09-08 04:31 - 000342528 _____ (Microsoft Corporation) C:\Windows\system32\browserexport.exe
2018-10-10 07:52 - 2018-09-08 04:31 - 000272384 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.Proxy.dll
2018-10-10 07:52 - 2018-09-08 04:30 - 003601920 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.Service.dll
2018-10-10 07:52 - 2018-09-08 04:30 - 000189440 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothApis.dll
2018-10-10 07:52 - 2018-09-08 04:30 - 000137728 _____ (Microsoft Corporation) C:\Windows\system32\InputLocaleManager.dll
2018-10-10 07:52 - 2018-09-08 04:30 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2018-10-10 07:52 - 2018-09-08 04:30 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2018-10-10 07:52 - 2018-09-08 04:29 - 004771840 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2018-10-10 07:52 - 2018-09-08 04:29 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2018-10-10 07:52 - 2018-09-08 04:29 - 000241152 _____ (Microsoft Corporation) C:\Windows\system32\HttpsDataSource.dll
2018-10-10 07:52 - 2018-09-08 04:29 - 000183808 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2018-10-10 07:52 - 2018-09-08 04:28 - 000481280 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2018-10-10 07:52 - 2018-09-08 04:28 - 000473088 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-10-10 07:52 - 2018-09-08 04:28 - 000273408 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2018-10-10 07:52 - 2018-09-08 04:28 - 000265728 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2018-10-10 07:52 - 2018-09-08 04:28 - 000153088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Bluetooth.Proxy.dll
2018-10-10 07:52 - 2018-09-08 04:27 - 000983040 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2018-10-10 07:52 - 2018-09-08 04:27 - 000596992 _____ (Microsoft Corporation) C:\Windows\system32\TileDataRepository.dll
2018-10-10 07:52 - 2018-09-08 04:27 - 000499200 _____ (Microsoft Corporation) C:\Windows\system32\winipcfile.dll
2018-10-10 07:52 - 2018-09-08 04:27 - 000301056 _____ (Microsoft Corporation) C:\Windows\system32\ProximityService.dll
2018-10-10 07:52 - 2018-09-08 04:27 - 000271872 _____ (Microsoft Corporation) C:\Windows\system32\dafBth.dll
2018-10-10 07:52 - 2018-09-08 04:26 - 002328064 _____ (Microsoft Corporation) C:\Windows\system32\winmsipc.dll
2018-10-10 07:52 - 2018-09-08 04:26 - 000814592 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2018-10-10 07:52 - 2018-09-08 04:26 - 000784896 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2018-10-10 07:52 - 2018-09-08 04:26 - 000471552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TileDataRepository.dll
2018-10-10 07:52 - 2018-09-08 04:26 - 000387584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ngccredprov.dll
2018-10-10 07:52 - 2018-09-08 04:26 - 000365568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2018-10-10 07:52 - 2018-09-08 04:26 - 000359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipcfile.dll
2018-10-10 07:52 - 2018-09-08 04:26 - 000142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BluetoothApis.dll
2018-10-10 07:52 - 2018-09-08 04:25 - 003553792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputService.dll
2018-10-10 07:52 - 2018-09-08 04:25 - 002789376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2018-10-10 07:52 - 2018-09-08 04:25 - 000882688 _____ (Microsoft Corporation) C:\Windows\system32\winipcsecproc.dll
2018-10-10 07:52 - 2018-09-08 04:25 - 000415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-10-10 07:52 - 2018-09-08 04:25 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Proximity.dll
2018-10-10 07:52 - 2018-09-08 04:24 - 001457664 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2018-10-10 07:52 - 2018-09-08 04:24 - 000899072 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-10-10 07:52 - 2018-09-08 04:24 - 000845824 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2018-10-10 07:52 - 2018-09-08 04:24 - 000463360 _____ (Microsoft Corporation) C:\Windows\system32\das.dll
2018-10-10 07:52 - 2018-09-08 04:23 - 001655296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmsipc.dll
2018-10-10 07:52 - 2018-09-08 04:23 - 000807936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipcsecproc.dll
2018-10-10 07:52 - 2018-09-08 04:23 - 000667136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fveapi.dll
2018-10-10 07:52 - 2018-09-08 04:23 - 000314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Proximity.dll
2018-10-10 07:52 - 2018-09-08 04:22 - 000778240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-07 20:04 - 2018-07-13 18:18 - 001601516 _____ C:\Windows\system32\PerfStringBackup.INI
2018-11-07 20:04 - 2018-04-12 16:50 - 000680616 _____ C:\Windows\system32\perfh005.dat
2018-11-07 20:04 - 2018-04-12 16:50 - 000136548 _____ C:\Windows\system32\perfc005.dat
2018-11-07 20:04 - 2018-04-12 00:36 - 000000000 ____D C:\Windows\INF
2018-11-07 20:01 - 2018-08-13 13:16 - 000000000 ____D C:\Users\David a Domča\AppData\Local\Deployment
2018-11-07 20:00 - 2018-09-15 20:09 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2018-11-07 20:00 - 2018-07-13 18:42 - 000000000 ____D C:\Program Files (x86)\Steam
2018-11-07 20:00 - 2018-07-13 18:21 - 000000000 ____D C:\ProgramData\NVIDIA
2018-11-07 20:00 - 2018-07-13 18:09 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-11-07 20:00 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-11-07 19:59 - 2018-04-11 22:04 - 000524288 _____ C:\Windows\system32\config\BBI
2018-11-07 19:17 - 2018-07-13 18:14 - 000000000 ____D C:\Users\David a Domča\AppData\Local\VirtualStore
2018-11-07 19:15 - 2018-08-03 21:01 - 000000000 ____D C:\Users\David a Domča\AppData\Roaming\Seznam.cz
2018-11-07 19:10 - 2018-07-13 18:13 - 000000000 ____D C:\Users\David a Domča
2018-11-07 19:10 - 2018-04-12 00:30 - 000000000 ____D C:\Windows\CbsTemp
2018-11-07 19:08 - 2018-07-19 10:47 - 000000000 ____D C:\Users\David a Domča\AppData\Roaming\uTorrent
2018-11-07 19:08 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\system32\GroupPolicy
2018-11-07 18:53 - 2018-07-13 18:09 - 000000000 ____D C:\Windows\system32\SleepStudy
2018-11-07 13:23 - 2018-08-12 10:22 - 000000000 ____D C:\Users\David a Domča\AppData\Local\Battle.net
2018-11-07 11:44 - 2018-08-12 10:27 - 000000000 ____D C:\Program Files (x86)\Heroes of the Storm
2018-11-07 11:43 - 2018-08-12 10:21 - 000000000 ____D C:\Program Files (x86)\Battle.net
2018-11-07 08:28 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-11-07 08:28 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\AppReadiness
2018-10-27 09:42 - 2018-09-27 19:00 - 000000000 ____D C:\Users\David a Domča\Downloads\Ocean's Eight (2018) [WEBRip] [1080p] [YTS.AM]
2018-10-26 06:10 - 2018-08-23 17:02 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-10-23 21:22 - 2018-07-14 10:22 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-10-23 16:10 - 2018-07-13 18:30 - 000000000 ____D C:\ProgramData\Packages
2018-10-23 05:48 - 2018-07-13 18:09 - 000000000 ____D C:\Windows\system32\Drivers\wd
2018-10-18 05:31 - 2018-09-15 21:40 - 000000000 ____D C:\Users\David a Domča\AppData\Local\ElevatedDiagnostics
2018-10-16 17:21 - 2018-07-13 18:28 - 000559880 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2018-10-16 12:04 - 2018-07-13 18:17 - 000003394 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3790302877-2324764744-3276189103-1001
2018-10-16 12:04 - 2018-07-13 18:16 - 000000000 ___RD C:\Users\David a Domča\OneDrive
2018-10-16 12:04 - 2018-07-13 18:13 - 000002415 _____ C:\Users\David a Domča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-10-11 06:28 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\LiveKernelReports
2018-10-10 21:36 - 2018-07-13 18:14 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-10-10 21:36 - 2018-07-13 18:14 - 000000000 ___RD C:\Users\David a Domča\3D Objects
2018-10-10 21:36 - 2018-07-13 18:09 - 000269560 _____ C:\Windows\system32\FNTCACHE.DAT
2018-10-10 11:12 - 2018-04-12 00:38 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2018-10-10 11:12 - 2018-04-12 00:38 - 000000000 ___RD C:\Program Files\Windows Defender
2018-10-10 11:12 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\TextInput
2018-10-10 11:12 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\system32\ShellExperiences
2018-10-10 11:12 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\bcastdvr
2018-10-10 11:12 - 2018-04-12 00:38 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2018-10-10 07:56 - 2018-07-13 18:27 - 000000000 ____D C:\Windows\system32\MRT
2018-10-10 07:55 - 2018-07-13 18:27 - 136745976 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-10-08 10:07 - 2018-07-13 18:27 - 000000000 ____D C:\Users\David a Domča\AppData\Local\D3DSCache

==================== Files in the root of some directories =======

2017-12-12 03:32 - 2017-12-12 03:32 - 118377867 _____ () C:\Program Files (x86)\openoffice1.cab
2017-12-12 03:29 - 2017-12-12 03:29 - 002306048 _____ () C:\Program Files (x86)\openoffice415.msi
2017-12-12 03:29 - 2017-12-12 03:29 - 000479232 _____ () C:\Program Files (x86)\setup.exe
2017-12-12 03:29 - 2017-12-12 03:29 - 000000279 _____ () C:\Program Files (x86)\setup.ini
2018-11-07 19:02 - 2018-11-07 19:02 - 000586240 _____ () C:\Users\David a Domča\AppData\Roaming\AutoHot.exe
2018-11-07 19:08 - 2018-11-07 19:08 - 000011568 _____ () C:\Users\David a Domča\AppData\Local\InstallationConfiguration.xml
2018-11-07 19:08 - 2018-11-07 19:08 - 000140800 _____ () C:\Users\David a Domča\AppData\Local\installer.dat
2018-11-07 19:08 - 2018-11-07 19:16 - 000722944 _____ () C:\Users\David a Domča\AppData\Local\sham.db

Some files in TEMP:
====================
2018-11-07 19:09 - 2018-11-07 19:09 - 000670208 _____ () C:\Users\David a Domča\AppData\Local\Temp\6368.tmp.exe
2018-11-07 19:02 - 2018-11-07 19:02 - 000101888 _____ () C:\Users\David a Domča\AppData\Local\Temp\Heart.exe
2018-11-07 19:12 - 2018-11-07 19:08 - 000099902 _____ () C:\Users\David a Domča\AppData\Local\Temp\Uninstall.exe
2018-11-07 19:08 - 2018-11-07 19:08 - 000375522 _____ ( ) C:\Users\David a Domča\AppData\Local\Temp\vtttok2lub5.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-07-13 18:09

==================== End of FRST.txt ============================

Re: Nemuzu zapnout antivirovou ochranu pred viry v realnem c

Napsal: 07 lis 2018 20:07
od kvaska
Jeste addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07.11.2018
Ran by David a Domča (07-11-2018 20:06:15)
Running from C:\Users\David a Domča\Downloads
Windows 10 Home Version 1803 17134.345 (X64) (2018-07-13 17:11:53)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3790302877-2324764744-3276189103-500 - Administrator - Disabled)
David a Domča (S-1-5-21-3790302877-2324764744-3276189103-1001 - Administrator - Enabled) => C:\Users\David a Domča
DefaultAccount (S-1-5-21-3790302877-2324764744-3276189103-503 - Limited - Disabled)
Guest (S-1-5-21-3790302877-2324764744-3276189103-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3790302877-2324764744-3276189103-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\...\uTorrent) (Version: 3.5.4.44632 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (HKLM\...\{13DA9C7C-EBFB-40D0-94A1-55B42883DF21}) (Version: 21.2.1 - HP Inc.) Hidden
AbiWord 2.8.6 (HKLM-x32\...\AbiWord2) (Version: 2.8.6 - AbiSource Developers)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.008.20080 - Adobe Systems Incorporated)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.71.1081 - AB Team, d.o.o.)
CPUID HWMonitor 1.34 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.34 - )
Dot4 (HKLM\...\{3EEDA265-C6F3-4EC1-A317-1C9315DEDDDE}) (Version: 1.0.0.0 - HP)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.77 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Microsoft OneDrive (HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\...\OneDriveSetup.exe) (Version: 18.172.0826.0010 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Moveslink2 (HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\...\72ba98056758d55b) (Version: 1.5.0.318 - Suunto)
NVIDIA Ovladač 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
Online Application (HKLM-x32\...\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}) (Version: 2.7.0 - Microleaves) Hidden <==== ATTENTION
OpenOffice 4.1.5 (HKLM-x32\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
Ovládací panel NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8228 - Realtek Semiconductor Corp.)
Seznam Software (HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\...\SeznamInstall) (Version: 2.1.32 - Seznam.cz)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.9 - TeamSpeak Systems GmbH)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.2.14327 - TeamViewer)
VueScan x64 (HKLM\...\VueScan x64) (Version: - Hamrick Software)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)
WinZip 22.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2411B}) (Version: 22.5.13114 - Corel Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2018-04-22] (WinZip Computing)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2018-04-22] (WinZip Computing)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2018-04-22] (WinZip Computing)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1E44DA0A-F8F6-4676-A39B-1815446FA568} - System32\Tasks\SVC Update => C:\Windows\explorer.exe "hxxp://lktoday.ru" <==== ATTENTION
Task: {268CFFC3-4123-416B-B754-59428BB298F9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {4873F2C0-961C-4AEB-903A-0B7312E3210B} - \Online Application V2G2 -> No File <==== ATTENTION
Task: {4AE5D5B2-D881-40AB-BD53-22C6077E22DE} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2018-04-22] (Corel Corporation)
Task: {4D855351-B48A-45AA-9753-ABA8BA37587E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-08-23] (Google Inc.)
Task: {61F37C86-D891-4085-9A9F-8AEA37E92DEC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-08-23] (Google Inc.)
Task: {6518A967-8A4D-4A97-BDAA-E5BCAFBBC6E6} - \Online Application V2G5 -> No File <==== ATTENTION
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\Windows\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {80029CDC-E74D-43F7-BFB0-0FFBB46BC356} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2018-04-22] (Corel Corporation)
Task: {857086CD-8C1A-4ECC-8F15-5505627DDDBD} - \Online Application V2G1 -> No File <==== ATTENTION
Task: {857B92CA-ED54-4CF9-B0B0-F1CA8989D406} - \Online Application V2G6 -> No File <==== ATTENTION
Task: {8820FAEC-2B0F-4EEA-9EA1-3DC423239A07} - \Opera scheduled Autoupdate 2796787680 -> No File <==== ATTENTION
Task: {B0936C5C-64AF-446C-AAFD-6855581ADFBA} - \Updater_Online_Application -> No File <==== ATTENTION
Task: {B4B24861-C544-4ED6-9685-470A3367E6E0} - \Online Application V2G3 -> No File <==== ATTENTION
Task: {BEDA9F57-B471-41CF-B8ED-EAC46E6254D1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {C3258989-1449-46A4-8506-E1971A109214} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {CB9FA78B-0C88-43B3-B307-EE4465C5A47E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {F3FD957A-63BD-4EA3-851B-72CE6A92AE7B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {F57BF2A1-FC69-4036-8971-30FE64B6BAE0} - \Online Application V2G4 -> No File <==== ATTENTION
Task: {F8F87ADB-237A-42D2-95B2-CC34F2A9F7EE} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2018-04-22] (Corel Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-11-07 19:09 - 2018-11-07 19:09 - 001469440 _____ () C:\Users\David a Domča\AppData\Roaming\CRMSvc\CRMSvc.exe
2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-10-10 07:52 - 2018-09-20 04:38 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-10-23 16:09 - 2018-10-23 16:09 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-10-23 16:09 - 2018-10-23 16:09 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-10-23 16:09 - 2018-10-23 16:10 - 000183808 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-10-27 15:14 - 2018-10-27 15:14 - 035118592 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-10-27 15:14 - 2018-10-27 15:14 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-10-27 15:14 - 2018-10-27 15:14 - 005987328 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntCommon.dll
2018-04-12 16:54 - 2018-04-12 16:54 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-27 15:14 - 2018-10-27 15:14 - 009064448 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-08-29 14:01 - 2018-10-10 05:17 - 001056032 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\SDL2.dll
2018-08-29 14:01 - 2018-09-23 01:00 - 102804768 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libcef.dll
2018-08-29 14:01 - 2018-09-23 01:00 - 004866336 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll
2018-08-29 14:01 - 2018-09-23 01:00 - 000116000 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll
2018-07-13 18:28 - 2018-06-15 05:41 - 005471232 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll
2018-07-13 18:28 - 2018-06-15 05:36 - 000047616 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUITelemetry.dll
2018-07-13 18:28 - 2018-06-15 05:40 - 005082112 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll
2018-11-07 19:02 - 2018-11-07 19:02 - 000695808 _____ () C:\Program Files (x86)\Google\Chrome\Application\WINMM.dll
2018-10-26 06:10 - 2018-10-23 22:24 - 005020504 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.77\libglesv2.dll
2018-10-26 06:10 - 2018-10-23 22:24 - 000116056 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.77\libegl.dll
2018-11-07 19:02 - 2018-11-07 19:02 - 000581632 _____ () c:\users\david a domča\appdata\local\william\william.dll
2018-07-13 18:44 - 2018-10-10 05:17 - 000878880 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2018-07-13 18:44 - 2018-10-13 02:59 - 002647840 _____ () C:\Program Files (x86)\Steam\video.dll
2018-07-13 18:44 - 2016-09-01 02:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2018-07-13 18:44 - 2017-12-20 02:43 - 000351520 _____ () C:\Program Files (x86)\Steam\libavresample-3.dll
2018-07-13 18:44 - 2017-12-20 02:43 - 000695584 _____ () C:\Program Files (x86)\Steam\libavformat-57.dll
2018-07-13 18:44 - 2017-12-20 02:43 - 000847136 _____ () C:\Program Files (x86)\Steam\libavutil-55.dll
2018-07-13 18:44 - 2017-12-20 02:43 - 000783648 _____ () C:\Program Files (x86)\Steam\libswscale-4.dll
2018-07-13 18:44 - 2016-09-01 02:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2018-07-13 18:44 - 2017-12-20 02:43 - 005137696 _____ () C:\Program Files (x86)\Steam\libavcodec-57.dll
2018-07-13 18:44 - 2016-09-01 02:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2018-07-13 18:44 - 2018-10-13 02:59 - 001023776 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2018-07-13 18:44 - 2016-07-04 23:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2018-08-13 13:16 - 2018-08-13 13:16 - 006869880 _____ () C:\Users\David a Domča\AppData\Local\Apps\2.0\P8ZL0A4G.2AW\N097EL5T.622\move..tion_7b728a49b2b0d019_0001.0005_cab60a8d7bc05604\BLLWrapper.DLL

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-04-12 00:38 - 2018-04-12 00:36 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 81.200.55.169 - 81.200.48.13
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{6F750682-4E03-4284-96C1-5BA615AE44E1}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{B103FAB4-6CCB-44A0-9276-6BD3A187BFCE}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{BDE3DFF4-691F-42F1-B251-6F3EDAFF6E72}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{7ABB6DF6-11E6-43F0-84CC-158E64F2CB4E}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{E45552D0-1AC5-4087-A059-EFFDA34BEF75}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{03993344-3EC5-475B-AFF6-EEEA25635E44}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1EE82194-D02E-40FA-8369-16932798B8B9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{76C6371B-2646-445F-9926-E79287656B3E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{DF384926-BE3E-4F03-90BD-9F5ADFA36B77}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [UDP Query User{DBE26548-EFAC-4B51-9230-85A92754F892}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [{55AC68EF-5918-400F-B8B3-A1A08FCF9A93}] => (Allow) C:\Users\David a Domča\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1B0BEBE9-C612-4A1C-8583-CA080505CA55}] => (Allow) C:\Users\David a Domča\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{9C507236-F120-4046-9ADB-2ECA84A0C1E8}C:\program files (x86)\heroes of the storm\versions\base67143\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base67143\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{1A74FF7F-7BB9-4E74-B6DE-3C243E9E4944}C:\program files (x86)\heroes of the storm\versions\base67143\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base67143\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{3373E0C3-94B6-4656-ABD1-FB815CABCD6B}C:\program files (x86)\heroes of the storm\versions\base67462\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base67462\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{8356C190-9EE4-43D1-9CEE-7CBF8247D2D6}C:\program files (x86)\heroes of the storm\versions\base67462\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base67462\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{37F6CA9E-0105-4481-8ACF-AA7B3740BDDC}C:\program files (x86)\heroes of the storm\versions\base67621\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base67621\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{78790705-A05B-4D6B-AADA-2E5E30F88356}C:\program files (x86)\heroes of the storm\versions\base67621\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base67621\heroesofthestorm_x64.exe
FirewallRules: [{5DD5D1F2-F17F-42D3-A483-EFA75FA74FE6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{4181345F-1C2A-4955-B9E4-BD31C745A9AF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [TCP Query User{60AD00A8-91CA-425C-A25C-0AB4EA79B993}C:\program files (x86)\heroes of the storm\versions\base67985\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base67985\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{B4DDD101-5761-4FA7-B622-F608627AB89F}C:\program files (x86)\heroes of the storm\versions\base67985\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base67985\heroesofthestorm_x64.exe
FirewallRules: [{29BF0E97-631B-4899-8017-6E02FD8C6736}] => (Allow) C:\Program Files\VueScan\vuescan.exe
FirewallRules: [{C081BBAD-4F03-433A-B841-74EEC404339F}] => (Allow) C:\Program Files\VueScan\vuescan.exe
FirewallRules: [{67E37D8F-D618-49E7-AA6A-B8DA7B2F8110}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{8CD7C2D4-C0C3-46F3-AD73-74779A2A4D2A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{68EBA748-862C-4D3D-B125-CDC4A0D47E58}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{5AFD13D5-FF51-4EA7-B3DF-40157A94F1F3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{20FBD4E6-0A5A-4CE4-AD18-4E48212A3061}C:\program files (x86)\heroes of the storm\versions\base68509\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base68509\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{91715581-33FA-46F9-9B59-F717A3874109}C:\program files (x86)\heroes of the storm\versions\base68509\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base68509\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{1DDDA291-2A8D-4303-BFF1-CD3A0F4EA74F}C:\program files (x86)\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{4845BA59-4146-48D1-BA5D-83127940E8D3}C:\program files (x86)\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{B9312D33-6EEC-46F2-A0A3-9619E6B02672}C:\program files (x86)\heroes of the storm\versions\base69185\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69185\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{87F8DCC8-10B3-4D61-8A2F-0E09DBD2CF0E}C:\program files (x86)\heroes of the storm\versions\base69185\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69185\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{17FD792A-CDD7-49B4-8458-819AB4AC57A8}C:\program files (x86)\heroes of the storm\versions\base69264\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69264\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{073F1456-B7D3-4BAF-96CB-BB60D82BC3D7}C:\program files (x86)\heroes of the storm\versions\base69264\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69264\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{8964A8FD-337A-4E5B-B290-4CEEA908D048}C:\program files (x86)\heroes of the storm\versions\base69350\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69350\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{5106C385-0B16-454B-B0D2-40D0B5EDF9D1}C:\program files (x86)\heroes of the storm\versions\base69350\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69350\heroesofthestorm_x64.exe
FirewallRules: [{BD97F880-5C98-4012-B77A-1BEFE06AF917}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{AD3B2C02-4A84-4213-A860-77699756947A}C:\program files (x86)\heroes of the storm\versions\base69790\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69790\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{DCEFECBB-4530-4ADF-874A-DF342EBD28C8}C:\program files (x86)\heroes of the storm\versions\base69790\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69790\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{AED9126D-0AAA-4A3E-BF33-0F4E961B7673}C:\program files (x86)\heroes of the storm\versions\base69823\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69823\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{ED848C90-B655-49B4-BA24-8B284CD2AECA}C:\program files (x86)\heroes of the storm\versions\base69823\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69823\heroesofthestorm_x64.exe

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/07/2018 08:00:31 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (11/07/2018 08:00:29 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (11/07/2018 08:00:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.17134.1, časové razítko: 0xcb43d9c5
Název chybujícího modulu: ntdll.dll, verze: 10.0.17134.254, časové razítko: 0xa5a334d4
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000006927f
ID chybujícího procesu: 0x1a34
Čas spuštění chybující aplikace: 0x01d476cc25988860
Cesta k chybující aplikaci: C:\Windows\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: b6e98858-b43d-4dea-bfb6-4ff9e2ea4e0d
Úplný název chybujícího balíčku: Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App

Error: (11/07/2018 07:56:00 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (11/07/2018 07:55:57 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (11/07/2018 07:16:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ic-0.34b30484d9839.exe, verze: 1.0.0.1, časové razítko: 0x5be3291a
Název chybujícího modulu: ntdll.dll, verze: 10.0.17134.254, časové razítko: 0xbf2f8c99
Kód výjimky: 0xc0000028
Posun chyby: 0x0009d159
ID chybujícího procesu: 0x13cc
Čas spuštění chybující aplikace: 0x01d476c5f0efef0f
Cesta k chybující aplikaci: C:\Users\DAVIDA~1\AppData\Local\Temp\291000\ic-0.34b30484d9839.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: c26aef4f-a40a-4d2b-8897-7e2b2ade4a2a
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (11/07/2018 07:16:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ic-0.34b30484d9839.exe, verze: 1.0.0.1, časové razítko: 0x5be3291a
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc00001a5
Posun chyby: 0x02be051a
ID chybujícího procesu: 0x13cc
Čas spuštění chybující aplikace: 0x01d476c5f0efef0f
Cesta k chybující aplikaci: C:\Users\DAVIDA~1\AppData\Local\Temp\291000\ic-0.34b30484d9839.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: b6abc5e3-f529-43cc-82fe-47bb3986b685
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (11/07/2018 07:16:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ic-0.34b30484d9839.exe, verze: 1.0.0.1, časové razítko: 0x5be3291a
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc00001a5
Posun chyby: 0x02be051a
ID chybujícího procesu: 0x13cc
Čas spuštění chybující aplikace: 0x01d476c5f0efef0f
Cesta k chybující aplikaci: C:\Users\DAVIDA~1\AppData\Local\Temp\291000\ic-0.34b30484d9839.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 58574e3e-a03f-4ce1-97c7-fe038a5716c4
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (11/07/2018 08:01:47 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-CH7J00S)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-CH7J00S\David a Domča (SID: S-1-5-21-3790302877-2324764744-3276189103-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/07/2018 08:00:37 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-CH7J00S)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-CH7J00S\David a Domča (SID: S-1-5-21-3790302877-2324764744-3276189103-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/07/2018 08:00:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba evhkkprs neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (11/07/2018 07:56:25 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-CH7J00S)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-CH7J00S\David a Domča (SID: S-1-5-21-3790302877-2324764744-3276189103-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/07/2018 07:56:11 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-CH7J00S)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-CH7J00S\David a Domča (SID: S-1-5-21-3790302877-2324764744-3276189103-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/07/2018 07:55:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba evhkkprs neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (11/07/2018 07:55:15 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Instalační služba modulů systému Windows se po přijetí pokynu pro vypnutí neukončila správně.

Error: (11/07/2018 07:36:49 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-CH7J00S)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-CH7J00S\David a Domča (SID: S-1-5-21-3790302877-2324764744-3276189103-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


Windows Defender:
===================================
Date: 2018-10-13 14:10:04.289
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {244FB557-7130-4AD6-8010-B0CADFC3C290}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-10-10 23:29:39.513
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {92741D6D-6DC2-4663-8D9C-D3E73B8BA311}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-11-04 16:16:36.218
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.279.1164.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15400.4
Kód chyby: 0x80070643
Popis chyby :Při instalaci došlo k závažné chybě.

==================== Memory info ===========================

Processor: AMD FX(tm)-6300 Six-Core Processor
Percentage of memory in use: 28%
Total physical RAM: 8158.66 MB
Available physical RAM: 5801.59 MB
Total Virtual: 10078.66 MB
Available Virtual: 7416.98 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:118.7 GB) (Free:42.3 GB) NTFS

\\?\Volume{8cb00afa-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.54 GB) (Free:0.5 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 8CB00AFA)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=118.7 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Re: Nemuzu zapnout antivirovou ochranu pred viry v realnem c

Napsal: 07 lis 2018 20:11
od kvaska
Pozn.: neni to muj komp pomaham kamaradovi.

Re: Nemuzu zapnout antivirovou ochranu pred viry v realnem c

Napsal: 07 lis 2018 21:00
od Rudy
Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: Nemuzu zapnout antivirovou ochranu pred viry v realnem c

Napsal: 09 lis 2018 12:28
od kvaska
# -------------------------------
# Malwarebytes AdwCleaner 7.2.4.0
# -------------------------------
# Build: 09-25-2018
# Database: 2018-11-05.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 11-09-2018
# Duration: 00:00:07
# OS: Windows 10 Home
# Scanned: 32052
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.


AdwCleaner[S00].txt - [6969 octets] - [09/11/2018 12:25:32]
AdwCleaner[C00].txt - [6209 octets] - [09/11/2018 12:25:51]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########


Ale pop out window pořád zůstal.

Re: Nemuzu zapnout antivirovou ochranu pred viry v realnem c

Napsal: 09 lis 2018 12:42
od kvaska
Pop out zmizel po přeinstalování chromu. Teď pořád ještě nejde zapnout ochrana před viry a firewall Windows.

Re: Nemuzu zapnout antivirovou ochranu pred viry v realnem c

Napsal: 09 lis 2018 13:26
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
Task: {1E44DA0A-F8F6-4676-A39B-1815446FA568} - System32\Tasks\SVC Update => C:\Windows\explorer.exe "hxxp://lktoday.ru" <==== ATTENTION
Task: {4873F2C0-961C-4AEB-903A-0B7312E3210B} - \Online Application V2G2 -> No File <==== ATTENTION
Task: {6518A967-8A4D-4A97-BDAA-E5BCAFBBC6E6} - \Online Application V2G5 -> No File <==== ATTENTION
Task: {857086CD-8C1A-4ECC-8F15-5505627DDDBD} - \Online Application V2G1 -> No File <==== ATTENTION
Task: {857B92CA-ED54-4CF9-B0B0-F1CA8989D406} - \Online Application V2G6 -> No File <==== ATTENTION
Task: {8820FAEC-2B0F-4EEA-9EA1-3DC423239A07} - \Opera scheduled Autoupdate 2796787680 -> No File <==== ATTENTION
Task: {B0936C5C-64AF-446C-AAFD-6855581ADFBA} - \Updater_Online_Application -> No File <==== ATTENTION
Task: {B4B24861-C544-4ED6-9685-470A3367E6E0} - \Online Application V2G3 -> No File <==== ATTENTION
Task: {4D855351-B48A-45AA-9753-ABA8BA37587E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-08-23] (Google Inc.)
Task: {61F37C86-D891-4085-9A9F-8AEA37E92DEC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-08-23] (Google Inc.)
Task: {F57BF2A1-FC69-4036-8971-30FE64B6BAE0} - \Online Application V2G4 -> No File <==== ATTENTION
FirewallRules: [{6F750682-4E03-4284-96C1-5BA615AE44E1}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{B103FAB4-6CCB-44A0-9276-6BD3A187BFCE}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{BDE3DFF4-691F-42F1-B251-6F3EDAFF6E72}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{7ABB6DF6-11E6-43F0-84CC-158E64F2CB4E}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\...\MountPoints2: {f1cebb46-8725-11e8-8a58-fcaa14c5e738} - "E:\HiSuiteDownLoader.exe"
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
R2 CRMSvc; C:\Users\David a Domča\AppData\Roaming\CRMSvc\CRMSvc.exe [1469440 2018-11-07] () [File not signed] <==== ATTENTION
R2 MicroV2Service; C:\Users\David a Domča\AppData\Local\William\William.dll [581632 2018-11-07] () [File not signed]
S2 evhkkprs; C:\Windows\SysWOW64\evhkkprs\oqlctnun.exe [X]
C:\Program Files (x86)\KMSPico 10.2.1 Final
C:\Users\David a Domča\Downloads\KMSPico 10.2.1 [DazTeam.TW]
C:\Users\David a Domča\Downloads\KMSPico 10.2.1 [DazTeam.TW].zip
C:\Users\David a Domča\AppData\Local\Temp

EmptyTemp:
End
Uložte do C:\Users\David a Domča\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Nemuzu zapnout antivirovou ochranu pred viry v realnem c

Napsal: 09 lis 2018 14:02
od kvaska
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08.11.2018
Ran by David a Domča (administrator) on DESKTOP-CH7J00S (09-11-2018 13:59:34)
Running from C:\Users\David a Domča\Downloads
Loaded Profiles: David a Domča (Available Profiles: David a Domča)
Platform: Windows 10 Home Version 1803 17134.345 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Video.UI.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(WinZip Computing) C:\Program Files\WinZip\WzPreloader.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Suunto) C:\Users\David a Domča\AppData\Local\Apps\2.0\P8ZL0A4G.2AW\N097EL5T.622\move..tion_7b728a49b2b0d019_0001.0005_cab60a8d7bc05604\Moveslink2.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9235936 2017-08-10] (Realtek Semiconductor)
HKLM\...\Run: [WinZip PreLoader] => C:\Program Files\WinZip\WzPreloader.exe [124032 2018-04-22] (WinZip Computing)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3131680 2018-11-08] (Valve Corporation)
HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\...\Run: [Moveslink2] => C:\Users\David a Domča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Suunto\Moveslink2.appref-ms -auto
HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Ribbons.scr [148480 2018-04-12] (Microsoft Corporation)
Startup: C:\Users\David a Domča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\sbciagwu.lnk [2018-11-07]
ShortcutTarget: sbciagwu.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 81.200.55.169 81.200.48.13
Tcpip\..\Interfaces\{803ce1ba-bfbe-4227-880c-ee5b7de5e7aa}: [DhcpNameServer] 81.200.55.169 81.200.48.13

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-3790302877-2324764744-3276189103-1001 -> {083280CB-5FDA-4B1F-9D19-7E5EFB2D4138} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3790302877-2324764744-3276189103-1001 -> {1552F4B3-5A03-44E3-9E7D-2277C2293AB3} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_12454
SearchScopes: HKU\S-1-5-21-3790302877-2324764744-3276189103-1001 -> {4DAC81AD-74D6-424F-AA9D-60CE97E22F7F} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_12454
SearchScopes: HKU\S-1-5-21-3790302877-2324764744-3276189103-1001 -> {5D5B3F56-41A3-4948-B976-5F7A6C7EFD81} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_12454
SearchScopes: HKU\S-1-5-21-3790302877-2324764744-3276189103-1001 -> {960195B4-F93A-4DE7-AD06-11EEF3CF1C9D} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_12454
SearchScopes: HKU\S-1-5-21-3790302877-2324764744-3276189103-1001 -> {97C770CA-8230-4ADD-84C2-E0762D508E54} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3790302877-2324764744-3276189103-1001 -> {AB1116D3-C872-4A51-A2FF-12B0995D54BE} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3790302877-2324764744-3276189103-1001 -> {D9ADD77C-1BE2-493D-BF99-080C3F0C7031} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3790302877-2324764744-3276189103-1001 -> {DF71151E-024F-4558-8E14-89786BED05DE} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454

FireFox:
========
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-11-09] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-11-09] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-09-20] (Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default [2018-11-09]
CHR Extension: (Prezentace) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-09]
CHR Extension: (Dokumenty) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-09]
CHR Extension: (Disk Google) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-09]
CHR Extension: (YouTube) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-09]
CHR Extension: (Tabulky) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-09]
CHR Extension: (Dokumenty Google offline) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-11-09]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-11-09]
CHR Extension: (Gmail) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-11-09]
CHR Extension: (Chrome Media Router) - C:\Users\David a Domča\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-11-09]
CHR HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7212480 2018-08-08] ()
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2016-06-15] (HP Inc.) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2016-06-15] (HP Inc.) [File not signed]
S4 ssh-agent; C:\Windows\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11644656 2018-08-13] (TeamViewer GmbH)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [146856 2015-03-10] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [21928 2015-03-10] (Windows (R) Win 7 DDK provider)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys [16936048 2017-11-09] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [604160 2018-04-12] (Realtek )
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46184 2018-10-23] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [60408 2018-10-23] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-09 13:54 - 2018-11-09 13:54 - 000000008 __RSH C:\ProgramData\ntuser.pol
2018-11-09 13:44 - 2018-11-09 13:44 - 000000000 ____D C:\Users\David a Domča\Downloads\FRST-OlderVersion
2018-11-09 13:39 - 2018-11-09 13:39 - 197973009 _____ C:\Users\David a Domča\Desktop\Desktop.rar
2018-11-09 13:37 - 2018-11-09 13:37 - 000000000 ___HD C:\$SysReset
2018-11-09 13:29 - 2018-11-09 13:29 - 000000000 ____D C:\Users\David a Domča\AppData\Roaming\NuGet
2018-11-09 13:29 - 2018-11-09 13:29 - 000000000 ____D C:\Users\David a Domča\AppData\Local\PackageManagement
2018-11-09 13:29 - 2018-11-09 13:29 - 000000000 ____D C:\Program Files\PackageManagement
2018-11-09 13:21 - 2018-11-09 13:22 - 001136576 _____ (BoolApps Ltd) C:\Users\David a Domča\Downloads\errorkit-ver_ae6fd2ca-err_20970.exe
2018-11-09 12:57 - 2018-11-09 13:06 - 000000000 ____D C:\ProgramData\RogueKiller
2018-11-09 12:57 - 2018-11-09 12:57 - 032896056 _____ C:\Users\David a Domča\Downloads\RogueKiller_portable64.exe
2018-11-09 12:31 - 2018-11-09 12:31 - 000002377 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-11-09 12:31 - 2018-11-09 12:31 - 000002336 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-11-09 12:25 - 2018-11-09 12:25 - 000000000 ____D C:\AdwCleaner
2018-11-09 12:24 - 2018-11-09 12:24 - 007592144 _____ (Malwarebytes) C:\Users\David a Domča\Downloads\adwcleaner_7.2.4.0.exe
2018-11-07 19:43 - 2018-11-09 13:57 - 000032566 _____ C:\Users\David a Domča\Downloads\Addition.txt
2018-11-07 19:42 - 2018-11-09 13:59 - 000011249 _____ C:\Users\David a Domča\Downloads\FRST.txt
2018-11-07 19:42 - 2018-11-09 13:59 - 000000000 ____D C:\FRST
2018-11-07 19:42 - 2018-11-09 13:44 - 002415616 _____ (Farbar) C:\Users\David a Domča\Downloads\FRST64.exe
2018-11-07 19:41 - 2018-11-07 19:41 - 000000000 ____D C:\Program Files (x86)\trend micro
2018-11-07 19:40 - 2018-11-07 19:40 - 000000000 ____D C:\rsit
2018-11-07 19:40 - 2018-11-07 19:40 - 000000000 ____D C:\Program Files\trend micro
2018-11-07 19:20 - 2018-11-07 19:59 - 000000000 ____D C:\Users\David a Domča\Downloads\backups
2018-11-07 19:17 - 2018-11-07 19:17 - 000388608 _____ (Trend Micro Inc.) C:\Users\David a Domča\Downloads\hijackthis.exe
2018-11-07 19:16 - 2018-11-07 19:16 - 001611944 _____ (Secure Download Ltd. ) C:\Users\David a Domča\Downloads\Registry_Activation
2018-11-07 19:10 - 2018-11-09 13:54 - 000000008 __RSH C:\Users\David a Domča\ntuser.pol
2018-11-07 19:08 - 2018-11-07 19:16 - 000722944 _____ C:\Users\David a Domča\AppData\Local\sham.db
2018-11-07 19:08 - 2018-11-07 19:08 - 000140800 _____ C:\Users\David a Domča\AppData\Local\installer.dat
2018-11-07 19:03 - 2018-11-07 19:03 - 000000000 ____D C:\Users\David a Domča\AppData\Local\Turbo.net
2018-11-07 19:01 - 2018-11-07 19:10 - 000000000 ____D C:\Program Files\WinRAR
2018-11-07 19:01 - 2018-11-07 19:07 - 000000000 ____D C:\Users\David a Domča\Downloads\KMSPico 10.2.1 [DazTeam.TW]
2018-11-07 19:01 - 2018-11-07 19:01 - 000000000 ____D C:\Users\David a Domča\AppData\Roaming\WinRAR
2018-11-07 19:01 - 2018-11-07 19:01 - 000000000 ____D C:\Users\David a Domča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-11-07 19:01 - 2018-11-07 19:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-11-07 19:00 - 2018-11-07 19:00 - 004988475 _____ C:\Users\David a Domča\Downloads\KMSPico 10.2.1 [DazTeam.TW].zip
2018-11-01 05:07 - 2018-11-07 18:56 - 000000000 ____D C:\Users\David a Domča\AppData\LocalLow\uTorrent
2018-10-31 15:48 - 2018-10-31 16:26 - 000000000 ____D C:\Users\David a Domča\Downloads\The.Equalizer.2.2018.HDRip.XviD.AC3-EVO
2018-10-28 21:28 - 2018-10-28 21:28 - 000014051 _____ C:\Users\David a Domča\Desktop\ČísloPříjmeníJménostátdisciplína.odt
2018-10-28 21:26 - 2018-10-28 21:26 - 000160452 _____ C:\Users\David a Domča\Desktop\Studentský průkaz.pdf
2018-10-28 21:01 - 2018-10-28 21:01 - 000012327 _____ C:\Users\David a Domča\Desktop\ikt.odt
2018-10-28 20:20 - 2018-10-28 20:20 - 000160452 _____ C:\Users\David a Domča\Downloads\Studentský průkaz.pdf
2018-10-28 17:06 - 2018-10-28 17:07 - 001477627 _____ C:\Users\David a Domča\Downloads\onegin.pdf
2018-10-28 16:40 - 2018-10-28 23:17 - 000000000 ____D C:\Users\David a Domča\Downloads\Mission.Impossible.Fallout.2018.HC.HDRip.XviD.AC3-EVO[EtMovies]
2018-10-28 16:05 - 2018-10-28 16:17 - 2533638089 ____R C:\Users\David a Domča\Downloads\Mission.Impossible.Fallout.2018.1080p.HC.HDRip.x264.AC3.MkvCage.ws.mkv
2018-10-25 16:27 - 2018-10-25 16:55 - 503856194 _____ C:\Users\David a Domča\Downloads\Medvidek Pu - 17 Prasatko a jeho velky pribeh.avi
2018-10-23 19:20 - 2018-10-23 19:20 - 000000136 ____H C:\Users\David a Domča\Downloads\.~lock.11. Náklady.doc#
2018-10-23 19:19 - 2018-10-23 19:19 - 000000136 ____H C:\Users\David a Domča\Downloads\.~lock.10. Zákoník práce,Zaměstnanci.doc#
2018-10-23 19:17 - 2018-10-23 19:17 - 000000136 ____H C:\Users\David a Domča\Downloads\.~lock.9. Personalistika.doc#
2018-10-23 19:04 - 2018-10-23 19:04 - 000454581 _____ C:\Users\David a Domča\Desktop\ucto.pdf
2018-10-23 19:03 - 2018-10-23 19:03 - 000051691 _____ C:\Users\David a Domča\Downloads\Cvičení+-+účtová+třída+2+-+Kr.+finanční+maj..docm
2018-10-23 19:00 - 2018-10-23 19:00 - 000000136 ____H C:\Users\David a Domča\Downloads\.~lock.10.+Operace+-+krátkodobý+fin.+majetek.doc#
2018-10-23 18:50 - 2018-10-23 18:50 - 000000136 ____H C:\Users\David a Domča\Downloads\.~lock.4. Smlouvy.doc#
2018-10-20 11:52 - 2018-11-04 17:50 - 000000000 ____D C:\Users\David a Domča\Desktop\vinted
2018-10-20 11:51 - 2018-10-20 11:52 - 000000000 ____D C:\Users\David a Domča\Desktop\mantinel
2018-10-19 07:57 - 2018-10-19 07:58 - 000000000 ____D C:\Users\David a Domča\Desktop\zidicla
2018-10-16 17:14 - 2018-10-16 18:30 - 835977152 _____ C:\Users\David a Domča\Downloads\Medvídek Pú (2011) CZ dabing.avi
2018-10-13 08:46 - 2018-10-13 08:59 - 145072176 _____ C:\Users\David a Domča\Downloads\Krtkova-dobrodruzstvi-02_Krtek-a-auticko.avi
2018-10-13 07:48 - 2018-10-13 08:13 - 458247270 _____ C:\Users\David a Domča\Downloads\Medvidek Pu - 10 Vesela spolecenska vychova.avi
2018-10-13 06:54 - 2018-10-13 07:25 - 543241548 _____ C:\Users\David a Domča\Downloads\Medvidek Pu - 16 Medvidkova prani.avi
2018-10-10 07:53 - 2018-09-21 05:09 - 004790160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2018-10-10 07:53 - 2018-09-21 05:09 - 002253696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-10-10 07:53 - 2018-09-21 05:09 - 001427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll
2018-10-10 07:53 - 2018-09-21 05:08 - 002765344 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-10-10 07:53 - 2018-09-21 05:08 - 001566720 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll
2018-10-10 07:53 - 2018-09-21 05:08 - 000709936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2018-10-10 07:53 - 2018-09-21 05:08 - 000170808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-10-10 07:53 - 2018-09-21 05:07 - 000604664 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2018-10-10 07:53 - 2018-09-21 04:57 - 002900992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2018-10-10 07:53 - 2018-09-21 04:42 - 000209408 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2018-10-10 07:53 - 2018-09-21 04:41 - 003396096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2018-10-10 07:53 - 2018-09-21 04:40 - 002368000 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2018-10-10 07:53 - 2018-09-21 04:39 - 001708544 _____ (Microsoft Corporation) C:\Windows\system32\MSPhotography.dll
2018-10-10 07:53 - 2018-09-21 04:39 - 001535488 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-10-10 07:53 - 2018-09-21 04:39 - 000625152 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2018-10-10 07:53 - 2018-09-21 04:38 - 002172928 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2018-10-10 07:53 - 2018-09-21 04:38 - 001551360 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2018-10-10 07:53 - 2018-09-21 04:37 - 002904064 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2018-10-10 07:53 - 2018-09-21 04:37 - 002236928 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2018-10-10 07:53 - 2018-09-21 04:37 - 001211904 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2018-10-10 07:53 - 2018-09-21 04:36 - 001159680 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2018-10-10 07:53 - 2018-09-21 04:36 - 001034240 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2018-10-10 07:53 - 2018-09-21 04:36 - 000401920 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2018-10-10 07:53 - 2018-09-20 10:37 - 001634944 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2018-10-10 07:53 - 2018-09-20 10:19 - 001121792 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2018-10-10 07:53 - 2018-09-20 10:18 - 003649024 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2018-10-10 07:53 - 2018-09-20 10:17 - 001856000 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2018-10-10 07:53 - 2018-09-20 09:46 - 001454440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2018-10-10 07:53 - 2018-09-20 09:34 - 012500992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2018-10-10 07:53 - 2018-09-20 09:29 - 002891776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2018-10-10 07:53 - 2018-09-20 09:29 - 001586176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2018-10-10 07:53 - 2018-09-20 07:43 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MixedRealityCapture.dll
2018-10-10 07:53 - 2018-09-20 06:52 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MixedRealityCapture.dll
2018-10-10 07:53 - 2018-09-20 05:29 - 006569856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-10-10 07:53 - 2018-09-20 05:29 - 001989232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2018-10-10 07:53 - 2018-09-20 05:28 - 001129544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2018-10-10 07:53 - 2018-09-20 05:28 - 000567256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2018-10-10 07:53 - 2018-09-20 05:17 - 006661632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2018-10-10 07:53 - 2018-09-20 05:13 - 003711488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-10-10 07:53 - 2018-09-20 05:11 - 005777920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2018-10-10 07:53 - 2018-09-20 05:11 - 000561152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-10-10 07:53 - 2018-09-20 05:10 - 001221128 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2018-10-10 07:53 - 2018-09-20 05:10 - 001029432 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2018-10-10 07:53 - 2018-09-20 05:09 - 009089848 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-10-10 07:53 - 2018-09-20 05:09 - 007520096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2018-10-10 07:53 - 2018-09-20 05:09 - 002825232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2018-10-10 07:53 - 2018-09-20 05:09 - 002462888 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2018-10-10 07:53 - 2018-09-20 05:09 - 000885952 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2018-10-10 07:53 - 2018-09-20 05:09 - 000793088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2018-10-10 07:53 - 2018-09-20 05:09 - 000713472 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll
2018-10-10 07:53 - 2018-09-20 05:09 - 000412984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2018-10-10 07:53 - 2018-09-20 05:08 - 004191232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-10-10 07:53 - 2018-09-20 05:08 - 001627648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-10-10 07:53 - 2018-09-20 04:44 - 008188928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2018-10-10 07:53 - 2018-09-20 04:42 - 004866560 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-10-10 07:53 - 2018-09-20 04:41 - 007577088 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2018-10-10 07:53 - 2018-09-20 04:41 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2018-10-10 07:53 - 2018-09-20 04:40 - 003090432 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2018-10-10 07:53 - 2018-09-20 04:40 - 000808448 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2018-10-10 07:53 - 2018-09-20 04:40 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-10-10 07:53 - 2018-09-08 04:57 - 002571128 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-10-10 07:53 - 2018-09-08 04:44 - 001980984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-10-10 07:53 - 2018-09-08 04:29 - 000174080 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2018-10-10 07:53 - 2018-09-08 04:27 - 003348992 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2018-10-10 07:53 - 2018-09-08 04:25 - 000466432 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2018-10-10 07:52 - 2018-09-21 10:18 - 021386888 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2018-10-10 07:52 - 2018-09-21 10:01 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2018-10-10 07:52 - 2018-09-21 09:22 - 020381784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2018-10-10 07:52 - 2018-09-21 09:12 - 000150016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2018-10-10 07:52 - 2018-09-21 05:14 - 000661056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2018-10-10 07:52 - 2018-09-21 05:13 - 000480568 _____ (Microsoft Corporation) C:\Windows\system32\dcntel.dll
2018-10-10 07:52 - 2018-09-21 05:12 - 001035256 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2018-10-10 07:52 - 2018-09-21 05:11 - 000753056 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2018-10-10 07:52 - 2018-09-21 05:09 - 001062920 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2018-10-10 07:52 - 2018-09-21 05:09 - 000129088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2018-10-10 07:52 - 2018-09-21 05:08 - 004404720 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2018-10-10 07:52 - 2018-09-21 05:08 - 001456720 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-10-10 07:52 - 2018-09-21 05:08 - 001257864 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-10-10 07:52 - 2018-09-21 05:08 - 001140672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-10-10 07:52 - 2018-09-21 05:08 - 000982600 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2018-10-10 07:52 - 2018-09-21 05:08 - 000261008 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2018-10-10 07:52 - 2018-09-21 04:58 - 005307392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2018-10-10 07:52 - 2018-09-21 04:57 - 001361408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll
2018-10-10 07:52 - 2018-09-21 04:56 - 000331264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2018-10-10 07:52 - 2018-09-21 04:54 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2018-10-10 07:52 - 2018-09-21 04:53 - 001006080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2018-10-10 07:52 - 2018-09-21 04:43 - 001627136 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2018-10-10 07:52 - 2018-09-21 04:39 - 003320320 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2018-10-10 07:52 - 2018-09-21 04:37 - 000604160 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2018-10-10 07:52 - 2018-09-21 04:36 - 000932352 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2018-10-10 07:52 - 2018-09-21 04:36 - 000505344 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2018-10-10 07:52 - 2018-09-20 10:40 - 000348160 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2018-10-10 07:52 - 2018-09-20 10:23 - 006602240 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2018-10-10 07:52 - 2018-09-20 10:22 - 013572096 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2018-10-10 07:52 - 2018-09-20 10:18 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-10-10 07:52 - 2018-09-20 10:17 - 002874368 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2018-10-10 07:52 - 2018-09-20 10:17 - 001364992 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2018-10-10 07:52 - 2018-09-20 10:16 - 000127488 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll
2018-10-10 07:52 - 2018-09-20 09:35 - 005669888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2018-10-10 07:52 - 2018-09-20 09:30 - 000344576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-10-10 07:52 - 2018-09-20 09:29 - 002824704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2018-10-10 07:52 - 2018-09-20 09:28 - 000102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpshell.dll
2018-10-10 07:52 - 2018-09-20 05:29 - 006039368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2018-10-10 07:52 - 2018-09-20 05:29 - 001513032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2018-10-10 07:52 - 2018-09-20 05:29 - 000357056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2018-10-10 07:52 - 2018-09-20 05:28 - 000581792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll
2018-10-10 07:52 - 2018-09-20 05:21 - 022013440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2018-10-10 07:52 - 2018-09-20 05:15 - 019404288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-10-10 07:52 - 2018-09-20 05:12 - 000272200 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave.dll
2018-10-10 07:52 - 2018-09-20 05:12 - 000269128 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave_secure.dll
2018-10-10 07:52 - 2018-09-20 05:11 - 000608768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2018-10-10 07:52 - 2018-09-20 05:11 - 000578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2018-10-10 07:52 - 2018-09-20 05:11 - 000074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dtdump.exe
2018-10-10 07:52 - 2018-09-20 05:10 - 002719032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2018-10-10 07:52 - 2018-09-20 05:10 - 000566800 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2018-10-10 07:52 - 2018-09-20 05:10 - 000500536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-10-10 07:52 - 2018-09-20 05:10 - 000355840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2018-10-10 07:52 - 2018-09-20 05:10 - 000134968 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2018-10-10 07:52 - 2018-09-20 05:10 - 000076088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2018-10-10 07:52 - 2018-09-20 05:09 - 007432136 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2018-10-10 07:52 - 2018-09-20 05:09 - 002421248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2018-10-10 07:52 - 2018-09-20 05:09 - 001767096 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2018-10-10 07:52 - 2018-09-20 05:09 - 001540096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpserverbase.dll
2018-10-10 07:52 - 2018-09-20 05:09 - 001097744 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2018-10-10 07:52 - 2018-09-20 04:53 - 025851392 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2018-10-10 07:52 - 2018-09-20 04:46 - 022715392 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-10-10 07:52 - 2018-09-20 04:44 - 004383744 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2018-10-10 07:52 - 2018-09-20 04:43 - 000052736 _____ C:\Windows\system32\runexehelper.exe
2018-10-10 07:52 - 2018-09-20 04:42 - 000433664 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2018-10-10 07:52 - 2018-09-20 04:42 - 000099328 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2018-10-10 07:52 - 2018-09-20 04:41 - 000898560 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2018-10-10 07:52 - 2018-09-20 04:41 - 000894464 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2018-10-10 07:52 - 2018-09-20 04:41 - 000319488 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2018-10-10 07:52 - 2018-09-20 04:38 - 001724416 _____ (Microsoft Corporation) C:\Windows\system32\rdpserverbase.dll
2018-10-10 07:52 - 2018-09-20 04:38 - 000433664 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2018-10-10 07:52 - 2018-09-20 04:37 - 004615680 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-10-10 07:52 - 2018-09-20 04:37 - 001804288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-10-10 07:52 - 2018-09-20 04:36 - 001375232 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2018-10-10 07:52 - 2018-09-20 03:21 - 000001312 _____ C:\Windows\system32\tcbres.wim
2018-10-10 07:52 - 2018-09-20 02:28 - 000343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2018-10-10 07:52 - 2018-09-08 09:12 - 000452112 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2018-10-10 07:52 - 2018-09-08 09:07 - 002868536 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2018-10-10 07:52 - 2018-09-08 09:07 - 001610552 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2018-10-10 07:52 - 2018-09-08 09:07 - 000792376 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2018-10-10 07:52 - 2018-09-08 09:07 - 000689464 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-10-10 07:52 - 2018-09-08 09:07 - 000612360 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2018-10-10 07:52 - 2018-09-08 09:07 - 000309560 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2018-10-10 07:52 - 2018-09-08 09:07 - 000144696 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-10-10 07:52 - 2018-09-08 09:07 - 000069944 _____ (Microsoft Corporation) C:\Windows\system32\win32appinventorycsp.dll
2018-10-10 07:52 - 2018-09-08 09:02 - 000645112 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-10-10 07:52 - 2018-09-08 09:02 - 000540984 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2018-10-10 07:52 - 2018-09-08 08:58 - 001639352 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2018-10-10 07:52 - 2018-09-08 08:58 - 001520744 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2018-10-10 07:52 - 2018-09-08 08:57 - 000204800 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2018-10-10 07:52 - 2018-09-08 08:44 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\fdBth.dll
2018-10-10 07:52 - 2018-09-08 08:43 - 000085504 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2018-10-10 07:52 - 2018-09-08 08:43 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\SCardBi.dll
2018-10-10 07:52 - 2018-09-08 08:42 - 000256000 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2018-10-10 07:52 - 2018-09-08 08:42 - 000188928 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2018-10-10 07:52 - 2018-09-08 08:42 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.XamlHost.dll
2018-10-10 07:52 - 2018-09-08 08:42 - 000114176 _____ (Microsoft Corporation) C:\Windows\system32\bthci.dll
2018-10-10 07:52 - 2018-09-08 08:41 - 000258560 _____ (Microsoft Corporation) C:\Windows\system32\SCardSvr.dll
2018-10-10 07:52 - 2018-09-08 08:40 - 001724928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2018-10-10 07:52 - 2018-09-08 08:40 - 000677888 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2018-10-10 07:52 - 2018-09-08 08:40 - 000593408 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2018-10-10 07:52 - 2018-09-08 08:40 - 000522240 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2018-10-10 07:52 - 2018-09-08 08:40 - 000402944 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2018-10-10 07:52 - 2018-09-08 08:40 - 000249344 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2018-10-10 07:52 - 2018-09-08 08:39 - 005505024 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2018-10-10 07:52 - 2018-09-08 08:39 - 002052096 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2018-10-10 07:52 - 2018-09-08 08:39 - 001787904 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2018-10-10 07:52 - 2018-09-08 08:39 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2018-10-10 07:52 - 2018-09-08 08:38 - 001288192 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2018-10-10 07:52 - 2018-09-08 08:38 - 001004544 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2018-10-10 07:52 - 2018-09-08 08:38 - 000986112 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2018-10-10 07:52 - 2018-09-08 08:38 - 000882688 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2018-10-10 07:52 - 2018-09-08 08:38 - 000836608 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2018-10-10 07:52 - 2018-09-08 08:37 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2018-10-10 07:52 - 2018-09-08 08:16 - 000482080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-10-10 07:52 - 2018-09-08 08:14 - 001328056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2018-10-10 07:52 - 2018-09-08 08:13 - 001626656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2018-10-10 07:52 - 2018-09-08 08:13 - 000181288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2018-10-10 07:52 - 2018-09-08 08:03 - 000084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2018-10-10 07:52 - 2018-09-08 08:03 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdBth.dll
2018-10-10 07:52 - 2018-09-08 08:02 - 000236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2018-10-10 07:52 - 2018-09-08 08:00 - 000548864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2018-10-10 07:52 - 2018-09-08 07:59 - 001530368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2018-10-10 07:52 - 2018-09-08 07:59 - 001452544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2018-10-10 07:52 - 2018-09-08 07:59 - 000485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2018-10-10 07:52 - 2018-09-08 07:59 - 000133632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.XamlHost.dll
2018-10-10 07:52 - 2018-09-08 07:58 - 001308672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2018-10-10 07:52 - 2018-09-08 07:58 - 000897536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2018-10-10 07:52 - 2018-09-08 07:58 - 000775680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2018-10-10 07:52 - 2018-09-08 07:57 - 005391360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2018-10-10 07:52 - 2018-09-08 07:57 - 000625664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2018-10-10 07:52 - 2018-09-08 07:57 - 000423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2018-10-10 07:52 - 2018-09-08 07:57 - 000223744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthprops.cpl
2018-10-10 07:52 - 2018-09-08 07:56 - 000080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2018-10-10 07:52 - 2018-09-08 05:08 - 000462880 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2018-10-10 07:52 - 2018-09-08 04:59 - 000433664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2018-10-10 07:52 - 2018-09-08 04:59 - 000361544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2018-10-10 07:52 - 2018-09-08 04:58 - 000744976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2018-10-10 07:52 - 2018-09-08 04:58 - 000376120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2018-10-10 07:52 - 2018-09-08 04:58 - 000368440 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2018-10-10 07:52 - 2018-09-08 04:57 - 001016984 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2018-10-10 07:52 - 2018-09-08 04:57 - 000930616 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2018-10-10 07:52 - 2018-09-08 04:57 - 000482384 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_enclave.dll
2018-10-10 07:52 - 2018-09-08 04:57 - 000368448 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2018-10-10 07:52 - 2018-09-08 04:57 - 000267576 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2018-10-10 07:52 - 2018-09-08 04:51 - 000380728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll
2018-10-10 07:52 - 2018-09-08 04:45 - 000295416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
2018-10-10 07:52 - 2018-09-08 04:45 - 000286824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2018-10-10 07:52 - 2018-09-08 04:44 - 000829752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2018-10-10 07:52 - 2018-09-08 04:43 - 001174448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2018-10-10 07:52 - 2018-09-08 04:43 - 000269104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2018-10-10 07:52 - 2018-09-08 04:32 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dumpstorport.sys
2018-10-10 07:52 - 2018-09-08 04:31 - 000342528 _____ (Microsoft Corporation) C:\Windows\system32\browserexport.exe
2018-10-10 07:52 - 2018-09-08 04:31 - 000272384 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.Proxy.dll
2018-10-10 07:52 - 2018-09-08 04:30 - 003601920 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.Service.dll
2018-10-10 07:52 - 2018-09-08 04:30 - 000189440 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothApis.dll
2018-10-10 07:52 - 2018-09-08 04:30 - 000137728 _____ (Microsoft Corporation) C:\Windows\system32\InputLocaleManager.dll
2018-10-10 07:52 - 2018-09-08 04:30 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2018-10-10 07:52 - 2018-09-08 04:30 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2018-10-10 07:52 - 2018-09-08 04:29 - 004771840 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2018-10-10 07:52 - 2018-09-08 04:29 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2018-10-10 07:52 - 2018-09-08 04:29 - 000241152 _____ (Microsoft Corporation) C:\Windows\system32\HttpsDataSource.dll
2018-10-10 07:52 - 2018-09-08 04:29 - 000183808 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2018-10-10 07:52 - 2018-09-08 04:28 - 000481280 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2018-10-10 07:52 - 2018-09-08 04:28 - 000473088 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-10-10 07:52 - 2018-09-08 04:28 - 000273408 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2018-10-10 07:52 - 2018-09-08 04:28 - 000265728 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2018-10-10 07:52 - 2018-09-08 04:28 - 000153088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Bluetooth.Proxy.dll
2018-10-10 07:52 - 2018-09-08 04:27 - 000983040 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2018-10-10 07:52 - 2018-09-08 04:27 - 000596992 _____ (Microsoft Corporation) C:\Windows\system32\TileDataRepository.dll
2018-10-10 07:52 - 2018-09-08 04:27 - 000499200 _____ (Microsoft Corporation) C:\Windows\system32\winipcfile.dll
2018-10-10 07:52 - 2018-09-08 04:27 - 000301056 _____ (Microsoft Corporation) C:\Windows\system32\ProximityService.dll
2018-10-10 07:52 - 2018-09-08 04:27 - 000271872 _____ (Microsoft Corporation) C:\Windows\system32\dafBth.dll
2018-10-10 07:52 - 2018-09-08 04:26 - 002328064 _____ (Microsoft Corporation) C:\Windows\system32\winmsipc.dll
2018-10-10 07:52 - 2018-09-08 04:26 - 000814592 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2018-10-10 07:52 - 2018-09-08 04:26 - 000784896 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2018-10-10 07:52 - 2018-09-08 04:26 - 000471552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TileDataRepository.dll
2018-10-10 07:52 - 2018-09-08 04:26 - 000387584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ngccredprov.dll
2018-10-10 07:52 - 2018-09-08 04:26 - 000365568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2018-10-10 07:52 - 2018-09-08 04:26 - 000359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipcfile.dll
2018-10-10 07:52 - 2018-09-08 04:26 - 000142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BluetoothApis.dll
2018-10-10 07:52 - 2018-09-08 04:25 - 003553792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputService.dll
2018-10-10 07:52 - 2018-09-08 04:25 - 002789376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2018-10-10 07:52 - 2018-09-08 04:25 - 000882688 _____ (Microsoft Corporation) C:\Windows\system32\winipcsecproc.dll
2018-10-10 07:52 - 2018-09-08 04:25 - 000415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-10-10 07:52 - 2018-09-08 04:25 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Proximity.dll
2018-10-10 07:52 - 2018-09-08 04:24 - 001457664 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2018-10-10 07:52 - 2018-09-08 04:24 - 000899072 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-10-10 07:52 - 2018-09-08 04:24 - 000845824 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2018-10-10 07:52 - 2018-09-08 04:24 - 000463360 _____ (Microsoft Corporation) C:\Windows\system32\das.dll
2018-10-10 07:52 - 2018-09-08 04:23 - 001655296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmsipc.dll
2018-10-10 07:52 - 2018-09-08 04:23 - 000807936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipcsecproc.dll
2018-10-10 07:52 - 2018-09-08 04:23 - 000667136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fveapi.dll
2018-10-10 07:52 - 2018-09-08 04:23 - 000314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Proximity.dll
2018-10-10 07:52 - 2018-09-08 04:22 - 000778240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-09 13:55 - 2018-08-13 13:16 - 000000000 ____D C:\Users\David a Domča\AppData\Local\Deployment
2018-11-09 13:54 - 2018-09-15 20:09 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2018-11-09 13:54 - 2018-07-13 18:42 - 000000000 ____D C:\Program Files (x86)\Steam
2018-11-09 13:54 - 2018-07-13 18:21 - 000000000 ____D C:\ProgramData\NVIDIA
2018-11-09 13:54 - 2018-07-13 18:13 - 000000000 ____D C:\Users\David a Domča
2018-11-09 13:54 - 2018-07-13 18:09 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-11-09 13:54 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-11-09 13:53 - 2018-04-11 22:04 - 000524288 _____ C:\Windows\system32\config\BBI
2018-11-09 13:45 - 2018-07-14 10:15 - 000000000 ____D C:\Users\David a Domča\AppData\LocalLow\Temp
2018-11-09 13:45 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\system32\GroupPolicy
2018-11-09 13:13 - 2018-07-13 18:18 - 001601516 _____ C:\Windows\system32\PerfStringBackup.INI
2018-11-09 13:13 - 2018-04-12 16:50 - 000680616 _____ C:\Windows\system32\perfh005.dat
2018-11-09 13:13 - 2018-04-12 16:50 - 000136548 _____ C:\Windows\system32\perfc005.dat
2018-11-09 13:13 - 2018-04-12 00:36 - 000000000 ____D C:\Windows\INF
2018-11-09 12:31 - 2018-07-13 18:16 - 000000000 ____D C:\Users\David a Domča\AppData\Local\Google
2018-11-09 12:31 - 2018-07-13 18:16 - 000000000 ____D C:\Program Files (x86)\Google
2018-11-09 06:43 - 2018-08-12 10:22 - 000000000 ____D C:\Users\David a Domča\AppData\Local\Battle.net
2018-11-09 05:12 - 2018-08-12 10:27 - 000000000 ____D C:\Program Files (x86)\Heroes of the Storm
2018-11-09 05:12 - 2018-08-12 10:21 - 000000000 ____D C:\Program Files (x86)\Battle.net
2018-11-08 21:21 - 2018-07-13 18:09 - 000000000 ____D C:\Windows\system32\SleepStudy
2018-11-08 12:39 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\LiveKernelReports
2018-11-08 05:34 - 2018-04-12 00:30 - 000000000 ____D C:\Windows\CbsTemp
2018-11-07 19:17 - 2018-07-13 18:14 - 000000000 ____D C:\Users\David a Domča\AppData\Local\VirtualStore
2018-11-07 19:15 - 2018-08-03 21:01 - 000000000 ____D C:\Users\David a Domča\AppData\Roaming\Seznam.cz
2018-11-07 19:08 - 2018-07-19 10:47 - 000000000 ____D C:\Users\David a Domča\AppData\Roaming\uTorrent
2018-11-07 08:28 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-11-07 08:28 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\AppReadiness
2018-10-27 09:42 - 2018-09-27 19:00 - 000000000 ____D C:\Users\David a Domča\Downloads\Ocean's Eight (2018) [WEBRip] [1080p] [YTS.AM]
2018-10-23 21:22 - 2018-07-14 10:22 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-10-23 16:10 - 2018-07-13 18:30 - 000000000 ____D C:\ProgramData\Packages
2018-10-23 05:48 - 2018-07-13 18:09 - 000000000 ____D C:\Windows\system32\Drivers\wd
2018-10-18 05:31 - 2018-09-15 21:40 - 000000000 ____D C:\Users\David a Domča\AppData\Local\ElevatedDiagnostics
2018-10-16 17:21 - 2018-07-13 18:28 - 000559880 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2018-10-16 12:04 - 2018-07-13 18:17 - 000003394 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3790302877-2324764744-3276189103-1001
2018-10-16 12:04 - 2018-07-13 18:16 - 000000000 ___RD C:\Users\David a Domča\OneDrive
2018-10-16 12:04 - 2018-07-13 18:13 - 000002415 _____ C:\Users\David a Domča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-10-10 21:36 - 2018-07-13 18:14 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-10-10 21:36 - 2018-07-13 18:14 - 000000000 ___RD C:\Users\David a Domča\3D Objects
2018-10-10 21:36 - 2018-07-13 18:09 - 000269560 _____ C:\Windows\system32\FNTCACHE.DAT
2018-10-10 11:12 - 2018-04-12 00:38 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2018-10-10 11:12 - 2018-04-12 00:38 - 000000000 ___RD C:\Program Files\Windows Defender
2018-10-10 11:12 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\TextInput
2018-10-10 11:12 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\system32\ShellExperiences
2018-10-10 11:12 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\bcastdvr
2018-10-10 11:12 - 2018-04-12 00:38 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2018-10-10 07:56 - 2018-07-13 18:27 - 000000000 ____D C:\Windows\system32\MRT
2018-10-10 07:55 - 2018-07-13 18:27 - 136745976 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== Files in the root of some directories =======

2017-12-12 03:32 - 2017-12-12 03:32 - 118377867 _____ () C:\Program Files (x86)\openoffice1.cab
2017-12-12 03:29 - 2017-12-12 03:29 - 002306048 _____ () C:\Program Files (x86)\openoffice415.msi
2017-12-12 03:29 - 2017-12-12 03:29 - 000479232 _____ () C:\Program Files (x86)\setup.exe
2017-12-12 03:29 - 2017-12-12 03:29 - 000000279 _____ () C:\Program Files (x86)\setup.ini
2018-11-07 19:08 - 2018-11-07 19:08 - 000140800 _____ () C:\Users\David a Domča\AppData\Local\installer.dat
2018-11-07 19:08 - 2018-11-07 19:16 - 000722944 _____ () C:\Users\David a Domča\AppData\Local\sham.db

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-07-13 18:09

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08.11.2018
Ran by David a Domča (09-11-2018 14:00:08)
Running from C:\Users\David a Domča\Downloads
Windows 10 Home Version 1803 17134.345 (X64) (2018-07-13 17:11:53)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3790302877-2324764744-3276189103-500 - Administrator - Disabled)
David a Domča (S-1-5-21-3790302877-2324764744-3276189103-1001 - Administrator - Enabled) => C:\Users\David a Domča
DefaultAccount (S-1-5-21-3790302877-2324764744-3276189103-503 - Limited - Disabled)
Guest (S-1-5-21-3790302877-2324764744-3276189103-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3790302877-2324764744-3276189103-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\...\uTorrent) (Version: 3.5.4.44632 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (HKLM\...\{13DA9C7C-EBFB-40D0-94A1-55B42883DF21}) (Version: 21.2.1 - HP Inc.) Hidden
AbiWord 2.8.6 (HKLM-x32\...\AbiWord2) (Version: 2.8.6 - AbiSource Developers)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.008.20080 - Adobe Systems Incorporated)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.71.1081 - AB Team, d.o.o.)
CPUID HWMonitor 1.34 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.34 - )
Dot4 (HKLM\...\{3EEDA265-C6F3-4EC1-A317-1C9315DEDDDE}) (Version: 1.0.0.0 - HP)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.77 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Microsoft OneDrive (HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\...\OneDriveSetup.exe) (Version: 18.172.0826.0010 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Moveslink2 (HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\...\72ba98056758d55b) (Version: 1.5.0.318 - Suunto)
NVIDIA Ovladač 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
OpenOffice 4.1.5 (HKLM-x32\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
Ovládací panel NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8228 - Realtek Semiconductor Corp.)
Seznam Software (HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\...\SeznamInstall) (Version: 2.1.32 - Seznam.cz)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.9 - TeamSpeak Systems GmbH)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.2.14327 - TeamViewer)
VueScan x64 (HKLM\...\VueScan x64) (Version: - Hamrick Software)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)
WinZip 22.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2411B}) (Version: 22.5.13114 - Corel Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2018-04-22] (WinZip Computing)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2018-04-22] (WinZip Computing)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2018-04-22] (WinZip Computing)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {268CFFC3-4123-416B-B754-59428BB298F9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {375B815B-E1B9-4C62-A7BE-CD6DA4E9A3CB} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION
Task: {4AE5D5B2-D881-40AB-BD53-22C6077E22DE} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2018-04-22] (Corel Corporation)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\Windows\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {80029CDC-E74D-43F7-BFB0-0FFBB46BC356} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2018-04-22] (Corel Corporation)
Task: {91B3B660-C2D2-4FE5-9936-187002DC626F} - \GoogleUpdateTaskMachineCore -> No File <==== ATTENTION
Task: {BEDA9F57-B471-41CF-B8ED-EAC46E6254D1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {C3258989-1449-46A4-8506-E1971A109214} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {CB9FA78B-0C88-43B3-B307-EE4465C5A47E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {F3FD957A-63BD-4EA3-851B-72CE6A92AE7B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {F8F87ADB-237A-42D2-95B2-CC34F2A9F7EE} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2018-04-22] (Corel Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-10-10 07:52 - 2018-09-20 04:38 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-10-23 16:09 - 2018-10-23 16:09 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-10-23 16:09 - 2018-10-23 16:09 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-10-23 16:09 - 2018-10-23 16:10 - 000183808 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-10-27 15:14 - 2018-10-27 15:14 - 035118592 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-10-27 15:14 - 2018-10-27 15:14 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-10-27 15:14 - 2018-10-27 15:14 - 005987328 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntCommon.dll
2018-04-12 16:54 - 2018-04-12 16:54 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-27 15:14 - 2018-10-27 15:14 - 009064448 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-08-29 14:01 - 2018-10-30 19:06 - 001057056 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\SDL2.dll
2018-08-29 14:01 - 2018-09-23 01:00 - 102804768 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libcef.dll
2018-08-29 14:01 - 2018-09-23 01:00 - 004866336 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll
2018-08-29 14:01 - 2018-09-23 01:00 - 000116000 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll
2018-07-13 18:28 - 2018-06-15 05:41 - 005471232 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll
2018-07-13 18:28 - 2018-06-15 05:36 - 000047616 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUITelemetry.dll
2018-07-13 18:28 - 2018-06-15 05:40 - 005082112 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll
2018-07-13 18:44 - 2018-10-30 19:06 - 000879904 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2018-07-13 18:44 - 2018-11-08 20:02 - 002649376 _____ () C:\Program Files (x86)\Steam\video.dll
2018-07-13 18:44 - 2016-09-01 02:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2018-07-13 18:44 - 2017-12-20 02:43 - 000351520 _____ () C:\Program Files (x86)\Steam\libavresample-3.dll
2018-07-13 18:44 - 2017-12-20 02:43 - 000695584 _____ () C:\Program Files (x86)\Steam\libavformat-57.dll
2018-07-13 18:44 - 2017-12-20 02:43 - 000783648 _____ () C:\Program Files (x86)\Steam\libswscale-4.dll
2018-07-13 18:44 - 2017-12-20 02:43 - 000847136 _____ () C:\Program Files (x86)\Steam\libavutil-55.dll
2018-07-13 18:44 - 2017-12-20 02:43 - 005137696 _____ () C:\Program Files (x86)\Steam\libavcodec-57.dll
2018-07-13 18:44 - 2016-09-01 02:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2018-07-13 18:44 - 2016-09-01 02:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2018-07-13 18:44 - 2018-11-08 20:02 - 001028384 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2018-07-13 18:44 - 2016-07-04 23:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2018-08-13 13:16 - 2018-08-13 13:16 - 006869880 _____ () C:\Users\David a Domča\AppData\Local\Apps\2.0\P8ZL0A4G.2AW\N097EL5T.622\move..tion_7b728a49b2b0d019_0001.0005_cab60a8d7bc05604\BLLWrapper.DLL

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-04-12 00:38 - 2018-04-12 00:36 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3790302877-2324764744-3276189103-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 81.200.55.169 - 81.200.48.13
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E45552D0-1AC5-4087-A059-EFFDA34BEF75}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{03993344-3EC5-475B-AFF6-EEEA25635E44}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1EE82194-D02E-40FA-8369-16932798B8B9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{76C6371B-2646-445F-9926-E79287656B3E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{DF384926-BE3E-4F03-90BD-9F5ADFA36B77}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [UDP Query User{DBE26548-EFAC-4B51-9230-85A92754F892}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [{55AC68EF-5918-400F-B8B3-A1A08FCF9A93}] => (Allow) C:\Users\David a Domča\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1B0BEBE9-C612-4A1C-8583-CA080505CA55}] => (Allow) C:\Users\David a Domča\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{9C507236-F120-4046-9ADB-2ECA84A0C1E8}C:\program files (x86)\heroes of the storm\versions\base67143\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base67143\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{1A74FF7F-7BB9-4E74-B6DE-3C243E9E4944}C:\program files (x86)\heroes of the storm\versions\base67143\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base67143\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{3373E0C3-94B6-4656-ABD1-FB815CABCD6B}C:\program files (x86)\heroes of the storm\versions\base67462\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base67462\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{8356C190-9EE4-43D1-9CEE-7CBF8247D2D6}C:\program files (x86)\heroes of the storm\versions\base67462\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base67462\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{37F6CA9E-0105-4481-8ACF-AA7B3740BDDC}C:\program files (x86)\heroes of the storm\versions\base67621\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base67621\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{78790705-A05B-4D6B-AADA-2E5E30F88356}C:\program files (x86)\heroes of the storm\versions\base67621\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base67621\heroesofthestorm_x64.exe
FirewallRules: [{5DD5D1F2-F17F-42D3-A483-EFA75FA74FE6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{4181345F-1C2A-4955-B9E4-BD31C745A9AF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [TCP Query User{60AD00A8-91CA-425C-A25C-0AB4EA79B993}C:\program files (x86)\heroes of the storm\versions\base67985\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base67985\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{B4DDD101-5761-4FA7-B622-F608627AB89F}C:\program files (x86)\heroes of the storm\versions\base67985\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base67985\heroesofthestorm_x64.exe
FirewallRules: [{29BF0E97-631B-4899-8017-6E02FD8C6736}] => (Allow) C:\Program Files\VueScan\vuescan.exe
FirewallRules: [{C081BBAD-4F03-433A-B841-74EEC404339F}] => (Allow) C:\Program Files\VueScan\vuescan.exe
FirewallRules: [{67E37D8F-D618-49E7-AA6A-B8DA7B2F8110}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{8CD7C2D4-C0C3-46F3-AD73-74779A2A4D2A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{68EBA748-862C-4D3D-B125-CDC4A0D47E58}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{5AFD13D5-FF51-4EA7-B3DF-40157A94F1F3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{20FBD4E6-0A5A-4CE4-AD18-4E48212A3061}C:\program files (x86)\heroes of the storm\versions\base68509\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base68509\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{91715581-33FA-46F9-9B59-F717A3874109}C:\program files (x86)\heroes of the storm\versions\base68509\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base68509\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{1DDDA291-2A8D-4303-BFF1-CD3A0F4EA74F}C:\program files (x86)\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{4845BA59-4146-48D1-BA5D-83127940E8D3}C:\program files (x86)\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{B9312D33-6EEC-46F2-A0A3-9619E6B02672}C:\program files (x86)\heroes of the storm\versions\base69185\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69185\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{87F8DCC8-10B3-4D61-8A2F-0E09DBD2CF0E}C:\program files (x86)\heroes of the storm\versions\base69185\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69185\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{17FD792A-CDD7-49B4-8458-819AB4AC57A8}C:\program files (x86)\heroes of the storm\versions\base69264\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69264\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{073F1456-B7D3-4BAF-96CB-BB60D82BC3D7}C:\program files (x86)\heroes of the storm\versions\base69264\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69264\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{8964A8FD-337A-4E5B-B290-4CEEA908D048}C:\program files (x86)\heroes of the storm\versions\base69350\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69350\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{5106C385-0B16-454B-B0D2-40D0B5EDF9D1}C:\program files (x86)\heroes of the storm\versions\base69350\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69350\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{AD3B2C02-4A84-4213-A860-77699756947A}C:\program files (x86)\heroes of the storm\versions\base69790\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69790\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{DCEFECBB-4530-4ADF-874A-DF342EBD28C8}C:\program files (x86)\heroes of the storm\versions\base69790\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69790\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{AED9126D-0AAA-4A3E-BF33-0F4E961B7673}C:\program files (x86)\heroes of the storm\versions\base69823\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69823\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{ED848C90-B655-49B4-BA24-8B284CD2AECA}C:\program files (x86)\heroes of the storm\versions\base69823\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base69823\heroesofthestorm_x64.exe
FirewallRules: [{1748D040-608F-425A-A53A-79D09A01A26C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/09/2018 01:54:24 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (11/09/2018 01:54:22 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (11/09/2018 01:07:24 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (11/09/2018 01:07:22 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (11/09/2018 12:51:54 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (11/09/2018 12:51:51 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (11/09/2018 12:30:05 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-CH7J00S)
Description: httphttp-2147467263

Error: (11/09/2018 12:26:34 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable


System errors:
=============
Error: (11/09/2018 01:54:34 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-CH7J00S)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-CH7J00S\David a Domča (SID: S-1-5-21-3790302877-2324764744-3276189103-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/09/2018 01:54:16 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-CH7J00S)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
a APPID
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
uživateli DESKTOP-CH7J00S\David a Domča (SID: S-1-5-21-3790302877-2324764744-3276189103-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/09/2018 01:54:16 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-CH7J00S)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
a APPID
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
uživateli DESKTOP-CH7J00S\David a Domča (SID: S-1-5-21-3790302877-2324764744-3276189103-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/09/2018 01:54:16 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-CH7J00S)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
a APPID
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
uživateli DESKTOP-CH7J00S\David a Domča (SID: S-1-5-21-3790302877-2324764744-3276189103-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/09/2018 01:45:28 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Windows Search, ale tato akce selhala kvůli následující chybě:
Instance této služby je již spuštěna.

Error: (11/09/2018 01:44:58 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Steam Client Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (11/09/2018 01:44:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (11/09/2018 01:44:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba TeamViewer 13 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 2000 milisekund: Restartovat službu.


Windows Defender:
===================================
Date: 2018-10-13 14:10:04.289
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {244FB557-7130-4AD6-8010-B0CADFC3C290}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-10-10 23:29:39.513
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {92741D6D-6DC2-4663-8D9C-D3E73B8BA311}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-11-04 16:16:36.218
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.279.1164.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15400.4
Kód chyby: 0x80070643
Popis chyby :Při instalaci došlo k závažné chybě.

==================== Memory info ===========================

Processor: AMD FX(tm)-6300 Six-Core Processor
Percentage of memory in use: 23%
Total physical RAM: 8158.66 MB
Available physical RAM: 6249.94 MB
Total Virtual: 10078.66 MB
Available Virtual: 8015.4 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:118.7 GB) (Free:43.07 GB) NTFS

\\?\Volume{8cb00afa-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.54 GB) (Free:0.5 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 8CB00AFA)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=118.7 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Re: Nemuzu zapnout antivirovou ochranu pred viry v realnem c

Napsal: 09 lis 2018 15:59
od Rudy
Potřebuji vidět obsah souboru fixlog.txt. Je v C:\Users\David a Domča\Downloads.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz