Prosím o kontrolu Logu Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

mople71
Level 3.5
Level 3.5
Příspěvky: 662
Registrován: listopad 14
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod mople71 » 14 dub 2015 20:47

Ahoj!

To není log z JRT... ;)


Stáhni si Zoek: http://download.bleepingcomputer.com/smeenk/zoek.exe

Otevři jako správce, do okna vlož tento kód:

Kód: Vybrat vše

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;


A klikni na "Run script", chvíli to potrvá. Poté dej log.

----------------------------------------------------------

Stáhni si prosím FRST: http://www.bleepingcomputer.com/downloa ... ool/dl/82/

Ulož na Plochu, spusť jako Správce, potvrď licenci a klikni na tlačítko Scan. Vše ponech v základním nastavení, nic nezatrhávej.

Po dokončení skenu na tebe vyjedou dva logy, oba sem prosím zkopíruj.

Reklama
desperado007
Level 3.5
Level 3.5
Příspěvky: 922
Registrován: září 12
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod desperado007 » 14 dub 2015 20:54

U JRt mi žádný Log nevyjel, tento jem našel ve složce jinde.
AMD Ryzen 5 5600
AMD Radeon RX 9060 XT 16GB
Corsair 2x16 GB ddr4 3200 MT/s
HDD WDC WD10EZEX-08M2NA0 1TB
SSD KINGSTON SA2000M8 250 GB
Seasonic Focus Gold 550 W
MSI B450-A PRO (MS-7B86)
Microsoft Windows 11 Professional (x64)

Uživatelský avatar
Orcus
člen Security týmu
Elite Level 10.5
Elite Level 10.5
Příspěvky: 10645
Registrován: duben 10
Bydliště: Okolo rostou 3 růže =o)
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod Orcus » 14 dub 2015 22:39

Pokud se ti nezobrazil na konci log z JRT, tak udělej toto.

Běž přes Start -> Spustit.. otevře se ti okno a do něj napiš:
%temp%
a dej Ok.
V otevřeném okně zkus najít ten JRT.txt, pokud by se ti ho nepovedlo najít tak udělej co je napsáno níže.

Spusť Poznámkový blok (Notepad): Start -> Spustit.. otevře se ti okno a do něj napiš notepad a dej Ok.
Otevře se ti poznámkový blok a do něj zkopíruj tento tučně označený text:

If Exist log.txt del /q log.txt
Dir /S/A-D "%Systemdrive%\JRT.txt" >>log.txt
Notepad log.txt
Del /q log.txt

Zvol v menu záložku Soubor -> Uložit jako... a nastav/vyplň tyto údaje
Název souboru: find.bat
Uložit jako typ: Všechny soubory
Ulož soubor někam na disk a spusť ho. Po chvíli hledání se zobrazí nové okno s výsledky, zkopíruj sem prosím celý jeho obsah.
Láska hřeje, ale uhlí je uhlí. :fire:



Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.

Pár rad k bezpečnosti PC.

Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix

Pokud budete spokojeni , můžete podpořit naše fórum.

desperado007
Level 3.5
Level 3.5
Příspěvky: 922
Registrován: září 12
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod desperado007 » 15 dub 2015 17:31

Omlouvám se včera jsem usnul. Tak JRT text jsem nenašel, zkoušel jsem oba způsoby. Všiml jsem si, že když test probíhal tak se tam objevilo něco ve smyslu, že přístup odepřen. Spustil jsem Zoek, test trval více než hodinu pak jsem usnul. PC byl zapnutý. Log by tímpádem měl být někde v PC, kde ho najít ?
AMD Ryzen 5 5600
AMD Radeon RX 9060 XT 16GB
Corsair 2x16 GB ddr4 3200 MT/s
HDD WDC WD10EZEX-08M2NA0 1TB
SSD KINGSTON SA2000M8 250 GB
Seasonic Focus Gold 550 W
MSI B450-A PRO (MS-7B86)
Microsoft Windows 11 Professional (x64)

mople71
Level 3.5
Level 3.5
Příspěvky: 662
Registrován: listopad 14
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod mople71 » 15 dub 2015 17:34

Log ze Zoeku najdeš v C:\zoek-results.log ;)

Následně dodej logy z FRST.

desperado007
Level 3.5
Level 3.5
Příspěvky: 922
Registrován: září 12
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod desperado007 » 15 dub 2015 17:38

Zoek.exe v5.0.0.0 Updated 08-April-2015
Tool run by despo367 on Łt 14.04.2015 at 21:01:01,80.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\despo367\Desktop\zoek (3).exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2015-04-14-185306.log 349 bytes

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\Rockstar Games deleted successfully
C:\Program Files\ATI Technologies deleted successfully
C:\PROGRA~3\Shared Space deleted successfully
C:\PROGRA~3\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} deleted successfully
C:\Users\despo367\AppData\Local\Secunia PSI deleted successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\CrashDumps deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-2463757152-4013702772-1165696936-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} deleted successfully

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\Rockstar Games not found
C:\PROGRA~3\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} not found
C:\PROGRA~2\SystemRequirementsLab deleted
C:\PROGRA~2\History deleted
C:\Users\despo367\AppData\Roaming\.minecraft deleted
C:\PROGRA~3\cibjfkdebdlhihonhbjhocmacdjcfapj deleted
C:\PROGRA~3\eiifjbngmnfohohkplhmbahfiohlbbja deleted
C:\PROGRA~3\{6551e8a7-f2ee-3089-6551-1e8a7f2ea29f} deleted
C:\PROGRA~3\{a29a6713-2b32-5632-a29a-a67132b39c4c} deleted
C:\PROGRA~3\4408544692405213771 deleted
C:\Users\despo367\AppData\Roaming\pcouffin.log deleted
C:\Users\despo367\AppData\Roaming\ProductData deleted
C:\PROGRA~3\ProductData deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [07.04.2015 17:07]

==== Chromium Look ======================

Google Chrome Version: 41.0.2272.118 (Latest Stable version: 41.0.2272.118) [z-db]

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[17.03.2015 18:07]

Bumblebee Transformers - despo367\AppData\Local\Google\Chrome\User Data\Default\Extensions\ablploimnfndjhngijoeekcoillceikj
Seznam Lištička - Email - despo367\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig
WOT - despo367\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp
Seznam Lištička - Slovník - despo367\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd
Stylish - despo367\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe
History - despo367\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibiiaimghkbhffgkkdogldehnidojjga
Seznam Lištička - Rychlá volba - despo367\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak

==== Chromium Startpages ======================

C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.google.cz/",
"startup_urls": [ "http://www.google.cz/", "http://www.mystartsearch.com/?type=hp&ts=1428836404&from=wpc&uid=WDCXWD10EZEX-08M2NA0_WD-WMC3F0DA24CEA24CE" ]


==== Chromium Fix ======================

C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.mystartsearch.com_0.localstorage deleted successfully
C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.mystartsearch.com_0.localstorage-journal deleted successfully
C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibiiaimghkbhffgkkdogldehnidojjga deleted successfully
C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ibiiaimghkbhffgkkdogldehnidojjga_0.localstorage deleted successfully
C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ibiiaimghkbhffgkkdogldehnidojjga_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{057989F8-2E7D-455A-8070-E0423AF73CE4} Seznam TV Program Url="http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_21882"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{24CBED19-214E-46BE-B26D-4A056ACD4486} Slovnˇk CZ/EN Url="http://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_21882"
{28E2F355-3AC2-4A39-ADA6-DCDDA0C777AB} Zbo§ˇ.cz Url="http://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_21882"
{44DC3135-75D8-4B8F-B9BF-43C79E36AE97} Novinky.cz Url="http://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_21882"
{5C9A3F93-DD07-4196-B01A-1A4EEDF0C4DB} Firmy.cz Url="http://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_21882"
{734B4FAE-6521-4A06-A9AF-685109EB85E8} Slovnˇk EN/CZ Url="http://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_21882"
{9C63D76B-9AA2-4752-AA1B-A69130077939} (www.google.com) Google Url="https://www.google.com/search?q={searchTerms}"
{A3597F9C-4E34-48D1-8E92-B04D3168FFE7} Encyklopedie Seznam Url="http://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_21882"
{AF6FBD34-D1B9-4E44-86A0-383C05DE0F15} (www.google.com) Google Url="https://www.google.com/search?q={searchTerms}"
{E493B093-4A29-4DCE-BABF-CBD8A84D94FB} Mapy.cz Url="http://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_21882"

==== Reset Google Chrome ======================

C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\despo367\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=874 folders=359 144628533 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\despo367\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\despo367\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on st 15.04.2015 at 4:58:01,64 ======================
AMD Ryzen 5 5600
AMD Radeon RX 9060 XT 16GB
Corsair 2x16 GB ddr4 3200 MT/s
HDD WDC WD10EZEX-08M2NA0 1TB
SSD KINGSTON SA2000M8 250 GB
Seasonic Focus Gold 550 W
MSI B450-A PRO (MS-7B86)
Microsoft Windows 11 Professional (x64)

desperado007
Level 3.5
Level 3.5
Příspěvky: 922
Registrován: září 12
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod desperado007 » 15 dub 2015 17:48

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 15-04-2015 02
Ran by despo367 (administrator) on DESPO367-PC on 15-04-2015 17:45:50
Running from C:\Users\despo367\Downloads
Loaded Profiles: despo367 (Available profiles: despo367)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\main.exe
(ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Farbar) C:\Users\despo367\Downloads\FRST64 (1).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [324096 2000-01-01] (Alcor Micro Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13671640 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1297624 2015-02-03] (COMODO)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [3942216 2011-01-25] (O&O Software GmbH)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5512912 2015-04-07] (Avast Software s.r.o.)
HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe [98256 2015-02-12] (Razer Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-2463757152-4013702772-1165696936-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2463757152-4013702772-1165696936-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7451928 2015-04-09] (Piriform Ltd)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (Avast Software s.r.o.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {057989F8-2E7D-455A-8070-E0423AF73CE4} URL = http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_21882
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {24CBED19-214E-46BE-B26D-4A056ACD4486} URL = http://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_21882
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {28E2F355-3AC2-4A39-ADA6-DCDDA0C777AB} URL = http://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_21882
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {44DC3135-75D8-4B8F-B9BF-43C79E36AE97} URL = http://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_21882
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {5C9A3F93-DD07-4196-B01A-1A4EEDF0C4DB} URL = http://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_21882
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {734B4FAE-6521-4A06-A9AF-685109EB85E8} URL = http://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_21882
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {9C63D76B-9AA2-4752-AA1B-A69130077939} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {A3597F9C-4E34-48D1-8E92-B04D3168FFE7} URL = http://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_21882
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {AF6FBD34-D1B9-4E44-86A0-383C05DE0F15} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {E493B093-4A29-4DCE-BABF-CBD8A84D94FB} URL = http://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_21882
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-01-23] (IObit)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-07] (Avast Software s.r.o.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-25] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-07] (Avast Software s.r.o.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-25] (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.31211.0\npctrl.dll [2014-12-11] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll No File
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-25] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.31211.0\npctrl.dll [2014-12-11] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2463757152-4013702772-1165696936-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\despo367\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-10-08] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2463757152-4013702772-1165696936-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\The Settlers 7 - Paths to a Kingdom\Data\Base\_Dbg\Bin\Release\orbit\npuplaypc.dll [2013-02-26] (Ubisoft)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: No Name - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-08-27]

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-27]
CHR Extension: (Google Drive) - C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-04]
CHR Extension: (Google Search) - C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-27]
CHR Extension: (Avast Online Security) - C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-04-15]
CHR Extension: (Gmail) - C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-04]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-17]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-04-07] (Avast Software s.r.o.)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [7618952 2015-02-03] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265304 2015-02-03] (COMODO)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2635552 2015-01-23] (IObit)
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [3051848 2011-01-25] (O&O Software GmbH)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-01-16] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [186560 2015-01-31] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2000-01-01] (Realtek Semiconductor)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-02-12] (Razer Inc.)
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia)
S2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-04-07] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [88408 2015-04-07] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-04-07] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-04-07] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-04-07] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-04-07] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [136752 2015-04-07] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [271200 2015-04-07] ()
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [20184 2015-01-30] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [792648 2015-01-30] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [45880 2015-01-30] (COMODO)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-08-28] (Disc Soft Ltd)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-09-27] (Intel Corporation)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [104608 2015-01-30] (COMODO)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-01-31] (Razer, Inc.)
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S4 nvlddmkm; system32\DRIVERS\nvlddmkm.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-15 17:45 - 2015-04-15 17:46 - 00015167 _____ () C:\Users\despo367\Downloads\FRST.txt
2015-04-15 17:45 - 2015-04-15 17:45 - 02097152 _____ (Farbar) C:\Users\despo367\Downloads\FRST64 (1).exe
2015-04-15 17:45 - 2015-04-15 17:45 - 00000000 ____D () C:\FRST
2015-04-15 17:39 - 2015-04-15 17:39 - 02097152 _____ (Farbar) C:\Users\despo367\Downloads\FRST64.exe
2015-04-15 17:34 - 2015-04-15 04:58 - 00010147 _____ () C:\zoek-results2015-04-15-025801.log
2015-04-15 17:33 - 2015-04-15 17:36 - 00000533 _____ () C:\runcheck.txt
2015-04-15 17:29 - 2015-04-15 17:29 - 00000110 _____ () C:\Users\despo367\Desktop\find.bat
2015-04-15 10:06 - 2015-04-15 10:06 - 24980480 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 19695616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 14397440 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 12825600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 06025216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 05557696 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 04305408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 03976632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 03920824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 03298816 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 02553856 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-15 10:06 - 2015-04-15 10:06 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-04-15 10:06 - 2015-04-15 10:06 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01727904 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00957952 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00769536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-04-15 10:06 - 2015-04-15 10:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00389808 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00342704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-04-15 10:06 - 2015-04-15 10:06 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00095672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-04-15 10:06 - 2015-04-15 10:06 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-04-15 10:06 - 2015-03-13 06:25 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-15 10:06 - 2015-03-13 06:08 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-15 10:06 - 2015-03-13 05:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-04-15 10:06 - 2015-03-13 05:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-04-15 10:04 - 2015-04-15 10:04 - 00367552 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-04-15 10:04 - 2015-04-15 10:04 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-15 10:04 - 2015-04-15 10:04 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-04-15 04:58 - 2015-04-15 04:58 - 00000000 ____D () C:\Users\despo367\AppData\Roaming\ProductData
2015-04-14 21:02 - 2015-04-14 20:53 - 00000349 _____ () C:\zoek-results2015-04-14-185306.log
2015-04-14 21:01 - 2015-04-14 21:01 - 01305600 _____ () C:\Users\despo367\Downloads\zoek (1).exe
2015-04-14 20:53 - 2015-04-15 17:35 - 00001330 _____ () C:\zoek-results.log
2015-04-14 20:53 - 2015-04-14 20:53 - 01305600 _____ () C:\Users\despo367\Desktop\zoek (3).exe
2015-04-14 20:52 - 2015-04-15 00:00 - 00000000 ____D () C:\zoek_backup
2015-04-14 20:52 - 2015-04-14 20:52 - 01305600 _____ () C:\Users\despo367\Downloads\zoek (2).exe
2015-04-14 20:50 - 2015-04-14 20:50 - 01305600 _____ () C:\Users\despo367\Downloads\zoek.exe
2015-04-14 20:06 - 2015-04-15 14:50 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-14 20:06 - 2015-04-14 20:06 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-04-14 20:06 - 2015-04-14 20:06 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-14 20:06 - 2015-04-14 20:06 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-04-14 20:06 - 2015-04-14 20:06 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2015-04-14 20:06 - 2015-04-14 20:06 - 00000000 ____D () C:\Windows\system32\Macromed
2015-04-14 20:06 - 2015-04-14 20:06 - 00000000 _____ () C:\Users\despo367\Downloads\flashplayer17ax_ma_install.exe.x5qfzau.partial
2015-04-14 18:34 - 2015-04-14 18:34 - 20589656 _____ () C:\Users\despo367\Downloads\RogueKillerX64 (2).exe
2015-04-14 18:32 - 2015-04-14 18:33 - 16702876 _____ () C:\Users\despo367\Downloads\RogueKillerX64.exe
2015-04-14 18:26 - 2015-04-14 18:26 - 20589656 _____ () C:\Users\despo367\Downloads\RogueKillerX64 (1).exe
2015-04-14 18:15 - 2015-04-14 20:32 - 02687136 _____ (Thisisu) C:\Users\despo367\Desktop\JRT_NEW.exe
2015-04-14 18:15 - 2015-04-14 18:15 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-DESPO367-PC-Windows-7-Home-Premium-(64-bit).dat
2015-04-14 18:15 - 2015-04-14 18:15 - 00000000 ____D () C:\RegBackup
2015-04-14 17:55 - 2015-04-15 17:44 - 00003758 _____ () C:\Windows\System32\Tasks\AutoKMS
2015-04-13 21:37 - 2015-04-13 21:38 - 01418897 _____ (Thisisu) C:\Users\despo367\Downloads\JRT.exe
2015-04-13 21:03 - 2015-04-13 21:05 - 20567640 _____ () C:\Users\despo367\Desktop\RogueKillerX64.exe
2015-04-13 20:39 - 2015-04-13 20:39 - 02217984 _____ () C:\Users\despo367\Desktop\adwcleaner_4.201.exe
2015-04-13 20:38 - 2015-04-13 20:38 - 00448512 _____ (OldTimer Tools) C:\Users\despo367\Downloads\TFC.exe
2015-04-13 20:38 - 2015-04-13 20:38 - 00448512 _____ (OldTimer Tools) C:\Users\despo367\Desktop\TFC.exe
2015-04-13 20:38 - 2015-04-13 20:37 - 00050688 _____ (Atribune.org) C:\Users\despo367\Desktop\ATF-Cleaner.exe
2015-04-13 20:37 - 2015-04-13 20:37 - 00050688 _____ (Atribune.org) C:\Users\despo367\Downloads\ATF-Cleaner.exe
2015-04-13 19:34 - 2015-04-13 19:34 - 00388608 _____ (Trend Micro Inc.) C:\Users\despo367\Desktop\HijackThis.exe
2015-04-12 20:02 - 2015-04-14 17:57 - 00000000 ____D () C:\AdwCleaner
2015-04-12 20:02 - 2015-04-12 20:02 - 02217984 _____ () C:\Users\despo367\Downloads\adwcleaner_4.201.exe
2015-04-12 20:01 - 2015-04-12 20:01 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Users\despo367\Downloads\SpyHunter-Installer.exe
2015-04-12 19:14 - 2015-04-15 17:41 - 00003672 _____ () C:\Windows\PFRO.log
2015-04-12 19:14 - 2015-04-15 17:41 - 00000840 _____ () C:\Windows\setupact.log
2015-04-12 19:14 - 2015-04-12 19:14 - 00000000 _____ () C:\Windows\setuperr.log
2015-04-12 15:19 - 2015-04-12 17:03 - 00000000 ____D () C:\Users\despo367\Downloads\Grand Theft Auto V
2015-04-12 15:09 - 2015-04-12 15:13 - 55391263 _____ () C:\Users\despo367\Downloads\GTAV-unpacked.exe
2015-04-11 20:51 - 2015-03-18 19:16 - 00000000 ____D () C:\Users\despo367\Downloads\Majself & Grizzly - Eden (2015)
2015-04-08 18:31 - 2015-04-08 18:31 - 00162454 _____ () C:\Users\despo367\Downloads\GTAV_uncracked.torrent
2015-04-07 17:10 - 2015-04-07 17:10 - 05344528 _____ (Piriform Ltd) C:\Users\despo367\Downloads\ccsetup504.exe
2015-04-07 17:07 - 2015-04-07 17:07 - 00364472 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-04-07 17:07 - 2015-04-07 17:07 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr
2015-04-04 14:42 - 2015-04-04 14:42 - 00000000 ___SD () C:\Windows\SysWOW64\GWX
2015-04-04 14:42 - 2015-04-04 14:42 - 00000000 ___SD () C:\Windows\system32\GWX
2015-04-04 13:39 - 2015-04-04 13:39 - 00000384 _____ () C:\Users\despo367\Documents\pppppppppppp.txt
2015-04-02 08:06 - 2015-04-02 08:06 - 00001070 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2015-04-02 08:06 - 2015-04-02 08:06 - 00000000 ____D () C:\Users\despo367\AppData\Roaming\vlc
2015-04-02 08:06 - 2015-04-02 08:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-04-02 08:02 - 2015-04-02 08:03 - 28509232 _____ () C:\Users\despo367\Downloads\vlc-2-2-0-win32.exe
2015-03-28 14:01 - 2015-03-28 14:01 - 14749696 _____ () C:\Users\despo367\Documents\system.evtx
2015-03-28 14:01 - 2015-03-28 14:01 - 00000000 ____D () C:\Users\despo367\Documents\LocaleMetaData
2015-03-27 19:28 - 2015-03-27 19:28 - 00000574 _____ () C:\Users\despo367\Documents\cc_20150327_182815.reg
2015-03-24 22:23 - 2015-03-24 22:24 - 00000000 ____D () C:\Users\despo367\Downloads\Lethalhardcore.Holly.Heart.Busty.MILF.Will.Do.Anything.For.Money
2015-03-24 22:09 - 2015-03-24 22:09 - 00000000 ____D () C:\Users\despo367\Downloads\Gachinco-gachi839-HD
2015-03-24 21:59 - 2015-03-24 21:59 - 00000000 ____D () C:\Users\despo367\Downloads\DoctorAdventures - Veronica Avluv - Thats Not Him!
2015-03-17 19:47 - 2015-03-17 19:47 - 00000000 ____D () C:\bestgames
2015-03-17 19:35 - 2015-03-17 19:36 - 56832512 _____ () C:\Users\despo367\Downloads\ZNK7.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-15 17:45 - 2015-03-15 17:21 - 01710064 _____ () C:\Windows\WindowsUpdate.log
2015-04-15 17:42 - 2014-08-27 19:58 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-15 17:41 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-15 17:30 - 2014-08-27 19:58 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-15 17:28 - 2009-07-14 06:45 - 00029120 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-15 17:28 - 2009-07-14 06:45 - 00029120 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-15 17:12 - 2015-01-16 18:52 - 00000000 ____D () C:\Windows\system32\appraiser
2015-04-15 17:12 - 2014-08-27 21:52 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-04-15 17:12 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-04-15 14:58 - 2014-08-27 19:49 - 01700126 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2015-04-15 14:58 - 2011-04-12 10:34 - 00752906 _____ () C:\Windows\system32\perfh005.dat
2015-04-15 14:58 - 2011-04-12 10:34 - 00194830 _____ () C:\Windows\system32\perfc005.dat
2015-04-15 14:58 - 2009-07-14 07:13 - 01700126 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-15 14:56 - 2014-08-27 21:01 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-15 14:54 - 2014-08-27 21:01 - 128913832 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-04-15 09:52 - 2014-08-27 20:09 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-04-14 20:08 - 2014-08-31 21:38 - 00000000 ____D () C:\Users\despo367\AppData\Local\Adobe
2015-04-14 18:34 - 2015-01-12 19:32 - 00037624 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2015-04-14 18:28 - 2015-01-15 18:53 - 00000000 ____D () C:\Users\despo367\AppData\Local\CrashDumps
2015-04-14 18:09 - 2014-08-27 20:33 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-14 17:56 - 2014-11-20 19:59 - 00003994 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{B6732C74-FE48-4444-B7FA-57C960034959}
2015-04-13 19:44 - 2014-08-27 20:35 - 00000000 ____D () C:\Users\despo367\AppData\Roaming\uTorrent
2015-04-12 19:05 - 2014-08-27 20:39 - 00000000 ____D () C:\Users\despo367\AppData\Roaming\AIMP3
2015-04-11 10:14 - 2014-08-31 00:39 - 00000000 ____D () C:\Games
2015-04-09 18:01 - 2014-08-27 20:32 - 00000782 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-04-09 18:01 - 2014-08-27 20:32 - 00000000 ____D () C:\Program Files\CCleaner
2015-04-07 17:07 - 2014-08-27 19:58 - 01047320 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys
2015-04-07 17:07 - 2014-08-27 19:58 - 00442264 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys
2015-04-07 17:07 - 2014-08-27 19:58 - 00271200 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-04-07 17:07 - 2014-08-27 19:58 - 00136752 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswStm.sys
2015-04-07 17:07 - 2014-08-27 19:58 - 00093528 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr2.sys
2015-04-07 17:07 - 2014-08-27 19:58 - 00088408 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-04-07 17:07 - 2014-08-27 19:58 - 00065736 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-04-07 17:07 - 2014-08-27 19:58 - 00029168 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-04-04 12:26 - 2014-11-27 12:07 - 00000000 ____D () C:\Users\despo367\AppData\Roaming\Skype
2015-04-04 09:31 - 2014-08-27 20:09 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-03-21 15:26 - 2014-12-24 15:16 - 00002892 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_despo367
2015-03-21 15:24 - 2014-08-27 19:12 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information

==================== Files in the root of some directories =======

2015-03-02 18:10 - 2015-03-02 18:10 - 0000084 _____ () C:\Program Files (x86)\update-witcher2.bat
2015-03-02 18:10 - 2012-06-30 12:13 - 0003153 _____ () C:\Program Files (x86)\visit-nosteam.ro.html
2015-02-01 21:00 - 2013-11-06 15:28 - 0000732 _____ () C:\Program Files (x86)\visit-www.nosteam.ro.html
2015-01-05 05:55 - 2015-01-05 05:55 - 0099384 _____ () C:\Users\despo367\AppData\Roaming\inst.exe
2015-01-05 05:55 - 2015-01-05 05:55 - 0007859 _____ () C:\Users\despo367\AppData\Roaming\pcouffin.cat
2015-01-05 05:55 - 2015-01-05 05:55 - 0001167 _____ () C:\Users\despo367\AppData\Roaming\pcouffin.inf
2015-01-05 05:55 - 2015-01-05 05:55 - 0082816 _____ (VSO Software) C:\Users\despo367\AppData\Roaming\pcouffin.sys
2015-01-05 05:56 - 2015-01-05 06:38 - 0000671 _____ () C:\Users\despo367\AppData\Roaming\vso_ts_preview.xml

Some content of TEMP:
====================
C:\Users\despo367\AppData\Local\Temp\7za.exe
C:\Users\despo367\AppData\Local\Temp\DaS_21.exe
C:\Users\despo367\AppData\Local\Temp\hijackthis.exe
C:\Users\despo367\AppData\Local\Temp\NirCmd.exe
C:\Users\despo367\AppData\Local\Temp\PEVZ.EXE
C:\Users\despo367\AppData\Local\Temp\remove.exe
C:\Users\despo367\AppData\Local\Temp\sed.exe
C:\Users\despo367\AppData\Local\Temp\shortcut.exe
C:\Users\despo367\AppData\Local\Temp\swreg.exe
C:\Users\despo367\AppData\Local\Temp\swxcacls.exe
C:\Users\despo367\AppData\Local\Temp\wget.exe
C:\Users\despo367\AppData\Local\Temp\zoek-delete.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-04-14 19:13

==================== End Of Log ============================
AMD Ryzen 5 5600
AMD Radeon RX 9060 XT 16GB
Corsair 2x16 GB ddr4 3200 MT/s
HDD WDC WD10EZEX-08M2NA0 1TB
SSD KINGSTON SA2000M8 250 GB
Seasonic Focus Gold 550 W
MSI B450-A PRO (MS-7B86)
Microsoft Windows 11 Professional (x64)

desperado007
Level 3.5
Level 3.5
Příspěvky: 922
Registrován: září 12
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod desperado007 » 15 dub 2015 17:49

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 15-04-2015 02
Ran by despo367 (administrator) on DESPO367-PC on 15-04-2015 17:45:50
Running from C:\Users\despo367\Downloads
Loaded Profiles: despo367 (Available profiles: despo367)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\main.exe
(ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Farbar) C:\Users\despo367\Downloads\FRST64 (1).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [324096 2000-01-01] (Alcor Micro Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13671640 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1297624 2015-02-03] (COMODO)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [3942216 2011-01-25] (O&O Software GmbH)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5512912 2015-04-07] (Avast Software s.r.o.)
HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe [98256 2015-02-12] (Razer Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-2463757152-4013702772-1165696936-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2463757152-4013702772-1165696936-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7451928 2015-04-09] (Piriform Ltd)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (Avast Software s.r.o.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {057989F8-2E7D-455A-8070-E0423AF73CE4} URL = http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_21882
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {24CBED19-214E-46BE-B26D-4A056ACD4486} URL = http://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_21882
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {28E2F355-3AC2-4A39-ADA6-DCDDA0C777AB} URL = http://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_21882
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {44DC3135-75D8-4B8F-B9BF-43C79E36AE97} URL = http://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_21882
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {5C9A3F93-DD07-4196-B01A-1A4EEDF0C4DB} URL = http://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_21882
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {734B4FAE-6521-4A06-A9AF-685109EB85E8} URL = http://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_21882
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {9C63D76B-9AA2-4752-AA1B-A69130077939} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {A3597F9C-4E34-48D1-8E92-B04D3168FFE7} URL = http://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_21882
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {AF6FBD34-D1B9-4E44-86A0-383C05DE0F15} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2463757152-4013702772-1165696936-1000 -> {E493B093-4A29-4DCE-BABF-CBD8A84D94FB} URL = http://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_21882
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-01-23] (IObit)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-07] (Avast Software s.r.o.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-25] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-07] (Avast Software s.r.o.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-25] (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.31211.0\npctrl.dll [2014-12-11] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll No File
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-25] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.31211.0\npctrl.dll [2014-12-11] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2463757152-4013702772-1165696936-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\despo367\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-10-08] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2463757152-4013702772-1165696936-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\The Settlers 7 - Paths to a Kingdom\Data\Base\_Dbg\Bin\Release\orbit\npuplaypc.dll [2013-02-26] (Ubisoft)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: No Name - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-08-27]

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-27]
CHR Extension: (Google Drive) - C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-04]
CHR Extension: (Google Search) - C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-27]
CHR Extension: (Avast Online Security) - C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-04-15]
CHR Extension: (Gmail) - C:\Users\despo367\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-04]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-17]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-04-07] (Avast Software s.r.o.)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [7618952 2015-02-03] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265304 2015-02-03] (COMODO)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2635552 2015-01-23] (IObit)
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [3051848 2011-01-25] (O&O Software GmbH)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-01-16] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [186560 2015-01-31] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2000-01-01] (Realtek Semiconductor)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-02-12] (Razer Inc.)
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia)
S2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-04-07] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [88408 2015-04-07] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-04-07] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-04-07] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-04-07] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-04-07] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [136752 2015-04-07] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [271200 2015-04-07] ()
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [20184 2015-01-30] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [792648 2015-01-30] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [45880 2015-01-30] (COMODO)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-08-28] (Disc Soft Ltd)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-09-27] (Intel Corporation)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [104608 2015-01-30] (COMODO)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-01-31] (Razer, Inc.)
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S4 nvlddmkm; system32\DRIVERS\nvlddmkm.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-15 17:45 - 2015-04-15 17:46 - 00015167 _____ () C:\Users\despo367\Downloads\FRST.txt
2015-04-15 17:45 - 2015-04-15 17:45 - 02097152 _____ (Farbar) C:\Users\despo367\Downloads\FRST64 (1).exe
2015-04-15 17:45 - 2015-04-15 17:45 - 00000000 ____D () C:\FRST
2015-04-15 17:39 - 2015-04-15 17:39 - 02097152 _____ (Farbar) C:\Users\despo367\Downloads\FRST64.exe
2015-04-15 17:34 - 2015-04-15 04:58 - 00010147 _____ () C:\zoek-results2015-04-15-025801.log
2015-04-15 17:33 - 2015-04-15 17:36 - 00000533 _____ () C:\runcheck.txt
2015-04-15 17:29 - 2015-04-15 17:29 - 00000110 _____ () C:\Users\despo367\Desktop\find.bat
2015-04-15 10:06 - 2015-04-15 10:06 - 24980480 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 19695616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 14397440 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 12825600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 06025216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 05557696 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 04305408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 03976632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 03920824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 03298816 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 02553856 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-15 10:06 - 2015-04-15 10:06 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-04-15 10:06 - 2015-04-15 10:06 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01727904 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00957952 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00769536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-04-15 10:06 - 2015-04-15 10:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00389808 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00342704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-04-15 10:06 - 2015-04-15 10:06 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00095672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-04-15 10:06 - 2015-04-15 10:06 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
AMD Ryzen 5 5600
AMD Radeon RX 9060 XT 16GB
Corsair 2x16 GB ddr4 3200 MT/s
HDD WDC WD10EZEX-08M2NA0 1TB
SSD KINGSTON SA2000M8 250 GB
Seasonic Focus Gold 550 W
MSI B450-A PRO (MS-7B86)
Microsoft Windows 11 Professional (x64)

desperado007
Level 3.5
Level 3.5
Příspěvky: 922
Registrován: září 12
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod desperado007 » 15 dub 2015 17:50

2015-04-15 10:06 - 2015-04-15 10:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-04-15 10:06 - 2015-04-15 10:06 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-04-15 10:06 - 2015-04-15 10:06 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-04-15 10:06 - 2015-03-13 06:25 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-15 10:06 - 2015-03-13 06:08 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-15 10:06 - 2015-03-13 05:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-04-15 10:06 - 2015-03-13 05:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-04-15 10:04 - 2015-04-15 10:04 - 00367552 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-04-15 10:04 - 2015-04-15 10:04 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-15 10:04 - 2015-04-15 10:04 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-04-15 04:58 - 2015-04-15 04:58 - 00000000 ____D () C:\Users\despo367\AppData\Roaming\ProductData
2015-04-14 21:02 - 2015-04-14 20:53 - 00000349 _____ () C:\zoek-results2015-04-14-185306.log
2015-04-14 21:01 - 2015-04-14 21:01 - 01305600 _____ () C:\Users\despo367\Downloads\zoek (1).exe
2015-04-14 20:53 - 2015-04-15 17:35 - 00001330 _____ () C:\zoek-results.log
2015-04-14 20:53 - 2015-04-14 20:53 - 01305600 _____ () C:\Users\despo367\Desktop\zoek (3).exe
2015-04-14 20:52 - 2015-04-15 00:00 - 00000000 ____D () C:\zoek_backup
2015-04-14 20:52 - 2015-04-14 20:52 - 01305600 _____ () C:\Users\despo367\Downloads\zoek (2).exe
2015-04-14 20:50 - 2015-04-14 20:50 - 01305600 _____ () C:\Users\despo367\Downloads\zoek.exe
2015-04-14 20:06 - 2015-04-15 14:50 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-14 20:06 - 2015-04-14 20:06 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-04-14 20:06 - 2015-04-14 20:06 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-14 20:06 - 2015-04-14 20:06 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-04-14 20:06 - 2015-04-14 20:06 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2015-04-14 20:06 - 2015-04-14 20:06 - 00000000 ____D () C:\Windows\system32\Macromed
2015-04-14 20:06 - 2015-04-14 20:06 - 00000000 _____ () C:\Users\despo367\Downloads\flashplayer17ax_ma_install.exe.x5qfzau.partial
2015-04-14 18:34 - 2015-04-14 18:34 - 20589656 _____ () C:\Users\despo367\Downloads\RogueKillerX64 (2).exe
2015-04-14 18:32 - 2015-04-14 18:33 - 16702876 _____ () C:\Users\despo367\Downloads\RogueKillerX64.exe
2015-04-14 18:26 - 2015-04-14 18:26 - 20589656 _____ () C:\Users\despo367\Downloads\RogueKillerX64 (1).exe
2015-04-14 18:15 - 2015-04-14 20:32 - 02687136 _____ (Thisisu) C:\Users\despo367\Desktop\JRT_NEW.exe
2015-04-14 18:15 - 2015-04-14 18:15 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-DESPO367-PC-Windows-7-Home-Premium-(64-bit).dat
2015-04-14 18:15 - 2015-04-14 18:15 - 00000000 ____D () C:\RegBackup
2015-04-14 17:55 - 2015-04-15 17:44 - 00003758 _____ () C:\Windows\System32\Tasks\AutoKMS
2015-04-13 21:37 - 2015-04-13 21:38 - 01418897 _____ (Thisisu) C:\Users\despo367\Downloads\JRT.exe
2015-04-13 21:03 - 2015-04-13 21:05 - 20567640 _____ () C:\Users\despo367\Desktop\RogueKillerX64.exe
2015-04-13 20:39 - 2015-04-13 20:39 - 02217984 _____ () C:\Users\despo367\Desktop\adwcleaner_4.201.exe
2015-04-13 20:38 - 2015-04-13 20:38 - 00448512 _____ (OldTimer Tools) C:\Users\despo367\Downloads\TFC.exe
2015-04-13 20:38 - 2015-04-13 20:38 - 00448512 _____ (OldTimer Tools) C:\Users\despo367\Desktop\TFC.exe
2015-04-13 20:38 - 2015-04-13 20:37 - 00050688 _____ (Atribune.org) C:\Users\despo367\Desktop\ATF-Cleaner.exe
2015-04-13 20:37 - 2015-04-13 20:37 - 00050688 _____ (Atribune.org) C:\Users\despo367\Downloads\ATF-Cleaner.exe
2015-04-13 19:34 - 2015-04-13 19:34 - 00388608 _____ (Trend Micro Inc.) C:\Users\despo367\Desktop\HijackThis.exe
2015-04-12 20:02 - 2015-04-14 17:57 - 00000000 ____D () C:\AdwCleaner
2015-04-12 20:02 - 2015-04-12 20:02 - 02217984 _____ () C:\Users\despo367\Downloads\adwcleaner_4.201.exe
2015-04-12 20:01 - 2015-04-12 20:01 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Users\despo367\Downloads\SpyHunter-Installer.exe
2015-04-12 19:14 - 2015-04-15 17:41 - 00003672 _____ () C:\Windows\PFRO.log
2015-04-12 19:14 - 2015-04-15 17:41 - 00000840 _____ () C:\Windows\setupact.log
2015-04-12 19:14 - 2015-04-12 19:14 - 00000000 _____ () C:\Windows\setuperr.log
2015-04-12 15:19 - 2015-04-12 17:03 - 00000000 ____D () C:\Users\despo367\Downloads\Grand Theft Auto V
2015-04-12 15:09 - 2015-04-12 15:13 - 55391263 _____ () C:\Users\despo367\Downloads\GTAV-unpacked.exe
2015-04-11 20:51 - 2015-03-18 19:16 - 00000000 ____D () C:\Users\despo367\Downloads\Majself & Grizzly - Eden (2015)
2015-04-08 18:31 - 2015-04-08 18:31 - 00162454 _____ () C:\Users\despo367\Downloads\GTAV_uncracked.torrent
2015-04-07 17:10 - 2015-04-07 17:10 - 05344528 _____ (Piriform Ltd) C:\Users\despo367\Downloads\ccsetup504.exe
2015-04-07 17:07 - 2015-04-07 17:07 - 00364472 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-04-07 17:07 - 2015-04-07 17:07 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr
2015-04-04 14:42 - 2015-04-04 14:42 - 00000000 ___SD () C:\Windows\SysWOW64\GWX
2015-04-04 14:42 - 2015-04-04 14:42 - 00000000 ___SD () C:\Windows\system32\GWX
2015-04-04 13:39 - 2015-04-04 13:39 - 00000384 _____ () C:\Users\despo367\Documents\pppppppppppp.txt
2015-04-02 08:06 - 2015-04-02 08:06 - 00001070 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2015-04-02 08:06 - 2015-04-02 08:06 - 00000000 ____D () C:\Users\despo367\AppData\Roaming\vlc
2015-04-02 08:06 - 2015-04-02 08:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-04-02 08:02 - 2015-04-02 08:03 - 28509232 _____ () C:\Users\despo367\Downloads\vlc-2-2-0-win32.exe
2015-03-28 14:01 - 2015-03-28 14:01 - 14749696 _____ () C:\Users\despo367\Documents\system.evtx
2015-03-28 14:01 - 2015-03-28 14:01 - 00000000 ____D () C:\Users\despo367\Documents\LocaleMetaData
2015-03-27 19:28 - 2015-03-27 19:28 - 00000574 _____ () C:\Users\despo367\Documents\cc_20150327_182815.reg
2015-03-24 22:23 - 2015-03-24 22:24 - 00000000 ____D () C:\Users\despo367\Downloads\Lethalhardcore.Holly.Heart.Busty.MILF.Will.Do.Anything.For.Money
2015-03-24 22:09 - 2015-03-24 22:09 - 00000000 ____D () C:\Users\despo367\Downloads\Gachinco-gachi839-HD
2015-03-24 21:59 - 2015-03-24 21:59 - 00000000 ____D () C:\Users\despo367\Downloads\DoctorAdventures - Veronica Avluv - Thats Not Him!
2015-03-17 19:47 - 2015-03-17 19:47 - 00000000 ____D () C:\bestgames
2015-03-17 19:35 - 2015-03-17 19:36 - 56832512 _____ () C:\Users\despo367\Downloads\ZNK7.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-15 17:45 - 2015-03-15 17:21 - 01710064 _____ () C:\Windows\WindowsUpdate.log
2015-04-15 17:42 - 2014-08-27 19:58 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-15 17:41 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-15 17:30 - 2014-08-27 19:58 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-15 17:28 - 2009-07-14 06:45 - 00029120 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-15 17:28 - 2009-07-14 06:45 - 00029120 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-15 17:12 - 2015-01-16 18:52 - 00000000 ____D () C:\Windows\system32\appraiser
2015-04-15 17:12 - 2014-08-27 21:52 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-04-15 17:12 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-04-15 14:58 - 2014-08-27 19:49 - 01700126 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2015-04-15 14:58 - 2011-04-12 10:34 - 00752906 _____ () C:\Windows\system32\perfh005.dat
2015-04-15 14:58 - 2011-04-12 10:34 - 00194830 _____ () C:\Windows\system32\perfc005.dat
2015-04-15 14:58 - 2009-07-14 07:13 - 01700126 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-15 14:56 - 2014-08-27 21:01 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-15 14:54 - 2014-08-27 21:01 - 128913832 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-04-15 09:52 - 2014-08-27 20:09 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-04-14 20:08 - 2014-08-31 21:38 - 00000000 ____D () C:\Users\despo367\AppData\Local\Adobe
2015-04-14 18:34 - 2015-01-12 19:32 - 00037624 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2015-04-14 18:28 - 2015-01-15 18:53 - 00000000 ____D () C:\Users\despo367\AppData\Local\CrashDumps
2015-04-14 18:09 - 2014-08-27 20:33 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-14 17:56 - 2014-11-20 19:59 - 00003994 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{B6732C74-FE48-4444-B7FA-57C960034959}
2015-04-13 19:44 - 2014-08-27 20:35 - 00000000 ____D () C:\Users\despo367\AppData\Roaming\uTorrent
2015-04-12 19:05 - 2014-08-27 20:39 - 00000000 ____D () C:\Users\despo367\AppData\Roaming\AIMP3
2015-04-11 10:14 - 2014-08-31 00:39 - 00000000 ____D () C:\Games
2015-04-09 18:01 - 2014-08-27 20:32 - 00000782 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-04-09 18:01 - 2014-08-27 20:32 - 00000000 ____D () C:\Program Files\CCleaner
2015-04-07 17:07 - 2014-08-27 19:58 - 01047320 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys
2015-04-07 17:07 - 2014-08-27 19:58 - 00442264 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys
2015-04-07 17:07 - 2014-08-27 19:58 - 00271200 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-04-07 17:07 - 2014-08-27 19:58 - 00136752 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswStm.sys
2015-04-07 17:07 - 2014-08-27 19:58 - 00093528 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr2.sys
2015-04-07 17:07 - 2014-08-27 19:58 - 00088408 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-04-07 17:07 - 2014-08-27 19:58 - 00065736 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-04-07 17:07 - 2014-08-27 19:58 - 00029168 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-04-04 12:26 - 2014-11-27 12:07 - 00000000 ____D () C:\Users\despo367\AppData\Roaming\Skype
2015-04-04 09:31 - 2014-08-27 20:09 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-03-21 15:26 - 2014-12-24 15:16 - 00002892 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_despo367
2015-03-21 15:24 - 2014-08-27 19:12 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information

==================== Files in the root of some directories =======

2015-03-02 18:10 - 2015-03-02 18:10 - 0000084 _____ () C:\Program Files (x86)\update-witcher2.bat
2015-03-02 18:10 - 2012-06-30 12:13 - 0003153 _____ () C:\Program Files (x86)\visit-nosteam.ro.html
2015-02-01 21:00 - 2013-11-06 15:28 - 0000732 _____ () C:\Program Files (x86)\visit-www.nosteam.ro.html
2015-01-05 05:55 - 2015-01-05 05:55 - 0099384 _____ () C:\Users\despo367\AppData\Roaming\inst.exe
2015-01-05 05:55 - 2015-01-05 05:55 - 0007859 _____ () C:\Users\despo367\AppData\Roaming\pcouffin.cat
2015-01-05 05:55 - 2015-01-05 05:55 - 0001167 _____ () C:\Users\despo367\AppData\Roaming\pcouffin.inf
2015-01-05 05:55 - 2015-01-05 05:55 - 0082816 _____ (VSO Software) C:\Users\despo367\AppData\Roaming\pcouffin.sys
2015-01-05 05:56 - 2015-01-05 06:38 - 0000671 _____ () C:\Users\despo367\AppData\Roaming\vso_ts_preview.xml

Some content of TEMP:
====================
C:\Users\despo367\AppData\Local\Temp\7za.exe
C:\Users\despo367\AppData\Local\Temp\DaS_21.exe
C:\Users\despo367\AppData\Local\Temp\hijackthis.exe
C:\Users\despo367\AppData\Local\Temp\NirCmd.exe
C:\Users\despo367\AppData\Local\Temp\PEVZ.EXE
C:\Users\despo367\AppData\Local\Temp\remove.exe
C:\Users\despo367\AppData\Local\Temp\sed.exe
C:\Users\despo367\AppData\Local\Temp\shortcut.exe
C:\Users\despo367\AppData\Local\Temp\swreg.exe
C:\Users\despo367\AppData\Local\Temp\swxcacls.exe
C:\Users\despo367\AppData\Local\Temp\wget.exe
C:\Users\despo367\AppData\Local\Temp\zoek-delete.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-04-14 19:13

==================== End Of Log ============================
AMD Ryzen 5 5600
AMD Radeon RX 9060 XT 16GB
Corsair 2x16 GB ddr4 3200 MT/s
HDD WDC WD10EZEX-08M2NA0 1TB
SSD KINGSTON SA2000M8 250 GB
Seasonic Focus Gold 550 W
MSI B450-A PRO (MS-7B86)
Microsoft Windows 11 Professional (x64)

mople71
Level 3.5
Level 3.5
Příspěvky: 662
Registrován: listopad 14
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod mople71 » 15 dub 2015 18:22

Postnul jsi 2x log jménem FRST, já chtěl 1x FRST a 1x Addition. ;)

desperado007
Level 3.5
Level 3.5
Příspěvky: 922
Registrován: září 12
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod desperado007 » 15 dub 2015 18:29

http://leteckaposta.cz/608080804

nahrál jsem to zde může být ?
Sorrry pospíchal jsem dám to sem. Nevešlo se to jednoho příspsěvku.
Naposledy upravil(a) desperado007 dne 15 dub 2015 19:02, celkem upraveno 3 x.
AMD Ryzen 5 5600
AMD Radeon RX 9060 XT 16GB
Corsair 2x16 GB ddr4 3200 MT/s
HDD WDC WD10EZEX-08M2NA0 1TB
SSD KINGSTON SA2000M8 250 GB
Seasonic Focus Gold 550 W
MSI B450-A PRO (MS-7B86)
Microsoft Windows 11 Professional (x64)

Uživatelský avatar
Orcus
člen Security týmu
Elite Level 10.5
Elite Level 10.5
Příspěvky: 10645
Registrován: duben 10
Bydliště: Okolo rostou 3 růže =o)
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod Orcus » 15 dub 2015 18:59

Ty logy máš dát sem, né na leteckou poštu. :-)
Láska hřeje, ale uhlí je uhlí. :fire:



Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.

Pár rad k bezpečnosti PC.

Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix

Pokud budete spokojeni , můžete podpořit naše fórum.


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 52 hostů