Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26.01.2019
Ran by Radka (administrator) on RADKA-PC (26-01-2019 15:21:47)
Running from F:\
Loaded Profiles: Radka (Available Profiles: Radka)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.6.997.11652\AdAwareService.exe
(Baidu, Inc.) C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.122701.0\BAVSvc.exe
(Baidu, Inc.) C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.122701.0\BHipsSvc.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Red Bend Ltd.) C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(Intel® Corporation) C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
() C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.6.997.11652\AdAwareTray.exe
(Opera Software) C:\Users\Radka\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Baidu, Inc.) C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.122701.0\BavTray.exe
(Microsoft Corporation) C:\Windows\System32\wscript.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\schtasks.exe
(Baidu, Inc.) C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.122701.0\bavhm.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\wscript.exe
(Microsoft Corporation) C:\Windows\System32\schtasks.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems) C:\Program Files\Adobe\Adobe Photoshop Lightroom 5.6\lightroom.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Corporation) C:\Windows\System32\wscript.exe
(Microsoft Corporation) C:\Windows\System32\schtasks.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IntelWirelessWiMAX] => C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe [1626112 2011-12-01] (Intel® Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2864016 2012-08-08] (ELAN Microelectronics Corp.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1654400 2011-12-06] (Conexant Systems, Inc.)
HKLM\...\Run: [AmIcoSinglun64] => c:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [368728 2012-04-27] (Alcor Micro Corp.)
HKLM\...\Run: [AdAwareTray] => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.6.997.11652\AdAwareTray.exe [4742616 2018-12-19] ()
HKLM-x32\...\Run: [Baidu Antivirus] => C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.122701.0\BavTray.exe [1997296 2015-05-15] (Baidu, Inc.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKU\S-1-5-21-3421731538-1396672586-2054023457-1000\...\Run: [f.lux] => C:\Users\Radka\AppData\Local\FluxSoftware\Flux\flux.exe [1820168 2018-10-24] (f.lux Software LLC)
HKU\S-1-5-21-3421731538-1396672586-2054023457-1000\...\Run: [Opera Browser Assistant] => C:\Users\Radka\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [2264152 2019-01-03] (Opera Software)
HKU\S-1-5-21-3421731538-1396672586-2054023457-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3421731538-1396672586-2054023457-1000\...\MountPoints2: F - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3421731538-1396672586-2054023457-1000\...\MountPoints2: {68b4d7b4-2480-11e5-badf-c0143dd142ba} - F:\LaunchU3.exe -a
HKU\S-1-5-21-3421731538-1396672586-2054023457-1000\...\MountPoints2: {ae017c66-58d4-11e8-b083-de2758c50c6f} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3421731538-1396672586-2054023457-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-18] (Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\Lenovo\Bluetooth Software\\BtwCP.dll [2012-07-02] (Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{D28973E5-8630-41af-8831-50A15FEB396B}] -> C:\Program Files\Lenovo\Bluetooth Software\BtwProximityCP.dll [2012-07-02] (Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corp.)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [174856 2015-02-23] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [156840 2015-02-23] (NVIDIA Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\Lenovo\Bluetooth Software\BtwProximityCP.dll
Startup: C:\Users\Radka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Corporation.jse [2019-01-11] ()
Startup: C:\Users\Radka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\setup.js [2018-09-22] ()
BootExecute: autocheck autochk * aswBoot.exe /A:"* " /L:"1029" /KBD:2 /wow /dir:"C:\Program Files\AVAST Software\Avast"
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.10.10.10
Tcpip\..\Interfaces\{77A4EB83-99E0-41D0-A033-E582A5FF4405}: [DhcpNameServer] 10.10.10.10

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-3421731538-1396672586-2054023457-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-21-3421731538-1396672586-2054023457-1000 -> {B004DCD9-DCB7-4223-A406-6FD0F9EC3945} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{55A8EC97-6AF6-442c-877F-11C51DBD162D}] - C:\Program Files (x86)\Tomabo\MP4 Player\YTVD_FF.xpi
FF Extension: (YouTube Video Downloader Extension) - C:\Program Files (x86)\Tomabo\MP4 Player\YTVD_FF.xpi [2013-05-13] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{8B1E27AE-119E-456b-B22E-08C61FACB097}] - C:\Program Files (x86)\Tomabo\MP4 Player\MP4D_FF.xpi
FF Extension: (MP4 Downloader Extension) - C:\Program Files (x86)\Tomabo\MP4 Player\MP4D_FF.xpi [2015-01-24] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_114.dll [2019-01-09] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_114.dll [2019-01-09] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-07] (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-21] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-21] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)

Chrome: 
=======
CHR HomePage: Default -> file:///D:/
CHR StartupUrls: Default -> "about:blank"
CHR DefaultSearchURL: Default -> hxxps://services.srchweb.org/search/{searchTerms}
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://sug.srchweb.org/sug/?s={searchTerms}
CHR Profile: C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Default [2019-01-26]
CHR Extension: (Prezentace) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-15]
CHR Extension: (Dokumenty) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-15]
CHR Extension: (Disk Google) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-18]
CHR Extension: (YouTube) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-18]
CHR Extension: (Tabulky) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-15]
CHR Extension: (MP4 Downloader Extension) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Default\Extensions\glhecpdglaanfgdgcefipbokcmenleaf [2016-03-31]
CHR Extension: (YouTube Video Downloader Extension) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Default\Extensions\igljnkmljjbhcellpnjppojkfdfmkjmp [2016-03-31]
CHR Extension: (Night-Forest) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Default\Extensions\kolmklakogjichcflpmdgcoaeknaoldj [2018-09-07]
CHR Extension: (Search with Yahoo) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmdkdncigplhkbhcfifnimpdficjhhnn [2018-01-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Gmail) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-18]
CHR Extension: (Chrome Media Router) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-19]
CHR HKLM-x32\...\Chrome\Extension: [glhecpdglaanfgdgcefipbokcmenleaf] - C:\Program Files (x86)\Tomabo\MP4 Player\MP4D_GC.crx [2015-01-27]
CHR HKLM-x32\...\Chrome\Extension: [igljnkmljjbhcellpnjppojkfdfmkjmp] - C:\Program Files (x86)\Tomabo\MP4 Player\YTVD_GC.crx [2015-01-27]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 adawareantivirusservice; C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.6.997.11652\AdAwareService.exe [587832 2018-12-19] ()
R2 BavSvc; C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.122701.0\BavSvc.exe [2572928 2015-05-15] (Baidu, Inc.)
S3 BdSandboxSrv; C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.122701.0\BdSandboxSrv64.exe [264736 2015-01-08] (Baidu, Inc.)
R2 BHipsSvc; C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.122701.0\BHipsSvc.exe [531232 2015-05-15] (Baidu, Inc.)
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [1005944 2012-07-02] (Broadcom Corporation.)
R2 DMAgent; C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe [514048 2011-11-30] (Red Bend Ltd.) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-29] (Intel Corporation)
S4 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.812\McCHSvc.exe [405392 2018-09-27] (McAfee, Inc.)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273168 2011-12-08] ()
R2 WiMAXAppSrv; C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe [979456 2011-11-30] (Intel(R) Corporation) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [594704 2011-12-08] (Intel® Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 bdark64; C:\Windows\system32\drivers\bdark64.sys [78792 2015-04-20] ()
S3 BdSandbox; C:\Windows\System32\drivers\BdSandbox.sys [232440 2015-01-08] (Baidu, Inc.)
R1 Bfilter; C:\Windows\System32\drivers\Bfilter.sys [62920 2015-05-15] (Baidu, Inc.)
R1 Bfmon; C:\Windows\System32\drivers\Bfmon.sys [38344 2015-05-15] (Baidu, Inc.)
R1 Bnbase; C:\Windows\System32\drivers\bnbasex64.sys [62792 2015-05-15] (Baidu, Inc.)
R1 Bndef; C:\Windows\System32\drivers\bndef64.sys [485672 2015-05-15] (Baidu, Inc.)
R3 BNmon; C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.122701.0\Bnmon64.sys [82376 2015-05-15] (Baidu, Inc.)
R1 Bprotect; C:\Windows\System32\drivers\Bprotect.sys [169416 2015-05-15] (Baidu, Inc.)
R3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [442848 2018-05-02] (BitDefender S.R.L.)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [952832 2011-12-06] (Vimicro Corporation)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [73296 2013-10-08] (VMware, Inc.)
S3 WiseHDInfo; C:\Windows\WiseHDInfo64.dll [14800 2016-07-06] (wisecleaner.com) [File not signed]
S3 WiseRegNotify; C:\Windows\WiseRegNotify.sys [29616 2016-07-06] (WiseCleaner.com) [File not signed]
S2 appaskseatch; \??\C:\Windows\system32\drivers\adtschange.sys [X]
U3 aswbdisk; no ImagePath
S3 SWDUMon; system32\DRIVERS\SWDUMon.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
S1 vonetframe; \??\C:\Windows\system32\drivers\vonetframe.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-26 15:11 - 2019-01-26 15:11 - 137707520 _____ C:\Users\Radka\Downloads\Kung Fu panda 1 (cz).avi.crdownload
2019-01-26 14:24 - 2019-01-26 15:06 - 736697294 _____ C:\Users\Radka\Downloads\kung fu panda 2 cz dabing 101%.avi
2019-01-26 12:56 - 2019-01-26 12:57 - 000000000 ____D C:\AdwCleaner
2019-01-26 11:25 - 2019-01-26 15:21 - 000000000 ____D C:\FRST
2019-01-22 20:30 - 2019-01-22 21:33 - 692689943 _____ C:\Users\Radka\Downloads\Most! - 3.díl (český seriál).mp4
2019-01-16 13:32 - 2019-01-16 16:37 - 2042268298 _____ C:\Users\Radka\Downloads\Upgrade 2018 CZ Dabing NOVINKA Akční Thriller Sci-Fi Horor Krimi dnes pridane NOVINKY.mkv
2019-01-15 19:40 - 2019-01-15 20:47 - 719011366 _____ C:\Users\Radka\Downloads\Most ! 2.díl.mkv
2019-01-13 14:27 - 2019-01-25 12:07 - 000035120 _____ C:\Windows\system32\lsdel.exe
2019-01-13 13:06 - 2019-01-13 13:06 - 000000000 ____D C:\Users\Radka\AppData\Roaming\adaware
2019-01-13 13:06 - 2019-01-13 13:06 - 000000000 ____D C:\Users\Radka\AppData\Local\AdAwareDesktop
2019-01-13 13:05 - 2019-01-13 13:05 - 000002335 _____ C:\Users\Public\Desktop\Adaware Antivirus.lnk
2019-01-13 13:05 - 2019-01-13 13:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\adaware
2019-01-13 13:03 - 2019-01-13 13:03 - 000000000 ____D C:\Program Files\adaware
2019-01-13 13:01 - 2019-01-13 13:01 - 000000000 ____D C:\Users\Radka\AppData\Local\AdAwareUpdater
2019-01-13 13:01 - 2019-01-13 13:01 - 000000000 ____D C:\Program Files\Common Files\adaware
2019-01-13 12:58 - 2019-01-13 12:58 - 000000000 ____D C:\ProgramData\adaware
2019-01-13 12:57 - 2019-01-13 12:57 - 000003124 _____ C:\Windows\System32\Tasks\{5A1D3BDB-807F-409A-AEE8-AA275BD19962}
2019-01-13 11:00 - 2019-01-13 11:06 - 280908168 _____ (Lenovo Group ) C:\Users\Radka\Downloads\0lto15ww.exe
2019-01-12 08:25 - 2019-01-26 13:06 - 000000000 ____D C:\Users\Radka\Downloads\opera autoupdate
2019-01-11 08:42 - 2019-01-11 08:42 - 000004292 _____ C:\Windows\System32\Tasks\Opera scheduled assistant Autoupdate 1547192503
2019-01-10 22:14 - 2019-01-11 00:29 - 000001719 _____ C:\Users\Radka\AppData\Roaming\Microsoft Corporation.jse
2019-01-09 09:50 - 2019-01-09 11:12 - 903999443 _____ C:\Users\Radka\Downloads\MOST! 1.díl.mkv
2019-01-07 17:18 - 2019-01-07 19:01 - 1051901952 _____ C:\Users\Radka\Downloads\Máš jí!.mkv
2019-01-07 11:18 - 2019-01-07 12:51 - 1671423973 _____ C:\Users\Radka\Downloads\Spotlight.mkv
2019-01-07 09:56 - 2019-01-07 11:17 - 1338796570 _____ C:\Users\Radka\Downloads\Nebezpečná laskavost CZtit.avi
2019-01-06 11:16 - 2019-01-06 12:40 - 1491408393 _____ C:\Users\Radka\Downloads\Dračí srdce.mkv
2019-01-05 10:20 - 2019-01-05 11:53 - 1006016204 _____ C:\Users\Radka\Downloads\Vesmír mezi námi.avi
2019-01-02 12:02 - 2019-01-02 13:22 - 867145530 _____ C:\Users\Radka\Downloads\Život jde dál.avi
2019-01-02 09:45 - 2019-01-02 12:01 - 1473403720 _____ C:\Users\Radka\Downloads\Planeta Česko.mp4
2019-01-01 20:23 - 2019-01-01 22:50 - 2617246172 _____ C:\Users\Radka\Downloads\Šifra mistra Leonarda.mkv
2018-12-29 20:20 - 2018-12-29 23:05 - 1809297756 _____ C:\Users\Radka\Downloads\Anděl páně 1.avi
2018-12-28 09:25 - 2018-12-28 10:32 - 733609286 _____ C:\Users\Radka\Downloads\Všichni jsou v pohodě.avi

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-26 13:14 - 2009-07-14 05:45 - 000025088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-01-26 13:14 - 2009-07-14 05:45 - 000025088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-01-26 13:05 - 2009-07-14 16:18 - 000671838 _____ C:\Windows\system32\perfh005.dat
2019-01-26 13:05 - 2009-07-14 16:18 - 000142992 _____ C:\Windows\system32\perfc005.dat
2019-01-26 13:05 - 2009-07-14 06:13 - 001592896 _____ C:\Windows\system32\PerfStringBackup.INI
2019-01-26 13:05 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2019-01-26 12:59 - 2015-10-26 16:32 - 000000000 ____D C:\ProgramData\VMware
2019-01-26 12:59 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-01-26 11:12 - 2014-01-23 21:29 - 000000000 ____D C:\Users\Radka\AppData\Local\VirtualStore
2019-01-26 09:57 - 2018-12-01 17:44 - 000000000 ____D C:\Users\Radka\AppData\Roaming\System32
2019-01-25 21:38 - 2018-12-22 17:36 - 000000464 _____ C:\Windows\Tasks\SlimDrivers Scan.job
2019-01-25 19:01 - 2017-04-03 14:59 - 000000000 ____D C:\Users\Radka\AppData\Local\Spotify
2019-01-25 18:42 - 2017-04-03 14:57 - 000000000 ____D C:\Users\Radka\AppData\Roaming\Spotify
2019-01-25 17:15 - 2014-08-03 14:24 - 000000000 ____D C:\Users\Radka\AppData\Local\CrashDumps
2019-01-11 08:42 - 2018-09-25 15:31 - 000004058 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1537885790
2019-01-09 10:39 - 2018-03-13 19:39 - 000004528 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-01-09 10:39 - 2014-01-23 23:29 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-01-09 10:39 - 2014-01-23 23:29 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-01-09 10:39 - 2014-01-23 23:29 - 000004396 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2019-01-09 10:39 - 2014-01-23 23:29 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-01-09 10:39 - 2014-01-23 23:29 - 000000000 ____D C:\Windows\system32\Macromed
2018-12-28 15:11 - 2017-12-16 14:04 - 000000000 ____D C:\Users\Radka\Desktop\Mamky fotky

==================== Files in the root of some directories =======

2013-11-22 12:40 - 2013-11-22 12:40 - 000170344 _____ (Baidu, Inc.) C:\ProgramData\FileSplitUpLoad.dll
2019-01-10 22:14 - 2019-01-11 00:29 - 000001719 _____ () C:\Users\Radka\AppData\Roaming\Microsoft Corporation.jse
2016-02-28 13:38 - 2016-02-28 13:38 - 000007601 _____ () C:\Users\Radka\AppData\Local\Resmon.ResmonCfg

Some files in TEMP:
====================
2019-01-25 11:56 - 2010-11-05 02:53 - 001717576 _____ (Microsoft Corporation) C:\Users\Radka\AppData\Local\Temp\.exe
2019-01-25 15:06 - 2019-01-25 15:06 - 000142920 _____ (REA) C:\Users\Radka\AppData\Local\Temp\10lry8f.putty.exe
2018-09-25 15:23 - 2018-09-25 15:23 - 001921096 ____N (Opera Software) C:\Users\Radka\AppData\Local\Temp\a4jtpadb.5p4.exe
2016-07-12 00:13 - 2016-07-12 00:13 - 001564280 _____ () C:\Users\Radka\AppData\Local\Temp\AndyCurrentInstallerVB.exe
2018-09-26 08:20 - 2018-09-26 08:20 - 002760192 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1809260720087841888.dll
2018-09-27 20:54 - 2018-09-27 20:54 - 002760192 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1809271954049445804.dll
2018-09-28 08:24 - 2018-09-28 08:24 - 002760192 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1809280724400727480.dll
2018-10-03 08:49 - 2018-10-03 08:49 - 002760192 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1810030749510956784.dll
2018-10-04 19:18 - 2018-10-04 19:18 - 002760192 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1810041818109984512.dll
2018-10-05 08:30 - 2018-10-05 08:30 - 002760192 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1810050730282292404.dll
2018-10-05 19:51 - 2018-10-05 19:51 - 002760192 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_181005185124290732.dll
2018-10-09 08:11 - 2018-10-09 08:11 - 002760192 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1810090711056488456.dll
2018-10-10 08:31 - 2018-10-10 08:31 - 002760192 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1810100731212056156.dll
2018-10-11 20:03 - 2018-10-11 20:03 - 002760192 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1810111903082588576.dll
2018-10-15 08:33 - 2018-10-15 08:33 - 002760192 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1810150733382067508.dll
2018-10-19 07:17 - 2018-10-19 07:17 - 002760192 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1810190617110583424.dll
2018-10-21 08:21 - 2018-10-21 08:21 - 002766336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1810210721299618976.dll
2018-10-22 08:07 - 2018-10-22 08:07 - 002766336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1810220707481883320.dll
2018-10-24 08:07 - 2018-10-24 08:07 - 002766336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1810240707575406096.dll
2018-10-29 08:45 - 2018-10-29 08:45 - 002766336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1810290745168835364.dll
2018-10-30 09:00 - 2018-10-30 09:00 - 002766336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1810300800541247008.dll
2018-10-31 08:01 - 2018-10-31 08:01 - 002766336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1810310701035648180.dll
2018-11-02 08:54 - 2018-11-02 08:54 - 002766336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1811020754283116552.dll
2018-11-05 09:25 - 2018-11-05 09:25 - 002766336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1811050825321885452.dll
2018-11-06 08:54 - 2018-11-06 08:54 - 002766336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1811060754452063448.dll
2018-11-08 08:45 - 2018-11-08 08:45 - 002766336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1811080745221998572.dll
2018-11-09 08:56 - 2018-11-09 08:56 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1811090756414351500.dll
2018-11-15 19:16 - 2018-11-15 19:16 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1811151816237845528.dll
2018-11-17 08:46 - 2018-11-17 08:46 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1811170746040876048.dll
2018-11-17 19:51 - 2018-11-17 19:51 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1811171851126131136.dll
2018-11-19 07:44 - 2018-11-19 07:45 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1811190644557584664.dll
2018-11-20 08:55 - 2018-11-20 08:55 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1811200755198031644.dll
2018-11-24 08:56 - 2018-11-24 08:56 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1811240756476674812.dll
2018-11-25 08:57 - 2018-11-25 08:57 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1811250757109824948.dll
2018-11-27 20:16 - 2018-11-27 20:16 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1811271916016656804.dll
2018-11-28 09:44 - 2018-11-28 09:44 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1811280844199223976.dll
2018-12-02 22:05 - 2018-12-02 22:05 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1812022105004335128.dll
2018-12-03 08:50 - 2018-12-03 08:50 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1812030750088245072.dll
2018-12-04 08:43 - 2018-12-04 08:43 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1812040743444067016.dll
2018-12-06 08:50 - 2018-12-06 08:50 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_181206075011504572.dll
2018-12-07 09:18 - 2018-12-07 09:18 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1812070818252535544.dll
2018-12-09 09:18 - 2018-12-09 09:18 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1812090818137746880.dll
2018-12-12 21:40 - 2018-12-12 21:40 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1812122040109062980.dll
2018-12-14 10:15 - 2018-12-14 10:15 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1812140915367027580.dll
2018-12-15 08:19 - 2018-12-15 08:19 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1812150719207156928.dll
2018-12-16 09:01 - 2018-12-16 09:01 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1812160801454497176.dll
2018-12-17 15:08 - 2018-12-17 15:08 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1812171408555526684.dll
2018-12-19 09:14 - 2018-12-19 09:14 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_181219081423127836.dll
2018-12-26 09:27 - 2018-12-26 09:27 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1812260827559916372.dll
2018-12-26 21:02 - 2018-12-26 21:02 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1812262002425143924.dll
2018-12-27 08:46 - 2018-12-27 08:46 - 002766848 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1812270746513715404.dll
2018-12-29 08:18 - 2018-12-29 08:18 - 003021312 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1812290718015123608.dll
2018-12-29 14:39 - 2018-12-29 14:39 - 003021312 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1812291339453524992.dll
2018-12-31 08:58 - 2018-12-31 08:58 - 003021312 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1812310758132285980.dll
2019-01-02 09:42 - 2019-01-02 09:42 - 003021312 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901020842121696780.dll
2019-01-03 09:17 - 2019-01-03 09:17 - 003021312 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901030817164521020.dll
2019-01-03 09:27 - 2019-01-03 09:27 - 003021312 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901030827020524128.dll
2019-01-03 20:16 - 2019-01-03 20:16 - 003021312 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901031916526424224.dll
2019-01-04 21:06 - 2019-01-04 21:06 - 003021312 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901042006507462572.dll
2019-01-05 16:35 - 2019-01-05 16:35 - 003021312 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901051535031105372.dll
2019-01-06 09:19 - 2019-01-06 09:19 - 003021312 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901060819575323656.dll
2019-01-07 09:14 - 2019-01-07 09:15 - 003021312 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901070814553623564.dll
2019-01-08 09:19 - 2019-01-08 09:19 - 003021312 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901080819089081088.dll
2019-01-11 08:39 - 2019-01-11 08:39 - 003021312 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901110739026942404.dll
2019-01-12 08:25 - 2019-01-12 08:25 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901120725199401264.dll
2019-01-12 08:25 - 2019-01-12 08:25 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_190112072519948864.dll
2019-01-13 08:31 - 2019-01-13 08:31 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901130731158122984.dll
2019-01-13 08:31 - 2019-01-13 08:31 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901130731186433408.dll
2019-01-13 08:42 - 2019-01-13 08:42 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901130742325136024.dll
2019-01-13 08:42 - 2019-01-13 08:42 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901130742545415384.dll
2019-01-13 10:57 - 2019-01-13 10:57 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901130957190534104.dll
2019-01-14 10:48 - 2019-01-14 10:48 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901140948509401424.dll
2019-01-15 09:14 - 2019-01-15 09:14 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901150814559347132.dll
2019-01-15 09:14 - 2019-01-15 09:14 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901150814563397152.dll
2019-01-16 08:36 - 2019-01-16 08:36 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901160736140692732.dll
2019-01-16 08:36 - 2019-01-16 08:36 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901160736152235348.dll
2019-01-17 08:43 - 2019-01-17 08:43 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901170743052032520.dll
2019-01-17 19:56 - 2019-01-17 19:56 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901171856487261820.dll
2019-01-18 08:22 - 2019-01-18 08:22 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901180722371935840.dll
2019-01-19 08:53 - 2019-01-19 08:53 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901190753331717700.dll
2019-01-20 08:58 - 2019-01-20 08:58 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901200758451695332.dll
2019-01-22 09:24 - 2019-01-22 09:24 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901220824399082468.dll
2019-01-22 09:24 - 2019-01-22 09:24 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901220824426545480.dll
2019-01-23 09:55 - 2019-01-23 09:55 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901230855495647924.dll
2019-01-24 09:02 - 2019-01-24 09:02 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901240802189906268.dll
2019-01-25 09:20 - 2019-01-25 09:20 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901250820027183816.dll
2019-01-26 10:00 - 2019-01-26 10:00 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901260900522788016.dll
2019-01-26 13:06 - 2019-01-26 13:06 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901261206241754620.dll
2019-01-26 13:06 - 2019-01-26 13:06 - 003022336 _____ (Opera Software) C:\Users\Radka\AppData\Local\Temp\Opera_installer_1901261206297282936.dll
2018-11-30 14:22 - 2018-09-20 09:29 - 033837584 _____ (Movavi) C:\Users\Radka\AppData\Local\Temp\setup.exe
2019-01-25 11:56 - 2019-01-25 15:06 - 000091136 _____ () C:\Users\Radka\AppData\Local\Temp\tmp.exe
2018-09-05 15:11 - 2018-09-05 15:11 - 000534528 _____ () C:\Users\Radka\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\dllhost.exe => File is digitally signed
C:\Windows\SysWOW64\dllhost.exe => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2019-01-23 14:15

==================== End of FRST.txt ============================