Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 8.02.2019
Ran by Lukáš (administrator) on TOSHIBA-PC (09-02-2019 19:23:48)
Running from C:\Users\Lukáš\Desktop
Loaded Profiles: Lukáš (Available Profiles: Lukáš & khuti & Guest)
Platform: Windows 10 Pro Version 1803 17134.523 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe
(Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1901.7-0\MsMpEng.exe
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.225\WsAppService.exe
(Wondershare) C:\Program Files (x86)\Wondershare\dr.fone toolkit for iOS\Library\DriverInstaller\DriverInstall.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1901.7-0\NisSrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe
(Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(BitTorrent, Inc.) C:\Users\Lukáš\AppData\Roaming\uTorrent\uTorrent.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 16\Program64\Zps.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.App.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1811.3241.0_x64__8wekyb3d8bbwe\Calculator.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.19011.11311.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [3465608 2017-10-01] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-01-18] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-2880763456-3809056876-389139218-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2018-12-03] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2880763456-3809056876-389139218-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18594760 2018-09-19] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-2880763456-3809056876-389139218-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [833240 2014-12-23] (ZONER software, a.s. -> ZONER software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.96\Installer\chrmstp.exe [2019-02-08] (Google LLC -> Google Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{94a4b2fb-c219-4edf-8c05-5e13b6a7b225}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{d3f04bb5-a110-4d81-a733-b49594182cd7}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{d3f04bb5-a110-4d81-a733-b49594182cd7}: [DhcpNameServer] 10.202.254.1 8.8.8.8
Tcpip\..\Interfaces\{f436106a-c6b3-4353-bcf1-8e39be0625b2}: [DhcpNameServer] 172.20.10.1

Internet Explorer:
==================
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-05-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-30] (Oracle America, Inc. -> Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\ocls2m1l.default-1425221390775 [2019-02-09]
FF Extension: (Easy YouTube mp3) - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\ocls2m1l.default-1425221390775\Extensions\d.lehr@chello.at.xpi [2018-07-09]
FF Extension: (F.B. Purity - Cleans Up Facebook) - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\ocls2m1l.default-1425221390775\Extensions\fbp@fbpurity.com.xpi [2015-05-28] [Legacy]
FF Extension: (No Name) - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\ocls2m1l.default-1425221390775\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-01-27]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_114.dll [2019-01-08] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_114.dll [2019-01-08] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1233203.dll [2018-05-15] (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-30] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-09-23] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)

Chrome: 
=======
CHR DefaultProfile: Profile 7
CHR HomePage: Profile 7 -> hxxp://www.google.com/
CHR Profile: C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 12 [2018-07-15]
CHR Extension: (Prezentácie Google) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-03-28]
CHR Extension: (Dokumenty Google) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\aohghmighlieiainnegkcijnfilokake [2017-03-28]
CHR Extension: (Disk Google) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-28]
CHR Extension: (YouTube) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-28]
CHR Extension: (Adobe Acrobat) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-28]
CHR Extension: (Tabuľky Google) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-03-28]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-28]
CHR Extension: (Gmail) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-28]
CHR Extension: (Chrome Media Router) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-03-28]
CHR Profile: C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 7 [2019-02-09]
CHR Extension: (Turn Off the Lights) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2019-01-31]
CHR Extension: (Adobe Acrobat) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-28]
CHR Extension: (AdBlock) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-02-08]
CHR Extension: (Easy YouTube mp3) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\lalenpkknhjmncjbkeiekamacbplgnme [2017-10-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Nepi Jano!) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\paddiapjbnmknhhobfcjnnmhgihnpgne [2015-02-24]
CHR Extension: (Chrome Media Router) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-01-31]
CHR Profile: C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\System Profile [2018-07-15]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [85304 2018-10-16] (Apple Inc. -> Apple Inc.)
R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [4091112 2017-11-09] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
R2 RtkBtManServ; C:\WINDOWS\RtkBtManServ.exe [713816 2018-09-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-05-04] (Synaptics Incorporated -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\NisSrv.exe [4096976 2019-01-24] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MsMpEng.exe [113992 2019-01-24] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.225\WsAppService.exe [473824 2017-05-05] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\dr.fone toolkit for iOS\Library\DriverInstaller\DriverInstall.exe [119008 2017-06-28] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [17480 2013-03-07] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
S3 epmntdrv; C:\WINDOWS\SysWOW64\epmntdrv.sys [14920 2013-03-07] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [9800 2013-03-07] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
S3 EuGdiDrv; C:\WINDOWS\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
R3 i8042HDR; C:\WINDOWS\system32\DRIVERS\i8042HDR.sys [15920 2009-08-14] (Chicony Electronics Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
S3 iaLPSSi_GPIO; C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128 2018-04-12] (Intel Corporation - Client Components Group -> Intel Corporation)
R3 igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [5382856 2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 IntcDAud; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [342528 2012-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253664 2018-05-12] (Malwarebytes Corporation -> Malwarebytes)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2016-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-12] (Microsoft Windows -> Realtek )
R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [65792 2015-11-15] (Realtek Semiconductor Corp -> Realtek Microelectronics)
S3 RtkBtFilter2; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [65792 2015-11-15] (Realtek Semiconductor Corp -> Realtek Microelectronics)
R3 rtwlane_13; C:\WINDOWS\System32\drivers\rtwlane_13.sys [3717120 2018-04-12] (Microsoft Windows -> Realtek Semiconductor Corporation )
R3 seehcri; C:\WINDOWS\System32\drivers\seehcri.sys [34032 2013-10-13] (Sony Ericsson Mobile Communications AB -> Sony Ericsson Mobile Communications)
S3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-08-26] (Synaptics Incorporated -> Synaptics Incorporated)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [54424 2015-07-29] (TOSHIBA CORPORATION -> Toshiba Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2016-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R1 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [119712 2016-04-28] (Oracle Corporation -> Oracle Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46488 2019-01-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [343032 2019-01-24] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [63480 2019-01-24] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-02-09 19:23 - 2019-02-09 19:25 - 000019303 ____C C:\Users\Lukáš\Desktop\FRST.txt
2019-02-09 19:23 - 2019-02-09 19:23 - 000000000 ____D C:\FRST
2019-02-09 19:22 - 2019-02-09 19:23 - 002434048 _____ (Farbar) C:\Users\Lukáš\Desktop\FRST64.exe
2019-02-09 14:17 - 2019-02-09 14:17 - 000019169 _____ C:\Users\Lukáš\Downloads\[CzT]The_Florida_Project_2017_CZ_.torrent
2019-02-09 14:06 - 2019-02-09 14:06 - 000021919 _____ C:\Users\Lukáš\Downloads\[CzT]Pan_Prstenu_Lord_of_the_Rings_Trilogie_CZ_.torrent
2019-02-08 19:36 - 2019-02-08 19:36 - 000011287 _____ C:\Users\Lukáš\Downloads\[CzT]Patrani_Searching_2018_CZ_.torrent
2019-02-05 22:58 - 2019-02-05 22:58 - 000015813 _____ C:\Users\Lukáš\Downloads\[CzT]22_mile_Mile_22_2018_CZ_.torrent
2019-01-31 17:59 - 2019-01-31 17:59 - 000001816 _____ C:\Users\Public\Desktop\iTunes.lnk
2019-01-31 17:59 - 2019-01-31 17:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2019-01-31 17:59 - 2019-01-31 17:59 - 000000000 ____D C:\Program Files\iPod
2019-01-31 17:58 - 2019-01-31 17:59 - 000000000 ____D C:\Program Files\iTunes
2019-01-31 17:53 - 2019-01-31 17:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2019-01-26 07:52 - 2019-01-26 07:53 - 000000000 ___DC C:\Users\Lukáš\AppData\Roaming\IGdm
2019-01-21 19:34 - 2019-01-21 19:34 - 000014928 _____ C:\Users\Lukáš\Downloads\[CzT]Vyvoleny_Unbreakable_2000_.torrent
2019-01-18 21:03 - 2019-01-18 21:03 - 000023170 _____ C:\Users\Lukáš\Downloads\[CzT]Dmitry_Glukhovsky_Metro_2033_2016_CZ_.torrent
2019-01-18 21:01 - 2019-01-18 21:01 - 000019783 _____ C:\Users\Lukáš\Downloads\[CzT]Lars_Kepler_Lazar_2018_CZ_.torrent
2019-01-18 20:58 - 2019-01-18 20:58 - 000016015 _____ C:\Users\Lukáš\Downloads\[CzT]Rozpolceny_Split_2016_CZ_.torrent
2019-01-18 20:57 - 2019-01-18 20:57 - 000018953 _____ C:\Users\Lukáš\Downloads\[CzT]Zly_casy_v_El_Royale_Bad_Times_at_the_El_Royale_2018_CZ_.torrent
2019-01-15 20:01 - 2018-09-20 05:12 - 001483576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-02-09 19:26 - 2013-11-12 07:03 - 000000000 ___DC C:\Users\Lukáš\AppData\Roaming\uTorrent
2019-02-09 19:16 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-02-09 18:57 - 2017-01-04 08:24 - 000000000 ___DC C:\Users\Lukáš\AppData\LocalLow\Mozilla
2019-02-09 18:55 - 2018-05-28 22:48 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-02-09 16:12 - 2018-01-15 20:56 - 000000000 ____D C:\utorrent
2019-02-09 16:12 - 2013-11-12 22:24 - 000000000 ___DC C:\Users\Lukáš\AppData\Roaming\vlc
2019-02-09 09:03 - 2018-05-28 22:59 - 002438642 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-02-09 09:03 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2019-02-09 09:03 - 2014-01-27 15:02 - 001224518 _____ C:\WINDOWS\system32\perfh01B.dat
2019-02-09 09:03 - 2014-01-27 15:02 - 000365112 _____ C:\WINDOWS\system32\perfc01B.dat
2019-02-08 19:42 - 2018-07-10 18:46 - 000000000 ____D C:\ProgramData\Packages
2019-02-08 19:42 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-02-08 19:42 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-02-08 19:41 - 2013-11-12 06:58 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-02-08 19:33 - 2018-05-28 23:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-02-05 22:48 - 2017-06-15 11:38 - 000000000 ____D C:\Program Files\CCleaner
2019-02-05 22:48 - 2017-01-04 08:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-02-05 22:48 - 2015-02-25 19:39 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-01-28 21:40 - 2015-02-24 10:46 - 000001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-01-27 19:02 - 2015-02-24 10:46 - 000000000 ___DC C:\Users\Lukáš\AppData\Roaming\Mozilla
2019-01-27 14:47 - 2018-05-21 22:21 - 000000000 ___DC C:\WINDOWS\Panther
2019-01-27 14:42 - 2018-04-11 22:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-01-27 14:34 - 2018-09-15 18:29 - 000000000 ___HD C:\$WINDOWS.~BT
2019-01-27 14:34 - 2018-05-28 23:00 - 000013338 _____ C:\WINDOWS\diagwrn.xml
2019-01-27 14:34 - 2018-05-28 23:00 - 000013338 _____ C:\WINDOWS\diagerr.xml
2019-01-27 14:34 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\Registration
2019-01-27 13:54 - 2018-04-11 22:04 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2019-01-27 13:20 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-01-26 08:12 - 2014-03-07 10:04 - 000000000 ____D C:\Program Files (x86)\Cyklotrasy
2019-01-26 07:55 - 2018-05-29 01:01 - 000000000 ___DC C:\Users\Lukáš\AppData\Local\PlaceholderTileLogoFolder
2019-01-26 07:55 - 2017-10-23 17:33 - 000000000 ___DC C:\Users\Lukáš\AppData\Local\Packages
2019-01-25 21:06 - 2018-05-28 23:00 - 000003366 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2880763456-3809056876-389139218-1001
2019-01-25 21:06 - 2018-05-28 22:50 - 000002367 ____C C:\Users\Lukáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-25 21:06 - 2015-07-29 13:39 - 000000000 ___RD C:\Users\Lukáš\OneDrive
2019-01-24 19:22 - 2018-03-02 19:16 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-01-20 19:58 - 2018-05-28 22:50 - 000000000 ____D C:\Users\Lukáš
2019-01-18 20:58 - 2018-11-16 15:01 - 000000000 ____D C:\Program Files\rempl
2019-01-13 19:48 - 2018-10-07 17:26 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-01-10 18:11 - 2017-06-15 11:38 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk

==================== Files in the root of some directories =======

2015-09-07 06:47 - 2017-12-03 21:37 - 000001295 ____C () C:\Users\Lukáš\AppData\Roaming\burnaware.ini
2016-09-18 16:04 - 2002-08-29 18:33 - 000319488 ___RC () C:\Users\Lukáš\AppData\Roaming\MafiaSetup.exe
2014-09-02 12:28 - 2014-09-02 12:28 - 000000038 __SHC () C:\Users\Lukáš\AppData\Local\134e6589520e51682091c0.32666518
2015-11-06 14:34 - 2015-11-06 14:34 - 000000038 __SHC () C:\Users\Lukáš\AppData\Local\70149b02515b3bb20dd492.47983420
2015-12-11 10:12 - 2015-12-11 10:12 - 000000017 ____C () C:\Users\Lukáš\AppData\Local\resmon.resmoncfg

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-05-28 22:48

==================== End of FRST.txt ============================