Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-07-2019 01
Ran by Ja (administrator) on KLUMPIK (Gigabyte Technology Co., Ltd. H55M-USB3) (23-07-2019 00:30:07)
Running from C:\_SOFT PC\PC BEZPEČNOST\VIRY_CZ
Loaded Profiles: Ja &  (Available Profiles: Ja)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(ArcSoft, Inc. -> ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(ArcSoft, Inc. -> ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(GoPro, Inc. -> ) C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
(inMusic Brands, Inc -> M-Audio) C:\Program Files (x86)\M-Audio\Axiom AIR Mini 32\AudioDevMon.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(iOSinstaller.com) [File not signed] C:\Program Files (x86)\iOSinstaller\Updater.exe
(Leadtek Research Inc.) [File not signed] C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
(Leadtek Research Inc.) [File not signed] C:\Program Files\WinFast\WFDTV\WFWIZ.exe
(Logitech -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Logitech -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\sp6\LU1\LogitechUpdate.exe
(Logitech -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\sp6\LU1\LULnchr.exe
(Logitech -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc. -> ) C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(Logitech, Inc. -> Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Windows Hardware Compatibility Publisher -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(NEC Electronics Corporation) [File not signed] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Open Source Developer, Birunthan Mohanathas -> Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Ulead Systems, Inc.) [File not signed] C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
(Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10134560 2010-03-12] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3100440 2014-05-19] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [iTunesHelper] => "F:\iTunes\iTunesHelper.exe"
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [269192 2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2009-11-20] (NEC Electronics Corporation) [File not signed]
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67384 2017-01-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) [File not signed]
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft, Inc. -> ArcSoft Inc.)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech, Inc. -> Logitech Inc.)
HKLM-x32\...\Run: [WinFastDTV] => C:\Program Files\WinFast\WFDTV\DTVSchdl.exe [101888 2011-01-12] (Leadtek Research Inc.) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3261876755-477165021-623360622-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-04-22] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3261876755-477165021-623360622-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-04-22] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3261876755-477165021-623360622-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2016-04-22] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3261876755-477165021-623360622-1001\...\Run: [WinFast Schedule] => C:\Program Files\WinFast\WFDTV\WFWIZ.exe [2920448 2010-08-11] (Leadtek Research Inc.) [File not signed]
HKU\S-1-5-21-3261876755-477165021-623360622-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-04-22] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3261876755-477165021-623360622-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07232019002703873\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-04-22] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3261876755-477165021-623360622-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07232019002703873\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-04-22] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3261876755-477165021-623360622-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07232019002703873\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2016-04-22] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3261876755-477165021-623360622-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07232019002703873\...\Run: [WinFast Schedule] => C:\Program Files\WinFast\WFDTV\WFWIZ.exe [2920448 2010-08-11] (Leadtek Research Inc.) [File not signed]
HKU\S-1-5-21-3261876755-477165021-623360622-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07232019002703873\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-04-22] (Apple Inc. -> Apple Inc.)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\system32\lvcod64.dll [175392 2012-09-21] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [VIDC.CFHD] => C:\Windows\system32\CFHD.dll [1334784 2016-04-14] (CineForm Inc.) [File not signed]
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-09-21] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [VIDC.CFHD] => C:\Windows\SysWOW64\CFHD.dll [1119744 2016-04-14] (CineForm Inc.) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\75.0.3770.142\Installer\chrmstp.exe [2019-07-16] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\75.0.1447.80\Installer\chrmstp.exe [2019-07-05] (AVAST Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Startup: C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2017-01-03]
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Open Source Developer, Birunthan Mohanathas -> Rainmeter)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0809B9C8-41AE-4422-AD19-737996D370A0} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {12ACD551-CCEB-4DD3-8FE7-04648BB9504D} - System32\Tasks\{E2869F52-4881-4DAC-8F6B-526941FC936D} => C:\Windows\system32\pcalua.exe -a "C:\_SOFT PC\FreeRapid-0.9u4\frd.exe" -d "C:\_SOFT PC\FreeRapid-0.9u4"
Task: {16DCAE58-6F8D-4BB1-BECD-CBFEE3748E22} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {19635D1F-6FC4-4705-865B-B755D7F71D5E} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {1D7CA001-5B29-464B-8372-35986BC5AEE7} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {40226D9F-FB6C-4C5B-8776-CE8BBBC5578F} - System32\Tasks\Intel_C_CVCV437600JZ120BGN => C:\Program Files (x86)\Intel\Intel(R) SSD Toolbox\Intel SSD Toolbox.exe [1508096 2017-05-23] (Intel(R) Corporation - NAND Flash Memory -> Intel)
Task: {432A15F1-F0B4-4DC5-977C-44527C9E568D} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {5B59A617-D29C-44A9-8995-02B501680CC9} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1815792 2019-06-12] (AVAST Software s.r.o. -> AVAST Software)
Task: {65E1029C-F38D-40B7-88C1-3232FBF8CEBD} - System32\Tasks\{457F9BC0-7546-4439-8DE1-04C88A7E8897} => C:\Windows\system32\pcalua.exe -a "C:\_SOFT PC\_NEW\Gigabyte MB ovladače pro 64bit\GSATA\setup.exe" -d "C:\_SOFT PC\_NEW\Gigabyte MB ovladače pro 64bit\GSATA"
Task: {66C50F60-BC38-4D86-A51C-4BC1A61484FF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-07-12] (Adobe Inc. -> Adobe)
Task: {6A352A35-AA91-4CBC-9A67-BA1B9F2A55F5} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [2281944 2019-06-12] (AVAST Software s.r.o. -> AVAST Software)
Task: {73BB5663-C52A-4C3B-8523-B7D30A7124CF} - System32\Tasks\Kingston SSD Toolbox => C:\Program Files (x86)\Kingston SSD Toolbox\Kingston SSD Toolbox.exe <==== ATTENTION
Task: {93CB1020-5A7A-47CE-939B-E48177DF43CB} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_Plugin.exe [1457208 2019-07-12] (Adobe Inc. -> Adobe)
Task: {B615EB3D-B574-4078-A250-0DD7DA0E88DE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-02] (Google Inc -> Google Inc.)
Task: {B61F4E09-D16A-4908-A03B-4D9E485CD674} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-02] (Google Inc -> Google Inc.)
Task: {BC84E6D2-5B19-4BED-A333-2B1975E12021} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {C3758CD8-7C00-4233-90E1-0C66A61BB2A5} - System32\Tasks\{4613B891-F175-458F-9DED-0E9F8E04AD20} => C:\Windows\system32\pcalua.exe -a "C:\_SOFT PC\TV karta Leadtek\DTV1000 S(x64).exe" -d "C:\_SOFT PC\TV karta Leadtek"
Task: {E7D8D2F7-991F-42BB-8E54-7A52D8DA398D} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1815792 2019-06-12] (AVAST Software s.r.o. -> AVAST Software)
Task: {EBC845B6-3901-40DE-8713-1FEC400E8DA8} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {FCD1A83C-C10D-4577-9B32-2BB000463A2F} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3940232 2019-07-17] (AVAST Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{18FF7335-0959-4002-8D05-35C748182987}: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{6AD5AA1F-4F8D-4C5B-AE17-37D9223E0BF7}: [DhcpNameServer] 172.20.10.1

Internet Explorer:
==================
HKU\S-1-5-21-3261876755-477165021-623360622-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.cz/
HKU\S-1-5-21-3261876755-477165021-623360622-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07232019002703873\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.cz/
SearchScopes: HKU\S-1-5-21-3261876755-477165021-623360622-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-3261876755-477165021-623360622-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07232019002703873 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2014-05-19] (Logitech -> Logitech, Inc.)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22] (Eyeo GmbH -> Eyeo GmbH)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-04-23] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2014-05-19] (Logitech -> Logitech, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-04-23] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22] (Eyeo GmbH -> Eyeo GmbH)
Toolbar: HKU\S-1-5-21-3261876755-477165021-623360622-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
IE Session Restore: HKU\S-1-5-21-3261876755-477165021-623360622-1001 -> is enabled.
Toolbar: HKU\S-1-5-21-3261876755-477165021-623360622-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07232019002703873 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
IE Session Restore: HKU\S-1-5-21-3261876755-477165021-623360622-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07232019002703873 -> is enabled.
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2017-11-14] (Microsoft Windows -> Microsoft Corporation) [File not signed]

FireFox:
========
FF DefaultProfile: 0bmdc21x.default-1518424542179
FF ProfilePath: C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\cm6vrsq8.default-release [2019-07-21]
FF Extension: (ETP Search Volume Study) - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\cm6vrsq8.default-release\Extensions\etp-search-volume-study@shield.mozilla.org.xpi [2019-07-19]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\cm6vrsq8.default-release\Extensions\sp@avast.com.xpi [2019-07-21]
FF Extension: (Avast Online Security) - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\cm6vrsq8.default-release\Extensions\wrc@avast.com.xpi [2019-07-21]
FF ProfilePath: C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\0bmdc21x.default-1518424542179 [2019-07-21]
FF Homepage: Mozilla\Firefox\Profiles\0bmdc21x.default-1518424542179 -> hxxps://www.google.cz/
FF Session Restore: Mozilla\Firefox\Profiles\0bmdc21x.default-1518424542179 -> is enabled.
FF Extension: (Facebook Container) - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\0bmdc21x.default-1518424542179\Extensions\@contain-facebook.xpi [2019-07-12]
FF Extension: (Browsec VPN - Free and Unlimited VPN) - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\0bmdc21x.default-1518424542179\Extensions\browsec@browsec.com.xpi [2019-07-19]
FF Extension: (Enhancer for YouTube™) - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\0bmdc21x.default-1518424542179\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2019-07-12]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\0bmdc21x.default-1518424542179\Extensions\sp@avast.com.xpi [2019-07-17]
FF Extension: (uBlock Origin) - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\0bmdc21x.default-1518424542179\Extensions\uBlock0@raymondhill.net.xpi [2019-07-19]
FF Extension: (Avast Online Security) - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\0bmdc21x.default-1518424542179\Extensions\wrc@avast.com.xpi [2018-06-30]
FF Extension: (Video DownloadHelper) - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\0bmdc21x.default-1518424542179\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-07-19]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2015-01-31] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_223.dll [2019-07-12] (Adobe Inc. -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_223.dll [2019-07-12] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-04-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-04-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [No File]
FF Plugin HKU\S-1-5-21-3261876755-477165021-623360622-1001: @hola.org/vlc,version=1.8.28 -> C:\Users\Ja\AppData\Local\Hola\firefox\app\vlc [2015-05-28] ()
FF Plugin HKU\S-1-5-21-3261876755-477165021-623360622-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07232019002703873: @hola.org/vlc,version=1.8.28 -> C:\Users\Ja\AppData\Local\Hola\firefox\app\vlc [2015-05-28] ()

Chrome: 
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default [2019-07-23]
CHR Extension: (Prezentace) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-24]
CHR Extension: (Dokumenty) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-25]
CHR Extension: (Disk Google) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-11]
CHR Extension: (YouTube) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-17]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-07-21]
CHR Extension: (Vyhledávání Google) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-11]
CHR Extension: (Video Downloader professional) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2019-07-21]
CHR Extension: (Tabulky) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-17]
CHR Extension: (Hola Free VPN Proxy Unblocker) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2019-07-23]
CHR Extension: (Avast Online Security) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-07-17]
CHR Extension: (Video Downloader GetThemAll) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbkekaeindpfpcoldfckljplboolgkfm [2017-08-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-10-05]
CHR Extension: (Gmail) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-17]
CHR Extension: (Chrome Media Router) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-07-19]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft, Inc. -> ArcSoft Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6797008 2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [414976 2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\75.0.1447.80\elevation_service.exe [978720 2019-06-12] (AVAST Software s.r.o. -> AVAST Software)
R2 AxiomAIRMini32AudioDevMon; C:\Program Files (x86)\M-Audio\Axiom AIR Mini 32\AudioDevMon.exe [192360 2012-12-13] (inMusic Brands, Inc -> M-Audio)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [38000 2016-10-10] (Microsoft Windows Hardware Compatibility Publisher -> Dropbox, Inc.)
R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [37808 2016-04-14] (GoPro, Inc. -> )
R2 iOSinstallerUpdater; C:\Program Files (x86)\iOSinstaller\updater.exe [165376 2015-04-08] (iOSinstaller.com) [File not signed]
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 UleadBurningHelper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2004-12-13] (Ulead Systems, Inc.) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [779208 2017-10-18] (Wacom Technology Corporation -> Wacom Technology, Corp.)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 3xHybr64; C:\Windows\System32\DRIVERS\3xHybr64.sys [1345664 2010-10-13] (Microsoft Windows Hardware Compatibility Publisher -> NXP Semiconductors Germany GmbH)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37320 2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [209256 2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [263224 2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [206056 2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [61688 2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [279336 2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42504 2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [169112 2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [112520 2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [88160 2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1030992 2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [477288 2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [225816 2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [387392 2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
S3 AXIOMAIRMINI32; C:\Windows\System32\DRIVERS\MAudioAxiomAIRMini32.sys [134504 2012-12-13] (inMusic Brands, Inc -> M-Audio)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
S3 hidkmdf; C:\Windows\System32\DRIVERS\hidkmdf.sys [13776 2016-03-03] (Wacom Technology Corporation -> Windows (R) Win 7 DDK provider)
S3 MADFULEGACYKEYBOARD; C:\Windows\System32\DRIVERS\MAudioLegacyKeyboard_DFU.sys [28680 2010-02-09] (M-Audio -> M-Audio)
S3 MAUSBLEGACYKEYBOARD; C:\Windows\System32\DRIVERS\MAudioLegacyKeyboard.sys [196616 2010-02-09] (M-Audio -> M-Audio)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [199768 2019-07-22] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [224408 2019-07-23] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73584 2019-07-23] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-07-23] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [106344 2019-07-23] (Malwarebytes Corporation -> Malwarebytes)
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [23040 2014-08-15] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 nusb3hub; C:\Windows\System32\DRIVERS\nusb3hub.sys [75776 2009-11-20] (Microsoft Windows Hardware Compatibility Publisher -> NEC Electronics Corporation)
R3 nusb3xhc; C:\Windows\System32\DRIVERS\nusb3xhc.sys [177152 2009-11-20] (Microsoft Windows Hardware Compatibility Publisher -> NEC Electronics Corporation)
S3 silabenm; C:\Windows\System32\DRIVERS\silabenm.sys [23552 2014-12-01] (Microsoft Windows Hardware Compatibility Publisher -> Silicon Laboratories)
S3 silabser; C:\Windows\System32\DRIVERS\silabser.sys [79360 2014-12-01] (Microsoft Windows Hardware Compatibility Publisher -> Silicon Laboratories)
S3 ULCDRHlp; C:\Windows\SysWOW64\Drivers\ULCDRHlp.sys [27392 2004-12-23] (Ulead Systems, Inc.) [File not signed]
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WacHidRouter; C:\Windows\System32\DRIVERS\wachidrouter.sys [115704 2017-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Wacom Technology, Corp.)
R3 WacHidRouterPro; C:\Windows\System32\DRIVERS\wachidrouter.sys [115704 2017-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Wacom Technology, Corp.)
R3 wacomrouterfilter; C:\Windows\System32\DRIVERS\wacomrouterfilter.sys [17912 2017-10-08] (Microsoft Windows Hardware Compatibility Publisher -> Wacom Technology, Corp.)
S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64.sys [23200 2015-04-30] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 TEAM; system32\DRIVERS\RtTeam60.sys [X]
S3 VLAN; system32\DRIVERS\RtVLAN60.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-23 00:23 - 2019-07-23 00:26 - 000073584 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2019-07-23 00:23 - 2019-07-23 00:23 - 000224408 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2019-07-23 00:22 - 2019-07-23 00:25 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-07-23 00:22 - 2019-07-23 00:22 - 000106344 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2019-07-22 01:25 - 2019-07-22 01:25 - 000001266 _____ C:\Users\Ja\Desktop\Windows Update.lnk
2019-07-21 23:51 - 2019-07-21 23:51 - 000000000 ____D C:\Users\Ja\AppData\Roaming\Opera Software
2019-07-21 06:55 - 2019-07-21 23:33 - 000993280 _____ C:\TDSSKiller.3.1.0.28_21.07.2019_06.55.51_log.txt
2019-07-21 06:54 - 2019-07-21 06:54 - 000005318 _____ C:\TDSSKiller.3.1.0.28_21.07.2019_06.54.35_log.txt
2019-07-21 06:53 - 2019-07-17 02:51 - 000363400 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2019-07-21 06:53 - 2019-07-17 02:51 - 000225816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2019-07-21 06:53 - 2019-07-17 02:51 - 000169112 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2019-07-21 06:50 - 2019-07-21 06:50 - 000270416 _____ C:\Windows\Minidump\072119-9672-01.dmp
2019-07-21 03:21 - 2019-07-21 03:21 - 000000000 ____D C:\Users\Ja\AppData\LocalLow\Oracle
2019-07-20 02:56 - 2019-07-20 02:56 - 000000000 ____D C:\TDSSKiller_Quarantine
2019-07-20 02:46 - 2019-07-22 01:23 - 000199768 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2019-07-19 18:07 - 2019-07-19 18:08 - 000050800 _____ C:\Users\Ja\Desktop\Addition.txt
2019-07-19 18:05 - 2019-07-19 18:08 - 000045730 _____ C:\Users\Ja\Desktop\FRST.txt
2019-07-19 18:05 - 2019-07-19 18:04 - 002095104 _____ (Farbar) C:\Users\Ja\Desktop\FRST64.exe
2019-07-19 01:24 - 2019-07-19 01:24 - 002095104 _____ (Farbar) C:\Users\Ja\Downloads\FRST64.exe
2019-07-19 00:19 - 2019-07-19 01:35 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-07-18 23:36 - 2019-07-18 23:36 - 000000000 ____D C:\rsit
2019-07-18 23:36 - 2019-07-18 23:36 - 000000000 ____D C:\Program Files\trend micro
2019-07-17 03:22 - 2019-07-23 00:30 - 000000000 ____D C:\FRST
2019-07-17 03:12 - 2019-07-17 03:12 - 000001872 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-07-17 03:12 - 2019-07-17 03:12 - 000000000 ____D C:\Users\Ja\AppData\Local\mbamtray
2019-07-17 03:12 - 2019-07-17 03:12 - 000000000 ____D C:\Users\Ja\AppData\Local\mbam
2019-07-17 03:12 - 2019-07-17 03:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-07-17 03:12 - 2019-07-17 03:12 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-07-17 03:12 - 2019-07-17 03:12 - 000000000 ____D C:\Program Files\Malwarebytes
2019-07-17 03:12 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-07-17 00:11 - 2019-07-21 06:52 - 000000000 _____ C:\Windows\system32\last.dump
2019-07-12 02:25 - 2019-07-19 00:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-23 00:30 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-07-23 00:29 - 2009-07-14 07:08 - 000032544 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-07-23 00:28 - 2015-02-22 07:34 - 000000000 ____D C:\Users\Ja\AppData\Local\CrashDumps
2019-07-23 00:26 - 2015-10-16 03:20 - 000000000 ____D C:\Users\Ja\AppData\Roaming\WTablet
2019-07-23 00:25 - 2015-10-22 19:17 - 000000000 ___RD C:\Users\Ja\iCloudDrive
2019-07-22 01:23 - 2014-11-21 19:53 - 001052762 _____ C:\Windows\ntbtlog.txt
2019-07-22 01:22 - 2010-11-21 11:27 - 000668266 _____ C:\Windows\system32\perfh005.dat
2019-07-22 01:22 - 2010-11-21 11:27 - 000140926 _____ C:\Windows\system32\perfc005.dat
2019-07-22 01:22 - 2009-07-14 07:13 - 001582262 _____ C:\Windows\system32\PerfStringBackup.INI
2019-07-22 01:22 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2019-07-22 01:17 - 2009-07-14 06:45 - 000021792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-07-22 01:17 - 2009-07-14 06:45 - 000021792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-07-22 00:56 - 2018-03-16 00:25 - 000004520 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-07-22 00:56 - 2018-02-18 15:36 - 000003152 _____ C:\Windows\System32\Tasks\{4613B891-F175-458F-9DED-0E9F8E04AD20}
2019-07-22 00:56 - 2015-12-03 19:35 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software
2019-07-22 00:56 - 2015-10-21 18:33 - 000002834 _____ C:\Windows\System32\Tasks\Kingston SSD Toolbox
2019-07-22 00:56 - 2015-10-16 06:46 - 000003246 _____ C:\Windows\System32\Tasks\SidebarExecute
2019-07-22 00:56 - 2015-08-17 14:18 - 000004396 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2019-07-22 00:56 - 2015-03-21 17:02 - 000003534 _____ C:\Windows\System32\Tasks\Intel_C_CVCV437600JZ120BGN
2019-07-22 00:56 - 2014-12-26 12:19 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2019-07-22 00:56 - 2014-12-08 05:32 - 000003718 _____ C:\Windows\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2019-07-22 00:56 - 2014-12-08 05:32 - 000003476 _____ C:\Windows\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon
2019-07-22 00:56 - 2014-11-21 02:51 - 000003234 _____ C:\Windows\System32\Tasks\{457F9BC0-7546-4439-8DE1-04C88A7E8897}
2019-07-22 00:56 - 2014-11-19 19:40 - 000003126 _____ C:\Windows\System32\Tasks\{E2869F52-4881-4DAC-8F6B-526941FC936D}
2019-07-22 00:56 - 2014-11-19 10:33 - 000003386 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-07-22 00:56 - 2014-11-19 10:33 - 000003258 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-07-21 23:53 - 2016-12-03 08:17 - 000000000 ____D C:\Users\Ja\AppData\LocalLow\Mozilla
2019-07-21 23:52 - 2015-09-24 14:00 - 000000000 ____D C:\_PRENOS
2019-07-21 06:54 - 2017-04-05 04:42 - 000002008 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2019-07-21 06:53 - 2017-04-05 04:42 - 000003910 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2019-07-21 06:50 - 2016-01-22 07:54 - 000000000 ____D C:\Windows\Minidump
2019-07-21 02:50 - 2014-11-19 18:46 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-07-19 17:43 - 2014-11-19 19:06 - 000000000 ____D C:\ProgramData\TEMP
2019-07-19 01:32 - 2015-03-16 01:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-07-19 00:26 - 2018-09-30 22:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2019-07-19 00:26 - 2015-12-25 05:37 - 000000000 ____D C:\Users\Ja\AppData\LocalLow\Adblock Plus for IE
2019-07-19 00:26 - 2014-11-19 19:03 - 000000000 ____D C:\Users\Ja\AppData\Roaming\uTorrent
2019-07-19 00:26 - 2014-11-19 19:03 - 000000000 ____D C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2019-07-19 00:26 - 2014-11-19 18:47 - 000000000 ____D C:\_SOFT PC
2019-07-19 00:26 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\ras
2019-07-17 17:00 - 2018-09-30 22:22 - 000001031 _____ C:\Users\Public\Desktop\VLC media player.lnk
2019-07-17 16:57 - 2014-11-21 02:45 - 000000000 ____D C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-07-17 16:57 - 2014-11-21 02:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-07-17 16:57 - 2014-11-21 02:45 - 000000000 ____D C:\Program Files\WinRAR
2019-07-17 03:10 - 2016-01-15 17:15 - 000000000 ____D C:\Users\Ja\AppData\Local\ElevatedDiagnostics
2019-07-17 02:51 - 2019-05-14 00:13 - 000263224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2019-07-17 02:51 - 2019-05-14 00:13 - 000206056 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2019-07-17 02:51 - 2019-05-14 00:13 - 000061688 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2019-07-17 02:51 - 2019-05-14 00:13 - 000042504 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2019-07-17 02:51 - 2019-05-14 00:13 - 000037320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2019-07-17 02:51 - 2018-02-25 16:16 - 000279336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2019-07-17 02:51 - 2018-02-25 16:16 - 000209256 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2019-07-17 02:51 - 2017-04-05 04:42 - 001030992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2019-07-17 02:51 - 2017-04-05 04:42 - 000477288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2019-07-17 02:51 - 2017-04-05 04:42 - 000387392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2019-07-17 02:51 - 2017-04-05 04:42 - 000112520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2019-07-17 02:51 - 2017-04-05 04:42 - 000088160 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2019-07-17 01:53 - 2014-11-19 18:30 - 000000000 ____D C:\Users\Ja\AppData\Roaming\Google
2019-07-17 01:06 - 2018-09-30 23:22 - 000000000 ____D C:\Users\Ja\AppData\Roaming\vlc
2019-07-16 03:42 - 2014-11-19 10:34 - 000002189 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-07-16 03:42 - 2014-11-19 10:34 - 000002148 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-07-12 00:35 - 2014-11-19 18:46 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-07-12 00:35 - 2014-11-19 18:46 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-07-12 00:35 - 2014-11-19 18:46 - 000000000 ____D C:\Windows\system32\Macromed
2019-07-05 13:44 - 2019-04-18 00:08 - 000003732 _____ C:\Windows\System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2019-07-05 13:44 - 2019-04-18 00:08 - 000003150 _____ C:\Windows\System32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2019-07-05 13:44 - 2018-04-05 14:14 - 000002394 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2019-07-05 13:44 - 2018-04-05 14:14 - 000002351 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk

==================== Files in the root of some directories ================

2017-04-05 19:31 - 2018-10-22 00:54 - 000000033 _____ () C:\Users\Ja\AppData\Roaming\AdobeWLCMCache.dat
2016-03-31 01:36 - 2016-04-05 03:00 - 000002298 _____ () C:\Users\Ja\AppData\Roaming\ASSDraw3.cfg
2015-08-24 19:56 - 2015-08-24 19:56 - 000000112 _____ () C:\Users\Ja\AppData\Roaming\JP2K CS6 Prefs
2015-01-14 06:42 - 2015-01-14 06:42 - 183677480 _____ () C:\Users\Ja\AppData\Local\ACCCx2_9_0_465.zip.aamdownload
2015-01-14 06:42 - 2015-01-14 06:42 - 000002195 _____ () C:\Users\Ja\AppData\Local\ACCCx2_9_0_465.zip.aamdownload.aamd
2015-12-23 04:12 - 2018-11-06 08:44 - 000007623 _____ () C:\Users\Ja\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-07-12 00:44
==================== End of FRST.txt ============================