﻿Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:25-04-2016
Ran by Dejv (administrator) on PC-DEJV (28-08-2020 11:41:48)
Running from C:\Users\Dejv\Desktop
Loaded Profiles: Dejv (Available Profiles: Dejv)
Platform: Windows 10 Home Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\WsAppService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
Failed to access process -> Memory Compression
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler.exe
(Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler64.exe
() C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe
(Microsoft Corporation) C:\Windows\System32\SrTasks.exe
(Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\Windows-KB890830-x64-V5.82.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\MRT.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
(Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(Piriform Software) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe
(Piriform Software) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe
(Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe
() C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\avgui.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(CAMEO) C:\Program Files (x86)\D-Link\DWA-171\D-Link WPS Utility\wpsutility.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\UpdateAssistant\UpdateAssistant.exe
(Microsoft Corporation) C:\Windows\UpdateAssistant\UpdateAssistant.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
(Apple Inc.) C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
(Microsoft Corporation) C:\Windows\System32\DeviceCensus.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe
(Microsoft Corporation) C:\Windows\System32\UNP\UNPCampaignManager.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Piriform Software) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe
(Piriform Software) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Piriform Software) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe
(Piriform Software) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe
(Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1561_none_7ef6e89821f9a6be\TiWorker.exe
(Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
(Microsoft Corporation) C:\Windows\System32\w32tm.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [41664 2012-08-23] (Hewlett-Packard )
HKLM\...\Run: [GoPro Tray App] => C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe [866224 2016-10-11] ()
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2017-01-19] (Apple Inc.)
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239192 2018-06-14] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [263232 2017-08-06] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67384 2017-01-13] (Apple Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239192 2018-06-14] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2137744 2016-10-08] (Wondershare)
HKLM-x32\...\Run: [wpsutility] => C:\Program Files (x86)\D-Link\DWA-171\D-Link WPS Utility\wpsutility.exe [200448 2016-08-12] (CAMEO)
HKU\S-1-5-21-2779282203-1728966096-4171545773-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [3377440 2020-07-31] (Valve Corporation)
HKU\S-1-5-21-2779282203-1728966096-4171545773-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2017-01-17] (Apple Inc.)
HKU\S-1-5-21-2779282203-1728966096-4171545773-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Dejv\AppData\Local\Microsoft\OneDrive\20.134.0705.0008\amd64\FileSyncShell64.dll [2020-08-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Dejv\AppData\Local\Microsoft\OneDrive\20.134.0705.0008\amd64\FileSyncShell64.dll [2020-08-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Dejv\AppData\Local\Microsoft\OneDrive\20.134.0705.0008\amd64\FileSyncShell64.dll [2020-08-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dejv\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dejv\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dejv\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dejv\AppData\Roaming\Dropbox\bin\DropboxExt64.44.0.dll [2020-08-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Dejv\AppData\Local\Microsoft\OneDrive\20.134.0705.0008\FileSyncShell.dll [2020-08-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Dejv\AppData\Local\Microsoft\OneDrive\20.134.0705.0008\FileSyncShell.dll [2020-08-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Dejv\AppData\Local\Microsoft\OneDrive\20.134.0705.0008\FileSyncShell.dll [2020-08-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dejv\AppData\Roaming\Dropbox\bin\DropboxExt.44.0.dll [2020-08-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dejv\AppData\Roaming\Dropbox\bin\DropboxExt.44.0.dll [2020-08-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dejv\AppData\Roaming\Dropbox\bin\DropboxExt.44.0.dll [2020-08-12] (Dropbox, Inc.)
Startup: C:\Users\Dejv\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2017-10-07]
ShortcutTarget: Dropbox.lnk -> C:\Users\Dejv\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 0.0.0.1	mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{0aca3736-0b0d-464e-b14a-1b8839b7c8b1}: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{36a158f2-4774-4277-9172-2c1e586cb170}: [DhcpNameServer] 192.168.8.1

Internet Explorer:
==================
HKU\S-1-5-21-2779282203-1728966096-4171545773-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-2779282203-1728966096-4171545773-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?pc=UE01&ocid=UE01DHP
SearchScopes: HKLM -> {58560A7C-0A44-45DC-A93B-38BD87002D2A} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {58560A7C-0A44-45DC-A93B-38BD87002D2A} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-2779282203-1728966096-4171545773-1001 -> {58560A7C-0A44-45DC-A93B-38BD87002D2A} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2020-08-26] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2020-08-26] (Microsoft Corporation)
BHO: No Name -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> No File
BHO-x32: No Name -> {451C804F-C205-4F03-B48E-537EC94937BF} -> No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-04-16] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-16] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2020-08-26] (Microsoft Corporation)
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 -  No File

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_306.dll [2016-02-24] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll [2016-02-24] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-07-18] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-07-18] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-16] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-16] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2013-12-28] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-08-26] (Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-08-26] (Piriform Software)
FF HKLM-x32\...\Firefox\Extensions: [WSVCU@Wondershare.com] - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com_xpi => not found

Chrome: 
=======
CHR Profile: C:\Users\Dejv\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dejv\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-08-26]
CHR Extension: (Chrome Media Router) - C:\Users\Dejv\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-08-28]
CHR HKLM\...\Chrome\Extension: [bejnhdlplbjhffionohbdnpcbobfejcc] - C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\Exts\Chrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bejnhdlplbjhffionohbdnpcbobfejcc] - C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\Exts\Chrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [264432 2017-08-06] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7481648 2017-08-06] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428264 2018-06-14] (AVG Technologies CZ, s.r.o.)
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-08-26] (Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\84.1.5542.138\elevation_service.exe [1332800 2020-08-19] (Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-08-26] (Piriform Software)
S2 CDPUserSvc; C:\Windows\System32\CDPUserSvc.dll [339456 2016-11-11] (Microsoft Corporation)
R2 CDPUserSvc_2e39e7; C:\WINDOWS\system32\svchost.exe [44496 2016-07-16] (Microsoft Corporation)
R2 CDPUserSvc_2e39e7; C:\WINDOWS\SysWOW64\svchost.exe [38792 2016-07-16] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3052944 2020-07-14] (Microsoft Corporation)
S3 FrameServer; C:\Windows\system32\FrameServer.dll [805888 2017-03-04] (Microsoft Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-08] (NVIDIA Corporation)
S3 GoogleChromeElevationService; C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.135\elevation_service.exe [1309680 2020-08-18] (Google LLC)
R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [37808 2016-10-11] ()
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [321896 2017-07-06] (HP Inc.)
S3 HvHost; C:\Windows\System32\hvhostsvc.dll [67584 2016-07-16] (Microsoft Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-08] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648 2015-05-08] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119688 2017-01-07] (Electronic Arts)
S3 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2180624 2017-01-07] (Electronic Arts)
R2 osrss; C:\Windows\system32\osrss.dll [131288 2018-06-27] (Microsoft Corporation)
S3 RmSvc; C:\Windows\System32\RMapi.dll [140800 2016-10-07] (Microsoft Corporation)
R2 sedsvc; C:\Program Files\rempl\sedsvc.exe [305304 2018-08-31] (Microsoft Corporation)
S4 shpamsvc; C:\Windows\system32\Windows.SharedPC.AccountManager.dll [161792 2016-07-16] (Microsoft Corporation)
R3 TimeBrokerSvc; C:\Windows\System32\TimeBrokerServer.dll [177664 2016-07-16] (Microsoft Corporation)
S3 vmicrdv; C:\Windows\System32\icsvcext.dll [349696 2017-03-04] (Microsoft Corporation)
S3 vmicvss; C:\Windows\System32\icsvcext.dll [349696 2017-03-04] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-08-01] (Microsoft Corporation)
S3 wisvc; C:\Windows\system32\flightsettings.dll [635904 2017-04-28] (Microsoft Corporation)
S3 WpnUserService; C:\Windows\System32\WpnUserService.dll [74240 2016-07-16] (Microsoft Corporation)
S3 WpnUserService_2e39e7; C:\WINDOWS\system32\svchost.exe [44496 2016-07-16] (Microsoft Corporation)
S3 WpnUserService_2e39e7; C:\WINDOWS\SysWOW64\svchost.exe [38792 2016-07-16] (Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\WsAppService.exe [437392 2016-10-10] (Wondershare)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AcpiDev; C:\Windows\System32\drivers\AcpiDev.sys [18432 2016-07-16] (Microsoft Corporation)
S3 applockerfltr; C:\Windows\System32\drivers\applockerfltr.sys [15360 2016-07-16] (Microsoft Corporation)
R1 avgbdisk; C:\Windows\system32\drivers\avgbdiska.sys [166624 2017-08-06] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\system32\drivers\avgbidsdrivera.sys [313616 2017-08-06] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\system32\drivers\avgbidsha.sys [192584 2017-08-06] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\Windows\system32\drivers\avgbloga.sys [336896 2017-08-06] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\system32\drivers\avgbuniva.sys [51336 2017-08-06] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\Windows\system32\drivers\avgHwid.sys [39424 2017-08-06] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\Windows\system32\drivers\avgMonFlt.sys [139112 2017-08-11] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\system32\drivers\avgRdr2.sys [102792 2017-08-06] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\system32\drivers\avgRvrt.sys [76832 2017-08-06] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\system32\drivers\avgSnx.sys [1008288 2017-08-11] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\system32\drivers\avgSP.sys [578048 2017-08-06] (AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\system32\drivers\avgStm.sys [191208 2017-08-06] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\system32\drivers\avgVmm.sys [353744 2017-08-06] (AVG Technologies CZ, s.r.o.)
S0 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [533856 2016-07-16] (QLogic Corporation)
S3 cht4iscsi; C:\Windows\System32\drivers\cht4sx64.sys [346976 2016-07-16] (Chelsio Communications)
S3 cht4vbd; C:\Windows\System32\drivers\cht4vx64.sys [2104160 2016-07-16] (Chelsio Communications)
R2 clreg; C:\Windows\System32\drivers\registry.sys [70144 2016-07-16] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-11-21] (Symantec Corporation)
S3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-11-21] (Symantec Corporation) [File not signed]
S3 hvservice; C:\Windows\System32\drivers\hvservice.sys [73568 2016-10-07] (Microsoft Corporation)
S3 iagpio; C:\Windows\System32\drivers\iagpio.sys [33280 2016-07-16] (Intel(R) Corporation)
S3 iaLPSS2i_GPIO2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [64512 2016-07-16] (Intel Corporation)
S3 IndirectKmd; C:\Windows\System32\drivers\IndirectKmd.sys [35840 2016-07-16] (Microsoft Corporation)
R0 iorate; C:\Windows\System32\drivers\iorate.sys [48992 2016-11-02] (Microsoft Corporation)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-05-11] (Malwarebytes)
S0 megasas2i; C:\Windows\System32\drivers\MegaSas2i.sys [64352 2016-10-05] (Avago Technologies)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvhdcwu.inf_amd64_b4551921048bc87c\nvlddmkm.sys [14190520 2017-01-17] (NVIDIA Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-08] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
S0 percsas2i; C:\Windows\System32\drivers\percsas2i.sys [58720 2016-07-16] (Avago Technologies)
S3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [896752 2015-08-07] (Realtek                                            )
S3 RtlWlanu; C:\Windows\System32\drivers\rtwlanu.sys [5224200 2016-09-02] (Realtek Semiconductor Corporation                           )
S0 scmbus; C:\Windows\System32\drivers\scmbus.sys [88416 2017-06-21] (Microsoft Corporation)
S3 scmdisk0101; C:\Windows\System32\drivers\scmdisk0101.sys [124928 2017-07-12] (Microsoft Corporation)
R3 tilfilter; C:\Windows\System32\drivers\TIxHCIlfilter.sys [34424 2016-08-20] (Texas Instruments, Inc.)
R3 tiufilter; C:\Windows\System32\drivers\TIxHCIufilter.sys [39032 2016-08-20] (Texas Instruments, Inc.)
S3 UcmTcpciCx0101; C:\Windows\System32\Drivers\UcmTcpciCx.sys [108544 2016-07-16] (Microsoft Corporation)
S3 vmgid; C:\Windows\System32\drivers\vmgid.sys [10240 2016-07-16] (Microsoft Corporation)
R0 volume; C:\Windows\System32\drivers\volume.sys [16224 2016-07-16] (Microsoft Corporation)
R2 wcifs; C:\Windows\system32\drivers\wcifs.sys [119648 2016-10-07] (Microsoft Corporation)
S3 wcnfs; C:\Windows\system32\drivers\wcnfs.sys [66560 2017-07-12] (Microsoft Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 DrvAgent64; \??\C:\WINDOWS\SysWoW64\Drivers\DrvAgent64.SYS [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVC: shpamsvc -> C:\Windows\system32\Windows.SharedPC.AccountManager.dll (Microsoft Corporation)
NETSVC: WpnService -> C:\Windows\system32\WpnService.dll (Microsoft Corporation)
NETSVC: wisvc -> C:\Windows\system32\flightsettings.dll (Microsoft Corporation)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-28 11:41 - 2020-08-28 11:44 - 00029952 _____ C:\Users\Dejv\Desktop\FRST.txt
2020-08-26 16:04 - 2020-08-26 16:04 - 00000000 ____D C:\Users\Dejv\Desktop\byt
2020-08-26 15:57 - 2020-08-26 15:57 - 00003842 _____ C:\WINDOWS\System32\Tasks\CCleaner Browser Heartbeat Task (Hourly)
2020-08-26 15:57 - 2020-08-26 15:57 - 00003258 _____ C:\WINDOWS\System32\Tasks\CCleaner Browser Heartbeat Task (Logon)
2020-08-26 15:57 - 2020-08-26 15:57 - 00002470 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2020-08-26 15:57 - 2020-08-26 15:57 - 00002435 _____ C:\Users\Public\Desktop\CCleaner Browser.lnk
2020-08-26 15:57 - 2020-08-26 15:57 - 00000000 ____D C:\Users\Dejv\AppData\Local\CCleaner Browser
2020-08-26 15:57 - 2020-08-26 15:57 - 00000000 ____D C:\ProgramData\CCleaner Browser
2020-08-26 15:55 - 2020-08-26 15:57 - 00000000 ____D C:\Program Files (x86)\CCleaner Browser
2020-08-26 15:55 - 2020-08-26 15:55 - 00003528 _____ C:\WINDOWS\System32\Tasks\CCleanerUpdateTaskMachineUA
2020-08-26 15:55 - 2020-08-26 15:55 - 00003404 _____ C:\WINDOWS\System32\Tasks\CCleanerUpdateTaskMachineCore
2020-08-26 15:54 - 2020-08-26 15:54 - 00003936 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2020-08-26 15:52 - 2020-08-26 15:53 - 27072192 _____ (Piriform Software Ltd) C:\Users\Dejv\Downloads\ccsetup570.exe
2020-08-26 15:44 - 2020-08-26 15:59 - 00000000 ___HD C:\$WINDOWS.~BT
2020-08-26 15:39 - 2020-08-26 15:44 - 00000036 _____ C:\WINDOWS\progress.ini
2020-08-26 15:27 - 2020-08-26 15:27 - 00002260 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2020-08-26 15:27 - 2020-08-26 15:27 - 00002248 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2020-08-26 15:27 - 2020-08-26 15:27 - 00000000 ____D C:\Users\Dejv\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-08-26 15:27 - 2020-08-26 15:27 - 00000000 ____D C:\Program Files\Google
2020-08-26 15:12 - 2020-08-26 15:12 - 00000000 ____D C:\ProgramData\Ubisoft
2020-08-26 14:52 - 2020-08-26 14:52 - 00000000 ____D C:\Users\Dejv\AppData\Local\OneDrive
2020-08-22 19:44 - 2020-08-22 20:46 - 00000000 ____D C:\goprovideo

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-28 11:41 - 2016-04-25 23:00 - 00000000 ____D C:\FRST
2020-08-28 11:39 - 2013-10-31 21:55 - 00000000 ____D C:\Program Files (x86)\Steam
2020-08-28 11:35 - 2016-10-12 21:44 - 00003668 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2020-08-26 16:18 - 2013-10-31 23:53 - 00000000 ____D C:\Users\Dejv\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-08-26 16:17 - 2013-10-26 11:30 - 00000000 ____D C:\WINDOWS\system32\MRT
2020-08-26 16:16 - 2013-10-26 11:29 - 120636720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-08-26 16:14 - 2016-10-07 20:52 - 01839772 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-08-26 16:14 - 2016-07-17 00:25 - 00611104 _____ C:\WINDOWS\system32\perfh005.dat
2020-08-26 16:14 - 2016-07-17 00:25 - 00147990 _____ C:\WINDOWS\system32\perfc005.dat
2020-08-26 16:09 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2020-08-26 16:07 - 2016-11-05 00:16 - 00000930 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2779282203-1728966096-4171545773-1001UA1d236e9730ad38.job
2020-08-26 16:07 - 2016-11-05 00:16 - 00000878 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2779282203-1728966096-4171545773-1001Core1d236e9714de91.job
2020-08-26 16:07 - 2016-10-07 21:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-08-26 16:07 - 2016-10-07 20:48 - 00000000 ____D C:\ProgramData\NVIDIA
2020-08-26 16:06 - 2016-07-16 08:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2020-08-26 16:03 - 2019-06-30 18:37 - 00000000 ____D C:\Users\Dejv\Desktop\ajfoun
2020-08-26 16:02 - 2015-12-23 23:09 - 00000000 ____D C:\Program Files\Rockstar Games
2020-08-26 16:02 - 2013-10-14 15:28 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-08-26 16:01 - 2016-02-21 21:49 - 00000000 ____D C:\Users\Dejv\AppData\Local\Rockstar Games
2020-08-26 16:01 - 2013-11-01 23:36 - 00000000 ____D C:\Users\Dejv\Documents\Rockstar Games
2020-08-26 16:00 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2020-08-26 15:57 - 2016-10-07 21:44 - 00000000 ___DC C:\WINDOWS\Panther
2020-08-26 15:57 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2020-08-26 15:56 - 2019-06-30 17:33 - 00000000 ____D C:\Users\Dejv\Desktop\iphone
2020-08-26 15:56 - 2017-03-21 15:08 - 00000000 ____D C:\Users\Dejv\AppData\Local\CrashDumps
2020-08-26 15:56 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2020-08-26 15:54 - 2016-02-20 20:02 - 00000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-08-26 15:54 - 2016-02-20 20:02 - 00000000 ____D C:\Program Files\CCleaner
2020-08-26 15:46 - 2016-04-16 18:17 - 00000000 ____D C:\Users\Dejv\AppData\Local\Ubisoft Game Launcher
2020-08-26 15:46 - 2016-04-16 18:17 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2020-08-26 15:44 - 2016-10-07 21:22 - 00001890 _____ C:\WINDOWS\diagwrn.xml
2020-08-26 15:44 - 2016-10-07 21:22 - 00001890 _____ C:\WINDOWS\diagerr.xml
2020-08-26 15:41 - 2016-10-07 20:45 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2020-08-26 15:40 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2020-08-26 15:39 - 2018-09-23 22:27 - 00000000 ___HD C:\$GetCurrent
2020-08-26 15:38 - 2018-09-23 22:22 - 00000000 ____D C:\Windows10Upgrade
2020-08-26 15:30 - 2013-10-24 23:35 - 00002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-08-26 15:30 - 2013-10-24 23:35 - 00002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-08-26 15:29 - 2013-11-07 02:39 - 00000000 ____D C:\Users\Dejv\AppData\Roaming\Dropbox
2020-08-26 15:26 - 2015-06-19 11:05 - 00000000 ____D C:\Users\Dejv\AppData\Local\Dropbox
2020-08-26 15:06 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-08-26 15:01 - 2013-10-30 22:26 - 00000000 ____D C:\Program Files\Microsoft Office 15
2020-08-26 14:53 - 2015-06-25 20:44 - 00000000 ____D C:\Users\Dejv\AppData\Roaming\Skype
2020-08-26 14:51 - 2017-08-06 12:18 - 00003362 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2779282203-1728966096-4171545773-1001
2020-08-26 14:50 - 2016-10-07 21:21 - 00003474 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2020-08-26 14:50 - 2016-10-07 21:21 - 00003350 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2020-08-26 14:49 - 2015-10-19 21:11 - 00002407 _____ C:\Users\Dejv\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-08-26 14:49 - 2015-10-19 21:11 - 00000000 ___RD C:\Users\Dejv\OneDrive
2020-08-26 14:48 - 2013-10-27 14:16 - 00000000 ____D C:\ProgramData\Origin
2020-08-26 14:47 - 2016-11-05 00:16 - 00004076 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2779282203-1728966096-4171545773-1001UA1d236e9730ad38
2020-08-26 14:47 - 2016-11-05 00:16 - 00003700 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2779282203-1728966096-4171545773-1001Core1d236e9714de91
2020-08-26 14:46 - 2013-10-24 23:33 - 00000000 ____D C:\Program Files (x86)\Google
2020-08-22 19:39 - 2013-11-21 22:36 - 00000000 ____D C:\Users\Dejv\AppData\Local\ElevatedDiagnostics
2020-08-22 18:55 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2020-08-22 18:43

==================== End of FRST.txt ============================