Zdravím poslední dobou mam nejaky pomaly počítač a internet taky nejede bráchy počítač i net jedou normálně.dík za pomoc
Logfile of random's system information tool 1.10 (written by random/random)
Run by pchla at 2018-05-17 18:14:22
Microsoft Windows 10 Home
System drive C: has 24 GB (2%) free of 953 GB
Total RAM: 8115 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:14:32, on 17.05.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\ProgramyN\avg\Framework\Common\avguix.exe
C:\Programy\Zoner\Photo Studio 18\Program32\ZPSTray.exe
C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
C:\Program Files\trend micro\pchla.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer15.msn.com/?pc=ACTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=12
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL
O4 - HKCU\..\Run: [AcerPortal] "C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe" startup
O4 - HKCU\..\Run: [OneDrive] "C:\Users\pchla\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [uTorrent] "C:\ProgramyN\Utorrent\utorrent.exe"
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\Programy\Zoner\Photo Studio 18\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~1\MICROS~1\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Poslat do On&eNotu - res://C:\PROGRA~1\MICROS~1\Office16\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
O9 - Extra button: Poslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Poslat do On&eNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: @%CommonProgramFiles%\Microsoft Shared\Office16\oregres.dll,-430 - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: @%CommonProgramFiles%\Microsoft Shared\Office16\oregres.dll,-430 - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AdobeUpdateService - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\ProgramyN\avg\Framework\Common\avgsvca.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FortiClient Service Scheduler (FA_Scheduler) - Fortinet Inc. - C:\ProgramyN\forticlient\scheduler.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Avast SecureLine (SecureLine) - Unknown owner - C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: OpenSSH Authentication Agent (ssh-agent) - Unknown owner - C:\WINDOWS\System32\OpenSSH\ssh-agent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG Technologies CZ, s.r.o. - C:\ProgramyN\avg\AVG PC TuneUp\TuneUpUtilitiesService64.exe
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
--
End of file - 12500 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalService -p
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k appmodel -p -s camsvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\igfxCUIService.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe"
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
"C:\ProgramyN\avg\AVG PC TuneUp\TuneUpUtilitiesService64.exe"
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
c:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
C:\ProgramyN\avg\Framework\Common\avgsvca.exe
"C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe" -r "C:\Users\pchla\AppData\Local\AOP SDK\Acer Infra\acer\SyncAgent" -u S-1-5-21-3163961007-1588310606-1942131564-1001 -c 688 -s 485 -g "C:\ProgramData\acer\CCD"
\??\C:\WINDOWS\system32\conhost.exe 0x4
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s Netman
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s NgcCtnrSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
c:\windows\system32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
"C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
"C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe"
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s upnphost
c:\windows\system32\svchost.exe -k networkservice -p -s TapiSrv
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s RmSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DsSvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s QWAVE
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
dashost.exe {02479da5-312b-4ae5-b807e7fec5766106}
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
dashost.exe {9cf31a3d-7199-4083-ab1cb4af0d818db9}
dashost.exe {465385cf-25e0-4130-b1c3167a20e7f280}
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s wcncsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s BITS
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s NcdAutoSetup
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe"
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\ProgramyN\avg\AVG PC TuneUp\TuneUpUtilitiesApp64.exe" /TUStart /pid:4112
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
sihost.exe
"c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files\Dolby Digital Plus\ddp.exe" -autostart
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1813.286.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"ctfmon.exe"
"C:\Program Files\Windows Defender\MSASCuiL.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\ESET\ESET Security\egui.exe" /hide
/fmw.trayonly
"C:\Programy\Zoner\Photo Studio 18\Program32\ZPSTray.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\WINDOWS\system32\igfxext.exe" -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\OEM\Preload\FubTracking\FubTracking.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s PhoneSvc
"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe" task
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.9226.21485.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\pchla\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\pchla\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=66.0.3359.139 --initial-client-data=0x1d8,0x1dc,0x1e0,0x1d4,0x1e4,0x7ffb76cd3218,0x7ffb76cd3228,0x7ffb76cd3238
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=14824 --on-initialized-event-handle=656 --parent-handle=660 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1440,2856414992336378457,15709457391331240040,131072 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --service-request-channel-token=19EB11073846310B48174753474E6A8F --mojo-platform-channel-handle=1460 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1440,2856414992336378457,15709457391331240040,131072 --service-pipe-token=70B5ECE176798096D0AE6627969C61BC --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=70B5ECE176798096D0AE6627969C61BC --renderer-client-id=3 --mojo-platform-channel-handle=2068 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1440,2856414992336378457,15709457391331240040,131072 --service-pipe-token=F4CEBEEFE11CFC16393406DA1A5FB687 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=F4CEBEEFE11CFC16393406DA1A5FB687 --renderer-client-id=10 --mojo-platform-channel-handle=5348 /prefetch:1
C:\WINDOWS\system32\AUDIODG.EXE 0x5b8
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k swprv
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe218_ Global\UsGthrCtrlFltPipeMssGthrPipe218 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 744 748 756 8192 752
C:\Windows\System32\smartscreen.exe -Embedding
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
"C:\Users\pchla\Downloads\root\RSITx64.exe"
=========Mozilla firefox=========
ProfilePath - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.171 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_171.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1232202.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Skype for Business Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.171 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_29_0_0_171.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31 226984]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31 2165976]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31 161448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31 1512152]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2018-04-12 638872]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2000-01-01 18370560]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2000-01-01 1485312]
"AdobeGCInvoker-1.0"=C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-01-05 315880]
"egui"=C:\Program Files\ESET\ESET Security\ecmds.exe [2018-04-29 178496]
"AvgUi"=C:\ProgramyN\avg\Framework\Common\avguirna.exe [2018-04-17 239192]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AcerPortal"=C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2017-10-02 2437920]
"OneDrive"=C:\Users\pchla\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2018-05-01 1624224]
"uTorrent"=C:\ProgramyN\Utorrent\utorrent.exe [2015-02-22 416168]
"Zoner Photo Studio Autoupdate"=C:\Programy\Zoner\Photo Studio 18\Program32\ZPSTRAY.EXE [2017-01-09 680520]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\acerportal.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AcroRd32.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\carecenter.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\creative cloud.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\databasecompare.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dustdefenderclean.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\excel.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\forticlient_diagnostic_tool.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\gramblr.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\groove.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\lync.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\misc.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msaccess.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msoev.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msotd.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msoxmled.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mspub.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvidia geforce experience.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ocpubmgr.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\onenote.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\outlook.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\powerpnt.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\quickaccess.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\secureline.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\spreadsheetcompare.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\uninstall.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utorrent.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\winword.exe]
"Debugger=""C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-05-17 18:14:22 ----D---- C:\rsit
2018-05-17 18:14:22 ----D---- C:\Program Files\trend micro
2018-05-08 20:38:57 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-05-08 20:38:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-05-08 20:38:51 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-05-08 20:38:50 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-05-08 20:38:47 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2018-05-08 20:38:41 ----A---- C:\WINDOWS\system32\shell32.dll
2018-05-08 20:38:38 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2018-05-08 20:38:35 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-05-08 20:38:34 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-05-08 20:38:33 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-05-08 20:38:31 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-05-08 20:38:30 ----A---- C:\WINDOWS\system32\tquery.dll
2018-05-08 20:38:29 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-05-08 20:38:28 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-05-08 20:38:25 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-05-08 20:38:24 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2018-05-08 20:38:24 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2018-05-08 20:38:24 ----A---- C:\WINDOWS\system32\diagtrack.dll
2018-05-08 20:38:23 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-05-08 20:38:23 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-05-08 20:38:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-05-08 20:38:22 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-05-08 20:38:21 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2018-05-08 20:38:21 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-05-08 20:38:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2018-05-08 20:38:20 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2018-05-08 20:38:20 ----A---- C:\WINDOWS\system32\rdpnano.dll
2018-05-08 20:38:19 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-05-08 20:38:18 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-05-08 20:38:17 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-05-08 20:38:17 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-05-08 20:38:16 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-05-08 20:38:15 ----A---- C:\WINDOWS\system32\comsvcs.dll
2018-05-08 20:38:14 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2018-05-08 20:38:14 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-05-08 20:38:13 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-05-08 20:38:13 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-05-08 20:38:13 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-05-08 20:38:13 ----A---- C:\WINDOWS\system32\oleaut32.dll
2018-05-08 20:38:13 ----A---- C:\WINDOWS\system32\jscript.dll
2018-05-08 20:38:12 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2018-05-08 20:38:12 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-05-08 20:38:12 ----A---- C:\WINDOWS\system32\Spectrum.exe
2018-05-08 20:38:12 ----A---- C:\WINDOWS\system32\rpcss.dll
2018-05-08 20:38:12 ----A---- C:\WINDOWS\system32\PerceptionSimulationExtensions.dll
2018-05-08 20:38:12 ----A---- C:\WINDOWS\system32\gdi32full.dll
2018-05-08 20:38:11 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2018-05-08 20:38:11 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-05-08 20:38:11 ----A---- C:\WINDOWS\system32\dcntel.dll
2018-05-08 20:38:04 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-05-08 20:38:03 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-05-08 20:38:03 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2018-05-08 20:38:03 ----A---- C:\WINDOWS\system32\wer.dll
2018-05-08 20:38:02 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2018-05-08 20:38:01 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-05-08 20:38:01 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2018-05-08 20:38:00 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2018-05-08 20:38:00 ----A---- C:\WINDOWS\system32\winload.exe
2018-05-08 20:38:00 ----A---- C:\WINDOWS\system32\wininet.dll
2018-05-08 20:38:00 ----A---- C:\WINDOWS\system32\vbscript.dll
2018-05-08 20:38:00 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-05-08 20:38:00 ----A---- C:\WINDOWS\system32\StorSvc.dll
2018-05-08 20:38:00 ----A---- C:\WINDOWS\system32\securekernel.exe
2018-05-08 20:38:00 ----A---- C:\WINDOWS\system32\rasapi32.dll
2018-05-08 20:38:00 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-05-08 20:38:00 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-05-08 20:38:00 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-05-08 20:38:00 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-05-08 20:37:59 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2018-05-08 20:37:59 ----A---- C:\WINDOWS\system32\msxml3.dll
2018-05-08 20:37:59 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-05-08 20:37:58 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2018-05-08 20:37:57 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2018-05-08 20:37:57 ----A---- C:\WINDOWS\system32\WerFault.exe
2018-05-08 20:37:57 ----A---- C:\WINDOWS\system32\msfeeds.dll
2018-05-08 20:37:57 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2018-05-08 20:37:56 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2018-05-08 20:37:56 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2018-05-08 20:37:55 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2018-05-08 20:37:55 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-05-08 20:37:55 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-05-08 20:37:54 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-05-08 20:37:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2018-05-08 20:37:54 ----A---- C:\WINDOWS\system32\SharedPCCSP.dll
2018-05-08 20:37:54 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2018-05-08 20:37:53 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2018-05-08 20:37:53 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2018-05-08 20:37:53 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2018-05-08 20:37:53 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2018-05-08 20:37:53 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2018-05-08 20:37:52 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2018-05-08 20:37:52 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2018-05-08 20:37:52 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2018-05-08 20:37:51 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2018-05-08 20:37:51 ----A---- C:\WINDOWS\system32\wcimage.dll
2018-05-08 20:37:51 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-05-08 20:37:51 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2018-05-08 20:37:51 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-05-08 20:37:51 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-05-08 20:37:51 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-05-08 20:37:51 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-05-08 20:37:51 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-05-08 20:37:49 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-05-08 20:37:49 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-05-08 20:37:49 ----A---- C:\WINDOWS\system32\Windows.Cortana.Analog.dll
2018-05-08 20:37:49 ----A---- C:\WINDOWS\system32\itss.dll
2018-05-08 20:37:49 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2018-05-08 20:37:49 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-05-08 20:37:47 ----A---- C:\WINDOWS\SYSWOW64\itss.dll
2018-05-08 20:37:46 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2018-05-08 20:37:46 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2018-05-08 20:37:44 ----A---- C:\WINDOWS\system32\mssprxy.dll
2018-05-08 20:37:44 ----A---- C:\WINDOWS\system32\dbgeng.dll
2018-05-08 20:37:43 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2018-05-08 20:37:42 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-05-08 20:37:40 ----A---- C:\WINDOWS\system32\wuapi.dll
2018-05-08 20:37:39 ----A---- C:\WINDOWS\system32\msi.dll
2018-05-08 20:37:38 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-05-08 20:37:37 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2018-05-08 20:37:37 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-05-08 20:37:37 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-05-08 20:37:37 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs3.dll
2018-05-08 20:37:37 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-05-08 20:37:36 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs2.dll
2018-05-08 20:37:36 ----A---- C:\WINDOWS\system32\mstscax.dll
2018-05-08 20:37:35 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2018-05-08 20:37:35 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs4.dll
2018-05-08 20:37:33 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.win81.dll
2018-05-08 20:37:33 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.th.dll
2018-05-08 20:37:32 ----A---- C:\WINDOWS\SYSWOW64\rdpbase.dll
2018-05-08 20:37:32 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2018-05-08 20:37:32 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.win8rtm.dll
2018-05-08 20:37:32 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs1.dll
2018-05-08 20:37:32 ----A---- C:\WINDOWS\system32\rdpbase.dll
2018-05-08 20:37:32 ----A---- C:\WINDOWS\system32\cdp.dll
2018-05-08 20:37:31 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2018-05-08 20:37:31 ----A---- C:\WINDOWS\system32\wmp.dll
2018-05-08 20:37:31 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2018-05-08 20:37:31 ----A---- C:\WINDOWS\system32\TSpkg.dll
2018-05-08 20:37:30 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2018-05-08 20:37:30 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2018-05-08 20:37:30 ----A---- C:\WINDOWS\system32\tzres.dll
2018-05-08 20:37:30 ----A---- C:\WINDOWS\system32\MixedReality.Broker.dll
2018-05-08 20:37:30 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-05-08 20:37:30 ----A---- C:\WINDOWS\system32\credssp.dll
2018-05-07 20:20:01 ----D---- C:\ProgramData\Microsoft OneDrive
2018-05-05 02:36:34 ----D---- C:\Windows.old
2018-05-05 02:11:02 ----D---- C:\WINDOWS\system32\drivers\wd
2018-05-05 02:01:47 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-05-05 01:54:06 ----ASH---- C:\hiberfil.sys
2018-05-05 01:46:46 ----SD---- C:\Users\pchla\AppData\Roaming\Microsoft
2018-05-05 01:46:46 ----D---- C:\Users\pchla\AppData\Roaming\Macromedia
2018-05-05 01:43:30 ----D---- C:\Program Files\Dolby Digital Plus
2018-05-05 01:42:33 ----D---- C:\ProgramData\USOShared
2018-05-05 01:42:27 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.DLL
2018-05-05 01:42:27 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2018-05-05 01:42:25 ----D---- C:\Intel
2018-05-05 01:42:21 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2018-05-05 01:38:21 ----D---- C:\WINDOWS\Prefetch
2018-05-05 01:37:46 ----D---- C:\WINDOWS\system32\SleepStudy
2018-05-05 01:37:41 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2018-05-05 00:47:23 ----A---- C:\WINDOWS\system32\drivers\epfwwfp.sys
2018-05-05 00:47:23 ----A---- C:\WINDOWS\system32\drivers\epfw.sys
2018-05-05 00:47:23 ----A---- C:\WINDOWS\system32\drivers\ekbdflt.sys
2018-05-05 00:47:23 ----A---- C:\WINDOWS\system32\drivers\ehdrv.sys
2018-05-05 00:47:23 ----A---- C:\WINDOWS\system32\drivers\eelam.sys
2018-05-05 00:47:23 ----A---- C:\WINDOWS\system32\drivers\edevmon.sys
2018-05-05 00:47:23 ----A---- C:\WINDOWS\system32\drivers\eamonm.sys
2018-05-05 00:43:58 ----AS---- C:\WINDOWS\bootstat.dat
2018-05-05 00:43:07 ----D---- C:\WINDOWS\system32\Microsoft
2018-05-05 00:43:07 ----D---- C:\WINDOWS\ServiceProfiles
2018-05-05 00:28:28 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2018-05-05 00:28:28 ----A---- C:\WINDOWS\SYSWOW64\XpsFilt.dll
2018-05-05 00:28:27 ----A---- C:\WINDOWS\SYSWOW64\XPSSHHDR.dll
2018-05-05 00:28:27 ----A---- C:\WINDOWS\system32\XPSSHHDR.dll
2018-05-05 00:28:27 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2018-05-05 00:28:26 ----A---- C:\WINDOWS\system32\XpsFilt.dll
2018-05-05 00:27:52 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2018-05-05 00:27:48 ----D---- C:\Program Files\Reference Assemblies
2018-05-05 00:27:48 ----D---- C:\Program Files\MSBuild
2018-05-05 00:27:48 ----D---- C:\Program Files (x86)\Reference Assemblies
2018-05-05 00:27:48 ----D---- C:\Program Files (x86)\MSBuild
2018-05-05 00:27:17 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2018-05-05 00:27:17 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2018-05-05 00:27:17 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2018-05-05 00:27:16 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2018-05-05 00:27:16 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2018-05-05 00:27:15 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2018-05-04 23:11:05 ----DC---- C:\WINDOWS\Panther
2018-05-04 22:29:03 ----A---- C:\WINDOWS\system32\TURegOpt.exe
2018-05-04 22:24:49 ----SHD---- C:\Config.Msi
2018-04-25 21:07:23 ----D---- C:\Users\pchla\AppData\Roaming\ADBDriverInstaller
2018-04-25 20:26:32 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2018-04-25 20:26:32 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2018-04-25 20:26:32 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2018-04-25 20:26:32 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2018-04-25 20:26:31 ----D---- C:\Program Files (x86)\VulkanRT
2018-04-25 20:25:26 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2018-04-25 20:25:26 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2018-04-25 20:25:26 ----A---- C:\WINDOWS\system32\nvshext.dll
2018-04-25 20:25:26 ----A---- C:\WINDOWS\system32\nvmctray.dll
2018-04-25 20:25:26 ----A---- C:\WINDOWS\system32\nvcpl.dll
2018-04-25 20:25:26 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2018-04-25 20:25:26 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2018-04-25 20:25:08 ----A---- C:\WINDOWS\NvContainerRecovery.bat
2018-04-25 20:24:53 ----D---- C:\WINDOWS\system32\drivers\NVIDIA Corporation
2018-04-25 20:21:43 ----A---- C:\WINDOWS\system32\drivers\nvvhci.sys
2018-04-25 20:21:42 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2018-04-25 20:21:42 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2018-04-25 20:21:42 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2018-04-25 20:21:42 ----A---- C:\WINDOWS\system32\nvopencl.dll
2018-04-25 20:21:40 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2018-04-25 20:21:40 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2018-04-25 20:21:40 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2018-04-25 20:21:40 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2018-04-25 20:21:40 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2018-04-25 20:21:40 ----A---- C:\WINDOWS\SYSWOW64\nvEncMFTH264.dll
2018-04-25 20:21:40 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2018-04-25 20:21:40 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2018-04-25 20:21:40 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2018-04-25 20:21:40 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-04-25 20:21:40 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2018-04-25 20:21:40 ----A---- C:\WINDOWS\system32\nvEncMFTH264.dll
2018-04-25 20:21:40 ----A---- C:\WINDOWS\system32\nvdispgenco6439731.dll
2018-04-25 20:21:40 ----A---- C:\WINDOWS\system32\nvdispco6439731.dll
2018-04-25 20:21:38 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2018-04-25 20:21:38 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2018-04-25 20:21:38 ----A---- C:\WINDOWS\system32\nvcuda.dll
2018-04-25 20:21:34 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2018-04-25 20:21:34 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2018-04-25 20:21:34 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2018-04-25 20:21:34 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2018-04-25 20:21:34 ----A---- C:\WINDOWS\system32\nvapi64.dll
======List of files/folders modified in the last 1 month======
2018-05-17 18:14:22 ----RD---- C:\Program Files
2018-05-17 18:13:56 ----D---- C:\WINDOWS\Temp
2018-05-17 18:11:31 ----D---- C:\WINDOWS\system32\Macromed
2018-05-17 18:11:27 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2018-05-17 18:07:01 ----D---- C:\WINDOWS\AppReadiness
2018-05-17 18:06:46 ----HD---- C:\Program Files\WindowsApps
2018-05-17 18:06:00 ----D---- C:\WINDOWS\system32\sru
2018-05-17 18:05:43 ----D---- C:\ProgramData\NVIDIA
2018-05-17 18:02:40 ----D---- C:\WINDOWS\System32
2018-05-17 18:02:40 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-05-17 18:02:40 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-05-16 22:24:16 ----SHDC---- C:\WINDOWS\Installer
2018-05-16 22:19:19 ----RD---- C:\Program Files (x86)
2018-05-16 22:01:55 ----RD---- C:\WINDOWS\Microsoft.NET
2018-05-16 20:54:30 ----D---- C:\ProgramData\Gramblr
2018-05-16 20:50:39 ----AD---- C:\Program Files\Gramblr
2018-05-16 18:08:45 ----D---- C:\WINDOWS\system32\config
2018-05-15 21:49:53 ----D---- C:\WINDOWS\INF
2018-05-15 19:54:07 ----D---- C:\WINDOWS\WinSxS
2018-05-15 19:51:38 ----D---- C:\WINDOWS\CbsTemp
2018-05-15 19:51:35 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2018-05-14 21:33:51 ----D---- C:\WINDOWS\system32\LogFiles
2018-05-14 19:50:11 ----D---- C:\WINDOWS\system32\drivers\UMDF
2018-05-11 18:44:20 ----D---- C:\WINDOWS\Logs
2018-05-10 20:15:48 ----RD---- C:\WINDOWS\assembly
2018-05-10 20:13:22 ----D---- C:\WINDOWS\system32\DriverStore
2018-05-10 18:32:58 ----D---- C:\WINDOWS\SysWOW64
2018-05-10 18:26:36 ----D---- C:\WINDOWS\LiveKernelReports
2018-05-09 18:59:33 ----D---- C:\WINDOWS\system32\WDI
2018-05-09 18:56:35 ----D---- C:\WINDOWS\system32\catroot2
2018-05-08 22:46:47 ----D---- C:\WINDOWS\TextInput
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\zu-ZA
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\yo-NG
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\xh-ZA
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\wo-SN
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\vi-VN
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\uz-Latn-UZ
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\ur-PK
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\ug-CN
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\tt-RU
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\tn-ZA
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\tk-TM
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\ti-ET
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\tg-Cyrl-TJ
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\te-IN
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\ta-IN
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\sw-KE
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-RS
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-BA
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\sq-AL
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\si-LK
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\setup
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\sd-Arab-PK
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\rw-RW
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\quz-PE
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\quc-Latn-GT
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\prs-AF
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\pa-IN
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\pa-Arab-PK
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\or-IN
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\nso-ZA
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\nn-NO
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\ne-NP
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\mt-MT
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\ms-MY
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\mr-IN
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\mn-MN
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\ml-IN
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\mk-MK
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\mi-NZ
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\lo-LA
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\lb-LU
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\ky-KG
2018-05-08 22:46:47 ----D---- C:\WINDOWS\SYSWOW64\ku-Arab-IQ
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\kok-IN
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\kn-IN
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\km-KH
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\kk-KZ
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\ka-GE
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\is-IS
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\ig-NG
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\id-ID
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\chr-CHER-US
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\hy-AM
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\ha-Latn-NG
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\gu-IN
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\gd-GB
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\ga-IE
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\fil-PH
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\fa-IR
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\en-US
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\cy-GB
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\ca-ES-valencia
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\bs-Latn-BA
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\bn-IN
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\bn-BD
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\be-BY
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\az-Latn-AZ
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\as-IN
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\am-ET
2018-05-08 22:46:46 ----D---- C:\WINDOWS\SYSWOW64\af-ZA
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\zu-ZA
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\yo-NG
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\xh-ZA
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\wo-SN
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\vi-VN
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\ur-PK
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\ug-CN
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\tt-RU
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\tn-ZA
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\tk-TM
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\ti-ET
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\te-IN
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\ta-in
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\sw-KE
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\sq-AL
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\si-lk
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\setup
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\rw-RW
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\quz-PE
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2018-05-08 22:46:45 ----D---- C:\WINDOWS\system32\prs-AF
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\pa-IN
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\or-IN
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\oobe
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\nso-ZA
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\nn-NO
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\ne-NP
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\mt-MT
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\ms-MY
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\mr-IN
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\mn-MN
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\ml-IN
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\mk-MK
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\mi-NZ
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\lo-LA
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\lb-LU
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\ky-KG
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\kok-IN
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\kn-IN
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\km-KH
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\kk-KZ
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\ka-GE
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\is-IS
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\ig-NG
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\id-ID
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\chr-CHER-US
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\hy-AM
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\gu-IN
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\gd-GB
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\ga-IE
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\fil-PH
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\fa-IR
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\en-US
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\cy-GB
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\cs-CZ
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\Boot
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\bn-IN
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\bn-BD
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\be-BY
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\as-IN
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\appraiser
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\am-et
2018-05-08 22:46:44 ----D---- C:\WINDOWS\system32\af-ZA
2018-05-08 22:46:35 ----D---- C:\WINDOWS\Provisioning
2018-05-08 22:46:34 ----D---- C:\WINDOWS\bcastdvr
2018-05-08 22:46:34 ----D---- C:\WINDOWS\apppatch
2018-05-08 22:46:34 ----D---- C:\Program Files\Windows Photo Viewer
2018-05-08 22:46:34 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2018-05-08 22:46:32 ----D---- C:\WINDOWS\system32\drivers
2018-05-08 20:37:23 ----D---- C:\WINDOWS\system32\MRT
2018-05-08 20:31:19 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2018-05-08 20:30:41 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-05-08 20:30:09 ----SHD---- C:\System Volume Information
2018-05-08 20:29:40 ----D---- C:\WINDOWS\system32\restore
2018-05-08 19:22:01 ----SD---- C:\ProgramData\Microsoft
2018-05-07 20:25:14 ----RD---- C:\WINDOWS\PrintDialog
2018-05-07 20:20:01 ----HD---- C:\ProgramData
2018-05-07 20:17:43 ----D---- C:\WINDOWS\appcompat
2018-05-07 20:16:21 ----HD---- C:\ProgramData\Common Files
2018-05-05 02:37:00 ----D---- C:\WINDOWS\system32\Tasks_Migrated
2018-05-05 02:36:51 ----RSD---- C:\WINDOWS\Fonts
2018-05-05 02:36:51 ----D---- C:\WINDOWS\system32\WinBioDatabase
2018-05-05 02:36:50 ----D---- C:\WINDOWS\SYSWOW64\WCN
2018-05-05 02:36:50 ----D---- C:\WINDOWS\system32\drivers\etc
2018-05-05 02:36:49 ----D---- C:\WINDOWS\SYSWOW64\drivers
2018-05-05 02:36:49 ----D---- C:\WINDOWS\system32\WCN
2018-05-05 02:36:49 ----D---- C:\WINDOWS\system32\spool
2018-05-05 02:36:49 ----AD---- C:\WINDOWS\SYSWOW64\Adobe
2018-05-05 02:36:48 ----D---- C:\WINDOWS\system32\OEM
2018-05-05 02:36:46 ----D---- C:\WINDOWS\ShellNew
2018-05-05 02:36:46 ----D---- C:\WINDOWS\oem
2018-05-05 02:36:39 ----D---- C:\WINDOWS\IME
2018-05-05 02:36:39 ----D---- C:\WINDOWS\Help
2018-05-05 02:36:39 ----D---- C:\WINDOWS\cs
2018-05-05 02:36:39 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2018-05-05 02:36:38 ----D---- C:\Program Files\Microsoft.NET
2018-05-05 02:36:38 ----D---- C:\Program Files\Intel
2018-05-05 02:36:38 ----D---- C:\Program Files\Common Files\system
2018-05-05 02:36:38 ----D---- C:\Program Files (x86)\Microsoft.NET
2018-05-05 02:36:38 ----D---- C:\Program Files (x86)\Common Files
2018-05-05 02:36:37 ----D---- C:\Program Files\Common Files\microsoft shared
2018-05-05 02:36:37 ----D---- C:\Program Files\Common Files
2018-05-05 02:36:36 ----D---- C:\WINDOWS\system32\Recovery
2018-05-05 02:36:31 ----D---- C:\WINDOWS\Setup
2018-05-05 02:12:11 ----D---- C:\WINDOWS\SoftwareDistribution
2018-05-05 02:11:35 ----D---- C:\Program Files\windows nt
2018-05-05 02:11:03 ----D---- C:\WINDOWS\Tasks
2018-05-05 02:11:03 ----D---- C:\WINDOWS\system32\Tasks
2018-05-05 02:10:10 ----D---- C:\Windows
2018-05-05 02:09:51 ----D---- C:\WINDOWS\Registration
2018-05-05 02:01:21 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2018-05-05 01:58:59 ----D---- C:\WINDOWS\system32\wbem
2018-05-05 01:48:25 ----D---- C:\WINDOWS\system32\CodeIntegrity
2018-05-05 01:46:45 ----RD---- C:\Users
2018-05-05 01:44:13 ----D---- C:\Program Files\NVIDIA Corporation
2018-05-05 01:43:35 ----D---- C:\WINDOWS\SYSWOW64\sda
2018-05-05 01:42:49 ----D---- C:\WINDOWS\system32\DAX2
2018-05-05 01:42:44 ----D---- C:\ProgramData\USOPrivate
2018-05-05 01:42:38 ----A---- C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2018-05-05 01:42:36 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2018-05-05 01:39:16 ----SHD---- C:\Recovery
2018-05-05 00:47:34 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2018-05-05 00:47:34 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2018-05-05 00:47:34 ----D---- C:\WINDOWS\SYSWOW64\oobe
2018-05-05 00:47:33 ----SD---- C:\WINDOWS\SYSWOW64\F12
2018-05-05 00:47:33 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2018-05-05 00:47:27 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2018-05-05 00:47:27 ----D---- C:\WINDOWS\system32\slmgr
2018-05-05 00:47:27 ----D---- C:\WINDOWS\system32\sk-SK
2018-05-05 00:47:24 ----SD---- C:\WINDOWS\system32\F12
2018-05-05 00:45:00 ----D---- C:\WINDOWS\PolicyDefinitions
2018-05-05 00:44:47 ----D---- C:\Program Files (x86)\Windows Media Player
2018-05-05 00:44:47 ----D---- C:\Program Files (x86)\Windows Mail
2018-05-05 00:44:46 ----D---- C:\Program Files\Windows Media Player
2018-05-05 00:44:46 ----D---- C:\Program Files\Windows Mail
2018-05-05 00:44:46 ----D---- C:\Program Files\Realtek
2018-05-05 00:41:01 ----D---- C:\WINDOWS\SYSWOW64\winrm
2018-05-05 00:41:01 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2018-05-05 00:41:00 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2018-05-05 00:41:00 ----D---- C:\WINDOWS\SYSWOW64\en
2018-05-05 00:41:00 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2018-05-05 00:40:59 ----D---- C:\WINDOWS\system32\winrm
2018-05-05 00:40:59 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2018-05-05 00:40:59 ----D---- C:\WINDOWS\system32\migwiz
2018-05-05 00:40:58 ----D---- C:\WINDOWS\system32\en
2018-05-05 00:40:57 ----SD---- C:\WINDOWS\system32\DiagSvcs
2018-05-05 00:40:57 ----D---- C:\WINDOWS\system32\drivers\en-US
2018-05-05 00:40:57 ----D---- C:\WINDOWS\servicing
2018-05-05 00:40:55 ----D---- C:\WINDOWS\en-US
2018-05-05 00:40:55 ----D---- C:\Program Files\Windows Defender
2018-05-05 00:40:55 ----D---- C:\Program Files (x86)\Windows Defender
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\zh-TW
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\zh-CN
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\uk-UA
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\tr-TR
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\th-TH
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\sv-SE
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-RS
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\sl-SI
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\ru-RU
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\ro-RO
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\pt-PT
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\pt-BR
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\pl-PL
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\nb-NO
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\lv-LV
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\lt-LT
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\ko-KR
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\ja-JP
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\it-IT
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\hu-HU
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\hr-HR
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\he-IL
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\fr-FR
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\fr-CA
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\fi-FI
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\et-EE
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\es-MX
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\es-ES
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\el-GR
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\de-DE
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\da-DK
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\bg-BG
2018-05-05 00:28:33 ----D---- C:\WINDOWS\SYSWOW64\ar-SA
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\zh-TW
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\zh-CN
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\uk-UA
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\tr-TR
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\th-TH
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\sv-SE
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\sl-SI
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\ru-RU
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\ro-RO
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\pt-PT
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\pt-BR
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\pl-PL
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\nl-NL
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\nb-NO
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\lv-LV
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\lt-LT
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\ko-KR
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\ja-jp
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\it-IT
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\hu-HU
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\hr-HR
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\he-IL
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\fr-FR
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\fr-CA
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\fi-FI
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\et-EE
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\es-MX
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\es-ES
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\en-GB
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\el-GR
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\de-DE
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\da-DK
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\bg-BG
2018-05-05 00:28:33 ----D---- C:\WINDOWS\system32\ar-SA
2018-05-05 00:27:52 ----D---- C:\WINDOWS\SYSWOW64\MUI
2018-05-05 00:27:52 ----D---- C:\WINDOWS\system32\MUI
2018-05-04 22:28:27 ----AD---- C:\ProgramData\Avg
2018-05-04 22:27:43 ----D---- C:\ProgramyN
2018-05-04 22:24:58 ----D---- C:\Program Files (x86)\AVG
2018-05-01 23:22:36 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2018-04-25 20:25:02 ----D---- C:\ProgramData\NVIDIA Corporation
2018-04-25 20:25:02 ----D---- C:\Program Files (x86)\NVIDIA Corporation
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2018-04-29 110432]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2018-04-12 58272]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\WINDOWS\system32\drivers\SgrmAgent.sys [2018-04-12 63896]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-04-12 39424]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-04-12 60320]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2018-04-29 137928]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2018-04-29 196112]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2018-04-29 82816]
R1 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2018-04-29 108320]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-04-12 55808]
R1 FortiFilter;@oem84.inf,%FtNdisLwfService_Desc%;FortiClient NDIS 6.3 Packet Filter Service; C:\WINDOWS\system32\DRIVERS\FortiFilter.sys [2018-03-06 45792]
R1 FortiShield;FortiShield; C:\WINDOWS\system32\drivers\FortiShield.sys [2018-03-06 72272]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-04-12 8192]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-04-12 414208]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2018-04-29 50136]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2018-04-12 43520]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2016-08-29 605592]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\system32\DRIVERS\BTHUSB.sys [2018-04-12 85504]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-04-12 60320]
R3 dtlitescsibus;@oem38.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2016-03-24 30264]
R3 dtliteusbbus;@oem52.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2016-03-24 47672]
R3 ft_vnic;@oem54.inf,%FTNT.Service.DispName%;Fortinet Virtual Miniport (NDIS 6.30); C:\WINDOWS\System32\drivers\ftvnic.sys [2018-03-06 71928]
R3 ftsvnic;@oem34.inf,%VER_ADAPTER_STR%;Fortinet SSL VPN Virtual Ethernet Adapter; C:\WINDOWS\System32\drivers\ftsvnic.sys [2018-03-06 66600]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-12-19 7969760]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2000-01-01 5739520]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\System32\drivers\k57nd60a.sys [2018-04-12 446464]
R3 LMDriver;@oem80.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\WINDOWS\System32\drivers\LMDriver.sys [2015-07-09 21344]
R3 MEIx64;@oem35.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2015-06-30 184096]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_8146495fad455ff4\nvlddmkm.sys [2018-04-23 17161872]
R3 nvvad_WaveExtensible;@oem61.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-12-15 59240]
R3 nvvhci;@oem32.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2018-04-22 58816]
R3 pppop;@oem29.inf,%VER_ADAPTER_STR%;PPPoP WAN Adapter; C:\WINDOWS\System32\drivers\pppop64.sys [2018-03-06 54344]
R3 Qcamain10x64;@netathr10x.inf,%ATHR.Service.DispName%;Qualcomm Extensible Wireless LAN 11AC device driver; C:\WINDOWS\System32\drivers\Qcamain10x64.sys [2018-04-12 2344448]
R3 RadioShim;@oem80.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\WINDOWS\System32\drivers\RadioShim.sys [2015-07-09 14688]
R3 RTSUER;@oem8.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2000-01-01 420832]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-04-12 38304]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2018-02-28 15872]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-04-12 321432]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-04-12 885144]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-04-12 145816]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-04-12 124312]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-04-12 128408]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-04-12 75160]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-04-12 82328]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-04-12 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-04-12 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-04-12 39840]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2018-04-12 128416]
S1 FortiFW;FortiFW; C:\WINDOWS\system32\drivers\FortiFW2.sys [2018-03-06 37456]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-04-12 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-04-12 18432]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2018-04-12 92056]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\system32\DRIVERS\BTHport.sys [2018-04-12 1069056]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-04-12 39936]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-04-12 123392]
S3 fortiapd;fortiapd; C:\WINDOWS\system32\drivers\fortiapd.sys [2018-03-06 18000]
S3 Fortips;Fortips; C:\WINDOWS\system32\drivers\fortips.sys [2018-03-06 147536]
S3 fortisniff;fortisniff; C:\WINDOWS\system32\drivers\fortisniff2.sys [2018-03-06 111184]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-04-12 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-04-12 50592]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2018-04-12 73632]
S3 hw_usbdev;HUAWEISERSP; C:\WINDOWS\System32\drivers\hw_usbdev.sys [2017-07-26 116864]
S3 HWHandSet;HWUSBSERSPTMO; C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [2017-07-26 226560]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-04-12 27136]
S3 hwusb_cdcacm;hwusb_cdcacm; C:\WINDOWS\System32\drivers\hw_cdcacm.sys [2017-07-26 127360]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-04-12 1836952]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-04-12 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-04-12 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-04-12 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-04-12 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-04-12 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-04-12 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-04-12 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-04-12 38912]
S3 IntcDAud;@oem77.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2016-05-12 481768]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-04-12 32256]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-04-12 119808]
S3 ISODrive;ISO CD-ROM Device Driver; \??\C:\ProgramyN\iso\UltraISO\drivers\ISODrv64.sys [2010-01-29 115600]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-04-12 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-04-12 56736]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-04-12 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-04-12 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-04-12 175104]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-04-12 104448]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2018-03-14 31168]
S3 NvStUSB;NVIDIA Stereoscopic 3D USB driver; C:\WINDOWS\System32\drivers\nvstusb.sys [2017-05-18 486936]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2018-04-12 105984]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-04-12 16896]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2018-04-12 945560]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-04-12 104448]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-04-12 33176]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-04-12 33184]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeUpdateService;AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2017-07-13 814688]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2018-01-05 2319848]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2016-08-31 338312]
R2 avgsvc;AVG Service; C:\ProgramyN\avg\Framework\Common\avgsvca.exe [2018-04-17 1428264]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2017-09-26 2278688]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CDPUserSvc_bbb7e3f;Uživatelská služba platformy připojených zařízení_bbb7e3f; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2018-04-29 2240264]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2017-07-26 192200]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-12-19 373720]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-03-14 522688]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2018-04-22 520128]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2018-03-14 469952]
R2 OneSyncSvc_bbb7e3f;Hostitel synchronizace_bbb7e3f; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 SecureLine;Avast SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [2017-07-15 592392]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-04-12 761440]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\WINDOWS\system32\SgrmBroker.exe [2018-04-12 163336]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2015-05-14 2573568]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2018-05-05 43648]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 Intel(R) Security Assist;Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [2015-05-19 335872]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 PimIndexMaintenanceSvc_bbb7e3f;Data kontaktů_bbb7e3f; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 FA_Scheduler;FortiClient Service Scheduler; C:\ProgramyN\forticlient\scheduler.exe [2018-03-06 128832]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-15 153168]
S2 isaHelperSvc;Intel(R) Security Assist Helper; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [2015-05-19 7680]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-05-17 272384]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService_bbb7e3f;Uživatelská služba pro GameDVR a vysílání her_bbb7e3f; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService_bbb7e3f;Služba pro podporu uživatelů Bluetooth_bbb7e3f; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-12-19 301528]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc_bbb7e3f;DevicePicker_bbb7e3f; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc_bbb7e3f;Tok zařízení_bbb7e3f; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-04-12 90624]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-15 153168]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2015-05-22 881152]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService_bbb7e3f;Služba zasílání zpráv_bbb7e3f; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-03-14 522688]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-07-31 242864]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc_bbb7e3f;PrintWorkflow_bbb7e3f; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-04-12 1273344]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-02-09 83984]
S4 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
S4 gramblrclient;Windows Connectivity Manager for Gramblr; C:\Program Files\Gramblr\gramblr.exe [2018-05-16 12288592]
S4 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2015-07-07 223008]
S4 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2015-07-07 415520]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-03-16 194512]
S4 QALSvc;Quick Access Local Service; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [2015-07-17 395616]
S4 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2015-07-17 450400]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
pomaly počitač,pomalý internet
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118240
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomaly počitač,pomalý internet
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomaly počitač,pomalý internet
díky
# -------------------------------
# Malwarebytes AdwCleaner 7.1.1.0
# -------------------------------
# Build: 04-27-2018
# Database: 2018-05-14.1
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 05-17-2018
# Duration: 00:00:13
# OS: Windows 10 Home
# Scanned: 40858
# Detected: 42
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
Adware.pokki C:\Users\pchla\AppData\Local\Host App Service
PUP.Optional.Legacy C:\Users\Public\Documents\Downloaded Installers
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
Adware.pokki HKCU\Software\Host App Service
PUP.Optional.Amazon1Button HKU\S-1-5-18\Software\APPDATALOW\SOFTWARE\AMAZON\Amazon1ButtonApp
PUP.Optional.Amazon1Button HKU\.DEFAULT\Software\APPDATALOW\SOFTWARE\AMAZON\Amazon1ButtonApp
PUP.Optional.Amazon1Button HKLM\Software\Wow6432Node\APPDATALOW\SOFTWARE\AMAZON\Amazon1ButtonApp
PUP.Optional.Amazon1Button HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\F5415905096AA504A9FB967C7A138943
PUP.Optional.Amazon1Button HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION|Amazon1ButtonTaskbarApp.exe
PUP.Optional.Amazon1Button HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION|Amazon1ButtonTaskbarApp.exe
PUP.Optional.Amazon1Button HKLM\Software\Classes\Amazon1ButtonRuntime.Amazon1ButtonRuntime
PUP.Optional.Amazon1Button HKLM\Software\Classes\Amazon1ButtonRuntime.AmazonRuntimeServer
PUP.Optional.Amazon1Button HKLM\Software\Classes\Amazon1ButtonBrowserHelper.Amazon1ButtonBHO
PUP.Optional.Assistant HKLM\System\CurrentControlSet\Services\EventLog\Application\Amazon Assistant Service
PUP.Optional.Conduit HKCU\Software\Conduit
PUP.Optional.Legacy HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}
PUP.Optional.Legacy HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
PUP.Optional.Legacy HKLM\Software\Classes\Installer\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
PUP.Optional.Legacy HKLM\Software\Classes\Installer\Features\A38C15B2D5649AE4C9CDE19DE50DA96C
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\AppID\OverlayIcon.DLL
PUP.Optional.Legacy HKLM\SOFTWARE\Classes\AppID\OverlayIcon.DLL
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\TypeLib\{EB2BEAEF-150C-4DE4-9D09-F16403C22769}
PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{EB2BEAEF-150C-4DE4-9D09-F16403C22769}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}
PUP.Optional.Legacy HKLM\Software\Classes\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\TypeLib\{ADF1FA2A-6EAA-4A97-A55F-3C8B92843EF5}
PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{ADF1FA2A-6EAA-4A97-A55F-3C8B92843EF5}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{7BCA6879-A9F8-47DE-AE05-F5CE7EA3A474}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{7BCA6879-A9F8-47DE-AE05-F5CE7EA3A474}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{6557DB6C-EFE1-45AC-92A6-FBB1554B7502}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
PUP.Optional.Legacy HKLM\Software\Classes\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{BAC72C85-CEC6-4B86-AF06-FA20C259FAB8}
PUP.Optional.Legacy HKLM\Software\Classes\CLSID\{BAC72C85-CEC6-4B86-AF06-FA20C259FAB8}
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\DOMStorage\titan.service.amazonbrowserapp.com
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\DOMStorage\analytics.app.amazonbrowserapp.com
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\DOMStorage\amazonbrowserapp.com
PUP.Optional.SlimCleanerPlus HKCU\Software\SlimWare Utilities Inc
PUP.Optional.SlimCleanerPlus HKLM\Software\Wow6432Node\SlimWare Utilities Inc
***** [ Chromium (and derivatives) ] *****
PUP.Optional.Unseen iicapmagmhahddefgokbabbgieiogjop
***** [ Chromium URLs ] *****
PUP.Optional.Legacy Slunečnice
PUP.Optional.SofTonicAssistant Softonic EN
***** [ Firefox (and derivatives) ] *****
PUP.Optional.AmazonTB __MSG_appName__
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
# -------------------------------
# Malwarebytes AdwCleaner 7.1.1.0
# -------------------------------
# Build: 04-27-2018
# Database: 2018-05-14.1
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 05-17-2018
# Duration: 00:00:13
# OS: Windows 10 Home
# Scanned: 40858
# Detected: 42
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
Adware.pokki C:\Users\pchla\AppData\Local\Host App Service
PUP.Optional.Legacy C:\Users\Public\Documents\Downloaded Installers
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
Adware.pokki HKCU\Software\Host App Service
PUP.Optional.Amazon1Button HKU\S-1-5-18\Software\APPDATALOW\SOFTWARE\AMAZON\Amazon1ButtonApp
PUP.Optional.Amazon1Button HKU\.DEFAULT\Software\APPDATALOW\SOFTWARE\AMAZON\Amazon1ButtonApp
PUP.Optional.Amazon1Button HKLM\Software\Wow6432Node\APPDATALOW\SOFTWARE\AMAZON\Amazon1ButtonApp
PUP.Optional.Amazon1Button HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\F5415905096AA504A9FB967C7A138943
PUP.Optional.Amazon1Button HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION|Amazon1ButtonTaskbarApp.exe
PUP.Optional.Amazon1Button HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION|Amazon1ButtonTaskbarApp.exe
PUP.Optional.Amazon1Button HKLM\Software\Classes\Amazon1ButtonRuntime.Amazon1ButtonRuntime
PUP.Optional.Amazon1Button HKLM\Software\Classes\Amazon1ButtonRuntime.AmazonRuntimeServer
PUP.Optional.Amazon1Button HKLM\Software\Classes\Amazon1ButtonBrowserHelper.Amazon1ButtonBHO
PUP.Optional.Assistant HKLM\System\CurrentControlSet\Services\EventLog\Application\Amazon Assistant Service
PUP.Optional.Conduit HKCU\Software\Conduit
PUP.Optional.Legacy HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}
PUP.Optional.Legacy HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
PUP.Optional.Legacy HKLM\Software\Classes\Installer\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
PUP.Optional.Legacy HKLM\Software\Classes\Installer\Features\A38C15B2D5649AE4C9CDE19DE50DA96C
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\AppID\OverlayIcon.DLL
PUP.Optional.Legacy HKLM\SOFTWARE\Classes\AppID\OverlayIcon.DLL
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\TypeLib\{EB2BEAEF-150C-4DE4-9D09-F16403C22769}
PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{EB2BEAEF-150C-4DE4-9D09-F16403C22769}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}
PUP.Optional.Legacy HKLM\Software\Classes\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\TypeLib\{ADF1FA2A-6EAA-4A97-A55F-3C8B92843EF5}
PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{ADF1FA2A-6EAA-4A97-A55F-3C8B92843EF5}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{7BCA6879-A9F8-47DE-AE05-F5CE7EA3A474}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{7BCA6879-A9F8-47DE-AE05-F5CE7EA3A474}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{6557DB6C-EFE1-45AC-92A6-FBB1554B7502}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
PUP.Optional.Legacy HKLM\Software\Classes\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{BAC72C85-CEC6-4B86-AF06-FA20C259FAB8}
PUP.Optional.Legacy HKLM\Software\Classes\CLSID\{BAC72C85-CEC6-4B86-AF06-FA20C259FAB8}
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\DOMStorage\titan.service.amazonbrowserapp.com
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\DOMStorage\analytics.app.amazonbrowserapp.com
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\DOMStorage\amazonbrowserapp.com
PUP.Optional.SlimCleanerPlus HKCU\Software\SlimWare Utilities Inc
PUP.Optional.SlimCleanerPlus HKLM\Software\Wow6432Node\SlimWare Utilities Inc
***** [ Chromium (and derivatives) ] *****
PUP.Optional.Unseen iicapmagmhahddefgokbabbgieiogjop
***** [ Chromium URLs ] *****
PUP.Optional.Legacy Slunečnice
PUP.Optional.SofTonicAssistant Softonic EN
***** [ Firefox (and derivatives) ] *****
PUP.Optional.AmazonTB __MSG_appName__
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
Re: pomaly počitač,pomalý internet
po čištění a opravách zbylo:
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
PUP.Optional.AmazonTB __MSG_appName__
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
PUP.Optional.AmazonTB __MSG_appName__
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
-
Rudy
- Site Admin
- Příspěvky: 118240
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomaly počitač,pomalý internet
OK. Teď dejte log FRST: https://forum.viry.cz/viewtopic.php?f=13&t=152707 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomaly počitač,pomalý internet
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16.05.2018 01
Ran by pchla (administrator) on PCNTB (17-05-2018 20:16:45)
Running from C:\Users\pchla\Desktop
Loaded Profiles: pchla (Available Profiles: pchla)
Platform: Windows 10 Home Version 1803 17134.48 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Fortinet Inc.) C:\ProgramyN\forticlient\scheduler.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(AVG Technologies CZ, s.r.o.) C:\ProgramyN\avg\AVG PC TuneUp\TuneUpUtilitiesService64.exe
() C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe
(AVG Technologies CZ, s.r.o.) C:\ProgramyN\avg\Framework\Common\avgsvca.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Fortinet Inc.) C:\ProgramyN\forticlient\FCDBLog.exe
(Dolby Laboratories Inc.) C:\Program Files\Dolby Digital Plus\ddp.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(FortiClient System Helper) C:\ProgramyN\forticlient\x64\FCHelper64.exe
(Fortinet Inc.) C:\ProgramyN\forticlient\FortiTray.exe
(Fortinet Inc.) C:\ProgramyN\forticlient\FortiESNAC.exe
(Fortinet Inc.) C:\ProgramyN\forticlient\FortiSSLVPNdaemon.exe
(AVG Technologies CZ, s.r.o.) C:\ProgramyN\avg\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1813.286.0_x64__kzf8qxf38zg5c\SkypeHost.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17122.16211.1000_x64__8wekyb3d8bbwe\Video.UI.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(ESET) C:\Program Files\ESET\ESET Security\egui.exe
(AVG Technologies CZ, s.r.o.) C:\ProgramyN\avg\Framework\Common\avguix.exe
(ZONER software) C:\Programy\Zoner\Photo Studio 18\Program32\ZPSTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18031.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.9226.21485.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\pchla\Desktop\FRSTLauncher.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18370560 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [315880 2018-01-05] (Adobe Systems, Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [178496 2018-04-29] (ESET)
HKLM\...\Run: [AvgUi] => C:\ProgramyN\avg\Framework\Common\avguirna.exe [239192 2018-04-17] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-3163961007-1588310606-1942131564-1001\...\Run: [AcerPortal] => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2437920 2017-10-02] (Acer)
HKU\S-1-5-21-3163961007-1588310606-1942131564-1001\...\Run: [uTorrent] => C:\ProgramyN\Utorrent\utorrent.exe [416168 2015-02-22] (BitTorrent, Inc.)
HKU\S-1-5-21-3163961007-1588310606-1942131564-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Programy\Zoner\Photo Studio 18\Program32\ZPSTRAY.EXE [680520 2017-01-09] (ZONER software)
IFEO\acerportal.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\AcroRd32.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\carecenter.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\creative cloud.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\databasecompare.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\dustdefenderclean.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\excel.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\forticlient_diagnostic_tool.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\gramblr.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\groove.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\lync.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\misc.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msaccess.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msoev.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msotd.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msoxmled.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\mspub.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\nvidia geforce experience.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\ocpubmgr.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\onenote.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\outlook.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\powerpnt.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\quickaccess.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\secureline.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\spreadsheetcompare.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\uninstall.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\utorrent.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\winword.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 10.0.1.2
Tcpip\..\Interfaces\{13583b73-3290-4839-8709-60ba3abf0290}: [DhcpNameServer] 192.168.1.1 10.0.1.2
Tcpip\..\Interfaces\{f8f4342d-f266-45c4-b5ca-2bba42b50f44}: [DhcpNameServer] 192.168.1.1 10.0.1.2
Internet Explorer:
==================
HKU\S-1-5-21-3163961007-1588310606-1942131564-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=12
HKU\S-1-5-21-3163961007-1588310606-1942131564-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer15.msn.com/?pc=ACTE
SearchScopes: HKU\S-1-5-21-3163961007-1588310606-1942131564-1001 -> DefaultScope {5411EA71-F23B-4885-B012-F0730D3F520A} URL =
SearchScopes: HKU\S-1-5-21-3163961007-1588310606-1942131564-1001 -> {052C3605-06A9-4F12-90F1-CD8ADB3AE6A8} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 1rkmlavb.default
FF ProfilePath: C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default [2018-05-17]
FF user.js: detected! => C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\user.js [2017-07-16]
FF Homepage: Mozilla\Firefox\Profiles\1rkmlavb.default -> hxxp://www.seznam.cz/
FF NewTabOverride: Mozilla\Firefox\Profiles\1rkmlavb.default -> Enabled: {ea614400-e918-4741-9a97-7a972ff7c30b}
FF Extension: (Amazon Assistant for Firefox) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\abb@amazon.com.xpi [2018-05-15]
FF Extension: (Firebug) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\firebug@software.joehewitt.com.xpi [2017-07-24] [Legacy]
FF Extension: (Youtube To MP3 PRO converter) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\jid0-irAmugmQgdURBSCIFZAcjR8ZQMg@jetpack.xpi [2017-07-24] [Legacy]
FF Extension: (Translate This!) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\jid0-k75TfRGfOXPHfEZmJ9cKu5eCgLc@jetpack.xpi [2017-07-24] [Legacy]
FF Extension: (العربية Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-ar@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Български Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-bg@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Dansk (da) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-da@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Deutsch (DE) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-de@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Ελληνικά Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-el@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (English (US) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Español (España) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-es-ES@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Estonian Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-et@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Finnish Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-fi@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Français Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Hebrew (IL) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-he@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Magyar (HU) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-hu@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Italiano (IT) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-it@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Japanese Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-ja@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Korean (KR) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-ko@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Lietuvių Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-lt@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Norsk bokmål (NO) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-nb-NO@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Polski Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-pl@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (FlashGot) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2017-07-24] [Legacy]
FF Extension: (Video DownloadHelper) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-03-18]
FF Extension: (wmlbrowser) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\{c4dc572a-3295-40eb-b30f-b54aa4cdc4b7}.xpi [2017-07-24] [Legacy]
FF Extension: (Adblock Plus) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-05-15]
FF Extension: (Seznam doplněk - Email) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}.xpi [2018-05-15]
FF Extension: (Amazon 1Button App for Firefox) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb@amazon.com [2017-07-15] [Legacy] [not signed]
FF Extension: (العربية Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-ar@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (български Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-bg@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Czech (CZ) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-cs@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Dansk (da) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-da@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Deutsch (DE) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-de@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Greek (GR) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-el@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (English (US) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-en-US@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Español (España) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-es-ES@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Estonian Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-et@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Finnish Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fi@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Français Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Hebrew (IL) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-he@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Magyar (HU) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-hu@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Italiano (IT) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-it@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Japanese Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-ja@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Korean (KR) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-ko@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Lietuvių Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-lt@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Norsk bokmål (NO) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-nb-NO@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Nederlands (NL) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-nl@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Polski Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-pl@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Português Brasileiro Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-pt-BR@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Português Portugal Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-pt-PT@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Russian (RU) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-ru@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Slovak (SK) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-sk@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Slovenski jezik Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-sl@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (српски (sr) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-sr@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Svenska (SE) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-sv-SE@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Thai Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-th@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Türkçe (TR) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-tr@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Ukrainian (UA) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-uk@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Chinese Simplified (zh-CN) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-zh-CN@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Traditional Chinese (zh-TW) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-zh-TW@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_29_0_0_171.dll [2018-05-17] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-08-04] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_171.dll [2018-05-17] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1232202.dll [2018-03-09] (Adobe Systems, Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-22] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-08-04] (Adobe Systems)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR DefaultSearchURL: Default -> hxxp://www.google.cz/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> google.cz_
CHR Profile: C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default [2018-05-17]
CHR Extension: (Překladač Google) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2017-10-19]
CHR Extension: (Prezentace) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Liverpool F.C. Theme) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\akiecdapainjgeicpihlmhgohkejpjcp [2017-07-15]
CHR Extension: (HD for YouTube™) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\akjbfncbadcmnkopckegnmjgihagponf [2018-04-14]
CHR Extension: (Dokumenty) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Disk Google) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-15]
CHR Extension: (YouTube) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-15]
CHR Extension: (Adobe Acrobat) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-08-22]
CHR Extension: (Tabulky) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-07-15]
CHR Extension: (AdBlock) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-05-10]
CHR Extension: (Floating for YouTube™) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjphmlaoffndcnecccgemfdaaoighkel [2017-07-15]
CHR Extension: (Momentum) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\laookkfknpbbblfpciffpaejjkokdgca [2018-05-08]
CHR Extension: (Planner 5D - Interior Design) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcafejemebbngbglfoinpoaannbihjna [2017-07-15]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Notifications for Instagram) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\opnbmdkdflhjiclaoiiifmheknpccalb [2018-01-14]
CHR Extension: (Gmail) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-07-15]
CHR Extension: (Chrome Media Router) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-05-03]
CHR HKU\S-1-5-21-3163961007-1588310606-1942131564-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [814688 2017-07-13] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2319848 2018-01-05] (Adobe Systems, Incorporated)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [338312 2016-08-31] (Windows (R) Win 7 DDK provider)
R2 avgsvc; C:\ProgramyN\avg\Framework\Common\avgsvca.exe [1428264 2018-04-17] (AVG Technologies CZ, s.r.o.)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2278688 2017-09-26] (Acer Incorporated)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2240264 2018-04-29] (ESET)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573568 2015-05-14] (Acer Incorporated)
R2 FA_Scheduler; C:\ProgramyN\forticlient\scheduler.exe [128832 2018-03-06] (Fortinet Inc.)
S4 gramblrclient; C:\Program Files\Gramblr\gramblr.exe [12288592 2018-05-16] () [File not signed]
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2017-07-26] () [File not signed]
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373720 2016-12-19] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008 2015-07-07] (Intel Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation)
S4 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [395616 2015-07-17] (Acer Incorporated)
S4 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [450400 2015-07-17] (Acer Incorporated)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [592392 2017-07-15] ()
S3 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 TuneUp.UtilitiesSvc; C:\ProgramyN\avg\AVG PC TuneUp\TuneUpUtilitiesService64.exe [5614592 2018-01-22] (AVG Technologies CZ, s.r.o.)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [247040 2015-05-27] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-12] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105344 2018-04-12] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-03-24] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-03-24] (Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [137928 2018-04-29] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [110432 2018-04-29] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15872 2018-02-28] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [196112 2018-04-29] (ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50136 2018-04-29] (ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [82816 2018-04-29] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [108320 2018-04-29] (ESET)
S3 fortiapd; C:\WINDOWS\System32\drivers\fortiapd.sys [18000 2018-03-06] (Fortinet Inc)
R1 FortiFilter; C:\WINDOWS\system32\DRIVERS\FortiFilter.sys [45792 2018-03-06] (Fortinet Inc)
S1 FortiFW; C:\WINDOWS\System32\drivers\FortiFW2.sys [37456 2018-03-06] (Fortinet Inc)
S3 Fortips; C:\WINDOWS\System32\drivers\fortips.sys [147536 2018-03-06] (Fortinet Inc)
R1 FortiShield; C:\WINDOWS\System32\drivers\FortiShield.sys [72272 2018-03-06] (Fortinet Inc)
S3 fortisniff; C:\WINDOWS\System32\drivers\fortisniff2.sys [111184 2018-03-06] (Fortinet Inc)
S3 ftsvnic; C:\WINDOWS\System32\drivers\ftsvnic.sys [66600 2018-03-06] (Fortinet Inc.)
R3 ft_vnic; C:\WINDOWS\System32\drivers\ftvnic.sys [71928 2018-03-06] (Fortinet Inc)
S3 HWHandSet; C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [226560 2017-07-26] (Huawei Technologies Co., Ltd.)
S3 hwusb_cdcacm; C:\WINDOWS\System32\drivers\hw_cdcacm.sys [127360 2017-07-26] (Huawei Technologies Co., Ltd.)
S3 hw_usbdev; C:\WINDOWS\System32\drivers\hw_usbdev.sys [116864 2017-07-26] (Huawei Technologies Co., Ltd.)
S3 ISODrive; C:\ProgramyN\iso\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (EZB Systems, Inc.)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21344 2015-07-09] (Acer Incorporated)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_8146495fad455ff4\nvlddmkm.sys [17161872 2018-04-23] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31168 2018-03-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [59240 2017-12-15] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [58816 2018-04-22] (NVIDIA Corporation)
R3 pppop; C:\WINDOWS\System32\drivers\pppop64.sys [54344 2018-03-06] (Fortinet Inc.)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14688 2015-07-09] (Acer Incorporated)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [420832 2000-01-01] (Realsil Semiconductor Corporation)
R3 SynRMIHID; C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys [56520 2016-02-04] (Synaptics Incorporated)
R3 TuneUpUtilitiesDrv; C:\ProgramyN\avg\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2017-11-15] (AVG Netherlands B.V.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-05-17 20:16 - 2018-05-17 20:17 - 000037661 _____ C:\Users\pchla\Desktop\FRST.txt
2018-05-17 20:16 - 2018-05-17 20:16 - 000000000 ____D C:\FRST
2018-05-17 20:15 - 2018-05-17 20:15 - 002413056 _____ (Farbar) C:\Users\pchla\Desktop\FRST64.exe
2018-05-17 20:10 - 2018-05-17 20:09 - 000548000 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2018-05-17 20:07 - 2018-05-17 20:07 - 000112640 _____ (forum.viry.cz) C:\Users\pchla\Desktop\FRSTLauncher.exe
2018-05-17 18:21 - 2018-05-17 18:26 - 000000000 ____D C:\AdwCleaner
2018-05-17 18:14 - 2018-05-17 18:14 - 000000000 ____D C:\rsit
2018-05-17 18:14 - 2018-05-17 18:14 - 000000000 ____D C:\Program Files\trend micro
2018-05-17 18:05 - 2018-05-17 18:05 - 000000000 ____D C:\Users\pchla\AppData\Local\D3DSCache
2018-05-16 19:26 - 2018-05-16 20:01 - 000000000 ____D C:\Users\pchla\Downloads\airport pce
2018-05-16 19:00 - 2018-05-16 19:00 - 000001798 _____ C:\Users\pchla\Desktop\članek.txt
2018-05-15 21:43 - 2018-05-17 20:12 - 000000000 ____D C:\Users\pchla\Downloads\root
2018-05-09 22:16 - 2018-05-09 22:19 - 000000859 _____ C:\Users\pchla\Desktop\9.5 ček ček ček p.txt
2018-05-09 20:01 - 2018-05-09 20:01 - 000026146 _____ C:\Users\pchla\Downloads\pr-2578_2018.xlsx
2018-05-09 20:00 - 2018-05-09 20:00 - 000373553 _____ C:\Users\pchla\Downloads\pr-2573_2018.pdf
2018-05-09 19:59 - 2018-05-09 19:59 - 000435740 _____ C:\Users\pchla\Downloads\pr-2574_2018.pdf
2018-05-09 19:48 - 2018-05-09 19:48 - 000145130 _____ C:\Users\pchla\Downloads\hlasovani-41-bez-osobnich-udaju.pdf
2018-05-09 19:42 - 2018-05-09 19:42 - 001081249 _____ C:\Users\pchla\Downloads\pozvanka-na-mimoradnou-valnou-hromadu-1322015 (1).pdf
2018-05-08 22:31 - 2018-05-09 22:16 - 000001039 _____ C:\Users\pchla\Desktop\new new ček ček p 8.5.txt
2018-05-08 22:00 - 2018-05-08 22:04 - 000000000 ____D C:\Users\pchla\Downloads\skoda o
2018-05-08 20:38 - 2018-04-28 16:19 - 021389360 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-05-08 20:38 - 2018-04-28 16:17 - 001634800 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-05-08 20:38 - 2018-04-28 16:04 - 012712960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-05-08 20:38 - 2018-04-28 15:59 - 003655168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-05-08 20:38 - 2018-04-28 15:58 - 001664512 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2018-05-08 20:38 - 2018-04-28 15:28 - 020383720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-05-08 20:38 - 2018-04-28 15:17 - 012500992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-05-08 20:38 - 2018-04-28 15:16 - 011903488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-05-08 20:38 - 2018-04-28 15:13 - 002897408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-05-08 20:38 - 2018-04-28 15:12 - 001380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2018-05-08 20:38 - 2018-04-28 13:20 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-05-08 20:38 - 2018-04-28 13:17 - 019525120 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-05-08 20:38 - 2018-04-28 13:04 - 000944640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2018-05-08 20:38 - 2018-04-28 13:02 - 003732800 _____ C:\WINDOWS\system32\Windows.Mirage.dll
2018-05-08 20:38 - 2018-04-28 12:58 - 000976384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-05-08 20:38 - 2018-04-28 11:30 - 002841312 _____ C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2018-05-08 20:38 - 2018-04-28 06:37 - 001034624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-05-08 20:38 - 2018-04-28 06:31 - 000473496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-05-08 20:38 - 2018-04-28 06:30 - 001456616 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-05-08 20:38 - 2018-04-28 06:29 - 009159064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-05-08 20:38 - 2018-04-28 06:29 - 000788216 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2018-05-08 20:38 - 2018-04-28 06:29 - 000776880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2018-05-08 20:38 - 2018-04-28 06:28 - 007436624 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-05-08 20:38 - 2018-04-28 06:28 - 002753040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-05-08 20:38 - 2018-04-28 06:28 - 000709816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-05-08 20:38 - 2018-04-28 06:27 - 007519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-05-08 20:38 - 2018-04-28 06:27 - 002835864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-05-08 20:38 - 2018-04-28 06:27 - 001258280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-05-08 20:38 - 2018-04-28 06:27 - 000733992 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-05-08 20:38 - 2018-04-28 06:27 - 000604568 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-05-08 20:38 - 2018-04-28 06:13 - 006569952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-05-08 20:38 - 2018-04-28 06:13 - 006044104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-05-08 20:38 - 2018-04-28 06:13 - 000786168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-05-08 20:38 - 2018-04-28 06:12 - 002242208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-05-08 20:38 - 2018-04-28 06:12 - 000606448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2018-05-08 20:38 - 2018-04-28 06:11 - 025848832 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-05-08 20:38 - 2018-04-28 06:05 - 022002688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-05-08 20:38 - 2018-04-28 06:04 - 022707712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-05-08 20:38 - 2018-04-28 06:04 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-05-08 20:38 - 2018-04-28 06:04 - 004372992 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-05-08 20:38 - 2018-04-28 06:00 - 007583232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-05-08 20:38 - 2018-04-28 06:00 - 004867072 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-05-08 20:38 - 2018-04-28 06:00 - 003389952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-05-08 20:38 - 2018-04-28 05:59 - 019399168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-05-08 20:38 - 2018-04-28 05:59 - 003392512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-05-08 20:38 - 2018-04-28 05:59 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2018-05-08 20:38 - 2018-04-28 05:59 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-05-08 20:38 - 2018-04-28 05:59 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\PerceptionSimulationExtensions.dll
2018-05-08 20:38 - 2018-04-28 05:58 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-05-08 20:38 - 2018-04-28 05:58 - 003086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-05-08 20:38 - 2018-04-28 05:58 - 002366976 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-05-08 20:38 - 2018-04-28 05:58 - 000814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-05-08 20:38 - 2018-04-28 05:58 - 000624128 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-05-08 20:38 - 2018-04-28 05:56 - 003440640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-05-08 20:38 - 2018-04-28 05:56 - 002700800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-05-08 20:38 - 2018-04-28 05:56 - 002236928 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-05-08 20:38 - 2018-04-28 05:56 - 001817088 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-05-08 20:38 - 2018-04-28 05:56 - 000933376 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2018-05-08 20:38 - 2018-04-28 05:56 - 000775680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-05-08 20:38 - 2018-04-28 05:55 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-05-08 20:38 - 2018-04-28 05:55 - 001160192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2018-05-08 20:38 - 2018-04-28 05:55 - 000960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-05-08 20:38 - 2018-04-28 05:55 - 000596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-05-08 20:38 - 2018-04-28 05:55 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-05-08 20:38 - 2018-04-28 05:54 - 005782528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-05-08 20:38 - 2018-04-28 05:52 - 001636352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-05-08 20:38 - 2018-04-28 05:51 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-05-08 20:38 - 2018-04-28 05:51 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-05-08 20:38 - 2018-04-28 04:43 - 001953280 _____ C:\WINDOWS\system32\rdpnano.dll
2018-05-08 20:37 - 2018-04-28 16:03 - 013570560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-05-08 20:37 - 2018-04-28 16:03 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2018-05-08 20:37 - 2018-04-28 16:03 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2018-05-08 20:37 - 2018-04-28 16:02 - 008623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2018-05-08 20:37 - 2018-04-28 16:02 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2018-05-08 20:37 - 2018-04-28 16:01 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2018-05-08 20:37 - 2018-04-28 16:00 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2018-05-08 20:37 - 2018-04-28 15:59 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-05-08 20:37 - 2018-04-28 15:58 - 004070400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2018-05-08 20:37 - 2018-04-28 15:58 - 001855488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2018-05-08 20:37 - 2018-04-28 15:58 - 000758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-05-08 20:37 - 2018-04-28 15:31 - 001454016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-05-08 20:37 - 2018-04-28 15:18 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2018-05-08 20:37 - 2018-04-28 15:16 - 007987712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2018-05-08 20:37 - 2018-04-28 15:14 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-05-08 20:37 - 2018-04-28 15:14 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2018-05-08 20:37 - 2018-04-28 15:14 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-05-08 20:37 - 2018-04-28 15:13 - 001585664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2018-05-08 20:37 - 2018-04-28 12:58 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Analog.dll
2018-05-08 20:37 - 2018-04-28 11:33 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2018-05-08 20:37 - 2018-04-28 08:18 - 000705944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-05-08 20:37 - 2018-04-28 06:35 - 000272288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-05-08 20:37 - 2018-04-28 06:35 - 000269216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-05-08 20:37 - 2018-04-28 06:31 - 001063320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2018-05-08 20:37 - 2018-04-28 06:29 - 001565592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2018-05-08 20:37 - 2018-04-28 06:29 - 001174424 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-05-08 20:37 - 2018-04-28 06:29 - 001012120 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-05-08 20:37 - 2018-04-28 06:29 - 000885848 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-05-08 20:37 - 2018-04-28 06:29 - 000494488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2018-05-08 20:37 - 2018-04-28 06:29 - 000382872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2018-05-08 20:37 - 2018-04-28 06:29 - 000134552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-05-08 20:37 - 2018-04-28 06:28 - 000170904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-05-08 20:37 - 2018-04-28 06:27 - 003283400 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2018-05-08 20:37 - 2018-04-28 06:27 - 002422168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-05-08 20:37 - 2018-04-28 06:27 - 001191168 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-05-08 20:37 - 2018-04-28 06:14 - 002486976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2018-05-08 20:37 - 2018-04-28 06:14 - 000434584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2018-05-08 20:37 - 2018-04-28 06:13 - 001426328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2018-05-08 20:37 - 2018-04-28 06:13 - 000665320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2018-05-08 20:37 - 2018-04-28 06:13 - 000559968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2018-05-08 20:37 - 2018-04-28 06:12 - 000567136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-05-08 20:37 - 2018-04-28 06:03 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs3.dll
2018-05-08 20:37 - 2018-04-28 06:03 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs1.dll
2018-05-08 20:37 - 2018-04-28 06:03 - 000288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.th.dll
2018-05-08 20:37 - 2018-04-28 06:03 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.win81.dll
2018-05-08 20:37 - 2018-04-28 06:02 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs4.dll
2018-05-08 20:37 - 2018-04-28 06:02 - 000474624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs2.dll
2018-05-08 20:37 - 2018-04-28 06:02 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-05-08 20:37 - 2018-04-28 06:02 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.win8rtm.dll
2018-05-08 20:37 - 2018-04-28 06:02 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-05-08 20:37 - 2018-04-28 06:01 - 004706816 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-05-08 20:37 - 2018-04-28 06:01 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2018-05-08 20:37 - 2018-04-28 06:01 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-05-08 20:37 - 2018-04-28 06:00 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2018-05-08 20:37 - 2018-04-28 05:59 - 003320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-05-08 20:37 - 2018-04-28 05:59 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-05-08 20:37 - 2018-04-28 05:59 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-05-08 20:37 - 2018-04-28 05:57 - 005951488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-05-08 20:37 - 2018-04-28 05:57 - 002170368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-05-08 20:37 - 2018-04-28 05:57 - 001534976 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-05-08 20:37 - 2018-04-28 05:57 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2018-05-08 20:37 - 2018-04-28 05:56 - 002961408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2018-05-08 20:37 - 2018-04-28 05:56 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-05-08 20:37 - 2018-04-28 05:56 - 001550848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-05-08 20:37 - 2018-04-28 05:56 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-05-08 20:37 - 2018-04-28 05:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-05-08 20:37 - 2018-04-28 05:55 - 002900992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-05-08 20:37 - 2018-04-28 05:55 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-05-08 20:37 - 2018-04-28 05:55 - 001421312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2018-05-08 20:37 - 2018-04-28 05:54 - 000561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-05-08 20:37 - 2018-04-28 05:53 - 004929024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-05-08 20:37 - 2018-04-28 05:53 - 001235968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2018-05-08 20:37 - 2018-04-28 05:53 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-05-08 20:37 - 2018-04-28 05:53 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-05-08 20:37 - 2018-04-28 05:53 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2018-05-08 20:37 - 2018-04-28 05:52 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-05-08 20:37 - 2018-04-28 05:52 - 000860160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2018-05-08 20:37 - 2018-04-28 05:52 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2018-05-08 20:37 - 2018-04-28 05:52 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2018-05-08 20:37 - 2018-04-28 05:51 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-05-08 20:37 - 2018-04-28 04:42 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2018-05-07 22:15 - 2018-05-08 18:32 - 000000000 ____D C:\Users\pchla\AppData\Local\PlaceholderTileLogoFolder
2018-05-07 20:20 - 2018-05-07 20:20 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-05-05 02:36 - 2018-05-05 02:12 - 000000000 ____D C:\Windows.old
2018-05-05 02:12 - 2018-05-05 02:12 - 000000020 ___SH C:\Users\pchla\ntuser.ini
2018-05-05 02:11 - 2018-05-17 18:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-05-05 02:11 - 2018-05-17 18:11 - 000004636 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-05-05 02:11 - 2018-05-17 18:11 - 000004508 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2018-05-05 02:11 - 2018-05-16 22:19 - 000003472 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-05-05 02:11 - 2018-05-16 22:19 - 000003348 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-05-05 02:11 - 2018-05-16 19:17 - 000003648 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2018-05-05 02:11 - 2018-05-08 21:18 - 000002762 _____ C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-p.chladek22@gmail.com
2018-05-05 02:11 - 2018-05-05 02:11 - 000004302 _____ C:\WINDOWS\System32\Tasks\Software Update Application
2018-05-05 02:11 - 2018-05-05 02:11 - 000003912 _____ C:\WINDOWS\System32\Tasks\ACCAgent
2018-05-05 02:11 - 2018-05-05 02:11 - 000003890 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2018-05-05 02:11 - 2018-05-05 02:11 - 000003542 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2018-05-05 02:11 - 2018-05-05 02:11 - 000003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-05 02:11 - 2018-05-05 02:11 - 000003236 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-05 02:11 - 2018-05-05 02:11 - 000003200 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-05 02:11 - 2018-05-05 02:11 - 000003132 _____ C:\WINDOWS\System32\Tasks\avast! SL Update
2018-05-05 02:11 - 2018-05-05 02:11 - 000003044 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-05 02:11 - 2018-05-05 02:11 - 000002974 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-05 02:11 - 2018-05-05 02:11 - 000002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-05 02:11 - 2018-05-05 02:11 - 000002948 _____ C:\WINDOWS\System32\Tasks\ACC
2018-05-05 02:11 - 2018-05-05 02:11 - 000002920 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3163961007-1588310606-1942131564-1001
2018-05-05 02:11 - 2018-05-05 02:11 - 000002868 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-p.chladek22@gmail.com
2018-05-05 02:11 - 2018-05-05 02:11 - 000002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-05 02:11 - 2018-05-05 02:11 - 000002806 _____ C:\WINDOWS\System32\Tasks\Avast SecureLine
2018-05-05 02:11 - 2018-05-05 02:11 - 000002804 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-05 02:11 - 2018-05-05 02:11 - 000002762 _____ C:\WINDOWS\System32\Tasks\BacKGroundAgent
2018-05-05 02:11 - 2018-05-05 02:11 - 000002706 _____ C:\WINDOWS\System32\Tasks\UbtFrameworkService
2018-05-05 02:11 - 2018-05-05 02:11 - 000002594 _____ C:\WINDOWS\System32\Tasks\AcerCloud
2018-05-05 02:11 - 2018-05-05 02:11 - 000002444 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe
2018-05-05 02:11 - 2018-05-05 02:11 - 000002392 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe
2018-05-05 02:11 - 2018-05-05 02:11 - 000002388 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_itype_exe
2018-05-05 02:11 - 2018-05-05 02:11 - 000002388 _____ C:\WINDOWS\System32\Tasks\ACCBackgroundApplication
2018-05-05 02:11 - 2018-05-05 02:11 - 000002374 _____ C:\WINDOWS\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe
2018-05-05 02:11 - 2018-05-05 02:11 - 000002370 _____ C:\WINDOWS\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe
2018-05-05 02:11 - 2018-05-05 02:11 - 000002274 _____ C:\WINDOWS\System32\Tasks\DolbySelectorTask
2018-05-05 02:11 - 2018-05-05 02:11 - 000002240 _____ C:\WINDOWS\System32\Tasks\Quick Access
2018-05-05 02:11 - 2018-05-05 02:11 - 000002222 _____ C:\WINDOWS\System32\Tasks\Power Management
2018-05-05 02:11 - 2018-05-05 02:11 - 000002074 _____ C:\WINDOWS\System32\Tasks\FUBTrackingByPLD
2018-05-05 02:11 - 2018-05-05 02:11 - 000002024 _____ C:\WINDOWS\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance
2018-05-05 02:11 - 2018-05-05 02:11 - 000000000 ____D C:\WINDOWS\System32\Tasks\S-1-5-21-3163961007-1588310606-1942131564-1001
2018-05-05 02:11 - 2018-05-05 02:11 - 000000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2018-05-05 02:11 - 2018-05-05 02:11 - 000000000 ____D C:\WINDOWS\System32\Tasks\CareCenter
2018-05-05 02:11 - 2018-05-05 02:11 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-05-05 02:10 - 2018-05-05 02:11 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2018-05-05 02:10 - 2018-05-05 02:11 - 000007623 _____ C:\WINDOWS\diagerr.xml
2018-05-05 02:01 - 2018-05-17 18:38 - 001689054 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-05-05 01:49 - 2018-05-05 01:49 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2018-05-05 01:46 - 2018-05-05 02:12 - 000000000 ____D C:\Users\pchla
2018-05-05 01:46 - 2018-05-05 01:47 - 000000000 ____D C:\Users\pchla\AppData\Local\Google
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Šablony
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Soubory cookie
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Poslední
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Okolní tiskárny
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Okolní síť
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Nabídka Start
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Dokumenty
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Documents\Obrázky
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Documents\Hudba
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Documents\Filmy
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Data aplikací
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\AppData\Local\Data aplikací
2018-05-05 01:46 - 2018-04-12 01:34 - 000001105 _____ C:\Users\pchla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-05-05 01:46 - 2017-08-22 22:31 - 000000000 ____D C:\Users\pchla\AppData\Local\AVG
2018-05-05 01:46 - 2017-07-17 00:39 - 000000000 ____D C:\Users\pchla\AppData\Local\Microsoft Help
2018-05-05 01:46 - 2017-07-15 17:35 - 000000000 ____D C:\Users\pchla\AppData\Roaming\Macromedia
2018-05-05 01:43 - 2018-05-05 01:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2018-05-05 01:43 - 2018-05-05 01:43 - 000000000 ____D C:\Program Files\Dolby Digital Plus
2018-05-05 01:42 - 2018-05-05 02:13 - 000000000 ____D C:\Intel
2018-05-05 01:42 - 2018-05-05 01:42 - 000000000 ____D C:\ProgramData\USOShared
2018-05-05 01:42 - 2018-04-12 01:33 - 002752000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2018-05-05 01:42 - 2016-12-19 08:17 - 000103944 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2018-05-05 01:42 - 2016-12-19 08:17 - 000099848 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2018-05-05 01:37 - 2018-05-16 22:01 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-05-05 01:37 - 2018-05-09 18:52 - 000410032 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-05-05 00:47 - 2018-04-29 21:40 - 000196112 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2018-05-05 00:47 - 2018-04-29 21:40 - 000137928 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2018-05-05 00:47 - 2018-04-29 21:40 - 000110432 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2018-05-05 00:47 - 2018-04-29 21:40 - 000108320 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2018-05-05 00:47 - 2018-04-29 21:40 - 000082816 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys
2018-05-05 00:47 - 2018-04-29 21:40 - 000050136 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys
2018-05-05 00:47 - 2018-02-28 00:00 - 000015872 _____ (ESET) C:\WINDOWS\system32\Drivers\eelam.sys
2018-05-05 00:44 - 2018-05-05 02:36 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2018-05-05 00:43 - 2018-05-05 00:44 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2018-05-05 00:28 - 2018-05-05 00:28 - 004492288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-05-05 00:28 - 2018-05-05 00:28 - 003398144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2018-05-05 00:28 - 2018-05-05 00:28 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2018-05-05 00:28 - 2018-05-05 00:28 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2018-05-05 00:28 - 2018-05-05 00:28 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2018-05-05 00:28 - 2018-05-05 00:28 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2018-05-05 00:28 - 2018-05-05 00:28 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2018-05-05 00:28 - 2018-05-05 00:28 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2018-05-05 00:27 - 2018-05-05 00:27 - 001166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2018-05-05 00:27 - 2018-05-05 00:27 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2018-05-05 00:27 - 2018-05-05 00:27 - 000124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2018-05-05 00:27 - 2018-05-05 00:27 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2018-05-05 00:27 - 2018-05-05 00:27 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2018-05-05 00:27 - 2018-05-05 00:27 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2018-05-05 00:27 - 2018-05-05 00:27 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2018-05-05 00:27 - 2018-05-05 00:27 - 000000000 ____D C:\Program Files\Reference Assemblies
2018-05-05 00:27 - 2018-05-05 00:27 - 000000000 ____D C:\Program Files\MSBuild
2018-05-05 00:27 - 2018-05-05 00:27 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2018-05-05 00:27 - 2018-05-05 00:27 - 000000000 ____D C:\Program Files (x86)\MSBuild
2018-05-05 00:14 - 2018-05-05 00:14 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2018-05-04 23:11 - 2018-05-05 02:12 - 000000000 ___DC C:\WINDOWS\Panther
2018-05-04 22:29 - 2018-05-04 22:29 - 000002269 _____ C:\Users\Public\Desktop\AVG PC TuneUp.lnk
2018-05-04 22:29 - 2018-05-04 22:29 - 000002269 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp.lnk
2018-05-04 22:29 - 2018-01-22 14:52 - 000045568 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\TURegOpt.exe
2018-05-04 22:21 - 2018-05-04 22:21 - 000018624 _____ C:\Users\pchla\Downloads\[CzT]AVG_PC_TuneUp_2017_v_16_76_3_18604_x86_x64_CZ_.torrent
2018-05-03 17:34 - 2018-05-03 18:21 - 000000000 ____D C:\Users\pchla\Downloads\apk new system honor
2018-05-01 21:56 - 2018-05-01 21:56 - 038702806 _____ C:\Users\pchla\Downloads\Vexento - Fireworks.wav
2018-04-30 21:28 - 2018-04-30 21:28 - 002753041 _____ C:\Users\pchla\Downloads\kalendar-nostalgickych-jizdy-2018.pdf
2018-04-25 21:24 - 2018-04-25 21:24 - 001081249 _____ C:\Users\pchla\Downloads\pozvanka-na-mimoradnou-valnou-hromadu-1322015.pdf
2018-04-25 21:07 - 2018-04-25 21:07 - 000000000 ____D C:\Users\pchla\AppData\Roaming\ADBDriverInstaller
2018-04-25 20:26 - 2018-04-25 20:26 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-04-25 20:26 - 2018-03-02 04:04 - 000828216 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2018-04-25 20:26 - 2018-03-02 04:03 - 000960312 _____ C:\WINDOWS\system32\vulkan-1.dll
2018-04-25 20:26 - 2018-03-02 04:03 - 000683832 _____ C:\WINDOWS\system32\vulkaninfo.exe
2018-04-25 20:26 - 2018-03-02 04:03 - 000575800 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2018-04-25 20:25 - 2018-04-22 08:52 - 005947328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2018-04-25 20:25 - 2018-04-22 08:52 - 002612808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2018-04-25 20:25 - 2018-04-22 08:52 - 001768008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2018-04-25 20:25 - 2018-04-22 08:52 - 000634304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2018-04-25 20:25 - 2018-04-22 08:52 - 000451144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2018-04-25 20:25 - 2018-04-22 08:52 - 000124200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2018-04-25 20:25 - 2018-04-22 08:52 - 000082880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2018-04-25 20:25 - 2018-04-05 17:12 - 008153222 _____ C:\WINDOWS\system32\nvcoproc.bin
2018-04-25 20:25 - 2018-01-15 06:51 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2018-04-25 20:24 - 2018-05-05 00:47 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2018-04-25 20:21 - 2018-04-23 07:00 - 031274352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-04-25 20:21 - 2018-04-23 07:00 - 013726184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2018-04-25 20:21 - 2018-04-23 07:00 - 011272024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2018-04-25 20:21 - 2018-04-23 07:00 - 001562312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2018-04-25 20:21 - 2018-04-23 07:00 - 001468616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439731.dll
2018-04-25 20:21 - 2018-04-23 07:00 - 001418800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2018-04-25 20:21 - 2018-04-23 07:00 - 001216472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2018-04-25 20:21 - 2018-04-23 07:00 - 001091784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2018-04-25 20:21 - 2018-04-23 07:00 - 000627400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2018-04-25 20:21 - 2018-04-23 07:00 - 000518160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 040347336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 035251400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 025987920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 004348376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 003759656 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 001991216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439731.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 001350152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 001157832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 001064864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 000905528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 000814544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 000653152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2018-04-25 20:21 - 2018-04-23 06:58 - 017779880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-04-25 20:21 - 2018-04-23 06:58 - 015191904 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2018-04-25 20:21 - 2018-04-23 06:58 - 004823488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2018-04-25 20:21 - 2018-04-23 06:58 - 004086224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2018-04-25 20:21 - 2018-04-22 13:04 - 000058816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2018-04-25 20:21 - 2018-04-22 13:04 - 000044277 _____ C:\WINDOWS\system32\nvinfo.pb
2018-04-17 21:25 - 2018-04-17 21:42 - 000000000 ____D C:\Users\pchla\Downloads\m belonoha
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-05-17 20:13 - 2018-03-18 20:35 - 000000000 ____D C:\Users\pchla\AppData\LocalLow\Mozilla
2018-05-17 20:09 - 2018-04-11 23:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-05-17 20:08 - 2015-07-16 05:33 - 000001236 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2018-05-17 20:08 - 2015-07-16 05:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-05-17 20:08 - 2015-07-16 05:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-05-17 19:20 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-05-17 18:38 - 2018-04-12 17:50 - 000716456 _____ C:\WINDOWS\system32\perfh005.dat
2018-05-17 18:38 - 2018-04-12 17:50 - 000144714 _____ C:\WINDOWS\system32\perfc005.dat
2018-05-17 18:38 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2018-05-17 18:32 - 2017-07-15 14:02 - 000000000 __SHD C:\Users\pchla\IntelGraphicsProfiles
2018-05-17 18:32 - 2017-07-15 12:54 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-05-17 18:32 - 2017-07-15 12:53 - 000000000 ____D C:\ProgramData\NVIDIA
2018-05-17 18:31 - 2018-04-11 23:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-05-17 18:29 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-05-17 18:11 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-05-17 18:11 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-05-17 18:07 - 2017-11-04 20:54 - 000007609 _____ C:\Users\pchla\AppData\Local\resmon.resmoncfg
2018-05-17 18:06 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-05-16 20:54 - 2017-07-23 21:00 - 000000000 ____D C:\ProgramData\Gramblr
2018-05-16 20:50 - 2017-07-23 21:00 - 000000000 ____D C:\Program Files\Gramblr
2018-05-16 20:32 - 2016-08-05 10:12 - 000000000 ____D C:\Users\pchla\Desktop\foto nikon vyber z fotaku
2018-05-16 19:45 - 2017-11-22 18:23 - 000000000 ____D C:\Users\pchla\AppData\Local\Packages
2018-05-16 19:29 - 2017-05-02 22:29 - 000001619 _____ C:\Users\pchla\Desktop\akce 2018 - 16.5.txt
2018-05-15 19:51 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-05-15 19:51 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-05-10 22:16 - 2018-01-05 22:02 - 000000000 ____D C:\Users\pchla\Desktop\složky z fotáku 28.4.18
2018-05-10 21:46 - 2017-12-28 19:18 - 000000000 ___RD C:\Users\pchla\Downloads\mp3
2018-05-10 18:26 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-05-09 18:54 - 2017-11-23 14:53 - 000000000 ___RD C:\Users\pchla\3D Objects
2018-05-09 18:54 - 2015-07-16 05:28 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\tk-TM
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\sw-KE
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\si-LK
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\prs-AF
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\mn-MN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ky-KG
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-BD
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\tk-TM
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\te-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\sw-KE
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\prs-AF
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\or-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\mn-MN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ky-KG
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\km-KH
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\is-IS
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\id-ID
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\bn-BD
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\be-BY
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\as-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\ta-in
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\si-lk
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\setup
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\am-et
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\Provisioning
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2018-05-08 20:37 - 2017-08-09 22:32 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-05-08 20:31 - 2017-10-12 19:33 - 141696960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-05-08 20:30 - 2017-07-15 14:51 - 141696960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-05-07 20:25 - 2018-04-12 01:38 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-05-07 20:19 - 2017-07-15 17:36 - 000000000 ___RD C:\Users\pchla\Desktop\Aplikace
2018-05-07 20:18 - 2017-08-16 20:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2018-05-07 20:17 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\appcompat
2018-05-05 02:37 - 2018-04-12 01:38 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2018-05-05 02:37 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2018-05-05 02:36 - 2018-04-12 17:50 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2018-05-05 02:36 - 2018-04-12 17:50 - 000000000 ____D C:\WINDOWS\system32\WCN
2018-05-05 02:36 - 2018-04-12 01:41 - 000000000 ____D C:\WINDOWS\Setup
2018-05-05 02:36 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2018-05-05 02:36 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\spool
2018-05-05 02:36 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\IME
2018-05-05 02:36 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\Help
2018-05-05 02:36 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files\Common Files\system
2018-05-05 02:36 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-05-05 02:36 - 2018-04-07 20:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FortiClient
2018-05-05 02:36 - 2017-11-06 18:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Driver Updater
2018-05-05 02:36 - 2017-11-01 20:49 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2018-05-05 02:36 - 2017-09-07 20:24 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2018-05-05 02:36 - 2017-08-16 20:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite
2018-05-05 02:36 - 2017-07-16 00:40 - 000000000 ____D C:\WINDOWS\cs
2018-05-05 02:36 - 2017-07-15 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2018-05-05 02:36 - 2017-07-15 17:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-05-05 02:36 - 2017-07-15 17:35 - 000000000 ____D C:\WINDOWS\SysWOW64\Adobe
2018-05-05 02:36 - 2017-07-15 15:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-05-05 02:36 - 2017-07-15 14:03 - 000000000 ____D C:\WINDOWS\oem
2018-05-05 02:36 - 2017-07-15 12:54 - 000000000 ____D C:\Program Files\Intel
2018-05-05 02:36 - 2015-10-22 19:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF
2018-05-05 02:36 - 2015-07-16 05:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2018-05-05 02:36 - 2015-07-16 05:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2018-05-05 02:36 - 2015-07-16 05:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2018-05-05 02:36 - 2015-07-10 15:14 - 000000000 ____D C:\WINDOWS\ShellNew
2018-05-05 02:11 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files\windows nt
2018-05-05 02:09 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\Registration
2018-05-05 02:01 - 2018-04-12 01:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-05-05 01:59 - 2017-07-15 13:18 - 000023020 _____ C:\WINDOWS\system32\emptyregdb.dat
2018-05-05 01:58 - 2017-07-15 15:26 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-05-05 01:53 - 2017-07-15 17:46 - 000000000 ____D C:\Users\pchla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2018-05-05 01:53 - 2017-07-15 17:44 - 000000000 ____D C:\Users\pchla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-05-05 01:53 - 2017-07-15 15:30 - 000000000 ____D C:\Users\pchla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2018-05-05 01:44 - 2017-07-15 12:53 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-05-05 01:43 - 2017-07-15 13:39 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2018-05-05 01:43 - 2017-07-15 12:55 - 002033046 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2018-05-05 01:42 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\USOPrivate
2018-05-05 01:42 - 2017-07-15 12:54 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2018-05-05 01:42 - 2017-07-15 12:54 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2018-05-05 01:42 - 2017-07-15 12:54 - 000000000 ____D C:\WINDOWS\system32\DAX2
2018-05-05 00:49 - 2018-04-12 01:38 - 000000000 __RHD C:\Users\Public\Libraries
2018-05-05 00:47 - 2018-04-12 17:50 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2018-05-05 00:47 - 2018-04-12 17:50 - 000000000 ____D C:\WINDOWS\system32\slmgr
2018-05-05 00:47 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-05-05 00:47 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-05-05 00:47 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2018-05-05 00:47 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2018-05-05 00:45 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2018-05-05 00:44 - 2018-02-27 23:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2018-05-05 00:44 - 2017-07-15 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2018-05-05 00:44 - 2017-07-15 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Webteh
2018-05-05 00:44 - 2017-07-15 12:54 - 000000000 ____D C:\Program Files\Realtek
2018-05-05 00:41 - 2018-04-12 17:50 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2018-05-05 00:41 - 2018-04-12 17:50 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2018-05-05 00:41 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2018-05-05 00:40 - 2018-04-12 17:50 - 000000000 ____D C:\WINDOWS\system32\winrm
2018-05-05 00:40 - 2018-04-12 17:50 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2018-05-05 00:40 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2018-05-05 00:40 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-05-05 00:40 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files\Windows Defender
2018-05-05 00:40 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2018-05-05 00:40 - 2018-04-11 23:04 - 000000000 ____D C:\WINDOWS\servicing
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\en-GB
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\et-EE
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\es-MX
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\en-GB
2018-05-05 00:27 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2018-05-05 00:27 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\MUI
2018-05-04 22:28 - 2017-11-01 19:37 - 000000000 ____D C:\Users\pchla\AppData\Local\AvgSetupLog
2018-05-04 22:28 - 2017-11-01 19:37 - 000000000 ____D C:\ProgramData\Avg
2018-05-04 22:27 - 2017-07-15 17:46 - 000000000 ____D C:\ProgramyN
2018-05-04 22:24 - 2017-11-01 19:38 - 000000000 ____D C:\Program Files (x86)\AVG
2018-05-04 22:22 - 2017-11-02 19:40 - 000000000 ____D C:\Users\pchla\Downloads\TORRENT
2018-05-03 18:44 - 2017-10-26 17:53 - 000007521 _____ C:\Users\pchla\Desktop\filmy tahat a koukat 26.10.17.txt
2018-05-01 23:22 - 2018-04-12 01:41 - 000835064 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-05-01 23:22 - 2018-04-12 01:41 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-05-01 17:15 - 2017-07-15 17:44 - 000000000 ____D C:\Users\pchla\AppData\Local\CrashDumps
2018-05-01 17:15 - 2017-07-15 14:09 - 000000000 ___RD C:\Users\pchla\OneDrive
2018-04-28 23:12 - 2017-08-16 22:46 - 000000121 _____ C:\Users\pchla\Desktop\karty sd.txt
2018-04-25 22:08 - 2017-07-15 14:05 - 000000000 ____D C:\Users\pchla\AppData\Local\NVIDIA
2018-04-25 20:25 - 2017-07-15 12:53 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-04-25 20:25 - 2017-07-15 12:53 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-04-25 18:57 - 2016-02-04 01:00 - 000000000 ___RD C:\Users\pchla\Desktop\A-MP3
==================== Files in the root of some directories =======
2017-07-15 22:53 - 2017-07-15 22:53 - 000000208 _____ () C:\Users\pchla\AppData\Roaming\PCNTB.MTBF.txt
2017-11-04 20:54 - 2018-05-17 18:07 - 000007609 _____ () C:\Users\pchla\AppData\Local\resmon.resmoncfg
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\Users\pchla\Desktop\IMG_0505.m4v:com.apple.quarantine [54]
==================== Security Center ==================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Internet Security (Disabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
Verze podpisu: AV: 1.267.1524.0, AS: 1.267.1524.0, NIS: 1.267.1524.0
Verze podpisu: AV: 1.267.1524.0, AS: 1.267.1524.0, NIS: 1.267.1524.0
AS: ESET Internet Security (Disabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
Verze podpisu: AV: 1.267.1524.0, AS: 1.267.1524.0, NIS: 1.267.1524.0
Verze podpisu: AV: 1.267.1524.0, AS: 1.267.1524.0, NIS: 1.267.1524.0
FW: ESET Firewall (Disabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\pchla\Desktop" je 759816 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
Ran by pchla (administrator) on PCNTB (17-05-2018 20:16:45)
Running from C:\Users\pchla\Desktop
Loaded Profiles: pchla (Available Profiles: pchla)
Platform: Windows 10 Home Version 1803 17134.48 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Fortinet Inc.) C:\ProgramyN\forticlient\scheduler.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(AVG Technologies CZ, s.r.o.) C:\ProgramyN\avg\AVG PC TuneUp\TuneUpUtilitiesService64.exe
() C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe
(AVG Technologies CZ, s.r.o.) C:\ProgramyN\avg\Framework\Common\avgsvca.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Fortinet Inc.) C:\ProgramyN\forticlient\FCDBLog.exe
(Dolby Laboratories Inc.) C:\Program Files\Dolby Digital Plus\ddp.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(FortiClient System Helper) C:\ProgramyN\forticlient\x64\FCHelper64.exe
(Fortinet Inc.) C:\ProgramyN\forticlient\FortiTray.exe
(Fortinet Inc.) C:\ProgramyN\forticlient\FortiESNAC.exe
(Fortinet Inc.) C:\ProgramyN\forticlient\FortiSSLVPNdaemon.exe
(AVG Technologies CZ, s.r.o.) C:\ProgramyN\avg\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1813.286.0_x64__kzf8qxf38zg5c\SkypeHost.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17122.16211.1000_x64__8wekyb3d8bbwe\Video.UI.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(ESET) C:\Program Files\ESET\ESET Security\egui.exe
(AVG Technologies CZ, s.r.o.) C:\ProgramyN\avg\Framework\Common\avguix.exe
(ZONER software) C:\Programy\Zoner\Photo Studio 18\Program32\ZPSTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18031.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.9226.21485.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\pchla\Desktop\FRSTLauncher.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18370560 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [315880 2018-01-05] (Adobe Systems, Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [178496 2018-04-29] (ESET)
HKLM\...\Run: [AvgUi] => C:\ProgramyN\avg\Framework\Common\avguirna.exe [239192 2018-04-17] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-3163961007-1588310606-1942131564-1001\...\Run: [AcerPortal] => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2437920 2017-10-02] (Acer)
HKU\S-1-5-21-3163961007-1588310606-1942131564-1001\...\Run: [uTorrent] => C:\ProgramyN\Utorrent\utorrent.exe [416168 2015-02-22] (BitTorrent, Inc.)
HKU\S-1-5-21-3163961007-1588310606-1942131564-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Programy\Zoner\Photo Studio 18\Program32\ZPSTRAY.EXE [680520 2017-01-09] (ZONER software)
IFEO\acerportal.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\AcroRd32.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\carecenter.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\creative cloud.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\databasecompare.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\dustdefenderclean.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\excel.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\forticlient_diagnostic_tool.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\gramblr.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\groove.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\lync.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\misc.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msaccess.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msoev.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msotd.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msoxmled.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\mspub.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\nvidia geforce experience.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\ocpubmgr.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\onenote.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\outlook.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\powerpnt.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\quickaccess.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\secureline.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\spreadsheetcompare.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\uninstall.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\utorrent.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\winword.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 10.0.1.2
Tcpip\..\Interfaces\{13583b73-3290-4839-8709-60ba3abf0290}: [DhcpNameServer] 192.168.1.1 10.0.1.2
Tcpip\..\Interfaces\{f8f4342d-f266-45c4-b5ca-2bba42b50f44}: [DhcpNameServer] 192.168.1.1 10.0.1.2
Internet Explorer:
==================
HKU\S-1-5-21-3163961007-1588310606-1942131564-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=12
HKU\S-1-5-21-3163961007-1588310606-1942131564-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer15.msn.com/?pc=ACTE
SearchScopes: HKU\S-1-5-21-3163961007-1588310606-1942131564-1001 -> DefaultScope {5411EA71-F23B-4885-B012-F0730D3F520A} URL =
SearchScopes: HKU\S-1-5-21-3163961007-1588310606-1942131564-1001 -> {052C3605-06A9-4F12-90F1-CD8ADB3AE6A8} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 1rkmlavb.default
FF ProfilePath: C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default [2018-05-17]
FF user.js: detected! => C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\user.js [2017-07-16]
FF Homepage: Mozilla\Firefox\Profiles\1rkmlavb.default -> hxxp://www.seznam.cz/
FF NewTabOverride: Mozilla\Firefox\Profiles\1rkmlavb.default -> Enabled: {ea614400-e918-4741-9a97-7a972ff7c30b}
FF Extension: (Amazon Assistant for Firefox) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\abb@amazon.com.xpi [2018-05-15]
FF Extension: (Firebug) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\firebug@software.joehewitt.com.xpi [2017-07-24] [Legacy]
FF Extension: (Youtube To MP3 PRO converter) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\jid0-irAmugmQgdURBSCIFZAcjR8ZQMg@jetpack.xpi [2017-07-24] [Legacy]
FF Extension: (Translate This!) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\jid0-k75TfRGfOXPHfEZmJ9cKu5eCgLc@jetpack.xpi [2017-07-24] [Legacy]
FF Extension: (العربية Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-ar@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Български Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-bg@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Dansk (da) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-da@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Deutsch (DE) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-de@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Ελληνικά Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-el@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (English (US) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Español (España) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-es-ES@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Estonian Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-et@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Finnish Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-fi@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Français Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Hebrew (IL) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-he@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Magyar (HU) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-hu@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Italiano (IT) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-it@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Japanese Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-ja@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Korean (KR) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-ko@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Lietuvių Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-lt@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Norsk bokmål (NO) Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-nb-NO@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (Polski Language Pack) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\langpack-pl@firefox.mozilla.org.xpi [2018-03-18]
FF Extension: (FlashGot) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2017-07-24] [Legacy]
FF Extension: (Video DownloadHelper) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-03-18]
FF Extension: (wmlbrowser) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\{c4dc572a-3295-40eb-b30f-b54aa4cdc4b7}.xpi [2017-07-24] [Legacy]
FF Extension: (Adblock Plus) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-05-15]
FF Extension: (Seznam doplněk - Email) - C:\Users\pchla\AppData\Roaming\Mozilla\Firefox\Profiles\1rkmlavb.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}.xpi [2018-05-15]
FF Extension: (Amazon 1Button App for Firefox) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb@amazon.com [2017-07-15] [Legacy] [not signed]
FF Extension: (العربية Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-ar@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (български Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-bg@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Czech (CZ) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-cs@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Dansk (da) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-da@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Deutsch (DE) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-de@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Greek (GR) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-el@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (English (US) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-en-US@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Español (España) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-es-ES@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Estonian Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-et@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Finnish Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fi@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Français Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Hebrew (IL) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-he@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Magyar (HU) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-hu@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Italiano (IT) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-it@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Japanese Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-ja@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Korean (KR) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-ko@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Lietuvių Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-lt@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Norsk bokmål (NO) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-nb-NO@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Nederlands (NL) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-nl@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Polski Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-pl@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Português Brasileiro Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-pt-BR@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Português Portugal Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-pt-PT@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Russian (RU) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-ru@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Slovak (SK) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-sk@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Slovenski jezik Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-sl@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (српски (sr) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-sr@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Svenska (SE) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-sv-SE@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Thai Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-th@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Türkçe (TR) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-tr@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Ukrainian (UA) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-uk@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Chinese Simplified (zh-CN) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-zh-CN@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Extension: (Traditional Chinese (zh-TW) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-zh-TW@firefox.mozilla.org [2017-07-15] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_29_0_0_171.dll [2018-05-17] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-08-04] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_171.dll [2018-05-17] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1232202.dll [2018-03-09] (Adobe Systems, Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-22] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-08-04] (Adobe Systems)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR DefaultSearchURL: Default -> hxxp://www.google.cz/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> google.cz_
CHR Profile: C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default [2018-05-17]
CHR Extension: (Překladač Google) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2017-10-19]
CHR Extension: (Prezentace) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Liverpool F.C. Theme) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\akiecdapainjgeicpihlmhgohkejpjcp [2017-07-15]
CHR Extension: (HD for YouTube™) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\akjbfncbadcmnkopckegnmjgihagponf [2018-04-14]
CHR Extension: (Dokumenty) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Disk Google) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-15]
CHR Extension: (YouTube) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-15]
CHR Extension: (Adobe Acrobat) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-08-22]
CHR Extension: (Tabulky) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-07-15]
CHR Extension: (AdBlock) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-05-10]
CHR Extension: (Floating for YouTube™) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjphmlaoffndcnecccgemfdaaoighkel [2017-07-15]
CHR Extension: (Momentum) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\laookkfknpbbblfpciffpaejjkokdgca [2018-05-08]
CHR Extension: (Planner 5D - Interior Design) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcafejemebbngbglfoinpoaannbihjna [2017-07-15]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Notifications for Instagram) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\opnbmdkdflhjiclaoiiifmheknpccalb [2018-01-14]
CHR Extension: (Gmail) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-07-15]
CHR Extension: (Chrome Media Router) - C:\Users\pchla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-05-03]
CHR HKU\S-1-5-21-3163961007-1588310606-1942131564-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [814688 2017-07-13] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2319848 2018-01-05] (Adobe Systems, Incorporated)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [338312 2016-08-31] (Windows (R) Win 7 DDK provider)
R2 avgsvc; C:\ProgramyN\avg\Framework\Common\avgsvca.exe [1428264 2018-04-17] (AVG Technologies CZ, s.r.o.)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2278688 2017-09-26] (Acer Incorporated)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2240264 2018-04-29] (ESET)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573568 2015-05-14] (Acer Incorporated)
R2 FA_Scheduler; C:\ProgramyN\forticlient\scheduler.exe [128832 2018-03-06] (Fortinet Inc.)
S4 gramblrclient; C:\Program Files\Gramblr\gramblr.exe [12288592 2018-05-16] () [File not signed]
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2017-07-26] () [File not signed]
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373720 2016-12-19] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008 2015-07-07] (Intel Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation)
S4 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [395616 2015-07-17] (Acer Incorporated)
S4 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [450400 2015-07-17] (Acer Incorporated)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [592392 2017-07-15] ()
S3 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 TuneUp.UtilitiesSvc; C:\ProgramyN\avg\AVG PC TuneUp\TuneUpUtilitiesService64.exe [5614592 2018-01-22] (AVG Technologies CZ, s.r.o.)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [247040 2015-05-27] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-12] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105344 2018-04-12] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-03-24] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-03-24] (Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [137928 2018-04-29] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [110432 2018-04-29] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15872 2018-02-28] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [196112 2018-04-29] (ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50136 2018-04-29] (ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [82816 2018-04-29] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [108320 2018-04-29] (ESET)
S3 fortiapd; C:\WINDOWS\System32\drivers\fortiapd.sys [18000 2018-03-06] (Fortinet Inc)
R1 FortiFilter; C:\WINDOWS\system32\DRIVERS\FortiFilter.sys [45792 2018-03-06] (Fortinet Inc)
S1 FortiFW; C:\WINDOWS\System32\drivers\FortiFW2.sys [37456 2018-03-06] (Fortinet Inc)
S3 Fortips; C:\WINDOWS\System32\drivers\fortips.sys [147536 2018-03-06] (Fortinet Inc)
R1 FortiShield; C:\WINDOWS\System32\drivers\FortiShield.sys [72272 2018-03-06] (Fortinet Inc)
S3 fortisniff; C:\WINDOWS\System32\drivers\fortisniff2.sys [111184 2018-03-06] (Fortinet Inc)
S3 ftsvnic; C:\WINDOWS\System32\drivers\ftsvnic.sys [66600 2018-03-06] (Fortinet Inc.)
R3 ft_vnic; C:\WINDOWS\System32\drivers\ftvnic.sys [71928 2018-03-06] (Fortinet Inc)
S3 HWHandSet; C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [226560 2017-07-26] (Huawei Technologies Co., Ltd.)
S3 hwusb_cdcacm; C:\WINDOWS\System32\drivers\hw_cdcacm.sys [127360 2017-07-26] (Huawei Technologies Co., Ltd.)
S3 hw_usbdev; C:\WINDOWS\System32\drivers\hw_usbdev.sys [116864 2017-07-26] (Huawei Technologies Co., Ltd.)
S3 ISODrive; C:\ProgramyN\iso\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (EZB Systems, Inc.)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21344 2015-07-09] (Acer Incorporated)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_8146495fad455ff4\nvlddmkm.sys [17161872 2018-04-23] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31168 2018-03-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [59240 2017-12-15] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [58816 2018-04-22] (NVIDIA Corporation)
R3 pppop; C:\WINDOWS\System32\drivers\pppop64.sys [54344 2018-03-06] (Fortinet Inc.)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14688 2015-07-09] (Acer Incorporated)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [420832 2000-01-01] (Realsil Semiconductor Corporation)
R3 SynRMIHID; C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys [56520 2016-02-04] (Synaptics Incorporated)
R3 TuneUpUtilitiesDrv; C:\ProgramyN\avg\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2017-11-15] (AVG Netherlands B.V.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-05-17 20:16 - 2018-05-17 20:17 - 000037661 _____ C:\Users\pchla\Desktop\FRST.txt
2018-05-17 20:16 - 2018-05-17 20:16 - 000000000 ____D C:\FRST
2018-05-17 20:15 - 2018-05-17 20:15 - 002413056 _____ (Farbar) C:\Users\pchla\Desktop\FRST64.exe
2018-05-17 20:10 - 2018-05-17 20:09 - 000548000 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2018-05-17 20:07 - 2018-05-17 20:07 - 000112640 _____ (forum.viry.cz) C:\Users\pchla\Desktop\FRSTLauncher.exe
2018-05-17 18:21 - 2018-05-17 18:26 - 000000000 ____D C:\AdwCleaner
2018-05-17 18:14 - 2018-05-17 18:14 - 000000000 ____D C:\rsit
2018-05-17 18:14 - 2018-05-17 18:14 - 000000000 ____D C:\Program Files\trend micro
2018-05-17 18:05 - 2018-05-17 18:05 - 000000000 ____D C:\Users\pchla\AppData\Local\D3DSCache
2018-05-16 19:26 - 2018-05-16 20:01 - 000000000 ____D C:\Users\pchla\Downloads\airport pce
2018-05-16 19:00 - 2018-05-16 19:00 - 000001798 _____ C:\Users\pchla\Desktop\članek.txt
2018-05-15 21:43 - 2018-05-17 20:12 - 000000000 ____D C:\Users\pchla\Downloads\root
2018-05-09 22:16 - 2018-05-09 22:19 - 000000859 _____ C:\Users\pchla\Desktop\9.5 ček ček ček p.txt
2018-05-09 20:01 - 2018-05-09 20:01 - 000026146 _____ C:\Users\pchla\Downloads\pr-2578_2018.xlsx
2018-05-09 20:00 - 2018-05-09 20:00 - 000373553 _____ C:\Users\pchla\Downloads\pr-2573_2018.pdf
2018-05-09 19:59 - 2018-05-09 19:59 - 000435740 _____ C:\Users\pchla\Downloads\pr-2574_2018.pdf
2018-05-09 19:48 - 2018-05-09 19:48 - 000145130 _____ C:\Users\pchla\Downloads\hlasovani-41-bez-osobnich-udaju.pdf
2018-05-09 19:42 - 2018-05-09 19:42 - 001081249 _____ C:\Users\pchla\Downloads\pozvanka-na-mimoradnou-valnou-hromadu-1322015 (1).pdf
2018-05-08 22:31 - 2018-05-09 22:16 - 000001039 _____ C:\Users\pchla\Desktop\new new ček ček p 8.5.txt
2018-05-08 22:00 - 2018-05-08 22:04 - 000000000 ____D C:\Users\pchla\Downloads\skoda o
2018-05-08 20:38 - 2018-04-28 16:19 - 021389360 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-05-08 20:38 - 2018-04-28 16:17 - 001634800 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-05-08 20:38 - 2018-04-28 16:04 - 012712960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-05-08 20:38 - 2018-04-28 15:59 - 003655168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-05-08 20:38 - 2018-04-28 15:58 - 001664512 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2018-05-08 20:38 - 2018-04-28 15:28 - 020383720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-05-08 20:38 - 2018-04-28 15:17 - 012500992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-05-08 20:38 - 2018-04-28 15:16 - 011903488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-05-08 20:38 - 2018-04-28 15:13 - 002897408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-05-08 20:38 - 2018-04-28 15:12 - 001380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2018-05-08 20:38 - 2018-04-28 13:20 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-05-08 20:38 - 2018-04-28 13:17 - 019525120 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-05-08 20:38 - 2018-04-28 13:04 - 000944640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2018-05-08 20:38 - 2018-04-28 13:02 - 003732800 _____ C:\WINDOWS\system32\Windows.Mirage.dll
2018-05-08 20:38 - 2018-04-28 12:58 - 000976384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-05-08 20:38 - 2018-04-28 11:30 - 002841312 _____ C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2018-05-08 20:38 - 2018-04-28 06:37 - 001034624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-05-08 20:38 - 2018-04-28 06:31 - 000473496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-05-08 20:38 - 2018-04-28 06:30 - 001456616 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-05-08 20:38 - 2018-04-28 06:29 - 009159064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-05-08 20:38 - 2018-04-28 06:29 - 000788216 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2018-05-08 20:38 - 2018-04-28 06:29 - 000776880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2018-05-08 20:38 - 2018-04-28 06:28 - 007436624 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-05-08 20:38 - 2018-04-28 06:28 - 002753040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-05-08 20:38 - 2018-04-28 06:28 - 000709816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-05-08 20:38 - 2018-04-28 06:27 - 007519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-05-08 20:38 - 2018-04-28 06:27 - 002835864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-05-08 20:38 - 2018-04-28 06:27 - 001258280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-05-08 20:38 - 2018-04-28 06:27 - 000733992 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-05-08 20:38 - 2018-04-28 06:27 - 000604568 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-05-08 20:38 - 2018-04-28 06:13 - 006569952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-05-08 20:38 - 2018-04-28 06:13 - 006044104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-05-08 20:38 - 2018-04-28 06:13 - 000786168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-05-08 20:38 - 2018-04-28 06:12 - 002242208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-05-08 20:38 - 2018-04-28 06:12 - 000606448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2018-05-08 20:38 - 2018-04-28 06:11 - 025848832 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-05-08 20:38 - 2018-04-28 06:05 - 022002688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-05-08 20:38 - 2018-04-28 06:04 - 022707712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-05-08 20:38 - 2018-04-28 06:04 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-05-08 20:38 - 2018-04-28 06:04 - 004372992 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-05-08 20:38 - 2018-04-28 06:00 - 007583232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-05-08 20:38 - 2018-04-28 06:00 - 004867072 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-05-08 20:38 - 2018-04-28 06:00 - 003389952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-05-08 20:38 - 2018-04-28 05:59 - 019399168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-05-08 20:38 - 2018-04-28 05:59 - 003392512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-05-08 20:38 - 2018-04-28 05:59 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2018-05-08 20:38 - 2018-04-28 05:59 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-05-08 20:38 - 2018-04-28 05:59 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\PerceptionSimulationExtensions.dll
2018-05-08 20:38 - 2018-04-28 05:58 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-05-08 20:38 - 2018-04-28 05:58 - 003086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-05-08 20:38 - 2018-04-28 05:58 - 002366976 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-05-08 20:38 - 2018-04-28 05:58 - 000814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-05-08 20:38 - 2018-04-28 05:58 - 000624128 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-05-08 20:38 - 2018-04-28 05:56 - 003440640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-05-08 20:38 - 2018-04-28 05:56 - 002700800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-05-08 20:38 - 2018-04-28 05:56 - 002236928 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-05-08 20:38 - 2018-04-28 05:56 - 001817088 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-05-08 20:38 - 2018-04-28 05:56 - 000933376 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2018-05-08 20:38 - 2018-04-28 05:56 - 000775680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-05-08 20:38 - 2018-04-28 05:55 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-05-08 20:38 - 2018-04-28 05:55 - 001160192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2018-05-08 20:38 - 2018-04-28 05:55 - 000960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-05-08 20:38 - 2018-04-28 05:55 - 000596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-05-08 20:38 - 2018-04-28 05:55 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-05-08 20:38 - 2018-04-28 05:54 - 005782528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-05-08 20:38 - 2018-04-28 05:52 - 001636352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-05-08 20:38 - 2018-04-28 05:51 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-05-08 20:38 - 2018-04-28 05:51 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-05-08 20:38 - 2018-04-28 04:43 - 001953280 _____ C:\WINDOWS\system32\rdpnano.dll
2018-05-08 20:37 - 2018-04-28 16:03 - 013570560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-05-08 20:37 - 2018-04-28 16:03 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2018-05-08 20:37 - 2018-04-28 16:03 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2018-05-08 20:37 - 2018-04-28 16:02 - 008623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2018-05-08 20:37 - 2018-04-28 16:02 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2018-05-08 20:37 - 2018-04-28 16:01 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2018-05-08 20:37 - 2018-04-28 16:00 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2018-05-08 20:37 - 2018-04-28 15:59 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-05-08 20:37 - 2018-04-28 15:58 - 004070400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2018-05-08 20:37 - 2018-04-28 15:58 - 001855488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2018-05-08 20:37 - 2018-04-28 15:58 - 000758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-05-08 20:37 - 2018-04-28 15:31 - 001454016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-05-08 20:37 - 2018-04-28 15:18 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2018-05-08 20:37 - 2018-04-28 15:16 - 007987712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2018-05-08 20:37 - 2018-04-28 15:14 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-05-08 20:37 - 2018-04-28 15:14 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2018-05-08 20:37 - 2018-04-28 15:14 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-05-08 20:37 - 2018-04-28 15:13 - 001585664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2018-05-08 20:37 - 2018-04-28 12:58 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Analog.dll
2018-05-08 20:37 - 2018-04-28 11:33 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2018-05-08 20:37 - 2018-04-28 08:18 - 000705944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-05-08 20:37 - 2018-04-28 06:35 - 000272288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-05-08 20:37 - 2018-04-28 06:35 - 000269216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-05-08 20:37 - 2018-04-28 06:31 - 001063320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2018-05-08 20:37 - 2018-04-28 06:29 - 001565592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2018-05-08 20:37 - 2018-04-28 06:29 - 001174424 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-05-08 20:37 - 2018-04-28 06:29 - 001012120 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-05-08 20:37 - 2018-04-28 06:29 - 000885848 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-05-08 20:37 - 2018-04-28 06:29 - 000494488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2018-05-08 20:37 - 2018-04-28 06:29 - 000382872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2018-05-08 20:37 - 2018-04-28 06:29 - 000134552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-05-08 20:37 - 2018-04-28 06:28 - 000170904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-05-08 20:37 - 2018-04-28 06:27 - 003283400 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2018-05-08 20:37 - 2018-04-28 06:27 - 002422168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-05-08 20:37 - 2018-04-28 06:27 - 001191168 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-05-08 20:37 - 2018-04-28 06:14 - 002486976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2018-05-08 20:37 - 2018-04-28 06:14 - 000434584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2018-05-08 20:37 - 2018-04-28 06:13 - 001426328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2018-05-08 20:37 - 2018-04-28 06:13 - 000665320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2018-05-08 20:37 - 2018-04-28 06:13 - 000559968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2018-05-08 20:37 - 2018-04-28 06:12 - 000567136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-05-08 20:37 - 2018-04-28 06:03 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs3.dll
2018-05-08 20:37 - 2018-04-28 06:03 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs1.dll
2018-05-08 20:37 - 2018-04-28 06:03 - 000288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.th.dll
2018-05-08 20:37 - 2018-04-28 06:03 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.win81.dll
2018-05-08 20:37 - 2018-04-28 06:02 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs4.dll
2018-05-08 20:37 - 2018-04-28 06:02 - 000474624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.rs2.dll
2018-05-08 20:37 - 2018-04-28 06:02 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-05-08 20:37 - 2018-04-28 06:02 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.win8rtm.dll
2018-05-08 20:37 - 2018-04-28 06:02 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-05-08 20:37 - 2018-04-28 06:01 - 004706816 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-05-08 20:37 - 2018-04-28 06:01 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2018-05-08 20:37 - 2018-04-28 06:01 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-05-08 20:37 - 2018-04-28 06:00 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2018-05-08 20:37 - 2018-04-28 05:59 - 003320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-05-08 20:37 - 2018-04-28 05:59 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-05-08 20:37 - 2018-04-28 05:59 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-05-08 20:37 - 2018-04-28 05:57 - 005951488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-05-08 20:37 - 2018-04-28 05:57 - 002170368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-05-08 20:37 - 2018-04-28 05:57 - 001534976 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-05-08 20:37 - 2018-04-28 05:57 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2018-05-08 20:37 - 2018-04-28 05:56 - 002961408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2018-05-08 20:37 - 2018-04-28 05:56 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-05-08 20:37 - 2018-04-28 05:56 - 001550848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-05-08 20:37 - 2018-04-28 05:56 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-05-08 20:37 - 2018-04-28 05:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-05-08 20:37 - 2018-04-28 05:55 - 002900992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-05-08 20:37 - 2018-04-28 05:55 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-05-08 20:37 - 2018-04-28 05:55 - 001421312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2018-05-08 20:37 - 2018-04-28 05:54 - 000561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-05-08 20:37 - 2018-04-28 05:53 - 004929024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-05-08 20:37 - 2018-04-28 05:53 - 001235968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2018-05-08 20:37 - 2018-04-28 05:53 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-05-08 20:37 - 2018-04-28 05:53 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-05-08 20:37 - 2018-04-28 05:53 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2018-05-08 20:37 - 2018-04-28 05:52 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-05-08 20:37 - 2018-04-28 05:52 - 000860160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2018-05-08 20:37 - 2018-04-28 05:52 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2018-05-08 20:37 - 2018-04-28 05:52 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2018-05-08 20:37 - 2018-04-28 05:51 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-05-08 20:37 - 2018-04-28 04:42 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2018-05-07 22:15 - 2018-05-08 18:32 - 000000000 ____D C:\Users\pchla\AppData\Local\PlaceholderTileLogoFolder
2018-05-07 20:20 - 2018-05-07 20:20 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-05-05 02:36 - 2018-05-05 02:12 - 000000000 ____D C:\Windows.old
2018-05-05 02:12 - 2018-05-05 02:12 - 000000020 ___SH C:\Users\pchla\ntuser.ini
2018-05-05 02:11 - 2018-05-17 18:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-05-05 02:11 - 2018-05-17 18:11 - 000004636 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-05-05 02:11 - 2018-05-17 18:11 - 000004508 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2018-05-05 02:11 - 2018-05-16 22:19 - 000003472 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-05-05 02:11 - 2018-05-16 22:19 - 000003348 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-05-05 02:11 - 2018-05-16 19:17 - 000003648 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2018-05-05 02:11 - 2018-05-08 21:18 - 000002762 _____ C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-p.chladek22@gmail.com
2018-05-05 02:11 - 2018-05-05 02:11 - 000004302 _____ C:\WINDOWS\System32\Tasks\Software Update Application
2018-05-05 02:11 - 2018-05-05 02:11 - 000003912 _____ C:\WINDOWS\System32\Tasks\ACCAgent
2018-05-05 02:11 - 2018-05-05 02:11 - 000003890 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2018-05-05 02:11 - 2018-05-05 02:11 - 000003542 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2018-05-05 02:11 - 2018-05-05 02:11 - 000003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-05 02:11 - 2018-05-05 02:11 - 000003236 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-05 02:11 - 2018-05-05 02:11 - 000003200 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-05 02:11 - 2018-05-05 02:11 - 000003132 _____ C:\WINDOWS\System32\Tasks\avast! SL Update
2018-05-05 02:11 - 2018-05-05 02:11 - 000003044 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-05 02:11 - 2018-05-05 02:11 - 000002974 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-05 02:11 - 2018-05-05 02:11 - 000002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-05 02:11 - 2018-05-05 02:11 - 000002948 _____ C:\WINDOWS\System32\Tasks\ACC
2018-05-05 02:11 - 2018-05-05 02:11 - 000002920 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3163961007-1588310606-1942131564-1001
2018-05-05 02:11 - 2018-05-05 02:11 - 000002868 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-p.chladek22@gmail.com
2018-05-05 02:11 - 2018-05-05 02:11 - 000002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-05 02:11 - 2018-05-05 02:11 - 000002806 _____ C:\WINDOWS\System32\Tasks\Avast SecureLine
2018-05-05 02:11 - 2018-05-05 02:11 - 000002804 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-05 02:11 - 2018-05-05 02:11 - 000002762 _____ C:\WINDOWS\System32\Tasks\BacKGroundAgent
2018-05-05 02:11 - 2018-05-05 02:11 - 000002706 _____ C:\WINDOWS\System32\Tasks\UbtFrameworkService
2018-05-05 02:11 - 2018-05-05 02:11 - 000002594 _____ C:\WINDOWS\System32\Tasks\AcerCloud
2018-05-05 02:11 - 2018-05-05 02:11 - 000002444 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe
2018-05-05 02:11 - 2018-05-05 02:11 - 000002392 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe
2018-05-05 02:11 - 2018-05-05 02:11 - 000002388 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_itype_exe
2018-05-05 02:11 - 2018-05-05 02:11 - 000002388 _____ C:\WINDOWS\System32\Tasks\ACCBackgroundApplication
2018-05-05 02:11 - 2018-05-05 02:11 - 000002374 _____ C:\WINDOWS\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe
2018-05-05 02:11 - 2018-05-05 02:11 - 000002370 _____ C:\WINDOWS\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe
2018-05-05 02:11 - 2018-05-05 02:11 - 000002274 _____ C:\WINDOWS\System32\Tasks\DolbySelectorTask
2018-05-05 02:11 - 2018-05-05 02:11 - 000002240 _____ C:\WINDOWS\System32\Tasks\Quick Access
2018-05-05 02:11 - 2018-05-05 02:11 - 000002222 _____ C:\WINDOWS\System32\Tasks\Power Management
2018-05-05 02:11 - 2018-05-05 02:11 - 000002074 _____ C:\WINDOWS\System32\Tasks\FUBTrackingByPLD
2018-05-05 02:11 - 2018-05-05 02:11 - 000002024 _____ C:\WINDOWS\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance
2018-05-05 02:11 - 2018-05-05 02:11 - 000000000 ____D C:\WINDOWS\System32\Tasks\S-1-5-21-3163961007-1588310606-1942131564-1001
2018-05-05 02:11 - 2018-05-05 02:11 - 000000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2018-05-05 02:11 - 2018-05-05 02:11 - 000000000 ____D C:\WINDOWS\System32\Tasks\CareCenter
2018-05-05 02:11 - 2018-05-05 02:11 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-05-05 02:10 - 2018-05-05 02:11 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2018-05-05 02:10 - 2018-05-05 02:11 - 000007623 _____ C:\WINDOWS\diagerr.xml
2018-05-05 02:01 - 2018-05-17 18:38 - 001689054 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-05-05 01:49 - 2018-05-05 01:49 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2018-05-05 01:46 - 2018-05-05 02:12 - 000000000 ____D C:\Users\pchla
2018-05-05 01:46 - 2018-05-05 01:47 - 000000000 ____D C:\Users\pchla\AppData\Local\Google
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Šablony
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Soubory cookie
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Poslední
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Okolní tiskárny
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Okolní síť
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Nabídka Start
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Dokumenty
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Documents\Obrázky
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Documents\Hudba
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Documents\Filmy
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\Data aplikací
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2018-05-05 01:46 - 2018-05-05 01:46 - 000000000 _SHDL C:\Users\pchla\AppData\Local\Data aplikací
2018-05-05 01:46 - 2018-04-12 01:34 - 000001105 _____ C:\Users\pchla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-05-05 01:46 - 2017-08-22 22:31 - 000000000 ____D C:\Users\pchla\AppData\Local\AVG
2018-05-05 01:46 - 2017-07-17 00:39 - 000000000 ____D C:\Users\pchla\AppData\Local\Microsoft Help
2018-05-05 01:46 - 2017-07-15 17:35 - 000000000 ____D C:\Users\pchla\AppData\Roaming\Macromedia
2018-05-05 01:43 - 2018-05-05 01:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2018-05-05 01:43 - 2018-05-05 01:43 - 000000000 ____D C:\Program Files\Dolby Digital Plus
2018-05-05 01:42 - 2018-05-05 02:13 - 000000000 ____D C:\Intel
2018-05-05 01:42 - 2018-05-05 01:42 - 000000000 ____D C:\ProgramData\USOShared
2018-05-05 01:42 - 2018-04-12 01:33 - 002752000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2018-05-05 01:42 - 2016-12-19 08:17 - 000103944 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2018-05-05 01:42 - 2016-12-19 08:17 - 000099848 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2018-05-05 01:37 - 2018-05-16 22:01 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-05-05 01:37 - 2018-05-09 18:52 - 000410032 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-05-05 00:47 - 2018-04-29 21:40 - 000196112 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2018-05-05 00:47 - 2018-04-29 21:40 - 000137928 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2018-05-05 00:47 - 2018-04-29 21:40 - 000110432 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2018-05-05 00:47 - 2018-04-29 21:40 - 000108320 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2018-05-05 00:47 - 2018-04-29 21:40 - 000082816 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys
2018-05-05 00:47 - 2018-04-29 21:40 - 000050136 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys
2018-05-05 00:47 - 2018-02-28 00:00 - 000015872 _____ (ESET) C:\WINDOWS\system32\Drivers\eelam.sys
2018-05-05 00:44 - 2018-05-05 02:36 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2018-05-05 00:43 - 2018-05-05 00:44 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2018-05-05 00:28 - 2018-05-05 00:28 - 004492288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-05-05 00:28 - 2018-05-05 00:28 - 003398144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2018-05-05 00:28 - 2018-05-05 00:28 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2018-05-05 00:28 - 2018-05-05 00:28 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2018-05-05 00:28 - 2018-05-05 00:28 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2018-05-05 00:28 - 2018-05-05 00:28 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2018-05-05 00:28 - 2018-05-05 00:28 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2018-05-05 00:28 - 2018-05-05 00:28 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2018-05-05 00:27 - 2018-05-05 00:27 - 001166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2018-05-05 00:27 - 2018-05-05 00:27 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2018-05-05 00:27 - 2018-05-05 00:27 - 000124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2018-05-05 00:27 - 2018-05-05 00:27 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2018-05-05 00:27 - 2018-05-05 00:27 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2018-05-05 00:27 - 2018-05-05 00:27 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2018-05-05 00:27 - 2018-05-05 00:27 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2018-05-05 00:27 - 2018-05-05 00:27 - 000000000 ____D C:\Program Files\Reference Assemblies
2018-05-05 00:27 - 2018-05-05 00:27 - 000000000 ____D C:\Program Files\MSBuild
2018-05-05 00:27 - 2018-05-05 00:27 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2018-05-05 00:27 - 2018-05-05 00:27 - 000000000 ____D C:\Program Files (x86)\MSBuild
2018-05-05 00:14 - 2018-05-05 00:14 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2018-05-04 23:11 - 2018-05-05 02:12 - 000000000 ___DC C:\WINDOWS\Panther
2018-05-04 22:29 - 2018-05-04 22:29 - 000002269 _____ C:\Users\Public\Desktop\AVG PC TuneUp.lnk
2018-05-04 22:29 - 2018-05-04 22:29 - 000002269 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp.lnk
2018-05-04 22:29 - 2018-01-22 14:52 - 000045568 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\TURegOpt.exe
2018-05-04 22:21 - 2018-05-04 22:21 - 000018624 _____ C:\Users\pchla\Downloads\[CzT]AVG_PC_TuneUp_2017_v_16_76_3_18604_x86_x64_CZ_.torrent
2018-05-03 17:34 - 2018-05-03 18:21 - 000000000 ____D C:\Users\pchla\Downloads\apk new system honor
2018-05-01 21:56 - 2018-05-01 21:56 - 038702806 _____ C:\Users\pchla\Downloads\Vexento - Fireworks.wav
2018-04-30 21:28 - 2018-04-30 21:28 - 002753041 _____ C:\Users\pchla\Downloads\kalendar-nostalgickych-jizdy-2018.pdf
2018-04-25 21:24 - 2018-04-25 21:24 - 001081249 _____ C:\Users\pchla\Downloads\pozvanka-na-mimoradnou-valnou-hromadu-1322015.pdf
2018-04-25 21:07 - 2018-04-25 21:07 - 000000000 ____D C:\Users\pchla\AppData\Roaming\ADBDriverInstaller
2018-04-25 20:26 - 2018-04-25 20:26 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-04-25 20:26 - 2018-03-02 04:04 - 000828216 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2018-04-25 20:26 - 2018-03-02 04:03 - 000960312 _____ C:\WINDOWS\system32\vulkan-1.dll
2018-04-25 20:26 - 2018-03-02 04:03 - 000683832 _____ C:\WINDOWS\system32\vulkaninfo.exe
2018-04-25 20:26 - 2018-03-02 04:03 - 000575800 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2018-04-25 20:25 - 2018-04-22 08:52 - 005947328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2018-04-25 20:25 - 2018-04-22 08:52 - 002612808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2018-04-25 20:25 - 2018-04-22 08:52 - 001768008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2018-04-25 20:25 - 2018-04-22 08:52 - 000634304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2018-04-25 20:25 - 2018-04-22 08:52 - 000451144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2018-04-25 20:25 - 2018-04-22 08:52 - 000124200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2018-04-25 20:25 - 2018-04-22 08:52 - 000082880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2018-04-25 20:25 - 2018-04-05 17:12 - 008153222 _____ C:\WINDOWS\system32\nvcoproc.bin
2018-04-25 20:25 - 2018-01-15 06:51 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2018-04-25 20:24 - 2018-05-05 00:47 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2018-04-25 20:21 - 2018-04-23 07:00 - 031274352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-04-25 20:21 - 2018-04-23 07:00 - 013726184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2018-04-25 20:21 - 2018-04-23 07:00 - 011272024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2018-04-25 20:21 - 2018-04-23 07:00 - 001562312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2018-04-25 20:21 - 2018-04-23 07:00 - 001468616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439731.dll
2018-04-25 20:21 - 2018-04-23 07:00 - 001418800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2018-04-25 20:21 - 2018-04-23 07:00 - 001216472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2018-04-25 20:21 - 2018-04-23 07:00 - 001091784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2018-04-25 20:21 - 2018-04-23 07:00 - 000627400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2018-04-25 20:21 - 2018-04-23 07:00 - 000518160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 040347336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 035251400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 025987920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 004348376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 003759656 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 001991216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439731.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 001350152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 001157832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 001064864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 000905528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 000814544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2018-04-25 20:21 - 2018-04-23 06:59 - 000653152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2018-04-25 20:21 - 2018-04-23 06:58 - 017779880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-04-25 20:21 - 2018-04-23 06:58 - 015191904 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2018-04-25 20:21 - 2018-04-23 06:58 - 004823488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2018-04-25 20:21 - 2018-04-23 06:58 - 004086224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2018-04-25 20:21 - 2018-04-22 13:04 - 000058816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2018-04-25 20:21 - 2018-04-22 13:04 - 000044277 _____ C:\WINDOWS\system32\nvinfo.pb
2018-04-17 21:25 - 2018-04-17 21:42 - 000000000 ____D C:\Users\pchla\Downloads\m belonoha
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-05-17 20:13 - 2018-03-18 20:35 - 000000000 ____D C:\Users\pchla\AppData\LocalLow\Mozilla
2018-05-17 20:09 - 2018-04-11 23:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-05-17 20:08 - 2015-07-16 05:33 - 000001236 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2018-05-17 20:08 - 2015-07-16 05:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-05-17 20:08 - 2015-07-16 05:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-05-17 19:20 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-05-17 18:38 - 2018-04-12 17:50 - 000716456 _____ C:\WINDOWS\system32\perfh005.dat
2018-05-17 18:38 - 2018-04-12 17:50 - 000144714 _____ C:\WINDOWS\system32\perfc005.dat
2018-05-17 18:38 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2018-05-17 18:32 - 2017-07-15 14:02 - 000000000 __SHD C:\Users\pchla\IntelGraphicsProfiles
2018-05-17 18:32 - 2017-07-15 12:54 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-05-17 18:32 - 2017-07-15 12:53 - 000000000 ____D C:\ProgramData\NVIDIA
2018-05-17 18:31 - 2018-04-11 23:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-05-17 18:29 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-05-17 18:11 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-05-17 18:11 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-05-17 18:07 - 2017-11-04 20:54 - 000007609 _____ C:\Users\pchla\AppData\Local\resmon.resmoncfg
2018-05-17 18:06 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-05-16 20:54 - 2017-07-23 21:00 - 000000000 ____D C:\ProgramData\Gramblr
2018-05-16 20:50 - 2017-07-23 21:00 - 000000000 ____D C:\Program Files\Gramblr
2018-05-16 20:32 - 2016-08-05 10:12 - 000000000 ____D C:\Users\pchla\Desktop\foto nikon vyber z fotaku
2018-05-16 19:45 - 2017-11-22 18:23 - 000000000 ____D C:\Users\pchla\AppData\Local\Packages
2018-05-16 19:29 - 2017-05-02 22:29 - 000001619 _____ C:\Users\pchla\Desktop\akce 2018 - 16.5.txt
2018-05-15 19:51 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-05-15 19:51 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-05-10 22:16 - 2018-01-05 22:02 - 000000000 ____D C:\Users\pchla\Desktop\složky z fotáku 28.4.18
2018-05-10 21:46 - 2017-12-28 19:18 - 000000000 ___RD C:\Users\pchla\Downloads\mp3
2018-05-10 18:26 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-05-09 18:54 - 2017-11-23 14:53 - 000000000 ___RD C:\Users\pchla\3D Objects
2018-05-09 18:54 - 2015-07-16 05:28 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\tk-TM
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\sw-KE
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\si-LK
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\prs-AF
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\mn-MN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ky-KG
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-BD
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\tk-TM
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\te-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\sw-KE
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\prs-AF
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\or-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\mn-MN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ky-KG
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\km-KH
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\is-IS
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\id-ID
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\bn-BD
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\be-BY
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\as-IN
2018-05-08 22:46 - 2018-04-12 17:51 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\ta-in
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\si-lk
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\setup
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\am-et
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\Provisioning
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2018-05-08 22:46 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2018-05-08 20:37 - 2017-08-09 22:32 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-05-08 20:31 - 2017-10-12 19:33 - 141696960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-05-08 20:30 - 2017-07-15 14:51 - 141696960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-05-07 20:25 - 2018-04-12 01:38 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-05-07 20:19 - 2017-07-15 17:36 - 000000000 ___RD C:\Users\pchla\Desktop\Aplikace
2018-05-07 20:18 - 2017-08-16 20:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2018-05-07 20:17 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\appcompat
2018-05-05 02:37 - 2018-04-12 01:38 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2018-05-05 02:37 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2018-05-05 02:36 - 2018-04-12 17:50 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2018-05-05 02:36 - 2018-04-12 17:50 - 000000000 ____D C:\WINDOWS\system32\WCN
2018-05-05 02:36 - 2018-04-12 01:41 - 000000000 ____D C:\WINDOWS\Setup
2018-05-05 02:36 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2018-05-05 02:36 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\spool
2018-05-05 02:36 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\IME
2018-05-05 02:36 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\Help
2018-05-05 02:36 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files\Common Files\system
2018-05-05 02:36 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-05-05 02:36 - 2018-04-07 20:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FortiClient
2018-05-05 02:36 - 2017-11-06 18:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Driver Updater
2018-05-05 02:36 - 2017-11-01 20:49 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2018-05-05 02:36 - 2017-09-07 20:24 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2018-05-05 02:36 - 2017-08-16 20:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite
2018-05-05 02:36 - 2017-07-16 00:40 - 000000000 ____D C:\WINDOWS\cs
2018-05-05 02:36 - 2017-07-15 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2018-05-05 02:36 - 2017-07-15 17:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-05-05 02:36 - 2017-07-15 17:35 - 000000000 ____D C:\WINDOWS\SysWOW64\Adobe
2018-05-05 02:36 - 2017-07-15 15:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-05-05 02:36 - 2017-07-15 14:03 - 000000000 ____D C:\WINDOWS\oem
2018-05-05 02:36 - 2017-07-15 12:54 - 000000000 ____D C:\Program Files\Intel
2018-05-05 02:36 - 2015-10-22 19:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF
2018-05-05 02:36 - 2015-07-16 05:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2018-05-05 02:36 - 2015-07-16 05:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2018-05-05 02:36 - 2015-07-16 05:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2018-05-05 02:36 - 2015-07-10 15:14 - 000000000 ____D C:\WINDOWS\ShellNew
2018-05-05 02:11 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files\windows nt
2018-05-05 02:09 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\Registration
2018-05-05 02:01 - 2018-04-12 01:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-05-05 01:59 - 2017-07-15 13:18 - 000023020 _____ C:\WINDOWS\system32\emptyregdb.dat
2018-05-05 01:58 - 2017-07-15 15:26 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-05-05 01:53 - 2017-07-15 17:46 - 000000000 ____D C:\Users\pchla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2018-05-05 01:53 - 2017-07-15 17:44 - 000000000 ____D C:\Users\pchla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-05-05 01:53 - 2017-07-15 15:30 - 000000000 ____D C:\Users\pchla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2018-05-05 01:44 - 2017-07-15 12:53 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-05-05 01:43 - 2017-07-15 13:39 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2018-05-05 01:43 - 2017-07-15 12:55 - 002033046 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2018-05-05 01:42 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\USOPrivate
2018-05-05 01:42 - 2017-07-15 12:54 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2018-05-05 01:42 - 2017-07-15 12:54 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2018-05-05 01:42 - 2017-07-15 12:54 - 000000000 ____D C:\WINDOWS\system32\DAX2
2018-05-05 00:49 - 2018-04-12 01:38 - 000000000 __RHD C:\Users\Public\Libraries
2018-05-05 00:47 - 2018-04-12 17:50 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2018-05-05 00:47 - 2018-04-12 17:50 - 000000000 ____D C:\WINDOWS\system32\slmgr
2018-05-05 00:47 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-05-05 00:47 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-05-05 00:47 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2018-05-05 00:47 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2018-05-05 00:45 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2018-05-05 00:44 - 2018-02-27 23:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2018-05-05 00:44 - 2017-07-15 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2018-05-05 00:44 - 2017-07-15 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Webteh
2018-05-05 00:44 - 2017-07-15 12:54 - 000000000 ____D C:\Program Files\Realtek
2018-05-05 00:41 - 2018-04-12 17:50 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2018-05-05 00:41 - 2018-04-12 17:50 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2018-05-05 00:41 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2018-05-05 00:40 - 2018-04-12 17:50 - 000000000 ____D C:\WINDOWS\system32\winrm
2018-05-05 00:40 - 2018-04-12 17:50 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2018-05-05 00:40 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2018-05-05 00:40 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-05-05 00:40 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files\Windows Defender
2018-05-05 00:40 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2018-05-05 00:40 - 2018-04-11 23:04 - 000000000 ____D C:\WINDOWS\servicing
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\en-GB
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\et-EE
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\es-MX
2018-05-05 00:28 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\en-GB
2018-05-05 00:27 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2018-05-05 00:27 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\MUI
2018-05-04 22:28 - 2017-11-01 19:37 - 000000000 ____D C:\Users\pchla\AppData\Local\AvgSetupLog
2018-05-04 22:28 - 2017-11-01 19:37 - 000000000 ____D C:\ProgramData\Avg
2018-05-04 22:27 - 2017-07-15 17:46 - 000000000 ____D C:\ProgramyN
2018-05-04 22:24 - 2017-11-01 19:38 - 000000000 ____D C:\Program Files (x86)\AVG
2018-05-04 22:22 - 2017-11-02 19:40 - 000000000 ____D C:\Users\pchla\Downloads\TORRENT
2018-05-03 18:44 - 2017-10-26 17:53 - 000007521 _____ C:\Users\pchla\Desktop\filmy tahat a koukat 26.10.17.txt
2018-05-01 23:22 - 2018-04-12 01:41 - 000835064 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-05-01 23:22 - 2018-04-12 01:41 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-05-01 17:15 - 2017-07-15 17:44 - 000000000 ____D C:\Users\pchla\AppData\Local\CrashDumps
2018-05-01 17:15 - 2017-07-15 14:09 - 000000000 ___RD C:\Users\pchla\OneDrive
2018-04-28 23:12 - 2017-08-16 22:46 - 000000121 _____ C:\Users\pchla\Desktop\karty sd.txt
2018-04-25 22:08 - 2017-07-15 14:05 - 000000000 ____D C:\Users\pchla\AppData\Local\NVIDIA
2018-04-25 20:25 - 2017-07-15 12:53 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-04-25 20:25 - 2017-07-15 12:53 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-04-25 18:57 - 2016-02-04 01:00 - 000000000 ___RD C:\Users\pchla\Desktop\A-MP3
==================== Files in the root of some directories =======
2017-07-15 22:53 - 2017-07-15 22:53 - 000000208 _____ () C:\Users\pchla\AppData\Roaming\PCNTB.MTBF.txt
2017-11-04 20:54 - 2018-05-17 18:07 - 000007609 _____ () C:\Users\pchla\AppData\Local\resmon.resmoncfg
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\Users\pchla\Desktop\IMG_0505.m4v:com.apple.quarantine [54]
==================== Security Center ==================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Internet Security (Disabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
Verze podpisu: AV: 1.267.1524.0, AS: 1.267.1524.0, NIS: 1.267.1524.0
Verze podpisu: AV: 1.267.1524.0, AS: 1.267.1524.0, NIS: 1.267.1524.0
AS: ESET Internet Security (Disabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
Verze podpisu: AV: 1.267.1524.0, AS: 1.267.1524.0, NIS: 1.267.1524.0
Verze podpisu: AV: 1.267.1524.0, AS: 1.267.1524.0, NIS: 1.267.1524.0
FW: ESET Firewall (Disabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\pchla\Desktop" je 759816 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
-
Rudy
- Site Admin
- Příspěvky: 118240
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomaly počitač,pomalý internet
Otevřte poznámkový blok a zkopírujte do něj:
Z logu:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
IFEO\acerportal.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\AcroRd32.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\carecenter.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\creative cloud.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\databasecompare.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\dustdefenderclean.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\excel.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\forticlient_diagnostic_tool.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\gramblr.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\groove.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\lync.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\misc.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msaccess.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msoev.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msotd.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msoxmled.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\mspub.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\nvidia geforce experience.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\ocpubmgr.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\onenote.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\outlook.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\powerpnt.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\quickaccess.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\secureline.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\spreadsheetcompare.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\uninstall.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\utorrent.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\winword.exe: [Debugger] "C:\ProgramyN\avg\AVG PC TuneUp\TUAutoReactivator64.exe"
SearchScopes: HKU\S-1-5-21-3163961007-1588310606-1942131564-1001 -> DefaultScope {5411EA71-F23B-4885-B012-F0730D3F520A} URL =
SearchScopes: HKU\S-1-5-21-3163961007-1588310606-1942131564-1001 -> {052C3605-06A9-4F12-90F1-CD8ADB3AE6A8} URL =
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
Task: {6E9E891C-C7F3-42C8-933B-9AF6CA281016} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-15] (Google Inc.)
Task: {AEFB2101-AE43-4A6D-BB4E-7FAE87181788} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-15] (Google Inc.)
C:\Program Files (x86)\Bonjour
EmptyTemp:
End
Z logu:
To je příliš mnoho a může to způsobovat zpomalení startu systému. Vytvořte v C:\Users\pchla novou složku, do níž přesuňte všechna data z plochy. Na plochu si pak dejte zástupce té složky pro snazší přístup.Velikost slozky "C:\Users\pchla\Desktop" je 759816 MB.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomaly počitač,pomalý internet
Fix result of Farbar Recovery Scan Tool (x64) Version: 16.05.2018 01
Ran by pchla (17-05-2018 21:29:56) Run:1
Running from C:\Users\pchla\Desktop
Loaded Profiles: pchla (Available Profiles: pchla)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses
IFEOacerportal.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOAcroRd32.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOcarecenter.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOcreative cloud.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOdatabasecompare.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOdustdefenderclean.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOexcel.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOforticlient_diagnostic_tool.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOgramblr.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOgroove.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOlync.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOmisc.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOmsaccess.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOmsoev.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOmsotd.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOmsoxmled.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOmspub.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOnvidia geforce experience.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOocpubmgr.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOonenote.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOoutlook.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOpowerpnt.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOquickaccess.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOsecureline.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOspreadsheetcompare.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOuninstall.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOutorrent.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOwinword.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
SearchScopes HKUS-1-5-21-3163961007-1588310606-1942131564-1001 - DefaultScope {5411EA71-F23B-4885-B012-F0730D3F520A} URL =
SearchScopes HKUS-1-5-21-3163961007-1588310606-1942131564-1001 - {052C3605-06A9-4F12-90F1-CD8ADB3AE6A8} URL =
CWINDOWSSystem32TasksGoogleUpdateTaskMachineUA
CWINDOWSSystem32TasksGoogleUpdateTaskMachineCore
CWINDOWSsystem32{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
CWINDOWSsystem32{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
ContextMenuHandlers5 [igfxcui] - {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} = - No File
Task {6E9E891C-C7F3-42C8-933B-9AF6CA281016} - System32TasksGoogleUpdateTaskMachineUA = CProgram Files (x86)GoogleUpdateGoogleUpdate.exe [2017-07-15] (Google Inc.)
Task {AEFB2101-AE43-4A6D-BB4E-7FAE87181788} - System32TasksGoogleUpdateTaskMachineCore = CProgram Files (x86)GoogleUpdateGoogleUpdate.exe [2017-07-15] (Google Inc.)
CProgram Files (x86)Bonjour
EmptyTemp
End
*****************
CloseProcesses => Error: No automatic fix found for this entry.
IFEOacerportal.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOAcroRd32.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOcarecenter.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOcreative cloud.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOdatabasecompare.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOdustdefenderclean.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOexcel.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOforticlient_diagnostic_tool.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOgramblr.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOgroove.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOlync.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOmisc.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOmsaccess.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOmsoev.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOmsotd.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOmsoxmled.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOmspub.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOnvidia geforce experience.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOocpubmgr.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOonenote.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOoutlook.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOpowerpnt.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOquickaccess.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOsecureline.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOspreadsheetcompare.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOuninstall.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOutorrent.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOwinword.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
SearchScopes HKUS-1-5-21-3163961007-1588310606-1942131564-1001 - DefaultScope {5411EA71-F23B-4885-B012-F0730D3F520A} URL = => Error: No automatic fix found for this entry.
SearchScopes HKUS-1-5-21-3163961007-1588310606-1942131564-1001 - {052C3605-06A9-4F12-90F1-CD8ADB3AE6A8} URL = => Error: No automatic fix found for this entry.
CWINDOWSSystem32TasksGoogleUpdateTaskMachineUA => Error: No automatic fix found for this entry.
CWINDOWSSystem32TasksGoogleUpdateTaskMachineCore => Error: No automatic fix found for this entry.
CWINDOWSsystem32{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => Error: No automatic fix found for this entry.
CWINDOWSsystem32{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat => Error: No automatic fix found for this entry.
ContextMenuHandlers5 [igfxcui] - {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} = - No File => Error: No automatic fix found for this entry.
Task {6E9E891C-C7F3-42C8-933B-9AF6CA281016} - System32TasksGoogleUpdateTaskMachineUA = CProgram Files (x86)GoogleUpdateGoogleUpdate.exe [2017-07-15] (Google Inc.) => Error: No automatic fix found for this entry.
Task {AEFB2101-AE43-4A6D-BB4E-7FAE87181788} - System32TasksGoogleUpdateTaskMachineCore = CProgram Files (x86)GoogleUpdateGoogleUpdate.exe [2017-07-15] (Google Inc.) => Error: No automatic fix found for this entry.
CProgram Files (x86)Bonjour => Error: No automatic fix found for this entry.
EmptyTemp => Error: No automatic fix found for this entry.
==== End of Fixlog 21:29:56 ====
Ran by pchla (17-05-2018 21:29:56) Run:1
Running from C:\Users\pchla\Desktop
Loaded Profiles: pchla (Available Profiles: pchla)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses
IFEOacerportal.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOAcroRd32.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOcarecenter.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOcreative cloud.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOdatabasecompare.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOdustdefenderclean.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOexcel.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOforticlient_diagnostic_tool.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOgramblr.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOgroove.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOlync.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOmisc.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOmsaccess.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOmsoev.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOmsotd.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOmsoxmled.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOmspub.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOnvidia geforce experience.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOocpubmgr.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOonenote.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOoutlook.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOpowerpnt.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOquickaccess.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOsecureline.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOspreadsheetcompare.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOuninstall.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOutorrent.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
IFEOwinword.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe
SearchScopes HKUS-1-5-21-3163961007-1588310606-1942131564-1001 - DefaultScope {5411EA71-F23B-4885-B012-F0730D3F520A} URL =
SearchScopes HKUS-1-5-21-3163961007-1588310606-1942131564-1001 - {052C3605-06A9-4F12-90F1-CD8ADB3AE6A8} URL =
CWINDOWSSystem32TasksGoogleUpdateTaskMachineUA
CWINDOWSSystem32TasksGoogleUpdateTaskMachineCore
CWINDOWSsystem32{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
CWINDOWSsystem32{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
ContextMenuHandlers5 [igfxcui] - {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} = - No File
Task {6E9E891C-C7F3-42C8-933B-9AF6CA281016} - System32TasksGoogleUpdateTaskMachineUA = CProgram Files (x86)GoogleUpdateGoogleUpdate.exe [2017-07-15] (Google Inc.)
Task {AEFB2101-AE43-4A6D-BB4E-7FAE87181788} - System32TasksGoogleUpdateTaskMachineCore = CProgram Files (x86)GoogleUpdateGoogleUpdate.exe [2017-07-15] (Google Inc.)
CProgram Files (x86)Bonjour
EmptyTemp
End
*****************
CloseProcesses => Error: No automatic fix found for this entry.
IFEOacerportal.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOAcroRd32.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOcarecenter.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOcreative cloud.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOdatabasecompare.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOdustdefenderclean.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOexcel.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOforticlient_diagnostic_tool.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOgramblr.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOgroove.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOlync.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOmisc.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOmsaccess.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOmsoev.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOmsotd.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOmsoxmled.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOmspub.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOnvidia geforce experience.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOocpubmgr.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOonenote.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOoutlook.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOpowerpnt.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOquickaccess.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOsecureline.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOspreadsheetcompare.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOuninstall.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOutorrent.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
IFEOwinword.exe [Debugger] CProgramyNavgAVG PC TuneUpTUAutoReactivator64.exe => Error: No automatic fix found for this entry.
SearchScopes HKUS-1-5-21-3163961007-1588310606-1942131564-1001 - DefaultScope {5411EA71-F23B-4885-B012-F0730D3F520A} URL = => Error: No automatic fix found for this entry.
SearchScopes HKUS-1-5-21-3163961007-1588310606-1942131564-1001 - {052C3605-06A9-4F12-90F1-CD8ADB3AE6A8} URL = => Error: No automatic fix found for this entry.
CWINDOWSSystem32TasksGoogleUpdateTaskMachineUA => Error: No automatic fix found for this entry.
CWINDOWSSystem32TasksGoogleUpdateTaskMachineCore => Error: No automatic fix found for this entry.
CWINDOWSsystem32{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => Error: No automatic fix found for this entry.
CWINDOWSsystem32{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat => Error: No automatic fix found for this entry.
ContextMenuHandlers5 [igfxcui] - {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} = - No File => Error: No automatic fix found for this entry.
Task {6E9E891C-C7F3-42C8-933B-9AF6CA281016} - System32TasksGoogleUpdateTaskMachineUA = CProgram Files (x86)GoogleUpdateGoogleUpdate.exe [2017-07-15] (Google Inc.) => Error: No automatic fix found for this entry.
Task {AEFB2101-AE43-4A6D-BB4E-7FAE87181788} - System32TasksGoogleUpdateTaskMachineCore = CProgram Files (x86)GoogleUpdateGoogleUpdate.exe [2017-07-15] (Google Inc.) => Error: No automatic fix found for this entry.
CProgram Files (x86)Bonjour => Error: No automatic fix found for this entry.
EmptyTemp => Error: No automatic fix found for this entry.
==== End of Fixlog 21:29:56 ====
-
Rudy
- Site Admin
- Příspěvky: 118240
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomaly počitač,pomalý internet
Nějak to moc nezafungovalo. Zkuste to znovu se stejným skriptem, ale v nouz. režimu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomaly počitač,pomalý internet
jak se prosim dostanu do nouzáku díky moc 
-
Rudy
- Site Admin
- Příspěvky: 118240
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomaly počitač,pomalý internet
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?