Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Zpomalené PC

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zpráva
Autor
breta21
Návštěvník
Návštěvník
Příspěvky: 183
Registrován: 31 srp 2009 14:37

Zpomalené PC

#1 Příspěvek od breta21 »

Zdravím, poslední dobou mne trápí velice pomalý NTB. Projel jsem to avastem, anti malwaremem (Malwerbytes) i ccleanrem. Nic to nenašlo, ccleaner nepomohl...prikladam log
Logfile of random's system information tool 1.10 (written by random/random)
Run by breta at 2018-09-05 19:38:04
Microsoft Windows 10 Home
System drive C: has 115 GB (47%) free of 243 GB
Total RAM: 3970 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:38:06, on 05.09.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
C:\ProgramData\Battle.net\Agent\Agent.6383\Agent.exe
C:\Program Files\trend micro\breta.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer17win10.msn.com/?pc=ACTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://search.yahoo.com/yhs/web?hspart ... 0617__yaie
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
O4 - HKCU\..\Run: [ShowBatteryBar] "C:\Program Files\BatteryBar\ShowBatteryBar.exe" show
O4 - HKCU\..\Run: [Lync] C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe /fromrunkey
O4 - HKCU\..\Run: [Viber] "C:\Users\breta\AppData\Local\Viber\Viber.exe" StartMinimized
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [Uninstall 18.131.0701.0007\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\breta\AppData\Local\Microsoft\OneDrive\18.131.0701.0007\amd64"
O4 - HKCU\..\RunOnce: [Uninstall 18.131.0701.0007] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\breta\AppData\Local\Microsoft\OneDrive\18.131.0701.0007"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1885444895-1151541194-3766610177-1000\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'defaultuser0')
O4 - HKUS\S-1-5-21-1885444895-1151541194-3766610177-1000\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'defaultuser0')
O4 - Startup: Sync.LNK = C:\Users\breta\AppData\Local\Programs\Sync\sync-taskbar.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.webcompanion.com
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: AtherosSvc - Unknown owner - C:\WINDOWS\system32\DRIVERS\AdminService.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ceddadac8a2b489e\IntelCpHeciSvc.exe
O23 - Service: Intel(R) Content Protection HDCP Service (cplspcon) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ceddadac8a2b489e\IntelCpHDCPSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ceddadac8a2b489e\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) SUR QC Software Asset Manager (Intel(R) SUR QC SAM) - Intel Corporation - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
O23 - Service: Intel SST Parameter Service (IntelSSTSvc) - Unknown owner - C:\WINDOWS\system32\IntelSSTAPO\ParameterService\ParameterService.exe (file missing)
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: OpenVPNService - - C:\Program Files\OpenVPN\bin\openvpnserv2.exe
O23 - Service: OpenVPN Interactive Service (OpenVPNServiceInteractive) - The OpenVPN Project - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service: OpenVPN Legacy Service (OpenVPNServiceLegacy) - The OpenVPN Project - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service: Quick Access Local Service (QALSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
O23 - Service: Quick Access Service (QASvc) - Acer Incorporated - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TunnelBear Maintenance (TunnelBearMaintenance) - Unknown owner - C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)

--
End of file - 13425 bytes

======Listing Processes======








winlogon.exe


c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
"dwm.exe"
c:\windows\system32\svchost.exe -k localservice -p -s bthserv
c:\windows\system32\svchost.exe -k localservice -p -s BthAvctpSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s BTAGService
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localservice -p -s nsi
C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ceddadac8a2b489e\igfxCUIService.exe
dashost.exe {833ca138-36bd-451c-80bfb2ee4f3e59c2}
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache

c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
"C:\WINDOWS\system32\IntelSSTAPO\ParameterService\ParameterService.exe"
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s WwanSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection

C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
C:\WINDOWS\system32\DRIVERS\AdminService.exe
C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ceddadac8a2b489e\IntelCpHDCPSvc.exe
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
"c:\program files\openvpn\bin\openvpnserv.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService

"C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe"
c:\windows\system32\svchost.exe -k networkservice -p -s TapiSrv
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ceddadac8a2b489e\IntelCpHeciSvc.exe
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s Browser
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s Netman
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
"ctfmon.exe"
"C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ceddadac8a2b489e\igfxEM.exe"
C:\WINDOWS\Explorer.EXE
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
"C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_2.1.18.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe" -ServerName:App.AppX495fygk72hjw82j58ny5h3nr8hpsd8vs.mca
"C:\Program Files\Acer\Acer Quick Access\QALSvc.exe"
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k netsvcs -p
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Acer\Acer Quick Access\QAAgent.exe"
"C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe"
"C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ceddadac8a2b489e\igfxext.exe" -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\AVAST Software\Avast\AvastUI.exe"
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /TRUEHARMONY
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k networkservice -p -s DoSvc
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc

c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe" task
"C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe" task
"C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe" -r "C:\Users\breta\AppData\Local\AOP SDK\Acer Infra\acer\SyncAgent" -u S-1-5-21-1885444895-1151541194-3766610177-1001 -c 752 -s 420 -g "C:\ProgramData\acer\CCD"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Acer\Care Center\ACCStd.exe"
"C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe" -s
c:\windows\system32\svchost.exe -k netsvcs -p -s seclogon
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\OpenWith.exe -Embedding
"C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe" -ServerName:WindowsDefaultLockScreen.AppX7y4nbzq37zn4ks9k7amqjywdat7d3j2z.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k printworkflow -s PrintWorkflowUserSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s RmSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DsSvc
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_11807.1001.13.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1807.2121.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x678
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\breta\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\breta\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\breta\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=68.0.3440.106 --initial-client-data=0x1dc,0x1e0,0x1e4,0x1d8,0x1e8,0x7ff9af4224d0,0x7ff9af4224e0,0x7ff9af4224f0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=10840 --on-initialized-event-handle=700 --parent-handle=712 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1636,15823910639763161794,2216120337045502476,131072 --gpu-preferences=KAAAAAAAAACAAwBAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --service-request-channel-token=CF1EA9A4E0421039EEE3EFA076336CB6 --mojo-platform-channel-handle=1684 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,15823910639763161794,2216120337045502476,131072 --service-pipe-token=BA4A4FB5263E65742D53128D9F726A01 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=BA4A4FB5263E65742D53128D9F726A01 --renderer-client-id=3 --mojo-platform-channel-handle=3008 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,15823910639763161794,2216120337045502476,131072 --service-pipe-token=A70677921B1E80447F78B9FD3EB79E6D --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=A70677921B1E80447F78B9FD3EB79E6D --renderer-client-id=4 --mojo-platform-channel-handle=2968 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,15823910639763161794,2216120337045502476,131072 --service-pipe-token=C81E9DB6B670014C2E4770C2BAE9E459 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=C81E9DB6B670014C2E4770C2BAE9E459 --renderer-client-id=5 --mojo-platform-channel-handle=3416 /prefetch:1
"C:\ProgramData\Battle.net\Agent\Agent.6383\Agent.exe" --locale=enUS --session=1806903540754584786
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s XblAuthManager
C:\WINDOWS\System32\svchost.exe -k GraphicsPerfSvcGroup -s GraphicsPerfSvc
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,15823910639763161794,2216120337045502476,131072 --service-pipe-token=6090E4B3D3BEA069ECEA7BDEE6362B14 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=6090E4B3D3BEA069ECEA7BDEE6362B14 --renderer-client-id=81 --mojo-platform-channel-handle=7744 /prefetch:1
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,15823910639763161794,2216120337045502476,131072 --service-pipe-token=1C676754765FCE5486C575667B54E273 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=1C676754765FCE5486C575667B54E273 --renderer-client-id=84 --mojo-platform-channel-handle=6860 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,15823910639763161794,2216120337045502476,131072 --service-pipe-token=F64959F8E9D6037781696A77FC2E263C --lang=cs --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=F64959F8E9D6037781696A77FC2E263C --renderer-client-id=85 --mojo-platform-channel-handle=1200 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,15823910639763161794,2216120337045502476,131072 --service-pipe-token=BF1C3B6041CC735152CEEF3F1186806A --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=BF1C3B6041CC735152CEEF3F1186806A --renderer-client-id=88 --mojo-platform-channel-handle=6020 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,15823910639763161794,2216120337045502476,131072 --service-pipe-token=B6ABDE49A3CA905835102123A54A194F --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=B6ABDE49A3CA905835102123A54A194F --renderer-client-id=91 --mojo-platform-channel-handle=3276 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,15823910639763161794,2216120337045502476,131072 --service-pipe-token=47BD538F734DA025A4F88422DF262C3D --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=47BD538F734DA025A4F88422DF262C3D --renderer-client-id=93 --mojo-platform-channel-handle=8108 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe24_ Global\UsGthrCtrlFltPipeMssGthrPipe24 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 720 724 732 8192 728
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
"C:\Users\breta\Downloads\RSITx64 (1).exe"

C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost

=========Mozilla firefox=========

ProfilePath - C:\Users\breta\AppData\Roaming\Mozilla\Firefox\Profiles\3fa1oxu4.default

prefs.js - "browser.startup.homepage" - "https://search.yahoo.com/yhs/web?hspart ... 0617__yaff"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.181.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.181.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll


C:\Users\breta\AppData\Roaming\Mozilla\Firefox\Profiles\3fa1oxu4.default\extensions\
partnerdefaults@mozilla.com

C:\Users\breta\AppData\Roaming\Mozilla\Firefox\Profiles\3fa1oxu4.default\searchplugins\
yahoo-lavasoft-ff59.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-08-19 202424]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-04-29 149168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-08-20 480120]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-08-20 194424]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2018-04-12 638872]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2016-09-20 71168]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2016-08-22 16695816]
"RtHDVBg_TrueHarmony"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-08-22 1462792]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-08-22 242392]
"MouseDriver"=C:\WINDOWS\system32\TiltWheelMouse.exe [2013-04-09 241152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"=C:\Windows\SysWOW64\OneDriveSetup.exe [2018-04-12 20488312]
"ShowBatteryBar"=C:\Program Files\BatteryBar\ShowBatteryBar.exe [2014-09-19 89600]
"Lync"=C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe [2018-08-19 23810128]
"Viber"=C:\Users\breta\AppData\Local\Viber\Viber.exe [2018-08-21 33453640]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2018-05-24 18364648]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall 18.131.0701.0007\amd64"=C:\WINDOWS\system32\cmd.exe [2018-04-12 273920]
"Uninstall 18.131.0701.0007"=C:\WINDOWS\system32\cmd.exe [2018-04-12 273920]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-07-07 601424]

C:\Users\breta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Sync.LNK - C:\Users\breta\AppData\Local\Programs\Sync\sync-taskbar.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-09-03 23:23:49 ----D---- C:\ProgramData\Foxit Software
2018-09-03 23:23:22 ----D---- C:\Users\breta\AppData\Roaming\Foxit AgentInformation
2018-09-03 23:23:22 ----D---- C:\ProgramData\Foxit ContentPlatform
2018-09-03 23:23:18 ----D---- C:\Users\breta\AppData\Roaming\Foxit Software
2018-09-03 23:23:07 ----D---- C:\Program Files (x86)\Foxit Software
2018-08-24 07:45:41 ----D---- C:\RoboZonky
2018-08-22 08:31:14 ----A---- C:\WINDOWS\system32\aswBoot.exe
2018-08-20 19:34:43 ----D---- C:\Users\breta\AppData\Roaming\Sun
2018-08-20 19:34:26 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2018-08-20 19:33:59 ----D---- C:\ProgramData\Oracle
2018-08-20 19:33:56 ----D---- C:\Program Files (x86)\Java
2018-08-20 11:14:25 ----D---- C:\Users\breta\AppData\Roaming\MoneyManagerEx
2018-08-20 11:14:08 ----D---- C:\Program Files\MoneyManagerEX
2018-08-19 16:42:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-08-19 16:42:04 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-08-19 16:42:00 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-08-19 16:41:56 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-08-19 16:41:55 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2018-08-19 16:41:48 ----A---- C:\WINDOWS\system32\shell32.dll
2018-08-19 16:41:45 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-08-19 16:41:45 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-08-19 16:41:45 ----A---- C:\WINDOWS\system32\wininet.dll
2018-08-19 16:41:44 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2018-08-19 16:41:42 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-08-19 16:41:42 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-08-19 16:41:41 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-08-19 16:41:40 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-08-19 16:41:40 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-08-19 16:41:38 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-08-19 16:41:38 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-08-19 16:41:37 ----A---- C:\WINDOWS\system32\mos.dll
2018-08-19 16:41:37 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-08-19 16:41:36 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2018-08-19 16:41:36 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2018-08-19 16:41:35 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-08-19 16:41:35 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2018-08-19 16:41:35 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-08-19 16:41:35 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2018-08-19 16:41:34 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Controls.dll
2018-08-19 16:41:34 ----A---- C:\WINDOWS\system32\twinui.dll
2018-08-19 16:41:34 ----A---- C:\WINDOWS\system32\tquery.dll
2018-08-19 16:41:34 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2018-08-19 16:41:33 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-08-19 16:41:32 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2018-08-19 16:41:32 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-08-19 16:41:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2018-08-19 16:41:31 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2018-08-19 16:41:31 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-08-19 16:41:31 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2018-08-19 16:41:30 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2018-08-19 16:41:30 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2018-08-19 16:41:30 ----A---- C:\WINDOWS\system32\mssrch.dll
2018-08-19 16:41:29 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2018-08-19 16:41:29 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-08-19 16:41:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-08-19 16:41:28 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2018-08-19 16:41:28 ----A---- C:\WINDOWS\system32\InputService.dll
2018-08-19 16:41:27 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2018-08-19 16:41:27 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-08-19 16:41:27 ----A---- C:\WINDOWS\system32\dosvc.dll
2018-08-19 16:41:27 ----A---- C:\WINDOWS\system32\BingMaps.dll
2018-08-19 16:41:26 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-08-19 16:41:26 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2018-08-19 16:41:26 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-08-19 16:41:26 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-08-19 16:41:25 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-08-19 16:41:25 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-08-19 16:41:25 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-08-19 16:41:25 ----A---- C:\WINDOWS\system32\mstscax.dll
2018-08-19 16:41:25 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-08-19 16:41:24 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-08-19 16:41:24 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2018-08-19 16:41:24 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2018-08-19 16:41:24 ----A---- C:\WINDOWS\system32\msctf.dll
2018-08-19 16:41:24 ----A---- C:\WINDOWS\system32\cdprt.dll
2018-08-19 16:41:24 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-08-19 16:41:23 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-08-19 16:41:23 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-08-19 16:41:23 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2018-08-19 16:41:23 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2018-08-19 16:41:23 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-08-19 16:41:22 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2018-08-19 16:41:22 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2018-08-19 16:41:22 ----A---- C:\WINDOWS\system32\WFDSConMgrSvc.dll
2018-08-19 16:41:22 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2018-08-19 16:41:22 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2018-08-19 16:41:22 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2018-08-19 16:41:22 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-08-19 16:41:22 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2018-08-19 16:41:21 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2018-08-19 16:41:21 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2018-08-19 16:41:21 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2018-08-19 16:41:21 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-08-19 16:41:21 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2018-08-19 16:41:21 ----A---- C:\WINDOWS\system32\mfplat.dll
2018-08-19 16:41:21 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-08-19 16:41:21 ----A---- C:\WINDOWS\system32\MapRouter.dll
2018-08-19 16:41:21 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2018-08-19 16:41:20 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2018-08-19 16:41:20 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2018-08-19 16:41:20 ----A---- C:\WINDOWS\system32\wsp_health.dll
2018-08-19 16:41:20 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-08-19 16:41:20 ----A---- C:\WINDOWS\system32\lpasvc.dll
2018-08-19 16:41:20 ----A---- C:\WINDOWS\system32\localspl.dll
2018-08-19 16:41:20 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2018-08-19 16:41:19 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2018-08-19 16:41:19 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2018-08-19 16:41:19 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-08-19 16:41:19 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-08-19 16:41:19 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-08-19 16:41:19 ----A---- C:\WINDOWS\system32\NMAA.dll
2018-08-19 16:41:19 ----A---- C:\WINDOWS\system32\edgeangle.dll
2018-08-19 16:41:19 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-08-19 16:41:18 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2018-08-19 16:41:18 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2018-08-19 16:41:18 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2018-08-19 16:41:18 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2018-08-19 16:41:18 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2018-08-19 16:41:18 ----A---- C:\WINDOWS\system32\nettrace.dll
2018-08-19 16:41:18 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2018-08-19 16:41:18 ----A---- C:\WINDOWS\system32\jscript.dll
2018-08-19 16:41:18 ----A---- C:\WINDOWS\system32\daxexec.dll
2018-08-19 16:41:17 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2018-08-19 16:41:17 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2018-08-19 16:41:17 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-08-19 16:41:17 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2018-08-19 16:41:17 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-08-19 16:41:17 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2018-08-19 16:41:17 ----A---- C:\WINDOWS\system32\WWAHost.exe
2018-08-19 16:41:17 ----A---- C:\WINDOWS\system32\policymanager.dll
2018-08-19 16:41:17 ----A---- C:\WINDOWS\system32\MapsStore.dll
2018-08-19 16:41:16 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2018-08-19 16:41:16 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2018-08-19 16:41:16 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2018-08-19 16:41:16 ----A---- C:\WINDOWS\system32\winload.exe
2018-08-19 16:41:16 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2018-08-19 16:41:16 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-08-19 16:41:16 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2018-08-19 16:41:16 ----A---- C:\WINDOWS\system32\msi.dll
2018-08-19 16:41:16 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2018-08-19 16:41:16 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-08-19 16:41:16 ----A---- C:\WINDOWS\system32\cloudAP.dll
2018-08-19 16:41:16 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2018-08-19 16:41:15 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2018-08-19 16:41:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2018-08-19 16:41:15 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2018-08-19 16:41:15 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2018-08-19 16:41:15 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2018-08-19 16:41:15 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2018-08-19 16:41:15 ----A---- C:\WINDOWS\system32\winresume.exe
2018-08-19 16:41:15 ----A---- C:\WINDOWS\system32\vbscript.dll
2018-08-19 16:41:15 ----A---- C:\WINDOWS\system32\tdh.dll
2018-08-19 16:41:15 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2018-08-19 16:41:15 ----A---- C:\WINDOWS\system32\provops.dll
2018-08-19 16:41:15 ----A---- C:\WINDOWS\system32\provengine.dll
2018-08-19 16:41:15 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2018-08-19 16:41:15 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-08-19 16:41:15 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-08-19 16:41:15 ----A---- C:\WINDOWS\system32\clusapi.dll
2018-08-19 16:41:15 ----A---- C:\WINDOWS\system32\ci.dll
2018-08-19 16:41:15 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-08-19 16:41:14 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2018-08-19 16:41:14 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2018-08-19 16:41:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Vpn.dll
2018-08-19 16:41:14 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2018-08-19 16:41:14 ----A---- C:\WINDOWS\SYSWOW64\rdpserverbase.dll
2018-08-19 16:41:14 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2018-08-19 16:41:14 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-08-19 16:41:14 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2018-08-19 16:41:14 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2018-08-19 16:41:14 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2018-08-19 16:41:14 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2018-08-19 16:41:14 ----A---- C:\WINDOWS\system32\securekernel.exe
2018-08-19 16:41:14 ----A---- C:\WINDOWS\system32\rsaenh.dll
2018-08-19 16:41:14 ----A---- C:\WINDOWS\system32\rdpserverbase.dll
2018-08-19 16:41:14 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2018-08-19 16:41:13 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2018-08-19 16:41:13 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2018-08-19 16:41:13 ----A---- C:\WINDOWS\system32\wldp.dll
2018-08-19 16:41:13 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-08-19 16:41:13 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2018-08-19 16:41:13 ----A---- C:\WINDOWS\system32\resutils.dll
2018-08-19 16:41:13 ----A---- C:\WINDOWS\system32\PushToInstall.dll
2018-08-19 16:41:13 ----A---- C:\WINDOWS\system32\profsvc.dll
2018-08-19 16:41:13 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2018-08-19 16:41:13 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2018-08-19 16:41:13 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-08-19 16:41:13 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2018-08-19 16:41:13 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2018-08-19 16:41:13 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2018-08-19 16:41:13 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2018-08-19 16:41:13 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-08-19 16:41:13 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2018-08-19 16:41:13 ----A---- C:\WINDOWS\system32\defragsvc.dll
2018-08-19 16:41:13 ----A---- C:\WINDOWS\system32\datamarketsvc.dll
2018-08-19 16:41:12 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2018-08-19 16:41:12 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2018-08-19 16:41:12 ----A---- C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2018-08-19 16:41:12 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2018-08-19 16:41:12 ----A---- C:\WINDOWS\system32\sysmain.dll
2018-08-19 16:41:12 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2018-08-19 16:41:12 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-08-19 16:41:12 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2018-08-19 16:41:11 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2018-08-19 16:41:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.XamlHost.dll
2018-08-19 16:41:11 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2018-08-19 16:41:11 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2018-08-19 16:41:11 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2018-08-19 16:41:11 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2018-08-19 16:41:11 ----A---- C:\WINDOWS\system32\vertdll.dll
2018-08-19 16:41:11 ----A---- C:\WINDOWS\system32\services.exe
2018-08-19 16:41:11 ----A---- C:\WINDOWS\system32\rdpencom.dll
2018-08-19 16:41:11 ----A---- C:\WINDOWS\system32\nltest.exe
2018-08-19 16:41:11 ----A---- C:\WINDOWS\system32\hvhostsvc.dll
2018-08-19 16:41:11 ----A---- C:\WINDOWS\system32\drivers\Ucx01000.sys
2018-08-19 16:41:11 ----A---- C:\WINDOWS\system32\drivers\scmbus.sys
2018-08-19 16:41:11 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-08-19 16:41:11 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2018-08-19 16:41:10 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2018-08-19 16:41:10 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2018-08-19 16:41:10 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2018-08-19 16:41:10 ----A---- C:\WINDOWS\system32\sppc.dll
2018-08-19 16:41:10 ----A---- C:\WINDOWS\system32\ProvSysprep.dll
2018-08-19 16:41:10 ----A---- C:\WINDOWS\system32\nshwfp.dll
2018-08-19 16:41:10 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2018-08-19 16:41:10 ----A---- C:\WINDOWS\system32\kdnet.dll
2018-08-19 16:41:10 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2018-08-19 16:41:10 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2018-08-19 16:41:10 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2018-08-19 16:41:09 ----A---- C:\WINDOWS\SYSWOW64\WiFiDisplay.dll
2018-08-19 16:41:09 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2018-08-19 16:41:09 ----A---- C:\WINDOWS\system32\wuuhext.dll
2018-08-19 16:41:09 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-08-19 16:41:09 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2018-08-19 16:41:09 ----A---- C:\WINDOWS\system32\rdpudd.dll
2018-08-19 16:41:09 ----A---- C:\WINDOWS\system32\RasMediaManager.dll
2018-08-19 16:41:09 ----A---- C:\WINDOWS\system32\rasmans.dll
2018-08-19 16:41:09 ----A---- C:\WINDOWS\system32\mssvp.dll
2018-08-19 16:41:09 ----A---- C:\WINDOWS\system32\drivers\winhv.sys
2018-08-19 16:41:09 ----A---- C:\WINDOWS\system32\drivers\vpci.sys
2018-08-19 16:41:09 ----A---- C:\WINDOWS\system32\drivers\vmbus.sys
2018-08-19 16:41:09 ----A---- C:\WINDOWS\system32\drivers\exfat.sys
2018-08-19 16:41:09 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2018-08-19 16:41:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Controls.dll
2018-08-19 16:41:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MixedRealityCapture.dll
2018-08-19 16:41:08 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2018-08-19 16:41:08 ----A---- C:\WINDOWS\SYSWOW64\raschap.dll
2018-08-19 16:41:08 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2018-08-19 16:41:08 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2018-08-19 16:41:08 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2018-08-19 16:41:08 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2018-08-19 16:41:08 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2018-08-19 16:41:08 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2018-08-19 16:41:08 ----A---- C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-08-19 16:41:08 ----A---- C:\WINDOWS\system32\WaaSAssessment.dll
2018-08-19 16:41:08 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2018-08-19 16:41:08 ----A---- C:\WINDOWS\system32\raschap.dll
2018-08-19 16:41:08 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2018-08-19 16:41:08 ----A---- C:\WINDOWS\system32\msiexec.exe
2018-08-19 16:41:08 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2018-08-19 16:41:08 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-08-19 16:41:08 ----A---- C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2018-08-19 16:41:08 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2018-08-19 16:41:08 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2018-08-19 16:41:08 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2018-08-19 16:41:07 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2018-08-19 16:41:07 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2018-08-19 16:41:07 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-08-19 16:41:07 ----A---- C:\WINDOWS\system32\mcbuilder.exe
2018-08-19 16:41:07 ----A---- C:\WINDOWS\system32\fontsub.dll
2018-08-19 16:41:07 ----A---- C:\WINDOWS\system32\EasPolicyManagerBrokerPS.dll
2018-08-19 16:41:06 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2018-08-19 16:41:06 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2018-08-19 16:41:06 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-08-19 16:41:06 ----A---- C:\WINDOWS\system32\t2embed.dll
2018-08-19 16:41:06 ----A---- C:\WINDOWS\system32\hlink.dll
2018-08-19 16:41:06 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2018-08-19 16:41:05 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2018-08-19 16:41:05 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-08-19 16:41:05 ----A---- C:\WINDOWS\SYSWOW64\mcbuilder.exe
2018-08-19 16:41:05 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2018-08-19 16:41:05 ----A---- C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2018-08-19 16:41:05 ----A---- C:\WINDOWS\system32\mssph.dll
2018-08-19 16:41:05 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-08-19 16:41:05 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2018-08-19 16:41:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2018-08-19 16:41:04 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-08-19 16:41:04 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2018-08-19 16:41:04 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2018-08-19 16:41:04 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2018-08-19 16:41:04 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2018-08-19 16:41:04 ----A---- C:\WINDOWS\system32\mssprxy.dll
2018-08-19 16:41:04 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2018-08-19 16:41:04 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-08-19 16:41:04 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2018-08-19 16:41:04 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-08-19 16:41:03 ----A---- C:\WINDOWS\SYSWOW64\winshfhc.dll
2018-08-19 16:41:03 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2018-08-19 16:41:03 ----A---- C:\WINDOWS\SYSWOW64\OneCoreCommonProxyStub.dll
2018-08-19 16:41:03 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2018-08-19 16:41:03 ----A---- C:\WINDOWS\system32\winshfhc.dll
2018-08-19 16:41:03 ----A---- C:\WINDOWS\system32\WFDSConMgr.dll
2018-08-19 16:41:03 ----A---- C:\WINDOWS\system32\tzres.dll
2018-08-19 16:41:03 ----A---- C:\WINDOWS\system32\rascustom.dll
2018-08-19 16:41:03 ----A---- C:\WINDOWS\system32\drivers\vmgid.sys
2018-08-19 16:41:03 ----A---- C:\WINDOWS\system32\atmlib.dll

======List of files/folders modified in the last 1 month======

2018-09-05 19:38:05 ----D---- C:\WINDOWS\Prefetch
2018-09-05 19:38:05 ----D---- C:\Program Files\trend micro
2018-09-05 19:38:04 ----D---- C:\WINDOWS\Temp
2018-09-05 19:10:00 ----D---- C:\WINDOWS\system32\sru
2018-09-05 19:07:52 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-09-05 17:41:39 ----D---- C:\WINDOWS\system32\drivers
2018-09-05 17:10:59 ----AD---- C:\Program Files (x86)\World of Warcraft
2018-09-05 17:10:31 ----AD---- C:\Program Files (x86)\Battle.net
2018-09-05 17:08:21 ----D---- C:\WINDOWS\system32\LogFiles
2018-09-04 21:20:08 ----D---- C:\WINDOWS\system32\SleepStudy
2018-09-04 21:20:03 ----D---- C:\WINDOWS\Logs
2018-09-04 21:20:00 ----RD---- C:\WINDOWS\Microsoft.NET
2018-09-04 21:19:53 ----D---- C:\WINDOWS\system32\config
2018-09-04 20:42:58 ----D---- C:\Users\breta\AppData\Roaming\ViberPC
2018-09-04 17:39:25 ----SHD---- C:\WINDOWS\Installer
2018-09-04 17:39:25 ----D---- C:\WINDOWS\system32\Tasks
2018-09-04 07:07:21 ----D---- C:\Windows
2018-09-03 23:23:49 ----HD---- C:\ProgramData
2018-09-03 23:23:07 ----RD---- C:\Program Files (x86)
2018-09-03 23:21:36 ----D---- C:\Program Files (x86)\Adobe
2018-09-03 23:21:26 ----D---- C:\WINDOWS\SysWOW64
2018-09-03 23:15:36 ----D---- C:\Program Files (x86)\Intel
2018-09-03 22:58:53 ----D---- C:\ProgramData\Package Cache
2018-09-03 22:58:52 ----D---- C:\Program Files (x86)\Intel Driver and Support Assistant
2018-09-03 22:57:10 ----D---- C:\Program Files (x86)\Steam
2018-09-03 22:56:01 ----RD---- C:\Program Files
2018-09-03 22:55:59 ----D---- C:\WINDOWS\INF
2018-09-03 22:55:04 ----D---- C:\Users\breta\AppData\Roaming\uTorrent
2018-09-03 22:55:04 ----D---- C:\Program Files\PDFCreator
2018-09-03 22:54:46 ----DC---- C:\WINDOWS\Panther
2018-09-03 22:54:45 ----D---- C:\WINDOWS\debug
2018-09-03 22:54:10 ----D---- C:\WINDOWS\System32
2018-09-03 22:54:10 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-09-03 22:47:01 ----D---- C:\WINDOWS\AppReadiness
2018-09-03 22:46:53 ----D---- C:\Program Files (x86)\TunnelBear
2018-09-03 19:08:52 ----SHD---- C:\System Volume Information
2018-09-03 16:09:29 ----D---- C:\WINDOWS\CbsTemp
2018-09-03 15:10:03 ----HD---- C:\Program Files\WindowsApps
2018-08-27 14:12:58 ----D---- C:\WINDOWS\LiveKernelReports
2018-08-27 14:08:53 ----D---- C:\WINDOWS\system32\catroot2
2018-08-27 10:46:12 ----D---- C:\WINDOWS\WinSxS
2018-08-26 19:09:38 ----D---- C:\WINDOWS\system32\NDF
2018-08-22 17:24:26 ----D---- C:\WINDOWS\system32\drivers\wd
2018-08-22 08:31:14 ----HD---- C:\WINDOWS\ELAMBKUP
2018-08-21 17:13:32 ----RSD---- C:\WINDOWS\assembly
2018-08-20 19:34:50 ----D---- C:\Program Files (x86)\Common Files
2018-08-19 22:08:20 ----D---- C:\WINDOWS\system32\DriverStore
2018-08-19 22:07:32 ----SD---- C:\WINDOWS\SYSWOW64\F12
2018-08-19 22:07:32 ----D---- C:\WINDOWS\TextInput
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\zu-ZA
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\yo-NG
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\xh-ZA
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\wo-SN
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\uz-Latn-UZ
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\tn-ZA
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\ti-ET
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\tg-Cyrl-TJ
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-RS
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-BA
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\sd-Arab-PK
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\rw-RW
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\quc-Latn-GT
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\pa-Arab-PK
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\nso-ZA
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\migration
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\ku-Arab-IQ
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\ig-NG
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\ha-Latn-NG
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\en-US
2018-08-19 22:07:32 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2018-08-19 22:07:31 ----SD---- C:\WINDOWS\system32\UNP
2018-08-19 22:07:31 ----SD---- C:\WINDOWS\system32\F12
2018-08-19 22:07:31 ----SD---- C:\WINDOWS\system32\DiagSvcs
2018-08-19 22:07:31 ----D---- C:\WINDOWS\SYSWOW64\chr-CHER-US
2018-08-19 22:07:31 ----D---- C:\WINDOWS\SYSWOW64\ca-ES-valencia
2018-08-19 22:07:31 ----D---- C:\WINDOWS\SYSWOW64\bs-Latn-BA
2018-08-19 22:07:31 ----D---- C:\WINDOWS\SYSWOW64\az-Latn-AZ
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\zu-ZA
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\yo-NG
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\xh-ZA
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\wo-SN
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\tn-ZA
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\ti-ET
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\ShellExperiences
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\rw-RW
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\nso-ZA
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\migration
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\ig-NG
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\chr-CHER-US
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\en-US
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\drivers\en-US
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\cs-CZ
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\Boot
2018-08-19 22:07:31 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2018-08-19 22:07:30 ----RD---- C:\WINDOWS\PrintDialog
2018-08-19 22:07:30 ----RD---- C:\Program Files\Windows Defender
2018-08-19 22:07:30 ----D---- C:\WINDOWS\ShellExperiences
2018-08-19 22:07:30 ----D---- C:\WINDOWS\bcastdvr
2018-08-19 22:07:30 ----D---- C:\Program Files (x86)\Windows Defender
2018-08-19 16:48:19 ----D---- C:\WINDOWS\system32\MRT
2018-08-19 16:45:38 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-08-19 16:36:14 ----AD---- C:\Program Files (x86)\Microsoft Office
2018-08-19 16:31:27 ----AD---- C:\Program Files (x86)\Hearthstone
2018-08-09 12:37:33 ----D---- C:\Users\breta\AppData\Roaming\vlc
2018-08-06 17:19:36 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2018-08-06 15:31:25 ----D---- C:\SZ

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2018-08-22 201320]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2018-08-22 346664]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2018-08-22 59568]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2018-06-21 15360]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2018-09-01 87904]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2018-08-22 381560]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2016-09-20 795640]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2018-04-12 58272]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\WINDOWS\system32\drivers\SgrmAgent.sys [2018-04-12 63896]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-04-12 39424]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2018-08-22 199712]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2018-08-22 229384]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2018-08-22 249016]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2018-08-22 111864]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2018-08-22 1027720]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2018-09-04 467320]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-04-12 60320]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-04-12 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-04-12 8192]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2018-08-22 163272]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-07-14 414720]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2018-04-12 43520]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2017-04-24 605616]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2018-04-12 106496]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2018-04-12 86528]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2018-04-12 129536]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2018-04-12 85504]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-04-12 60320]
R3 ETDI2C;@oem23.inf,%ELANI2CDeviceDesc%;ELAN I2C Filter Driver; C:\WINDOWS\system32\DRIVERS\ETDI2C.sys [2016-08-17 217688]
R3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-04-12 171520]
R3 igfx;igfx; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ceddadac8a2b489e\igdkmd64.sys [2018-05-09 13137832]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2016-08-22 5276168]
R3 IntcDAud;@oem32.inf,%IntcAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2018-03-26 625768]
R3 LMDriver;@oem47.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\WINDOWS\System32\drivers\LMDriver.sys [2018-05-15 31000]
R3 MEIx64;@oem6.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-02-04 185896]
R3 Qcamain10x64;@oem46.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN 11AC device driver; C:\WINDOWS\system32\DRIVERS\Qcamain10x64.sys [2017-11-08 2328488]
R3 RadioShim;@oem47.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\WINDOWS\System32\drivers\RadioShim.sys [2018-05-15 25368]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2018-04-12 193536]
R3 rt640x64;@oem26.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2016-08-22 943112]
R3 RTSPER;@oem17.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2016-08-04 779232]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-04-12 38304]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-04-12 321432]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-04-12 885144]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-04-12 145816]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-04-12 124312]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-04-12 128408]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-04-12 75160]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-04-12 82328]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-04-12 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-04-12 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-04-12 39840]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2018-08-03 128920]
S2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2018-09-05 215728]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-04-12 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-04-12 18432]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2018-08-22 46968]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2018-04-12 92056]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2018-07-14 1069568]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-04-12 39936]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-04-12 123392]
S3 dg_ssudbus;@oem33.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2017-05-18 131984]
S3 dtlitescsibus;@oem8.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2018-01-20 30264]
S3 dtliteusbbus;@oem4.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2018-01-20 47672]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys []
S3 ew_usbenumfilter;@oem30.inf,%busupper.SVCDESC%;huawei_CompositeFilter; C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys []
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-04-12 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-04-12 50592]
S3 huawei_enumerator;huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys []
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2018-08-03 77608]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-04-12 27136]
S3 hwusb_cdcacm;hwusb_cdcacm; C:\WINDOWS\system32\DRIVERS\ew_cdcacm.sys []
S3 hwusb_wwanecm;hwusb_wwanecm; C:\WINDOWS\System32\drivers\ew_wwanecm.sys []
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-04-12 1836952]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-04-12 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-04-12 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-04-12 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-04-12 88576]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-04-12 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-04-12 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-04-12 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-04-12 32256]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-04-12 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-04-12 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-04-12 56736]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-04-12 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-04-12 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-04-12 175104]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-04-12 104448]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2018-04-12 105984]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-04-12 16896]
S3 PXGX112;@oem18.inf,%SvcDispName%;Laser Gaming Mouse; C:\WINDOWS\system32\drivers\PXGX112.sys [2015-09-09 42528]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2018-06-15 945568]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-04-12 104448]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-04-12 33176]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-04-12 33184]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AtherosSvc;AtherosSvc; C:\WINDOWS\system32\DRIVERS\AdminService.exe [2017-04-24 347056]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-08-22 322464]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2017-03-20 2278616]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CDPUserSvc_6e0f5;Uživatelská služba platformy připojených zařízení_6e0f5; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2018-08-09 8853984]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 cplspcon;Intel(R) Content Protection HDCP Service; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ceddadac8a2b489e\IntelCpHDCPSvc.exe [2018-05-09 477688]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2016-09-20 17976]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ceddadac8a2b489e\igfxCUIService.exe [2018-05-09 412152]
R2 IntelSSTSvc;Intel SST Parameter Service; C:\WINDOWS\system32\IntelSSTAPO\ParameterService\ParameterService.exe [2016-07-12 26608]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2016-02-12 209184]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2016-02-12 415520]
R2 OneSyncSvc_6e0f5;Hostitel synchronizace_6e0f5; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 OpenVPNServiceInteractive;OpenVPN Interactive Service; C:\Program Files\OpenVPN\bin\openvpnserv.exe [2017-07-14 72832]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-07-14 760888]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\WINDOWS\system32\SgrmBroker.exe [2018-04-12 163336]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ceddadac8a2b489e\IntelCpHeciSvc.exe [2018-05-09 508920]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2018-05-28 43648]
R3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 PimIndexMaintenanceSvc_6e0f5;Data kontaktů_6e0f5; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 PrintWorkflowUserSvc_6e0f5;PrintWorkflow_6e0f5; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 QALSvc;Quick Access Local Service; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [2016-09-14 441136]
R3 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2016-09-14 482608]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-15 153168]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2018-05-09 6541008]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-08-22 7994520]
S3 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2018-08-22 57504]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService_6e0f5;Uživatelská služba pro GameDVR a vysílání her_6e0f5; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService_6e0f5;Služba pro podporu uživatelů Bluetooth_6e0f5; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc_6e0f5;DevicePicker_6e0f5; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc_6e0f5;Tok zařízení_6e0f5; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-08-03 90624]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-15 153168]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2016-01-14 976848]
S3 Intel(R) SUR QC SAM;Intel(R) SUR QC Software Asset Manager; C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [2017-07-13 18168]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService_6e0f5;Služba zasílání zpráv_6e0f5; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-05-18 194512]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 OpenVPNService;OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [2016-11-25 15872]
S3 OpenVPNServiceLegacy;OpenVPN Legacy Service; C:\Program Files\OpenVPN\bin\openvpnserv.exe [2017-07-14 72832]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-08-09 213584]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-04-12 1273344]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zpomalené PC

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

breta21
Návštěvník
Návštěvník
Příspěvky: 183
Registrován: 31 srp 2009 14:37

Re: Zpomalené PC

#3 Příspěvek od breta21 »

Ten Amazon Assistant se pokusil (sam) pridat znovu do chromu, ale chrome mne na to upozornil takže byl odstraněn. Nevím odkud to je....

# -------------------------------
# Malwarebytes AdwCleaner 7.2.3.1
# -------------------------------
# Build: 09-03-2018
# Database: 2018-09-04.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 09-05-2018
# Duration: 00:00:01
# OS: Windows 10 Home
# Cleaned: 7
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Web Companion
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}
Deleted HKCU\Software\Microsoft\Internet Explorer\Main|Start Page
Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com

***** [ Chromium (and derivatives) ] *****

Deleted Amazon Assistant for Chrome

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [3770 octets] - [13/06/2018 07:14:12]
AdwCleaner[C00].txt - [3422 octets] - [13/06/2018 07:14:45]
AdwCleaner[S01].txt - [1387 octets] - [13/06/2018 07:18:17]
AdwCleaner[S02].txt - [2042 octets] - [05/09/2018 20:06:24]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zpomalené PC

#4 Příspěvek od Rudy »

Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

breta21
Návštěvník
Návštěvník
Příspěvky: 183
Registrován: 31 srp 2009 14:37

Re: Zpomalené PC

#5 Příspěvek od breta21 »

logy jsou v příloze.........
Přílohy
Logs.rar
(26.1 KiB) Staženo 72 x

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zpomalené PC

#6 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
SearchScopes: HKU\S-1-5-21-1885444895-1151541194-3766610177-1001 -> DefaultScope {A9E6B20B-3626-4F6D-9E89-81AAFF5D2D43} URL =
SearchScopes: HKU\S-1-5-21-1885444895-1151541194-3766610177-1001 -> {A9E6B20B-3626-4F6D-9E89-81AAFF5D2D43} URL =
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File

EmptyTemp:
End
Uložte do C:\Users\breta\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

breta21
Návštěvník
Návštěvník
Příspěvky: 183
Registrován: 31 srp 2009 14:37

Re: Zpomalené PC

#7 Příspěvek od breta21 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 01.09.2018 03
Ran by breta (06-09-2018 19:42:56) Run:2
Running from C:\Users\breta\Downloads
Loaded Profiles: breta (Available Profiles: defaultuser0 & breta)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
SearchScopes: HKU\S-1-5-21-1885444895-1151541194-3766610177-1001 -> DefaultScope {A9E6B20B-3626-4F6D-9E89-81AAFF5D2D43} URL =
SearchScopes: HKU\S-1-5-21-1885444895-1151541194-3766610177-1001 -> {A9E6B20B-3626-4F6D-9E89-81AAFF5D2D43} URL =
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
"HKU\S-1-5-21-1885444895-1151541194-3766610177-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKU\S-1-5-21-1885444895-1151541194-3766610177-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A9E6B20B-3626-4F6D-9E89-81AAFF5D2D43}" => removed successfully
HKLM\Software\Classes\CLSID\{A9E6B20B-3626-4F6D-9E89-81AAFF5D2D43} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => not found
HKLM\Software\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => not found
HKLM\Software\Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => not found
HKLM\Software\Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => not found
HKLM\Software\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => not found
HKLM\Software\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => not found
HKLM\Software\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => not found
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui" => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found

=========== EmptyTemp: ==========

BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 95427334 B
Java, Flash, Steam htmlcache => 30648224 B
Windows/system/drivers => 1594442 B
Edge => 13312 B
Chrome => 397564451 B
Firefox => 4873923 B
Opera => 29922022 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 1806 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
defaultuser0 => 0 B
breta => 7781128 B

RecycleBin => 788808 B
EmptyTemp: => 552.5 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:43:38 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zpomalené PC

#8 Příspěvek od Rudy »

OK. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

breta21
Návštěvník
Návštěvník
Příspěvky: 183
Registrován: 31 srp 2009 14:37

Re: Zpomalené PC

#9 Příspěvek od breta21 »

O něco málo lepší to je, ale asi tam ještě neco je :(

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zpomalené PC

#10 Příspěvek od Rudy »

Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

breta21
Návštěvník
Návštěvník
Příspěvky: 183
Registrován: 31 srp 2009 14:37

Re: Zpomalené PC

#11 Příspěvek od breta21 »

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 04.07.18
Čas skenování: 8:54
Logovací soubor: 0a96d38e-7f57-11e8-b4be-00ff2fe91b02.json

-Informace o softwaru-
Verze: 3.5.1.2522
Verze komponentů: 1.0.374
Aktualizovat verzi balíku komponent: 1.0.5759
Licence: Bezplatný

-Systémová informace-
OS: Windows 10 (Build 17134.112)
CPU: x64
Systém souborů: NTFS
Uživatel: LAPTOP-RCMATI0H\breta

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 315491
Zjištěné hrozby: 73
Hrozby umístěné do karantény: 73
Uplynulý čas: 2 min, 28 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 1
PUP.Optional.DefaultSearch, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\nladljmabboanhihfkjacnnkgjhnokhj, V karanténě, [269], [475454],1.0.5759

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 14
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\browsericons, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\de, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\en, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\es, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\fr, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_metadata, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\lib, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\USERS\BRETA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NLADLJMABBOANHIHFKJACNNKGJHNOKHJ, V karanténě, [269], [475454],1.0.5759

Soubor: 58
PUP.Optional.DefaultSearch, C:\USERS\BRETA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Nahrazen, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\USERS\BRETA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Nahrazen, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\USERS\BRETA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NLADLJMABBOANHIHFKJACNNKGJHNOKHJ\1.3.7.6_0\MANIFEST.JSON, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\adaware.eot, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\adaware.svg, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\adaware.ttf, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\adaware.woff, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-book.ttf, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-bookitalic.ttf, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-light.ttf, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-lightitalic.ttf, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-medium.ttf, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-mediumitalic.ttf, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-semibold.ttf, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-semibolditalic.ttf, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\fontawesome-webfont.ttf, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\segoeui.ttf, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\auto-complete.css, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\flexbox.css, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\new-tab.css, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\normalize.css, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\roboto.css, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\browsericons\icon19.png, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\browsericons\icon38.png, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\adaware_secure_search.png, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\dot.png, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\dot_color.png, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\dropdown_arrow.png, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\icon_128.png, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\icon_16.png, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\magnifier_icon.png, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\settings_icon.png, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\lib\auto-complete.js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\lib\publicsuffixlist.js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\adaware-telemetry.js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\adaware-utils.js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\background.js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\i18n.js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\messaging.js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\new-tab.js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\pagestore.js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\polyfill.js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\start.js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\storage.js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\tab.js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\traffic.js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\uritools.js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\vapi-background.js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\vapi-client.js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\vapi-common.js, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\de\messages.json, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\en\messages.json, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\es\messages.json, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\fr\messages.json, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_metadata\verified_contents.json, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\background.html, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\LICENSE.txt, V karanténě, [269], [475454],1.0.5759
PUP.Optional.DefaultSearch, C:\Users\breta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\new-tab.html, V karanténě, [269], [475454],1.0.5759

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zpomalené PC

#12 Příspěvek od Rudy »

Vše smažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

breta21
Návštěvník
Návštěvník
Příspěvky: 183
Registrován: 31 srp 2009 14:37

Re: Zpomalené PC

#13 Příspěvek od breta21 »

Smazáno.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zpomalené PC

#14 Příspěvek od Rudy »

Změnilo se něco nyní?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

breta21
Návštěvník
Návštěvník
Příspěvky: 183
Registrován: 31 srp 2009 14:37

Re: Zpomalené PC

#15 Příspěvek od breta21 »

Určitě to lepší je, bohužel mám za to že určité zpomalení stále trvá. Není to tak vždy, nějakou dobu to šlape a pak najednou se "něco" spustí a NTB se zpomalí a přestane pracovat....

Odpovědět