Problém se spuštěním FRST, zablokovaný počítač

[nemocnice]

Dobrý den, ahoj, prosím o radu, po odklepnutí mailu mi PC hlásí narušení systému a všech přítupů a požaduje zaplatit částku pro odblokování. Vím, že je to spíš falešný poplach a je třeba počítač pročistit. Bohužel win blokují spuštění FRST, viz hláška v příloze.
Díky za radu

[JaRon]

ahoj,
mas spravnu verziu FRST ? 32b/64b

[nemocnice]

Javor, chyba je u mě, nenapadlo by mě, že jsou to 10 na 32bitech . Díky

[nemocnice]

Takže tu je scan

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 21.11.2018
Ran by Markéta (administrator) on KAREL (27-11-2018 13:14:19)
Running from C:\Users\Markéta\Desktop
Loaded Profiles: Markéta & DefaultAppPool (Available Profiles: Markéta & DefaultAppPool)
Platform: Microsoft Windows 10 Home Version 1803 17134.407 (X86) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(PS Media s.r.o.) C:\Windows\System32\ssins.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x86__8wekyb3d8bbwe\WinStore.App.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\CastSrv.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [486816 2018-04-11] (Microsoft Corporation)
HKLM\...\Run: [hpqSRMon] => C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242392 2018-11-15] (AVAST Software)
HKLM\...\Run: [DriveUtilitiesHelper] => C:\Program Files\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [1852264 2014-05-23] (Western Digital Technologies, Inc.)
HKLM\...\Run: [WD Drive Unlocker] => C:\Program Files\Western Digital\WD Security\WDDriveAutoUnlock.exe [1694048 2014-05-23] (Western Digital Technologies, Inc.)
HKLM\...\Run: [WD Quick View] => C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe [5564784 2015-07-20] (Western Digital Technologies, Inc.)
HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [3567936 2018-03-15] (Dropbox, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-21-2688046804-1852193209-2847023700-1000\...\Run: [TomTomHOME.exe] => C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [248176 2015-07-13] (TomTom)
HKU\S-1-5-21-2688046804-1852193209-2847023700-1000\...\Run: [Sony PC Companion] => C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony)
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2018-04-11] (Microsoft Corporation)
IFEO\AcroRd32.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\DATABASECOMPARE.EXE: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\dropbox.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\excel.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\filler602.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\groove.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\infopath.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\lync.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\misc.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\msaccess.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\msoev.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\msotd.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\mspub.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\OcPubMgr.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\onenote.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\pccompanion.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\powerpnt.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\skype.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\SPREADSHEETCOMPARE.EXE: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\tomtomhome.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\wddmstatus.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\wdsmartware.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\Winword.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\wmplayer.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Cleanup Premium.lnk [2018-02-24]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{3bab1738-a310-4131-bc56-1b071af21818}: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{e4999773-7ee7-4a84-a46e-31a493cb9652}: [NameServer] 77.234.40.79

Internet Explorer:
==================
HKU\S-1-5-21-2688046804-1852193209-2847023700-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-10-27] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-10-27] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: wf5j4lyr.default-1536913808343
FF ProfilePath: C:\Users\Markéta\AppData\Roaming\TomTom\HOME\Profiles\e6f5ks4w.default [2016-03-01]
FF Extension: (Map status indicator) - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [2015-05-29] [Legacy] [not signed]
FF ProfilePath: C:\Users\Markéta\AppData\Roaming\Mozilla\Firefox\Profiles\wf5j4lyr.default-1536913808343 [2018-11-27]
FF Extension: (Avast SafePrice) - C:\Users\Markéta\AppData\Roaming\Mozilla\Firefox\Profiles\wf5j4lyr.default-1536913808343\Extensions\sp@avast.com.xpi [2018-04-09]
FF Extension: (Avast Online Security) - C:\Users\Markéta\AppData\Roaming\Mozilla\Firefox\Profiles\wf5j4lyr.default-1536913808343\Extensions\wrc@avast.com.xpi [2018-11-27]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-05-30] [Legacy] [not signed]
FF HKU\S-1-5-21-2688046804-1852193209-2847023700-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_31_0_0_153.dll [2018-11-21] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1210150.dll [2014-03-11] (Adobe Systems, Inc.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)
FF Plugin: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-10-27] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-10-27] (Oracle Corporation)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-22] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-22] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-09-20] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2688046804-1852193209-2847023700-1000: sony.com/MediaGoDetector -> C:\Program Files\Sony\Media Go\npMediaGoDetector.dll [2015-05-29] (Sony Network Entertainment International LLC)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://www.seznam.cz/?clid=22668
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/?clid=22668"
CHR Profile: C:\Users\Markéta\AppData\Local\Google\Chrome\User Data\Default [2018-11-27]
CHR Extension: (Dokumenty) - C:\Users\Markéta\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-04-09]
CHR Extension: (Disk Google) - C:\Users\Markéta\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-28]
CHR Extension: (YouTube) - C:\Users\Markéta\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-03]
CHR Extension: (Vyhledávání Google) - C:\Users\Markéta\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-28]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Markéta\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-11-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\Markéta\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-02]
CHR Extension: (Avast Online Security) - C:\Users\Markéta\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-10-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Markéta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-05-11]
CHR Extension: (Gmail) - C:\Users\Markéta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-03]
CHR Extension: (Chrome Media Router) - C:\Users\Markéta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-11-08]
CHR Profile: C:\Users\Markéta\AppData\Local\Google\Chrome\User Data\Guest Profile [2018-11-25]
CHR Profile: C:\Users\Markéta\AppData\Local\Google\Chrome\User Data\System Profile [2018-11-25]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx <not found>
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [ihenkjeihefokohmemphikjnjbmegdik] - "C:\Program Files\Sony\Media Go\MediaGoDetector.crx" <not found>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
S4 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2012-05-04] (Advanced Micro Devices, Inc.) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6799632 2018-11-15] (AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-05-31] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [324000 2018-11-15] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [338632 2018-11-15] (AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-05-31] (AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2018-11-15] (AVAST Software)
R2 CleanupPSvc; C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe [9121248 2018-11-06] (AVAST Software)
S4 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-15] (Dropbox, Inc.)
S4 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-15] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [43344 2018-03-15] (Dropbox, Inc.)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 HPSLPSVC; C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL [694784 2009-09-20] (Hewlett-Packard Co.) [File not signed]
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
S2 SetupARService; C:\Program Files\Realtek\Audio\SetupAfterRebootService.exe [24576 2013-05-25] (Realtek Semiconductor.) [File not signed]
S4 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Avanquest Software) [File not signed]
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [353792 2018-03-19] ()
R2 ssinstall; C:\WINDOWS\System32\ssins.exe [4696960 2016-11-24] (PS Media s.r.o.)
S4 WDBackup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2015-10-28] (Western Digital Technologies, Inc.)
S4 WDDriveService; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [307576 2015-10-28] (Western Digital Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3650472 2018-04-11] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [86808 2018-09-21] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [39936 2011-11-13] (Advanced Micro Devices) [File not signed]
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [28832 2018-04-26] (Apple Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [167480 2018-11-15] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriverx.sys [188976 2018-11-15] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidshx.sys [165384 2018-11-15] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblogx.sys [284256 2018-11-15] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbunivx.sys [57904 2018-11-15] (AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [14840 2018-11-15] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [42736 2018-11-15] (AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [40688 2018-11-15] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [135200 2018-11-15] (AVAST Software)
R1 aswNetSec; C:\WINDOWS\System32\drivers\aswNetSec.sys [379584 2018-11-26] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [100984 2018-11-15] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [72800 2018-11-15] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [784560 2018-11-15] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [397992 2018-11-15] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [156936 2018-11-15] (AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [48152 2017-03-14] (The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [310200 2018-11-15] (AVAST Software)
S3 NTIOLib_1_0_4; C:\Program Files\MSI\Live Update 5\NTIOLib.sys [7680 2010-10-20] (MSI) [File not signed]
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [504832 2018-04-11] (Realtek )
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37448 2018-04-11] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [271776 2018-04-11] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [30208 2018-04-11] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [189952 2018-04-11] (Microsoft Corporation)
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-27 13:14 - 2018-11-27 13:15 - 000021640 _____ C:\Users\Markéta\Desktop\FRST.txt
2018-11-27 13:14 - 2018-11-27 13:14 - 000000000 ____D C:\FRST
2018-11-27 13:13 - 2018-11-27 13:13 - 001775616 _____ (Farbar) C:\Users\Markéta\Desktop\FRST.exe
2018-11-27 12:49 - 2018-11-27 12:49 - 000094512 _____ C:\Users\Markéta\Desktop\Hláška FRST.pdf
2018-11-27 12:15 - 2018-11-27 12:15 - 002416640 _____ (Farbar) C:\Users\Markéta\Desktop\FRST64.exe
2018-11-27 12:14 - 2018-11-27 12:14 - 002416640 _____ (Farbar) C:\Users\Markéta\Downloads\FRST64(1).exe
2018-11-27 12:11 - 2018-11-27 12:11 - 002416640 _____ (Farbar) C:\Users\Markéta\Downloads\FRST64.exe
2018-11-25 21:56 - 2018-09-04 23:25 - 001491976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2018-11-25 21:53 - 2018-11-15 19:32 - 000323288 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2018-11-22 12:35 - 2018-11-22 12:36 - 000998256 _____ (Slimware Utilities Holdings, Inc.) C:\Users\Markéta\Downloads\avastdriverupdater(2).exe
2018-11-22 12:35 - 2018-11-22 12:35 - 000998256 _____ (Slimware Utilities Holdings, Inc.) C:\Users\Markéta\Downloads\avastdriverupdater(1).exe
2018-11-22 12:32 - 2018-11-22 12:33 - 000998256 _____ (Slimware Utilities Holdings, Inc.) C:\Users\Markéta\Downloads\avastdriverupdater.exe
2018-11-21 21:42 - 2018-11-21 21:45 - 002416640 _____ (Farbar) C:\Users\Markéta\Downloads\FRST64 (2).exe
2018-11-21 20:12 - 2018-11-21 20:12 - 002416640 _____ (Farbar) C:\Users\Markéta\Downloads\FRST64 (1).exe
2018-11-21 20:10 - 2018-11-21 20:10 - 002416640 _____ (Farbar) C:\Users\Markéta\Downloads\Nepotvrzeno 822176.crdownload
2018-11-17 12:18 - 2018-11-17 12:18 - 000086735 _____ C:\Users\Markéta\Downloads\2018-02.pdf
2018-11-17 12:18 - 2018-11-17 12:18 - 000083602 _____ C:\Users\Markéta\Downloads\2018-03.pdf
2018-11-17 12:17 - 2018-11-17 12:17 - 000084311 _____ C:\Users\Markéta\Downloads\2018-01.pdf
2018-11-17 10:10 - 2018-11-17 10:10 - 000000000 ____D C:\Program Files\rempl
2018-11-16 14:33 - 2018-11-26 20:41 - 000000000 ____D C:\Users\Markéta\AppData\Local\CrashDumps
2018-11-16 13:32 - 2018-11-16 13:32 - 000253637 _____ C:\Users\Markéta\Downloads\dokument-98017087 (1).pdf
2018-11-15 19:40 - 2018-11-17 00:00 - 000834960 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2018-11-15 19:40 - 2018-11-17 00:00 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2018-11-15 19:32 - 2018-11-15 19:32 - 000040688 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2018-11-15 19:32 - 2018-11-15 19:32 - 000014840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2018-11-15 19:04 - 2018-11-01 11:10 - 001362440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2018-11-15 19:04 - 2018-11-01 11:07 - 000078648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2018-11-15 19:04 - 2018-11-01 10:54 - 003397632 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-11-15 19:04 - 2018-11-01 10:54 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-11-15 19:04 - 2018-11-01 05:50 - 000861712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2018-11-15 19:04 - 2018-11-01 05:48 - 004790184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-11-15 19:04 - 2018-11-01 05:48 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-11-15 19:04 - 2018-11-01 05:48 - 001805656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-11-15 19:04 - 2018-11-01 05:48 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-11-15 19:04 - 2018-11-01 05:48 - 000502824 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-11-15 19:04 - 2018-11-01 05:48 - 000343056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-11-15 19:04 - 2018-11-01 05:47 - 006687032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-11-15 19:04 - 2018-11-01 05:47 - 006570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-11-15 19:04 - 2018-11-01 05:47 - 001379792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-11-15 19:04 - 2018-11-01 05:47 - 001020064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-11-15 19:04 - 2018-11-01 05:47 - 000633336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-11-15 19:04 - 2018-11-01 05:47 - 000129304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-11-15 19:04 - 2018-11-01 05:33 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-11-15 19:04 - 2018-11-01 05:32 - 006647296 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2018-11-15 19:04 - 2018-11-01 05:31 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-11-15 19:04 - 2018-11-01 05:30 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2018-11-15 19:04 - 2018-11-01 05:30 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-11-15 19:04 - 2018-11-01 05:30 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-11-15 19:04 - 2018-11-01 05:30 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2018-11-15 19:04 - 2018-11-01 05:29 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2018-11-15 19:04 - 2018-11-01 05:28 - 000978944 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2018-11-15 19:04 - 2018-11-01 05:28 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-11-15 19:04 - 2018-11-01 05:27 - 001741312 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-11-15 19:04 - 2018-11-01 05:27 - 001627648 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-11-15 19:04 - 2018-11-01 05:27 - 000837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2018-11-15 19:04 - 2018-11-01 05:27 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2018-11-15 19:04 - 2018-11-01 05:27 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-11-15 19:04 - 2018-11-01 05:26 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-11-15 19:04 - 2018-10-21 12:38 - 000221216 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2018-11-15 19:04 - 2018-10-21 12:37 - 001530560 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2018-11-15 19:04 - 2018-10-21 12:28 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\INETRES.dll
2018-11-15 19:04 - 2018-10-21 08:19 - 001618376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-11-15 19:04 - 2018-10-21 08:19 - 000142136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-11-15 19:04 - 2018-10-21 08:02 - 002966528 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-11-15 19:04 - 2018-10-21 07:58 - 001172992 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-11-15 19:03 - 2018-11-01 11:10 - 004939408 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-11-15 19:03 - 2018-11-01 11:09 - 001027000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-11-15 19:03 - 2018-11-01 11:07 - 000316248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2018-11-15 19:03 - 2018-11-01 10:59 - 005669888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-11-15 19:03 - 2018-11-01 10:57 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2018-11-15 19:03 - 2018-11-01 10:56 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2018-11-15 19:03 - 2018-11-01 10:56 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2018-11-15 19:03 - 2018-11-01 10:55 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2018-11-15 19:03 - 2018-11-01 10:53 - 001459200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2018-11-15 19:03 - 2018-11-01 10:53 - 001082880 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2018-11-15 19:03 - 2018-11-01 10:53 - 000908288 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2018-11-15 19:03 - 2018-11-01 10:52 - 002892800 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-11-15 19:03 - 2018-11-01 06:08 - 002417952 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2018-11-15 19:03 - 2018-11-01 05:53 - 000994480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-11-15 19:03 - 2018-11-01 05:50 - 004171920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2018-11-15 19:03 - 2018-11-01 05:48 - 006039064 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-11-15 19:03 - 2018-11-01 05:48 - 002478872 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2018-11-15 19:03 - 2018-11-01 05:48 - 002351416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-11-15 19:03 - 2018-11-01 05:48 - 000880248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2018-11-15 19:03 - 2018-11-01 05:48 - 000384520 _____ (Microsoft Corporation) C:\WINDOWS\system32\coml2.dll
2018-11-15 19:03 - 2018-11-01 05:47 - 001989552 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-11-15 19:03 - 2018-11-01 05:47 - 000817768 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-11-15 19:03 - 2018-11-01 05:47 - 000679840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-11-15 19:03 - 2018-11-01 05:47 - 000220472 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-11-15 19:03 - 2018-11-01 05:47 - 000197136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2018-11-15 19:03 - 2018-11-01 05:40 - 022015488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-11-15 19:03 - 2018-11-01 05:35 - 019403776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-11-15 19:03 - 2018-11-01 05:35 - 003255296 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-11-15 19:03 - 2018-11-01 05:34 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-11-15 19:03 - 2018-11-01 05:33 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-11-15 19:03 - 2018-11-01 05:31 - 005307904 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2018-11-15 19:03 - 2018-11-01 05:31 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-11-15 19:03 - 2018-11-01 05:31 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2018-11-15 19:03 - 2018-11-01 05:30 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2018-11-15 19:03 - 2018-11-01 05:30 - 005775872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-11-15 19:03 - 2018-11-01 05:30 - 002808320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-11-15 19:03 - 2018-11-01 05:30 - 002278400 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-11-15 19:03 - 2018-11-01 05:30 - 001751552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-11-15 19:03 - 2018-11-01 05:30 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-11-15 19:03 - 2018-11-01 05:30 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-11-15 19:03 - 2018-11-01 05:30 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2018-11-15 19:03 - 2018-11-01 05:30 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2018-11-15 19:03 - 2018-11-01 05:30 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2018-11-15 19:03 - 2018-11-01 05:30 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2018-11-15 19:03 - 2018-11-01 05:29 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-11-15 19:03 - 2018-11-01 05:29 - 000674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-11-15 19:03 - 2018-11-01 05:29 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-11-15 19:03 - 2018-11-01 05:29 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-11-15 19:03 - 2018-11-01 05:29 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-11-15 19:03 - 2018-11-01 05:29 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-11-15 19:03 - 2018-11-01 05:29 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2018-11-15 19:03 - 2018-11-01 05:29 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2018-11-15 19:03 - 2018-11-01 05:29 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2018-11-15 19:03 - 2018-11-01 05:29 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2018-11-15 19:03 - 2018-11-01 05:28 - 001272832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-11-15 19:03 - 2018-11-01 05:28 - 001000448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-11-15 19:03 - 2018-11-01 05:28 - 000441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2018-11-15 19:03 - 2018-11-01 05:27 - 001354240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2018-11-15 19:03 - 2018-11-01 05:27 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-11-15 19:03 - 2018-11-01 05:27 - 000977408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2018-11-15 19:03 - 2018-11-01 05:27 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-11-15 19:03 - 2018-11-01 05:27 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-11-15 19:03 - 2018-11-01 05:27 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-11-15 19:03 - 2018-11-01 05:27 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-11-15 19:03 - 2018-11-01 05:26 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2018-11-15 19:03 - 2018-11-01 05:26 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-11-15 19:03 - 2018-10-21 12:38 - 001322376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2018-11-15 19:03 - 2018-10-21 12:38 - 000662312 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-11-15 19:03 - 2018-10-21 12:38 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2018-11-15 19:03 - 2018-10-21 12:37 - 020381808 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-11-15 19:03 - 2018-10-21 12:28 - 012501504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-11-15 19:03 - 2018-10-21 12:26 - 011902464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-11-15 19:03 - 2018-10-21 12:26 - 003458560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-11-15 19:03 - 2018-10-21 12:26 - 000596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2018-11-15 19:03 - 2018-10-21 12:25 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2018-11-15 19:03 - 2018-10-21 12:24 - 000887808 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2018-11-15 19:03 - 2018-10-21 12:23 - 000998400 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-11-15 19:03 - 2018-10-21 12:23 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2018-11-15 19:03 - 2018-10-21 12:23 - 000523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2018-11-15 19:03 - 2018-10-21 12:22 - 002405888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-11-15 19:03 - 2018-10-21 12:22 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2018-11-15 19:03 - 2018-10-21 08:39 - 000480272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-11-15 19:03 - 2018-10-21 08:20 - 000539904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-11-15 19:03 - 2018-10-21 08:20 - 000424000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2018-11-15 19:03 - 2018-10-21 08:20 - 000295224 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2018-11-15 19:03 - 2018-10-21 08:19 - 002487088 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2018-11-15 19:03 - 2018-10-21 08:19 - 002144056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-11-15 19:03 - 2018-10-21 08:19 - 001190696 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-11-15 19:03 - 2018-10-21 08:19 - 001130768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-11-15 19:03 - 2018-10-21 08:19 - 000949344 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-11-15 19:03 - 2018-10-21 08:19 - 000831216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-11-15 19:03 - 2018-10-21 08:19 - 000542520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2018-11-15 19:03 - 2018-10-21 08:19 - 000505616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2018-11-15 19:03 - 2018-10-21 08:19 - 000493368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2018-11-15 19:03 - 2018-10-21 08:18 - 001050488 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-11-15 19:03 - 2018-10-21 08:18 - 000142736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2018-11-15 19:03 - 2018-10-21 08:18 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2018-11-15 19:03 - 2018-10-21 08:18 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2018-11-15 19:03 - 2018-10-21 08:18 - 000044104 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2018-11-15 19:03 - 2018-10-21 08:09 - 013873664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-11-15 19:03 - 2018-10-21 08:02 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2018-11-15 19:03 - 2018-10-21 08:01 - 001189376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2018-11-15 19:03 - 2018-10-21 08:01 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2018-11-15 19:03 - 2018-10-21 08:01 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2018-11-15 19:03 - 2018-10-21 08:01 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
2018-11-15 19:03 - 2018-10-21 08:01 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe
2018-11-15 19:03 - 2018-10-21 08:01 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-11-15 19:03 - 2018-10-21 08:01 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhf.sys
2018-11-15 19:03 - 2018-10-21 08:01 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2018-11-15 19:03 - 2018-10-21 08:00 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2018-11-15 19:03 - 2018-10-21 08:00 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2018-11-15 19:03 - 2018-10-21 08:00 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2018-11-15 19:03 - 2018-10-21 08:00 - 000258048 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthAvctpSvc.dll
2018-11-15 19:03 - 2018-10-21 08:00 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2018-11-15 19:03 - 2018-10-21 08:00 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2018-11-15 19:03 - 2018-10-21 08:00 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthAvrcp.dll
2018-11-15 19:03 - 2018-10-21 08:00 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2018-11-15 19:03 - 2018-10-21 08:00 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2018-11-15 19:03 - 2018-10-21 07:59 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2018-11-15 19:03 - 2018-10-21 07:59 - 000416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2018-11-15 19:03 - 2018-10-21 07:59 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2018-11-15 19:03 - 2018-10-21 07:58 - 002198528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-11-15 19:03 - 2018-10-21 07:58 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-11-15 19:03 - 2018-10-21 07:58 - 001224192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2018-11-15 19:03 - 2018-10-21 07:58 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2018-11-15 19:03 - 2018-10-21 07:58 - 000547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2018-11-15 19:03 - 2018-10-21 07:58 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-11-15 19:03 - 2018-10-21 07:58 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2018-11-15 19:03 - 2018-10-21 07:58 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2018-11-15 19:03 - 2018-10-21 07:58 - 000317952 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2018-11-15 19:03 - 2018-10-21 07:58 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2018-11-15 19:03 - 2018-10-21 07:58 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2018-11-15 19:03 - 2018-10-21 07:57 - 002611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2018-11-15 19:03 - 2018-10-21 07:57 - 002412544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-11-15 19:03 - 2018-10-21 07:57 - 001588224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2018-11-15 19:03 - 2018-10-21 07:57 - 000830976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-11-15 19:03 - 2018-10-21 07:57 - 000515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintRenderAPIHost.DLL
2018-11-15 19:03 - 2018-10-21 07:57 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2018-11-15 19:03 - 2018-10-21 07:56 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-11-15 19:03 - 2018-10-21 07:56 - 000910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-11-15 19:03 - 2018-10-21 07:56 - 000700928 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-11-15 19:03 - 2018-10-21 07:56 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-11-15 19:03 - 2018-10-21 06:42 - 000806320 _____ C:\WINDOWS\system32\locale.nls
2018-11-15 18:49 - 2018-11-15 18:49 - 000038294 _____ C:\Users\Markéta\Downloads\WNB-T 1120 Cedok (1).xlsx
2018-11-15 18:47 - 2018-11-15 18:47 - 000038294 _____ C:\Users\Markéta\Downloads\WNB-T 1120 Cedok.xlsx
2018-11-08 21:12 - 2018-11-08 21:12 - 000563377 _____ C:\Users\Markéta\Downloads\Návod k Office 365 Business.pdf
2018-11-08 21:12 - 2018-11-08 21:12 - 000563377 _____ C:\Users\Markéta\Downloads\Návod k Office 365 Business (1).pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-27 13:14 - 2018-04-11 21:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-11-27 13:08 - 2016-03-27 12:03 - 000000000 ____D C:\Users\Markéta\AppData\Local\ElevatedDiagnostics
2018-11-27 13:06 - 2018-04-11 21:25 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-11-27 13:03 - 2016-11-19 13:16 - 000000000 ____D C:\Users\Markéta\AppData\LocalLow\Mozilla
2018-11-27 11:40 - 2018-05-31 13:11 - 000000000 ____D C:\Users\Markéta\AppData\Local\AVAST Software
2018-11-26 19:17 - 2017-06-11 19:40 - 000000000 ____D C:\ProgramData\tmp
2018-11-26 19:02 - 2016-02-08 18:25 - 000379584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys
2018-11-26 10:23 - 2018-05-31 16:27 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-11-26 09:57 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-11-26 09:57 - 2018-04-11 21:31 - 000000000 ____D C:\WINDOWS\INF
2018-11-26 09:05 - 2018-05-31 16:30 - 001910950 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-11-26 09:05 - 2018-04-12 05:53 - 000793414 _____ C:\WINDOWS\system32\perfh005.dat
2018-11-26 09:05 - 2018-04-12 05:53 - 000178452 _____ C:\WINDOWS\system32\perfc005.dat
2018-11-26 08:58 - 2018-05-31 16:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-11-25 23:30 - 2018-04-11 13:45 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-11-25 22:13 - 2018-05-31 13:11 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2018-11-25 22:13 - 2018-05-31 13:11 - 000002409 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2018-11-25 22:06 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-11-25 21:54 - 2016-12-18 18:45 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Premier.lnk
2018-11-25 21:54 - 2016-02-08 18:25 - 000357632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys.154325536209301
2018-11-25 21:54 - 2016-01-12 11:31 - 000002076 _____ C:\Users\Public\Desktop\Avast Premier.lnk
2018-11-25 21:53 - 2018-04-11 21:36 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2018-11-23 07:34 - 2014-01-25 15:51 - 000000000 ____D C:\Users\Markéta\AppData\Roaming\vlc
2018-11-22 12:14 - 2017-12-23 14:03 - 000000000 ____D C:\Users\Markéta\AppData\Local\Packages
2018-11-22 09:25 - 2018-04-11 21:36 - 000000000 ___HD C:\Program Files\WindowsApps
2018-11-21 08:26 - 2013-11-19 17:25 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-11-21 08:26 - 2013-11-19 17:25 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-11-21 08:19 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-11-17 10:19 - 2016-10-21 15:51 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-11-17 10:18 - 2015-07-12 16:27 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-11-16 13:39 - 2018-06-26 11:45 - 000002432 _____ C:\Users\Markéta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-11-16 13:39 - 2015-12-29 19:05 - 000000000 ___RD C:\Users\Markéta\OneDrive
2018-11-15 20:13 - 2014-03-04 19:29 - 000000000 ____D C:\Users\Markéta\AppData\Roaming\Media Player Classic
2018-11-15 19:42 - 2017-12-23 14:42 - 000000000 ___RD C:\Users\Markéta\3D Objects
2018-11-15 19:42 - 2015-12-29 19:01 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-11-15 19:41 - 2018-04-11 13:45 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-11-15 19:36 - 2018-04-11 21:36 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-11-15 19:36 - 2018-04-11 21:36 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-11-15 19:36 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\TextInput
2018-11-15 19:36 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-11-15 19:36 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-11-15 19:32 - 2017-11-14 09:29 - 000167480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2018-11-15 19:32 - 2014-05-06 06:21 - 000042736 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2018-11-15 19:32 - 2013-12-30 13:35 - 000156936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2018-11-15 19:32 - 2013-05-31 07:37 - 000397992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-11-15 19:32 - 2013-05-31 07:37 - 000310200 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2018-11-15 19:32 - 2013-05-31 07:37 - 000135200 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2018-11-15 19:32 - 2013-05-31 07:37 - 000100984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2018-11-15 19:32 - 2013-05-31 07:37 - 000072800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2018-11-15 19:31 - 2017-03-14 15:09 - 000284256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblogx.sys
2018-11-15 19:31 - 2017-03-14 15:09 - 000188976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriverx.sys
2018-11-15 19:31 - 2017-03-14 15:09 - 000165384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidshx.sys
2018-11-15 19:31 - 2017-03-14 15:09 - 000057904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbunivx.sys
2018-11-15 19:31 - 2013-05-31 07:37 - 000784560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2018-11-15 19:15 - 2013-08-24 21:06 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-11-15 19:11 - 2013-05-25 19:22 - 134758520 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-11-15 19:10 - 2013-06-04 06:59 - 000000000 ___RD C:\Users\Markéta\Documents\Scanned Documents
2018-11-06 10:27 - 2013-05-25 18:41 - 000001097 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-11-01 05:47 - 2013-05-25 07:56 - 000407244 __RSH C:\bootmgr

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-05-31 16:27

==================== End of FRST.txt ============================

[nemocnice]

A ještě druhá část

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 21.11.2018
Ran by Markéta (27-11-2018 13:15:44)
Running from C:\Users\Markéta\Desktop
Microsoft Windows 10 Home Version 1803 17134.407 (X86) (2018-05-31 15:59:11)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2688046804-1852193209-2847023700-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2688046804-1852193209-2847023700-503 - Limited - Disabled)
Guest (S-1-5-21-2688046804-1852193209-2847023700-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2688046804-1852193209-2847023700-1269 - Limited - Enabled)
Markéta (S-1-5-21-2688046804-1852193209-2847023700-1000 - Administrator - Enabled) => C:\Users\Markéta
WDAGUtilityAccount (S-1-5-21-2688046804-1852193209-2847023700-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.008.20081 - Adobe Systems Incorporated)
Adobe Digital Editions 3.0 (HKLM\...\Adobe Digital Editions 3.0) (Version: 3.0.1 - Adobe Systems Incorporated)
Adobe Digital Editions 4.5 (HKLM\...\Adobe Digital Editions 4.5) (Version: 4.5.0 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 31.0.0.153 - Adobe Systems Incorporated)
AIO_CDB_ProductContext (HKLM\...\{E7112940-5F8E-4918-B9FE-251F2F8DC81F}) (Version: - )
Avast Cleanup Premium (HKLM\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 18.2.5964 - AVAST Software)
Avast Premier (HKLM\...\Avast Antivirus) (Version: 18.8.2356 - AVAST Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 70.0.917.102 - AVAST Software)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7) (HKLM\...\E0AC723A3DE3A04256288CADBBB011B112AED454) (Version: 02/25/2011 4.7 - Nokia)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9) (HKLM\...\72A50F48CC5601190B9C4E74D81161693133E7F7) (Version: 02/25/2011 7.01.0.9 - Nokia)
Balíček ovladače systému Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0) (HKLM\...\17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382) (Version: 05/31/2012 7.1.2.0 - Nokia)
dm CEWE fotosvet (HKLM\...\dm CEWE fotosvet) (Version: 6.1.5 - CEWE Stiftung u Co. KGaA)
Dropbox (HKLM\...\Dropbox) (Version: 45.4.92 - Dropbox, Inc.)
Dropbox Update Helper (HKLM\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.59.1 - Dropbox, Inc.) Hidden
FormApps Signing Extension (HKLM\...\{ACA43D91-8B42-4D42-8C8B-A893BD6AA40D}) (Version: 2.8.2.28 - Software602 a.s.)
Google Earth Plug-in (HKLM\...\{57BB4801-61C8-4E74-9672-2160728A461E}) (Version: 7.1.5.1557 - Google)
Google Chrome (HKLM\...\Google Chrome) (Version: 70.0.3538.110 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Java 8 Update 101 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Java 8 Update 111 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java 8 Update 121 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Java 8 Update 131 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Java 8 Update 141 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180141F0}) (Version: 8.0.1410.15 - Oracle Corporation)
Java 8 Update 144 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Java 8 Update 151 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Java 8 Update 161 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
Java 8 Update 172 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180172F0}) (Version: 8.0.1720.11 - Oracle Corporation)
Java 8 Update 181 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Java 8 Update 191 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Java 8 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Java 8 Update 40 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Java 8 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Java 8 Update 72 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218072F0}) (Version: 8.0.720.15 - Oracle Corporation)
Java 8 Update 74 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218074F0}) (Version: 8.0.740.2 - Oracle Corporation)
Java 8 Update 77 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation)
Java 8 Update 91 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Media Go (HKLM\...\{1CBCA994-0290-49AD-98D3-9013A0F102E6}) (Version: 2.9.406 - Sony)
Media Go Network Downloader (HKLM\...\{C52148B9-19E0-433A-9422-3451B1BEE20F}) (Version: 1.6.01.0 - Sony)
Media Go Video Playback Engine 2.16.106.12020 (HKLM\...\{DB6F4DEE-AA55-27F5-EC63-774047889DB5}) (Version: 2.16.106.12020 - Sony)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2688046804-1852193209-2847023700-1000\...\OneDriveSetup.exe) (Version: 18.192.0920.0015 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 63.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 63.0.1 (x86 en-US)) (Version: 63.0.1 - Mozilla)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM\...\{90150000-001F-0405-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (HKLM\...\{90150000-001F-041B-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Prohlížeč Seznam.cz (HKU\S-1-5-21-2688046804-1852193209-2847023700-1000\...\Seznam Browser) (Version: 4.3.0 - Seznam.cz a.s.)
Seznam Instalátor (HKLM\...\ssinstall) (Version: - Seznam.cz)
Skype™ 7.40 (HKLM\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.)
Software602 Form Filler (HKLM\...\{6D85C0A8-97DB-4D82-8884-4F6EE939F321}) (Version: 4.53 - Software602 a.s.)
Sony Mobile Update Engine (HKLM\...\Update Engine) (Version: 2.15.2.201501291105 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.303 (HKLM\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony)
TomTom HOME (HKLM\...\{0E09BE17-EDEA-42CA-8974-42A587F51510}) (Version: 2.9.8 - Název společnosti:)
TomTom HOME (HKLM\...\{5DCB2EB3-87AD-426E-8D74-8B92C9D731C4}) (Version: 2.9.8 - Název společnosti:)
TomTom HOME (HKLM\...\{BB05590A-6602-43F3-A400-77EA0976BC0A}) (Version: 2.9.8 - Název společnosti:)
TomTom HOME Visual Studio Merge Modules (HKLM\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Ulož.to File Manager verze 1.7 (HKLM\...\{8190420D-F4BA-4744-8940-A466F81AF89C}_is1) (Version: 1.7 - Nodus Technologies s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
WD Drive Utilities (HKLM\...\{BF658C27-68B4-4285-917E-B6A0182EEBD9}) (Version: 1.1.0.51 - Western Digital Technologies, Inc.)
WD Quick View (HKLM\...\{CBB36DCC-7276-429F-9B58-4CFDC147D467}) (Version: 2.4.14.13 - Western Digital Technologies, Inc.)
WD Security (HKLM\...\{363169CC-9CE7-4AEF-B6B4-2867F2D390F6}) (Version: 1.1.0.51 - Western Digital Technologies, Inc.)
WD SmartWare (HKLM\...\{13BA0C12-6540-406A-A42D-44EE8783E262}) (Version: 2.4.14.13 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM\...\{e72369b3-306a-4d10-a766-3433a65e8dc2}) (Version: 2.4.14.13 - Western Digital Technologies, Inc.)
Windows 10 Update and Privacy Settings (HKLM\...\{542CC2C2-ABAF-4604-8723-DA296AF74540}) (Version: 1.0.14.0 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-03-15] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-03-15] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-03-15] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-03-15] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-03-15] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-03-15] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-03-15] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-03-15] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-03-15] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-03-15] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-11-15] (AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-11-15] (AVAST Software)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-03-15] (Dropbox, Inc.)
ContextMenuHandlers1: [PDFConv] -> {919CF7F5-9A8E-40B9-9588-2BECA5927D98} => C:\Program Files\Software602\602XML\Xmlcore\CtxSign.dll [2013-07-16] (Software602)
ContextMenuHandlers1: [WDBackupMenuHandler] -> {C752BC82-C19A-4827-9C15-0996BA85C180} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2015-10-28] (Western Digital Technologies, Inc.)
ContextMenuHandlers2: [CWDDriveMenuHandler] -> {CCEFA845-DCDB-4A2F-8BED-DBE87CD198EC} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2015-10-28] (Western Digital Technologies, Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-11-15] (AVAST Software)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-03-15] (Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-03-15] (Dropbox, Inc.)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-11-15] (AVAST Software)
ContextMenuHandlers6: [WDBackupMenuHandler] -> {C752BC82-C19A-4827-9C15-0996BA85C180} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2015-10-28] (Western Digital Technologies, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {03439698-1AE2-4DD0-9BBC-6D6EC7B24861} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {099F1C7D-82A0-4E6D-934C-31055762B093} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-05-31] (AVAST Software)
Task: {15E4353E-3053-4DB6-8D12-5D884FA0690B} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {17D63EE9-A7F4-44DE-96B9-5D6A223B2C53} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {1A766B55-9A7B-4186-BF64-AB853D7BC13D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1D48F3E9-70B1-4C26-B9F0-09E6C6195DBD} - System32\Tasks\Avast TUNEUP Update => C:\Program Files\AVAST Software\Avast Cleanup\TUNEUpdate.exe [2018-11-06] (AVAST Software)
Task: {25A97AD7-0B38-4B29-821C-EE0E698DBA3E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {2D508194-5750-4810-A4A9-FF00E0E9A1BB} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceWnsFallback
Task: {306EDA53-614A-415C-8827-5FD37D2C88D0} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {36036F7B-35B7-45CB-801E-DB5B1EE50EA7} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {375F192A-9951-41B2-8BB6-E7591306F545} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {3CE1D839-8E29-439F-82BB-F94698346CD6} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {4035E7CC-D3E7-41A7-84FB-412D9493AC57} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {5005A76F-C268-4CFF-83AA-8CD8E10D1DC8} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {56701FAA-F33B-476D-81B0-33A11974A9FA} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {56FE7B79-22F9-415E-AAB5-6EFA1222598E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-02] (Google Inc.)
Task: {57D534BE-F1EE-4DA3-8153-02C6BA649CA9} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {58F2914B-9174-431C-A5C0-9C3F19797695} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {64FC43A3-8AB8-4504-A775-1D648693FBAF} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Karel-Markéta Karel => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2012-10-01] (Microsoft Corporation)
Task: {685B4168-9F63-4DF0-A56E-C308EA88C9BD} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {71E8FB44-6959-4134-AA95-E5F1086F216B} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {758D0077-4035-4C39-8DF4-48040EE46AB6} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {75BEBCD6-A2E8-464A-9BEC-31A8B946420E} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {7669E9D3-82EA-45C4-A1E8-5EF4BF44117A} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {76AFECCB-DBB8-4140-A7B3-8E9D484389AF} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {82308CF0-E942-4C91-A7D6-1A51BD2D2B70} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {830F99B1-02DE-4B46-A02D-4FEE128A20CB} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-05-31] (AVAST Software)
Task: {8B143602-2F68-4A4F-8872-CB5BDB501B2D} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {952768D1-0308-4846-AF7F-3C0FB29B37AE} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-11-15] (AVAST Software)
Task: {963E3214-3EAF-48A6-8AB0-87866824A98C} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {9C72B974-6B3F-4CD2-B16E-F23F0DEAB498} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {9F9E96AB-A91F-4B1F-ABDA-70FEBB71CC63} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {9FF96A40-902D-431A-A5D6-AB35EF136BAD} - System32\Tasks\{CB652205-B876-4DCC-B4C7-5EF8585F85C7} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -d "C:\Program Files\DAEMON Tools Lite"
Task: {A30BF7D9-597F-45BC-93DC-AE58020A58B7} - \CCleanerSkipUAC -> No File <==== ATTENTION
Task: {A6B2D65A-F414-41AB-A6E0-3E708EFDA36D} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {AD624CBE-6334-48DC-A4E6-A5B4D715D6C1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2018-11-21] (Adobe Systems Incorporated)
Task: {BB61F22A-D4F7-4320-85D0-B865C0527403} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {BF6732D6-D611-44CD-B1A9-B8B491A55746} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C213EF7B-5958-4F69-B15B-D4F929D4FE7C} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-11] ()
Task: {C6BD9928-BC9D-4103-A483-0412611DA967} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {CA88B6AA-D39A-44E3-AADF-E208979B3471} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {CBF450EE-058C-47A1-8B57-0F6D14179B0E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-11-15] (AVAST Software)
Task: {D0D71EC0-B1E8-4783-8372-D4FF36D08284} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D18CC823-417B-4757-8AB9-F7644B160965} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D1EDB315-CFE2-4F65-AC8E-DEA18C3BBCA4} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [2016-11-15] (Dropbox, Inc.)
Task: {D59930B5-69E6-4F78-8172-8DD189116ED3} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {D75B705A-CB33-4706-9FFA-58C87DBCFBBF} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {DA577473-F8A9-431C-A0D6-DF512194858B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-02] (Google Inc.)
Task: {DBC696BF-20C3-4DE5-908B-FD19B5B1F943} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {DF9DB733-3C23-45DC-97B5-2FC66B68779F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E0FCAD76-1EA2-4BE2-86C8-9B3F3B4E9E30} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E18CD2EB-3CA8-4880-959B-4D53EBADE229} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_31_0_0_153_Plugin.exe [2018-11-21] (Adobe Systems Incorporated)
Task: {E2F58D8F-7FFF-4ED5-AAE5-45E37C978FBF} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E85DC1FE-70B1-433E-AF37-EA2FDC34339B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F41F94B1-CC55-46B7-A037-1F27923E617A} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [2016-11-15] (Dropbox, Inc.)
Task: {F434805E-735A-43D1-830A-6EF615E1AC60} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F56639ED-98D2-41CA-BAEF-9F04FF85B084} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {FB6C210F-4AFB-4697-9ED2-CEE43843DAF0} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {FEEE0E2A-7F8D-4812-873D-236222118B56} - System32\Tasks\avastBCLRestartS-1-5-21-2688046804-1852193209-2847023700-1000 => C:\Program Files\Mozilla Firefox\firefox.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-11-15 19:32 - 2018-11-15 19:32 - 000596696 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-04-11 21:29 - 2018-04-11 21:29 - 000364200 _____ () C:\Windows\System32\InputHost.dll
2018-04-11 21:29 - 2018-04-11 21:29 - 000308224 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-11 21:29 - 2018-04-11 21:29 - 001670656 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-11-15 19:03 - 2018-11-01 05:28 - 001609216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-10-27 13:57 - 2018-10-27 13:57 - 000008192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-11-15 18:58 - 2018-11-15 18:59 - 000053248 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\ChakraBridge.dll
2018-11-15 18:58 - 2018-11-15 18:59 - 000013312 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2018-11-15 18:58 - 2018-11-15 18:59 - 006827520 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\LibWrapper.dll
2018-11-15 18:58 - 2018-11-15 18:59 - 001930240 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\skypert.dll
2018-11-15 18:58 - 2018-11-15 18:59 - 000542208 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\RtmMvrUap.dll
2018-11-15 18:58 - 2018-11-15 18:59 - 000159744 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-01-01 18:17 - 2016-09-12 14:53 - 048936448 _____ () C:\Program Files\AVAST Software\Avast Cleanup\libcef.dll
2018-03-21 15:16 - 2018-03-21 15:16 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-11-06 10:16 - 2018-11-06 10:16 - 000172032 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x86__8wekyb3d8bbwe\WinStore.Preview.dll
2018-11-06 10:16 - 2018-11-06 10:16 - 001847368 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x86__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-11-06 10:16 - 2018-11-06 10:16 - 001366528 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x86__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Markéta\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [108]
AlternateDataStreams: C:\Users\Markéta\Desktop\QL1.jpeg:3or4kl4x13tuuug3Byamue2s4b [83]
AlternateDataStreams: C:\Users\Markéta\Desktop\QL1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Markéta\Desktop\QL2.jpeg:3or4kl4x13tuuug3Byamue2s4b [83]
AlternateDataStreams: C:\Users\Markéta\Desktop\QL2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Markéta\Desktop\QL3.jpeg:3or4kl4x13tuuug3Byamue2s4b [83]
AlternateDataStreams: C:\Users\Markéta\Desktop\QL3.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Markéta\Desktop\QL4.jpeg:3or4kl4x13tuuug3Byamue2s4b [83]
AlternateDataStreams: C:\Users\Markéta\Desktop\QL4.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2009-06-10 22:39 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2688046804-1852193209-2847023700-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Markéta\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 213.46.172.36 - 213.46.172.37
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "Dropbox"
HKLM\...\StartupApproved\Run: => "hpqSRMon"
HKLM\...\StartupApproved\Run: => "WD Drive Unlocker"
HKLM\...\StartupApproved\Run: => "DriveUtilitiesHelper"
HKLM\...\StartupApproved\Run: => "WD Quick View"
HKLM\...\StartupApproved\Run: => "SunJavaUpdateSched"
HKU\S-1-5-21-2688046804-1852193209-2847023700-1000\...\StartupApproved\Run: => "OneDriveSetup"
HKU\S-1-5-21-2688046804-1852193209-2847023700-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2688046804-1852193209-2847023700-1000\...\StartupApproved\Run: => "Sony PC Companion"
HKU\S-1-5-21-2688046804-1852193209-2847023700-1000\...\StartupApproved\Run: => "TomTomHOME.exe"
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\StartupApproved\Run: => "OneDriveSetup"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{A959744F-C169-4F7E-8E0B-03948AB11AD3}] => (Allow) C:\Program Files\Dropbox\Client\Dropbox.exe
FirewallRules: [{3890FE0B-E030-4283-95E3-F3A2D2F2BDBA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{D0AB87AB-61D3-4235-9460-EE3D7A2DFE68}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{B0CD797A-A32F-4D1D-8112-ED8FB451B960}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{EFDA6ED5-0F5F-420C-BE25-EA1C20F69539}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [{37E1F73F-F4D5-4FB7-93ED-D3355E6C00E9}] => (Allow) C:\Program Files\Common Files\soft602\langserv.exe
FirewallRules: [{C942A290-53B3-40DA-88CB-4C13E7D53965}] => (Allow) C:\Program Files\Common Files\soft602\langserv.exe
FirewallRules: [{8D782A6A-E6FC-45D4-9EBE-3357885A16E5}] => (Allow) C:\Program Files\Sony Mobile\Update Engine 2015\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{D82B022E-C25B-4226-9C46-AF482CCB9294}] => (Allow) C:\Program Files\Sony Mobile\Update Engine 2015\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{961F4F90-58C8-41C7-81E4-26F0B0812460}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{829FCFDE-CBAA-45FA-ABE2-210BD77B0F77}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{CC0EA42C-CFA9-468B-9AD5-D6FA3C0FB383}] => (Allow) C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{8CD5278D-9DA0-4F66-AAFA-146D08D40019}] => (Allow) C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [UDP Query User{30C742C4-5431-41B6-9B24-EDD489D7FA43}C:\users\markéta\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\markéta\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{A05FF154-88A7-4B57-8CC6-4B4553A905F3}C:\users\markéta\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\markéta\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{BD276802-BB11-4C85-AA55-A769B16894AF}] => (Allow) C:\Program Files\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{6793D6E7-1475-4FA7-BC1E-948452BD28BF}] => (Allow) C:\Program Files\HP\hp software update\hpwucli.exe
FirewallRules: [{05EF9C6A-4D1C-48D5-90FA-71B23268D2B7}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{C3D20F28-476D-43F4-AB0A-2A272CC20A03}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{E8131EB7-B665-497F-8A5A-B7EC96903D39}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{D40386BF-0F80-4A1B-A923-E798D494A1FE}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{6130E926-BC79-4BFD-AF4E-353C463B6BDE}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe
FirewallRules: [{2D4363F3-88D4-4082-8951-328B3A9E49A2}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{F2A0A616-A3D2-49AA-8833-60E17CC6DACB}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{5FE4DF0D-9518-437E-B62D-11C936540BCD}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe
FirewallRules: [{670CC0B1-0443-4AA0-9933-BE8EF0C963BC}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe
FirewallRules: [{1A957174-BE0C-48FB-A0AB-7DC484D12DA6}] => (Allow) C:\Program Files\common files\hp\digital imaging\bin\hpqphotocrm.exe
FirewallRules: [{009B38B0-2D0D-408C-A0DB-2AA44317687B}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{11C43305-0B7B-47AB-91D9-6E790A3AED89}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe
FirewallRules: [{0FA07C32-7673-430B-B9F2-261534EC3923}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{FA6C07B6-1ABE-4885-A0BC-670537EB3F36}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{D01CB2FB-DB8A-479E-A114-887E75D5CE3A}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{64EC6132-6E92-459B-AF69-9C5F04C0C4E6}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{00220B03-90AF-4C3C-9335-83A2C05DB9FE}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{4B15269B-2D7A-4B5C-A3A6-9313909A593A}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{F09908BF-889E-4341-AF84-E00EE8673E78}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{0C16548E-488A-453E-AC7D-F199DD1C1A1C}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{5590B615-5B3E-43E8-A7DD-23B573BD8DC9}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{98AD848D-CA2E-45A7-B4A0-398BF4A6F794}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{9333069D-1B45-44CA-8020-517251A8A2AB}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{353202C5-E1CA-4964-8AD5-86BF95A8074A}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{97492FAA-8108-418C-813D-964AD7E46CFC}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{9AD60FD9-321C-4DB4-9AA5-EB58ED9981D4}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{4507CDC6-A5F5-4368-9AFC-A70FA2DFFA70}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{9054BA66-80AC-4302-BBAF-110264ACE124}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{FA1156E6-80A2-4A92-80EF-009A08F76D4E}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{32834B77-9BC4-4602-BF7E-58D140ADE148}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{D48F88F0-2F32-467E-8676-9030BAFBA8D7}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{38867FA7-9DE1-4536-93CA-B1E7D6182263}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============

Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (11/27/2018 01:05:10 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: Karel)
Description: httphttp-2147467263

Error: (11/27/2018 01:05:10 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: Karel)
Description: httphttp-2147467263

Error: (11/27/2018 01:03:15 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (11/27/2018 12:25:39 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: Karel)
Description: httphttp-2147467263

Error: (11/27/2018 12:25:29 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: Karel)
Description: httphttp-2147467263

Error: (11/27/2018 12:03:15 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (11/27/2018 11:40:13 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (11/26/2018 09:03:16 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.


System errors:
=============
Error: (11/27/2018 11:41:46 AM) (Source: DCOM) (EventID: 10016) (User: Karel)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli Karel\Markéta (SID: S-1-5-21-2688046804-1852193209-2847023700-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/27/2018 11:38:25 AM) (Source: DCOM) (EventID: 10016) (User: Karel)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
a APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
uživateli Karel\Markéta (SID: S-1-5-21-2688046804-1852193209-2847023700-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy – SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/26/2018 09:09:47 PM) (Source: DCOM) (EventID: 10016) (User: Karel)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli Karel\Markéta (SID: S-1-5-21-2688046804-1852193209-2847023700-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/26/2018 08:08:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba pro klientské licence (ClipSVC) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (11/26/2018 08:08:40 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba pro klientské licence (ClipSVC) bylo dosaženo časového limitu (30000 ms).

Error: (11/26/2018 08:07:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Adobe Flash Player Update Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (11/26/2018 08:07:45 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Adobe Flash Player Update Service bylo dosaženo časového limitu (30000 ms).

Error: (11/26/2018 07:04:12 PM) (Source: DCOM) (EventID: 10016) (User: Karel)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli Karel\Markéta (SID: S-1-5-21-2688046804-1852193209-2847023700-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


CodeIntegrity:
===================================

Date: 2018-11-27 12:20:08.456
Description:
N/A

Date: 2018-11-27 12:13:22.406
Description:
N/A

Date: 2018-11-27 12:13:22.093
Description:
N/A

Date: 2018-11-26 09:02:09.569
Description:
N/A

Date: 2018-11-26 09:01:13.439
Description:
N/A

Date: 2018-11-26 08:58:25.854
Description:
N/A

Date: 2018-11-25 23:30:24.913
Description:
N/A

Date: 2018-11-23 07:08:30.349
Description:
N/A

==================== Memory info ===========================

Processor: AMD Sempron(tm) X2 190 Processor
Percentage of memory in use: 60%
Total physical RAM: 3327.18 MB
Available physical RAM: 1303.7 MB
Total Virtual: 6655.18 MB
Available Virtual: 3869 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.21 GB) (Free:11.46 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (DOKUMENTY) (Fixed) (Total:200.43 GB) (Free:122.42 GB) NTFS

\\?\Volume{00000001-0000-0000-0000-c04d18000000}\ () (Fixed) (Total:0.44 GB) (Free:0.13 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 111.8 GB) (Disk ID: 61575633)
Partition 1: (Active) - (Size=3.9 GB) - (Type=82)
Partition 2: (Not Active) - (Size=107.9 GB) - (Type=05)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 00000001)
Partition 1: (Active) - (Size=97.2 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
Partition 3: (Not Active) - (Size=200.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

[JaRon]

vycisti PC s ADWCleanerom - log sem

[nemocnice]

Zde je log z awd:

# -------------------------------
# Malwarebytes AdwCleaner 7.2.5.0
# -------------------------------
# Build: 11-26-2018
# Database: 2018-11-26.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 11-29-2018
# Duration: 00:00:07
# OS: Windows 10 Home
# Cleaned: 1
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Users\Markéta\AppData\LocalLow\HPAppData

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1298 octets] - [29/11/2018 12:36:54]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

[JaRon]

podla vysledkov logov by mal byt pocitac cisty

[nemocnice]

Sqělé, díky moc!

[JaRon]

za malo