Ahoj, zrychlení notebooku a otevřeného internetu

[michal75]

Logfile of random's system information tool 1.10 (written by random/random)
Run by Acer at 2018-11-30 00:55:31
Microsoft Windows 10 Home
System drive C: has 159 GB (33%) free of 476 GB
Total RAM: 1882 MB (29% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:55:56, on 30.11.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)
Boot mode: Normal

Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\TeamViewer\TeamViewer.exe
C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\WINDOWS\system32\DllHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\SkypeBackgroundHost.exe
C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\SkypeApp.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x86__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe
C:\Program Files\Windows Defender\MSASCuiL.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Users\Acer\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Users\Acer\AppData\Local\Microsoft\BingSvc\BingSvc.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x86__8wekyb3d8bbwe\WinStore.App.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\ImmersiveControlPanel\SystemSettings.exe
C:\Windows\System32\SystemSettingsBroker.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x86__8wekyb3d8bbwe\Video.UI.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Windows\System32\smartscreen.exe
C:\Users\Acer\Downloads\RSIT.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\trend micro\Acer.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [SecurityHealth] %ProgramFiles%\Windows Defender\MSASCuiL.exe
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\ecmds.exe" /launch /hide
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Acer\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [BingSvc] C:\Users\Acer\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\system32\IntelCpHeciSvc.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Intel Corporation - C:\WINDOWS\system32\igfxCUIService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 13 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe

--
End of file - 7603 bytes

=========Mozilla firefox=========

ProfilePath - C:\Users\Acer\AppData\Roaming\Mozilla\Firefox\Profiles\umadh4zv.default-1543487438371

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 31.0.0.153 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_31_0_0_153.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2018-04-11 486816]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2016-06-01 14690712]
"egui"=C:\Program Files\ESET\ESET Smart Security\ecmds.exe [2018-11-07 169616]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Acer\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2018-11-13 1541728]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2016-05-17 53123712]
"BingSvc"=C:\Users\Acer\AppData\Local\Microsoft\BingSvc\BingSvc.exe [2015-11-05 144008]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-11-30 00:55:31 ----D---- C:\rsit
2018-11-21 19:14:19 ----A---- C:\WINDOWS\system32\FlashPlayerInstaller.exe
2018-11-16 21:38:11 ----D---- C:\Program Files\rempl
2018-11-14 01:15:30 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2018-11-13 22:52:05 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-11-13 22:52:00 ----A---- C:\WINDOWS\system32\sppsvc.exe
2018-11-13 22:51:56 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-11-13 22:51:53 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-11-13 22:51:49 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-11-13 22:51:47 ----A---- C:\WINDOWS\system32\sppobjs.dll
2018-11-13 22:51:46 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-11-13 22:51:46 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-11-13 22:51:43 ----A---- C:\WINDOWS\system32\wmp.dll
2018-11-13 22:51:42 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2018-11-13 22:51:42 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2018-11-13 22:51:41 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-11-13 22:51:40 ----A---- C:\WINDOWS\system32\shell32.dll
2018-11-13 22:51:39 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-11-13 22:51:35 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-11-13 22:51:32 ----A---- C:\WINDOWS\system32\StartTileData.dll
2018-11-13 22:51:31 ----A---- C:\WINDOWS\system32\twinui.dll
2018-11-13 22:51:31 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-11-13 22:51:30 ----A---- C:\WINDOWS\system32\mfcore.dll
2018-11-13 22:51:29 ----A---- C:\WINDOWS\system32\mos.dll
2018-11-13 22:51:29 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-11-13 22:51:29 ----A---- C:\WINDOWS\system32\combase.dll
2018-11-13 22:51:28 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-11-13 22:51:27 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-11-13 22:51:27 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-11-13 22:51:26 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-11-13 22:51:26 ----A---- C:\WINDOWS\system32\cdp.dll
2018-11-13 22:51:25 ----A---- C:\WINDOWS\system32\tquery.dll
2018-11-13 22:51:25 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-11-13 22:51:24 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-11-13 22:51:24 ----A---- C:\WINDOWS\system32\msctf.dll
2018-11-13 22:51:24 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2018-11-13 22:51:23 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-11-13 22:51:23 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-11-13 22:51:23 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-11-13 22:51:22 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-11-13 22:51:22 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-11-13 22:51:22 ----A---- C:\WINDOWS\system32\diagtrack.dll
2018-11-13 22:51:21 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2018-11-13 22:51:21 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2018-11-13 22:51:20 ----A---- C:\WINDOWS\system32\d2d1.dll
2018-11-13 22:51:19 ----A---- C:\WINDOWS\system32\mssrch.dll
2018-11-13 22:51:19 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2018-11-13 22:51:19 ----A---- C:\WINDOWS\system32\d3d11.dll
2018-11-13 22:51:18 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2018-11-13 22:51:18 ----A---- C:\WINDOWS\system32\rpcss.dll
2018-11-13 22:51:18 ----A---- C:\WINDOWS\system32\BingMaps.dll
2018-11-13 22:51:17 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2018-11-13 22:51:16 ----A---- C:\WINDOWS\system32\vbscript.dll
2018-11-13 22:51:16 ----A---- C:\WINDOWS\system32\user32.dll
2018-11-13 22:51:15 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2018-11-13 22:51:15 ----A---- C:\WINDOWS\system32\DWrite.dll
2018-11-13 22:51:14 ----A---- C:\WINDOWS\system32\ole32.dll
2018-11-13 22:51:14 ----A---- C:\WINDOWS\system32\AudioSes.dll
2018-11-13 22:51:13 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2018-11-13 22:51:13 ----A---- C:\WINDOWS\system32\usocore.dll
2018-11-13 22:51:13 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-11-13 22:51:13 ----A---- C:\WINDOWS\system32\bisrv.dll
2018-11-13 22:51:13 ----A---- C:\WINDOWS\system32\AudioEng.dll
2018-11-13 22:51:12 ----A---- C:\WINDOWS\system32\wlansvc.dll
2018-11-13 22:51:12 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-11-13 22:51:12 ----A---- C:\WINDOWS\system32\audiosrv.dll
2018-11-13 22:51:12 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-11-13 22:51:11 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2018-11-13 22:51:11 ----A---- C:\WINDOWS\system32\coml2.dll
2018-11-13 22:51:11 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2018-11-13 22:51:10 ----A---- C:\WINDOWS\system32\nettrace.dll
2018-11-13 22:51:10 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-11-13 22:51:09 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2018-11-13 22:51:09 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2018-11-13 22:51:09 ----A---- C:\WINDOWS\system32\AcGenral.dll
2018-11-13 22:51:08 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2018-11-13 22:51:08 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-11-13 22:51:08 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2018-11-13 22:51:08 ----A---- C:\WINDOWS\system32\localspl.dll
2018-11-13 22:51:07 ----A---- C:\WINDOWS\system32\winload.exe
2018-11-13 22:51:07 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2018-11-13 22:51:07 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2018-11-13 22:51:07 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2018-11-13 22:51:07 ----A---- C:\WINDOWS\system32\audiodg.exe
2018-11-13 22:51:06 ----A---- C:\WINDOWS\system32\winresume.exe
2018-11-13 22:51:06 ----A---- C:\WINDOWS\system32\tdh.dll
2018-11-13 22:51:06 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2018-11-13 22:51:06 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-11-13 22:51:05 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-11-13 22:51:05 ----A---- C:\WINDOWS\system32\ubpm.dll
2018-11-13 22:51:05 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2018-11-13 22:51:04 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2018-11-13 22:51:04 ----A---- C:\WINDOWS\system32\FntCache.dll
2018-11-13 22:51:04 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2018-11-13 22:51:04 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2018-11-13 22:51:04 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-11-13 22:51:04 ----A---- C:\WINDOWS\system32\BthAvrcp.dll
2018-11-13 22:51:03 ----A---- C:\WINDOWS\system32\WinTypes.dll
2018-11-13 22:51:03 ----A---- C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2018-11-13 22:51:03 ----A---- C:\WINDOWS\system32\schannel.dll
2018-11-13 22:51:03 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-11-13 22:51:03 ----A---- C:\WINDOWS\system32\LicensingWinRT.dll
2018-11-13 22:51:03 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-11-13 22:51:03 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-11-13 22:51:02 ----A---- C:\WINDOWS\system32\sspicli.dll
2018-11-13 22:51:02 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2018-11-13 22:51:02 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-11-13 22:51:02 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2018-11-13 22:51:02 ----A---- C:\WINDOWS\system32\MapsStore.dll
2018-11-13 22:51:02 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2018-11-13 22:51:02 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2018-11-13 22:51:02 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-11-13 22:51:01 ----A---- C:\WINDOWS\system32\mfps.dll
2018-11-13 22:51:01 ----A---- C:\WINDOWS\system32\MapRouter.dll
2018-11-13 22:51:00 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2018-11-13 22:51:00 ----A---- C:\WINDOWS\system32\officecsp.dll
2018-11-13 22:51:00 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-11-13 22:51:00 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2018-11-13 22:50:58 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2018-11-13 22:50:58 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2018-11-13 22:50:58 ----A---- C:\WINDOWS\system32\DAFWSD.dll
2018-11-13 22:50:57 ----A---- C:\WINDOWS\system32\wcimage.dll
2018-11-13 22:50:57 ----A---- C:\WINDOWS\system32\schedsvc.dll
2018-11-13 22:50:57 ----A---- C:\WINDOWS\system32\nltest.exe
2018-11-13 22:50:57 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2018-11-13 22:50:57 ----A---- C:\WINDOWS\system32\dafBth.dll
2018-11-13 22:50:56 ----A---- C:\WINDOWS\system32\rasmans.dll
2018-11-13 22:50:56 ----A---- C:\WINDOWS\system32\nshwfp.dll
2018-11-13 22:50:56 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-11-13 22:50:55 ----A---- C:\WINDOWS\system32\Windows.Data.Activities.dll
2018-11-13 22:50:55 ----A---- C:\WINDOWS\system32\scecli.dll
2018-11-13 22:50:55 ----A---- C:\WINDOWS\system32\psmsrv.dll
2018-11-13 22:50:55 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-11-13 22:50:55 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-11-13 22:50:55 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2018-11-13 22:50:55 ----A---- C:\WINDOWS\system32\cdprt.dll
2018-11-13 22:50:54 ----A---- C:\WINDOWS\system32\wlansec.dll
2018-11-13 22:50:54 ----A---- C:\WINDOWS\system32\rdpudd.dll
2018-11-13 22:50:54 ----A---- C:\WINDOWS\system32\PrintRenderAPIHost.DLL
2018-11-13 22:50:54 ----A---- C:\WINDOWS\system32\lsass.exe
2018-11-13 22:50:54 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2018-11-13 22:50:54 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2018-11-13 22:50:52 ----A---- C:\WINDOWS\system32\wisp.dll
2018-11-13 22:50:52 ----A---- C:\WINDOWS\system32\thumbcache.dll
2018-11-13 22:50:52 ----A---- C:\WINDOWS\system32\spacebridge.dll
2018-11-13 22:50:52 ----A---- C:\WINDOWS\system32\scrrun.dll
2018-11-13 22:50:52 ----A---- C:\WINDOWS\system32\ofdeploy.exe
2018-11-13 22:50:52 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-11-13 22:50:52 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2018-11-13 22:50:52 ----A---- C:\WINDOWS\system32\drivers\vhf.sys
2018-11-13 22:50:51 ----A---- C:\WINDOWS\system32\wwansvc.dll
2018-11-13 22:50:51 ----A---- C:\WINDOWS\system32\seclogon.dll
2018-11-13 22:50:51 ----A---- C:\WINDOWS\system32\mssvp.dll
2018-11-13 22:50:51 ----A---- C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2018-11-13 22:50:51 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2018-11-13 22:50:51 ----A---- C:\WINDOWS\system32\BTAGService.dll
2018-11-13 22:50:50 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2018-11-13 22:50:50 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2018-11-13 22:50:50 ----A---- C:\WINDOWS\system32\sspisrv.dll
2018-11-13 22:50:50 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-11-13 22:50:50 ----A---- C:\WINDOWS\system32\osk.exe
2018-11-13 22:50:50 ----A---- C:\WINDOWS\system32\dssvc.dll
2018-11-13 22:50:50 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2018-11-13 22:50:49 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2018-11-13 22:50:49 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2018-11-13 22:50:49 ----A---- C:\WINDOWS\system32\msisip.dll
2018-11-13 22:50:49 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2018-11-13 22:50:49 ----A---- C:\WINDOWS\system32\dusmsvc.dll
2018-11-13 22:50:48 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2018-11-13 22:50:48 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2018-11-13 22:50:48 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2018-11-13 22:50:48 ----A---- C:\WINDOWS\system32\prnntfy.dll
2018-11-13 22:50:48 ----A---- C:\WINDOWS\system32\dab.dll
2018-11-13 22:50:47 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-11-13 22:50:47 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2018-11-13 22:50:47 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2018-11-13 22:50:47 ----A---- C:\WINDOWS\system32\PhoneService.dll
2018-11-13 22:50:47 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2018-11-13 22:50:46 ----A---- C:\WINDOWS\system32\WPTaskScheduler.dll
2018-11-13 22:50:46 ----A---- C:\WINDOWS\system32\wincorlib.dll
2018-11-13 22:50:46 ----A---- C:\WINDOWS\system32\rascustom.dll
2018-11-13 22:50:46 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2018-11-13 22:50:46 ----A---- C:\WINDOWS\system32\BthAvctpSvc.dll
2018-11-13 22:50:45 ----A---- C:\WINDOWS\system32\INETRES.dll
2018-11-13 22:50:45 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll

======List of files/folders modified in the last 1 month======

2018-11-30 00:55:44 ----D---- C:\Program Files\trend micro
2018-11-30 00:55:02 ----D---- C:\WINDOWS\Temp
2018-11-30 00:47:02 ----D---- C:\WINDOWS\system32\sru
2018-11-30 00:42:45 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-11-29 21:10:57 ----SHD---- C:\System Volume Information
2018-11-29 20:27:26 ----D---- C:\WINDOWS\Logs
2018-11-29 20:26:02 ----D---- C:\WINDOWS\system32\LogFiles
2018-11-29 19:44:45 ----D---- C:\WINDOWS\Prefetch
2018-11-29 18:43:28 ----RD---- C:\WINDOWS\Microsoft.NET
2018-11-29 11:46:47 ----D---- C:\WINDOWS\System32
2018-11-29 11:46:47 ----D---- C:\WINDOWS\INF
2018-11-29 11:46:47 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-11-29 11:39:40 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-11-29 11:39:31 ----D---- C:\Program Files\TeamViewer
2018-11-29 11:39:16 ----D---- C:\Program Files\Mozilla Maintenance Service
2018-11-29 11:38:29 ----D---- C:\WINDOWS\system32\catroot2
2018-11-29 11:37:01 ----AD---- C:\Program Files\mozilla firefox
2018-11-29 10:52:45 ----HD---- C:\Program Files\WindowsApps
2018-11-27 22:05:37 ----D---- C:\WINDOWS\system32\config
2018-11-21 19:14:46 ----D---- C:\WINDOWS\system32\Macromed
2018-11-21 19:14:31 ----HD---- C:\ProgramData
2018-11-20 22:08:43 ----D---- C:\WINDOWS\WinSxS
2018-11-20 22:08:09 ----D---- C:\WINDOWS\CbsTemp
2018-11-20 15:23:09 ----D---- C:\WINDOWS\system32\Tasks
2018-11-20 00:05:14 ----D---- C:\Windows
2018-11-17 23:34:53 ----SHD---- C:\WINDOWS\Installer
2018-11-17 23:34:20 ----D---- C:\Program Files\Common Files\microsoft shared
2018-11-17 23:31:46 ----D---- C:\Program Files\Microsoft Office
2018-11-16 21:38:11 ----RD---- C:\Program Files
2018-11-14 23:18:30 ----D---- C:\WINDOWS\system32\SleepStudy
2018-11-14 18:41:06 ----D---- C:\WINDOWS\LiveKernelReports
2018-11-14 01:14:59 ----D---- C:\WINDOWS\system32\DriverStore
2018-11-14 01:14:31 ----D---- C:\WINDOWS\system32\drivers
2018-11-14 01:12:14 ----D---- C:\WINDOWS\TextInput
2018-11-14 01:12:11 ----D---- C:\WINDOWS\system32\zu-ZA
2018-11-14 01:12:11 ----D---- C:\WINDOWS\system32\yo-NG
2018-11-14 01:12:11 ----D---- C:\WINDOWS\system32\xh-ZA
2018-11-14 01:12:11 ----D---- C:\WINDOWS\system32\wo-SN
2018-11-14 01:12:11 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2018-11-14 01:12:11 ----D---- C:\WINDOWS\system32\tn-ZA
2018-11-14 01:12:11 ----D---- C:\WINDOWS\system32\ti-ET
2018-11-14 01:12:11 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2018-11-14 01:12:11 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2018-11-14 01:12:11 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2018-11-14 01:12:10 ----SD---- C:\WINDOWS\system32\F12
2018-11-14 01:12:10 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2018-11-14 01:12:10 ----D---- C:\WINDOWS\system32\rw-RW
2018-11-14 01:12:10 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2018-11-14 01:12:10 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2018-11-14 01:12:10 ----D---- C:\WINDOWS\system32\nso-ZA
2018-11-14 01:12:10 ----D---- C:\WINDOWS\system32\migration
2018-11-14 01:12:10 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2018-11-14 01:12:10 ----D---- C:\WINDOWS\system32\ig-NG
2018-11-14 01:12:10 ----D---- C:\WINDOWS\system32\chr-CHER-US
2018-11-14 01:12:10 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2018-11-14 01:12:10 ----D---- C:\WINDOWS\system32\en-US
2018-11-14 01:12:10 ----D---- C:\WINDOWS\system32\drivers\UMDF
2018-11-14 01:12:10 ----D---- C:\WINDOWS\system32\cs-CZ
2018-11-14 01:12:10 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2018-11-14 01:12:09 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2018-11-14 01:12:09 ----D---- C:\WINDOWS\system32\Boot
2018-11-14 01:12:09 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2018-11-14 01:11:57 ----D---- C:\WINDOWS\ShellExperiences
2018-11-14 01:11:54 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2018-11-14 01:11:53 ----D---- C:\WINDOWS\bcastdvr
2018-11-14 01:11:53 ----D---- C:\WINDOWS\AppPatch
2018-11-13 23:07:26 ----D---- C:\WINDOWS\system32\MRT
2018-11-13 23:07:15 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-11-11 18:48:30 ----D---- C:\WINDOWS\system32\NDF
2018-11-11 12:07:43 ----D---- C:\WINDOWS\AppReadiness

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2018-11-07 92176]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2018-04-11 44440]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-04-11 29696]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-04-11 49560]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2018-11-07 124776]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2018-11-07 149192]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2018-11-07 72912]
R1 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2018-11-07 94712]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-04-11 45056]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-04-11 7680]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-07-14 336384]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2018-11-07 43816]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2018-04-11 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2018-04-11 65024]
R3 athr;@athw8.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athw8.sys [2018-04-11 3228672]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2016-06-25 521248]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2018-04-11 88576]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2018-04-11 66560]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2018-04-11 100352]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2018-04-11 61440]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-04-11 50584]
R3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-04-11 28672]
R3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-04-11 74240]
R3 igfxLP;igfxLP; C:\WINDOWS\system32\DRIVERS\igdkmd32lp.sys [2016-11-17 6671856]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2016-06-01 3651840]
R3 IntcDAud;@oem21.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2016-05-12 394216]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2018-04-11 150528]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2018-04-11 504832]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2018-02-19 15352]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-04-11 693144]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-04-11 118680]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-04-11 103320]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-04-11 105368]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-04-11 64408]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-04-11 71576]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-04-11 51608]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-04-11 54680]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-04-11 32664]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2018-06-15 39840]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-04-11 13312]
S3 AppleLowerFilter;@oem26.inf,%AppleLowerFilterDisplayName%;Apple Lower Filter Driver; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [2018-05-10 28824]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-04-11 13312]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2018-04-11 74144]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2018-10-21 865280]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-04-11 27648]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-04-11 102400]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-04-11 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2018-04-11 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-04-11 38296]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-04-11 18944]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2018-04-11 57856]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-04-11 30208]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-04-11 24064]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-04-11 92672]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-04-11 405408]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-04-11 43424]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-04-11 122368]
S3 nmwcd;@oem22.inf,%MFG% %SVC%;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2011-08-17 18176]
S3 nmwcdc;@oem3.inf,%MFG% %SVC%;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2011-08-17 23168]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-04-11 13312]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-04-11 71168]
S3 RTSUER;@oem25.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2016-06-01 303344]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2018-04-11 89088]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2018-04-11 102400]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2018-04-11 39424]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2018-04-11 31744]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2018-04-11 215968]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2018-04-11 75168]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2018-04-11 110488]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-08-13 83984]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
R2 CDPUserSvc_37d61;Uživatelská služba platformy připojených zařízení_37d61; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2018-11-08 6087248]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-04-11 44520]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-04-11 44520]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2018-11-07 1833552]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-11-17 319472]
R2 OneSyncSvc_37d61;Hostitel synchronizace_37d61; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-07-14 625008]
R2 sedsvc;Windows Remediation Service; C:\Program Files\rempl\sedsvc.exe [2018-11-08 284464]
R2 TeamViewer;TeamViewer 13; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2018-09-10 11644656]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
R3 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-11 44520]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-04-11 44520]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-11 44520]
R3 PimIndexMaintenanceSvc_37d61;Data kontaktů_37d61; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-04-11 44520]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
R3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
R3 TokenBroker;@%systemroot%\system32\tokenbroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-06-01 152216]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-11 44520]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2016-03-23 327808]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2018-11-21 335872]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 BcastDVRUserService_37d61;Uživatelská služba pro GameDVR a vysílání her_37d61; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 BluetoothUserService_37d61;Služba pro podporu uživatelů Bluetooth_37d61; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-04-11 44520]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\system32\IntelCpHeciSvc.exe [2016-11-17 301552]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 DevicePickerUserSvc_37d61;DevicePicker_37d61; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 DevicesFlowUserSvc_37d61;Tok zařízení_37d61; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-04-11 68096]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-11 44520]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-04-11 44520]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-11 44520]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-11 44520]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-06-01 152216]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-11 44520]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-04-11 44520]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 MessagingService_37d61;Služba zasílání zpráv_37d61; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2018-11-15 202192]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-04-11 44520]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 ose;Office Source Engine; c:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-10-24 214808]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 PrintWorkflowUserSvc_37d61;PrintWorkflow_37d61; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-11 44520]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-04-11 44520]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-04-11 871424]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2018-06-08 679424]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2018-04-11 267264]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-11 44520]
S4 ssh-agent;OpenSSH Authentication Agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [2018-03-19 353792]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-04-11 44520]

-----------------EOF-----------------
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29.11.2018 01
Ran by Acer (30-11-2018 01:09:03)
Running from C:\Users\Acer\Downloads
Microsoft Windows 10 Home Version 1803 17134.407 (X86) (2018-05-09 22:11:19)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Acer (S-1-5-21-2221579002-4255015305-3882249614-1001 - Administrator - Enabled) => C:\Users\Acer
Administrator (S-1-5-21-2221579002-4255015305-3882249614-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2221579002-4255015305-3882249614-503 - Limited - Disabled)
Guest (S-1-5-21-2221579002-4255015305-3882249614-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2221579002-4255015305-3882249614-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.008.20081 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 31.0.0.153 - Adobe Systems Incorporated)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Battle.net (HKLM\...\Battle.net) (Version: - Blizzard Entertainment)
ESET Security (HKLM\...\{43331BEA-C00B-4EF6-8CF3-3957ECA032CB}) (Version: 11.0.159.5 - ESET, spol. s r.o.)
Google Chrome (HKLM\...\{D6BDA247-BC14-3629-B5DE-968DAD05E767}) (Version: 70.0.3538.110 - Google, Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
HAPPYneuron Brain Jogging (HKLM\...\CD_EntrainementCerebral_CZ) (Version: - )
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
K-Lite Codec Pack 12.1.5 Full (HKLM\...\KLiteCodecPack_is1) (Version: 12.1.5 - KLCP)
KONICA MINOLTA magicolor 2480MF (HKLM\...\KONICA MINOLTA magicolor 2480MF) (Version: - )
LibreOffice 5.1.3.2 (HKLM\...\{5F7475A1-6240-4753-BE3E-61499621EC42}) (Version: 5.1.3.2 - The Document Foundation)
Microsoft Office 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.11001.20108 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\...\OneDriveSetup.exe) (Version: 18.192.0920.0015 - Microsoft Corporation)
Mozilla Firefox 63.0.3 (x86 cs) (HKLM\...\Mozilla Firefox 63.0.3 (x86 cs)) (Version: 63.0.3 - Mozilla)
Mozilla Firefox 63.0.3 (x86 cs) (HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\...\Mozilla Firefox 63.0.3 (x86 cs)) (Version: 63.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 63.0.3 - Mozilla)
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-0000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7667 - Realtek Semiconductor Corp.)
Skype Web Plugin (HKLM\...\{DEAF2D27-DEBD-4DB5-9260-6665650D1F44}) (Version: 7.19.0.182 - Skype Technologies S.A.)
Skype™ 7.24 (HKLM\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
TeamViewer 13 (HKLM\...\TeamViewer) (Version: 13.2.26558 - TeamViewer)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 8.51 - Ghisler Software GmbH)
TRUSS4 - Truss 2D (HKLM\...\{BE2CCDB6-3C45-4947-8641-BC833CAB1349}) (Version: 12.6.1 - Fine spol. s r.o.) Hidden
TRUSS4 - Truss 3D (HKLM\...\{9186E29E-BB2B-459F-9B21-2B2671DCD38C}) (Version: 12.6.1 - Fine spol. s r.o.) Hidden
TRUSS4 - Truss Explorer (HKLM\...\{B376660A-4413-467B-A360-0F581B51EA72}) (Version: 12.6.1 - Fine spol. s r.o.) Hidden
TRUSS4 (HKLM\...\TRUSS4 v1) (Version: - Fine spol. s r.o.)
Windows 10 Update and Privacy Settings (HKLM\...\{8BE893D4-107C-4867-9B71-A3CF2C917C0E}) (Version: 1.0.13.0 - Microsoft Corporation)
WinRAR 5.31 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
YTD (pepak) (HKLM\...\YTD_Pepak) (Version: - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2221579002-4255015305-3882249614-1001_Classes\CLSID\{2F8D9A05-8AAD-445F-90B3-1098A3D3096A}\localserver32 -> C:\Users\Acer\AppData\Local\SkypePlugin\PluginHost.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-2221579002-4255015305-3882249614-1001_Classes\CLSID\{57EB1159-E1B2-4184-8268-800B4CA62C3A}\InprocServer32 -> C:\Users\Acer\AppData\Local\SkypePlugin\7.19.0.182\GatewayActiveX.dll (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-2221579002-4255015305-3882249614-1001_Classes\CLSID\{7253b364-18c5-555a-4b07-26abb39c9f99}\InprocServer32 -> C:\Users\Acer\AppData\Local\SkypePlugin\7.19.0.182\EdgeBrokerPS.dll (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-2221579002-4255015305-3882249614-1001_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\Acer\AppData\Local\SkypePlugin\7.19.0.182\EdgeCalling.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-2221579002-4255015305-3882249614-1001_Classes\CLSID\{E8AF02B0-222B-4B62-9C61-190D32BD053C}\localserver32 -> C:\Users\Acer\AppData\Local\SkypePlugin\7.19.0.182\GatewayVersion.exe (Skype Technologies S.A.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-11-07] (ESET)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-11-07] (ESET)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-17] (Intel Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-11-07] (ESET)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0EFFF5EB-73AB-4B54-BFC2-A5989C72CB5B} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceWnsFallback
Task: {0F7A0CF7-C517-4398-9633-DC2125462951} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-17] (Microsoft Corporation)
Task: {25378CBE-8CF4-4648-813B-9789888C3E20} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-08] (Microsoft Corporation)
Task: {3169356E-EF42-40ED-AE67-ED52E890EBB3} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_31_0_0_153_Plugin.exe [2018-11-21] (Adobe Systems Incorporated)
Task: {36718F4F-70C9-4BB4-AAF6-3534D919D8AD} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-11-17] (Microsoft Corporation)
Task: {381916A6-F67C-4F1C-833C-2B43FA62802C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-17] (Microsoft Corporation)
Task: {4C2A593B-4BCD-4AA6-860B-40D52DCD7D22} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2018-11-21] (Adobe Systems Incorporated)
Task: {5FEEF70A-A826-4946-A96D-05609BB549B6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-17] (Microsoft Corporation)
Task: {B45DA96A-E924-42EA-9548-808675BF02E3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-06-01] (Google Inc.)
Task: {C213EF7B-5958-4F69-B15B-D4F929D4FE7C} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-11] ()
Task: {CBF5FB12-DA4D-4E94-90EC-DE6E246CFFD4} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-17] (Microsoft Corporation)
Task: {D47F239D-AD91-4353-A288-C5D8D71AC66A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-06-01] (Google Inc.)
Task: {D73AF4BD-CD8E-44B7-94BD-B4A196050D43} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-08] (Microsoft Corporation)
Task: {E1F58816-0541-4D97-B205-CA6DC3C9B252} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Software Deals.lnk -> C:\ProgramData\Ashampoo\YourDeals.exe () -> hxxp://linktarget.ashampoo.com/linktarget/?target=marketplace&edition=eid=13472&utm_medium=desktop&x-pos=Metro

==================== Loaded Modules (Whitelisted) ==============

2018-04-11 21:29 - 2018-04-11 21:29 - 000364200 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-04-11 21:29 - 2018-04-11 21:29 - 000308224 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-11 21:29 - 2018-04-11 21:29 - 001670656 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-11-13 22:51 - 2018-11-01 05:28 - 001609216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-11-13 16:53 - 2018-11-13 16:53 - 000159744 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-11-13 16:53 - 2018-11-13 16:53 - 000013312 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2018-10-04 17:18 - 2018-10-04 17:19 - 000008192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-11-13 16:53 - 2018-11-13 16:53 - 000053248 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\ChakraBridge.dll
2018-11-13 16:53 - 2018-11-13 16:53 - 006827520 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\LibWrapper.dll
2018-11-13 16:53 - 2018-11-13 16:53 - 001930240 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\skypert.dll
2018-11-13 16:53 - 2018-11-13 16:53 - 000542208 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\RtmMvrUap.dll
2018-07-10 16:33 - 2018-07-10 16:34 - 001428144 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x86__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2018-11-06 23:18 - 2018-11-06 23:18 - 000172032 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x86__8wekyb3d8bbwe\WinStore.Preview.dll
2018-11-06 23:18 - 2018-11-06 23:18 - 001847368 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x86__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-11-06 23:18 - 2018-11-06 23:18 - 001366528 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x86__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
2018-11-19 22:08 - 2018-11-16 07:34 - 004238168 _____ () C:\Program Files\Google\Chrome\Application\70.0.3538.110\libglesv2.dll
2018-11-19 22:08 - 2018-11-16 07:34 - 000096600 _____ () C:\Program Files\Google\Chrome\Application\70.0.3538.110\libegl.dll
2018-11-13 16:55 - 2018-11-13 16:55 - 000479232 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-11-13 16:55 - 2018-11-13 16:55 - 055959552 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-10-05 15:37 - 2017-10-05 15:40 - 002366464 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-11-09 20:21 - 2018-11-09 20:24 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\RenderingPlugin.dll
2018-11-09 20:21 - 2018-11-09 20:24 - 003227648 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-08-17 08:51 - 2018-08-17 08:52 - 001818112 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\opencv_core320.dll
2018-03-30 16:38 - 2018-03-30 16:41 - 001787904 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-11-09 20:21 - 2018-11-09 20:24 - 000029184 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-08-17 08:51 - 2018-08-17 08:52 - 001875968 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-11-13 16:55 - 2018-11-13 16:55 - 009068544 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-11-09 20:21 - 2018-11-09 20:24 - 003131392 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\MediaEngine.dll
2018-11-13 16:54 - 2018-11-13 16:55 - 001759744 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-28 22:27 - 2018-08-28 22:28 - 000645120 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-26 20:43 - 2018-07-26 20:43 - 003565056 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-26 22:42 - 2018-10-26 22:43 - 017193984 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x86__8wekyb3d8bbwe\Video.UI.exe
2018-10-26 22:42 - 2018-10-26 22:43 - 000214528 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x86__8wekyb3d8bbwe\SharedUI.dll
2018-10-26 22:42 - 2018-10-26 22:43 - 004467712 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x86__8wekyb3d8bbwe\EntCommon.dll
2017-09-26 18:10 - 2017-09-26 18:11 - 002890664 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x86__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-26 22:42 - 2018-10-26 22:43 - 006793216 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x86__8wekyb3d8bbwe\EntPlat.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-10 09:28 - 2018-06-18 17:38 - 000000027 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\...\StartupApproved\Run: => "Skype"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{07AC9CF1-C257-4048-AD2C-EE5022292A0D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{81DA28BA-5D45-4B8A-B8F7-8A6263EBDB7F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{07BB5760-B7AB-4BD3-996A-E0657FA5527C}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{5F319758-A785-43D3-9746-762E94FFC004}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6CBF9B2C-2FD1-4C72-A568-A2B5BA265C30}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{2132624B-9D05-4FC3-B79A-9CFB504E1A16}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{7F0D6E45-8E11-44B1-84B7-C36B841BD69E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{98BBCF4C-A79E-41FE-A66A-DBDBB1C4C0CE}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{543301F7-9AA2-4CA0-B786-CCFA62874F33}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{04145507-DF2E-4D8B-BBB7-8A4961C16B00}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{879F5A9E-179C-402C-AFC9-E277F2F9AD8A}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{C4B12B3A-F4D5-4850-ABAB-B6A7DE01951C}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

13-11-2018 08:30:44 Naplánovaný kontrolní bod
16-11-2018 21:36:32 Windows Update
20-11-2018 22:06:40 Windows Update
29-11-2018 21:10:36 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============

Name: Řadič PCI pro šifrování a dešifrování
Description: Řadič PCI pro šifrování a dešifrování
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (11/29/2018 09:10:38 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 09:05:32 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 08:57:56 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 08:52:27 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 08:42:31 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 08:37:19 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 08:32:11 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 05:53:34 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0


System errors:
=============
Error: (11/29/2018 08:50:09 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OLNMQ4N)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
a APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
uživateli DESKTOP-OLNMQ4N\Acer (SID: S-1-5-21-2221579002-4255015305-3882249614-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy – SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/29/2018 07:15:39 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OLNMQ4N)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-OLNMQ4N\Acer (SID: S-1-5-21-2221579002-4255015305-3882249614-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/29/2018 07:15:38 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OLNMQ4N)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-OLNMQ4N\Acer (SID: S-1-5-21-2221579002-4255015305-3882249614-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/29/2018 07:15:26 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OLNMQ4N)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-OLNMQ4N\Acer (SID: S-1-5-21-2221579002-4255015305-3882249614-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/29/2018 07:15:26 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OLNMQ4N)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-OLNMQ4N\Acer (SID: S-1-5-21-2221579002-4255015305-3882249614-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/29/2018 07:15:25 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OLNMQ4N)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-OLNMQ4N\Acer (SID: S-1-5-21-2221579002-4255015305-3882249614-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/29/2018 07:15:24 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OLNMQ4N)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-OLNMQ4N\Acer (SID: S-1-5-21-2221579002-4255015305-3882249614-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/29/2018 06:47:17 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


CodeIntegrity:
===================================

Date: 2018-10-21 22:15:00.494
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:15:00.471
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:14:59.672
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:14:59.636
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:14:59.570
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:14:59.553
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:14:56.608
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:14:56.410
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Processor: Intel(R) Celeron(R) CPU N3150 @ 1.60GHz
Percentage of memory in use: 72%
Total physical RAM: 1882.11 MB
Available physical RAM: 518.79 MB
Total Virtual: 4704.15 MB
Available Virtual: 1798.63 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.27 GB) (Free:155.24 GB) NTFS

\\?\Volume{ac14bc20-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.49 GB) (Free:0.16 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: AC14BC20)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.3 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[michal75]

# -------------------------------
# Malwarebytes AdwCleaner 7.2.5.0
# -------------------------------
# Build: 11-26-2018
# Database: 2018-11-26.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 11-30-2018
# Duration: 00:00:11
# OS: Windows 10 Home
# Cleaned: 2
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\tweakbit.com

***** [ Chromium (and derivatives) ] *****

Deleted Search Extension by Ask

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1342 octets] - [30/11/2018 15:00:45]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

[Rudy]

Dejte nové logy FRST+Addition.

[michal75]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29.11.2018 01
Ran by Acer (administrator) on DESKTOP-OLNMQ4N (30-11-2018 21:35:39)
Running from C:\Users\Acer\Downloads
Loaded Profiles: Acer (Available Profiles: Acer)
Platform: Microsoft Windows 10 Home Version 1803 17134.407 (X86) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(© 2015 Microsoft Corporation) C:\Users\Acer\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x86__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x86__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x86__8wekyb3d8bbwe\WinStore.App.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [486816 2018-04-11] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [14690712 2016-06-01] (Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmds.exe [169616 2018-11-07] (ESET)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53123712 2016-05-17] (Skype Technologies S.A.)
HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\...\Run: [BingSvc] => C:\Users\Acer\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [28672 2018-04-11] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{bc8c83b4-45b9-4a54-ace7-0bff7618fb40}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{cef2a295-a465-4d57-ba01-9459ddb8b00b}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{d064c2ad-0485-4a00-908c-3bc67d5c3258}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{e04016a3-9385-4d38-aff7-62f4b3d0ecce}: [DhcpNameServer] 192.168.1.1 0.0.0.0

Internet Explorer:
==================
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-10-04] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-10-04] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-10-04] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-10-04] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: umadh4zv.default-1543487438371
FF ProfilePath: C:\Users\Acer\AppData\Roaming\Mozilla\Firefox\Profiles\umadh4zv.default-1543487438371 [2018-11-30]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_31_0_0_153.dll [2018-11-21] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-09-21] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-09-20] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2221579002-4255015305-3882249614-1001: SkypePlugin -> C:\Users\Acer\AppData\Local\SkypePlugin\7.19.0.182\npGatewayNpapi.dll [2016-05-27] (Skype Technologies S.A.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default [2018-11-30]
CHR Extension: (Adobe Acrobat) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-06-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-18]
CHR Extension: (Chrome Media Router) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-27]
CHR Profile: C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Guest Profile [2018-11-12]
CHR Profile: C:\Users\Acer\AppData\Local\Google\Chrome\User Data\System Profile [2018-11-12]
CHR HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [6087248 2018-11-08] (Microsoft Corporation)
S3 cphs; C:\WINDOWS\system32\IntelCpHeciSvc.exe [301552 2016-11-17] (Intel Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1833552 2018-11-07] (ESET)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [319472 2016-11-17] (Intel Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [353792 2018-03-19] ()
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [11644656 2018-09-10] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3650472 2018-04-11] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [86808 2018-09-21] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [28824 2018-05-10] (Apple Inc.)
R3 athr; C:\WINDOWS\System32\drivers\athw8.sys [3228672 2018-04-11] (Qualcomm Atheros Communications, Inc.)
R3 BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [521248 2016-06-25] (Qualcomm Atheros)
R3 BthLEEnum; C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [66560 2018-04-11] (Microsoft Corporation)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [124776 2018-11-07] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [92176 2018-11-07] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15352 2018-02-19] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [149192 2018-11-07] (ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43816 2018-11-07] (ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [72912 2018-11-07] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [94712 2018-11-07] (ESET)
R3 igfxLP; C:\WINDOWS\system32\DRIVERS\igdkmd32lp.sys [6671856 2016-11-17] (Intel Corporation)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [504832 2018-04-11] (Realtek )
S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [303344 2016-06-01] (Realsil Semiconductor Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37448 2018-04-11] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [271776 2018-04-11] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [30208 2018-04-11] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [189952 2018-04-11] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-30 21:35 - 2018-11-30 21:37 - 000011564 _____ C:\Users\Acer\Downloads\FRST.txt
2018-11-30 21:35 - 2018-11-30 21:35 - 000000000 ____D C:\FRST
2018-11-30 21:32 - 2018-11-30 21:33 - 001776128 _____ (Farbar) C:\Users\Acer\Downloads\FRST.exe
2018-11-30 00:55 - 2018-11-30 00:56 - 000000000 ____D C:\rsit
2018-11-29 11:34 - 2018-11-29 11:35 - 000320104 _____ (Mozilla) C:\Users\Acer\Downloads\Firefox Installer.exe
2018-11-26 22:16 - 2018-11-26 22:16 - 000151503 _____ C:\Users\Acer\Downloads\FEE_SCT_PSB_CZ.pdf
2018-11-26 22:13 - 2018-11-26 22:13 - 000581526 _____ C:\Users\Acer\Downloads\Zadost o zmeny karty.pdf
2018-11-26 22:11 - 2018-11-26 22:11 - 000000268 _____ C:\Users\Acer\Downloads\CSOB_56773604_26.11.2018.txt
2018-11-26 22:11 - 2018-11-26 22:11 - 000000268 _____ C:\Users\Acer\Downloads\CSOB_56773604_26.11.2018 (1).txt
2018-11-21 19:14 - 2018-11-21 19:14 - 004463104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2018-11-16 21:38 - 2018-11-16 21:38 - 000000000 ____D C:\Program Files\rempl
2018-11-14 01:15 - 2018-11-17 00:00 - 000834960 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2018-11-14 01:15 - 2018-11-17 00:00 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2018-11-13 22:52 - 2018-11-01 11:10 - 004939408 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-11-13 22:52 - 2018-11-01 05:47 - 006570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-11-13 22:51 - 2018-11-01 11:10 - 001362440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2018-11-13 22:51 - 2018-11-01 11:09 - 001027000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-11-13 22:51 - 2018-11-01 10:59 - 005669888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-11-13 22:51 - 2018-11-01 10:54 - 003397632 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-11-13 22:51 - 2018-11-01 10:53 - 001082880 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2018-11-13 22:51 - 2018-11-01 10:52 - 002892800 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-11-13 22:51 - 2018-11-01 06:08 - 002417952 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2018-11-13 22:51 - 2018-11-01 05:53 - 000994480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-11-13 22:51 - 2018-11-01 05:50 - 004171920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2018-11-13 22:51 - 2018-11-01 05:50 - 000861712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2018-11-13 22:51 - 2018-11-01 05:48 - 006039064 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-11-13 22:51 - 2018-11-01 05:48 - 004790184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-11-13 22:51 - 2018-11-01 05:48 - 002478872 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2018-11-13 22:51 - 2018-11-01 05:48 - 002351416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-11-13 22:51 - 2018-11-01 05:48 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-11-13 22:51 - 2018-11-01 05:48 - 001805656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-11-13 22:51 - 2018-11-01 05:48 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-11-13 22:51 - 2018-11-01 05:48 - 000880248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2018-11-13 22:51 - 2018-11-01 05:48 - 000502824 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-11-13 22:51 - 2018-11-01 05:48 - 000384520 _____ (Microsoft Corporation) C:\WINDOWS\system32\coml2.dll
2018-11-13 22:51 - 2018-11-01 05:47 - 006687032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-11-13 22:51 - 2018-11-01 05:47 - 001989552 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-11-13 22:51 - 2018-11-01 05:47 - 001379792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-11-13 22:51 - 2018-11-01 05:47 - 001020064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-11-13 22:51 - 2018-11-01 05:47 - 000817768 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-11-13 22:51 - 2018-11-01 05:47 - 000220472 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-11-13 22:51 - 2018-11-01 05:47 - 000129304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-11-13 22:51 - 2018-11-01 05:40 - 022015488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-11-13 22:51 - 2018-11-01 05:35 - 019403776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-11-13 22:51 - 2018-11-01 05:35 - 003255296 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-11-13 22:51 - 2018-11-01 05:34 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-11-13 22:51 - 2018-11-01 05:33 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-11-13 22:51 - 2018-11-01 05:33 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-11-13 22:51 - 2018-11-01 05:32 - 006647296 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2018-11-13 22:51 - 2018-11-01 05:31 - 005307904 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2018-11-13 22:51 - 2018-11-01 05:31 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-11-13 22:51 - 2018-11-01 05:30 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2018-11-13 22:51 - 2018-11-01 05:30 - 005775872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-11-13 22:51 - 2018-11-01 05:30 - 002808320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-11-13 22:51 - 2018-11-01 05:30 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2018-11-13 22:51 - 2018-11-01 05:30 - 002278400 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-11-13 22:51 - 2018-11-01 05:30 - 001751552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-11-13 22:51 - 2018-11-01 05:30 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-11-13 22:51 - 2018-11-01 05:30 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-11-13 22:51 - 2018-11-01 05:30 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-11-13 22:51 - 2018-11-01 05:30 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2018-11-13 22:51 - 2018-11-01 05:29 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-11-13 22:51 - 2018-11-01 05:29 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2018-11-13 22:51 - 2018-11-01 05:29 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-11-13 22:51 - 2018-11-01 05:29 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-11-13 22:51 - 2018-11-01 05:28 - 001272832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-11-13 22:51 - 2018-11-01 05:28 - 001000448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-11-13 22:51 - 2018-11-01 05:28 - 000978944 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2018-11-13 22:51 - 2018-11-01 05:28 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-11-13 22:51 - 2018-11-01 05:28 - 000441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2018-11-13 22:51 - 2018-11-01 05:27 - 001741312 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-11-13 22:51 - 2018-11-01 05:27 - 001627648 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-11-13 22:51 - 2018-11-01 05:27 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-11-13 22:51 - 2018-11-01 05:27 - 000977408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2018-11-13 22:51 - 2018-11-01 05:27 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-11-13 22:51 - 2018-11-01 05:27 - 000837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2018-11-13 22:51 - 2018-11-01 05:27 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2018-11-13 22:51 - 2018-11-01 05:27 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-11-13 22:51 - 2018-11-01 05:27 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-11-13 22:51 - 2018-11-01 05:27 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-11-13 22:51 - 2018-11-01 05:26 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2018-11-13 22:51 - 2018-10-21 12:38 - 001322376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2018-11-13 22:51 - 2018-10-21 12:38 - 000662312 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-11-13 22:51 - 2018-10-21 12:38 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2018-11-13 22:51 - 2018-10-21 12:37 - 020381808 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-11-13 22:51 - 2018-10-21 12:37 - 001530560 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2018-11-13 22:51 - 2018-10-21 12:28 - 012501504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-11-13 22:51 - 2018-10-21 12:26 - 011902464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-11-13 22:51 - 2018-10-21 12:26 - 003458560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-11-13 22:51 - 2018-10-21 12:24 - 000887808 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2018-11-13 22:51 - 2018-10-21 12:23 - 000998400 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-11-13 22:51 - 2018-10-21 12:23 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2018-11-13 22:51 - 2018-10-21 12:22 - 002405888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-11-13 22:51 - 2018-10-21 08:39 - 000480272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-11-13 22:51 - 2018-10-21 08:20 - 000539904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-11-13 22:51 - 2018-10-21 08:20 - 000424000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2018-11-13 22:51 - 2018-10-21 08:19 - 002487088 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2018-11-13 22:51 - 2018-10-21 08:19 - 002144056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-11-13 22:51 - 2018-10-21 08:19 - 001618376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-11-13 22:51 - 2018-10-21 08:19 - 001190696 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-11-13 22:51 - 2018-10-21 08:19 - 001130768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-11-13 22:51 - 2018-10-21 08:19 - 000949344 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-11-13 22:51 - 2018-10-21 08:19 - 000831216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-11-13 22:51 - 2018-10-21 08:19 - 000542520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2018-11-13 22:51 - 2018-10-21 08:19 - 000505616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2018-11-13 22:51 - 2018-10-21 08:19 - 000493368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2018-11-13 22:51 - 2018-10-21 08:18 - 001050488 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-11-13 22:51 - 2018-10-21 08:18 - 000142736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2018-11-13 22:51 - 2018-10-21 08:18 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2018-11-13 22:51 - 2018-10-21 08:09 - 013873664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-11-13 22:51 - 2018-10-21 08:02 - 002966528 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-11-13 22:51 - 2018-10-21 08:01 - 001189376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2018-11-13 22:51 - 2018-10-21 08:01 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
2018-11-13 22:51 - 2018-10-21 08:00 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2018-11-13 22:51 - 2018-10-21 08:00 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthAvrcp.dll
2018-11-13 22:51 - 2018-10-21 07:58 - 002198528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-11-13 22:51 - 2018-10-21 07:58 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-11-13 22:51 - 2018-10-21 07:58 - 001224192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2018-11-13 22:51 - 2018-10-21 07:58 - 001172992 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-11-13 22:51 - 2018-10-21 07:58 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2018-11-13 22:51 - 2018-10-21 07:58 - 000547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2018-11-13 22:51 - 2018-10-21 07:58 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-11-13 22:51 - 2018-10-21 07:58 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2018-11-13 22:51 - 2018-10-21 07:57 - 002611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2018-11-13 22:51 - 2018-10-21 07:57 - 002412544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-11-13 22:51 - 2018-10-21 07:57 - 001588224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2018-11-13 22:51 - 2018-10-21 07:56 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-11-13 22:51 - 2018-10-21 07:56 - 000910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-11-13 22:51 - 2018-10-21 07:56 - 000700928 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-11-13 22:51 - 2018-10-21 06:42 - 000806320 _____ C:\WINDOWS\system32\locale.nls
2018-11-13 22:50 - 2018-11-01 11:07 - 000316248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2018-11-13 22:50 - 2018-11-01 11:07 - 000078648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2018-11-13 22:50 - 2018-11-01 10:57 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2018-11-13 22:50 - 2018-11-01 10:56 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2018-11-13 22:50 - 2018-11-01 10:56 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2018-11-13 22:50 - 2018-11-01 10:55 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2018-11-13 22:50 - 2018-11-01 10:54 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-11-13 22:50 - 2018-11-01 10:53 - 001459200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2018-11-13 22:50 - 2018-11-01 10:53 - 000908288 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2018-11-13 22:50 - 2018-11-01 05:48 - 000343056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-11-13 22:50 - 2018-11-01 05:47 - 000679840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-11-13 22:50 - 2018-11-01 05:47 - 000633336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-11-13 22:50 - 2018-11-01 05:47 - 000197136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2018-11-13 22:50 - 2018-11-01 05:31 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-11-13 22:50 - 2018-11-01 05:31 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2018-11-13 22:50 - 2018-11-01 05:30 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-11-13 22:50 - 2018-11-01 05:30 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2018-11-13 22:50 - 2018-11-01 05:30 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2018-11-13 22:50 - 2018-11-01 05:30 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2018-11-13 22:50 - 2018-11-01 05:30 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2018-11-13 22:50 - 2018-11-01 05:29 - 000674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-11-13 22:50 - 2018-11-01 05:29 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-11-13 22:50 - 2018-11-01 05:29 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-11-13 22:50 - 2018-11-01 05:29 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2018-11-13 22:50 - 2018-11-01 05:29 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2018-11-13 22:50 - 2018-11-01 05:29 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2018-11-13 22:50 - 2018-11-01 05:29 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2018-11-13 22:50 - 2018-11-01 05:27 - 001354240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2018-11-13 22:50 - 2018-11-01 05:27 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-11-13 22:50 - 2018-11-01 05:26 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-11-13 22:50 - 2018-11-01 05:26 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-11-13 22:50 - 2018-10-21 12:38 - 000221216 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2018-11-13 22:50 - 2018-10-21 12:28 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\INETRES.dll
2018-11-13 22:50 - 2018-10-21 12:26 - 000596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2018-11-13 22:50 - 2018-10-21 12:25 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2018-11-13 22:50 - 2018-10-21 12:23 - 000523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2018-11-13 22:50 - 2018-10-21 12:22 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2018-11-13 22:50 - 2018-10-21 08:20 - 000295224 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2018-11-13 22:50 - 2018-10-21 08:19 - 000142136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-11-13 22:50 - 2018-10-21 08:18 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2018-11-13 22:50 - 2018-10-21 08:18 - 000044104 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2018-11-13 22:50 - 2018-10-21 08:02 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2018-11-13 22:50 - 2018-10-21 08:01 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2018-11-13 22:50 - 2018-10-21 08:01 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2018-11-13 22:50 - 2018-10-21 08:01 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe
2018-11-13 22:50 - 2018-10-21 08:01 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-11-13 22:50 - 2018-10-21 08:01 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhf.sys
2018-11-13 22:50 - 2018-10-21 08:01 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2018-11-13 22:50 - 2018-10-21 08:00 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2018-11-13 22:50 - 2018-10-21 08:00 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2018-11-13 22:50 - 2018-10-21 08:00 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2018-11-13 22:50 - 2018-10-21 08:00 - 000258048 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthAvctpSvc.dll
2018-11-13 22:50 - 2018-10-21 08:00 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2018-11-13 22:50 - 2018-10-21 08:00 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2018-11-13 22:50 - 2018-10-21 08:00 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2018-11-13 22:50 - 2018-10-21 07:59 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2018-11-13 22:50 - 2018-10-21 07:59 - 000416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2018-11-13 22:50 - 2018-10-21 07:59 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2018-11-13 22:50 - 2018-10-21 07:58 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2018-11-13 22:50 - 2018-10-21 07:58 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2018-11-13 22:50 - 2018-10-21 07:58 - 000317952 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2018-11-13 22:50 - 2018-10-21 07:58 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2018-11-13 22:50 - 2018-10-21 07:58 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2018-11-13 22:50 - 2018-10-21 07:57 - 000830976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-11-13 22:50 - 2018-10-21 07:57 - 000515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintRenderAPIHost.DLL
2018-11-13 22:50 - 2018-10-21 07:57 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2018-11-13 22:50 - 2018-10-21 07:56 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-11-06 23:03 - 2018-11-06 23:04 - 000160984 _____ C:\Users\Acer\Downloads\0_Editace_osobnich_udaju.pdf
2018-11-05 20:43 - 2018-11-05 20:43 - 000000000 ____D C:\Users\Acer\AppData\Local\OneDrive

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-30 21:27 - 2018-04-11 21:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-11-30 20:49 - 2018-05-09 22:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-11-30 15:10 - 2018-05-09 22:57 - 001601516 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-11-30 15:10 - 2018-04-12 05:53 - 000681858 _____ C:\WINDOWS\system32\perfh005.dat
2018-11-30 15:10 - 2018-04-12 05:53 - 000136754 _____ C:\WINDOWS\system32\perfc005.dat
2018-11-30 15:10 - 2018-04-11 21:31 - 000000000 ____D C:\WINDOWS\INF
2018-11-30 15:03 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-11-30 15:03 - 2017-04-14 15:13 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-11-30 15:03 - 2016-06-01 11:16 - 000000000 __SHD C:\Users\Acer\IntelGraphicsProfiles
2018-11-30 15:02 - 2018-07-10 17:00 - 000000000 ____D C:\Program Files\TeamViewer
2018-11-30 15:02 - 2018-05-09 23:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-11-30 15:02 - 2018-04-11 13:45 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-11-30 14:47 - 2018-04-11 21:36 - 000000000 ___HD C:\Program Files\WindowsApps
2018-11-30 00:55 - 2018-06-13 14:45 - 000000000 ____D C:\Program Files\trend micro
2018-11-30 00:25 - 2016-11-17 22:39 - 000000000 ____D C:\Users\Acer\AppData\LocalLow\Mozilla
2018-11-29 11:39 - 2016-06-01 13:11 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-11-29 11:37 - 2017-03-07 19:44 - 000000000 ____D C:\Program Files\mozilla firefox
2018-11-29 11:36 - 2018-03-03 22:23 - 000001274 _____ C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-11-29 11:36 - 2016-06-01 13:11 - 000001190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-11-28 18:12 - 2018-09-24 16:28 - 000018148 _____ C:\Users\Acer\Desktop\originál stodola záznamy o pohybech hotovosti.xlsx
2018-11-27 21:46 - 2017-12-03 20:25 - 000000000 ____D C:\Users\Acer\AppData\Local\Packages
2018-11-21 19:14 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-11-20 22:09 - 2018-04-11 21:25 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-11-20 15:18 - 2018-03-03 22:23 - 000000000 ____D C:\Users\Acer\AppData\Local\Mozilla Firefox
2018-11-19 22:08 - 2016-06-01 13:12 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-11-19 22:08 - 2016-06-01 13:12 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-11-17 23:34 - 2018-04-11 21:36 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-11-17 23:31 - 2018-09-21 15:33 - 000000000 ____D C:\Program Files\Microsoft Office
2018-11-15 13:24 - 2016-06-01 13:23 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-11-14 18:41 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-11-14 01:16 - 2017-12-03 20:53 - 000000000 ___RD C:\Users\Acer\3D Objects
2018-11-14 01:16 - 2016-04-27 05:30 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-11-14 01:15 - 2018-05-09 22:38 - 000467560 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-11-14 01:12 - 2018-04-11 21:36 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-11-14 01:12 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\TextInput
2018-11-14 01:11 - 2018-04-11 21:36 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-11-14 01:11 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-11-14 01:11 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-11-13 23:13 - 2016-06-01 13:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-11-13 23:07 - 2016-06-01 13:27 - 134758520 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-11-13 21:20 - 2018-07-21 21:23 - 000000000 ____D C:\Users\Acer\AppData\Local\ElevatedDiagnostics
2018-11-13 20:49 - 2018-05-09 22:44 - 000002388 _____ C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-11-13 20:49 - 2016-06-01 11:06 - 000000000 ___RD C:\Users\Acer\OneDrive
2018-11-11 18:48 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-11-07 21:59 - 2018-05-09 22:06 - 000149192 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2018-11-07 21:59 - 2018-05-09 22:06 - 000124776 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2018-11-07 21:59 - 2018-05-09 22:06 - 000094712 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2018-11-07 21:59 - 2018-05-09 22:06 - 000092176 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2018-11-07 21:59 - 2018-05-09 22:06 - 000072912 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys
2018-11-07 21:59 - 2018-05-09 22:06 - 000043816 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-05-09 22:38

==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29.11.2018 01
Ran by Acer (30-11-2018 21:38:15)
Running from C:\Users\Acer\Downloads
Microsoft Windows 10 Home Version 1803 17134.407 (X86) (2018-05-09 22:11:19)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Acer (S-1-5-21-2221579002-4255015305-3882249614-1001 - Administrator - Enabled) => C:\Users\Acer
Administrator (S-1-5-21-2221579002-4255015305-3882249614-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2221579002-4255015305-3882249614-503 - Limited - Disabled)
Guest (S-1-5-21-2221579002-4255015305-3882249614-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2221579002-4255015305-3882249614-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.008.20081 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 31.0.0.153 - Adobe Systems Incorporated)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Battle.net (HKLM\...\Battle.net) (Version: - Blizzard Entertainment)
ESET Security (HKLM\...\{43331BEA-C00B-4EF6-8CF3-3957ECA032CB}) (Version: 11.0.159.5 - ESET, spol. s r.o.)
Google Chrome (HKLM\...\{D6BDA247-BC14-3629-B5DE-968DAD05E767}) (Version: 70.0.3538.110 - Google, Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
HAPPYneuron Brain Jogging (HKLM\...\CD_EntrainementCerebral_CZ) (Version: - )
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
K-Lite Codec Pack 12.1.5 Full (HKLM\...\KLiteCodecPack_is1) (Version: 12.1.5 - KLCP)
KONICA MINOLTA magicolor 2480MF (HKLM\...\KONICA MINOLTA magicolor 2480MF) (Version: - )
LibreOffice 5.1.3.2 (HKLM\...\{5F7475A1-6240-4753-BE3E-61499621EC42}) (Version: 5.1.3.2 - The Document Foundation)
Microsoft Office 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.11001.20108 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\...\OneDriveSetup.exe) (Version: 18.192.0920.0015 - Microsoft Corporation)
Mozilla Firefox 63.0.3 (x86 cs) (HKLM\...\Mozilla Firefox 63.0.3 (x86 cs)) (Version: 63.0.3 - Mozilla)
Mozilla Firefox 63.0.3 (x86 cs) (HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\...\Mozilla Firefox 63.0.3 (x86 cs)) (Version: 63.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 63.0.3 - Mozilla)
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-0000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7667 - Realtek Semiconductor Corp.)
Skype Web Plugin (HKLM\...\{DEAF2D27-DEBD-4DB5-9260-6665650D1F44}) (Version: 7.19.0.182 - Skype Technologies S.A.)
Skype™ 7.24 (HKLM\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
TeamViewer 13 (HKLM\...\TeamViewer) (Version: 13.2.26558 - TeamViewer)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 8.51 - Ghisler Software GmbH)
TRUSS4 - Truss 2D (HKLM\...\{BE2CCDB6-3C45-4947-8641-BC833CAB1349}) (Version: 12.6.1 - Fine spol. s r.o.) Hidden
TRUSS4 - Truss 3D (HKLM\...\{9186E29E-BB2B-459F-9B21-2B2671DCD38C}) (Version: 12.6.1 - Fine spol. s r.o.) Hidden
TRUSS4 - Truss Explorer (HKLM\...\{B376660A-4413-467B-A360-0F581B51EA72}) (Version: 12.6.1 - Fine spol. s r.o.) Hidden
TRUSS4 (HKLM\...\TRUSS4 v1) (Version: - Fine spol. s r.o.)
Windows 10 Update and Privacy Settings (HKLM\...\{8BE893D4-107C-4867-9B71-A3CF2C917C0E}) (Version: 1.0.13.0 - Microsoft Corporation)
WinRAR 5.31 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
YTD (pepak) (HKLM\...\YTD_Pepak) (Version: - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2221579002-4255015305-3882249614-1001_Classes\CLSID\{2F8D9A05-8AAD-445F-90B3-1098A3D3096A}\localserver32 -> C:\Users\Acer\AppData\Local\SkypePlugin\PluginHost.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-2221579002-4255015305-3882249614-1001_Classes\CLSID\{57EB1159-E1B2-4184-8268-800B4CA62C3A}\InprocServer32 -> C:\Users\Acer\AppData\Local\SkypePlugin\7.19.0.182\GatewayActiveX.dll (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-2221579002-4255015305-3882249614-1001_Classes\CLSID\{7253b364-18c5-555a-4b07-26abb39c9f99}\InprocServer32 -> C:\Users\Acer\AppData\Local\SkypePlugin\7.19.0.182\EdgeBrokerPS.dll (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-2221579002-4255015305-3882249614-1001_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\Acer\AppData\Local\SkypePlugin\7.19.0.182\EdgeCalling.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-2221579002-4255015305-3882249614-1001_Classes\CLSID\{E8AF02B0-222B-4B62-9C61-190D32BD053C}\localserver32 -> C:\Users\Acer\AppData\Local\SkypePlugin\7.19.0.182\GatewayVersion.exe (Skype Technologies S.A.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-11-07] (ESET)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-11-07] (ESET)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-17] (Intel Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-11-07] (ESET)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0EFFF5EB-73AB-4B54-BFC2-A5989C72CB5B} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceWnsFallback
Task: {0F7A0CF7-C517-4398-9633-DC2125462951} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-17] (Microsoft Corporation)
Task: {25378CBE-8CF4-4648-813B-9789888C3E20} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-08] (Microsoft Corporation)
Task: {3169356E-EF42-40ED-AE67-ED52E890EBB3} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_31_0_0_153_Plugin.exe [2018-11-21] (Adobe Systems Incorporated)
Task: {36718F4F-70C9-4BB4-AAF6-3534D919D8AD} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-11-17] (Microsoft Corporation)
Task: {381916A6-F67C-4F1C-833C-2B43FA62802C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-17] (Microsoft Corporation)
Task: {4C2A593B-4BCD-4AA6-860B-40D52DCD7D22} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2018-11-21] (Adobe Systems Incorporated)
Task: {5FEEF70A-A826-4946-A96D-05609BB549B6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-17] (Microsoft Corporation)
Task: {B45DA96A-E924-42EA-9548-808675BF02E3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-06-01] (Google Inc.)
Task: {C213EF7B-5958-4F69-B15B-D4F929D4FE7C} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-11] ()
Task: {CBF5FB12-DA4D-4E94-90EC-DE6E246CFFD4} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-17] (Microsoft Corporation)
Task: {D47F239D-AD91-4353-A288-C5D8D71AC66A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-06-01] (Google Inc.)
Task: {D73AF4BD-CD8E-44B7-94BD-B4A196050D43} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-08] (Microsoft Corporation)
Task: {E1F58816-0541-4D97-B205-CA6DC3C9B252} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Software Deals.lnk -> C:\ProgramData\Ashampoo\YourDeals.exe () -> hxxp://linktarget.ashampoo.com/linktarget/?target=marketplace&edition=eid=13472&utm_medium=desktop&x-pos=Metro

==================== Loaded Modules (Whitelisted) ==============

2018-04-11 21:29 - 2018-04-11 21:29 - 000364200 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-04-11 21:29 - 2018-04-11 21:29 - 000308224 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-11 21:29 - 2018-04-11 21:29 - 001670656 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-11-13 22:51 - 2018-11-01 05:28 - 001609216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-10-04 17:18 - 2018-10-04 17:19 - 000008192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-11-13 16:53 - 2018-11-13 16:53 - 000053248 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\ChakraBridge.dll
2018-11-13 16:53 - 2018-11-13 16:53 - 000013312 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2018-11-13 16:53 - 2018-11-13 16:53 - 006827520 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\LibWrapper.dll
2018-11-13 16:53 - 2018-11-13 16:53 - 001930240 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\skypert.dll
2018-11-13 16:53 - 2018-11-13 16:53 - 000542208 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\RtmMvrUap.dll
2018-11-13 16:53 - 2018-11-13 16:53 - 000159744 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-07-10 16:33 - 2018-07-10 16:34 - 001428144 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x86__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2018-10-26 22:42 - 2018-10-26 22:43 - 017193984 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x86__8wekyb3d8bbwe\Video.UI.exe
2018-10-26 22:42 - 2018-10-26 22:43 - 000214528 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x86__8wekyb3d8bbwe\SharedUI.dll
2018-10-26 22:42 - 2018-10-26 22:43 - 004467712 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x86__8wekyb3d8bbwe\EntCommon.dll
2017-09-26 18:10 - 2017-09-26 18:11 - 002890664 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x86__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-26 22:42 - 2018-10-26 22:43 - 006793216 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x86__8wekyb3d8bbwe\EntPlat.dll
2018-11-19 22:08 - 2018-11-16 07:34 - 004238168 _____ () C:\Program Files\Google\Chrome\Application\70.0.3538.110\libglesv2.dll
2018-11-19 22:08 - 2018-11-16 07:34 - 000096600 _____ () C:\Program Files\Google\Chrome\Application\70.0.3538.110\libegl.dll
2018-11-06 23:18 - 2018-11-06 23:18 - 000172032 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x86__8wekyb3d8bbwe\WinStore.Preview.dll
2018-11-06 23:18 - 2018-11-06 23:18 - 001847368 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x86__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-11-06 23:18 - 2018-11-06 23:18 - 001366528 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x86__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
2018-11-13 16:55 - 2018-11-13 16:55 - 000479232 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-11-13 16:55 - 2018-11-13 16:55 - 055959552 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-10-05 15:37 - 2017-10-05 15:40 - 002366464 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-11-09 20:21 - 2018-11-09 20:24 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\RenderingPlugin.dll
2018-11-09 20:21 - 2018-11-09 20:24 - 003227648 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-11-09 20:21 - 2018-11-09 20:24 - 000029184 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-08-17 08:51 - 2018-08-17 08:52 - 001875968 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-08-17 08:51 - 2018-08-17 08:52 - 001818112 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\opencv_core320.dll
2018-03-30 16:38 - 2018-03-30 16:41 - 001787904 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-11-13 16:55 - 2018-11-13 16:55 - 009068544 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-11-09 20:21 - 2018-11-09 20:24 - 003131392 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\MediaEngine.dll
2018-11-13 16:54 - 2018-11-13 16:55 - 001759744 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-28 22:27 - 2018-08-28 22:28 - 000645120 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-26 20:43 - 2018-07-26 20:43 - 003565056 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-10 09:28 - 2018-06-18 17:38 - 000000027 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\...\StartupApproved\Run: => "Skype"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{07AC9CF1-C257-4048-AD2C-EE5022292A0D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{81DA28BA-5D45-4B8A-B8F7-8A6263EBDB7F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{07BB5760-B7AB-4BD3-996A-E0657FA5527C}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{5F319758-A785-43D3-9746-762E94FFC004}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6CBF9B2C-2FD1-4C72-A568-A2B5BA265C30}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{2132624B-9D05-4FC3-B79A-9CFB504E1A16}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{7F0D6E45-8E11-44B1-84B7-C36B841BD69E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{98BBCF4C-A79E-41FE-A66A-DBDBB1C4C0CE}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{543301F7-9AA2-4CA0-B786-CCFA62874F33}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{04145507-DF2E-4D8B-BBB7-8A4961C16B00}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{879F5A9E-179C-402C-AFC9-E277F2F9AD8A}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{C4B12B3A-F4D5-4850-ABAB-B6A7DE01951C}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

13-11-2018 08:30:44 Naplánovaný kontrolní bod
16-11-2018 21:36:32 Windows Update
20-11-2018 22:06:40 Windows Update
29-11-2018 21:10:36 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============

Name: Řadič PCI pro šifrování a dešifrování
Description: Řadič PCI pro šifrování a dešifrování
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (11/30/2018 08:17:05 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (11/29/2018 09:10:38 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 09:05:32 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 08:57:56 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 08:52:27 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 08:42:31 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 08:37:19 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 08:32:11 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.


System errors:
=============
Error: (11/30/2018 03:20:55 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/30/2018 03:13:02 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/30/2018 03:12:14 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/30/2018 03:10:06 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OLNMQ4N)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-OLNMQ4N\Acer (SID: S-1-5-21-2221579002-4255015305-3882249614-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/30/2018 03:05:50 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscBrokerManager
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/30/2018 03:03:05 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/30/2018 03:03:05 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/30/2018 03:02:34 PM) (Source: TPM) (EventID: 15) (User: NT AUTHORITY)
Description: V hardwaru čipu TPM (Trusted Platform Module) došlo k neobnovitelné chybě ovladače zařízení, která brání používání služeb TPM (například šifrování dat). Budete-li potřebovat další pomoc, obraťte se na výrobce počítače.


CodeIntegrity:
===================================

Date: 2018-10-21 22:15:00.494
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:15:00.471
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:14:59.672
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:14:59.636
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:14:59.570
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:14:59.553
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:14:56.608
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:14:56.410
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Processor: Intel(R) Celeron(R) CPU N3150 @ 1.60GHz
Percentage of memory in use: 77%
Total physical RAM: 1882.11 MB
Available physical RAM: 417.33 MB
Total Virtual: 4314.11 MB
Available Virtual: 1388.21 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.27 GB) (Free:154.78 GB) NTFS

\\?\Volume{ac14bc20-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.49 GB) (Free:0.16 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: AC14BC20)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.3 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\...\Run: [BingSvc] => C:\Users\Acer\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
Task: {B45DA96A-E924-42EA-9548-808675BF02E3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-06-01] (Google Inc.)
Task: {D47F239D-AD91-4353-A288-C5D8D71AC66A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-06-01] (Google Inc.)

EmptyTemp:
End

Uložte do C:\Users\Acer\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[michal75]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29.11.2018 01
Ran by Acer (administrator) on DESKTOP-OLNMQ4N (30-11-2018 22:57:29)
Running from C:\Users\Acer\Downloads
Loaded Profiles: Acer (Available Profiles: Acer)
Platform: Microsoft Windows 10 Home Version 1803 17134.407 (X86) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(© 2015 Microsoft Corporation) C:\Users\Acer\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x86__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x86__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x86__8wekyb3d8bbwe\WinStore.App.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [486816 2018-04-11] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [14690712 2016-06-01] (Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmds.exe [169616 2018-11-07] (ESET)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53123712 2016-05-17] (Skype Technologies S.A.)
HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\...\Run: [BingSvc] => C:\Users\Acer\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [28672 2018-04-11] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{bc8c83b4-45b9-4a54-ace7-0bff7618fb40}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{cef2a295-a465-4d57-ba01-9459ddb8b00b}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{d064c2ad-0485-4a00-908c-3bc67d5c3258}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{e04016a3-9385-4d38-aff7-62f4b3d0ecce}: [DhcpNameServer] 192.168.1.1 0.0.0.0

Internet Explorer:
==================
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-10-04] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-10-04] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-10-04] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-10-04] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: umadh4zv.default-1543487438371
FF ProfilePath: C:\Users\Acer\AppData\Roaming\Mozilla\Firefox\Profiles\umadh4zv.default-1543487438371 [2018-11-30]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_31_0_0_153.dll [2018-11-21] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-09-21] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-09-20] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2221579002-4255015305-3882249614-1001: SkypePlugin -> C:\Users\Acer\AppData\Local\SkypePlugin\7.19.0.182\npGatewayNpapi.dll [2016-05-27] (Skype Technologies S.A.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default [2018-11-30]
CHR Extension: (Adobe Acrobat) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-06-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-18]
CHR Extension: (Chrome Media Router) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-27]
CHR Profile: C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Guest Profile [2018-11-12]
CHR Profile: C:\Users\Acer\AppData\Local\Google\Chrome\User Data\System Profile [2018-11-12]
CHR HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [6087248 2018-11-08] (Microsoft Corporation)
S3 cphs; C:\WINDOWS\system32\IntelCpHeciSvc.exe [301552 2016-11-17] (Intel Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1833552 2018-11-07] (ESET)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [319472 2016-11-17] (Intel Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [353792 2018-03-19] ()
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [11644656 2018-09-10] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3650472 2018-04-11] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [86808 2018-09-21] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [28824 2018-05-10] (Apple Inc.)
R3 athr; C:\WINDOWS\System32\drivers\athw8.sys [3228672 2018-04-11] (Qualcomm Atheros Communications, Inc.)
R3 BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [521248 2016-06-25] (Qualcomm Atheros)
R3 BthLEEnum; C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [66560 2018-04-11] (Microsoft Corporation)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [124776 2018-11-07] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [92176 2018-11-07] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15352 2018-02-19] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [149192 2018-11-07] (ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43816 2018-11-07] (ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [72912 2018-11-07] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [94712 2018-11-07] (ESET)
R3 igfxLP; C:\WINDOWS\system32\DRIVERS\igdkmd32lp.sys [6671856 2016-11-17] (Intel Corporation)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [504832 2018-04-11] (Realtek )
S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [303344 2016-06-01] (Realsil Semiconductor Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37448 2018-04-11] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [271776 2018-04-11] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [30208 2018-04-11] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [189952 2018-04-11] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-30 22:57 - 2018-11-30 22:58 - 000011621 _____ C:\Users\Acer\Downloads\FRST.txt
2018-11-30 22:55 - 2018-11-30 22:57 - 000000000 ____D C:\FRST
2018-11-30 22:54 - 2018-11-30 22:55 - 001776128 _____ (Farbar) C:\Users\Acer\Downloads\FRST.exe
2018-11-30 22:52 - 2018-11-30 22:52 - 000001398 _____ C:\Users\Acer\fixlist.txt..txt
2018-11-30 22:28 - 2018-11-30 22:28 - 000001398 _____ C:\Users\Acer\Desktop\fixlist.txt..txt
2018-11-30 00:55 - 2018-11-30 00:56 - 000000000 ____D C:\rsit
2018-11-29 11:34 - 2018-11-29 11:35 - 000320104 _____ (Mozilla) C:\Users\Acer\Downloads\Firefox Installer.exe
2018-11-26 22:16 - 2018-11-26 22:16 - 000151503 _____ C:\Users\Acer\Downloads\FEE_SCT_PSB_CZ.pdf
2018-11-26 22:13 - 2018-11-26 22:13 - 000581526 _____ C:\Users\Acer\Downloads\Zadost o zmeny karty.pdf
2018-11-26 22:11 - 2018-11-26 22:11 - 000000268 _____ C:\Users\Acer\Downloads\CSOB_56773604_26.11.2018.txt
2018-11-26 22:11 - 2018-11-26 22:11 - 000000268 _____ C:\Users\Acer\Downloads\CSOB_56773604_26.11.2018 (1).txt
2018-11-21 19:14 - 2018-11-21 19:14 - 004463104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2018-11-16 21:38 - 2018-11-16 21:38 - 000000000 ____D C:\Program Files\rempl
2018-11-14 01:15 - 2018-11-17 00:00 - 000834960 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2018-11-14 01:15 - 2018-11-17 00:00 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2018-11-13 22:52 - 2018-11-01 11:10 - 004939408 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-11-13 22:52 - 2018-11-01 05:47 - 006570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-11-13 22:51 - 2018-11-01 11:10 - 001362440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2018-11-13 22:51 - 2018-11-01 11:09 - 001027000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-11-13 22:51 - 2018-11-01 10:59 - 005669888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-11-13 22:51 - 2018-11-01 10:54 - 003397632 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-11-13 22:51 - 2018-11-01 10:53 - 001082880 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2018-11-13 22:51 - 2018-11-01 10:52 - 002892800 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-11-13 22:51 - 2018-11-01 06:08 - 002417952 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2018-11-13 22:51 - 2018-11-01 05:53 - 000994480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-11-13 22:51 - 2018-11-01 05:50 - 004171920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2018-11-13 22:51 - 2018-11-01 05:50 - 000861712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2018-11-13 22:51 - 2018-11-01 05:48 - 006039064 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-11-13 22:51 - 2018-11-01 05:48 - 004790184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-11-13 22:51 - 2018-11-01 05:48 - 002478872 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2018-11-13 22:51 - 2018-11-01 05:48 - 002351416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-11-13 22:51 - 2018-11-01 05:48 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-11-13 22:51 - 2018-11-01 05:48 - 001805656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-11-13 22:51 - 2018-11-01 05:48 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-11-13 22:51 - 2018-11-01 05:48 - 000880248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2018-11-13 22:51 - 2018-11-01 05:48 - 000502824 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-11-13 22:51 - 2018-11-01 05:48 - 000384520 _____ (Microsoft Corporation) C:\WINDOWS\system32\coml2.dll
2018-11-13 22:51 - 2018-11-01 05:47 - 006687032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-11-13 22:51 - 2018-11-01 05:47 - 001989552 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-11-13 22:51 - 2018-11-01 05:47 - 001379792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-11-13 22:51 - 2018-11-01 05:47 - 001020064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-11-13 22:51 - 2018-11-01 05:47 - 000817768 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-11-13 22:51 - 2018-11-01 05:47 - 000220472 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-11-13 22:51 - 2018-11-01 05:47 - 000129304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-11-13 22:51 - 2018-11-01 05:40 - 022015488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-11-13 22:51 - 2018-11-01 05:35 - 019403776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-11-13 22:51 - 2018-11-01 05:35 - 003255296 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-11-13 22:51 - 2018-11-01 05:34 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-11-13 22:51 - 2018-11-01 05:33 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-11-13 22:51 - 2018-11-01 05:33 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-11-13 22:51 - 2018-11-01 05:32 - 006647296 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2018-11-13 22:51 - 2018-11-01 05:31 - 005307904 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2018-11-13 22:51 - 2018-11-01 05:31 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-11-13 22:51 - 2018-11-01 05:30 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2018-11-13 22:51 - 2018-11-01 05:30 - 005775872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-11-13 22:51 - 2018-11-01 05:30 - 002808320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-11-13 22:51 - 2018-11-01 05:30 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2018-11-13 22:51 - 2018-11-01 05:30 - 002278400 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-11-13 22:51 - 2018-11-01 05:30 - 001751552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-11-13 22:51 - 2018-11-01 05:30 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-11-13 22:51 - 2018-11-01 05:30 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-11-13 22:51 - 2018-11-01 05:30 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-11-13 22:51 - 2018-11-01 05:30 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2018-11-13 22:51 - 2018-11-01 05:29 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-11-13 22:51 - 2018-11-01 05:29 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2018-11-13 22:51 - 2018-11-01 05:29 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-11-13 22:51 - 2018-11-01 05:29 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-11-13 22:51 - 2018-11-01 05:28 - 001272832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-11-13 22:51 - 2018-11-01 05:28 - 001000448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-11-13 22:51 - 2018-11-01 05:28 - 000978944 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2018-11-13 22:51 - 2018-11-01 05:28 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-11-13 22:51 - 2018-11-01 05:28 - 000441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2018-11-13 22:51 - 2018-11-01 05:27 - 001741312 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-11-13 22:51 - 2018-11-01 05:27 - 001627648 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-11-13 22:51 - 2018-11-01 05:27 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-11-13 22:51 - 2018-11-01 05:27 - 000977408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2018-11-13 22:51 - 2018-11-01 05:27 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-11-13 22:51 - 2018-11-01 05:27 - 000837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2018-11-13 22:51 - 2018-11-01 05:27 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2018-11-13 22:51 - 2018-11-01 05:27 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-11-13 22:51 - 2018-11-01 05:27 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-11-13 22:51 - 2018-11-01 05:27 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-11-13 22:51 - 2018-11-01 05:26 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2018-11-13 22:51 - 2018-10-21 12:38 - 001322376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2018-11-13 22:51 - 2018-10-21 12:38 - 000662312 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-11-13 22:51 - 2018-10-21 12:38 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2018-11-13 22:51 - 2018-10-21 12:37 - 020381808 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-11-13 22:51 - 2018-10-21 12:37 - 001530560 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2018-11-13 22:51 - 2018-10-21 12:28 - 012501504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-11-13 22:51 - 2018-10-21 12:26 - 011902464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-11-13 22:51 - 2018-10-21 12:26 - 003458560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-11-13 22:51 - 2018-10-21 12:24 - 000887808 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2018-11-13 22:51 - 2018-10-21 12:23 - 000998400 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-11-13 22:51 - 2018-10-21 12:23 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2018-11-13 22:51 - 2018-10-21 12:22 - 002405888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-11-13 22:51 - 2018-10-21 08:39 - 000480272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-11-13 22:51 - 2018-10-21 08:20 - 000539904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-11-13 22:51 - 2018-10-21 08:20 - 000424000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2018-11-13 22:51 - 2018-10-21 08:19 - 002487088 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2018-11-13 22:51 - 2018-10-21 08:19 - 002144056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-11-13 22:51 - 2018-10-21 08:19 - 001618376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-11-13 22:51 - 2018-10-21 08:19 - 001190696 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-11-13 22:51 - 2018-10-21 08:19 - 001130768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-11-13 22:51 - 2018-10-21 08:19 - 000949344 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-11-13 22:51 - 2018-10-21 08:19 - 000831216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-11-13 22:51 - 2018-10-21 08:19 - 000542520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2018-11-13 22:51 - 2018-10-21 08:19 - 000505616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2018-11-13 22:51 - 2018-10-21 08:19 - 000493368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2018-11-13 22:51 - 2018-10-21 08:18 - 001050488 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-11-13 22:51 - 2018-10-21 08:18 - 000142736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2018-11-13 22:51 - 2018-10-21 08:18 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2018-11-13 22:51 - 2018-10-21 08:09 - 013873664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-11-13 22:51 - 2018-10-21 08:02 - 002966528 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-11-13 22:51 - 2018-10-21 08:01 - 001189376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2018-11-13 22:51 - 2018-10-21 08:01 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
2018-11-13 22:51 - 2018-10-21 08:00 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2018-11-13 22:51 - 2018-10-21 08:00 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthAvrcp.dll
2018-11-13 22:51 - 2018-10-21 07:58 - 002198528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-11-13 22:51 - 2018-10-21 07:58 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-11-13 22:51 - 2018-10-21 07:58 - 001224192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2018-11-13 22:51 - 2018-10-21 07:58 - 001172992 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-11-13 22:51 - 2018-10-21 07:58 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2018-11-13 22:51 - 2018-10-21 07:58 - 000547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2018-11-13 22:51 - 2018-10-21 07:58 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-11-13 22:51 - 2018-10-21 07:58 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2018-11-13 22:51 - 2018-10-21 07:57 - 002611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2018-11-13 22:51 - 2018-10-21 07:57 - 002412544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-11-13 22:51 - 2018-10-21 07:57 - 001588224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2018-11-13 22:51 - 2018-10-21 07:56 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-11-13 22:51 - 2018-10-21 07:56 - 000910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-11-13 22:51 - 2018-10-21 07:56 - 000700928 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-11-13 22:51 - 2018-10-21 06:42 - 000806320 _____ C:\WINDOWS\system32\locale.nls
2018-11-13 22:50 - 2018-11-01 11:07 - 000316248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2018-11-13 22:50 - 2018-11-01 11:07 - 000078648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2018-11-13 22:50 - 2018-11-01 10:57 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2018-11-13 22:50 - 2018-11-01 10:56 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2018-11-13 22:50 - 2018-11-01 10:56 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2018-11-13 22:50 - 2018-11-01 10:55 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2018-11-13 22:50 - 2018-11-01 10:54 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-11-13 22:50 - 2018-11-01 10:53 - 001459200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2018-11-13 22:50 - 2018-11-01 10:53 - 000908288 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2018-11-13 22:50 - 2018-11-01 05:48 - 000343056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-11-13 22:50 - 2018-11-01 05:47 - 000679840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-11-13 22:50 - 2018-11-01 05:47 - 000633336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-11-13 22:50 - 2018-11-01 05:47 - 000197136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2018-11-13 22:50 - 2018-11-01 05:31 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-11-13 22:50 - 2018-11-01 05:31 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2018-11-13 22:50 - 2018-11-01 05:30 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-11-13 22:50 - 2018-11-01 05:30 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2018-11-13 22:50 - 2018-11-01 05:30 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2018-11-13 22:50 - 2018-11-01 05:30 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2018-11-13 22:50 - 2018-11-01 05:30 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2018-11-13 22:50 - 2018-11-01 05:29 - 000674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-11-13 22:50 - 2018-11-01 05:29 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-11-13 22:50 - 2018-11-01 05:29 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-11-13 22:50 - 2018-11-01 05:29 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2018-11-13 22:50 - 2018-11-01 05:29 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2018-11-13 22:50 - 2018-11-01 05:29 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2018-11-13 22:50 - 2018-11-01 05:29 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2018-11-13 22:50 - 2018-11-01 05:27 - 001354240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2018-11-13 22:50 - 2018-11-01 05:27 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-11-13 22:50 - 2018-11-01 05:26 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-11-13 22:50 - 2018-11-01 05:26 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-11-13 22:50 - 2018-10-21 12:38 - 000221216 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2018-11-13 22:50 - 2018-10-21 12:28 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\INETRES.dll
2018-11-13 22:50 - 2018-10-21 12:26 - 000596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2018-11-13 22:50 - 2018-10-21 12:25 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2018-11-13 22:50 - 2018-10-21 12:23 - 000523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2018-11-13 22:50 - 2018-10-21 12:22 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2018-11-13 22:50 - 2018-10-21 08:20 - 000295224 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2018-11-13 22:50 - 2018-10-21 08:19 - 000142136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-11-13 22:50 - 2018-10-21 08:18 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2018-11-13 22:50 - 2018-10-21 08:18 - 000044104 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2018-11-13 22:50 - 2018-10-21 08:02 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2018-11-13 22:50 - 2018-10-21 08:01 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2018-11-13 22:50 - 2018-10-21 08:01 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2018-11-13 22:50 - 2018-10-21 08:01 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe
2018-11-13 22:50 - 2018-10-21 08:01 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-11-13 22:50 - 2018-10-21 08:01 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhf.sys
2018-11-13 22:50 - 2018-10-21 08:01 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2018-11-13 22:50 - 2018-10-21 08:00 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2018-11-13 22:50 - 2018-10-21 08:00 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2018-11-13 22:50 - 2018-10-21 08:00 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2018-11-13 22:50 - 2018-10-21 08:00 - 000258048 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthAvctpSvc.dll
2018-11-13 22:50 - 2018-10-21 08:00 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2018-11-13 22:50 - 2018-10-21 08:00 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2018-11-13 22:50 - 2018-10-21 08:00 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2018-11-13 22:50 - 2018-10-21 07:59 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2018-11-13 22:50 - 2018-10-21 07:59 - 000416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2018-11-13 22:50 - 2018-10-21 07:59 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2018-11-13 22:50 - 2018-10-21 07:58 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2018-11-13 22:50 - 2018-10-21 07:58 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2018-11-13 22:50 - 2018-10-21 07:58 - 000317952 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2018-11-13 22:50 - 2018-10-21 07:58 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2018-11-13 22:50 - 2018-10-21 07:58 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2018-11-13 22:50 - 2018-10-21 07:57 - 000830976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-11-13 22:50 - 2018-10-21 07:57 - 000515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintRenderAPIHost.DLL
2018-11-13 22:50 - 2018-10-21 07:57 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2018-11-13 22:50 - 2018-10-21 07:56 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-11-06 23:03 - 2018-11-06 23:04 - 000160984 _____ C:\Users\Acer\Downloads\0_Editace_osobnich_udaju.pdf
2018-11-05 20:43 - 2018-11-05 20:43 - 000000000 ____D C:\Users\Acer\AppData\Local\OneDrive

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-30 22:52 - 2018-05-09 22:44 - 000000000 ____D C:\Users\Acer
2018-11-30 22:52 - 2018-04-11 21:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-11-30 20:49 - 2018-05-09 22:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-11-30 15:10 - 2018-05-09 22:57 - 001601516 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-11-30 15:10 - 2018-04-12 05:53 - 000681858 _____ C:\WINDOWS\system32\perfh005.dat
2018-11-30 15:10 - 2018-04-12 05:53 - 000136754 _____ C:\WINDOWS\system32\perfc005.dat
2018-11-30 15:10 - 2018-04-11 21:31 - 000000000 ____D C:\WINDOWS\INF
2018-11-30 15:03 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-11-30 15:03 - 2017-04-14 15:13 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-11-30 15:03 - 2016-06-01 11:16 - 000000000 __SHD C:\Users\Acer\IntelGraphicsProfiles
2018-11-30 15:02 - 2018-07-10 17:00 - 000000000 ____D C:\Program Files\TeamViewer
2018-11-30 15:02 - 2018-05-09 23:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-11-30 15:02 - 2018-04-11 13:45 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-11-30 14:47 - 2018-04-11 21:36 - 000000000 ___HD C:\Program Files\WindowsApps
2018-11-30 00:55 - 2018-06-13 14:45 - 000000000 ____D C:\Program Files\trend micro
2018-11-30 00:25 - 2016-11-17 22:39 - 000000000 ____D C:\Users\Acer\AppData\LocalLow\Mozilla
2018-11-29 11:39 - 2016-06-01 13:11 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-11-29 11:37 - 2017-03-07 19:44 - 000000000 ____D C:\Program Files\mozilla firefox
2018-11-29 11:36 - 2018-03-03 22:23 - 000001274 _____ C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-11-29 11:36 - 2016-06-01 13:11 - 000001190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-11-28 18:12 - 2018-09-24 16:28 - 000018148 _____ C:\Users\Acer\Desktop\originál stodola záznamy o pohybech hotovosti.xlsx
2018-11-27 21:46 - 2017-12-03 20:25 - 000000000 ____D C:\Users\Acer\AppData\Local\Packages
2018-11-21 19:14 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-11-20 22:09 - 2018-04-11 21:25 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-11-20 15:18 - 2018-03-03 22:23 - 000000000 ____D C:\Users\Acer\AppData\Local\Mozilla Firefox
2018-11-19 22:08 - 2016-06-01 13:12 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-11-19 22:08 - 2016-06-01 13:12 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-11-17 23:34 - 2018-04-11 21:36 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-11-17 23:31 - 2018-09-21 15:33 - 000000000 ____D C:\Program Files\Microsoft Office
2018-11-15 13:24 - 2016-06-01 13:23 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-11-14 18:41 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-11-14 01:16 - 2017-12-03 20:53 - 000000000 ___RD C:\Users\Acer\3D Objects
2018-11-14 01:16 - 2016-04-27 05:30 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-11-14 01:15 - 2018-05-09 22:38 - 000467560 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-11-14 01:12 - 2018-04-11 21:36 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-11-14 01:12 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\TextInput
2018-11-14 01:11 - 2018-04-11 21:36 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-11-14 01:11 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-11-14 01:11 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-11-13 23:13 - 2016-06-01 13:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-11-13 23:07 - 2016-06-01 13:27 - 134758520 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-11-13 21:20 - 2018-07-21 21:23 - 000000000 ____D C:\Users\Acer\AppData\Local\ElevatedDiagnostics
2018-11-13 20:49 - 2018-05-09 22:44 - 000002388 _____ C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-11-13 20:49 - 2016-06-01 11:06 - 000000000 ___RD C:\Users\Acer\OneDrive
2018-11-11 18:48 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-11-07 21:59 - 2018-05-09 22:06 - 000149192 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2018-11-07 21:59 - 2018-05-09 22:06 - 000124776 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2018-11-07 21:59 - 2018-05-09 22:06 - 000094712 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2018-11-07 21:59 - 2018-05-09 22:06 - 000092176 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2018-11-07 21:59 - 2018-05-09 22:06 - 000072912 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys
2018-11-07 21:59 - 2018-05-09 22:06 - 000043816 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-05-09 22:38

==================== End of FRST.txt ============================Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29.11.2018 01
Ran by Acer (30-11-2018 22:59:54)
Running from C:\Users\Acer\Downloads
Microsoft Windows 10 Home Version 1803 17134.407 (X86) (2018-05-09 22:11:19)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Acer (S-1-5-21-2221579002-4255015305-3882249614-1001 - Administrator - Enabled) => C:\Users\Acer
Administrator (S-1-5-21-2221579002-4255015305-3882249614-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2221579002-4255015305-3882249614-503 - Limited - Disabled)
Guest (S-1-5-21-2221579002-4255015305-3882249614-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2221579002-4255015305-3882249614-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.008.20081 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 31.0.0.153 - Adobe Systems Incorporated)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Battle.net (HKLM\...\Battle.net) (Version: - Blizzard Entertainment)
ESET Security (HKLM\...\{43331BEA-C00B-4EF6-8CF3-3957ECA032CB}) (Version: 11.0.159.5 - ESET, spol. s r.o.)
Google Chrome (HKLM\...\{D6BDA247-BC14-3629-B5DE-968DAD05E767}) (Version: 70.0.3538.110 - Google, Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
HAPPYneuron Brain Jogging (HKLM\...\CD_EntrainementCerebral_CZ) (Version: - )
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
K-Lite Codec Pack 12.1.5 Full (HKLM\...\KLiteCodecPack_is1) (Version: 12.1.5 - KLCP)
KONICA MINOLTA magicolor 2480MF (HKLM\...\KONICA MINOLTA magicolor 2480MF) (Version: - )
LibreOffice 5.1.3.2 (HKLM\...\{5F7475A1-6240-4753-BE3E-61499621EC42}) (Version: 5.1.3.2 - The Document Foundation)
Microsoft Office 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.11001.20108 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\...\OneDriveSetup.exe) (Version: 18.192.0920.0015 - Microsoft Corporation)
Mozilla Firefox 63.0.3 (x86 cs) (HKLM\...\Mozilla Firefox 63.0.3 (x86 cs)) (Version: 63.0.3 - Mozilla)
Mozilla Firefox 63.0.3 (x86 cs) (HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\...\Mozilla Firefox 63.0.3 (x86 cs)) (Version: 63.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 63.0.3 - Mozilla)
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-0000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7667 - Realtek Semiconductor Corp.)
Skype Web Plugin (HKLM\...\{DEAF2D27-DEBD-4DB5-9260-6665650D1F44}) (Version: 7.19.0.182 - Skype Technologies S.A.)
Skype™ 7.24 (HKLM\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
TeamViewer 13 (HKLM\...\TeamViewer) (Version: 13.2.26558 - TeamViewer)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 8.51 - Ghisler Software GmbH)
TRUSS4 - Truss 2D (HKLM\...\{BE2CCDB6-3C45-4947-8641-BC833CAB1349}) (Version: 12.6.1 - Fine spol. s r.o.) Hidden
TRUSS4 - Truss 3D (HKLM\...\{9186E29E-BB2B-459F-9B21-2B2671DCD38C}) (Version: 12.6.1 - Fine spol. s r.o.) Hidden
TRUSS4 - Truss Explorer (HKLM\...\{B376660A-4413-467B-A360-0F581B51EA72}) (Version: 12.6.1 - Fine spol. s r.o.) Hidden
TRUSS4 (HKLM\...\TRUSS4 v1) (Version: - Fine spol. s r.o.)
Windows 10 Update and Privacy Settings (HKLM\...\{8BE893D4-107C-4867-9B71-A3CF2C917C0E}) (Version: 1.0.13.0 - Microsoft Corporation)
WinRAR 5.31 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
YTD (pepak) (HKLM\...\YTD_Pepak) (Version: - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2221579002-4255015305-3882249614-1001_Classes\CLSID\{2F8D9A05-8AAD-445F-90B3-1098A3D3096A}\localserver32 -> C:\Users\Acer\AppData\Local\SkypePlugin\PluginHost.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-2221579002-4255015305-3882249614-1001_Classes\CLSID\{57EB1159-E1B2-4184-8268-800B4CA62C3A}\InprocServer32 -> C:\Users\Acer\AppData\Local\SkypePlugin\7.19.0.182\GatewayActiveX.dll (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-2221579002-4255015305-3882249614-1001_Classes\CLSID\{7253b364-18c5-555a-4b07-26abb39c9f99}\InprocServer32 -> C:\Users\Acer\AppData\Local\SkypePlugin\7.19.0.182\EdgeBrokerPS.dll (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-2221579002-4255015305-3882249614-1001_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\Acer\AppData\Local\SkypePlugin\7.19.0.182\EdgeCalling.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-2221579002-4255015305-3882249614-1001_Classes\CLSID\{E8AF02B0-222B-4B62-9C61-190D32BD053C}\localserver32 -> C:\Users\Acer\AppData\Local\SkypePlugin\7.19.0.182\GatewayVersion.exe (Skype Technologies S.A.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-11-07] (ESET)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-11-07] (ESET)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-17] (Intel Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-11-07] (ESET)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0EFFF5EB-73AB-4B54-BFC2-A5989C72CB5B} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceWnsFallback
Task: {0F7A0CF7-C517-4398-9633-DC2125462951} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-17] (Microsoft Corporation)
Task: {25378CBE-8CF4-4648-813B-9789888C3E20} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-08] (Microsoft Corporation)
Task: {3169356E-EF42-40ED-AE67-ED52E890EBB3} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_31_0_0_153_Plugin.exe [2018-11-21] (Adobe Systems Incorporated)
Task: {36718F4F-70C9-4BB4-AAF6-3534D919D8AD} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-11-17] (Microsoft Corporation)
Task: {381916A6-F67C-4F1C-833C-2B43FA62802C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-17] (Microsoft Corporation)
Task: {4C2A593B-4BCD-4AA6-860B-40D52DCD7D22} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2018-11-21] (Adobe Systems Incorporated)
Task: {5FEEF70A-A826-4946-A96D-05609BB549B6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-17] (Microsoft Corporation)
Task: {B45DA96A-E924-42EA-9548-808675BF02E3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-06-01] (Google Inc.)
Task: {C213EF7B-5958-4F69-B15B-D4F929D4FE7C} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-11] ()
Task: {CBF5FB12-DA4D-4E94-90EC-DE6E246CFFD4} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-17] (Microsoft Corporation)
Task: {D47F239D-AD91-4353-A288-C5D8D71AC66A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-06-01] (Google Inc.)
Task: {D73AF4BD-CD8E-44B7-94BD-B4A196050D43} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-08] (Microsoft Corporation)
Task: {E1F58816-0541-4D97-B205-CA6DC3C9B252} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Software Deals.lnk -> C:\ProgramData\Ashampoo\YourDeals.exe () -> hxxp://linktarget.ashampoo.com/linktarget/?target=marketplace&edition=eid=13472&utm_medium=desktop&x-pos=Metro

==================== Loaded Modules (Whitelisted) ==============

2018-04-11 21:29 - 2018-04-11 21:29 - 000364200 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-04-11 21:29 - 2018-04-11 21:29 - 000308224 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-11 21:29 - 2018-04-11 21:29 - 001670656 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-11-13 22:51 - 2018-11-01 05:28 - 001609216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-10-04 17:18 - 2018-10-04 17:19 - 000008192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-11-13 16:53 - 2018-11-13 16:53 - 000053248 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\ChakraBridge.dll
2018-11-13 16:53 - 2018-11-13 16:53 - 000013312 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2018-11-13 16:53 - 2018-11-13 16:53 - 006827520 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\LibWrapper.dll
2018-11-13 16:53 - 2018-11-13 16:53 - 001930240 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\skypert.dll
2018-11-13 16:53 - 2018-11-13 16:53 - 000542208 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\RtmMvrUap.dll
2018-11-13 16:53 - 2018-11-13 16:53 - 000159744 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x86__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-07-10 16:33 - 2018-07-10 16:34 - 001428144 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x86__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2018-10-26 22:42 - 2018-10-26 22:43 - 017193984 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x86__8wekyb3d8bbwe\Video.UI.exe
2018-10-26 22:42 - 2018-10-26 22:43 - 000214528 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x86__8wekyb3d8bbwe\SharedUI.dll
2018-10-26 22:42 - 2018-10-26 22:43 - 004467712 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x86__8wekyb3d8bbwe\EntCommon.dll
2017-09-26 18:10 - 2017-09-26 18:11 - 002890664 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x86__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-26 22:42 - 2018-10-26 22:43 - 006793216 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x86__8wekyb3d8bbwe\EntPlat.dll
2018-11-19 22:08 - 2018-11-16 07:34 - 004238168 _____ () C:\Program Files\Google\Chrome\Application\70.0.3538.110\libglesv2.dll
2018-11-19 22:08 - 2018-11-16 07:34 - 000096600 _____ () C:\Program Files\Google\Chrome\Application\70.0.3538.110\libegl.dll
2018-11-06 23:18 - 2018-11-06 23:18 - 000172032 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x86__8wekyb3d8bbwe\WinStore.Preview.dll
2018-11-06 23:18 - 2018-11-06 23:18 - 001847368 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x86__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-11-06 23:18 - 2018-11-06 23:18 - 001366528 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x86__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
2018-11-13 16:55 - 2018-11-13 16:55 - 000479232 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-11-13 16:55 - 2018-11-13 16:55 - 055959552 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-10-05 15:37 - 2017-10-05 15:40 - 002366464 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-11-09 20:21 - 2018-11-09 20:24 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\RenderingPlugin.dll
2018-11-09 20:21 - 2018-11-09 20:24 - 003227648 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-11-09 20:21 - 2018-11-09 20:24 - 000029184 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-08-17 08:51 - 2018-08-17 08:52 - 001875968 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-08-17 08:51 - 2018-08-17 08:52 - 001818112 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\opencv_core320.dll
2018-03-30 16:38 - 2018-03-30 16:41 - 001787904 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-11-13 16:55 - 2018-11-13 16:55 - 009068544 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-11-09 20:21 - 2018-11-09 20:24 - 003131392 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\MediaEngine.dll
2018-11-13 16:54 - 2018-11-13 16:55 - 001759744 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-28 22:27 - 2018-08-28 22:28 - 000645120 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-26 20:43 - 2018-07-26 20:43 - 003565056 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x86__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-10 09:28 - 2018-06-18 17:38 - 000000027 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\...\StartupApproved\Run: => "Skype"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{07AC9CF1-C257-4048-AD2C-EE5022292A0D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{81DA28BA-5D45-4B8A-B8F7-8A6263EBDB7F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{07BB5760-B7AB-4BD3-996A-E0657FA5527C}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{5F319758-A785-43D3-9746-762E94FFC004}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6CBF9B2C-2FD1-4C72-A568-A2B5BA265C30}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{2132624B-9D05-4FC3-B79A-9CFB504E1A16}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{7F0D6E45-8E11-44B1-84B7-C36B841BD69E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{98BBCF4C-A79E-41FE-A66A-DBDBB1C4C0CE}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{543301F7-9AA2-4CA0-B786-CCFA62874F33}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{04145507-DF2E-4D8B-BBB7-8A4961C16B00}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{879F5A9E-179C-402C-AFC9-E277F2F9AD8A}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{C4B12B3A-F4D5-4850-ABAB-B6A7DE01951C}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

13-11-2018 08:30:44 Naplánovaný kontrolní bod
16-11-2018 21:36:32 Windows Update
20-11-2018 22:06:40 Windows Update
29-11-2018 21:10:36 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============

Name: Řadič PCI pro šifrování a dešifrování
Description: Řadič PCI pro šifrování a dešifrování
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (11/30/2018 08:17:05 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (11/29/2018 09:10:38 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 09:05:32 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 08:57:56 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 08:52:27 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 08:42:31 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 08:37:19 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/29/2018 08:32:11 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.


System errors:
=============
Error: (11/30/2018 03:20:55 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/30/2018 03:13:02 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/30/2018 03:12:14 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/30/2018 03:10:06 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OLNMQ4N)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-OLNMQ4N\Acer (SID: S-1-5-21-2221579002-4255015305-3882249614-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/30/2018 03:05:50 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscBrokerManager
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/30/2018 03:03:05 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/30/2018 03:03:05 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/30/2018 03:02:34 PM) (Source: TPM) (EventID: 15) (User: NT AUTHORITY)
Description: V hardwaru čipu TPM (Trusted Platform Module) došlo k neobnovitelné chybě ovladače zařízení, která brání používání služeb TPM (například šifrování dat). Budete-li potřebovat další pomoc, obraťte se na výrobce počítače.


CodeIntegrity:
===================================

Date: 2018-10-21 22:15:00.494
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:15:00.471
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:14:59.672
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:14:59.636
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:14:59.570
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:14:59.553
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:14:56.608
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-21 22:14:56.410
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Processor: Intel(R) Celeron(R) CPU N3150 @ 1.60GHz
Percentage of memory in use: 78%
Total physical RAM: 1882.11 MB
Available physical RAM: 406.49 MB
Total Virtual: 4314.11 MB
Available Virtual: 1308.16 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.27 GB) (Free:154.78 GB) NTFS

\\?\Volume{ac14bc20-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.49 GB) (Free:0.16 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: AC14BC20)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.3 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

[Rudy]

Potřebuji vidět obsah souboru fixlog.txt. Je v C:\Users\Acer\Downloads.

[michal75]

fixlog.txt nemám v předešlém kroku jsem nemohl udělat Fix píše to No fixlist.txt found. The fixlist.txt should be in the same folder/directory the tool is located.

[Rudy]

Tohle je mi ale na nic. Zkuste fix ještě jednou.

[michal75]

fixlog.txt. nejde udělat.

[Rudy]

Fixlog vytvoří sám FRST po provedení fixu. Máte chybně uložen fixlist. Musí být uložen v C:\Users\Acer\Downloads jako fixlist.txt (nikoliv fixlist.txt..txt).

[michal75]

Fix result of Farbar Recovery Scan Tool (x86) Version: 01.12.2018 01
Ran by Acer (01-12-2018 20:03:46) Run:1
Running from C:\Users\Acer\Desktop
Loaded Profiles: Acer (Available Profiles: Acer)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\...\Run: [BingSvc] => C:\Users\Acer\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (� 2015 Microsoft Corporation)
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
Task: {B45DA96A-E924-42EA-9548-808675BF02E3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-06-01] (Google Inc.)
Task: {D47F239D-AD91-4353-A288-C5D8D71AC66A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-06-01] (Google Inc.)

EmptyTemp:
End
*****************

Processes closed successfully.
"HKU\S-1-5-21-2221579002-4255015305-3882249614-1001\Software\Microsoft\Windows\CurrentVersion\Run\\BingSvc" => removed successfully.
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully.
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully.
HKLM\Software\Classes\CLSID\{B298D29A-A6ED-11DE-BA8C-A68E55D89593} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully.
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully.
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully.
HKLM\Software\Classes\CLSID\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully.
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => removed successfully.
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully.
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => removed successfully.
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B45DA96A-E924-42EA-9548-808675BF02E3}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B45DA96A-E924-42EA-9548-808675BF02E3}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D47F239D-AD91-4353-A288-C5D8D71AC66A}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D47F239D-AD91-4353-A288-C5D8D71AC66A}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 353671155 B
Java, Flash, Steam htmlcache => 291 B
Windows/system/drivers => 13093197 B
Edge => 8192 B
Chrome => 816111085 B
Firefox => 18975113 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 36082 B
NetworkService => 0 B
Acer => 29096177 B

RecycleBin => 74046 B
EmptyTemp: => 1.2 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 20:06:33 ====

[Rudy]

Teď je to OK. Nastala nějaká změna?

[michal75]

Zlepšení je ale není to ono.