Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

HDD využití 100% po startu

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
alesco3
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 13 led 2019 10:27

HDD využití 100% po startu

#1 Příspěvek od alesco3 »

Ahoj,

prosím pro prověření logů, zasílám je z FRST. Problém je klasický, Win10, HDD je ve správci zařízení využito na 100 % bez toho, aby se u něj zobrazovaly nějaké procesy, které by ho vytěžovaly (na 1. místě je správce zařízení). Zapnuto hned po restartu.

Předem děkuji za návrh řešení. Může být jen na nic disk? Addition.txt je v příloze.

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12.01.2019
Ran by JIND (administrator) on JIND-PC (13-01-2019 10:24:23)
Running from C:\Users\JIND\Desktop
Loaded Profiles: JIND (Available Profiles: JIND)
Platform: Windows 10 Pro Version 1803 17134.523 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast antivir\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Software602 a.s.) C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(CobianSoft, Luis Cobian) C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
() C:\Program Files (x86)\ExpressVPN\bootstrap\AMD64\nssm.exe
() C:\Windows\SysWOW64\dxconfig.exe
(Nitro PDF Software) C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe
() C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
() C:\Program Files (x86)\ExpressVPN\xvpnd\xvpnd.exe
() C:\Windows\SysWOW64\dxconfig.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.141.333\AvastBrowserCrashHandler.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.141.333\AvastBrowserCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast antivir\aswidsagent.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Greenshot) C:\Program Files\Greenshot\Greenshot.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(BitTorrent Inc.) C:\Users\JIND\AppData\Roaming\uTorrent\uTorrent.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast antivir\AvastUI.exe
(BitTorrent Inc.) C:\Users\JIND\AppData\Roaming\uTorrent\updates\3.5.5_44954\utorrentie.exe
(BitTorrent Inc.) C:\Users\JIND\AppData\Roaming\uTorrent\updates\3.5.5_44954\utorrentie.exe
(The Qt Company Ltd) C:\Program Files (x86)\Dropbox\Client\QtWebEngineProcess.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Trend Micro Inc.) C:\Users\JIND\Desktop\hijackthis.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [Greenshot] => C:\Program Files\Greenshot\Greenshot.exe [528384 2015-11-10] (Greenshot)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast antivir\AvLaunch.exe [261512 2019-01-08] (AVAST Software)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems, Incorporated)
HKLM\...\Run: [hola] => C:\Program Files\Hola\app\hola.exe --silent <==== ATTENTION
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [4050752 2019-01-08] (Dropbox, Inc.)
HKLM-x32\...\Run: [Cobian Backup 11] => C:\Program Files (x86)\Cobian Backup 11\Cobian.exe [720896 2013-03-07] (Luis Cobian, CobianSoft)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast antivir\AvLaunch.exe [261512 2019-01-08] (AVAST Software)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\Run: [uTorrent] => C:\Users\JIND\AppData\Roaming\uTorrent\uTorrent.exe [1739960 2018-12-22] (BitTorrent Inc.)
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\Policies\Explorer: [] 
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {2970c98e-ca90-11e7-8cc1-6cf049ed4eb3} - "E:\iLinker.exe" 
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {719e0e0a-c59e-11e5-abc5-6cf049ed4eb3} - "F:\OInstall.exe" 
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {9895d45f-4eee-11e8-93fa-6cf049ed4eb3} - "E:\Lenovo_Suite.exe" 
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {c809778d-c765-11e5-a6fb-6cf049ed4eb3} - "E:\AUTORUN.EXE" 
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\system32\bdmjpeg64.dll [75248 2017-01-26] ()
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\system32\bdmpegv64.dll [75272 2017-01-26] ()
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\system32\bdmpega64.acm [75784 2017-01-26] ()
HKLM\...\Drivers32-x32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [71152 2017-01-26] ()
HKLM\...\Drivers32-x32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [71176 2017-01-26] ()
HKLM\...\Drivers32-x32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [71176 2017-01-26] ()
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-14] (Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\70.1.973.110\Installer\chrmstp.exe [2019-01-04] (AVAST Software)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> 
ShellServiceObjects: No Name -> {59EFE487-E5B8-4fae-9D2C-FCDF0B70CE70} => 
ShellServiceObjects-x32: No Name -> {59EFE487-E5B8-4fae-9D2C-FCDF0B70CE70} => 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2018-01-09]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG)
GroupPolicy: Restriction ? <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 188.75.128.188 8.8.8.8
Tcpip\..\Interfaces\{05188d9b-d43a-4d38-ac6d-81dad962ff0a}: [DhcpNameServer] 10.143.0.1
Tcpip\..\Interfaces\{1e6490e0-e577-43a6-8f4a-2f29c1261ec9}: [DhcpNameServer] 188.75.128.188 8.8.8.8
Tcpip\..\Interfaces\{67e3c444-c9e4-403d-b164-71e36589adcb}: [DhcpNameServer] 188.75.128.188 8.8.8.8
Tcpip\..\Interfaces\{af304b00-e2ed-4e53-bc80-9d5a827d4ea3}: [DhcpNameServer] 10.0.150.150 188.75.128.188 192.168.1.1
Tcpip\..\Interfaces\{b88196e3-148f-453e-a90a-4b8cb9010c97}: [DhcpNameServer] 10.0.150.150 188.75.128.188 192.168.1.1
Tcpip\..\Interfaces\{e18e4721-1e3d-4663-943f-1b764b120d6a}: [DhcpNameServer] 10.0.150.150 188.75.128.188 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-3464826740-215856079-800623610-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2018-12-22] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation)
BHO-x32: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2018-12-22] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2019-01-12] (Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2019-01-12] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-3464826740-215856079-800623610-1001 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2018-02-14] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2018-04-10] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2018-02-14] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2018-04-10] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: i0l1wmww.default
FF ProfilePath: C:\Users\JIND\AppData\Roaming\Mozilla\Firefox\Profiles\i0l1wmww.default [2019-01-08]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\JIND\AppData\Roaming\Mozilla\Firefox\Profiles\i0l1wmww.default\Extensions\sp@avast.com.xpi [2019-01-12]
FF Extension: (Avast Online Security) - C:\Users\JIND\AppData\Roaming\Mozilla\Firefox\Profiles\i0l1wmww.default\Extensions\wrc@avast.com.xpi [2018-06-24]
FF HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\JIND\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi
FF Extension: (Ace Stream Web Extension) - C:\Users\JIND\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi [2017-08-22] [Legacy]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems)
FF Plugin-x32: @graphisoft.com/GDL Web Plug-in -> C:\Program Files (x86)\GRAPHISOFT\GDLWebControl\npGDLMozilla.dll [2012-09-04] ()
FF Plugin-x32: @java.com/DTPlugin,version=10.21.2 -> C:\WINDOWS\SysWOW64\npDeployJava1.dll [2019-01-10] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2019-01-12] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-04-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-12-11] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-12-11] (NVIDIA Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems)

Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default [2018-11-21]
CHR Extension: (Prezentace) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-26]
CHR Extension: (Dokumenty) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-26]
CHR Extension: (Disk Google) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-25]
CHR Extension: (YouTube) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-25]
CHR Extension: (Adblock Plus) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-10-26]
CHR Extension: (Vyhledávání Google) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-25]
CHR Extension: (Tabulky) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-21]
CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2018-07-20]
CHR Extension: (Avast Online Security) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-10-26]
CHR Extension: (Ace Script) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2017-09-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-09]
CHR Extension: (Gmail) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-25]
CHR Extension: (Chrome Media Router) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-26]
CHR HKU\S-1-5-21-3464826740-215856079-800623610-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast antivir\WebRep\Chrome\aswWebRepChrome.crx <not found>

Opera: 
=======
OPR Extension: (AdBlock) - C:\Users\JIND\AppData\Roaming\Opera Software\Opera Stable\Extensions\aobdicepooefnbaeokijohmhjlleamfj [2016-05-28]
OPR Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\JIND\AppData\Roaming\Opera Software\Opera Stable\Extensions\bbkekonodcdmedgffkkbgmnnekbainbg [2018-12-05]
OPR Extension: (Unlimited Free VPN - Hola) - C:\Users\JIND\AppData\Roaming\Opera Software\Opera Stable\Extensions\ekmmelpnmfdegjhnmadddcfjcahpajnm [2018-08-07]
OPR Extension: (MyJDownloader Browser Extension) - C:\Users\JIND\AppData\Roaming\Opera Software\Opera Stable\Extensions\fbclnkmbcmdfamfeaagadifibbongnmf [2018-12-28]
OPR Extension: (CyberGhost VPN - Free Proxy) - C:\Users\JIND\AppData\Roaming\Opera Software\Opera Stable\Extensions\mapjiibffmopkdcncmaifgdjjiooifnn [2016-06-04]
StartMenuInternet: (HKLM) Operadeveloper - C:\Program Files (x86)\Opera developer\Launcher.exe

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1353208 2017-06-15] (Autodesk Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast antivir\aswidsagent.exe [7834368 2019-01-08] (AVAST Software)
S2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [19232 2012-01-31] (Autodesk, Inc.)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-06-07] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast antivir\AvastSvc.exe [357816 2019-01-08] (AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-06-07] (AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast antivir\wsc_proxy.exe [57504 2019-01-08] (AVAST Software)
S2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [339240 2018-03-19] (Avira Operations GmbH & Co. KG)
R2 cbVSCService11; C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe [67584 2013-03-07] (CobianSoft, Luis Cobian) [File not signed]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-25] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-25] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-01-08] (Dropbox, Inc.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1369464 2016-01-15] (Disc Soft Ltd)
S2 DiskMonitor; C:\Program Files (x86)\DiskMonitor\diskmntr.exe [22488 2008-02-03] (Corner Bowl Software Corporation) [File not signed]
R2 ExpressVpnService; C:\Program Files (x86)\ExpressVPN\bootstrap\AMD64\nssm.exe [339168 2018-02-07] ()
S2 hola_updater; C:\Program Files\Hola\app\hola_updater.exe [20147160 2018-02-25] (Hola Networks Ltd.) <==== ATTENTION
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
R2 Microsoft DirectX Configuration Service; C:\Windows\SysWOW64\dxconfig.exe [64512 2017-04-17] () [File not signed]
R2 NitroDriverReadSpool10; C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe [324760 2015-05-06] (Nitro PDF Software)
R2 NitroUpdateService; C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe [418968 2015-05-06] ()
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [38200 2016-01-04] (The OpenVPN Project)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-07-15] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2018-12-11] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2018-12-11] (Microsoft Corporation)
S2 hola_svc; "C:\Program Files\Hola\app\hola_svc.exe" --service [X] <==== ATTENTION
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37304 2019-01-08] (AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [203488 2019-01-08] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [220688 2019-01-08] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196264 2019-01-08] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320888 2019-01-08] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [58160 2019-01-08] (AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-01-08] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46584 2019-01-08] (AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42488 2019-01-08] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [166472 2019-01-08] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111992 2019-01-08] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88144 2019-01-08] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1034056 2019-01-08] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [474648 2019-01-08] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [218056 2019-01-08] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [380144 2019-01-08] (AVAST Software)
S3 DSoftAPRtlWlanu; C:\WINDOWS\System32\drivers\DSoftAPrtwlanu.sys [5608960 2016-11-11] (Realtek Semiconductor Corporation )
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-01-30] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-01-30] (Disc Soft Ltd)
S3 expressvpnsplittunnel; C:\Program Files (x86)\ExpressVpn SplitTunnel Driver\driver\expressvpnsplittunnel.sys [28160 2018-02-07] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e7b3660b4830c245\nvlddmkm.sys [20424640 2018-12-17] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30656 2018-07-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69544 2018-06-08] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [74576 2018-10-01] (NVIDIA Corporation)
S3 Ph3xIB64; C:\WINDOWS\system32\DRIVERS\Ph3xIB64.sys [1627520 2011-05-31] (NXP Semiconductors)
S3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [45056 2017-09-27] (The OpenVPN Project)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
R3 ROCKEYNT; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [36904 2016-02-06] (Feitian Technologies Co., Ltd.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-12] (Realtek )
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] ()
S3 tapexpressvpn; C:\WINDOWS\System32\drivers\tapexpressvpn.sys [45024 2018-02-07] (The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46680 2018-12-11] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [330936 2018-12-11] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2018-12-11] (Microsoft Corporation)
R2 WIBUKEY; C:\WINDOWS\System32\DRIVERS\WibuKey64.sys [106760 2013-12-18] (WIBU-SYSTEMS AG)
U3 aspnet_state; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-13 10:24 - 2019-01-13 10:27 - 000028712 _____ C:\Users\JIND\Desktop\FRST.txt
2019-01-13 10:23 - 2019-01-13 10:24 - 000000000 ____D C:\FRST
2019-01-13 10:23 - 2019-01-13 10:23 - 002427392 _____ (Farbar) C:\Users\JIND\Desktop\FRST64.exe
2019-01-13 10:15 - 2019-01-13 10:16 - 004509412 _____ C:\Users\JIND\Downloads\CrystalDiskInfo8_0_0.zip
2019-01-13 10:15 - 2019-01-13 10:15 - 002833672 _____ (Crystal Dew World ) C:\Users\JIND\Desktop\CrystalDiskMark5_5_0.exe
2019-01-13 10:14 - 2019-01-13 10:14 - 000388608 _____ (Trend Micro Inc.) C:\Users\JIND\Desktop\hijackthis.exe
2019-01-12 22:43 - 2019-01-10 11:03 - 000866720 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\npDeployJava1.dll
2019-01-12 22:43 - 2019-01-10 11:03 - 000788896 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\deployJava1.dll
2019-01-12 22:42 - 2019-01-12 22:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-01-12 22:30 - 2018-12-11 08:32 - 000133616 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2019-01-12 22:25 - 2019-01-12 22:30 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2019-01-12 22:20 - 2018-12-17 07:18 - 000978128 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2019-01-12 22:20 - 2018-12-17 07:18 - 000978128 _____ C:\WINDOWS\system32\vulkan-1.dll
2019-01-12 22:20 - 2018-12-17 07:18 - 000845008 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2019-01-12 22:20 - 2018-12-17 07:18 - 000845008 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2019-01-12 22:20 - 2018-12-17 07:18 - 000552032 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2019-01-12 22:20 - 2018-12-17 07:18 - 000456800 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2019-01-12 22:20 - 2018-12-17 07:18 - 000267984 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2019-01-12 22:20 - 2018-12-17 07:18 - 000267984 _____ C:\WINDOWS\system32\vulkaninfo.exe
2019-01-12 22:20 - 2018-12-17 07:18 - 000243408 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-01-12 22:20 - 2018-12-17 07:18 - 000243408 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2019-01-12 22:20 - 2018-12-17 07:13 - 013204120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2019-01-12 22:20 - 2018-12-17 04:33 - 000047384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2019-01-12 22:19 - 2018-12-17 07:16 - 002003600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2019-01-12 22:19 - 2018-12-17 07:16 - 001512080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2019-01-12 22:19 - 2018-12-17 07:16 - 001461024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2019-01-12 22:19 - 2018-12-17 07:16 - 001126144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2019-01-12 22:19 - 2018-12-17 07:16 - 000631232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2019-01-12 22:19 - 2018-12-17 07:16 - 000521472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2019-01-12 22:19 - 2018-12-17 07:15 - 040261192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2019-01-12 22:19 - 2018-12-17 07:15 - 035157064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2019-01-12 22:19 - 2018-12-17 07:15 - 004946336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2019-01-12 22:19 - 2018-12-17 07:15 - 004316760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2019-01-12 22:19 - 2018-12-17 07:15 - 002017752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6441735.dll
2019-01-12 22:19 - 2018-12-17 07:15 - 001468504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6441735.dll
2019-01-12 22:19 - 2018-12-17 07:15 - 000750488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2019-01-12 22:19 - 2018-12-17 07:15 - 000609368 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2019-01-12 22:19 - 2018-12-17 07:13 - 015909552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2019-01-12 22:19 - 2018-12-17 07:13 - 001462024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2019-01-12 22:19 - 2018-12-17 07:13 - 001167400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2019-01-12 22:19 - 2018-12-17 07:13 - 001145536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2019-01-12 22:19 - 2018-12-17 07:13 - 000914400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2019-01-12 22:19 - 2018-12-17 07:13 - 000794632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2019-01-12 22:19 - 2018-12-17 07:13 - 000637480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2019-01-12 22:19 - 2018-12-17 07:12 - 019714256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2019-01-12 22:19 - 2018-12-17 07:12 - 016990072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2019-01-12 22:19 - 2018-12-17 07:12 - 004258800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2019-01-12 22:19 - 2018-12-11 12:00 - 000048148 _____ C:\WINDOWS\system32\nvinfo.pb
2019-01-12 21:03 - 2019-01-12 21:03 - 020161037 _____ C:\Users\JIND\Downloads\mb_manual_ga-890gpa-ud3h_v2.1_e.pdf
2019-01-12 20:44 - 2019-01-12 21:14 - 1969774592 ____R C:\Users\JIND\Downloads\Vyměřený čas (2011).avi
2019-01-12 20:43 - 2019-01-12 20:43 - 000019355 _____ C:\Users\JIND\Downloads\[CzT]Vymereny_cas_In_Time_2011_.torrent
2019-01-12 12:34 - 2019-01-12 12:34 - 000000000 ____D C:\Users\JIND\Downloads\hwi_600
2019-01-12 12:33 - 2019-01-12 12:33 - 008199671 _____ C:\Users\JIND\Downloads\hwi_600.zip
2019-01-12 12:25 - 2019-01-12 12:24 - 005112480 _____ (Husdawg, LLC) C:\Users\JIND\Desktop\Detection.exe
2019-01-11 17:11 - 2019-01-11 17:11 - 019011945 _____ C:\Users\JIND\Downloads\Gmail (4).zip
2019-01-10 11:05 - 2019-01-12 22:42 - 000300408 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2019-01-10 07:32 - 2019-01-10 07:32 - 000002163 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2019-01-10 07:29 - 2019-01-08 07:26 - 000361352 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-01-09 21:07 - 2019-01-09 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-01-09 19:23 - 2019-01-01 14:46 - 012710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-01-09 19:23 - 2019-01-01 14:20 - 011902976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-01-09 19:23 - 2019-01-01 08:14 - 001029944 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-01-09 19:23 - 2019-01-01 08:14 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-01-09 19:23 - 2019-01-01 08:13 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-01-09 19:23 - 2019-01-01 08:13 - 000709728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-01-09 19:23 - 2019-01-01 08:13 - 000170808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-01-09 19:23 - 2019-01-01 08:12 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-01-09 19:23 - 2019-01-01 08:12 - 002765344 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-01-09 19:23 - 2019-01-01 08:12 - 000128824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-01-09 19:23 - 2019-01-01 07:47 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-01-09 19:23 - 2019-01-01 07:45 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-01-09 19:23 - 2019-01-01 07:43 - 001805312 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-01-09 19:23 - 2019-01-01 07:41 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-01-09 19:23 - 2019-01-01 07:37 - 002478664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-01-09 19:23 - 2019-01-01 07:37 - 002253696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-01-09 19:23 - 2019-01-01 07:37 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-01-09 19:23 - 2019-01-01 07:16 - 005775872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-01-09 19:23 - 2019-01-01 07:15 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-01-09 19:23 - 2019-01-01 07:14 - 004514816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-01-09 19:23 - 2019-01-01 07:13 - 001628160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-01-09 19:22 - 2019-01-01 14:50 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-01-09 19:22 - 2019-01-01 14:47 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowslivelogin.dll
2019-01-09 19:22 - 2019-01-01 14:45 - 000714752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2019-01-09 19:22 - 2019-01-01 14:45 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2019-01-09 19:22 - 2019-01-01 14:43 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-01-09 19:22 - 2019-01-01 14:20 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowslivelogin.dll
2019-01-09 19:22 - 2019-01-01 14:18 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2019-01-09 19:22 - 2019-01-01 14:17 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2019-01-09 19:22 - 2019-01-01 08:14 - 001221432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-01-09 19:22 - 2019-01-01 08:14 - 001063224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-01-09 19:22 - 2019-01-01 08:14 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-01-09 19:22 - 2019-01-01 08:14 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-01-09 19:22 - 2019-01-01 08:13 - 003292152 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-01-09 19:22 - 2019-01-01 08:13 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-01-09 19:22 - 2019-01-01 08:12 - 007520104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-01-09 19:22 - 2019-01-01 08:12 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-01-09 19:22 - 2019-01-01 08:12 - 002421288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-01-09 19:22 - 2019-01-01 08:12 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-01-09 19:22 - 2019-01-01 08:12 - 000268304 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-01-09 19:22 - 2019-01-01 08:12 - 000043536 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-01-09 19:22 - 2019-01-01 07:55 - 025856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-01-09 19:22 - 2019-01-01 07:50 - 022715392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-01-09 19:22 - 2019-01-01 07:50 - 004383744 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-01-09 19:22 - 2019-01-01 07:48 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-01-09 19:22 - 2019-01-01 07:48 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-01-09 19:22 - 2019-01-01 07:48 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2019-01-09 19:22 - 2019-01-01 07:47 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-01-09 19:22 - 2019-01-01 07:46 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-01-09 19:22 - 2019-01-01 07:46 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-01-09 19:22 - 2019-01-01 07:46 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-01-09 19:22 - 2019-01-01 07:45 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-01-09 19:22 - 2019-01-01 07:45 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-01-09 19:22 - 2019-01-01 07:44 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2019-01-09 19:22 - 2019-01-01 07:44 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-01-09 19:22 - 2019-01-01 07:44 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-01-09 19:22 - 2019-01-01 07:44 - 000662528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2019-01-09 19:22 - 2019-01-01 07:44 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-01-09 19:22 - 2019-01-01 07:42 - 004939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-01-09 19:22 - 2019-01-01 07:42 - 002247680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2019-01-09 19:22 - 2019-01-01 07:42 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-01-09 19:22 - 2019-01-01 07:42 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-01-09 19:22 - 2019-01-01 07:41 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-01-09 19:22 - 2019-01-01 07:41 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2019-01-09 19:22 - 2019-01-01 07:41 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-01-09 19:22 - 2019-01-01 07:37 - 006571584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-01-09 19:22 - 2019-01-01 07:37 - 000880048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2019-01-09 19:22 - 2019-01-01 07:37 - 000581808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-01-09 19:22 - 2019-01-01 07:37 - 000381240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-01-09 19:22 - 2019-01-01 07:29 - 022016512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-01-09 19:22 - 2019-01-01 07:22 - 019405312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-01-09 19:22 - 2019-01-01 07:17 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-01-09 19:22 - 2019-01-01 07:16 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2019-01-09 19:22 - 2019-01-01 07:16 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2019-01-09 19:22 - 2019-01-01 07:15 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-01-09 19:22 - 2019-01-01 07:15 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-01-09 19:22 - 2019-01-01 07:15 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-01-09 19:22 - 2019-01-01 07:14 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-01-09 19:22 - 2019-01-01 07:14 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-01-09 19:22 - 2019-01-01 07:13 - 000594432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-01-09 19:22 - 2019-01-01 07:13 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-01-09 19:22 - 2019-01-01 07:12 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-01-09 19:22 - 2019-01-01 07:12 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2019-01-09 19:22 - 2019-01-01 07:12 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-01-09 19:22 - 2019-01-01 07:12 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2019-01-09 19:22 - 2019-01-01 06:23 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2019-01-09 19:22 - 2018-12-19 05:49 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-01-08 21:20 - 2019-01-08 21:42 - 000000000 ____D C:\Users\JIND\Downloads\Archicad 17 build 3013 X64
2019-01-08 21:20 - 2019-01-08 21:20 - 000012635 _____ C:\Users\JIND\Downloads\[CzT]Archicad_17_build_3013_x64_.torrent
2019-01-08 14:41 - 2019-01-08 14:41 - 004933120 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2019-01-08 14:07 - 2019-01-08 14:07 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-01-08 14:07 - 2019-01-08 14:07 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-01-08 14:07 - 2019-01-08 14:07 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-01-08 14:07 - 2019-01-08 14:07 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-01-08 07:28 - 2019-01-08 07:25 - 000320888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys
2019-01-08 07:28 - 2019-01-08 07:25 - 000220688 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-01-08 07:28 - 2019-01-08 07:25 - 000196264 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-01-08 07:28 - 2019-01-08 07:25 - 000058160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-01-08 07:28 - 2019-01-08 07:25 - 000037304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-01-05 21:16 - 2019-01-05 21:16 - 000112916 _____ C:\Users\JIND\Downloads\Izzy.Gets.the.Fuck.Across.Town.2017.LiMiTED.720p.BluRay.x264-CADAVER.srt
2019-01-05 20:38 - 2019-01-05 20:38 - 000000000 ____D C:\Users\JIND\Downloads\BlacKkKlansman.2018.720p.BluRay.H264.AAC-RARBG
2019-01-05 20:36 - 2019-01-05 21:21 - 000000000 ____D C:\Users\JIND\Downloads\Izzy.Gets.the.Fuck.Across.Town.2017.1080p.BluRay.H264.AAC-RARBG
2019-01-05 20:36 - 2019-01-05 21:18 - 000000000 ____D C:\Users\JIND\Downloads\The.Old.Man.and.the.Gun.2018.WEB-DL.x264-FGT
2019-01-05 20:35 - 2019-01-05 20:36 - 000000000 ____D C:\Users\JIND\Downloads\Izzy.Gets.the.Fuck.Across.Town.2017.720p.BluRay.H264.AAC-RARBG
2019-01-04 13:54 - 2019-01-04 13:54 - 000207259 _____ C:\Users\JIND\Downloads\Informace_k_dolozeni_realizace_NZU_2015_RD3_fin_28_2_2016 (2).pdf
2019-01-04 10:33 - 2019-01-04 10:33 - 001363688 _____ C:\Users\JIND\Desktop\083768_2018_Uhlířské Janovice_Stryk Lubomír_ ZS_RD.pdf
2019-01-04 10:31 - 2019-01-04 10:31 - 001839044 _____ C:\Users\JIND\Downloads\ZPF-Souhlas k trvalému odnětí půdy.zfo
2019-01-03 19:16 - 2019-01-03 19:16 - 002769437 _____ C:\Users\JIND\Downloads\lidova-architektura_nahled (2).pdf
2019-01-03 18:48 - 2019-01-03 18:48 - 000049410 _____ C:\Users\JIND\Downloads\IMG_8775.jpeg
2019-01-01 19:38 - 2019-01-13 09:43 - 000000000 ____D C:\Users\JIND\AppData\LocalLow\uTorrent
2019-01-01 19:02 - 2019-01-01 19:02 - 000000000 ____D C:\WINDOWS\Panther
2018-12-30 22:09 - 2018-12-30 22:11 - 191841369 _____ C:\Users\JIND\Downloads\Nirvana Demos January 23rd 1988.rar
2018-12-29 19:19 - 2019-01-03 18:18 - 000000000 ____D C:\Users\JIND\Downloads\Harry Potter
2018-12-29 18:36 - 2019-01-11 18:09 - 000000000 ____D C:\Users\JIND\Documents\The Witcher 3
2018-12-29 18:17 - 2018-12-29 18:17 - 000547314 _____ C:\Users\JIND\Downloads\[CzT]Harry_Potter_Komplet_2001_2011_CZ_SK_EN_1080pHD_ (1).torrent
2018-12-29 18:02 - 2018-12-29 18:02 - 000002218 _____ C:\Users\Public\Desktop\The Witcher 3 - Wild Hunt.lnk
2018-12-29 18:02 - 2018-12-29 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher 3 - Wild Hunt [GOG.com]
2018-12-29 16:53 - 2018-12-29 16:53 - 000547314 _____ C:\Users\JIND\Downloads\[CzT]Harry_Potter_Komplet_2001_2011_CZ_SK_EN_1080pHD_.torrent
2018-12-29 16:40 - 2018-12-29 16:40 - 000000000 ____D C:\Games
2018-12-29 13:08 - 2018-12-29 13:08 - 000170835 _____ C:\Users\JIND\Downloads\[CzT]Zaklinac_3_Divoky_hon_The_Witcher_3_Wild_Hunt_Game_of_the_Year_Edition_2016_CZ_ (2).torrent
2018-12-29 13:07 - 2018-12-29 13:07 - 000170835 _____ C:\Users\JIND\Downloads\[CzT]Zaklinac_3_Divoky_hon_The_Witcher_3_Wild_Hunt_Game_of_the_Year_Edition_2016_CZ_ (1).torrent
2018-12-29 12:48 - 2018-12-29 12:48 - 000170835 _____ C:\Users\JIND\Downloads\[CzT]Zaklinac_3_Divoky_hon_The_Witcher_3_Wild_Hunt_Game_of_the_Year_Edition_2016_CZ_.torrent
2018-12-28 09:33 - 2018-12-28 10:41 - 000000000 ____D C:\Users\JIND\Downloads\Dieae
2018-12-28 09:21 - 2018-12-28 09:21 - 000000000 ____D C:\Users\JIND\Downloads\9687658708789798679876798
2018-12-27 13:51 - 2018-12-27 13:51 - 002533886 _____ C:\Users\JIND\Documents\architektura-web.pdf
2018-12-27 13:48 - 2018-12-27 13:49 - 042570760 _____ C:\Users\JIND\Documents\KRNAP2010_Architektura_CZKomplet_www.pdf
2018-12-27 13:47 - 2018-12-27 13:47 - 008172306 _____ C:\Users\JIND\Documents\99kniha_ing._v.budil_1890_1979.pdf
2018-12-26 09:46 - 2018-12-26 09:46 - 057283100 _____ C:\Users\JIND\Downloads\DPTX_2009_2__0_286963_0_87071.pdf
2018-12-26 09:33 - 2018-12-26 09:33 - 002769437 _____ C:\Users\JIND\Downloads\lidova-architektura_nahled.pdf
2018-12-26 09:33 - 2018-12-26 09:33 - 002769437 _____ C:\Users\JIND\Downloads\lidova-architektura_nahled (1).pdf
2018-12-23 10:49 - 2018-12-23 10:49 - 001277728 _____ C:\WINDOWS\isRS-000.tmp
2018-12-23 10:49 - 2018-12-23 10:49 - 000001121 _____ C:\Users\Public\Desktop\WinSCP.lnk
2018-12-22 21:44 - 2018-12-22 21:44 - 000001096 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2018.lnk
2018-12-22 20:09 - 2018-12-23 10:51 - 000000000 ____D C:\Users\JIND\Desktop\Awesome-winter-scene-for-merry-christmas-festival
2018-12-21 13:46 - 2018-12-21 13:46 - 000001150 _____ C:\Users\Public\Desktop\VLC media player.lnk
2018-12-20 17:25 - 2018-12-20 17:25 - 000741099 _____ C:\Users\JIND\Downloads\2016110301_LV_Golgot_žehlící linka_V02 (1).pdf
2018-12-20 17:25 - 2018-12-14 07:55 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-12-20 17:25 - 2018-12-14 07:52 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2018-12-20 17:24 - 2018-12-14 08:29 - 001130760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-12-20 17:24 - 2018-12-14 08:25 - 001035256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-12-20 17:24 - 2018-12-14 08:21 - 001457240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-12-20 17:24 - 2018-12-14 08:21 - 001257672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-12-20 17:24 - 2018-12-14 08:21 - 001140480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-12-20 17:24 - 2018-12-14 08:21 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-12-20 17:24 - 2018-12-14 08:21 - 000982912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-12-20 17:24 - 2018-12-14 08:10 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2018-12-20 17:24 - 2018-12-14 08:07 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-12-20 17:24 - 2018-12-14 07:55 - 003396608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-12-20 17:24 - 2018-12-14 07:54 - 006032384 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2018-12-20 17:24 - 2018-12-14 07:54 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2018-12-20 17:24 - 2018-12-14 07:52 - 002173440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-12-20 17:24 - 2018-12-14 07:51 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-12-20 17:24 - 2018-12-14 07:50 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-12-17 23:10 - 2018-12-17 23:10 - 000020877 _____ C:\Users\JIND\Downloads\[CzT]Master_PDF_Editor_v_3_6_30_CZ_SK_.torrent
2018-12-17 23:06 - 2018-12-17 23:06 - 000014771 _____ C:\Users\JIND\Downloads\[CzT]Microsoft_Office_2016_v16_0_7571_2109_x86_x64_CZ_ (2).torrent
2018-12-17 23:05 - 2018-12-17 23:05 - 000038345 _____ C:\Users\JIND\Downloads\[CzT]ArchiCAD_15_CZ_build_3267_x86_x64_ (1).torrent
2018-12-14 16:04 - 2018-12-14 16:04 - 000720096 _____ C:\Users\JIND\Downloads\2187017997.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-13 10:28 - 2016-01-25 19:32 - 000000000 ____D C:\Users\JIND\AppData\Roaming\uTorrent
2019-01-13 10:27 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-01-13 10:16 - 2010-01-01 16:28 - 000000000 ____D C:\Users\JIND\AppData\Local\VirtualStore
2019-01-13 10:01 - 2016-01-25 18:04 - 000000000 ____D C:\ProgramData\NVIDIA
2019-01-13 10:01 - 2016-01-25 17:48 - 000000000 ____D C:\Users\JIND\AppData\Local\Adobe
2019-01-13 09:48 - 2016-03-06 08:15 - 000000000 ___RD C:\Users\JIND\Dropbox
2019-01-13 09:39 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-01-13 09:32 - 2018-06-19 07:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-01-13 09:32 - 2018-06-19 06:17 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-01-12 22:43 - 2016-01-30 18:33 - 000000000 ____D C:\Program Files (x86)\Java
2019-01-12 22:42 - 2016-01-30 21:54 - 000098680 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2019-01-12 22:34 - 2018-06-19 06:26 - 001776052 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-01-12 22:34 - 2018-04-12 16:51 - 000743670 _____ C:\WINDOWS\system32\perfh005.dat
2019-01-12 22:34 - 2018-04-12 16:51 - 000159376 _____ C:\WINDOWS\system32\perfc005.dat
2019-01-12 22:34 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2019-01-12 22:31 - 2018-07-30 20:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-01-12 22:31 - 2016-01-25 17:22 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-01-12 22:30 - 2016-01-25 17:22 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-01-12 22:27 - 2016-01-25 17:41 - 000000000 ____D C:\Users\JIND\AppData\Local\NVIDIA
2019-01-12 22:27 - 2016-01-25 17:19 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-01-12 12:17 - 2016-01-30 19:23 - 000000000 ____D C:\Users\JIND\Graphisoft
2019-01-12 11:45 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-01-12 11:08 - 2016-01-25 18:36 - 000000904 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2019-01-12 11:08 - 2016-01-25 18:36 - 000000900 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2019-01-11 22:03 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-01-11 19:01 - 2018-06-19 07:02 - 000002182 _____ C:\WINDOWS\System32\Tasks\{DA473040-2C25-4D06-AA0D-E2336E701AE1}
2019-01-11 19:01 - 2018-06-19 07:02 - 000002178 _____ C:\WINDOWS\System32\Tasks\{A10801F5-4F4C-4539-B077-5BD883EC7563}
2019-01-11 19:01 - 2018-06-19 07:02 - 000002036 _____ C:\WINDOWS\System32\Tasks\{9A98FFBE-A0F8-4E12-A7FD-1D7CFE7F2F13}
2019-01-11 19:01 - 2018-06-19 07:02 - 000002036 _____ C:\WINDOWS\System32\Tasks\{6D4783F6-B3C0-4CAD-801F-DA3F33C1C093}
2019-01-11 19:00 - 2018-07-30 20:47 - 000003152 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:47 - 000002914 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:46 - 000003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:46 - 000003196 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:46 - 000003016 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:46 - 000003016 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:46 - 000003016 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:46 - 000002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:46 - 000002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:46 - 000002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:46 - 000002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-06-19 07:02 - 000003730 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2019-01-11 19:00 - 2018-06-19 07:02 - 000003690 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-01-11 19:00 - 2018-06-19 07:02 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-01-11 19:00 - 2018-06-19 07:02 - 000003418 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2019-01-11 19:00 - 2018-06-19 07:02 - 000003406 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-01-11 19:00 - 2018-06-19 07:02 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-01-11 19:00 - 2018-06-19 07:02 - 000003322 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1467220350
2019-01-11 19:00 - 2018-06-19 07:02 - 000003302 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1453738242
2019-01-11 19:00 - 2018-06-19 07:02 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-01-11 19:00 - 2018-06-19 07:02 - 000002852 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3464826740-215856079-800623610-1001
2019-01-11 19:00 - 2018-06-19 07:02 - 000002798 _____ C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-JIND-PC-JIND
2019-01-11 19:00 - 2018-06-19 07:02 - 000002762 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-JIND-PC-JIND
2019-01-11 19:00 - 2018-06-19 07:02 - 000002530 _____ C:\WINDOWS\System32\Tasks\AutoPico Daily Restart
2019-01-11 19:00 - 2018-06-19 07:02 - 000002046 _____ C:\WINDOWS\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance
2019-01-11 19:00 - 2018-06-19 07:02 - 000002008 _____ C:\WINDOWS\System32\Tasks\FreeDownloadManagerNetworkMonitor
2019-01-11 18:13 - 2018-06-19 07:02 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2019-01-11 18:09 - 2016-01-25 20:16 - 000000000 ____D C:\Users\JIND\AppData\Local\CrashDumps
2019-01-10 18:30 - 2016-01-25 17:09 - 000000000 ____D C:\Program Files (x86)\Opera
2019-01-10 18:14 - 2016-01-30 16:08 - 000000000 ____D C:\Users\JIND\Documents\Soubory aplikace Outlook
2019-01-10 11:31 - 2017-09-26 20:06 - 000000321 _____ C:\Users\JIND\Documents\BIMx_Export_Log.txt
2019-01-10 11:31 - 2016-04-13 21:19 - 000000000 ____D C:\Users\JIND\Documents\BIMx
2019-01-10 11:30 - 2016-01-30 19:23 - 000000000 ____D C:\Users\JIND\AppData\Roaming\Graphisoft
2019-01-10 11:30 - 2016-01-30 19:23 - 000000000 ____D C:\Users\JIND\AppData\Local\Graphisoft
2019-01-10 11:25 - 2016-01-30 18:42 - 000056089 _____ C:\WINDOWS\vpd.properties
2019-01-10 11:23 - 2016-01-30 18:34 - 000000000 ____D C:\Users\JIND\AppData\Roaming\Install.GS
2019-01-10 11:15 - 2016-01-30 18:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Graphisoft
2019-01-10 11:11 - 2016-01-30 18:34 - 000000000 ____D C:\Program Files\Graphisoft
2019-01-10 07:32 - 2018-01-01 20:02 - 000002175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2019-01-10 07:31 - 2018-06-19 07:02 - 000004006 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-01-10 07:29 - 2018-04-12 00:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-01-09 22:40 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-01-09 22:37 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-01-09 22:37 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-01-09 21:14 - 2018-01-02 05:07 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-01-09 21:12 - 2016-01-25 18:36 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-01-09 20:30 - 2018-01-02 05:05 - 132790320 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-01-09 20:28 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-01-09 19:50 - 2009-07-14 03:34 - 000000478 _____ C:\WINDOWS\win.ini
2019-01-09 19:07 - 2018-06-12 17:28 - 000000000 ____D C:\Users\JIND\AppData\Roaming\Easy Watermark Studio Lite
2019-01-09 18:02 - 2018-06-07 22:12 - 000000000 ____D C:\Users\JIND\AppData\Local\AVAST Software
2019-01-08 14:42 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-01-08 14:42 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-01-08 07:26 - 2018-11-02 22:14 - 000042488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-01-08 07:26 - 2018-06-24 14:34 - 000015488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2019-01-08 07:26 - 2018-01-02 08:39 - 000474648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-01-08 07:26 - 2018-01-02 08:39 - 000380144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-01-08 07:26 - 2018-01-02 08:39 - 000218056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-01-08 07:26 - 2018-01-02 08:39 - 000203488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-01-08 07:26 - 2018-01-02 08:39 - 000166472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-01-08 07:26 - 2018-01-02 08:39 - 000111992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-01-08 07:26 - 2018-01-02 08:39 - 000088144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-01-08 07:26 - 2018-01-02 08:39 - 000046584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2019-01-08 07:25 - 2018-01-02 08:39 - 001034056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-01-05 19:11 - 2016-02-05 15:57 - 000000000 ____D C:\Users\JIND\AppData\Roaming\vlc
2019-01-04 01:20 - 2018-06-07 22:17 - 000002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2019-01-03 14:04 - 2016-01-25 17:50 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-01-02 23:19 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-01-02 23:03 - 2018-03-18 15:57 - 000000600 _____ C:\Users\JIND\AppData\Local\PUTTY.RND
2019-01-02 20:41 - 2018-11-15 18:58 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-01-02 20:41 - 2018-11-15 18:58 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-01-01 23:31 - 2018-06-19 06:31 - 000000000 ____D C:\Users\JIND
2019-01-01 20:20 - 2018-04-23 15:52 - 000000000 ____D C:\Users\JIND\Desktop\Byznys Antiq
2019-01-01 11:36 - 2018-01-02 10:11 - 000000000 ____D C:\Users\JIND\AppData\Local\Packages
2018-12-30 08:53 - 2018-08-23 21:16 - 000000000 ____D C:\Users\JIND\AppData\Local\D3DSCache
2018-12-29 18:38 - 2017-06-13 16:16 - 000000000 ____D C:\Users\JIND\ansel
2018-12-29 16:31 - 2016-03-04 17:10 - 000000000 ____D C:\Users\JIND\Desktop\Záloha E
2018-12-29 14:01 - 2018-01-02 22:02 - 000000000 ____D C:\Users\JIND\Heaven
2018-12-29 13:45 - 2016-01-25 17:50 - 000000000 ____D C:\ProgramData\Adobe
2018-12-29 13:19 - 2016-01-30 18:30 - 000000000 ____D C:\Program Files\Common Files\Adobe
2018-12-29 13:01 - 2016-01-30 18:31 - 000000000 ____D C:\Program Files\Adobe
2018-12-28 10:37 - 2016-03-20 16:56 - 000000000 ____D C:\Users\JIND\AppData\Local\JDownloader v2.0
2018-12-27 22:27 - 2016-01-25 17:22 - 000000000 ____D C:\Users\JIND\AppData\Local\ElevatedDiagnostics
2018-12-26 16:13 - 2016-04-10 17:00 - 000000000 ____D C:\Users\JIND\AppData\Local\cache
2018-12-26 10:09 - 2016-01-30 15:40 - 000000600 _____ C:\Users\JIND\AppData\Roaming\winscp.rnd
2018-12-25 12:35 - 2018-06-19 06:31 - 000002433 _____ C:\Users\JIND\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-12-25 12:35 - 2016-03-06 15:47 - 000000000 ___RD C:\Users\JIND\OneDrive
2018-12-23 16:26 - 2016-01-30 15:24 - 000000000 ____D C:\Program Files (x86)\WinSCP
2018-12-23 10:49 - 2016-01-30 15:24 - 000001133 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP.lnk
2018-12-23 09:57 - 2016-05-22 06:55 - 000000000 ____D C:\Users\JIND\Desktop\F
2018-12-23 09:40 - 2018-11-16 20:49 - 000000000 ____D C:\Program Files\rempl
2018-12-22 21:45 - 2016-01-26 15:49 - 000000000 ____D C:\Users\JIND\AppData\Roaming\Adobe
2018-12-22 21:44 - 2016-01-30 18:46 - 000000000 ____D C:\Users\JIND\Documents\Adobe
2018-12-22 21:36 - 2016-01-25 17:50 - 000000000 ____D C:\Program Files (x86)\Adobe
2018-12-21 13:42 - 2016-02-09 16:08 - 000000000 ____D C:\Users\JIND\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-12-21 13:42 - 2016-02-09 16:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-12-21 13:42 - 2016-02-09 16:08 - 000000000 ____D C:\Program Files\WinRAR
2018-12-21 13:40 - 2016-08-10 19:18 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-12-17 07:12 - 2018-03-23 09:00 - 004999920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2018-12-17 04:33 - 2018-03-23 09:01 - 001682896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2018-12-17 04:33 - 2018-03-23 09:01 - 000227896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2018-12-14 16:08 - 2016-01-25 17:30 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

==================== Files in the root of some directories =======

2016-04-21 18:46 - 2016-04-21 19:01 - 000007842 _____ () C:\Program Files\log.txt
2016-11-27 20:50 - 2016-11-27 20:50 - 000000030 _____ () C:\Users\JIND\AppData\Roaming\.pgbiasfx
2017-03-11 22:12 - 2017-12-20 17:50 - 000000034 _____ () C:\Users\JIND\AppData\Roaming\AdobeWLCMCache.dat
2016-04-20 19:42 - 2017-12-23 19:20 - 000000454 _____ () C:\Users\JIND\AppData\Roaming\burnaware.ini
2016-01-30 15:40 - 2018-12-26 10:09 - 000000600 _____ () C:\Users\JIND\AppData\Roaming\winscp.rnd
2017-06-18 16:31 - 2018-08-23 21:18 - 000001480 _____ () C:\Users\JIND\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2017-10-28 14:06 - 2017-10-28 14:06 - 000000000 ____H () C:\Users\JIND\AppData\Local\BIT6ED8.tmp
2016-01-30 18:33 - 2017-02-19 12:09 - 000007168 _____ () C:\Users\JIND\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-01-02 22:01 - 2018-01-03 22:37 - 000728064 _____ () C:\Users\JIND\AppData\Local\file__0.localstorage
2018-09-30 18:00 - 2018-09-30 18:00 - 000000000 _____ () C:\Users\JIND\AppData\Local\oobelibMkey.log
2018-03-18 15:57 - 2019-01-02 23:03 - 000000600 _____ () C:\Users\JIND\AppData\Local\PUTTY.RND
2017-07-08 14:49 - 2017-07-08 14:49 - 000000017 _____ () C:\Users\JIND\AppData\Local\resmon.resmoncfg
2017-10-28 14:04 - 2017-10-28 14:04 - 000000000 _____ () C:\Users\JIND\AppData\Local\{A23D1975-315E-4C1A-9632-447CDBC2FA57}

Some files in TEMP:
====================
2019-01-10 11:26 - 2019-01-10 11:26 - 000037376 _____ () C:\Users\JIND\AppData\Local\Temp\bassmod.dll
2019-01-12 22:34 - 2019-01-12 22:34 - 001892728 _____ (Oracle Corporation) C:\Users\JIND\AppData\Local\Temp\jre-8u191-windows-au.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-06-19 06:17

==================== End of FRST.txt ============================
Přílohy
Addition.zip
(28.9 KiB) Staženo 50 x

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: HDD využití 100% po startu

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

alesco3
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 13 led 2019 10:27

Re: HDD využití 100% po startu

#3 Příspěvek od alesco3 »

Děkuji a zasílám:

Kód: Vybrat vše

# -------------------------------
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build:    12-18-2018
# Database: 2019-01-10.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    01-13-2019
# Duration: 00:01:16
# OS:       Windows 10 Pro
# Cleaned:  33
# Failed:   1


***** [ Services ] *****

Deleted       hola_updater
Deleted       hola_svc

***** [ Folders ] *****

Deleted       C:\_acestream_cache_
Deleted       C:\Users\JIND\AppData\LocalLow\.acestream
Deleted       C:\Users\JIND\AppData\Roaming\.acestream
Deleted       C:\Users\JIND\AppData\Roaming\acestream
Not Deleted   C:\Program Files\Hola
Deleted       C:\Users\JIND\AppData\Roaming\Hola
Deleted       C:\Users\JIND\Start Menu\Programs\SpyHunter
Deleted       C:\Users\JIND\AppData\Roaming\Enigma Software Group

***** [ Files ] *****

Deleted       C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hola.lnk

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted       C:\Windows\System32\Tasks\FreeDownloadManagerNetworkMonitor

***** [ Registry ] *****

Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\FreeDownloadManagerNetworkMonitor
Deleted       HKCU\Software\Classes\acestream
Deleted       HKCU\Software\RegisteredApplications|AceStream
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|hola
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Run|hola
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Hola
Deleted       HKU\S-1-5-18\Software\Hola
Deleted       HKCU\Software\Hola
Deleted       HKU\.DEFAULT\Software\Hola
Deleted       HKLM\Software\Hola
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\hola.org
Deleted       HKLM\Software\Classes\Interface\{C97AF157-6A27-4F57-9D47-E2D3E4761B77}
Deleted       HKLM\Software\Classes\Interface\{A4F6E1B3-469E-46EF-A936-FBA9D5EFD2B9}
Deleted       HKLM\Software\Classes\Interface\{5180FE16-2E09-497B-9C8B-5A6F029ECECB}
Deleted       HKLM\Software\Classes\Interface\{46803190-228D-470E-90FE-F5E0CEA9C4F2}
Deleted       HKLM\Software\Classes\Interface\{2C4B6DB8-6413-403B-A038-16A352CFE8B9}
Deleted       HKLM\Software\Classes\Interface\{23C5311E-016D-4999-BCB1-499898429D6C}
Deleted       HKLM\Software\Classes\Interface\{22511E2E-7970-414E-BC7C-28D16C4AF54D}
Deleted       HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{697D8352-4E55-41C2-89BF-57D1F1FE950F}C:\users\jind\appdata\roaming\acestream\engine\ace_engine.exe
Deleted       HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{B6257D5F-1F83-4DD8-A053-8B2FA4115C19}C:\users\jind\appdata\roaming\acestream\engine\ace_engine.exe
Deleted       HKLM\Software\Wow6432Node\EnigmaSoftwareGroup
Deleted       HKLM\Software\EnigmaSoftwareGroup

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [4219 octets] - [13/01/2019 11:43:02]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Rudy píše:Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: HDD využití 100% po startu

#4 Příspěvek od Rudy »

OK. Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

alesco3
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 13 led 2019 10:27

Re: HDD využití 100% po startu

#5 Příspěvek od alesco3 »

Děkuji, přikládám.

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12.01.2019
Ran by JIND (administrator) on JIND-PC (13-01-2019 13:20:59)
Running from C:\Users\JIND\Desktop
Loaded Profiles: JIND (Available Profiles: JIND)
Platform: Windows 10 Pro Version 1803 17134.523 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast antivir\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Software602 a.s.) C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
() C:\Windows\SysWOW64\dxconfig.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
() C:\Program Files (x86)\ExpressVPN\bootstrap\AMD64\nssm.exe
() C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe
(Nitro PDF Software) C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
() C:\Program Files (x86)\ExpressVPN\xvpnd\xvpnd.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast antivir\aswidsagent.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.141.333\AvastBrowserCrashHandler.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.141.333\AvastBrowserCrashHandler64.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
() C:\Windows\SysWOW64\dxconfig.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast antivir\AvastUI.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(The Qt Company Ltd) C:\Program Files (x86)\Dropbox\Client\QtWebEngineProcess.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18112.17430.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [Greenshot] => C:\Program Files\Greenshot\Greenshot.exe [528384 2015-11-10] (Greenshot)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast antivir\AvLaunch.exe [261512 2019-01-08] (AVAST Software)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [4050752 2019-01-08] (Dropbox, Inc.)
HKLM-x32\...\Run: [Cobian Backup 11] => C:\Program Files (x86)\Cobian Backup 11\Cobian.exe [720896 2013-03-07] (Luis Cobian, CobianSoft)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast antivir\AvLaunch.exe [261512 2019-01-08] (AVAST Software)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\Run: [uTorrent] => C:\Users\JIND\AppData\Roaming\uTorrent\uTorrent.exe [1739960 2018-12-22] (BitTorrent Inc.)
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\Policies\Explorer: [] 
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {2970c98e-ca90-11e7-8cc1-6cf049ed4eb3} - "E:\iLinker.exe" 
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {719e0e0a-c59e-11e5-abc5-6cf049ed4eb3} - "F:\OInstall.exe" 
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {9895d45f-4eee-11e8-93fa-6cf049ed4eb3} - "E:\Lenovo_Suite.exe" 
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {c809778d-c765-11e5-a6fb-6cf049ed4eb3} - "E:\AUTORUN.EXE" 
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\system32\bdmjpeg64.dll [75248 2017-01-26] ()
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\system32\bdmpegv64.dll [75272 2017-01-26] ()
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\system32\bdmpega64.acm [75784 2017-01-26] ()
HKLM\...\Drivers32-x32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [71152 2017-01-26] ()
HKLM\...\Drivers32-x32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [71176 2017-01-26] ()
HKLM\...\Drivers32-x32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [71176 2017-01-26] ()
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-14] (Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\70.1.973.110\Installer\chrmstp.exe [2019-01-04] (AVAST Software)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> 
ShellServiceObjects: No Name -> {59EFE487-E5B8-4fae-9D2C-FCDF0B70CE70} => 
ShellServiceObjects-x32: No Name -> {59EFE487-E5B8-4fae-9D2C-FCDF0B70CE70} => 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2018-01-09]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG)
GroupPolicy: Restriction ? <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 188.75.128.188 8.8.8.8
Tcpip\..\Interfaces\{05188d9b-d43a-4d38-ac6d-81dad962ff0a}: [DhcpNameServer] 10.143.0.1
Tcpip\..\Interfaces\{1e6490e0-e577-43a6-8f4a-2f29c1261ec9}: [DhcpNameServer] 188.75.128.188 8.8.8.8
Tcpip\..\Interfaces\{67e3c444-c9e4-403d-b164-71e36589adcb}: [DhcpNameServer] 188.75.128.188 8.8.8.8
Tcpip\..\Interfaces\{af304b00-e2ed-4e53-bc80-9d5a827d4ea3}: [DhcpNameServer] 10.0.150.150 188.75.128.188 192.168.1.1
Tcpip\..\Interfaces\{b88196e3-148f-453e-a90a-4b8cb9010c97}: [DhcpNameServer] 10.0.150.150 188.75.128.188 192.168.1.1
Tcpip\..\Interfaces\{e18e4721-1e3d-4663-943f-1b764b120d6a}: [DhcpNameServer] 10.0.150.150 188.75.128.188 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-3464826740-215856079-800623610-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2018-12-22] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation)
BHO-x32: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2018-12-22] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2019-01-12] (Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2019-01-12] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-3464826740-215856079-800623610-1001 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2018-02-14] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2018-04-10] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2018-02-14] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2018-04-10] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: i0l1wmww.default
FF ProfilePath: C:\Users\JIND\AppData\Roaming\Mozilla\Firefox\Profiles\i0l1wmww.default [2019-01-08]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\JIND\AppData\Roaming\Mozilla\Firefox\Profiles\i0l1wmww.default\Extensions\sp@avast.com.xpi [2019-01-13]
FF Extension: (Avast Online Security) - C:\Users\JIND\AppData\Roaming\Mozilla\Firefox\Profiles\i0l1wmww.default\Extensions\wrc@avast.com.xpi [2018-06-24]
FF HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\JIND\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems)
FF Plugin-x32: @graphisoft.com/GDL Web Plug-in -> C:\Program Files (x86)\GRAPHISOFT\GDLWebControl\npGDLMozilla.dll [2012-09-04] ()
FF Plugin-x32: @java.com/DTPlugin,version=10.21.2 -> C:\WINDOWS\SysWOW64\npDeployJava1.dll [2019-01-10] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2019-01-12] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-04-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-12-11] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-12-11] (NVIDIA Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems)

Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default [2018-11-21]
CHR Extension: (Prezentace) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-26]
CHR Extension: (Dokumenty) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-26]
CHR Extension: (Disk Google) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-25]
CHR Extension: (YouTube) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-25]
CHR Extension: (Adblock Plus) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-10-26]
CHR Extension: (Vyhledávání Google) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-25]
CHR Extension: (Tabulky) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-21]
CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2018-07-20]
CHR Extension: (Avast Online Security) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-10-26]
CHR Extension: (Ace Script) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2017-09-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-09]
CHR Extension: (Gmail) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-25]
CHR Extension: (Chrome Media Router) - C:\Users\JIND\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-26]
CHR HKU\S-1-5-21-3464826740-215856079-800623610-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast antivir\WebRep\Chrome\aswWebRepChrome.crx <not found>

Opera: 
=======
OPR Extension: (AdBlock) - C:\Users\JIND\AppData\Roaming\Opera Software\Opera Stable\Extensions\aobdicepooefnbaeokijohmhjlleamfj [2016-05-28]
OPR Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\JIND\AppData\Roaming\Opera Software\Opera Stable\Extensions\bbkekonodcdmedgffkkbgmnnekbainbg [2018-12-05]
OPR Extension: (Unlimited Free VPN - Hola) - C:\Users\JIND\AppData\Roaming\Opera Software\Opera Stable\Extensions\ekmmelpnmfdegjhnmadddcfjcahpajnm [2018-08-07]
OPR Extension: (MyJDownloader Browser Extension) - C:\Users\JIND\AppData\Roaming\Opera Software\Opera Stable\Extensions\fbclnkmbcmdfamfeaagadifibbongnmf [2018-12-28]
OPR Extension: (CyberGhost VPN - Free Proxy) - C:\Users\JIND\AppData\Roaming\Opera Software\Opera Stable\Extensions\mapjiibffmopkdcncmaifgdjjiooifnn [2016-06-04]
StartMenuInternet: (HKLM) Operadeveloper - C:\Program Files (x86)\Opera developer\Launcher.exe

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1353208 2017-06-15] (Autodesk Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast antivir\aswidsagent.exe [7834368 2019-01-08] (AVAST Software)
S2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [19232 2012-01-31] (Autodesk, Inc.)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-06-07] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast antivir\AvastSvc.exe [357816 2019-01-08] (AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-06-07] (AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast antivir\wsc_proxy.exe [57504 2019-01-08] (AVAST Software)
S2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [339240 2018-03-19] (Avira Operations GmbH & Co. KG)
S2 cbVSCService11; C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe [67584 2013-03-07] (CobianSoft, Luis Cobian) [File not signed]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-25] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-25] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-01-08] (Dropbox, Inc.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1369464 2016-01-15] (Disc Soft Ltd)
S2 DiskMonitor; C:\Program Files (x86)\DiskMonitor\diskmntr.exe [22488 2008-02-03] (Corner Bowl Software Corporation) [File not signed]
R2 ExpressVpnService; C:\Program Files (x86)\ExpressVPN\bootstrap\AMD64\nssm.exe [339168 2018-02-07] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
R2 Microsoft DirectX Configuration Service; C:\Windows\SysWOW64\dxconfig.exe [64512 2017-04-17] () [File not signed]
R2 NitroDriverReadSpool10; C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe [324760 2015-05-06] (Nitro PDF Software)
R2 NitroUpdateService; C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe [418968 2015-05-06] ()
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [38200 2016-01-04] (The OpenVPN Project)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-07-15] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2018-12-11] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2018-12-11] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37304 2019-01-08] (AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [203488 2019-01-08] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [220688 2019-01-08] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196264 2019-01-08] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320888 2019-01-08] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [58160 2019-01-08] (AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-01-08] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46584 2019-01-08] (AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42488 2019-01-08] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [166472 2019-01-08] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111992 2019-01-08] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88144 2019-01-08] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1034056 2019-01-08] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [474648 2019-01-08] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [218056 2019-01-08] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [380144 2019-01-08] (AVAST Software)
S3 DSoftAPRtlWlanu; C:\WINDOWS\System32\drivers\DSoftAPrtwlanu.sys [5608960 2016-11-11] (Realtek Semiconductor Corporation )
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-01-30] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-01-30] (Disc Soft Ltd)
S3 expressvpnsplittunnel; C:\Program Files (x86)\ExpressVpn SplitTunnel Driver\driver\expressvpnsplittunnel.sys [28160 2018-02-07] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e7b3660b4830c245\nvlddmkm.sys [20424640 2018-12-17] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30656 2018-07-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69544 2018-06-08] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [74576 2018-10-01] (NVIDIA Corporation)
S3 Ph3xIB64; C:\WINDOWS\system32\DRIVERS\Ph3xIB64.sys [1627520 2011-05-31] (NXP Semiconductors)
S3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [45056 2017-09-27] (The OpenVPN Project)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
R3 ROCKEYNT; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [36904 2016-02-06] (Feitian Technologies Co., Ltd.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-12] (Realtek )
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] ()
S3 tapexpressvpn; C:\WINDOWS\System32\drivers\tapexpressvpn.sys [45024 2018-02-07] (The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46680 2018-12-11] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [330936 2018-12-11] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2018-12-11] (Microsoft Corporation)
R2 WIBUKEY; C:\WINDOWS\System32\DRIVERS\WibuKey64.sys [106760 2013-12-18] (WIBU-SYSTEMS AG)
U3 aspnet_state; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-13 13:20 - 2019-01-13 13:25 - 000026821 _____ C:\Users\JIND\Desktop\FRST.txt
2019-01-13 11:37 - 2019-01-13 11:56 - 000000000 ____D C:\AdwCleaner
2019-01-13 11:35 - 2019-01-13 11:35 - 007320272 _____ (Malwarebytes) C:\Users\JIND\Desktop\adwcleaner_7.2.6.0.exe
2019-01-13 10:36 - 2019-01-13 10:37 - 000029593 _____ C:\Users\JIND\Desktop\Addition.zip
2019-01-13 10:23 - 2019-01-13 13:20 - 000000000 ____D C:\FRST
2019-01-13 10:23 - 2019-01-13 10:23 - 002427392 _____ (Farbar) C:\Users\JIND\Desktop\FRST64.exe
2019-01-13 10:15 - 2019-01-13 10:16 - 004509412 _____ C:\Users\JIND\Downloads\CrystalDiskInfo8_0_0.zip
2019-01-13 10:15 - 2019-01-13 10:15 - 002833672 _____ (Crystal Dew World ) C:\Users\JIND\Desktop\CrystalDiskMark5_5_0.exe
2019-01-13 10:14 - 2019-01-13 10:14 - 000388608 _____ (Trend Micro Inc.) C:\Users\JIND\Desktop\hijackthis.exe
2019-01-12 22:43 - 2019-01-10 11:03 - 000866720 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\npDeployJava1.dll
2019-01-12 22:43 - 2019-01-10 11:03 - 000788896 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\deployJava1.dll
2019-01-12 22:42 - 2019-01-12 22:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-01-12 22:30 - 2018-12-11 08:32 - 000133616 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2019-01-12 22:20 - 2018-12-17 07:18 - 000978128 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2019-01-12 22:20 - 2018-12-17 07:18 - 000978128 _____ C:\WINDOWS\system32\vulkan-1.dll
2019-01-12 22:20 - 2018-12-17 07:18 - 000845008 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2019-01-12 22:20 - 2018-12-17 07:18 - 000845008 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2019-01-12 22:20 - 2018-12-17 07:18 - 000552032 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2019-01-12 22:20 - 2018-12-17 07:18 - 000456800 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2019-01-12 22:20 - 2018-12-17 07:18 - 000267984 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2019-01-12 22:20 - 2018-12-17 07:18 - 000267984 _____ C:\WINDOWS\system32\vulkaninfo.exe
2019-01-12 22:20 - 2018-12-17 07:18 - 000243408 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-01-12 22:20 - 2018-12-17 07:18 - 000243408 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2019-01-12 22:20 - 2018-12-17 07:13 - 013204120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2019-01-12 22:20 - 2018-12-17 04:33 - 000047384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2019-01-12 22:19 - 2018-12-17 07:16 - 002003600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2019-01-12 22:19 - 2018-12-17 07:16 - 001512080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2019-01-12 22:19 - 2018-12-17 07:16 - 001461024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2019-01-12 22:19 - 2018-12-17 07:16 - 001126144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2019-01-12 22:19 - 2018-12-17 07:16 - 000631232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2019-01-12 22:19 - 2018-12-17 07:16 - 000521472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2019-01-12 22:19 - 2018-12-17 07:15 - 040261192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2019-01-12 22:19 - 2018-12-17 07:15 - 035157064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2019-01-12 22:19 - 2018-12-17 07:15 - 004946336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2019-01-12 22:19 - 2018-12-17 07:15 - 004316760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2019-01-12 22:19 - 2018-12-17 07:15 - 002017752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6441735.dll
2019-01-12 22:19 - 2018-12-17 07:15 - 001468504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6441735.dll
2019-01-12 22:19 - 2018-12-17 07:15 - 000750488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2019-01-12 22:19 - 2018-12-17 07:15 - 000609368 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2019-01-12 22:19 - 2018-12-17 07:13 - 015909552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2019-01-12 22:19 - 2018-12-17 07:13 - 001462024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2019-01-12 22:19 - 2018-12-17 07:13 - 001167400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2019-01-12 22:19 - 2018-12-17 07:13 - 001145536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2019-01-12 22:19 - 2018-12-17 07:13 - 000914400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2019-01-12 22:19 - 2018-12-17 07:13 - 000794632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2019-01-12 22:19 - 2018-12-17 07:13 - 000637480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2019-01-12 22:19 - 2018-12-17 07:12 - 019714256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2019-01-12 22:19 - 2018-12-17 07:12 - 016990072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2019-01-12 22:19 - 2018-12-17 07:12 - 004258800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2019-01-12 22:19 - 2018-12-11 12:00 - 000048148 _____ C:\WINDOWS\system32\nvinfo.pb
2019-01-12 21:03 - 2019-01-12 21:03 - 020161037 _____ C:\Users\JIND\Downloads\mb_manual_ga-890gpa-ud3h_v2.1_e.pdf
2019-01-12 20:43 - 2019-01-12 20:43 - 000019355 _____ C:\Users\JIND\Downloads\[CzT]Vymereny_cas_In_Time_2011_.torrent
2019-01-12 12:34 - 2019-01-12 12:34 - 000000000 ____D C:\Users\JIND\Downloads\hwi_600
2019-01-12 12:33 - 2019-01-12 12:33 - 008199671 _____ C:\Users\JIND\Downloads\hwi_600.zip
2019-01-12 12:25 - 2019-01-12 12:24 - 005112480 _____ (Husdawg, LLC) C:\Users\JIND\Desktop\Detection.exe
2019-01-11 17:11 - 2019-01-11 17:11 - 019011945 _____ C:\Users\JIND\Downloads\Gmail (4).zip
2019-01-10 11:05 - 2019-01-12 22:42 - 000300408 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2019-01-10 07:32 - 2019-01-10 07:32 - 000002163 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2019-01-10 07:29 - 2019-01-08 07:26 - 000361352 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-01-09 21:07 - 2019-01-09 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-01-09 19:23 - 2019-01-01 14:46 - 012710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-01-09 19:23 - 2019-01-01 14:20 - 011902976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-01-09 19:23 - 2019-01-01 08:14 - 001029944 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-01-09 19:23 - 2019-01-01 08:14 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-01-09 19:23 - 2019-01-01 08:13 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-01-09 19:23 - 2019-01-01 08:13 - 000709728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-01-09 19:23 - 2019-01-01 08:13 - 000170808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-01-09 19:23 - 2019-01-01 08:12 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-01-09 19:23 - 2019-01-01 08:12 - 002765344 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-01-09 19:23 - 2019-01-01 08:12 - 000128824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-01-09 19:23 - 2019-01-01 07:47 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-01-09 19:23 - 2019-01-01 07:45 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-01-09 19:23 - 2019-01-01 07:43 - 001805312 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-01-09 19:23 - 2019-01-01 07:41 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-01-09 19:23 - 2019-01-01 07:37 - 002478664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-01-09 19:23 - 2019-01-01 07:37 - 002253696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-01-09 19:23 - 2019-01-01 07:37 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-01-09 19:23 - 2019-01-01 07:16 - 005775872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-01-09 19:23 - 2019-01-01 07:15 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-01-09 19:23 - 2019-01-01 07:14 - 004514816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-01-09 19:23 - 2019-01-01 07:13 - 001628160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-01-09 19:22 - 2019-01-01 14:50 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-01-09 19:22 - 2019-01-01 14:47 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowslivelogin.dll
2019-01-09 19:22 - 2019-01-01 14:45 - 000714752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2019-01-09 19:22 - 2019-01-01 14:45 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2019-01-09 19:22 - 2019-01-01 14:43 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-01-09 19:22 - 2019-01-01 14:20 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowslivelogin.dll
2019-01-09 19:22 - 2019-01-01 14:18 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2019-01-09 19:22 - 2019-01-01 14:17 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2019-01-09 19:22 - 2019-01-01 08:14 - 001221432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-01-09 19:22 - 2019-01-01 08:14 - 001063224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-01-09 19:22 - 2019-01-01 08:14 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-01-09 19:22 - 2019-01-01 08:14 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-01-09 19:22 - 2019-01-01 08:13 - 003292152 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-01-09 19:22 - 2019-01-01 08:13 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-01-09 19:22 - 2019-01-01 08:12 - 007520104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-01-09 19:22 - 2019-01-01 08:12 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-01-09 19:22 - 2019-01-01 08:12 - 002421288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-01-09 19:22 - 2019-01-01 08:12 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-01-09 19:22 - 2019-01-01 08:12 - 000268304 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-01-09 19:22 - 2019-01-01 08:12 - 000043536 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-01-09 19:22 - 2019-01-01 07:55 - 025856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-01-09 19:22 - 2019-01-01 07:50 - 022715392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-01-09 19:22 - 2019-01-01 07:50 - 004383744 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-01-09 19:22 - 2019-01-01 07:48 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-01-09 19:22 - 2019-01-01 07:48 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-01-09 19:22 - 2019-01-01 07:48 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2019-01-09 19:22 - 2019-01-01 07:47 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-01-09 19:22 - 2019-01-01 07:46 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-01-09 19:22 - 2019-01-01 07:46 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-01-09 19:22 - 2019-01-01 07:46 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-01-09 19:22 - 2019-01-01 07:45 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-01-09 19:22 - 2019-01-01 07:45 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-01-09 19:22 - 2019-01-01 07:44 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2019-01-09 19:22 - 2019-01-01 07:44 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-01-09 19:22 - 2019-01-01 07:44 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-01-09 19:22 - 2019-01-01 07:44 - 000662528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2019-01-09 19:22 - 2019-01-01 07:44 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-01-09 19:22 - 2019-01-01 07:42 - 004939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-01-09 19:22 - 2019-01-01 07:42 - 002247680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2019-01-09 19:22 - 2019-01-01 07:42 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-01-09 19:22 - 2019-01-01 07:42 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-01-09 19:22 - 2019-01-01 07:41 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-01-09 19:22 - 2019-01-01 07:41 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2019-01-09 19:22 - 2019-01-01 07:41 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-01-09 19:22 - 2019-01-01 07:37 - 006571584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-01-09 19:22 - 2019-01-01 07:37 - 000880048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2019-01-09 19:22 - 2019-01-01 07:37 - 000581808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-01-09 19:22 - 2019-01-01 07:37 - 000381240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-01-09 19:22 - 2019-01-01 07:29 - 022016512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-01-09 19:22 - 2019-01-01 07:22 - 019405312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-01-09 19:22 - 2019-01-01 07:17 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-01-09 19:22 - 2019-01-01 07:16 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2019-01-09 19:22 - 2019-01-01 07:16 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2019-01-09 19:22 - 2019-01-01 07:15 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-01-09 19:22 - 2019-01-01 07:15 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-01-09 19:22 - 2019-01-01 07:15 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-01-09 19:22 - 2019-01-01 07:14 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-01-09 19:22 - 2019-01-01 07:14 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-01-09 19:22 - 2019-01-01 07:13 - 000594432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-01-09 19:22 - 2019-01-01 07:13 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-01-09 19:22 - 2019-01-01 07:12 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-01-09 19:22 - 2019-01-01 07:12 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2019-01-09 19:22 - 2019-01-01 07:12 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-01-09 19:22 - 2019-01-01 07:12 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2019-01-09 19:22 - 2019-01-01 06:23 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2019-01-09 19:22 - 2018-12-19 05:49 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-01-08 21:20 - 2019-01-08 21:42 - 000000000 ____D C:\Users\JIND\Downloads\Archicad 17 build 3013 X64
2019-01-08 21:20 - 2019-01-08 21:20 - 000012635 _____ C:\Users\JIND\Downloads\[CzT]Archicad_17_build_3013_x64_.torrent
2019-01-08 14:41 - 2019-01-08 14:41 - 004933120 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2019-01-08 14:07 - 2019-01-08 14:07 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-01-08 14:07 - 2019-01-08 14:07 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-01-08 14:07 - 2019-01-08 14:07 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-01-08 14:07 - 2019-01-08 14:07 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-01-08 07:28 - 2019-01-08 07:25 - 000320888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys
2019-01-08 07:28 - 2019-01-08 07:25 - 000220688 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-01-08 07:28 - 2019-01-08 07:25 - 000196264 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-01-08 07:28 - 2019-01-08 07:25 - 000058160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-01-08 07:28 - 2019-01-08 07:25 - 000037304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-01-05 21:16 - 2019-01-05 21:16 - 000112916 _____ C:\Users\JIND\Downloads\Izzy.Gets.the.Fuck.Across.Town.2017.LiMiTED.720p.BluRay.x264-CADAVER.srt
2019-01-05 20:38 - 2019-01-05 20:38 - 000000000 ____D C:\Users\JIND\Downloads\BlacKkKlansman.2018.720p.BluRay.H264.AAC-RARBG
2019-01-05 20:36 - 2019-01-05 21:21 - 000000000 ____D C:\Users\JIND\Downloads\Izzy.Gets.the.Fuck.Across.Town.2017.1080p.BluRay.H264.AAC-RARBG
2019-01-05 20:36 - 2019-01-05 21:18 - 000000000 ____D C:\Users\JIND\Downloads\The.Old.Man.and.the.Gun.2018.WEB-DL.x264-FGT
2019-01-05 20:35 - 2019-01-05 20:36 - 000000000 ____D C:\Users\JIND\Downloads\Izzy.Gets.the.Fuck.Across.Town.2017.720p.BluRay.H264.AAC-RARBG
2019-01-04 13:54 - 2019-01-04 13:54 - 000207259 _____ C:\Users\JIND\Downloads\Informace_k_dolozeni_realizace_NZU_2015_RD3_fin_28_2_2016 (2).pdf
2019-01-04 10:33 - 2019-01-04 10:33 - 001363688 _____ C:\Users\JIND\Desktop\083768_2018_Uhlířské Janovice_Stryk Lubomír_ ZS_RD.pdf
2019-01-04 10:31 - 2019-01-04 10:31 - 001839044 _____ C:\Users\JIND\Downloads\ZPF-Souhlas k trvalému odnětí půdy.zfo
2019-01-03 19:16 - 2019-01-03 19:16 - 002769437 _____ C:\Users\JIND\Downloads\lidova-architektura_nahled (2).pdf
2019-01-03 18:48 - 2019-01-03 18:48 - 000049410 _____ C:\Users\JIND\Downloads\IMG_8775.jpeg
2019-01-01 19:38 - 2019-01-13 11:24 - 000000000 ____D C:\Users\JIND\AppData\LocalLow\uTorrent
2019-01-01 19:02 - 2019-01-01 19:02 - 000000000 ____D C:\WINDOWS\Panther
2018-12-30 22:09 - 2018-12-30 22:11 - 191841369 _____ C:\Users\JIND\Downloads\Nirvana Demos January 23rd 1988.rar
2018-12-29 19:19 - 2019-01-03 18:18 - 000000000 ____D C:\Users\JIND\Downloads\Harry Potter
2018-12-29 18:36 - 2019-01-11 18:09 - 000000000 ____D C:\Users\JIND\Documents\The Witcher 3
2018-12-29 18:17 - 2018-12-29 18:17 - 000547314 _____ C:\Users\JIND\Downloads\[CzT]Harry_Potter_Komplet_2001_2011_CZ_SK_EN_1080pHD_ (1).torrent
2018-12-29 18:02 - 2018-12-29 18:02 - 000002218 _____ C:\Users\Public\Desktop\The Witcher 3 - Wild Hunt.lnk
2018-12-29 18:02 - 2018-12-29 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher 3 - Wild Hunt [GOG.com]
2018-12-29 16:53 - 2018-12-29 16:53 - 000547314 _____ C:\Users\JIND\Downloads\[CzT]Harry_Potter_Komplet_2001_2011_CZ_SK_EN_1080pHD_.torrent
2018-12-29 16:40 - 2018-12-29 16:40 - 000000000 ____D C:\Games
2018-12-29 13:08 - 2018-12-29 13:08 - 000170835 _____ C:\Users\JIND\Downloads\[CzT]Zaklinac_3_Divoky_hon_The_Witcher_3_Wild_Hunt_Game_of_the_Year_Edition_2016_CZ_ (2).torrent
2018-12-29 13:07 - 2018-12-29 13:07 - 000170835 _____ C:\Users\JIND\Downloads\[CzT]Zaklinac_3_Divoky_hon_The_Witcher_3_Wild_Hunt_Game_of_the_Year_Edition_2016_CZ_ (1).torrent
2018-12-29 12:48 - 2018-12-29 12:48 - 000170835 _____ C:\Users\JIND\Downloads\[CzT]Zaklinac_3_Divoky_hon_The_Witcher_3_Wild_Hunt_Game_of_the_Year_Edition_2016_CZ_.torrent
2018-12-28 09:33 - 2018-12-28 10:41 - 000000000 ____D C:\Users\JIND\Downloads\Dieae
2018-12-28 09:21 - 2018-12-28 09:21 - 000000000 ____D C:\Users\JIND\Downloads\9687658708789798679876798
2018-12-27 13:51 - 2018-12-27 13:51 - 002533886 _____ C:\Users\JIND\Documents\architektura-web.pdf
2018-12-27 13:48 - 2018-12-27 13:49 - 042570760 _____ C:\Users\JIND\Documents\KRNAP2010_Architektura_CZKomplet_www.pdf
2018-12-27 13:47 - 2018-12-27 13:47 - 008172306 _____ C:\Users\JIND\Documents\99kniha_ing._v.budil_1890_1979.pdf
2018-12-26 09:46 - 2018-12-26 09:46 - 057283100 _____ C:\Users\JIND\Downloads\DPTX_2009_2__0_286963_0_87071.pdf
2018-12-26 09:33 - 2018-12-26 09:33 - 002769437 _____ C:\Users\JIND\Downloads\lidova-architektura_nahled.pdf
2018-12-26 09:33 - 2018-12-26 09:33 - 002769437 _____ C:\Users\JIND\Downloads\lidova-architektura_nahled (1).pdf
2018-12-23 10:49 - 2018-12-23 10:49 - 001277728 _____ C:\WINDOWS\isRS-000.tmp
2018-12-23 10:49 - 2018-12-23 10:49 - 000001121 _____ C:\Users\Public\Desktop\WinSCP.lnk
2018-12-22 21:44 - 2018-12-22 21:44 - 000001096 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2018.lnk
2018-12-22 20:09 - 2018-12-23 10:51 - 000000000 ____D C:\Users\JIND\Desktop\Awesome-winter-scene-for-merry-christmas-festival
2018-12-21 13:46 - 2018-12-21 13:46 - 000001150 _____ C:\Users\Public\Desktop\VLC media player.lnk
2018-12-20 17:25 - 2018-12-20 17:25 - 000741099 _____ C:\Users\JIND\Downloads\2016110301_LV_Golgot_žehlící linka_V02 (1).pdf
2018-12-20 17:25 - 2018-12-14 07:55 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-12-20 17:25 - 2018-12-14 07:52 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2018-12-20 17:24 - 2018-12-14 08:29 - 001130760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-12-20 17:24 - 2018-12-14 08:25 - 001035256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-12-20 17:24 - 2018-12-14 08:21 - 001457240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-12-20 17:24 - 2018-12-14 08:21 - 001257672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-12-20 17:24 - 2018-12-14 08:21 - 001140480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-12-20 17:24 - 2018-12-14 08:21 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-12-20 17:24 - 2018-12-14 08:21 - 000982912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-12-20 17:24 - 2018-12-14 08:10 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2018-12-20 17:24 - 2018-12-14 08:07 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-12-20 17:24 - 2018-12-14 07:55 - 003396608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-12-20 17:24 - 2018-12-14 07:54 - 006032384 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2018-12-20 17:24 - 2018-12-14 07:54 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2018-12-20 17:24 - 2018-12-14 07:52 - 002173440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-12-20 17:24 - 2018-12-14 07:51 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-12-20 17:24 - 2018-12-14 07:50 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-12-17 23:10 - 2018-12-17 23:10 - 000020877 _____ C:\Users\JIND\Downloads\[CzT]Master_PDF_Editor_v_3_6_30_CZ_SK_.torrent
2018-12-17 23:06 - 2018-12-17 23:06 - 000014771 _____ C:\Users\JIND\Downloads\[CzT]Microsoft_Office_2016_v16_0_7571_2109_x86_x64_CZ_ (2).torrent
2018-12-17 23:05 - 2018-12-17 23:05 - 000038345 _____ C:\Users\JIND\Downloads\[CzT]ArchiCAD_15_CZ_build_3267_x86_x64_ (1).torrent
2018-12-14 16:04 - 2018-12-14 16:04 - 000720096 _____ C:\Users\JIND\Downloads\2187017997.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-13 13:19 - 2018-06-19 06:17 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-01-13 13:19 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-01-13 12:52 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-01-13 12:41 - 2016-01-25 18:04 - 000000000 ____D C:\ProgramData\NVIDIA
2019-01-13 12:36 - 2016-03-06 08:15 - 000000000 ___RD C:\Users\JIND\Dropbox
2019-01-13 12:24 - 2018-06-19 07:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-01-13 12:23 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-01-13 11:24 - 2018-08-23 21:16 - 000000000 ____D C:\Users\JIND\AppData\Local\D3DSCache
2019-01-13 11:23 - 2016-01-25 19:32 - 000000000 ____D C:\Users\JIND\AppData\Roaming\uTorrent
2019-01-13 10:16 - 2010-01-01 16:28 - 000000000 ____D C:\Users\JIND\AppData\Local\VirtualStore
2019-01-13 10:01 - 2016-01-25 17:48 - 000000000 ____D C:\Users\JIND\AppData\Local\Adobe
2019-01-13 09:39 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-01-12 22:43 - 2016-01-30 18:33 - 000000000 ____D C:\Program Files (x86)\Java
2019-01-12 22:42 - 2016-01-30 21:54 - 000098680 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2019-01-12 22:34 - 2018-06-19 06:26 - 001776052 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-01-12 22:34 - 2018-04-12 16:51 - 000743670 _____ C:\WINDOWS\system32\perfh005.dat
2019-01-12 22:34 - 2018-04-12 16:51 - 000159376 _____ C:\WINDOWS\system32\perfc005.dat
2019-01-12 22:34 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2019-01-12 22:31 - 2018-07-30 20:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-01-12 22:31 - 2016-01-25 17:22 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-01-12 22:30 - 2016-01-25 17:22 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-01-12 22:27 - 2016-01-25 17:41 - 000000000 ____D C:\Users\JIND\AppData\Local\NVIDIA
2019-01-12 22:27 - 2016-01-25 17:19 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-01-12 12:17 - 2016-01-30 19:23 - 000000000 ____D C:\Users\JIND\Graphisoft
2019-01-12 11:45 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-01-12 11:08 - 2016-01-25 18:36 - 000000904 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2019-01-12 11:08 - 2016-01-25 18:36 - 000000900 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2019-01-11 22:03 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-01-11 19:01 - 2018-06-19 07:02 - 000002182 _____ C:\WINDOWS\System32\Tasks\{DA473040-2C25-4D06-AA0D-E2336E701AE1}
2019-01-11 19:01 - 2018-06-19 07:02 - 000002178 _____ C:\WINDOWS\System32\Tasks\{A10801F5-4F4C-4539-B077-5BD883EC7563}
2019-01-11 19:01 - 2018-06-19 07:02 - 000002036 _____ C:\WINDOWS\System32\Tasks\{9A98FFBE-A0F8-4E12-A7FD-1D7CFE7F2F13}
2019-01-11 19:01 - 2018-06-19 07:02 - 000002036 _____ C:\WINDOWS\System32\Tasks\{6D4783F6-B3C0-4CAD-801F-DA3F33C1C093}
2019-01-11 19:00 - 2018-07-30 20:47 - 000003152 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:47 - 000002914 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:46 - 000003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:46 - 000003196 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:46 - 000003016 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:46 - 000003016 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:46 - 000003016 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:46 - 000002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:46 - 000002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:46 - 000002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-07-30 20:46 - 000002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-01-11 19:00 - 2018-06-19 07:02 - 000003730 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2019-01-11 19:00 - 2018-06-19 07:02 - 000003690 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-01-11 19:00 - 2018-06-19 07:02 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-01-11 19:00 - 2018-06-19 07:02 - 000003418 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2019-01-11 19:00 - 2018-06-19 07:02 - 000003406 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-01-11 19:00 - 2018-06-19 07:02 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-01-11 19:00 - 2018-06-19 07:02 - 000003322 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1467220350
2019-01-11 19:00 - 2018-06-19 07:02 - 000003302 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1453738242
2019-01-11 19:00 - 2018-06-19 07:02 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-01-11 19:00 - 2018-06-19 07:02 - 000002852 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3464826740-215856079-800623610-1001
2019-01-11 19:00 - 2018-06-19 07:02 - 000002798 _____ C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-JIND-PC-JIND
2019-01-11 19:00 - 2018-06-19 07:02 - 000002762 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-JIND-PC-JIND
2019-01-11 19:00 - 2018-06-19 07:02 - 000002530 _____ C:\WINDOWS\System32\Tasks\AutoPico Daily Restart
2019-01-11 19:00 - 2018-06-19 07:02 - 000002046 _____ C:\WINDOWS\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance
2019-01-11 18:13 - 2018-06-19 07:02 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2019-01-11 18:09 - 2016-01-25 20:16 - 000000000 ____D C:\Users\JIND\AppData\Local\CrashDumps
2019-01-10 18:30 - 2016-01-25 17:09 - 000000000 ____D C:\Program Files (x86)\Opera
2019-01-10 18:14 - 2016-01-30 16:08 - 000000000 ____D C:\Users\JIND\Documents\Soubory aplikace Outlook
2019-01-10 11:31 - 2017-09-26 20:06 - 000000321 _____ C:\Users\JIND\Documents\BIMx_Export_Log.txt
2019-01-10 11:31 - 2016-04-13 21:19 - 000000000 ____D C:\Users\JIND\Documents\BIMx
2019-01-10 11:30 - 2016-01-30 19:23 - 000000000 ____D C:\Users\JIND\AppData\Roaming\Graphisoft
2019-01-10 11:30 - 2016-01-30 19:23 - 000000000 ____D C:\Users\JIND\AppData\Local\Graphisoft
2019-01-10 11:25 - 2016-01-30 18:42 - 000056089 _____ C:\WINDOWS\vpd.properties
2019-01-10 11:23 - 2016-01-30 18:34 - 000000000 ____D C:\Users\JIND\AppData\Roaming\Install.GS
2019-01-10 11:15 - 2016-01-30 18:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Graphisoft
2019-01-10 11:11 - 2016-01-30 18:34 - 000000000 ____D C:\Program Files\Graphisoft
2019-01-10 07:32 - 2018-01-01 20:02 - 000002175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2019-01-10 07:31 - 2018-06-19 07:02 - 000004006 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-01-10 07:29 - 2018-04-12 00:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-01-09 22:37 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-01-09 22:37 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-01-09 21:14 - 2018-01-02 05:07 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-01-09 21:12 - 2016-01-25 18:36 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-01-09 20:30 - 2018-01-02 05:05 - 132790320 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-01-09 19:50 - 2009-07-14 03:34 - 000000478 _____ C:\WINDOWS\win.ini
2019-01-09 19:07 - 2018-06-12 17:28 - 000000000 ____D C:\Users\JIND\AppData\Roaming\Easy Watermark Studio Lite
2019-01-09 18:02 - 2018-06-07 22:12 - 000000000 ____D C:\Users\JIND\AppData\Local\AVAST Software
2019-01-08 14:42 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-01-08 14:42 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-01-08 07:26 - 2018-11-02 22:14 - 000042488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-01-08 07:26 - 2018-06-24 14:34 - 000015488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2019-01-08 07:26 - 2018-01-02 08:39 - 000474648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-01-08 07:26 - 2018-01-02 08:39 - 000380144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-01-08 07:26 - 2018-01-02 08:39 - 000218056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-01-08 07:26 - 2018-01-02 08:39 - 000203488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-01-08 07:26 - 2018-01-02 08:39 - 000166472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-01-08 07:26 - 2018-01-02 08:39 - 000111992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-01-08 07:26 - 2018-01-02 08:39 - 000088144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-01-08 07:26 - 2018-01-02 08:39 - 000046584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2019-01-08 07:25 - 2018-01-02 08:39 - 001034056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-01-05 19:11 - 2016-02-05 15:57 - 000000000 ____D C:\Users\JIND\AppData\Roaming\vlc
2019-01-04 01:20 - 2018-06-07 22:17 - 000002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2019-01-03 14:04 - 2016-01-25 17:50 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-01-02 23:19 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-01-02 23:03 - 2018-03-18 15:57 - 000000600 _____ C:\Users\JIND\AppData\Local\PUTTY.RND
2019-01-02 20:41 - 2018-11-15 18:58 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-01-02 20:41 - 2018-11-15 18:58 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-01-01 23:31 - 2018-06-19 06:31 - 000000000 ____D C:\Users\JIND
2019-01-01 20:20 - 2018-04-23 15:52 - 000000000 ____D C:\Users\JIND\Desktop\Byznys Antiq
2019-01-01 11:36 - 2018-01-02 10:11 - 000000000 ____D C:\Users\JIND\AppData\Local\Packages
2018-12-29 18:38 - 2017-06-13 16:16 - 000000000 ____D C:\Users\JIND\ansel
2018-12-29 16:31 - 2016-03-04 17:10 - 000000000 ____D C:\Users\JIND\Desktop\Záloha E
2018-12-29 14:01 - 2018-01-02 22:02 - 000000000 ____D C:\Users\JIND\Heaven
2018-12-29 13:45 - 2016-01-25 17:50 - 000000000 ____D C:\ProgramData\Adobe
2018-12-29 13:19 - 2016-01-30 18:30 - 000000000 ____D C:\Program Files\Common Files\Adobe
2018-12-29 13:01 - 2016-01-30 18:31 - 000000000 ____D C:\Program Files\Adobe
2018-12-28 10:37 - 2016-03-20 16:56 - 000000000 ____D C:\Users\JIND\AppData\Local\JDownloader v2.0
2018-12-27 22:27 - 2016-01-25 17:22 - 000000000 ____D C:\Users\JIND\AppData\Local\ElevatedDiagnostics
2018-12-26 16:13 - 2016-04-10 17:00 - 000000000 ____D C:\Users\JIND\AppData\Local\cache
2018-12-26 10:09 - 2016-01-30 15:40 - 000000600 _____ C:\Users\JIND\AppData\Roaming\winscp.rnd
2018-12-25 12:35 - 2018-06-19 06:31 - 000002433 _____ C:\Users\JIND\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-12-25 12:35 - 2016-03-06 15:47 - 000000000 ___RD C:\Users\JIND\OneDrive
2018-12-23 16:26 - 2016-01-30 15:24 - 000000000 ____D C:\Program Files (x86)\WinSCP
2018-12-23 10:49 - 2016-01-30 15:24 - 000001133 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP.lnk
2018-12-23 09:57 - 2016-05-22 06:55 - 000000000 ____D C:\Users\JIND\Desktop\F
2018-12-23 09:40 - 2018-11-16 20:49 - 000000000 ____D C:\Program Files\rempl
2018-12-22 21:45 - 2016-01-26 15:49 - 000000000 ____D C:\Users\JIND\AppData\Roaming\Adobe
2018-12-22 21:44 - 2016-01-30 18:46 - 000000000 ____D C:\Users\JIND\Documents\Adobe
2018-12-22 21:36 - 2016-01-25 17:50 - 000000000 ____D C:\Program Files (x86)\Adobe
2018-12-21 13:42 - 2016-02-09 16:08 - 000000000 ____D C:\Users\JIND\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-12-21 13:42 - 2016-02-09 16:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-12-21 13:42 - 2016-02-09 16:08 - 000000000 ____D C:\Program Files\WinRAR
2018-12-21 13:40 - 2016-08-10 19:18 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-12-17 07:12 - 2018-03-23 09:00 - 004999920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2018-12-17 04:33 - 2018-03-23 09:01 - 001682896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2018-12-17 04:33 - 2018-03-23 09:01 - 000227896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2018-12-14 16:08 - 2016-01-25 17:30 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

==================== Files in the root of some directories =======

2016-04-21 18:46 - 2016-04-21 19:01 - 000007842 _____ () C:\Program Files\log.txt
2016-11-27 20:50 - 2016-11-27 20:50 - 000000030 _____ () C:\Users\JIND\AppData\Roaming\.pgbiasfx
2017-03-11 22:12 - 2017-12-20 17:50 - 000000034 _____ () C:\Users\JIND\AppData\Roaming\AdobeWLCMCache.dat
2016-04-20 19:42 - 2017-12-23 19:20 - 000000454 _____ () C:\Users\JIND\AppData\Roaming\burnaware.ini
2016-01-30 15:40 - 2018-12-26 10:09 - 000000600 _____ () C:\Users\JIND\AppData\Roaming\winscp.rnd
2017-06-18 16:31 - 2018-08-23 21:18 - 000001480 _____ () C:\Users\JIND\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2017-10-28 14:06 - 2017-10-28 14:06 - 000000000 ____H () C:\Users\JIND\AppData\Local\BIT6ED8.tmp
2016-01-30 18:33 - 2017-02-19 12:09 - 000007168 _____ () C:\Users\JIND\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-01-02 22:01 - 2018-01-03 22:37 - 000728064 _____ () C:\Users\JIND\AppData\Local\file__0.localstorage
2018-09-30 18:00 - 2018-09-30 18:00 - 000000000 _____ () C:\Users\JIND\AppData\Local\oobelibMkey.log
2018-03-18 15:57 - 2019-01-02 23:03 - 000000600 _____ () C:\Users\JIND\AppData\Local\PUTTY.RND
2017-07-08 14:49 - 2017-07-08 14:49 - 000000017 _____ () C:\Users\JIND\AppData\Local\resmon.resmoncfg
2017-10-28 14:04 - 2017-10-28 14:04 - 000000000 _____ () C:\Users\JIND\AppData\Local\{A23D1975-315E-4C1A-9632-447CDBC2FA57}

Some files in TEMP:
====================
2019-01-10 11:26 - 2019-01-10 11:26 - 000037376 _____ () C:\Users\JIND\AppData\Local\Temp\bassmod.dll
2019-01-12 22:34 - 2019-01-12 22:34 - 001892728 _____ (Oracle Corporation) C:\Users\JIND\AppData\Local\Temp\jre-8u191-windows-au.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-06-19 06:17

==================== End of FRST.txt ============================
Rudy píše:OK. Dejte nové logy FRST+Addition.
Přílohy
Addition.zip
(29.2 KiB) Staženo 51 x

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: HDD využití 100% po startu

#6 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\Policies\Explorer: []
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {2970c98e-ca90-11e7-8cc1-6cf049ed4eb3} - "E:\iLinker.exe"
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {719e0e0a-c59e-11e5-abc5-6cf049ed4eb3} - "F:\OInstall.exe"
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {9895d45f-4eee-11e8-93fa-6cf049ed4eb3} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {c809778d-c765-11e5-a6fb-6cf049ed4eb3} - "E:\AUTORUN.EXE"
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
ShellServiceObjects: No Name -> {59EFE487-E5B8-4fae-9D2C-FCDF0B70CE70} =>
ShellServiceObjects-x32: No Name -> {59EFE487-E5B8-4fae-9D2C-FCDF0B70CE70} =>
GroupPolicy: Restriction ? <==== ATTENTION
BHO: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO-x32: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
Toolbar: HKU\S-1-5-21-3464826740-215856079-800623610-1001 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
FF HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\JIND\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
U3 aspnet_state; no ImagePath
C:\WINDOWS\isRS-000.tmp
C:\WINDOWS\System32\Tasks\{DA473040-2C25-4D06-AA0D-E2336E701AE1}
C:\WINDOWS\System32\Tasks\{A10801F5-4F4C-4539-B077-5BD883EC7563}
C:\WINDOWS\System32\Tasks\{9A98FFBE-A0F8-4E12-A7FD-1D7CFE7F2F13}
C:\WINDOWS\System32\Tasks\{6D4783F6-B3C0-4CAD-801F-DA3F33C1C093}
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\AutoPico Daily Restart
C:\Users\JIND\AppData\Local\BIT6ED8.tmp
C:\Users\JIND\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\JIND\AppData\Local\{A23D1975-315E-4C1A-9632-447CDBC2FA57}
C:\Users\JIND\AppData\Local\Temp
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
Task: {07861B42-1B8C-4FB1-AAEF-32F8CA6E705C} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {134618E2-6A51-46D0-B411-DF17F819565C} - System32\Tasks\{DA473040-2C25-4D06-AA0D-E2336E701AE1} => C:\Windows\system32\pcalua.exe -a F:\autorun.exe -d F:\
Task: {1A6C122E-7044-46A5-BDA6-CFBCE3DCA516} - System32\Tasks\{A10801F5-4F4C-4539-B077-5BD883EC7563} => C:\Windows\system32\pcalua.exe -a F:\setup.exe -d F:\
Task: {45A47705-54E7-4F0C-B0B2-48E655F51866} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {6FB887FD-145E-4ACF-ACB8-4DD5B7D27302} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {889AFD35-E748-43BF-BAC0-06A165D92BCD} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Task: {889FB762-8891-4B66-B3BD-8169DD6258DE} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
C:\Program Files\KMSpico
Task: {8DAC99D1-1D1C-4160-8324-F57DE5867DF3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-25] (Google Inc.)
Task: {970338C9-269F-4C98-954A-266C717B6DAC} - \FreeDownloadManagerNetworkMonitor -> No File <==== ATTENTION
Task: {BBF6B5D6-CED3-469E-8246-A4F8AF2E51E1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {C814A076-61AE-4FAC-B0CC-665BB47E4F78} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-25] (Google Inc.)
Task: {D3EF6F41-DE61-435C-ACEA-B58098B1732F} - System32\Tasks\{9A98FFBE-A0F8-4E12-A7FD-1D7CFE7F2F13} => F:\setup.exe
Task: {DD99E581-B648-4D2E-AA5D-3974FAA13049} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {F8D5C9D9-A8B5-4462-A2AA-50C7205955CF} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:0888F409 [286]
AlternateDataStreams: C:\ProgramData\TEMP:3440EB47 [938]
AlternateDataStreams: C:\ProgramData\TEMP:66633281 [135]
AlternateDataStreams: C:\ProgramData\TEMP:93433455 [403]
AlternateDataStreams: C:\ProgramData\TEMP:A1EDB939 [116]
AlternateDataStreams: C:\ProgramData\TEMP:F9CFE070 [176]
AlternateDataStreams: C:\Users\JIND\Desktop\Knihy:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Downloads\busines_1_1.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Downloads\DPTX_2009_2__0_286963_0_87071.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\130725 podkladový list.xls:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\2016-08 DSP Toušice:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\99kniha_ing._v.budil_1890_1979.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\AES_Hodnoceni_UEII Chlum u Třeboně 12.xls:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\architektura-web.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\CN EP DSP Štěpánovsko č. p. 86; objekt občanské vybavenosti.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\copy.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\DPFDP5-8710290963-20160319-091851.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\EP 2017-05-31 COOP Chlum u Třeboně.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\IL EA EP.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\KRNAP2010_Architektura_CZKomplet_www.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\OBJ SIGREEN BD Poniklá 300 a 301.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\Orientační rozpočet stavebních úprav - kopie.xlsx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\Orientační rozpočet stavebních úprav - kopie.xlsx:com.dropbox.attrs [58]
AlternateDataStreams: C:\Users\JIND\Documents\PhD Admissions Officer.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\SIGREEN Objednávka VZOR.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\The Summary of the chapter nine.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\Vizitky:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\vypocty – kopie.xlsx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\Web:com.dropbox.attributes [168]
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [UDP Query User{456E655F-7C16-4A68-926A-FE5CEA57DDA7}C:\program files (x86)\outlast 2\binaries\win64\outlast2.exe] => (Block) C:\program files (x86)\outlast 2\binaries\win64\outlast2.exe No File
FirewallRules: [TCP Query User{C551907F-65C9-4004-988F-12BEBE53905B}C:\program files (x86)\outlast 2\binaries\win64\outlast2.exe] => (Block) C:\program files (x86)\outlast 2\binaries\win64\outlast2.exe No File
FirewallRules: [UDP Query User{C00B1252-44C2-40BE-A1C6-0E201207835C}C:\games\torment - tides of numenera\tidesofnumenera.exe] => (Block) C:\games\torment - tides of numenera\tidesofnumenera.exe No File
FirewallRules: [TCP Query User{2F659D35-18BC-4B80-B7DF-DB6BB8A3CBCC}C:\games\torment - tides of numenera\tidesofnumenera.exe] => (Block) C:\games\torment - tides of numenera\tidesofnumenera.exe No File
FirewallRules: [UDP Query User{2A6E58BD-4EB6-439A-BE07-28D1A842CC4D}C:\games\torment - tides of numenera\tidesofnumenera.exe] => (Block) C:\games\torment - tides of numenera\tidesofnumenera.exe No File
FirewallRules: [TCP Query User{B597463C-CD3A-474E-8D91-54F7EC8D4F62}C:\games\torment - tides of numenera\tidesofnumenera.exe] => (Block) C:\games\torment - tides of numenera\tidesofnumenera.exe No File
FirewallRules: [{EB223C16-AEA3-400A-ABB5-A8AB404E32D6}] => (Block) %ProgramFiles%\Adobe\Adobe Illustrator CC 2015\Support Files\Contents\Windows\Illustrator.exe No File
FirewallRules: [{9BE3D067-2CA2-45A9-B083-76FDB93AD42F}] => (Allow) C:\ppa-nv-e-14164_400\System64\Ereg\Ereg.exe No File
FirewallRules: [{122DC92A-EC8F-467A-AACC-923F4EA5839E}] => (Allow) C:\ppa-nv-e-14164_400\System64\Ereg\Ereg.exe No File
FirewallRules: [{F2B9F725-7D7C-4473-AA50-B2684A487D93}] => (Allow) C:\ppa-nv-e-14164_400\System64\bin\NuancePDF.exe No File
FirewallRules: [{CC8B87DC-8B69-4FC7-862B-89D8F8B77000}] => (Allow) C:\ppa-nv-e-14164_400\System64\bin\NuancePDF.exe No File
FirewallRules: [{1176AFCE-0526-4F2D-B90D-EA7ACC9DA3F6}] => (Allow) C:\ppa-nv-e-14164_400\System64\bin\NPDFCreate.exe No File
FirewallRules: [{2EF76D14-3DAA-4177-B087-ED482E67E073}] => (Allow) C:\ppa-nv-e-14164_400\System64\bin\NPDFCreate.exe No File
FirewallRules: [{DC8D616D-A4A3-4AD4-AC38-CB8185BCD776}] => (Allow) C:\ppa-nv-e-14164_400\System64\NPDFLM.exe No File
FirewallRules: [{7FFEC92D-5059-4235-8478-95AEF69F8EAA}] => (Allow) C:\ppa-nv-e-14164_400\System64\NPDFLM.exe No File
FirewallRules: [UDP Query User{C5506C96-91A8-4EFF-ABE7-3B6EFEACDB03}C:\program files (x86)\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe] => (Block) C:\program files (x86)\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe No File
FirewallRules: [TCP Query User{61729264-BA8C-4DE5-86EC-56EF3258AFDD}C:\program files (x86)\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe] => (Block) C:\program files (x86)\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe No File
FirewallRules: [UDP Query User{83C87C89-C00F-4384-8A98-F084BDB5D264}C:\program files (x86)\doom\doomx64.exe] => (Block) C:\program files (x86)\doom\doomx64.exe No File
FirewallRules: [TCP Query User{B29DD244-7095-46B0-AF76-ABFEA70B57F1}C:\program files (x86)\doom\doomx64.exe] => (Block) C:\program files (x86)\doom\doomx64.exe No File
FirewallRules: [{4E2D1B34-8342-41BF-AD58-F4334B9D855E}] => (Allow) C:\Program Files (x86)\Hide My IP 6\HideMyIpSrv.exe No File
FirewallRules: [{4D1104BD-34D4-4274-9B85-F3998EAE5E67}] => (Allow) C:\Program Files (x86)\Hide My IP 6\HideMyIP.exe No File
FirewallRules: [{AAAF2D74-2BB3-4F55-9C1F-97705F7B29B5}] => (Allow) C:\Program Files (x86)\Hide My IP 6\HideMyIpSrv.exe No File
FirewallRules: [{B1C73739-4D8C-400F-8A91-7401794EF67D}] => (Allow) C:\Program Files (x86)\Hide My IP 6\HideMyIP.exe No File
FirewallRules: [{D62D3488-A254-4940-9CA6-94E957941E79}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\Ereg\Ereg.exe No File
FirewallRules: [{9CDCC12E-B11E-49A5-ABA7-801B5A6874FC}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\Ereg\Ereg.exe No File
FirewallRules: [{DA1D815B-5D27-4B91-BAEF-7AF5533F69D3}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\bin\NuancePDF.exe No File
FirewallRules: [{0CC91A09-B0AF-43F7-92BA-1594792507DB}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\bin\NuancePDF.exe No File
FirewallRules: [{8799D3CC-8A46-4173-8927-616CB295796E}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\bin\NPDFCreate.exe No File
FirewallRules: [{60CA217C-6CE0-48EA-B112-AA213F40768B}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\bin\NPDFCreate.exe No File
FirewallRules: [{34C5F7AA-7642-439A-9D6B-9722F8D7774D}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\NPDFLM.exe No File
FirewallRules: [{ECBEEAA1-663B-443D-A271-D8D086983535}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\NPDFLM.exe No File
FirewallRules: [{5D05E521-5FE3-4C57-8616-C537718FB390}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\NPDFAssist.exe No File
FirewallRules: [{365BA54C-F37E-4B02-B41B-351A9BE0E131}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\NPDFAssist.exe No File
FirewallRules: [{E3A4A34B-BD62-46B6-959F-9C209D186A82}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe No File
FirewallRules: [{A96906AF-E1CB-431C-9D10-968A5408043C}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe No File
FirewallRules: [UDP Query User{5A353DFC-586A-4632-B1AC-47563BB4D50B}C:\mamp\bin\mysql\bin\mysqld.exe] => (Allow) C:\mamp\bin\mysql\bin\mysqld.exe No File
FirewallRules: [TCP Query User{31B9E634-1A8F-4919-AAB5-D373F260A783}C:\mamp\bin\mysql\bin\mysqld.exe] => (Allow) C:\mamp\bin\mysql\bin\mysqld.exe No File
FirewallRules: [UDP Query User{0C28EB59-855E-4F07-8136-722CBA7E8AA5}C:\mamp\bin\apache\bin\httpd.exe] => (Allow) C:\mamp\bin\apache\bin\httpd.exe No File
FirewallRules: [TCP Query User{D7973D4C-EDCD-4309-A96C-180DBF62A926}C:\mamp\bin\apache\bin\httpd.exe] => (Allow) C:\mamp\bin\apache\bin\httpd.exe No File
FirewallRules: [UDP Query User{20167511-22FE-44ED-818D-A91E80E64100}C:\wamp\bin\apache\apache2.4.18\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.18\bin\httpd.exe No File
FirewallRules: [TCP Query User{EEBAC0AA-5AFB-45AF-B3A4-AD7B8A59C002}C:\wamp\bin\apache\apache2.4.18\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.18\bin\httpd.exe No File
FirewallRules: [UDP Query User{226373F5-1F31-4F09-A3D1-80921CED2CC9}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe No File
FirewallRules: [TCP Query User{29F3B9F9-1CA1-4DE0-91CD-7086D23B7EB4}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe No File
FirewallRules: [UDP Query User{C101077D-85E7-4135-8C8E-94779633C65A}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe No File
FirewallRules: [TCP Query User{5E6FEBF5-1BA7-42FC-858A-EE858A4BB150}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe No File
FirewallRules: [{71A73371-422D-455A-908C-8F879DAF8CCC}] => (Allow) C:\Program Files (x86)\Microsoft Games\Zoo Tycoon 2\zt.exe No File
FirewallRules: [{F7297769-A0DE-4E27-A4A8-8BA43E2A67F1}] => (Allow) C:\Program Files (x86)\Microsoft Games\Zoo Tycoon 2\zt.exe No File
FirewallRules: [UDP Query User{83837711-DFF0-4A87-BEC0-849D1F6C79C3}F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\gsquicktimeserver\gsqtserver.exe] => (Block) F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\gsquicktimeserver\gsqtserver.exe No File
FirewallRules: [TCP Query User{EC662CF5-98FE-41AE-AE84-D793F51D699B}F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\gsquicktimeserver\gsqtserver.exe] => (Block) F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\gsquicktimeserver\gsqtserver.exe No File
FirewallRules: [UDP Query User{F0C5B864-092A-4D51-97DA-940595C607D6}F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\lp_xmlconverter.exe] => (Block) F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\lp_xmlconverter.exe No File
FirewallRules: [TCP Query User{7089AE1F-0022-4B63-975B-8B306E832670}F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\lp_xmlconverter.exe] => (Block) F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\lp_xmlconverter.exe No File
FirewallRules: [UDP Query User{057245DB-C943-4D59-AF05-A17FE058A616}F:\downloads\install\graphisoft\archicad\lp_xmlconverter.exe] => (Block) F:\downloads\install\graphisoft\archicad\lp_xmlconverter.exe No File
FirewallRules: [TCP Query User{4786C434-EBA2-45CF-A471-F8A8F736EAE9}F:\downloads\install\graphisoft\archicad\lp_xmlconverter.exe] => (Block) F:\downloads\install\graphisoft\archicad\lp_xmlconverter.exe No File
FirewallRules: [UDP Query User{058E23EB-A065-4F20-BAB0-9D6698C49DDB}F:\downloads\install\graphisoft\archicad\gsquicktimeserver\gsqtserver.exe] => (Block) F:\downloads\install\graphisoft\archicad\gsquicktimeserver\gsqtserver.exe No File
FirewallRules: [TCP Query User{C6CEDAFC-0612-46DC-B6C6-A500FC75AFD8}F:\downloads\install\graphisoft\archicad\gsquicktimeserver\gsqtserver.exe] => (Block) F:\downloads\install\graphisoft\archicad\gsquicktimeserver\gsqtserver.exe No File
FirewallRules: [UDP Query User{D17E3B9E-5735-4057-AF58-37DD025215DB}F:\downloads\install\graphisoft\archicad\archicad.exe] => (Block) F:\downloads\install\graphisoft\archicad\archicad.exe No File
FirewallRules: [TCP Query User{7A40E653-893A-434B-A9EB-EC631B57DD69}F:\downloads\install\graphisoft\archicad\archicad.exe] => (Block) F:\downloads\install\graphisoft\archicad\archicad.exe No File
FirewallRules: [UDP Query User{6528FDC9-AFBB-427B-B589-0E5E446560FC}C:\users\jind\downloads\archicad 16\archicad 16\gsquicktimeserver\gsqtserver.exe] => (Block) C:\users\jind\downloads\archicad 16\archicad 16\gsquicktimeserver\gsqtserver.exe No File
FirewallRules: [TCP Query User{0866DF3F-9305-4D9F-AA3E-47EF60827B95}C:\users\jind\downloads\archicad 16\archicad 16\gsquicktimeserver\gsqtserver.exe] => (Block) C:\users\jind\downloads\archicad 16\archicad 16\gsquicktimeserver\gsqtserver.exe No File
E:\Microsoft Toolkit.exe
E:\KMSAuto.exe
C:\Users\JIND\Documents\Ashampoo Burning Studio 16.0.2.13 Multilingual + Crack\Setup.exe

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

alesco3
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 13 led 2019 10:27

Re: HDD využití 100% po startu

#7 Příspěvek od alesco3 »

Kód: Vybrat vše

Fix result of Farbar Recovery Scan Tool (x64) Version: 13.01.2019
Ran by JIND (13-01-2019 18:55:17) Run:1
Running from C:\Users\JIND\Desktop
Loaded Profiles: JIND (Available Profiles: JIND)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\Policies\Explorer: []
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {2970c98e-ca90-11e7-8cc1-6cf049ed4eb3} - "E:\iLinker.exe"
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {719e0e0a-c59e-11e5-abc5-6cf049ed4eb3} - "F:\OInstall.exe"
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {9895d45f-4eee-11e8-93fa-6cf049ed4eb3} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {c809778d-c765-11e5-a6fb-6cf049ed4eb3} - "E:\AUTORUN.EXE" 
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
ShellServiceObjects: No Name -> {59EFE487-E5B8-4fae-9D2C-FCDF0B70CE70} =>
ShellServiceObjects-x32: No Name -> {59EFE487-E5B8-4fae-9D2C-FCDF0B70CE70} => 
GroupPolicy: Restriction ? <==== ATTENTION
BHO: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO-x32: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
Toolbar: HKU\S-1-5-21-3464826740-215856079-800623610-1001 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
FF HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\JIND\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
U3 aspnet_state; no ImagePath
C:\WINDOWS\isRS-000.tmp
C:\WINDOWS\System32\Tasks\{DA473040-2C25-4D06-AA0D-E2336E701AE1}
C:\WINDOWS\System32\Tasks\{A10801F5-4F4C-4539-B077-5BD883EC7563}
C:\WINDOWS\System32\Tasks\{9A98FFBE-A0F8-4E12-A7FD-1D7CFE7F2F13}
C:\WINDOWS\System32\Tasks\{6D4783F6-B3C0-4CAD-801F-DA3F33C1C093}
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\AutoPico Daily Restart
C:\Users\JIND\AppData\Local\BIT6ED8.tmp
C:\Users\JIND\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\JIND\AppData\Local\{A23D1975-315E-4C1A-9632-447CDBC2FA57}
C:\Users\JIND\AppData\Local\Temp
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
Task: {07861B42-1B8C-4FB1-AAEF-32F8CA6E705C} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {134618E2-6A51-46D0-B411-DF17F819565C} - System32\Tasks\{DA473040-2C25-4D06-AA0D-E2336E701AE1} => C:\Windows\system32\pcalua.exe -a F:\autorun.exe -d F:\
Task: {1A6C122E-7044-46A5-BDA6-CFBCE3DCA516} - System32\Tasks\{A10801F5-4F4C-4539-B077-5BD883EC7563} => C:\Windows\system32\pcalua.exe -a F:\setup.exe -d F:\
Task: {45A47705-54E7-4F0C-B0B2-48E655F51866} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {6FB887FD-145E-4ACF-ACB8-4DD5B7D27302} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {889AFD35-E748-43BF-BAC0-06A165D92BCD} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Task: {889FB762-8891-4B66-B3BD-8169DD6258DE} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
C:\Program Files\KMSpico
Task: {8DAC99D1-1D1C-4160-8324-F57DE5867DF3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-25] (Google Inc.)
Task: {970338C9-269F-4C98-954A-266C717B6DAC} - \FreeDownloadManagerNetworkMonitor -> No File <==== ATTENTION
Task: {BBF6B5D6-CED3-469E-8246-A4F8AF2E51E1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {C814A076-61AE-4FAC-B0CC-665BB47E4F78} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-25] (Google Inc.)
Task: {D3EF6F41-DE61-435C-ACEA-B58098B1732F} - System32\Tasks\{9A98FFBE-A0F8-4E12-A7FD-1D7CFE7F2F13} => F:\setup.exe
Task: {DD99E581-B648-4D2E-AA5D-3974FAA13049} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {F8D5C9D9-A8B5-4462-A2AA-50C7205955CF} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:0888F409 [286]
AlternateDataStreams: C:\ProgramData\TEMP:3440EB47 [938]
AlternateDataStreams: C:\ProgramData\TEMP:66633281 [135]
AlternateDataStreams: C:\ProgramData\TEMP:93433455 [403]
AlternateDataStreams: C:\ProgramData\TEMP:A1EDB939 [116]
AlternateDataStreams: C:\ProgramData\TEMP:F9CFE070 [176]
AlternateDataStreams: C:\Users\JIND\Desktop\Knihy:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Downloads\busines_1_1.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Downloads\DPTX_2009_2__0_286963_0_87071.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\130725 podkladov� list.xls:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\2016-08 DSP Tou�ice:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\99kniha_ing._v.budil_1890_1979.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\AES_Hodnoceni_UEII Chlum u T�ebon� 12.xls:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\architektura-web.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\CN EP DSP �t�p�novsko �. p. 86; objekt ob�ansk� vybavenosti.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\copy.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\DPFDP5-8710290963-20160319-091851.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\EP 2017-05-31 COOP Chlum u T�ebon�.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\IL EA EP.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\KRNAP2010_Architektura_CZKomplet_www.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\OBJ SIGREEN BD Ponikl� 300 a 301.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\Orienta�n� rozpo�et stavebn�ch �prav - kopie.xlsx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\Orienta�n� rozpo�et stavebn�ch �prav - kopie.xlsx:com.dropbox.attrs [58]
AlternateDataStreams: C:\Users\JIND\Documents\PhD Admissions Officer.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\SIGREEN Objedn�vka VZOR.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\The Summary of the chapter nine.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\Vizitky:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\vypocty � kopie.xlsx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\Web:com.dropbox.attributes [168]
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [UDP Query User{456E655F-7C16-4A68-926A-FE5CEA57DDA7}C:\program files (x86)\outlast 2\binaries\win64\outlast2.exe] => (Block) C:\program files (x86)\outlast 2\binaries\win64\outlast2.exe No File
FirewallRules: [TCP Query User{C551907F-65C9-4004-988F-12BEBE53905B}C:\program files (x86)\outlast 2\binaries\win64\outlast2.exe] => (Block) C:\program files (x86)\outlast 2\binaries\win64\outlast2.exe No File
FirewallRules: [UDP Query User{C00B1252-44C2-40BE-A1C6-0E201207835C}C:\games\torment - tides of numenera\tidesofnumenera.exe] => (Block) C:\games\torment - tides of numenera\tidesofnumenera.exe No File
FirewallRules: [TCP Query User{2F659D35-18BC-4B80-B7DF-DB6BB8A3CBCC}C:\games\torment - tides of numenera\tidesofnumenera.exe] => (Block) C:\games\torment - tides of numenera\tidesofnumenera.exe No File
FirewallRules: [UDP Query User{2A6E58BD-4EB6-439A-BE07-28D1A842CC4D}C:\games\torment - tides of numenera\tidesofnumenera.exe] => (Block) C:\games\torment - tides of numenera\tidesofnumenera.exe No File
FirewallRules: [TCP Query User{B597463C-CD3A-474E-8D91-54F7EC8D4F62}C:\games\torment - tides of numenera\tidesofnumenera.exe] => (Block) C:\games\torment - tides of numenera\tidesofnumenera.exe No File
FirewallRules: [{EB223C16-AEA3-400A-ABB5-A8AB404E32D6}] => (Block) %ProgramFiles%\Adobe\Adobe Illustrator CC 2015\Support Files\Contents\Windows\Illustrator.exe No File
FirewallRules: [{9BE3D067-2CA2-45A9-B083-76FDB93AD42F}] => (Allow) C:\ppa-nv-e-14164_400\System64\Ereg\Ereg.exe No File
FirewallRules: [{122DC92A-EC8F-467A-AACC-923F4EA5839E}] => (Allow) C:\ppa-nv-e-14164_400\System64\Ereg\Ereg.exe No File
FirewallRules: [{F2B9F725-7D7C-4473-AA50-B2684A487D93}] => (Allow) C:\ppa-nv-e-14164_400\System64\bin\NuancePDF.exe No File
FirewallRules: [{CC8B87DC-8B69-4FC7-862B-89D8F8B77000}] => (Allow) C:\ppa-nv-e-14164_400\System64\bin\NuancePDF.exe No File
FirewallRules: [{1176AFCE-0526-4F2D-B90D-EA7ACC9DA3F6}] => (Allow) C:\ppa-nv-e-14164_400\System64\bin\NPDFCreate.exe No File
FirewallRules: [{2EF76D14-3DAA-4177-B087-ED482E67E073}] => (Allow) C:\ppa-nv-e-14164_400\System64\bin\NPDFCreate.exe No File
FirewallRules: [{DC8D616D-A4A3-4AD4-AC38-CB8185BCD776}] => (Allow) C:\ppa-nv-e-14164_400\System64\NPDFLM.exe No File
FirewallRules: [{7FFEC92D-5059-4235-8478-95AEF69F8EAA}] => (Allow) C:\ppa-nv-e-14164_400\System64\NPDFLM.exe No File
FirewallRules: [UDP Query User{C5506C96-91A8-4EFF-ABE7-3B6EFEACDB03}C:\program files (x86)\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe] => (Block) C:\program files (x86)\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe No File
FirewallRules: [TCP Query User{61729264-BA8C-4DE5-86EC-56EF3258AFDD}C:\program files (x86)\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe] => (Block) C:\program files (x86)\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe No File
FirewallRules: [UDP Query User{83C87C89-C00F-4384-8A98-F084BDB5D264}C:\program files (x86)\doom\doomx64.exe] => (Block) C:\program files (x86)\doom\doomx64.exe No File
FirewallRules: [TCP Query User{B29DD244-7095-46B0-AF76-ABFEA70B57F1}C:\program files (x86)\doom\doomx64.exe] => (Block) C:\program files (x86)\doom\doomx64.exe No File
FirewallRules: [{4E2D1B34-8342-41BF-AD58-F4334B9D855E}] => (Allow) C:\Program Files (x86)\Hide My IP 6\HideMyIpSrv.exe No File
FirewallRules: [{4D1104BD-34D4-4274-9B85-F3998EAE5E67}] => (Allow) C:\Program Files (x86)\Hide My IP 6\HideMyIP.exe No File
FirewallRules: [{AAAF2D74-2BB3-4F55-9C1F-97705F7B29B5}] => (Allow) C:\Program Files (x86)\Hide My IP 6\HideMyIpSrv.exe No File
FirewallRules: [{B1C73739-4D8C-400F-8A91-7401794EF67D}] => (Allow) C:\Program Files (x86)\Hide My IP 6\HideMyIP.exe No File
FirewallRules: [{D62D3488-A254-4940-9CA6-94E957941E79}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\Ereg\Ereg.exe No File
FirewallRules: [{9CDCC12E-B11E-49A5-ABA7-801B5A6874FC}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\Ereg\Ereg.exe No File
FirewallRules: [{DA1D815B-5D27-4B91-BAEF-7AF5533F69D3}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\bin\NuancePDF.exe No File
FirewallRules: [{0CC91A09-B0AF-43F7-92BA-1594792507DB}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\bin\NuancePDF.exe No File
FirewallRules: [{8799D3CC-8A46-4173-8927-616CB295796E}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\bin\NPDFCreate.exe No File
FirewallRules: [{60CA217C-6CE0-48EA-B112-AA213F40768B}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\bin\NPDFCreate.exe No File
FirewallRules: [{34C5F7AA-7642-439A-9D6B-9722F8D7774D}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\NPDFLM.exe No File
FirewallRules: [{ECBEEAA1-663B-443D-A271-D8D086983535}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\NPDFLM.exe No File
FirewallRules: [{5D05E521-5FE3-4C57-8616-C537718FB390}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\NPDFAssist.exe No File
FirewallRules: [{365BA54C-F37E-4B02-B41B-351A9BE0E131}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\NPDFAssist.exe No File
FirewallRules: [{E3A4A34B-BD62-46B6-959F-9C209D186A82}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe No File
FirewallRules: [{A96906AF-E1CB-431C-9D10-968A5408043C}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe No File
FirewallRules: [UDP Query User{5A353DFC-586A-4632-B1AC-47563BB4D50B}C:\mamp\bin\mysql\bin\mysqld.exe] => (Allow) C:\mamp\bin\mysql\bin\mysqld.exe No File
FirewallRules: [TCP Query User{31B9E634-1A8F-4919-AAB5-D373F260A783}C:\mamp\bin\mysql\bin\mysqld.exe] => (Allow) C:\mamp\bin\mysql\bin\mysqld.exe No File
FirewallRules: [UDP Query User{0C28EB59-855E-4F07-8136-722CBA7E8AA5}C:\mamp\bin\apache\bin\httpd.exe] => (Allow) C:\mamp\bin\apache\bin\httpd.exe No File
FirewallRules: [TCP Query User{D7973D4C-EDCD-4309-A96C-180DBF62A926}C:\mamp\bin\apache\bin\httpd.exe] => (Allow) C:\mamp\bin\apache\bin\httpd.exe No File
FirewallRules: [UDP Query User{20167511-22FE-44ED-818D-A91E80E64100}C:\wamp\bin\apache\apache2.4.18\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.18\bin\httpd.exe No File
FirewallRules: [TCP Query User{EEBAC0AA-5AFB-45AF-B3A4-AD7B8A59C002}C:\wamp\bin\apache\apache2.4.18\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.18\bin\httpd.exe No File
FirewallRules: [UDP Query User{226373F5-1F31-4F09-A3D1-80921CED2CC9}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe No File
FirewallRules: [TCP Query User{29F3B9F9-1CA1-4DE0-91CD-7086D23B7EB4}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe No File
FirewallRules: [UDP Query User{C101077D-85E7-4135-8C8E-94779633C65A}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe No File
FirewallRules: [TCP Query User{5E6FEBF5-1BA7-42FC-858A-EE858A4BB150}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe No File
FirewallRules: [{71A73371-422D-455A-908C-8F879DAF8CCC}] => (Allow) C:\Program Files (x86)\Microsoft Games\Zoo Tycoon 2\zt.exe No File
FirewallRules: [{F7297769-A0DE-4E27-A4A8-8BA43E2A67F1}] => (Allow) C:\Program Files (x86)\Microsoft Games\Zoo Tycoon 2\zt.exe No File
FirewallRules: [UDP Query User{83837711-DFF0-4A87-BEC0-849D1F6C79C3}F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\gsquicktimeserver\gsqtserver.exe] => (Block) F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\gsquicktimeserver\gsqtserver.exe No File
FirewallRules: [TCP Query User{EC662CF5-98FE-41AE-AE84-D793F51D699B}F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\gsquicktimeserver\gsqtserver.exe] => (Block) F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\gsquicktimeserver\gsqtserver.exe No File
FirewallRules: [UDP Query User{F0C5B864-092A-4D51-97DA-940595C607D6}F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\lp_xmlconverter.exe] => (Block) F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\lp_xmlconverter.exe No File
FirewallRules: [TCP Query User{7089AE1F-0022-4B63-975B-8B306E832670}F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\lp_xmlconverter.exe] => (Block) F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\lp_xmlconverter.exe No File
FirewallRules: [UDP Query User{057245DB-C943-4D59-AF05-A17FE058A616}F:\downloads\install\graphisoft\archicad\lp_xmlconverter.exe] => (Block) F:\downloads\install\graphisoft\archicad\lp_xmlconverter.exe No File
FirewallRules: [TCP Query User{4786C434-EBA2-45CF-A471-F8A8F736EAE9}F:\downloads\install\graphisoft\archicad\lp_xmlconverter.exe] => (Block) F:\downloads\install\graphisoft\archicad\lp_xmlconverter.exe No File
FirewallRules: [UDP Query User{058E23EB-A065-4F20-BAB0-9D6698C49DDB}F:\downloads\install\graphisoft\archicad\gsquicktimeserver\gsqtserver.exe] => (Block) F:\downloads\install\graphisoft\archicad\gsquicktimeserver\gsqtserver.exe No File
FirewallRules: [TCP Query User{C6CEDAFC-0612-46DC-B6C6-A500FC75AFD8}F:\downloads\install\graphisoft\archicad\gsquicktimeserver\gsqtserver.exe] => (Block) F:\downloads\install\graphisoft\archicad\gsquicktimeserver\gsqtserver.exe No File
FirewallRules: [UDP Query User{D17E3B9E-5735-4057-AF58-37DD025215DB}F:\downloads\install\graphisoft\archicad\archicad.exe] => (Block) F:\downloads\install\graphisoft\archicad\archicad.exe No File
FirewallRules: [TCP Query User{7A40E653-893A-434B-A9EB-EC631B57DD69}F:\downloads\install\graphisoft\archicad\archicad.exe] => (Block) F:\downloads\install\graphisoft\archicad\archicad.exe No File
FirewallRules: [UDP Query User{6528FDC9-AFBB-427B-B589-0E5E446560FC}C:\users\jind\downloads\archicad 16\archicad 16\gsquicktimeserver\gsqtserver.exe] => (Block) C:\users\jind\downloads\archicad 16\archicad 16\gsquicktimeserver\gsqtserver.exe No File
FirewallRules: [TCP Query User{0866DF3F-9305-4D9F-AA3E-47EF60827B95}C:\users\jind\downloads\archicad 16\archicad 16\gsquicktimeserver\gsqtserver.exe] => (Block) C:\users\jind\downloads\archicad 16\archicad 16\gsquicktimeserver\gsqtserver.exe No File
E:\Microsoft Toolkit.exe
E:\KMSAuto.exe
C:\Users\JIND\Documents\Ashampoo Burning Studio 16.0.2.13 Multilingual + Crack\Setup.exe

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
"HKU\S-1-5-21-3464826740-215856079-800623610-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\" => removed successfully
HKU\S-1-5-21-3464826740-215856079-800623610-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2970c98e-ca90-11e7-8cc1-6cf049ed4eb3} => removed successfully
HKLM\Software\Classes\CLSID\{2970c98e-ca90-11e7-8cc1-6cf049ed4eb3} => not found
HKU\S-1-5-21-3464826740-215856079-800623610-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{719e0e0a-c59e-11e5-abc5-6cf049ed4eb3} => removed successfully
HKLM\Software\Classes\CLSID\{719e0e0a-c59e-11e5-abc5-6cf049ed4eb3} => not found
HKU\S-1-5-21-3464826740-215856079-800623610-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9895d45f-4eee-11e8-93fa-6cf049ed4eb3} => removed successfully
HKLM\Software\Classes\CLSID\{9895d45f-4eee-11e8-93fa-6cf049ed4eb3} => not found
HKU\S-1-5-21-3464826740-215856079-800623610-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c809778d-c765-11e5-a6fb-6cf049ed4eb3} => removed successfully
HKLM\Software\Classes\CLSID\{c809778d-c765-11e5-a6fb-6cf049ed4eb3} => not found
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{503739d0-4c5e-4cfd-b3ba-d881334f0df2}" => removed successfully
HKLM\Software\Classes\CLSID\{503739d0-4c5e-4cfd-b3ba-d881334f0df2} => not found
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellServiceObjects\{59EFE487-E5B8-4fae-9D2C-FCDF0B70CE70}" => removed successfully
HKLM\Software\Classes\CLSID\{59EFE487-E5B8-4fae-9D2C-FCDF0B70CE70} => not found
"HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellServiceObjects\{59EFE487-E5B8-4fae-9D2C-FCDF0B70CE70}" => removed successfully
HKLM\Software\WOW6432Node\Classes\CLSID\{59EFE487-E5B8-4fae-9D2C-FCDF0B70CE70} => not found
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{13D67BB7-DB5F-48AA-884D-7A5D94168509} => removed successfully
HKLM\Software\Classes\CLSID\{13D67BB7-DB5F-48AA-884D-7A5D94168509} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{13D67BB7-DB5F-48AA-884D-7A5D94168509} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{13D67BB7-DB5F-48AA-884D-7A5D94168509} => not found
"HKU\S-1-5-21-3464826740-215856079-800623610-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{47833539-D0C5-4125-9FA8-0819E2EAAC93}" => removed successfully
HKLM\Software\Classes\CLSID\{47833539-D0C5-4125-9FA8-0819E2EAAC93} => not found
"HKU\S-1-5-21-3464826740-215856079-800623610-1001\Software\Mozilla\Firefox\Extensions\\acewebextension_unlisted@acestream.org" => removed successfully
HKLM\System\CurrentControlSet\Services\aspnet_state => removed successfully
aspnet_state => service removed successfully
C:\WINDOWS\isRS-000.tmp => moved successfully
C:\WINDOWS\System32\Tasks\{DA473040-2C25-4D06-AA0D-E2336E701AE1} => moved successfully
C:\WINDOWS\System32\Tasks\{A10801F5-4F4C-4539-B077-5BD883EC7563} => moved successfully
C:\WINDOWS\System32\Tasks\{9A98FFBE-A0F8-4E12-A7FD-1D7CFE7F2F13} => moved successfully
C:\WINDOWS\System32\Tasks\{6D4783F6-B3C0-4CAD-801F-DA3F33C1C093} => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\WINDOWS\System32\Tasks\AutoPico Daily Restart => moved successfully
C:\Users\JIND\AppData\Local\BIT6ED8.tmp => moved successfully
C:\Users\JIND\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
C:\Users\JIND\AppData\Local\{A23D1975-315E-4C1A-9632-447CDBC2FA57} => moved successfully
C:\Users\JIND\AppData\Local\Temp => moved successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets => removed successfully
HKLM\Software\Classes\CLSID\{6B9228DA-9C15-419e-856C-19E768A13BDC} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{07861B42-1B8C-4FB1-AAEF-32F8CA6E705C}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{07861B42-1B8C-4FB1-AAEF-32F8CA6E705C}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{134618E2-6A51-46D0-B411-DF17F819565C}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{134618E2-6A51-46D0-B411-DF17F819565C}" => removed successfully
"C:\WINDOWS\System32\Tasks\{DA473040-2C25-4D06-AA0D-E2336E701AE1}" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{DA473040-2C25-4D06-AA0D-E2336E701AE1}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1A6C122E-7044-46A5-BDA6-CFBCE3DCA516}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1A6C122E-7044-46A5-BDA6-CFBCE3DCA516}" => removed successfully
"C:\WINDOWS\System32\Tasks\{A10801F5-4F4C-4539-B077-5BD883EC7563}" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A10801F5-4F4C-4539-B077-5BD883EC7563}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{45A47705-54E7-4F0C-B0B2-48E655F51866}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{45A47705-54E7-4F0C-B0B2-48E655F51866}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6FB887FD-145E-4ACF-ACB8-4DD5B7D27302}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6FB887FD-145E-4ACF-ACB8-4DD5B7D27302}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{889AFD35-E748-43BF-BAC0-06A165D92BCD}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{889AFD35-E748-43BF-BAC0-06A165D92BCD}" => removed successfully
"C:\WINDOWS\System32\Tasks\AutoPico Daily Restart" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoPico Daily Restart" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{889FB762-8891-4B66-B3BD-8169DD6258DE}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{889FB762-8891-4B66-B3BD-8169DD6258DE}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully
C:\Program Files\KMSpico => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8DAC99D1-1D1C-4160-8324-F57DE5867DF3}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8DAC99D1-1D1C-4160-8324-F57DE5867DF3}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{970338C9-269F-4C98-954A-266C717B6DAC}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{970338C9-269F-4C98-954A-266C717B6DAC}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\FreeDownloadManagerNetworkMonitor" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BBF6B5D6-CED3-469E-8246-A4F8AF2E51E1}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BBF6B5D6-CED3-469E-8246-A4F8AF2E51E1}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C814A076-61AE-4FAC-B0CC-665BB47E4F78}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C814A076-61AE-4FAC-B0CC-665BB47E4F78}" => removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D3EF6F41-DE61-435C-ACEA-B58098B1732F}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D3EF6F41-DE61-435C-ACEA-B58098B1732F}" => removed successfully
"C:\WINDOWS\System32\Tasks\{9A98FFBE-A0F8-4E12-A7FD-1D7CFE7F2F13}" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{9A98FFBE-A0F8-4E12-A7FD-1D7CFE7F2F13}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DD99E581-B648-4D2E-AA5D-3974FAA13049}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DD99E581-B648-4D2E-AA5D-3974FAA13049}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F8D5C9D9-A8B5-4462-A2AA-50C7205955CF}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F8D5C9D9-A8B5-4462-A2AA-50C7205955CF}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully
C:\ProgramData\TEMP => ":0888F409" ADS removed successfully
C:\ProgramData\TEMP => ":3440EB47" ADS removed successfully
C:\ProgramData\TEMP => ":66633281" ADS removed successfully
C:\ProgramData\TEMP => ":93433455" ADS removed successfully
C:\ProgramData\TEMP => ":A1EDB939" ADS removed successfully
C:\ProgramData\TEMP => ":F9CFE070" ADS removed successfully
C:\Users\JIND\Desktop\Knihy => ":com.dropbox.attributes" ADS removed successfully
C:\Users\JIND\Downloads\busines_1_1.pdf => ":com.dropbox.attributes" ADS removed successfully
C:\Users\JIND\Downloads\DPTX_2009_2__0_286963_0_87071.pdf => ":com.dropbox.attributes" ADS removed successfully
"C:\Users\JIND\Documents\130725 podkladov� list.xls" => ":com.dropbox.attributes" ADS not found.
"C:\Users\JIND\Documents\2016-08 DSP Tou�ice" => ":com.dropbox.attributes" ADS not found.
C:\Users\JIND\Documents\99kniha_ing._v.budil_1890_1979.pdf => ":com.dropbox.attributes" ADS removed successfully
"C:\Users\JIND\Documents\AES_Hodnoceni_UEII Chlum u T�ebon� 12.xls" => ":com.dropbox.attributes" ADS not found.
C:\Users\JIND\Documents\architektura-web.pdf => ":com.dropbox.attributes" ADS removed successfully
"C:\Users\JIND\Documents\CN EP DSP �t�p�novsko �. p. 86; objekt ob�ansk� vybavenosti.docx" => ":com.dropbox.attributes" ADS not found.
C:\Users\JIND\Documents\copy.docx => ":com.dropbox.attributes" ADS removed successfully
C:\Users\JIND\Documents\DPFDP5-8710290963-20160319-091851.pdf => ":com.dropbox.attributes" ADS removed successfully
"C:\Users\JIND\Documents\EP 2017-05-31 COOP Chlum u T�ebon�.docx" => ":com.dropbox.attributes" ADS not found.
C:\Users\JIND\Documents\IL EA EP.docx => ":com.dropbox.attributes" ADS removed successfully
C:\Users\JIND\Documents\KRNAP2010_Architektura_CZKomplet_www.pdf => ":com.dropbox.attributes" ADS removed successfully
"C:\Users\JIND\Documents\OBJ SIGREEN BD Ponikl� 300 a 301.pdf" => ":com.dropbox.attributes" ADS not found.
"C:\Users\JIND\Documents\Orienta�n� rozpo�et stavebn�ch �prav - kopie.xlsx" => ":com.dropbox.attributes" ADS not found.
"C:\Users\JIND\Documents\Orienta�n� rozpo�et stavebn�ch �prav - kopie.xlsx" => ":com.dropbox.attrs" ADS not found.
C:\Users\JIND\Documents\PhD Admissions Officer.docx => ":com.dropbox.attributes" ADS removed successfully
"C:\Users\JIND\Documents\SIGREEN Objedn�vka VZOR.docx" => ":com.dropbox.attributes" ADS not found.
C:\Users\JIND\Documents\The Summary of the chapter nine.docx => ":com.dropbox.attributes" ADS removed successfully
C:\Users\JIND\Documents\Vizitky => ":com.dropbox.attributes" ADS removed successfully
"C:\Users\JIND\Documents\vypocty � kopie.xlsx" => ":com.dropbox.attributes" ADS not found.
C:\Users\JIND\Documents\Web => ":com.dropbox.attributes" ADS removed successfully
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File) => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{456E655F-7C16-4A68-926A-FE5CEA57DDA7}C:\program files (x86)\outlast 2\binaries\win64\outlast2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C551907F-65C9-4004-988F-12BEBE53905B}C:\program files (x86)\outlast 2\binaries\win64\outlast2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C00B1252-44C2-40BE-A1C6-0E201207835C}C:\games\torment - tides of numenera\tidesofnumenera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2F659D35-18BC-4B80-B7DF-DB6BB8A3CBCC}C:\games\torment - tides of numenera\tidesofnumenera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{2A6E58BD-4EB6-439A-BE07-28D1A842CC4D}C:\games\torment - tides of numenera\tidesofnumenera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B597463C-CD3A-474E-8D91-54F7EC8D4F62}C:\games\torment - tides of numenera\tidesofnumenera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EB223C16-AEA3-400A-ABB5-A8AB404E32D6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9BE3D067-2CA2-45A9-B083-76FDB93AD42F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{122DC92A-EC8F-467A-AACC-923F4EA5839E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F2B9F725-7D7C-4473-AA50-B2684A487D93}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CC8B87DC-8B69-4FC7-862B-89D8F8B77000}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1176AFCE-0526-4F2D-B90D-EA7ACC9DA3F6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2EF76D14-3DAA-4177-B087-ED482E67E073}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DC8D616D-A4A3-4AD4-AC38-CB8185BCD776}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7FFEC92D-5059-4235-8478-95AEF69F8EAA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C5506C96-91A8-4EFF-ABE7-3B6EFEACDB03}C:\program files (x86)\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{61729264-BA8C-4DE5-86EC-56EF3258AFDD}C:\program files (x86)\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{83C87C89-C00F-4384-8A98-F084BDB5D264}C:\program files (x86)\doom\doomx64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B29DD244-7095-46B0-AF76-ABFEA70B57F1}C:\program files (x86)\doom\doomx64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4E2D1B34-8342-41BF-AD58-F4334B9D855E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4D1104BD-34D4-4274-9B85-F3998EAE5E67}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AAAF2D74-2BB3-4F55-9C1F-97705F7B29B5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B1C73739-4D8C-400F-8A91-7401794EF67D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D62D3488-A254-4940-9CA6-94E957941E79}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9CDCC12E-B11E-49A5-ABA7-801B5A6874FC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DA1D815B-5D27-4B91-BAEF-7AF5533F69D3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0CC91A09-B0AF-43F7-92BA-1594792507DB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8799D3CC-8A46-4173-8927-616CB295796E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{60CA217C-6CE0-48EA-B112-AA213F40768B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{34C5F7AA-7642-439A-9D6B-9722F8D7774D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ECBEEAA1-663B-443D-A271-D8D086983535}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5D05E521-5FE3-4C57-8616-C537718FB390}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{365BA54C-F37E-4B02-B41B-351A9BE0E131}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E3A4A34B-BD62-46B6-959F-9C209D186A82}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A96906AF-E1CB-431C-9D10-968A5408043C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5A353DFC-586A-4632-B1AC-47563BB4D50B}C:\mamp\bin\mysql\bin\mysqld.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{31B9E634-1A8F-4919-AAB5-D373F260A783}C:\mamp\bin\mysql\bin\mysqld.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0C28EB59-855E-4F07-8136-722CBA7E8AA5}C:\mamp\bin\apache\bin\httpd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D7973D4C-EDCD-4309-A96C-180DBF62A926}C:\mamp\bin\apache\bin\httpd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{20167511-22FE-44ED-818D-A91E80E64100}C:\wamp\bin\apache\apache2.4.18\bin\httpd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{EEBAC0AA-5AFB-45AF-B3A4-AD7B8A59C002}C:\wamp\bin\apache\apache2.4.18\bin\httpd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{226373F5-1F31-4F09-A3D1-80921CED2CC9}C:\xampp\mysql\bin\mysqld.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{29F3B9F9-1CA1-4DE0-91CD-7086D23B7EB4}C:\xampp\mysql\bin\mysqld.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C101077D-85E7-4135-8C8E-94779633C65A}C:\xampp\apache\bin\httpd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5E6FEBF5-1BA7-42FC-858A-EE858A4BB150}C:\xampp\apache\bin\httpd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{71A73371-422D-455A-908C-8F879DAF8CCC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F7297769-A0DE-4E27-A4A8-8BA43E2A67F1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{83837711-DFF0-4A87-BEC0-849D1F6C79C3}F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\gsquicktimeserver\gsqtserver.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{EC662CF5-98FE-41AE-AE84-D793F51D699B}F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\gsquicktimeserver\gsqtserver.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F0C5B864-092A-4D51-97DA-940595C607D6}F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\lp_xmlconverter.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7089AE1F-0022-4B63-975B-8B306E832670}F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\lp_xmlconverter.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{057245DB-C943-4D59-AF05-A17FE058A616}F:\downloads\install\graphisoft\archicad\lp_xmlconverter.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4786C434-EBA2-45CF-A471-F8A8F736EAE9}F:\downloads\install\graphisoft\archicad\lp_xmlconverter.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{058E23EB-A065-4F20-BAB0-9D6698C49DDB}F:\downloads\install\graphisoft\archicad\gsquicktimeserver\gsqtserver.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C6CEDAFC-0612-46DC-B6C6-A500FC75AFD8}F:\downloads\install\graphisoft\archicad\gsquicktimeserver\gsqtserver.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D17E3B9E-5735-4057-AF58-37DD025215DB}F:\downloads\install\graphisoft\archicad\archicad.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7A40E653-893A-434B-A9EB-EC631B57DD69}F:\downloads\install\graphisoft\archicad\archicad.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6528FDC9-AFBB-427B-B589-0E5E446560FC}C:\users\jind\downloads\archicad 16\archicad 16\gsquicktimeserver\gsqtserver.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0866DF3F-9305-4D9F-AA3E-47EF60827B95}C:\users\jind\downloads\archicad 16\archicad 16\gsquicktimeserver\gsqtserver.exe" => removed successfully
"E:\Microsoft Toolkit.exe" => not found
"E:\KMSAuto.exe" => not found
"C:\Users\JIND\Documents\Ashampoo Burning Studio 16.0.2.13 Multilingual + Crack\Setup.exe" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 127806698 B
Java, Flash, Steam htmlcache => 6844782 B
Windows/system/drivers => 4446361 B
Edge => 8780153 B
Chrome => 472892154 B
Firefox => 81591328 B
Opera => 661365092 B

Temp, IE cache, history, cookies, recent:
Default => 33058 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 23028822 B
systemprofile32 => 111305973 B
LocalService => 67354 B
LocalService => 0 B
NetworkService => 159126 B
NetworkService => 0 B
JIND => 28319319 B

RecycleBin => 0 B
EmptyTemp: => 1.4 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:00:10 ====

Rudy píše:Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\Policies\Explorer: []
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {2970c98e-ca90-11e7-8cc1-6cf049ed4eb3} - "E:\iLinker.exe"
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {719e0e0a-c59e-11e5-abc5-6cf049ed4eb3} - "F:\OInstall.exe"
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {9895d45f-4eee-11e8-93fa-6cf049ed4eb3} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\MountPoints2: {c809778d-c765-11e5-a6fb-6cf049ed4eb3} - "E:\AUTORUN.EXE"
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
ShellServiceObjects: No Name -> {59EFE487-E5B8-4fae-9D2C-FCDF0B70CE70} =>
ShellServiceObjects-x32: No Name -> {59EFE487-E5B8-4fae-9D2C-FCDF0B70CE70} =>
GroupPolicy: Restriction ? <==== ATTENTION
BHO: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO-x32: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
Toolbar: HKU\S-1-5-21-3464826740-215856079-800623610-1001 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
FF HKU\S-1-5-21-3464826740-215856079-800623610-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\JIND\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
U3 aspnet_state; no ImagePath
C:\WINDOWS\isRS-000.tmp
C:\WINDOWS\System32\Tasks\{DA473040-2C25-4D06-AA0D-E2336E701AE1}
C:\WINDOWS\System32\Tasks\{A10801F5-4F4C-4539-B077-5BD883EC7563}
C:\WINDOWS\System32\Tasks\{9A98FFBE-A0F8-4E12-A7FD-1D7CFE7F2F13}
C:\WINDOWS\System32\Tasks\{6D4783F6-B3C0-4CAD-801F-DA3F33C1C093}
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\AutoPico Daily Restart
C:\Users\JIND\AppData\Local\BIT6ED8.tmp
C:\Users\JIND\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\JIND\AppData\Local\{A23D1975-315E-4C1A-9632-447CDBC2FA57}
C:\Users\JIND\AppData\Local\Temp
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
Task: {07861B42-1B8C-4FB1-AAEF-32F8CA6E705C} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {134618E2-6A51-46D0-B411-DF17F819565C} - System32\Tasks\{DA473040-2C25-4D06-AA0D-E2336E701AE1} => C:\Windows\system32\pcalua.exe -a F:\autorun.exe -d F:\
Task: {1A6C122E-7044-46A5-BDA6-CFBCE3DCA516} - System32\Tasks\{A10801F5-4F4C-4539-B077-5BD883EC7563} => C:\Windows\system32\pcalua.exe -a F:\setup.exe -d F:\
Task: {45A47705-54E7-4F0C-B0B2-48E655F51866} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {6FB887FD-145E-4ACF-ACB8-4DD5B7D27302} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {889AFD35-E748-43BF-BAC0-06A165D92BCD} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Task: {889FB762-8891-4B66-B3BD-8169DD6258DE} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
C:\Program Files\KMSpico
Task: {8DAC99D1-1D1C-4160-8324-F57DE5867DF3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-25] (Google Inc.)
Task: {970338C9-269F-4C98-954A-266C717B6DAC} - \FreeDownloadManagerNetworkMonitor -> No File <==== ATTENTION
Task: {BBF6B5D6-CED3-469E-8246-A4F8AF2E51E1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {C814A076-61AE-4FAC-B0CC-665BB47E4F78} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-25] (Google Inc.)
Task: {D3EF6F41-DE61-435C-ACEA-B58098B1732F} - System32\Tasks\{9A98FFBE-A0F8-4E12-A7FD-1D7CFE7F2F13} => F:\setup.exe
Task: {DD99E581-B648-4D2E-AA5D-3974FAA13049} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {F8D5C9D9-A8B5-4462-A2AA-50C7205955CF} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:0888F409 [286]
AlternateDataStreams: C:\ProgramData\TEMP:3440EB47 [938]
AlternateDataStreams: C:\ProgramData\TEMP:66633281 [135]
AlternateDataStreams: C:\ProgramData\TEMP:93433455 [403]
AlternateDataStreams: C:\ProgramData\TEMP:A1EDB939 [116]
AlternateDataStreams: C:\ProgramData\TEMP:F9CFE070 [176]
AlternateDataStreams: C:\Users\JIND\Desktop\Knihy:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Downloads\busines_1_1.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Downloads\DPTX_2009_2__0_286963_0_87071.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\130725 podkladový list.xls:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\2016-08 DSP Toušice:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\99kniha_ing._v.budil_1890_1979.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\AES_Hodnoceni_UEII Chlum u Třeboně 12.xls:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\architektura-web.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\CN EP DSP Štěpánovsko č. p. 86; objekt občanské vybavenosti.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\copy.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\DPFDP5-8710290963-20160319-091851.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\EP 2017-05-31 COOP Chlum u Třeboně.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\IL EA EP.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\KRNAP2010_Architektura_CZKomplet_www.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\OBJ SIGREEN BD Poniklá 300 a 301.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\Orientační rozpočet stavebních úprav - kopie.xlsx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\Orientační rozpočet stavebních úprav - kopie.xlsx:com.dropbox.attrs [58]
AlternateDataStreams: C:\Users\JIND\Documents\PhD Admissions Officer.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\SIGREEN Objednávka VZOR.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\The Summary of the chapter nine.docx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\Vizitky:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\vypocty – kopie.xlsx:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\JIND\Documents\Web:com.dropbox.attributes [168]
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [UDP Query User{456E655F-7C16-4A68-926A-FE5CEA57DDA7}C:\program files (x86)\outlast 2\binaries\win64\outlast2.exe] => (Block) C:\program files (x86)\outlast 2\binaries\win64\outlast2.exe No File
FirewallRules: [TCP Query User{C551907F-65C9-4004-988F-12BEBE53905B}C:\program files (x86)\outlast 2\binaries\win64\outlast2.exe] => (Block) C:\program files (x86)\outlast 2\binaries\win64\outlast2.exe No File
FirewallRules: [UDP Query User{C00B1252-44C2-40BE-A1C6-0E201207835C}C:\games\torment - tides of numenera\tidesofnumenera.exe] => (Block) C:\games\torment - tides of numenera\tidesofnumenera.exe No File
FirewallRules: [TCP Query User{2F659D35-18BC-4B80-B7DF-DB6BB8A3CBCC}C:\games\torment - tides of numenera\tidesofnumenera.exe] => (Block) C:\games\torment - tides of numenera\tidesofnumenera.exe No File
FirewallRules: [UDP Query User{2A6E58BD-4EB6-439A-BE07-28D1A842CC4D}C:\games\torment - tides of numenera\tidesofnumenera.exe] => (Block) C:\games\torment - tides of numenera\tidesofnumenera.exe No File
FirewallRules: [TCP Query User{B597463C-CD3A-474E-8D91-54F7EC8D4F62}C:\games\torment - tides of numenera\tidesofnumenera.exe] => (Block) C:\games\torment - tides of numenera\tidesofnumenera.exe No File
FirewallRules: [{EB223C16-AEA3-400A-ABB5-A8AB404E32D6}] => (Block) %ProgramFiles%\Adobe\Adobe Illustrator CC 2015\Support Files\Contents\Windows\Illustrator.exe No File
FirewallRules: [{9BE3D067-2CA2-45A9-B083-76FDB93AD42F}] => (Allow) C:\ppa-nv-e-14164_400\System64\Ereg\Ereg.exe No File
FirewallRules: [{122DC92A-EC8F-467A-AACC-923F4EA5839E}] => (Allow) C:\ppa-nv-e-14164_400\System64\Ereg\Ereg.exe No File
FirewallRules: [{F2B9F725-7D7C-4473-AA50-B2684A487D93}] => (Allow) C:\ppa-nv-e-14164_400\System64\bin\NuancePDF.exe No File
FirewallRules: [{CC8B87DC-8B69-4FC7-862B-89D8F8B77000}] => (Allow) C:\ppa-nv-e-14164_400\System64\bin\NuancePDF.exe No File
FirewallRules: [{1176AFCE-0526-4F2D-B90D-EA7ACC9DA3F6}] => (Allow) C:\ppa-nv-e-14164_400\System64\bin\NPDFCreate.exe No File
FirewallRules: [{2EF76D14-3DAA-4177-B087-ED482E67E073}] => (Allow) C:\ppa-nv-e-14164_400\System64\bin\NPDFCreate.exe No File
FirewallRules: [{DC8D616D-A4A3-4AD4-AC38-CB8185BCD776}] => (Allow) C:\ppa-nv-e-14164_400\System64\NPDFLM.exe No File
FirewallRules: [{7FFEC92D-5059-4235-8478-95AEF69F8EAA}] => (Allow) C:\ppa-nv-e-14164_400\System64\NPDFLM.exe No File
FirewallRules: [UDP Query User{C5506C96-91A8-4EFF-ABE7-3B6EFEACDB03}C:\program files (x86)\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe] => (Block) C:\program files (x86)\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe No File
FirewallRules: [TCP Query User{61729264-BA8C-4DE5-86EC-56EF3258AFDD}C:\program files (x86)\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe] => (Block) C:\program files (x86)\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe No File
FirewallRules: [UDP Query User{83C87C89-C00F-4384-8A98-F084BDB5D264}C:\program files (x86)\doom\doomx64.exe] => (Block) C:\program files (x86)\doom\doomx64.exe No File
FirewallRules: [TCP Query User{B29DD244-7095-46B0-AF76-ABFEA70B57F1}C:\program files (x86)\doom\doomx64.exe] => (Block) C:\program files (x86)\doom\doomx64.exe No File
FirewallRules: [{4E2D1B34-8342-41BF-AD58-F4334B9D855E}] => (Allow) C:\Program Files (x86)\Hide My IP 6\HideMyIpSrv.exe No File
FirewallRules: [{4D1104BD-34D4-4274-9B85-F3998EAE5E67}] => (Allow) C:\Program Files (x86)\Hide My IP 6\HideMyIP.exe No File
FirewallRules: [{AAAF2D74-2BB3-4F55-9C1F-97705F7B29B5}] => (Allow) C:\Program Files (x86)\Hide My IP 6\HideMyIpSrv.exe No File
FirewallRules: [{B1C73739-4D8C-400F-8A91-7401794EF67D}] => (Allow) C:\Program Files (x86)\Hide My IP 6\HideMyIP.exe No File
FirewallRules: [{D62D3488-A254-4940-9CA6-94E957941E79}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\Ereg\Ereg.exe No File
FirewallRules: [{9CDCC12E-B11E-49A5-ABA7-801B5A6874FC}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\Ereg\Ereg.exe No File
FirewallRules: [{DA1D815B-5D27-4B91-BAEF-7AF5533F69D3}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\bin\NuancePDF.exe No File
FirewallRules: [{0CC91A09-B0AF-43F7-92BA-1594792507DB}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\bin\NuancePDF.exe No File
FirewallRules: [{8799D3CC-8A46-4173-8927-616CB295796E}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\bin\NPDFCreate.exe No File
FirewallRules: [{60CA217C-6CE0-48EA-B112-AA213F40768B}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\bin\NPDFCreate.exe No File
FirewallRules: [{34C5F7AA-7642-439A-9D6B-9722F8D7774D}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\NPDFLM.exe No File
FirewallRules: [{ECBEEAA1-663B-443D-A271-D8D086983535}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\NPDFLM.exe No File
FirewallRules: [{5D05E521-5FE3-4C57-8616-C537718FB390}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\NPDFAssist.exe No File
FirewallRules: [{365BA54C-F37E-4B02-B41B-351A9BE0E131}] => (Allow) C:\Program Files (x86)\Nuance\Power PDF\NPDFAssist.exe No File
FirewallRules: [{E3A4A34B-BD62-46B6-959F-9C209D186A82}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe No File
FirewallRules: [{A96906AF-E1CB-431C-9D10-968A5408043C}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe No File
FirewallRules: [UDP Query User{5A353DFC-586A-4632-B1AC-47563BB4D50B}C:\mamp\bin\mysql\bin\mysqld.exe] => (Allow) C:\mamp\bin\mysql\bin\mysqld.exe No File
FirewallRules: [TCP Query User{31B9E634-1A8F-4919-AAB5-D373F260A783}C:\mamp\bin\mysql\bin\mysqld.exe] => (Allow) C:\mamp\bin\mysql\bin\mysqld.exe No File
FirewallRules: [UDP Query User{0C28EB59-855E-4F07-8136-722CBA7E8AA5}C:\mamp\bin\apache\bin\httpd.exe] => (Allow) C:\mamp\bin\apache\bin\httpd.exe No File
FirewallRules: [TCP Query User{D7973D4C-EDCD-4309-A96C-180DBF62A926}C:\mamp\bin\apache\bin\httpd.exe] => (Allow) C:\mamp\bin\apache\bin\httpd.exe No File
FirewallRules: [UDP Query User{20167511-22FE-44ED-818D-A91E80E64100}C:\wamp\bin\apache\apache2.4.18\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.18\bin\httpd.exe No File
FirewallRules: [TCP Query User{EEBAC0AA-5AFB-45AF-B3A4-AD7B8A59C002}C:\wamp\bin\apache\apache2.4.18\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.18\bin\httpd.exe No File
FirewallRules: [UDP Query User{226373F5-1F31-4F09-A3D1-80921CED2CC9}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe No File
FirewallRules: [TCP Query User{29F3B9F9-1CA1-4DE0-91CD-7086D23B7EB4}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe No File
FirewallRules: [UDP Query User{C101077D-85E7-4135-8C8E-94779633C65A}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe No File
FirewallRules: [TCP Query User{5E6FEBF5-1BA7-42FC-858A-EE858A4BB150}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe No File
FirewallRules: [{71A73371-422D-455A-908C-8F879DAF8CCC}] => (Allow) C:\Program Files (x86)\Microsoft Games\Zoo Tycoon 2\zt.exe No File
FirewallRules: [{F7297769-A0DE-4E27-A4A8-8BA43E2A67F1}] => (Allow) C:\Program Files (x86)\Microsoft Games\Zoo Tycoon 2\zt.exe No File
FirewallRules: [UDP Query User{83837711-DFF0-4A87-BEC0-849D1F6C79C3}F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\gsquicktimeserver\gsqtserver.exe] => (Block) F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\gsquicktimeserver\gsqtserver.exe No File
FirewallRules: [TCP Query User{EC662CF5-98FE-41AE-AE84-D793F51D699B}F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\gsquicktimeserver\gsqtserver.exe] => (Block) F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\gsquicktimeserver\gsqtserver.exe No File
FirewallRules: [UDP Query User{F0C5B864-092A-4D51-97DA-940595C607D6}F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\lp_xmlconverter.exe] => (Block) F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\lp_xmlconverter.exe No File
FirewallRules: [TCP Query User{7089AE1F-0022-4B63-975B-8B306E832670}F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\lp_xmlconverter.exe] => (Block) F:\downloads\install\graphisoft\archicad\previouslp_xmlconverter\lp_xmlconverter.exe No File
FirewallRules: [UDP Query User{057245DB-C943-4D59-AF05-A17FE058A616}F:\downloads\install\graphisoft\archicad\lp_xmlconverter.exe] => (Block) F:\downloads\install\graphisoft\archicad\lp_xmlconverter.exe No File
FirewallRules: [TCP Query User{4786C434-EBA2-45CF-A471-F8A8F736EAE9}F:\downloads\install\graphisoft\archicad\lp_xmlconverter.exe] => (Block) F:\downloads\install\graphisoft\archicad\lp_xmlconverter.exe No File
FirewallRules: [UDP Query User{058E23EB-A065-4F20-BAB0-9D6698C49DDB}F:\downloads\install\graphisoft\archicad\gsquicktimeserver\gsqtserver.exe] => (Block) F:\downloads\install\graphisoft\archicad\gsquicktimeserver\gsqtserver.exe No File
FirewallRules: [TCP Query User{C6CEDAFC-0612-46DC-B6C6-A500FC75AFD8}F:\downloads\install\graphisoft\archicad\gsquicktimeserver\gsqtserver.exe] => (Block) F:\downloads\install\graphisoft\archicad\gsquicktimeserver\gsqtserver.exe No File
FirewallRules: [UDP Query User{D17E3B9E-5735-4057-AF58-37DD025215DB}F:\downloads\install\graphisoft\archicad\archicad.exe] => (Block) F:\downloads\install\graphisoft\archicad\archicad.exe No File
FirewallRules: [TCP Query User{7A40E653-893A-434B-A9EB-EC631B57DD69}F:\downloads\install\graphisoft\archicad\archicad.exe] => (Block) F:\downloads\install\graphisoft\archicad\archicad.exe No File
FirewallRules: [UDP Query User{6528FDC9-AFBB-427B-B589-0E5E446560FC}C:\users\jind\downloads\archicad 16\archicad 16\gsquicktimeserver\gsqtserver.exe] => (Block) C:\users\jind\downloads\archicad 16\archicad 16\gsquicktimeserver\gsqtserver.exe No File
FirewallRules: [TCP Query User{0866DF3F-9305-4D9F-AA3E-47EF60827B95}C:\users\jind\downloads\archicad 16\archicad 16\gsquicktimeserver\gsqtserver.exe] => (Block) C:\users\jind\downloads\archicad 16\archicad 16\gsquicktimeserver\gsqtserver.exe No File
E:\Microsoft Toolkit.exe
E:\KMSAuto.exe
C:\Users\JIND\Documents\Ashampoo Burning Studio 16.0.2.13 Multilingual + Crack\Setup.exe

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: HDD využití 100% po startu

#8 Příspěvek od Rudy »

OK. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

alesco3
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 13 led 2019 10:27

Re: HDD využití 100% po startu

#9 Příspěvek od alesco3 »

Disk už nejede většinu času na 100 %, ale pořád je dost vytížen. Některé aplikace přestaly fungovat, tak budou muset jít na reinstal.

Zatím děkuji. Případně také za nějaké další tipy.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: HDD využití 100% po startu

#10 Příspěvek od Rudy »

Na zkoušku vypněte aut. aktualizace systému, příp. přeinstalujte antivir.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět