Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

FRST log - prosím o kontrolu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
respectOP
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 48
Registrován: 29 črc 2011 08:46

FRST log - prosím o kontrolu

#1 Příspěvek od respectOP »

Ahoj, prosím o kontrolu, díky moc ;)


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-06-2017
Ran by brezo (administrator) on HONZA-PC (11-06-2017 18:41:45)
Running from C:\Users\brezo\Desktop
Loaded Profiles: brezo (Available Profiles: brezo & barus)
Platform: Windows 10 Home Version 1703 (X64) Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Adobe Systems Incorporated) E:\Adobe Premiere Elements\Elements 14 Organizer\PhotoshopElementsFileAgent.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Spotify Ltd) C:\Users\brezo\AppData\Roaming\Spotify\SpotifyWebHelper.exe
() C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_10.1705.1452.0_x64__8wekyb3d8bbwe\Time.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(HP Inc.) C:\Program Files\HP\HP DeskJet 4530 series\Bin\HPNetworkCommunicatorCom.exe
(HP Inc.) C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe
(Microsoft Corporation) C:\Windows\HelpPane.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17042.14211.0_x64__8wekyb3d8bbwe\Video.UI.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17042.14111.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.8241.57621.0_x64__8wekyb3d8bbwe\onenoteim.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.17.420.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft) C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.17.420.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8218.40507.0_x64__8wekyb3d8bbwe\HxMail.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8218.40507.0_x64__8wekyb3d8bbwe\HxTsr.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1705.1522.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3348712 2015-06-22] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-07-29] (Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-05-12] (AVAST Software)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKU\S-1-5-21-2276432762-4204623625-4278120621-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-07-29] (Disc Soft Ltd)
HKU\S-1-5-21-2276432762-4204623625-4278120621-1001\...\Run: [Spotify Web Helper] => C:\Users\brezo\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1560176 2017-05-23] (Spotify Ltd)
HKU\S-1-5-21-2276432762-4204623625-4278120621-1001\...\Run: [Bloody2] => C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe [19405824 2017-04-14] ()
HKU\S-1-5-21-2276432762-4204623625-4278120621-1001\...\Run: [HP DeskJet 4530 series (NET)] => C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe [3770504 2017-04-06] (HP Inc.)
HKU\S-1-5-21-2276432762-4204623625-4278120621-1001\...\RunOnce: [Uninstall 17.3.6816.0313\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\brezo\AppData\Local\Microsoft\OneDrive\17.3.6816.0313\amd64"
HKU\S-1-5-21-2276432762-4204623625-4278120621-1001\...\RunOnce: [Uninstall 17.3.6816.0313] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\brezo\AppData\Local\Microsoft\OneDrive\17.3.6816.0313"
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-12] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-12] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1 10.0.0.10
Tcpip\..\Interfaces\{8a1d9fff-607c-4c2e-a8ac-6e03e1e35bb7}: [DhcpNameServer] 10.0.0.1 10.0.0.10
Tcpip\..\Interfaces\{e39807c0-9842-4741-965c-2972b72d3136}: [DhcpNameServer] 10.0.0.1 10.0.0.10

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-2276432762-4204623625-4278120621-1001 -> DefaultScope {96E4AA81-1834-4958-985A-5FD1A57E206F} URL = hxxps://www.google.com/search?q={searchTerms}&s ... utEncoding?}
SearchScopes: HKU\S-1-5-21-2276432762-4204623625-4278120621-1001 -> {96E4AA81-1834-4958-985A-5FD1A57E206F} URL = hxxps://www.google.com/search?q={searchTerms}&s ... utEncoding?}
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2017-05-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-05-12] (Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2017-05-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-12] (Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_182.dll [2016-03-13] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-05-28] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_182.dll [2016-03-13] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-12] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2017-05-28] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2276432762-4204623625-4278120621-1001: @hola.org/FlashPlayer -> C:\Users\brezo\AppData\Local\Hola\firefox_hola\app\flash\NPSWF32_18_0_0_232.dll [2016-01-27] ()
FF Plugin HKU\S-1-5-21-2276432762-4204623625-4278120621-1001: @hola.org/vlc -> C:\Users\brezo\AppData\Local\Hola\firefox_hola\app\vlc\npvlc.dll [2016-01-27] (Hola)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default [2017-06-11]
CHR Extension: (Překladač Google) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2016-01-27]
CHR Extension: (Prezentace Google) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-01]
CHR Extension: (Dokumenty Google) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-02]
CHR Extension: (Disk Google) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-02]
CHR Extension: (YouTube) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-02]
CHR Extension: (Vyhledávání Google) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-02]
CHR Extension: (Adobe Acrobat) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-10]
CHR Extension: (Feedly Notifier) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\egikgfbhipinieabdmcpigejkaomgjgb [2017-06-07]
CHR Extension: (Avast Passwords) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2017-04-03]
CHR Extension: (Avast SafePrice) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-05-31]
CHR Extension: (Dokumenty Google offline) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-21]
CHR Extension: (AdBlock) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-15]
CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2017-06-05]
CHR Extension: (Avast Online Security) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-06-07]
CHR Extension: (Grammarly for Chrome) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2017-06-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-10]
CHR Extension: (Gmail) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-02]
CHR Extension: (Chrome Media Router) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-12]
CHR Profile: C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-05-19]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeActiveFileMonitor14.0; E:\Adobe Premiere Elements\Elements 14 Organizer\PhotoshopElementsFileAgent.exe [226016 2015-12-07] (Adobe Systems Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7346208 2017-05-12] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-05-12] (AVAST Software)
R2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [2278152 2015-07-16] (Broadcom Corporation.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1860616 2016-07-17] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3971264 2017-05-14] (Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-07-29] (Disc Soft Ltd)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2016-11-30] (Intel Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-05-03] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-05-03] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-18] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-05-18] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
S2 NvStreamSvc; "C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [311808 2017-05-12] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [190256 2017-05-12] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [334576 2017-05-12] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [49016 2017-05-12] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [38296 2017-05-12] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [32600 2017-05-12] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [128648 2017-05-12] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [101152 2017-05-12] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [75704 2017-05-12] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [1007160 2017-05-12] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [569192 2017-05-12] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [158880 2017-05-12] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [339696 2017-05-12] (AVAST Software)
S2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [303616 2017-03-02] () [File not signed]
R3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [199472 2015-07-16] (Broadcom Corporation.)
R3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [7585280 2017-03-18] (Broadcom Corporation)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-08-17] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-08-17] (Disc Soft Ltd)
S2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [35328 2017-03-02] () [File not signed]
R2 npf; C:\Windows\system32\drivers\npf.sys [36600 2015-10-12] (Riverbed Technology, Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_8892f62aa9f69fbe\nvlddmkm.sys [14458264 2017-05-19] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-05-03] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-05-03] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-05-18] (NVIDIA Corporation)
R0 PxHlpa64; C:\WINDOWS\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
S3 WinDivert1.1; C:\WINDOWS\files\bin\x64WDV\WinDivert.sys [35376 2013-12-03] (Basil Projects)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-11 18:41 - 2017-06-11 18:41 - 00022822 _____ C:\Users\brezo\Desktop\FRST.txt
2017-06-11 18:41 - 2017-06-11 18:41 - 00000000 ____D C:\FRST
2017-06-11 18:38 - 2017-06-11 18:38 - 02438656 _____ (Farbar) C:\Users\brezo\Desktop\FRST64.exe
2017-06-10 14:00 - 2017-06-10 14:00 - 00089589 _____ C:\Users\brezo\Desktop\119-106-494_INC_Notice of Refund_20170609.pdf
2017-06-09 09:32 - 2017-06-09 09:32 - 00061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys.149699352428101
2017-06-08 11:10 - 2017-06-08 11:10 - 00000000 ___HD C:\OneDriveTemp
2017-06-05 22:00 - 2017-06-05 22:00 - 01007571 _____ C:\Users\brezo\Downloads\6_nastroju_pro_smb.pdf
2017-06-05 14:30 - 2017-06-05 14:30 - 00000956 _____ C:\Users\brezo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2017-06-05 12:21 - 2017-06-05 12:21 - 00777223 _____ C:\Users\brezo\Downloads\vysvědčení březovský.jpeg
2017-06-03 20:50 - 2017-06-03 20:51 - 10699107 _____ C:\Users\brezo\Downloads\pomaly-hrnec-ukazka.pdf
2017-05-31 20:52 - 2017-05-31 20:52 - 00014512 _____ C:\Users\brezo\Downloads\[CzT]Naprosti_cizinci_Perfetti_Sconosciuti_2016_IT_.torrent
2017-05-31 19:30 - 2017-05-31 19:31 - 00000000 ____D C:\Users\brezo\AppData\Local\HP
2017-05-31 19:30 - 2017-05-31 19:30 - 00003702 _____ C:\WINDOWS\System32\Tasks\HPCustParticipation HP DeskJet 4530 series
2017-05-31 19:30 - 2017-05-31 19:30 - 00002295 _____ C:\Users\Public\Desktop\HP DeskJet 4530 series.lnk
2017-05-31 19:30 - 2017-05-31 19:30 - 00000000 ____D C:\ProgramData\Visan
2017-05-31 19:30 - 2017-05-31 19:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2017-05-31 19:30 - 2017-05-31 19:30 - 00000000 ____D C:\ProgramData\HP Photo Creations
2017-05-31 19:30 - 2017-05-31 19:30 - 00000000 ____D C:\Program Files\HP
2017-05-31 19:30 - 2017-05-31 19:30 - 00000000 ____D C:\Program Files (x86)\HP Photo Creations
2017-05-31 19:30 - 2017-05-31 19:30 - 00000000 ____D C:\Program Files (x86)\HP
2017-05-31 19:22 - 2017-05-31 19:29 - 156046656 _____ C:\Users\brezo\Downloads\DJ4530_Full_WebPack_40.11.1122.exe
2017-05-31 19:16 - 2017-05-31 19:30 - 00000000 ____D C:\ProgramData\HP
2017-05-31 19:16 - 2017-05-31 19:16 - 00000000 ____D C:\Users\brezo\AppData\Roaming\HP_Easy_Start
2017-05-31 19:15 - 2017-05-31 19:15 - 05618000 _____ C:\Users\brezo\Downloads\HPEasyStart_5_0_3133_35.exe
2017-05-30 21:06 - 2017-05-30 21:06 - 00015776 _____ C:\Users\brezo\Downloads\[CzT]Ucitelka_2016_SK_.torrent
2017-05-29 10:56 - 2017-05-29 10:56 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-05-29 10:56 - 2017-03-10 23:17 - 00536864 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-05-29 10:56 - 2017-03-10 23:17 - 00525600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-05-29 10:56 - 2017-03-10 23:17 - 00254240 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-05-29 10:56 - 2017-03-10 23:17 - 00233760 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-05-29 10:55 - 2017-05-18 09:35 - 40201848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 35390072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 35282040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 28624504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 11056456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 11028664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 10551072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 09248144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 09014976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 08808488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 03797112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 03256440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 01988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438233.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 01606592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438233.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 01278528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 01056704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00995736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00993912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00964032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00914880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00775864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00688968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00612272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00577728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00499320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-05-29 10:55 - 2017-05-18 09:35 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-05-29 10:35 - 2017-05-29 10:56 - 00000000 ____D C:\WINDOWS\LastGood
2017-05-29 10:35 - 2017-05-29 10:35 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-29 10:35 - 2017-05-29 10:35 - 00004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-29 10:35 - 2017-05-29 10:35 - 00003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-29 10:35 - 2017-05-29 10:35 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-29 10:35 - 2017-05-29 10:35 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-29 10:35 - 2017-05-29 10:35 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-29 10:35 - 2017-05-29 10:35 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-29 10:35 - 2017-05-29 10:35 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-29 10:35 - 2017-05-29 10:35 - 00001495 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-05-29 10:35 - 2017-05-29 10:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-05-29 10:35 - 2017-05-18 09:35 - 00057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-05-29 10:35 - 2017-05-18 09:35 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-05-29 10:35 - 2017-05-18 07:55 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-05-29 10:35 - 2017-05-03 22:16 - 01893312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-05-29 10:35 - 2017-05-03 22:16 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-05-29 10:35 - 2017-05-03 22:16 - 01477056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-05-29 10:35 - 2017-05-03 22:16 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-05-29 10:35 - 2017-05-03 22:16 - 00175552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-05-29 10:35 - 2017-05-03 22:16 - 00143296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-05-29 10:35 - 2017-05-03 22:16 - 00121280 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-05-29 10:32 - 2017-05-29 10:35 - 86191168 _____ (NVIDIA Corporation) C:\Users\brezo\Downloads\GeForce_Experience_v3.6.0.74.exe
2017-05-28 17:36 - 2017-05-28 17:36 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2017-05-28 10:55 - 2017-05-28 10:55 - 00934545 _____ C:\Users\brezo\Downloads\Daňová evidence a odvody_3.cast.pdf
2017-05-28 10:52 - 2017-05-28 10:52 - 00436407 _____ C:\Users\brezo\Downloads\Daňová evidence a odvody_1.cast.pdf
2017-05-25 19:43 - 2017-05-25 19:43 - 00014259 _____ C:\Users\brezo\Downloads\[CzT]Hologram_pro_krale_A_Hologram_for_the_King_2016_.torrent
2017-05-25 13:07 - 2017-05-25 13:07 - 00693459 _____ C:\Users\brezo\Downloads\02 Podnikatelský plán.pdf
2017-05-25 13:04 - 2017-05-25 13:04 - 00808686 _____ C:\Users\brezo\Downloads\03 Rozpočty a plánování tržeb.pdf
2017-05-25 13:04 - 2017-05-25 13:04 - 00015895 _____ C:\Users\brezo\Downloads\03 Plán tržeb.xlsx
2017-05-25 13:02 - 2017-05-25 13:02 - 00354300 _____ C:\Users\brezo\Downloads\ME_Bod_zvratu_pri_planovani_vyrobni_kapacity.pdf
2017-05-25 13:02 - 2017-05-25 13:02 - 00240443 _____ C:\Users\brezo\Downloads\idealni-klient.pdf
2017-05-25 13:02 - 2017-05-25 13:02 - 00167514 _____ C:\Users\brezo\Downloads\MU_Vyuziti_bodu_zvratu.pdf
2017-05-24 17:45 - 2017-05-24 17:46 - 07168995 _____ C:\Users\brezo\Downloads\2017_05_hlaska.pdf
2017-05-24 16:33 - 2017-05-24 16:33 - 00036602 _____ C:\Users\brezo\Downloads\ROZPOCET_kalkulace2-1_5let.xls
2017-05-23 17:14 - 2017-06-05 14:25 - 00000000 ____D C:\Users\brezo\Desktop\business plan
2017-05-22 10:51 - 2017-05-22 10:51 - 00000000 ____D C:\Users\brezo\AppData\Local\ElevatedDiagnostics
2017-05-21 15:13 - 2017-05-21 15:14 - 00987453 _____ C:\Users\brezo\Downloads\BPTX_2012_1_11410_0_320901_0_133040.pdf
2017-05-20 21:21 - 2017-05-20 21:22 - 15514306 _____ C:\Users\brezo\Downloads\cely_gh0117.pdf
2017-05-20 20:29 - 2017-05-20 20:29 - 03955679 _____ C:\Users\brezo\Downloads\ahr-forum-02-2017_web.pdf
2017-05-18 17:43 - 2017-05-18 17:43 - 00645570 _____ C:\Users\brezo\Downloads\002_dpp.pdf
2017-05-15 22:05 - 2017-05-15 22:05 - 00036538 _____ C:\Users\brezo\Downloads\vstupenka_203996.pdf
2017-05-13 11:35 - 2017-05-13 11:35 - 00000218 _____ C:\Users\brezo\AppData\Local\recently-used.xbel
2017-05-13 11:13 - 2017-05-13 11:13 - 00002415 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2017-05-12 22:11 - 2017-05-12 22:11 - 09423454 _____ C:\Users\brezo\Downloads\ebook-digitalni-marketing-100-nejvetsich-chyb.pdf
2017-05-12 21:32 - 2017-05-12 21:28 - 00400456 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-05-12 18:09 - 2017-05-15 11:27 - 00000000 ____D C:\Users\brezo\Desktop\Kramer
2017-05-12 10:00 - 2017-05-12 10:00 - 00000000 ___HD C:\$AV_ASW
2017-05-12 10:00 - 2017-05-12 10:00 - 00000000 ____D C:\WINDOWS\files

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-11 18:38 - 2017-04-07 19:31 - 00004168 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3427A248-BC02-442C-8B4A-9E9255D3125E}
2017-06-11 18:35 - 2017-04-07 19:25 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-11 18:35 - 2015-12-01 16:24 - 00000165 _____ C:\Users\brezo\AppData\Roaming\sp_data.sys
2017-06-11 14:03 - 2017-04-07 18:31 - 00000000 ___DC C:\WINDOWS\Panther
2017-06-11 14:03 - 2015-12-01 16:41 - 00000000 ____D C:\Users\brezo\AppData\Roaming\uTorrent
2017-06-11 14:02 - 2015-12-22 13:55 - 00000000 ____D C:\Users\brezo\AppData\Local\CrashDumps
2017-06-11 13:59 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-11 13:59 - 2015-12-01 15:21 - 00000000 ____D C:\Users\brezo\AppData\Local\Packages
2017-06-11 12:25 - 2017-04-07 19:26 - 00000000 ____D C:\ProgramData\NVIDIA
2017-06-11 12:00 - 2017-04-07 19:31 - 00003544 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2017-06-11 12:00 - 2017-04-07 19:31 - 00003534 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2017-06-11 11:37 - 2015-12-01 16:37 - 00000000 ____D C:\Users\brezo\AppData\Local\Adobe
2017-06-10 08:14 - 2017-03-19 12:25 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-06-10 08:14 - 2015-12-01 16:38 - 00000000 ____D C:\ProgramData\Skype
2017-06-08 11:10 - 2015-12-01 16:38 - 00000000 ____D C:\Users\brezo\AppData\Roaming\Skype
2017-06-08 11:10 - 2015-12-01 15:23 - 00002437 _____ C:\Users\brezo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-06-08 11:10 - 2015-12-01 15:23 - 00000000 ___RD C:\Users\brezo\OneDrive
2017-06-08 10:02 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-07 15:58 - 2017-03-10 20:24 - 00000000 ____D C:\Users\brezo\Desktop\New Zealand
2017-06-05 11:56 - 2016-01-07 16:49 - 00000000 ___RD C:\Users\brezo\OneDrive\Documents\Scanned Documents
2017-06-03 20:53 - 2017-04-07 19:31 - 00004008 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1449055905
2017-06-03 20:53 - 2015-12-02 13:31 - 00001094 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-05-31 20:55 - 2017-04-07 19:26 - 00000000 ____D C:\Users\brezo
2017-05-31 19:31 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF
2017-05-31 08:39 - 2017-04-07 19:26 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-05-31 08:39 - 2015-12-01 15:49 - 00000000 __SHD C:\Users\brezo\IntelGraphicsProfiles
2017-05-29 12:25 - 2015-12-01 16:16 - 00000000 ____D C:\Users\brezo\AppData\Local\NVIDIA Corporation
2017-05-29 11:01 - 2017-04-08 05:22 - 00923326 _____ C:\WINDOWS\system32\perfh005.dat
2017-05-29 11:01 - 2017-04-08 05:22 - 00201476 _____ C:\WINDOWS\system32\perfc005.dat
2017-05-29 11:01 - 2017-04-07 19:34 - 02109008 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-29 10:56 - 2017-04-07 19:26 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-05-29 10:56 - 2017-04-07 19:26 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-05-29 10:56 - 2015-12-01 15:38 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-05-29 10:36 - 2015-12-01 16:15 - 00000000 ____D C:\Users\brezo\AppData\Local\NVIDIA
2017-05-28 17:36 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-05-28 17:36 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-05-28 17:35 - 2017-03-11 13:21 - 00000000 ____D C:\Program Files\Microsoft Office
2017-05-28 14:34 - 2017-03-10 20:23 - 00031450 _____ C:\Users\brezo\Desktop\new zealand vydaje.xlsx
2017-05-24 21:55 - 2017-03-11 16:22 - 00000000 ____D C:\Users\brezo\AppData\Local\Spotify
2017-05-24 21:55 - 2017-03-11 16:21 - 00000000 ____D C:\Users\brezo\AppData\Roaming\Spotify
2017-05-24 00:00 - 2017-05-01 21:52 - 00000000 ____D C:\Users\brezo\Desktop\životopisy
2017-05-23 19:54 - 2016-01-04 00:28 - 00000000 ____D C:\Users\brezo\AppData\Roaming\vlc
2017-05-23 16:59 - 2015-12-09 11:49 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-05-23 16:58 - 2015-12-09 11:49 - 132223576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-05-19 23:45 - 2017-04-07 19:31 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-05-19 23:45 - 2017-03-18 13:40 - 02097152 _____ C:\WINDOWS\system32\config\BBI
2017-05-19 10:09 - 2017-04-07 19:31 - 00004268 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-05-19 10:00 - 2017-04-07 19:25 - 00393448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-05-18 09:35 - 2017-04-07 19:26 - 00513144 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2017-05-18 09:35 - 2017-04-07 19:26 - 00418752 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2017-05-18 09:35 - 2016-08-31 12:45 - 04114248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-05-18 09:35 - 2016-08-31 12:45 - 03624784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-05-18 09:35 - 2016-08-31 12:45 - 00045061 _____ C:\WINDOWS\system32\nvinfo.pb
2017-05-18 07:48 - 2017-04-07 19:26 - 06437824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-05-18 07:48 - 2017-04-07 19:26 - 02479736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-05-18 07:48 - 2017-04-07 19:26 - 01762936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-05-18 07:48 - 2017-04-07 19:26 - 00548984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-05-18 07:48 - 2017-04-07 19:26 - 00392312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-05-18 07:48 - 2017-04-07 19:26 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-05-18 07:48 - 2017-04-07 19:26 - 00069752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-05-16 20:09 - 2017-04-07 19:26 - 07993157 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-05-15 22:23 - 2015-12-01 16:21 - 00000332 _____ C:\Users\brezo\Desktop\stáhnout.txt
2017-05-12 22:01 - 2015-12-03 10:55 - 00000000 ____D C:\ProgramData\Oracle
2017-05-12 21:44 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\rescache
2017-05-12 21:40 - 2015-12-03 10:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-05-12 21:40 - 2015-12-03 10:55 - 00000000 ____D C:\Program Files (x86)\Java
2017-05-12 21:39 - 2015-12-03 10:55 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-05-12 21:29 - 2015-12-01 16:28 - 00158880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-05-12 21:28 - 2017-03-10 18:15 - 00334576 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
2017-05-12 21:28 - 2017-03-10 18:15 - 00311808 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2017-05-12 21:28 - 2017-03-10 18:15 - 00190256 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2017-05-12 21:28 - 2017-03-10 18:15 - 00049016 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2017-05-12 21:28 - 2015-12-02 13:31 - 00032600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2017-05-12 21:28 - 2015-12-01 16:28 - 01007160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-05-12 21:28 - 2015-12-01 16:28 - 00569192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-05-12 21:28 - 2015-12-01 16:28 - 00339696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-05-12 21:28 - 2015-12-01 16:28 - 00158368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys.149461734270302
2017-05-12 21:28 - 2015-12-01 16:28 - 00128648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-05-12 21:28 - 2015-12-01 16:28 - 00101152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-05-12 21:28 - 2015-12-01 16:28 - 00075704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-05-12 21:28 - 2015-12-01 16:28 - 00038296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-05-12 14:15 - 2015-12-01 16:33 - 00002278 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

==================== Files in the root of some directories =======

2015-12-01 16:24 - 2017-06-11 18:35 - 0000165 _____ () C:\Users\brezo\AppData\Roaming\sp_data.sys
2017-05-13 11:35 - 2017-05-13 11:35 - 0000218 _____ () C:\Users\brezo\AppData\Local\recently-used.xbel
2015-12-01 20:00 - 2015-12-01 20:02 - 0007601 _____ () C:\Users\brezo\AppData\Local\resmon.resmoncfg
2017-04-07 19:26 - 2017-04-07 19:26 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-12-27 23:22 - 2015-12-27 23:33 - 0002281 _____ () C:\ProgramData\StreamingMediaTechnologyLog.txt

Some files in TEMP:
====================
2017-05-12 21:38 - 2017-05-12 21:38 - 0739904 _____ (Oracle Corporation) C:\Users\brezo\AppData\Local\Temp\jre-8u131-windows-au.exe
2017-04-11 14:39 - 2017-04-11 15:04 - 30533688 _____ () C:\Users\brezo\AppData\Local\Temp\vlc-2.2.4-win32.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-06-01 22:08

==================== End of FRST.txt ============================
Přílohy
Addition.rar
(11.8 KiB) Staženo 100 x

Kodlz
Přítel fóra
Přítel fóra
Příspěvky: 780
Registrován: 30 kvě 2008 12:11

Re: FRST log - prosím o kontrolu

#2 Příspěvek od Kodlz »

Na plose, tam kde mas umisteny FRST vytvor TXT soubor, ktery pojmenujes fixlist.txt a do nej vloz nasledujici text:

( Spusť znovu FRST a klikni na >Fix<. Po skončení akce se objeví log, který sem zkopíruj).
start
CreateRestorePoint:

CloseProcesses:

Hosts:

EmptyTemp:
S2 NvStreamSvc; "C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe" [X]
2017-05-31 08:39 - 2017-04-07 19:26 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
IE trusted site: HKU\S-1-5-21-2276432762-4204623625-4278120621-1001\...\hola.org -> hxxp://hola.org
end

respectOP
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 48
Registrován: 29 črc 2011 08:46

Re: FRST log - prosím o kontrolu

#3 Příspěvek od respectOP »

výpis z fixlogu:

Fix result of Farbar Recovery Scan Tool (x64) Version: 11-06-2017
Ran by brezo (12-06-2017 16:46:39) Run:1
Running from C:\Users\brezo\Desktop
Loaded Profiles: brezo (Available Profiles: brezo & barus)
Boot Mode: Normal
==============================================

fixlist content:
*****************
start
CreateRestorePoint:

CloseProcesses:

Hosts:

EmptyTemp:
S2 NvStreamSvc; "C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe" [X]
2017-05-31 08:39 - 2017-04-07 19:26 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
IE trusted site: HKU\S-1-5-21-2276432762-4204623625-4278120621-1001\...\hola.org -> hxxp://hola.org
end
*****************

Error: (0) Failed to create a restore point.
Processes closed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
HKLM\System\CurrentControlSet\Services\NvStreamSvc => key removed successfully
NvStreamSvc => service removed successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
HKU\S-1-5-21-2276432762-4204623625-4278120621-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\hola.org => key removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 969828220 B
Java, Flash, Steam htmlcache => 626957228 B
Windows/system/drivers => 72871971 B
Edge => 48755158 B
Chrome => 547010955 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 8202 B
NetworkService => 0 B
brezo => 976519687 B
barus => 382302 B

RecycleBin => 50881868 B
EmptyTemp: => 3.1 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 16:51:21 ====

Kodlz
Přítel fóra
Přítel fóra
Příspěvky: 780
Registrován: 30 kvě 2008 12:11

Re: FRST log - prosím o kontrolu

#4 Příspěvek od Kodlz »

poprosim Te jeste jednou o FRST.txt a Addition.txt z aplikace FRSTLauncher

respectOP
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 48
Registrován: 29 črc 2011 08:46

Re: FRST log - prosím o kontrolu

#5 Příspěvek od respectOP »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-06-2017
Ran by brezo (administrator) on HONZA-PC (12-06-2017 22:00:23)
Running from C:\Users\brezo\Desktop
Loaded Profiles: brezo (Available Profiles: brezo & barus)
Platform: Windows 10 Home Version 1703 (X64) Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Adobe Systems Incorporated) E:\Adobe Premiere Elements\Elements 14 Organizer\PhotoshopElementsFileAgent.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.17.420.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Spotify Ltd) C:\Users\brezo\AppData\Roaming\Spotify\SpotifyWebHelper.exe
() C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(HP Inc.) C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Valve Corporation) E:\Steam\Steam.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.App.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8218.40507.0_x64__8wekyb3d8bbwe\HxMail.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8218.40507.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1705.1522.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.8241.57621.0_x64__8wekyb3d8bbwe\onenoteim.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3348712 2015-06-22] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-07-29] (Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-05-12] (AVAST Software)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <====== ATTENTION
HKU\S-1-5-21-2276432762-4204623625-4278120621-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-07-29] (Disc Soft Ltd)
HKU\S-1-5-21-2276432762-4204623625-4278120621-1001\...\Run: [Spotify Web Helper] => C:\Users\brezo\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1560176 2017-05-23] (Spotify Ltd)
HKU\S-1-5-21-2276432762-4204623625-4278120621-1001\...\Run: [Bloody2] => C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe [19405824 2017-04-14] ()
HKU\S-1-5-21-2276432762-4204623625-4278120621-1001\...\Run: [HP DeskJet 4530 series (NET)] => C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe [3770504 2017-04-06] (HP Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-12] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-12] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 193.84.47.100 193.84.47.101
Tcpip\..\Interfaces\{8a1d9fff-607c-4c2e-a8ac-6e03e1e35bb7}: [DhcpNameServer] 193.84.47.100 193.84.47.101
Tcpip\..\Interfaces\{e39807c0-9842-4741-965c-2972b72d3136}: [DhcpNameServer] 193.84.47.100 193.84.47.101

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-2276432762-4204623625-4278120621-1001 -> DefaultScope {96E4AA81-1834-4958-985A-5FD1A57E206F} URL = hxxps://www.google.com/search?q={searchTerms}&s ... utEncoding?}
SearchScopes: HKU\S-1-5-21-2276432762-4204623625-4278120621-1001 -> {96E4AA81-1834-4958-985A-5FD1A57E206F} URL = hxxps://www.google.com/search?q={searchTerms}&s ... utEncoding?}
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2017-05-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-05-12] (Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2017-05-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-12] (Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_182.dll [2016-03-13] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-05-28] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_182.dll [2016-03-13] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-12] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2017-05-28] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2276432762-4204623625-4278120621-1001: @hola.org/FlashPlayer -> C:\Users\brezo\AppData\Local\Hola\firefox_hola\app\flash\NPSWF32_18_0_0_232.dll [2016-01-27] ()
FF Plugin HKU\S-1-5-21-2276432762-4204623625-4278120621-1001: @hola.org/vlc -> C:\Users\brezo\AppData\Local\Hola\firefox_hola\app\vlc\npvlc.dll [2016-01-27] (Hola)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default [2017-06-12]
CHR Extension: (Překladač Google) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2016-01-27]
CHR Extension: (Prezentace Google) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-01]
CHR Extension: (Dokumenty Google) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-02]
CHR Extension: (Disk Google) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-02]
CHR Extension: (YouTube) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-02]
CHR Extension: (Vyhledávání Google) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-02]
CHR Extension: (Adobe Acrobat) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-10]
CHR Extension: (Feedly Notifier) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\egikgfbhipinieabdmcpigejkaomgjgb [2017-06-07]
CHR Extension: (Avast Passwords) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2017-04-03]
CHR Extension: (Avast SafePrice) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-05-31]
CHR Extension: (Dokumenty Google offline) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-21]
CHR Extension: (AdBlock) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-15]
CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2017-06-05]
CHR Extension: (Avast Online Security) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-06-07]
CHR Extension: (Grammarly for Chrome) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2017-06-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-10]
CHR Extension: (Gmail) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-02]
CHR Extension: (Chrome Media Router) - C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-12]
CHR Profile: C:\Users\brezo\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-06-12]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeActiveFileMonitor14.0; E:\Adobe Premiere Elements\Elements 14 Organizer\PhotoshopElementsFileAgent.exe [226016 2015-12-07] (Adobe Systems Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7346208 2017-05-12] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-05-12] (AVAST Software)
R2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [2278152 2015-07-16] (Broadcom Corporation.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1860616 2016-07-17] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3971264 2017-05-14] (Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-07-29] (Disc Soft Ltd)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2016-11-30] (Intel Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-05-03] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-05-03] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-18] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-05-18] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [311808 2017-05-12] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [190256 2017-05-12] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [334576 2017-05-12] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [49016 2017-05-12] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [38296 2017-05-12] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [32600 2017-05-12] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [128648 2017-05-12] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [101152 2017-05-12] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [75704 2017-05-12] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [1007160 2017-05-12] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [569192 2017-05-12] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [158880 2017-05-12] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [339696 2017-05-12] (AVAST Software)
S2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [303616 2017-03-02] () [File not signed]
R3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [199472 2015-07-16] (Broadcom Corporation.)
R3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [7585280 2017-03-18] (Broadcom Corporation)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-08-17] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-08-17] (Disc Soft Ltd)
S2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [35328 2017-03-02] () [File not signed]
R2 npf; C:\Windows\system32\drivers\npf.sys [36600 2015-10-12] (Riverbed Technology, Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_8892f62aa9f69fbe\nvlddmkm.sys [14458264 2017-05-19] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-05-03] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-05-03] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-05-18] (NVIDIA Corporation)
R0 PxHlpa64; C:\WINDOWS\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
S3 WinDivert1.1; C:\WINDOWS\files\bin\x64WDV\WinDivert.sys [35376 2013-12-03] (Basil Projects)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-12 22:00 - 2017-06-12 22:00 - 00000000 ____D C:\Users\brezo\Desktop\FRST-OlderVersion
2017-06-12 21:53 - 2017-06-12 21:53 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-06-12 16:51 - 2017-06-12 16:51 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-06-12 16:46 - 2017-06-12 16:51 - 00001999 _____ C:\Users\brezo\Desktop\Fixlog.txt
2017-06-12 16:08 - 2017-06-12 16:08 - 00000000 ___HD C:\OneDriveTemp
2017-06-11 18:42 - 2017-06-11 18:42 - 00054384 _____ C:\Users\brezo\Desktop\Addition.txt
2017-06-11 18:41 - 2017-06-12 22:00 - 00021532 _____ C:\Users\brezo\Desktop\FRST.txt
2017-06-11 18:41 - 2017-06-12 22:00 - 00000000 ____D C:\FRST
2017-06-11 18:38 - 2017-06-12 22:00 - 02438656 _____ (Farbar) C:\Users\brezo\Desktop\FRST64.exe
2017-06-10 14:00 - 2017-06-10 14:00 - 00089589 _____ C:\Users\brezo\Desktop\119-106-494_INC_Notice of Refund_20170609.pdf
2017-06-09 09:32 - 2017-06-09 09:32 - 00061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2017-06-05 22:00 - 2017-06-05 22:00 - 01007571 _____ C:\Users\brezo\Downloads\6_nastroju_pro_smb.pdf
2017-06-05 14:30 - 2017-06-05 14:30 - 00000956 _____ C:\Users\brezo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2017-06-05 12:21 - 2017-06-05 12:21 - 00777223 _____ C:\Users\brezo\Downloads\vysvědčení březovský.jpeg
2017-06-03 20:50 - 2017-06-03 20:51 - 10699107 _____ C:\Users\brezo\Downloads\pomaly-hrnec-ukazka.pdf
2017-05-31 20:52 - 2017-05-31 20:52 - 00014512 _____ C:\Users\brezo\Downloads\[CzT]Naprosti_cizinci_Perfetti_Sconosciuti_2016_IT_.torrent
2017-05-31 19:30 - 2017-05-31 19:31 - 00000000 ____D C:\Users\brezo\AppData\Local\HP
2017-05-31 19:30 - 2017-05-31 19:30 - 00003702 _____ C:\WINDOWS\System32\Tasks\HPCustParticipation HP DeskJet 4530 series
2017-05-31 19:30 - 2017-05-31 19:30 - 00002295 _____ C:\Users\Public\Desktop\HP DeskJet 4530 series.lnk
2017-05-31 19:30 - 2017-05-31 19:30 - 00000000 ____D C:\ProgramData\Visan
2017-05-31 19:30 - 2017-05-31 19:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2017-05-31 19:30 - 2017-05-31 19:30 - 00000000 ____D C:\ProgramData\HP Photo Creations
2017-05-31 19:30 - 2017-05-31 19:30 - 00000000 ____D C:\Program Files\HP
2017-05-31 19:30 - 2017-05-31 19:30 - 00000000 ____D C:\Program Files (x86)\HP Photo Creations
2017-05-31 19:30 - 2017-05-31 19:30 - 00000000 ____D C:\Program Files (x86)\HP
2017-05-31 19:22 - 2017-05-31 19:29 - 156046656 _____ C:\Users\brezo\Downloads\DJ4530_Full_WebPack_40.11.1122.exe
2017-05-31 19:16 - 2017-05-31 19:30 - 00000000 ____D C:\ProgramData\HP
2017-05-31 19:16 - 2017-05-31 19:16 - 00000000 ____D C:\Users\brezo\AppData\Roaming\HP_Easy_Start
2017-05-31 19:15 - 2017-05-31 19:15 - 05618000 _____ C:\Users\brezo\Downloads\HPEasyStart_5_0_3133_35.exe
2017-05-30 21:06 - 2017-05-30 21:06 - 00015776 _____ C:\Users\brezo\Downloads\[CzT]Ucitelka_2016_SK_.torrent
2017-05-29 10:56 - 2017-05-29 10:56 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-05-29 10:56 - 2017-03-10 23:17 - 00536864 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-05-29 10:56 - 2017-03-10 23:17 - 00525600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-05-29 10:56 - 2017-03-10 23:17 - 00254240 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-05-29 10:56 - 2017-03-10 23:17 - 00233760 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-05-29 10:55 - 2017-05-18 09:35 - 40201848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 35390072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 35282040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 28624504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 11056456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 11028664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 10551072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 09248144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 09014976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 08808488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 03797112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 03256440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 01988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438233.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 01606592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438233.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 01278528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 01056704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00995736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00993912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00964032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00914880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00775864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00688968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00612272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00577728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00499320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-05-29 10:55 - 2017-05-18 09:35 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-05-29 10:55 - 2017-05-18 09:35 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-05-29 10:35 - 2017-05-29 10:56 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2017-05-29 10:35 - 2017-05-29 10:35 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-29 10:35 - 2017-05-29 10:35 - 00004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-29 10:35 - 2017-05-29 10:35 - 00003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-29 10:35 - 2017-05-29 10:35 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-29 10:35 - 2017-05-29 10:35 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-29 10:35 - 2017-05-29 10:35 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-29 10:35 - 2017-05-29 10:35 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-29 10:35 - 2017-05-29 10:35 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-29 10:35 - 2017-05-29 10:35 - 00001495 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-05-29 10:35 - 2017-05-29 10:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-05-29 10:35 - 2017-05-18 09:35 - 00057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-05-29 10:35 - 2017-05-18 09:35 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-05-29 10:35 - 2017-05-18 07:55 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-05-29 10:35 - 2017-05-03 22:16 - 01893312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-05-29 10:35 - 2017-05-03 22:16 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-05-29 10:35 - 2017-05-03 22:16 - 01477056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-05-29 10:35 - 2017-05-03 22:16 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-05-29 10:35 - 2017-05-03 22:16 - 00175552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-05-29 10:35 - 2017-05-03 22:16 - 00143296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-05-29 10:35 - 2017-05-03 22:16 - 00121280 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-05-29 10:32 - 2017-05-29 10:35 - 86191168 _____ (NVIDIA Corporation) C:\Users\brezo\Downloads\GeForce_Experience_v3.6.0.74.exe
2017-05-28 17:36 - 2017-05-28 17:36 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2017-05-28 10:55 - 2017-05-28 10:55 - 00934545 _____ C:\Users\brezo\Downloads\Daňová evidence a odvody_3.cast.pdf
2017-05-28 10:52 - 2017-05-28 10:52 - 00436407 _____ C:\Users\brezo\Downloads\Daňová evidence a odvody_1.cast.pdf
2017-05-25 19:43 - 2017-05-25 19:43 - 00014259 _____ C:\Users\brezo\Downloads\[CzT]Hologram_pro_krale_A_Hologram_for_the_King_2016_.torrent
2017-05-25 13:07 - 2017-05-25 13:07 - 00693459 _____ C:\Users\brezo\Downloads\02 Podnikatelský plán.pdf
2017-05-25 13:04 - 2017-05-25 13:04 - 00808686 _____ C:\Users\brezo\Downloads\03 Rozpočty a plánování tržeb.pdf
2017-05-25 13:04 - 2017-05-25 13:04 - 00015895 _____ C:\Users\brezo\Downloads\03 Plán tržeb.xlsx
2017-05-25 13:02 - 2017-05-25 13:02 - 00354300 _____ C:\Users\brezo\Downloads\ME_Bod_zvratu_pri_planovani_vyrobni_kapacity.pdf
2017-05-25 13:02 - 2017-05-25 13:02 - 00240443 _____ C:\Users\brezo\Downloads\idealni-klient.pdf
2017-05-25 13:02 - 2017-05-25 13:02 - 00167514 _____ C:\Users\brezo\Downloads\MU_Vyuziti_bodu_zvratu.pdf
2017-05-24 17:45 - 2017-05-24 17:46 - 07168995 _____ C:\Users\brezo\Downloads\2017_05_hlaska.pdf
2017-05-24 16:33 - 2017-05-24 16:33 - 00036602 _____ C:\Users\brezo\Downloads\ROZPOCET_kalkulace2-1_5let.xls
2017-05-23 17:14 - 2017-06-05 14:25 - 00000000 ____D C:\Users\brezo\Desktop\business plan
2017-05-22 10:51 - 2017-05-22 10:51 - 00000000 ____D C:\Users\brezo\AppData\Local\ElevatedDiagnostics
2017-05-21 15:13 - 2017-05-21 15:14 - 00987453 _____ C:\Users\brezo\Downloads\BPTX_2012_1_11410_0_320901_0_133040.pdf
2017-05-20 21:21 - 2017-05-20 21:22 - 15514306 _____ C:\Users\brezo\Downloads\cely_gh0117.pdf
2017-05-20 20:29 - 2017-05-20 20:29 - 03955679 _____ C:\Users\brezo\Downloads\ahr-forum-02-2017_web.pdf
2017-05-18 17:43 - 2017-05-18 17:43 - 00645570 _____ C:\Users\brezo\Downloads\002_dpp.pdf
2017-05-15 22:05 - 2017-05-15 22:05 - 00036538 _____ C:\Users\brezo\Downloads\vstupenka_203996.pdf
2017-05-13 11:35 - 2017-05-13 11:35 - 00000218 _____ C:\Users\brezo\AppData\Local\recently-used.xbel
2017-05-13 11:13 - 2017-05-13 11:13 - 00002415 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-12 21:53 - 2017-04-07 19:25 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-12 21:28 - 2015-12-01 16:24 - 00000165 _____ C:\Users\brezo\AppData\Roaming\sp_data.sys
2017-06-12 16:59 - 2017-04-07 19:26 - 00000000 ____D C:\Users\brezo
2017-06-12 16:58 - 2017-04-08 05:22 - 00952890 _____ C:\WINDOWS\system32\perfh005.dat
2017-06-12 16:58 - 2017-04-08 05:22 - 00210284 _____ C:\WINDOWS\system32\perfc005.dat
2017-06-12 16:58 - 2017-04-07 19:34 - 02166284 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-12 16:52 - 2017-04-07 19:26 - 00000000 ____D C:\ProgramData\NVIDIA
2017-06-12 16:52 - 2015-12-01 15:23 - 00000000 ___RD C:\Users\brezo\OneDrive
2017-06-12 16:51 - 2017-04-07 19:31 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-12 16:51 - 2017-03-18 13:40 - 02097152 _____ C:\WINDOWS\system32\config\BBI
2017-06-12 16:51 - 2015-12-01 15:49 - 00000000 __SHD C:\Users\brezo\IntelGraphicsProfiles
2017-06-12 16:47 - 2015-12-01 16:36 - 00000000 ____D C:\Users\brezo\AppData\LocalLow\Temp
2017-06-12 16:42 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-06-12 16:09 - 2017-04-07 19:31 - 00004168 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3427A248-BC02-442C-8B4A-9E9255D3125E}
2017-06-12 16:09 - 2017-04-07 19:31 - 00003544 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2017-06-12 16:09 - 2017-04-07 19:31 - 00003534 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2017-06-12 16:08 - 2015-12-01 16:37 - 00000000 ____D C:\Users\brezo\AppData\Local\Adobe
2017-06-12 16:06 - 2017-04-07 19:31 - 00004268 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-06-11 19:02 - 2017-04-07 19:25 - 00398592 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-06-11 14:03 - 2017-04-07 18:31 - 00000000 ___DC C:\WINDOWS\Panther
2017-06-11 14:03 - 2015-12-01 16:41 - 00000000 ____D C:\Users\brezo\AppData\Roaming\uTorrent
2017-06-11 14:02 - 2015-12-22 13:55 - 00000000 ____D C:\Users\brezo\AppData\Local\CrashDumps
2017-06-11 13:59 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-11 13:59 - 2015-12-01 15:21 - 00000000 ____D C:\Users\brezo\AppData\Local\Packages
2017-06-10 08:14 - 2017-03-19 12:25 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-06-10 08:14 - 2015-12-01 16:38 - 00000000 ____D C:\ProgramData\Skype
2017-06-08 11:10 - 2015-12-01 16:38 - 00000000 ____D C:\Users\brezo\AppData\Roaming\Skype
2017-06-08 11:10 - 2015-12-01 15:23 - 00002437 _____ C:\Users\brezo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-06-08 10:02 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-07 15:58 - 2017-03-10 20:24 - 00000000 ____D C:\Users\brezo\Desktop\New Zealand
2017-06-05 11:56 - 2016-01-07 16:49 - 00000000 ___RD C:\Users\brezo\OneDrive\Documents\Scanned Documents
2017-06-03 20:53 - 2017-04-07 19:31 - 00004008 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1449055905
2017-06-03 20:53 - 2015-12-02 13:31 - 00001094 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-05-31 19:31 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF
2017-05-29 12:25 - 2015-12-01 16:16 - 00000000 ____D C:\Users\brezo\AppData\Local\NVIDIA Corporation
2017-05-29 10:56 - 2017-04-07 19:26 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-05-29 10:56 - 2017-04-07 19:26 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-05-29 10:56 - 2015-12-01 15:38 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-05-29 10:36 - 2015-12-01 16:15 - 00000000 ____D C:\Users\brezo\AppData\Local\NVIDIA
2017-05-28 17:36 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-05-28 17:36 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-05-28 17:35 - 2017-03-11 13:21 - 00000000 ____D C:\Program Files\Microsoft Office
2017-05-28 14:34 - 2017-03-10 20:23 - 00031450 _____ C:\Users\brezo\Desktop\new zealand vydaje.xlsx
2017-05-24 21:55 - 2017-03-11 16:22 - 00000000 ____D C:\Users\brezo\AppData\Local\Spotify
2017-05-24 21:55 - 2017-03-11 16:21 - 00000000 ____D C:\Users\brezo\AppData\Roaming\Spotify
2017-05-24 00:00 - 2017-05-01 21:52 - 00000000 ____D C:\Users\brezo\Desktop\životopisy
2017-05-23 19:54 - 2016-01-04 00:28 - 00000000 ____D C:\Users\brezo\AppData\Roaming\vlc
2017-05-23 16:59 - 2015-12-09 11:49 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-05-23 16:58 - 2015-12-09 11:49 - 132223576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-05-18 09:35 - 2017-04-07 19:26 - 00513144 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2017-05-18 09:35 - 2017-04-07 19:26 - 00418752 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2017-05-18 09:35 - 2016-08-31 12:45 - 04114248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-05-18 09:35 - 2016-08-31 12:45 - 03624784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-05-18 09:35 - 2016-08-31 12:45 - 00045061 _____ C:\WINDOWS\system32\nvinfo.pb
2017-05-18 07:48 - 2017-04-07 19:26 - 06437824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-05-18 07:48 - 2017-04-07 19:26 - 02479736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-05-18 07:48 - 2017-04-07 19:26 - 01762936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-05-18 07:48 - 2017-04-07 19:26 - 00548984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-05-18 07:48 - 2017-04-07 19:26 - 00392312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-05-18 07:48 - 2017-04-07 19:26 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-05-18 07:48 - 2017-04-07 19:26 - 00069752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-05-16 20:09 - 2017-04-07 19:26 - 07993157 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-05-15 22:23 - 2015-12-01 16:21 - 00000332 _____ C:\Users\brezo\Desktop\stáhnout.txt
2017-05-15 11:27 - 2017-05-12 18:09 - 00000000 ____D C:\Users\brezo\Desktop\Kramer

==================== Files in the root of some directories =======

2015-12-01 16:24 - 2017-06-12 21:28 - 0000165 _____ () C:\Users\brezo\AppData\Roaming\sp_data.sys
2017-05-13 11:35 - 2017-05-13 11:35 - 0000218 _____ () C:\Users\brezo\AppData\Local\recently-used.xbel
2015-12-01 20:00 - 2015-12-01 20:02 - 0007601 _____ () C:\Users\brezo\AppData\Local\resmon.resmoncfg
2017-04-07 19:26 - 2017-04-07 19:26 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-12-27 23:22 - 2015-12-27 23:33 - 0002281 _____ () C:\ProgramData\StreamingMediaTechnologyLog.txt

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-06-12 21:53

==================== End of FRST.txt ============================
Přílohy
Addition.rar
(14.47 KiB) Staženo 104 x

Kodlz
Přítel fóra
Přítel fóra
Příspěvky: 780
Registrován: 30 kvě 2008 12:11

Re: FRST log - prosím o kontrolu

#6 Příspěvek od Kodlz »

Vsiml jsem si ze mas vypnute restore pointy na obnovu windows.


:arrow: Stáhni AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Ulož na plochu
Ukonči všechny programy
Klikni nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vlož.

:arrow: nasledne tento tool MBAM: http://forum.viry.cz/viewtopic.php?f=29&t=144868
-Nainstaluj,dej úplný sken, nic zatim nemaz

-Log zkopíruj sem.

respectOP
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 48
Registrován: 29 črc 2011 08:46

Re: FRST log - prosím o kontrolu

#7 Příspěvek od respectOP »

Adwcleaner Scan:

# AdwCleaner v6.047 - Logfile created 13/06/2017 at 16:37:16
# Updated on 19/05/2017 by Malwarebytes
# Database : 2017-06-13.2 [Server]
# Operating System : Windows 10 Home (X64)
# Username : brezo - HONZA-PC
# Running from : C:\Users\brezo\Desktop\adwcleaner_6.047.exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support



***** [ Services ] *****



***** [ Folders ] *****

[-] Folder deleted: C:\Users\brezo\AppData\Local\Hola
[-] Folder deleted: C:\Users\brezo\AppData\Roaming\Hola


***** [ Files ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****

[-] Key deleted: HKLM\SOFTWARE\Classes\OCComSDK.ComSDK
[-] Key deleted: HKLM\SOFTWARE\Classes\OCComSDK.ComSDK.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\OCComSDK.ComSDK
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\OCComSDK.ComSDK.1
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{B9D64D3B-BE75-4FA2-B94A-C4AE772A0146}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552}
[-] Key deleted: HKU\S-1-5-21-2276432762-4204623625-4278120621-1001\Software\Hola
[#] Key deleted on reboot: HKCU\Software\Hola
[#] Key deleted on reboot: [x64] HKCU\Software\Hola
[-] Key deleted: [x64] HKLM\SOFTWARE\Hola
[-] Key deleted: HKCU\Software\MozillaPlugins\@hola.org/FlashPlayer
[-] Key deleted: HKCU\Software\MozillaPlugins\@hola.org/vlc


***** [ Web browsers ] *****



*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [908 Bytes] - [04/12/2015 17:26:09]
C:\AdwCleaner\AdwCleaner[C2].txt - [1969 Bytes] - [13/06/2017 16:37:16]
C:\AdwCleaner\AdwCleaner[S1].txt - [798 Bytes] - [04/12/2015 17:25:19]
C:\AdwCleaner\AdwCleaner[S2].txt - [2257 Bytes] - [13/06/2017 16:36:12]

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [2187 Bytes] ##########

Malwarebytes log:

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 13.06.17
Čas skenování: 16:42
Logovací soubor: malwarebytes.txt
Správce: Ano

-Informace o softwaru-
Verze: 3.1.2.1733
Verze komponentů: 1.0.141
Aktualizovat verzi balíku komponent: 1.0.2144
Licence: Zkušební

-Systémová informace-
OS: Windows 10
CPU: x64
Systém souborů: NTFS
Uživatel: HONZA-PC\brezo

-Shrnutí skenování-
Typ skenování: Vlastní skenování
Výsledek: Dokončeno
Skenované objekty: 443712
Zjištěné hrozby: 12
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 46 min, 51 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Povoleno
Heuristika: Povoleno
Potenciálně nežádoucí program: Povoleno
Potenciálně nežádoucí modifikace: Povoleno

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 3
PUP.Optional.InstallCore, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\DAEMON Tools Lite, Žádná uživatelská akce, [3], [368845],1.0.2144
Trojan.Agent.CK, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CBC5E088-09D0-4B25-8A3E-9ABD62F1EB52}, Žádná uživatelská akce, [2159], [400549],1.0.2144
Trojan.Agent.CK, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\OInstall, Žádná uživatelská akce, [2159], [400550],1.0.2144

Hodnota v registru: 1
Trojan.Agent.CK, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CBC5E088-09D0-4B25-8A3E-9ABD62F1EB52}|PATH, Žádná uživatelská akce, [2159], [400549],1.0.2144

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 8
PUP.Optional.InstallCore, C:\PROGRAM FILES\DAEMON TOOLS LITE\UNINST.EXE, Žádná uživatelská akce, [3], [368845],1.0.2144
Trojan.Agent.CK, C:\WINDOWS\SYSTEM32\TASKS\OINSTALL, Žádná uživatelská akce, [2159], [400551],1.0.2144
RiskWare.Hack, F:\PROGRAMS\KMSPICO_SETUP.EXE, Žádná uživatelská akce, [10225], [144330],1.0.2144
RiskWare.Hack, F:\PROGRAMS\KMSPICO_INSTALL 10.0.4.ZIP, Žádná uživatelská akce, [10225], [144330],1.0.2144
CrackTool.Agent, F:\PROGRAMS\ADOBE PREMIERE ELEMENTS 14 FINAL X86X64 CZ 2015!\ADOBE PREMIERE ELEMENTS 14 X64\PRE WINDOWS!\ACTIVATION_KEYGEN.EXE, Žádná uživatelská akce, [309], [146743],1.0.2144
CrackTool.Agent, F:\PROGRAMS\ADOBE PREMIERE ELEMENTS 14 FINAL X86X64 CZ 2015!\ADOBE PREMIERE ELEMENTS 14 X86\PRE WINDOWS!\ACTIVATION_KEYGEN.EXE, Žádná uživatelská akce, [309], [146743],1.0.2144
PUP.Optional.OpenCandy, F:\PROGRAMS\DEAMON DISC\DTLITE-SETUP.EXE, Žádná uživatelská akce, [528], [297667],1.0.2144
PUP.Optional.ProductKeyFinder, F:\PROGRAMS\ZJISTENI PRODUCT KEY WIN\PRODUKEY-X64.ZIP, Žádná uživatelská akce, [7916], [86094],1.0.2144

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

Kodlz
Přítel fóra
Přítel fóra
Příspěvky: 780
Registrován: 30 kvě 2008 12:11

Re: FRST log - prosím o kontrolu

#8 Příspěvek od Kodlz »

muzes znovu pustit MBAM a nechat smazat vse co nasel.

respectOP
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 48
Registrován: 29 črc 2011 08:46

Re: FRST log - prosím o kontrolu

#9 Příspěvek od respectOP »

smazáno (přesunuto do karantény).

Mám teď vše, co jsem nainstaloval odinstalovat ?

P.S. díky za pomoc a tvůj čas

Kodlz
Přítel fóra
Přítel fóra
Příspěvky: 780
Registrován: 30 kvě 2008 12:11

Re: FRST log - prosím o kontrolu

#10 Příspěvek od Kodlz »

jak se PC chova?
Jestli uz je vse v poradku muzes smazat/odinstalovat a nemas zac ;)

Kodlz
Přítel fóra
Přítel fóra
Příspěvky: 780
Registrován: 30 kvě 2008 12:11

Re: FRST log - prosím o kontrolu

#11 Příspěvek od Kodlz »

:closed:

Zamčeno