kontrola logu - pomalý notebook a internet. odpojuje se wifi

Zpráva

kosta777 · #1 Příspěvek od **kosta777** » 03 zář 2018 20:47

ahoj. prosím o kontrolu logu. mám 4 roky nainstalovaný system a nyní je velmi pomalé prohlížení internetu a wifi síť s ečasto odpojuje nebo nejde připojit vůbec.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01.09.2018 03
Ran by Ondřej (administrator) on ONDRA (03-09-2018 21:17:01)
Running from C:\Users\Ondřej\Downloads
Loaded Profiles: Ondřej (Available Profiles: Ondřej)
Platform: Windows 10 Home Version 1709 16299.547 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\Updates\16.0.10325.20118\OfficeClickToRun.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\Install\{43841360-58F8-4300-A18E-1A9E71502358}\68.0.3440.106_chrome_installer.exe
(Google Inc.) C:\Windows\Temp\CR_1D923.tmp\setup.exe
(Google Inc.) C:\Windows\Temp\CR_1D923.tmp\setup.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Wargaming.net) C:\Games\World_of_Tanks\WargamingGameUpdater.exe
(HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\SrTasks.exe
(Microsoft Corporation) C:\Windows\System32\SrTasks.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Adobe Systems Incorporated) C:\Users\Ondřej\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads\flashplayer30au_ha_install.exe
(Adobe Systems Incorporated) C:\Users\Ondřej\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads\flashplayer30au_ha_install.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8725248 2017-04-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744 2017-04-07] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242904 2018-08-21] (AVAST Software)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [657424 2016-01-11] (HP Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\Run: [cz.seznam.software.autoupdate] => "C:\Users\Ondřej\AppData\Roaming\Seznam.cz\szninstall.exe" -c
HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\Run: [cz.seznam.software.szndesktop] => "C:\Users\Ondřej\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [25638872 2018-04-23] (Google)
HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [1217808 2009-09-14] (Valve Corporation)
HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\Run: [World of Tanks] => C:\Games\World_of_Tanks\WargamingGameUpdater.exe [3139936 2018-06-25] (Wargaming.net)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GamePark klient 2.lnk [2014-12-16]
ShortcutTarget: GamePark klient 2.lnk -> C:\Program Files\GamePark2\gpcl.exe (Allstar Group, s.r.o.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{12905df0-75d7-4ef7-9a0d-f24a393ac472}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{33a0473d-74e1-4774-9ad5-b92b295f208c}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://istart.webssearches.com/web/?type=ds&ts=1417770187&from=cvs&uid=ST500LT012-1DG142_S3PCQ85D&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.delta-homes.com/?type=hp&ts=1434698 ... 2_S3PCQ85D
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1417770187&from=cvs&uid=ST500LT012-1DG142_S3PCQ85D&q={searchTerms}
HKU\S-1-5-21-2562165561-2641732231-254196661-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2562165561-2641732231-254196661-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1417770187&from=cvs&uid=ST500LT012-1DG142_S3PCQ85D&q={searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1417770187&from=cvs&uid=ST500LT012-1DG142_S3PCQ85D&q={searchTerms}
SearchScopes: HKLM -> {AA01AFE9-E886-40EE-BA3D-ADEB15260B58} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.delta-homes.com/web/?type=ds&ts=1434698273&z=737ceb2b0fb3b04812d4670gdzec4z1q7tab9obw7b&from=ient06182&uid=ST500LT012-1DG142_S3PCQ85D&q={searchTerms}
SearchScopes: HKLM-x32 -> {AA01AFE9-E886-40EE-BA3D-ADEB15260B58} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-2562165561-2641732231-254196661-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2562165561-2641732231-254196661-1001 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-07-31] (Microsoft Corporation)
BHO: No Name -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> No File
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (HP Inc.)
BHO-x32: No Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> No File
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-04-30] (Microsoft Corporation)
BHO-x32: No Name -> {51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F} -> No File
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-07-31] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-07-31] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-07-31] (Microsoft Corporation)

Edge:
======
Edge Extension: (AutoFormFill) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [2017-09-29]
Edge Extension: (LearningTools) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [2018-03-18]

FireFox:
========
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_30_0_0_154.dll [2018-09-03] ()
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\mcafee\msc\npMcSnFFPl64.dll [No File]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_154.dll [2018-09-03] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-03-30] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-03-04] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://www.seznam.cz/?clid=22668
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/?clid=22668"
CHR NewTab: Default -> Active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/speeddial/newTab.html"
CHR DefaultSearchURL: Default -> hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
CHR DefaultSuggestURL: Default -> hxxp://suggest.fulltext.seznam.cz/fulltext_ff?phrase={searchTerms}
CHR Profile: C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default [2018-09-03]
CHR Extension: (Prezentace) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-20]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2018-05-06]
CHR Extension: (YouTube) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-19]
CHR Extension: (Vyhledávání Google) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-20]
CHR Extension: (Tabulky) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-03]
CHR Extension: (Avast Online Security) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-04-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-06]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-05-09]
CHR Extension: (Gmail) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-21]
CHR Extension: (Chrome Media Router) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-06-05]
CHR HKU\S-1-5-21-2562165561-2641732231-254196661-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2562165561-2641732231-254196661-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmojkbhnkkphngknkmgccmlenfaelkd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2562165561-2641732231-254196661-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2562165561-2641732231-254196661-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7780400 2018-08-21] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [322464 2018-08-21] (AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8853984 2018-08-09] (Microsoft Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [333688 2018-06-13] (HP Inc.)
R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-24] (HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224 2016-01-11] (HP Inc.)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75064 2014-12-16] ()
R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [214520 2017-01-05] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [307456 2017-04-07] (Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-08-18] (Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.17123-0\NisSrv.exe [356176 2017-12-13] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.17123-0\MsMpEng.exe [105792 2017-12-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [197160 2018-08-21] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [229392 2018-08-21] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [201328 2018-08-21] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [346664 2018-08-21] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [59592 2018-08-21] (AVAST Software)
S3 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15360 2018-08-21] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [239680 2018-08-21] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46976 2018-08-21] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [159640 2018-08-21] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111872 2018-08-21] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [85968 2018-08-21] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1027728 2018-08-21] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [467064 2018-08-21] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [211160 2018-08-21] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [381584 2018-08-21] (AVAST Software)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [100624 2015-06-08] (CyberLink)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R3 GPIO; C:\WINDOWS\System32\drivers\iaiogpioe.sys [31232 2013-11-11] (Intel Corporation)
R0 MBI; C:\WINDOWS\System32\drivers\MBI.sys [29464 2014-01-23] (Intel Corporation)
R3 netr28x; C:\WINDOWS\System32\drivers\netr28x.sys [2537984 2017-09-29] (MediaTek Inc.)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-05] (Realtek Semiconductor Corp.)
R3 rtbth; C:\WINDOWS\System32\drivers\rtbth.sys [1219200 2015-06-03] (Ralink Technology, Corp.)
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [29936 2013-12-13] (Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-17] (Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 TXEIx64; C:\WINDOWS\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46072 2017-12-13] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [288848 2017-12-13] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [129616 2017-12-13] (Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\system32\DRIVERS\WirelessButtonDriver64.sys [34960 2018-02-02] (HP)
S3 intaud_WaveExtensible; \SystemRoot\system32\drivers\intelaud.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-09-03 21:22 - 2018-09-03 21:22 - 000002566 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2018-09-03 21:22 - 2018-09-03 21:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2018-09-03 21:21 - 2018-09-03 21:22 - 007566544 _____ (Malwarebytes) C:\Users\Ondřej\Downloads\adwcleaner_7.2.3.exe
2018-09-03 21:17 - 2018-09-03 21:20 - 000025044 _____ C:\Users\Ondřej\Downloads\FRST.txt
2018-09-03 21:13 - 2018-09-03 21:17 - 000000000 ____D C:\FRST
2018-09-03 21:08 - 2018-09-03 21:09 - 002413056 _____ (Farbar) C:\Users\Ondřej\Downloads\FRST64.exe
2018-09-03 20:55 - 2018-09-03 20:55 - 000000000 ____D C:\WINDOWS\UpdateAssistant
2018-08-23 17:55 - 2018-08-23 18:11 - 000000000 ____D C:\Users\Ondřej\AppData\Local\AVAST Software
2018-08-23 17:55 - 2018-08-23 17:55 - 000002016 _____ C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Avast Passwords.lnk
2018-08-23 17:55 - 2018-08-23 17:55 - 000001992 _____ C:\Users\Ondřej\Desktop\Avast Passwords.lnk
2018-08-23 17:54 - 2018-08-23 18:11 - 000000000 _____ C:\WINDOWS\SysWOW64\last.dump
2018-08-21 11:30 - 2018-08-21 11:29 - 000378072 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2018-08-21 11:30 - 2018-08-21 11:29 - 000015360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2018-08-08 21:29 - 2018-08-08 21:29 - 000000000 ____D C:\Windows.old

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-09-03 21:26 - 2017-09-29 15:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-09-03 21:25 - 2014-12-01 20:49 - 000000000 ____D C:\Users\Ondřej\AppData\Local\Adobe
2018-09-03 21:22 - 2017-11-07 20:14 - 000002560 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2018-09-03 21:22 - 2017-11-07 20:14 - 000002537 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2018-09-03 21:22 - 2017-11-07 20:14 - 000002532 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2018-09-03 21:22 - 2017-11-07 20:14 - 000002525 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype pro firmy.lnk
2018-09-03 21:22 - 2017-11-07 20:14 - 000002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2018-09-03 21:22 - 2017-11-07 20:14 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2018-09-03 21:22 - 2017-11-07 20:14 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2018-09-03 21:20 - 2017-12-13 19:08 - 000003990 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2018-09-03 21:19 - 2014-05-03 21:40 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2018-09-03 21:17 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-09-03 21:16 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-09-03 21:02 - 2018-03-13 22:05 - 000004636 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-09-03 21:02 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-09-03 21:02 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-09-03 20:57 - 2017-10-01 18:55 - 000000000 ____D C:\Program Files\rempl
2018-09-03 20:55 - 2017-09-29 15:46 - 000000000 ___HD C:\Program Files\WindowsApps
2018-09-03 20:52 - 2018-01-06 20:12 - 000000000 ____D C:\Program Files (x86)\Steam
2018-09-03 20:52 - 2014-11-27 18:32 - 000000000 ____D C:\Users\Ondřej\Documents\Youcam
2018-09-03 20:45 - 2016-05-30 09:58 - 000000000 __SHD C:\Users\Ondřej\IntelGraphicsProfiles
2018-09-03 20:43 - 2017-12-08 17:05 - 000000000 ____D C:\Users\Ondřej
2018-09-03 20:35 - 2017-12-08 18:31 - 000003358 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2562165561-2641732231-254196661-1001
2018-09-03 20:35 - 2016-05-30 10:30 - 000002433 _____ C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-09-03 20:35 - 2014-11-27 18:34 - 000000000 __RDO C:\Users\Ondřej\OneDrive
2018-09-03 20:33 - 2017-12-08 18:31 - 000004192 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F2FCDC34-3331-4502-BE97-952B1E63B756}
2018-09-03 20:24 - 2017-12-08 16:56 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-09-03 20:07 - 2017-12-08 18:31 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-09-03 20:06 - 2017-09-29 10:45 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-09-03 20:02 - 2017-09-29 15:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-08-23 18:42 - 2017-09-29 15:44 - 000000000 ____D C:\WINDOWS\INF
2018-08-23 18:34 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-08-23 17:49 - 2018-07-29 11:18 - 000000348 _____ C:\WINDOWS\Tasks\HPCeeScheduleForOndřej.job
2018-08-21 11:32 - 2014-12-08 20:31 - 000467064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-08-21 11:30 - 2017-09-29 15:46 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2018-08-21 11:29 - 2017-12-13 19:06 - 000197160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2018-08-21 11:29 - 2014-12-08 20:31 - 000381584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2018-08-21 11:29 - 2014-12-08 20:31 - 000211160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2018-08-21 11:29 - 2014-12-08 20:31 - 000159640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2018-08-21 11:29 - 2014-12-08 20:31 - 000111872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2018-08-21 11:29 - 2014-12-08 20:31 - 000085968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2018-08-21 11:29 - 2014-12-08 20:31 - 000046976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2018-08-21 11:28 - 2018-01-05 17:48 - 000239680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2018-08-21 11:28 - 2017-12-13 19:06 - 000346664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbloga.sys
2018-08-21 11:28 - 2017-12-13 19:06 - 000229392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2018-08-21 11:28 - 2017-12-13 19:06 - 000201328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2018-08-21 11:28 - 2017-12-13 19:06 - 000059592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2018-08-21 11:28 - 2014-12-08 20:31 - 001027728 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2018-08-20 17:18 - 2018-07-29 11:18 - 000003244 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForOndřej
2018-08-08 23:27 - 2018-04-12 18:55 - 000000000 ___HD C:\$WINDOWS.~BT
2018-08-08 23:24 - 2017-11-30 14:42 - 000000000 ___DC C:\WINDOWS\Panther
2018-08-05 16:27 - 2018-08-01 21:05 - 000000000 ___HD C:\$SysReset

==================== Files in the root of some directories =======

2017-04-12 23:22 - 2017-04-12 23:22 - 007639040 _____ () C:\Program Files (x86)\GUT3A6A.tmp
2007-04-04 20:21 - 2007-04-04 20:21 - 001723904 _____ () C:\Program Files (x86)\Microsoft_DirectX_SDK.msi
2007-04-04 19:53 - 2007-04-04 19:53 - 000079208 _____ (Microsoft Corporation) C:\Program Files (x86)\Setup.exe

Some files in TEMP:
====================
2018-08-01 20:38 - 2018-08-01 20:38 - 000534528 _____ () C:\Users\Ondřej\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-08-08 23:33

==================== End of FRST.txt ============================

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01.09.2018 03
Ran by Ondřej (03-09-2018 21:29:07)
Running from C:\Users\Ondřej\Downloads
Windows 10 Home Version 1709 16299.547 (X64) (2017-12-09 15:44:08)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-2562165561-2641732231-254196661-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2562165561-2641732231-254196661-503 - Limited - Disabled)
Guest (S-1-5-21-2562165561-2641732231-254196661-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2562165561-2641732231-254196661-1003 - Limited - Enabled)
Ondřej (S-1-5-21-2562165561-2641732231-254196661-1001 - Administrator - Enabled) => C:\Users\Ondřej
WDAGUtilityAccount (S-1-5-21-2562165561-2641732231-254196661-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.23) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.5.2342 - AVAST Software)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Call of Duty(R) 2 (HKLM-x32\...\{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.00.0000 - Activision) Hidden
Call of Duty(R) 2 (HKLM-x32\...\InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.3 - Activision)
Call of Duty(R) 2 Patch 1.3 (HKLM-x32\...\{7B4A5C13-069F-4AFE-AE57-C497B4E33C7E}) (Version: 1.3 - ) Hidden
Call of Duty(R) 2 Patch 1.3 (HKLM-x32\...\{C13E90B0-4E1C-11DB-6784-0152EAA218BE}) (Version: 1.3 - Activision)
CoD 2 čeština (HKLM-x32\...\CoD 2 čeština_is1) (Version: - #'Pan[S]al!er!)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.5.6902 - CyberLink Corp.)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.9.4928 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.10.5422 - CyberLink Corp.)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3.3709 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.3.3907 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Deer Hunter - The 2005 Season Demo (HKLM-x32\...\Deer Hunter 2005 Demo_is1) (Version: - Atari, Inc.)
DisableMSDefender (HKLM\...\{74FE39A0-FB76-47CD-84BA-91E2BBB17EF2}) (Version: 1.0.0 - Hewlett-Packard Company) Hidden
DriverDoc (HKLM-x32\...\{4D0A0750-B034-4DF8-97DE-26F1212AC2FF}) (Version: 1.3.2 - Solvusoft Corporation) Hidden
DriverDoc (HKLM-x32\...\DriverDoc) (Version: 1.3.2 - Solvusoft Corporation)
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
Express Courier Beta verze 0.3.6 (HKLM-x32\...\{56224C24-4579-4A63-80E2-18284A0990F7}_is1) (Version: 0.3.6 - Simopt, s.r.o.)
Fotogaléria (HKLM-x32\...\{08466673-3905-4437-93E8-34A221B7CA4E}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Fotogalerie (HKLM-x32\...\{AEA7CE08-09DC-4186-99FD-66A26F3B8B21}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Free Online TV (HKLM-x32\...\Free Online TV_is1) (Version: 1 - NETGATE Technologies s.r.o.)
GamePark klient 2.0.9.0 (HKLM\...\{52E5D8A7-B129-4A29-AD4B-EBB749DCC3A3}_is1) (Version: 2.0.9.0 - GamePark)
Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 67.0.3396.99 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Documentation (HKLM-x32\...\{F29E3AA8-CF19-4452-92B7-F1FE31CD11C5}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7372.4698 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.6.18.11 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{79CA8D8A-8371-4146-8920-C1405318E65E}) (Version: 12.9.24.3 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{025C1573-2F1D-46AF-BAB8-594EBF56A889}) (Version: 1.4.11 - HP Inc.)
HP Touchpoint Analytics Client (HKLM\...\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}) (Version: 4.0.2.1439 - HP Inc.)
HP Utility Center (HKLM\...\{891A1782-8B20-4403-8383-458962525926}) (Version: 2.3.4 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{EFA01423-3857-468C-B7B6-F30AA08E50BC}) (Version: 1.1.5.1 - Hewlett-Packard Company)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3408 - Intel Corporation)
Intel(R) Sideband Fabric Device Driver (HKLM-x32\...\C5A8BC6E-723A-4C0F-96E1-C426D1A4BCA9) (Version: 1.70.305.16316 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
MediaHuman YouTube to MP3 Converter 3.9.8.24 (HKLM-x32\...\MediaHuman YouTube to MP3 Converter_is1) (Version: 3.9.8.24 - MediaHuman)
Mediatek Bluetooth (HKLM\...\{16BCAEDC-C115-1729-07C4-7A0091C699A6}) (Version: 11.0.749.0 - Mediatek)
Microsoft Office 2010 pro studenty a domácnosti (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.10325.20118 - Microsoft Corporation)
Microsoft Office Basic Edition 2003 (HKLM-x32\...\{91130405-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.5614.0 - Microsoft Corporation)
Microsoft Office Professional 2007 (HKLM-x32\...\PROR) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\OneDriveSetup.exe) (Version: 18.131.0701.0007 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{379A0618-EF50-423C-9637-EEB2D25A4BB4}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{3C5F91EF-5C0B-4D13-BCBE-0FC6FC3ED7F9}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{45898170-E68C-4F02-AA35-C2186BF347A3}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{CFBFE244-6269-41DC-85B6-86F99C88ED02}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
NVIDIA PhysX (HKLM-x32\...\{54194F60-988C-4D03-B922-C2B00EFDA39A}) (Version: 9.10.0222 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.10325.20118 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.10325.20118 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.10325.20118 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.10325.20118 - Microsoft Corporation) Hidden
OpenOffice 4.1.1 (HKLM-x32\...\{C560D6E7-E40A-435D-8B71-62CBCF1701B2}) (Version: 4.11.9775 - Apache Software Foundation)
Ralink RT3290 802.11bgn Wi-Fi Adapter (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 5.0.50.0 - Mediatek)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29082 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 8.35.716.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7634 - Realtek Semiconductor Corp.)
Seznam Software (HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\SeznamInstall) (Version: 2.1.32 - Seznam.cz)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{A6F2ADC4-12C4-41E8-B90B-3BE018F5787C}) (Version: 2.48.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
World of Tanks (HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2562165561-2641732231-254196661-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Ondřej\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => No File
CustomCLSID: HKU\S-1-5-21-2562165561-2641732231-254196661-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-21] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-21] (AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-21] (AVAST Software)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-01-15] (Cyberlink)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-01-15] (Cyberlink)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-21] (AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-21] (AVAST Software)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {03A3AB45-C7B7-43B0-B015-59F3A7B58BDE} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {04032CC2-179D-4C95-BB7D-A01B248E03E3} - System32\Tasks\adf9ec37-1363-4db4-8a24-aa0164210f70-4 => C:\Program Files (x86)\Internet Speed Checker\adf9ec37-1363-4db4-8a24-aa0164210f70-4.exe <==== ATTENTION
Task: {0A183497-113D-4D74-81E4-9BCF74AC41BC} - System32\Tasks\avastBCLRestart_chrome.exe => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Task: {0B98DE56-2389-498C-9DC8-B34673111A96} - System32\Tasks\avastBCLRestartS-1-5-21-2562165561-2641732231-254196661-1001 => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Task: {15A41C6E-937C-491A-9BDD-037813A87956} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {193D9995-B9DB-4E5B-9374-D79623CC014C} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {2717ABF9-7657-408B-A249-C8E06BFD263C} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2017-08-18] (Synaptics Incorporated)
Task: {32A059CF-2CD8-4012-B33F-D63B298A1CFC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis Install => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-05-04] (HP Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {3C540EE8-7FEC-40AF-B6E8-A9F735C7DAA2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-09-03] (Adobe Systems Incorporated)
Task: {42B82822-D367-41AC-9A46-4782FAB3EC1C} - \WPD\SqmUpload_S-1-5-21-2562165561-2641732231-254196661-1001 -> No File <==== ATTENTION
Task: {4A3873F2-0932-4199-860E-0EF8C576501A} - System32\Tasks\{486F8833-29E9-4DF8-B41B-685C6040C4CD} => C:\Windows\system32\pcalua.exe -a "C:\Users\Ondřej\Desktop\Mafia 1\Mafia 1 ľ Plna Verze Hry ľ CZ\Uninstall\setup.exe" -d "C:\Users\Ondřej\Desktop\Mafia 1\Mafia 1 ľ Plna Verze Hry ľ CZ\Uninstall"
Task: {4D5C4DCD-A890-4BAC-B7AC-8351C85831C8} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {4E277E5A-D5C4-4C49-B56A-83D3D1ABE959} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {4EFD9B5F-2CFE-4747-B925-2D46C129F64F} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {554226CC-AFC1-48B9-B34E-54CA155B94E7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {5A8272B2-0003-4A7F-A07B-57EF12606EF4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-05-04] (HP Inc.)
Task: {5CE5FC80-7FFF-4591-8589-522418B96832} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2018-07-12] (Microsoft Corporation)
Task: {6529D049-7CF9-49BC-A893-32D0E688CE9C} - System32\Tasks\LaunchSignup => C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe <==== ATTENTION
Task: {66344809-754D-45D7-8E26-AF2B643EA665} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-09-03] (Microsoft Corporation)
Task: {711CA8E2-0688-4C4F-9E9D-82189043EE9F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-09-03] (Microsoft Corporation)
Task: {79F5F241-E6A0-4029-9156-C812763FE724} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2014-03-07] (CyberLink Corp.)
Task: {80F5334E-F7C6-4600-88A8-6D35D88A1110} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.)
Task: {80FCA74E-8427-4A4E-8AF2-BE20BEDD3CB4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {813CB8E0-9CCD-412B-BF52-6C458541748E} - System32\Tasks\{B61BEC5A-3F88-4D0D-988D-CE0AD2CD8555} => C:\Windows\system32\pcalua.exe -a "C:\Users\Ondřej\Desktop\Mafia 1\Mafia 1 ľ Plna Verze Hry ľ CZ\Setup.exe" -d "C:\Users\Ondřej\Desktop\Mafia 1\Mafia 1 ľ Plna Verze Hry ľ CZ"
Task: {83E4A6A3-B56D-49FF-833A-D09D4DBC7AB0} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-03] (Microsoft Corporation)
Task: {84850533-DB9E-4D23-8994-65B7C507227D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-09] (Microsoft Corporation)
Task: {87949786-64DA-4E6D-8DF0-5EABB07437BC} - System32\Tasks\Microsoft\Windows\Setup\UpgradeTriggers\UpgradeNowTask => C:\WINDOWS\System32\GWX\GWXUXWorker.exe
Task: {881AAD3F-DB78-4E41-9E21-8EA881E72E14} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {90E14AAF-876D-4985-8E0D-360F5F40DD08} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-05-04] (HP Inc.)
Task: {93E7E05B-F250-40FD-ADD7-A5A80F31DCF5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {94EEE6FC-BFF6-4662-BF6E-D6179F309720} - System32\Tasks\{F8816750-E235-4387-BA99-C652D06A69CF} => C:\Windows\system32\pcalua.exe -a C:\Users\Ondřej\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=cvs <==== ATTENTION
Task: {9882A9EB-E50C-43FC-9259-5739246DF708} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {9C9E1210-B476-45DE-86D0-1C0C7856CEAC} - System32\Tasks\{BD11348D-7066-47C9-A9EC-1675A93DDB8F} => C:\Windows\system32\pcalua.exe -a "C:\Users\Ondřej\Desktop\call of duty 2 cz\DirectX\dxsetup.exe" -d "C:\Users\Ondřej\Desktop\call of duty 2 cz\DirectX"
Task: {A12D9849-E39D-475D-9EA3-1B5965B253F3} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {A54CF1A5-0EE2-44DE-85FE-36C735BC38EB} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {A60FCABD-B94E-48EA-BE63-7B875AD14DC1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-09] (Microsoft Corporation)
Task: {A70BF27C-99F3-4FFB-A619-900E93944AB7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {B02271AA-C9B5-4C63-BA93-D249BF0A0A4E} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {BE73127D-EB1F-4A6A-BAD2-A45E28106C68} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-09-03] (AVAST Software)
Task: {C3652607-82B5-42A5-A715-41A4D6364C7C} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2017-11-24] ()
Task: {C4274DA5-64BA-4E9C-AB50-D987C6813232} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2018-06-27] (HP Inc.)
Task: {C74F372A-0EF1-4596-9016-F4B5278D62D1} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_Plugin.exe [2018-09-03] (Adobe Systems Incorporated)
Task: {D74D1EDC-A561-4066-B9A5-425C970C8DE2} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [2018-06-05] (AVAST Software)
Task: {DCB08EA6-A487-4F0A-A078-FB23C2295DBA} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {DCB699EF-47E4-4C33-9F00-4412F316256E} - System32\Tasks\HPCeeScheduleForOndřej => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {E057B32C-5C1C-49FA-BFB7-4A6867BBC678} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {E1AA7217-5B95-4191-A233-45C2B12FAB74} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.)
Task: {E1F10D4A-FF66-4661-B3BF-8C8B5587EED9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-09-03] (Microsoft Corporation)
Task: {E1FBA659-8C46-4D78-821E-7E5E47723A54} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated)
Task: {E20A914B-20E6-4F00-888A-30C3B09559CA} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-03] (Microsoft Corporation)
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\adf9ec37-1363-4db4-8a24-aa0164210f70-4" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\Adobe Acrobat Update Task" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\Adobe Flash Player Updater" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\CLVDLauncher" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\CreateChoiceProcessTask" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\HPCeeScheduleForOndřej" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\LaunchSignup" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-2562165561-2641732231-254196661-1001" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\Optimize Start Menu Cache Files-S-1-5-21-2562165561-2641732231-254196661-500" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\Synaptics TouchPad Enhancements" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\User_Feed_Synchronization-{F2FCDC34-3331-4502-BE97-952B1E63B756}" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\YCMServiceAgent" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(16): schtasks.exe -> /Change /TN "\{486F8833-29E9-4DF8-B41B-685C6040C4CD}" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(17): schtasks.exe -> /Change /TN "\{B61BEC5A-3F88-4D0D-988D-CE0AD2CD8555}" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(18): schtasks.exe -> /Change /TN "\{BD11348D-7066-47C9-A9EC-1675A93DDB8F}" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(19): schtasks.exe -> /Change /TN "\{F8816750-E235-4387-BA99-C652D06A69CF}" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(20): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {EDA39620-D012-4755-880F-CC99DF1F7993} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {F0381889-80F6-4305-9D40-F74F833022E5} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2015-06-22] (CyberLink Corp.)
Task: {F525E7BA-245C-4C6D-99D6-AB8E19C74691} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {F5D49BA2-D070-44E0-9404-F83D37758831} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {F9C706F7-71B1-4935-AA3F-467A549C140F} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\osfinstaller.exe [2018-09-03] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\adf9ec37-1363-4db4-8a24-aa0164210f70-4.job => C:\Program Files (x86)\Internet Speed Checker\adf9ec37-1363-4db4-8a24-aa0164210f70-4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\HPCeeScheduleForOndřej.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2014-12-16 21:00 - 2014-12-16 21:00 - 000075064 ____N () C:\Windows\SysWOW64\PnkBstrA.exe
2014-12-16 21:00 - 2017-01-05 21:23 - 000214520 ____N () C:\WINDOWS\SysWOW64\PnkBstrB.exe
2017-09-29 15:41 - 2017-09-29 15:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-07-12 19:30 - 2018-06-13 23:09 - 002988032 _____ () C:\Windows\ShellExperiences\WindowsInternal.People.PeoplePicker.dll
2017-09-29 15:41 - 2017-09-29 15:41 - 002459648 _____ () C:\Windows\ShellExperiences\WindowsInternal.People.Relevance.dll
2017-09-29 15:41 - 2017-09-29 15:41 - 000484352 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-07-12 19:30 - 2018-06-29 10:00 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2018-07-12 19:30 - 2018-06-29 09:57 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-07-18 18:41 - 2018-07-18 18:45 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-07-18 18:41 - 2018-07-18 18:45 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-07-18 18:41 - 2018-07-18 18:45 - 022373888 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-07-18 18:41 - 2018-07-18 18:45 - 002610176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll
2018-07-18 18:41 - 2018-07-18 18:45 - 000653824 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-07-03 15:08 - 2018-06-22 21:15 - 004608856 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\libglesv2.dll
2018-07-03 15:08 - 2018-06-22 21:15 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\libegl.dll
2017-09-29 15:41 - 2017-09-29 15:41 - 000047616 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUITelemetry.dll
2018-07-12 19:30 - 2018-06-13 23:07 - 004173824 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll
2018-06-25 11:07 - 2018-06-08 08:01 - 003662336 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll
2018-07-31 09:30 - 2018-07-31 10:21 - 000066048 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11807.1001.13.0_x64__8wekyb3d8bbwe\WinStoreTasksWrapper.dll
2018-09-03 20:46 - 2018-09-03 20:46 - 000098816 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\win32api.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000110080 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\pywintypes27.dll
2018-09-03 20:46 - 2018-09-03 20:46 - 000364544 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\pythoncom27.dll
2018-09-03 20:46 - 2018-09-03 20:46 - 000320512 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\win32com.shell.shell.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000914432 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\_hashlib.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 001176576 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\wx._core_.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000806400 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\wx._gdi_.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000816128 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\wx._windows_.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 001067008 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\wx._controls_.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000733184 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\wx._misc_.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000682496 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\pysqlite2._sqlite.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000088064 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\_ctypes.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000686080 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\unicodedata.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000119808 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\win32file.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000108544 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\win32security.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000007168 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\hashobjs_ext.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000017920 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\thumbnails_ext.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000088064 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\usb_ext.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000012800 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\common.time34.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000018432 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\win32event.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000167936 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\win32gui.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000046080 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\_socket.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 001303552 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\_ssl.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000128512 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\_elementtree.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000127488 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\pyexpat.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000038912 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\win32inet.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000036864 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\_psutil_windows.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000525208 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\windows._lib_cacheinvalidation.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000011264 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\win32crypt.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000123392 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\wx._wizard.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000077312 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\wx._html2.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000027648 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\_multiprocessing.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000020480 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\_yappi.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000035840 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\win32process.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000078848 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\wx._animate.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000024064 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\win32pipe.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000010240 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\select.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000025600 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\win32pdh.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000017408 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\win32profile.pyd
2018-09-03 20:46 - 2018-09-03 20:46 - 000022528 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI19002\win32ts.pyd
2018-03-05 10:18 - 2018-03-05 10:18 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-08-21 11:29 - 2018-08-21 11:29 - 000483544 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-08-21 11:28 - 2018-08-21 11:28 - 000282840 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2003-07-15 07:52 - 2003-07-15 07:52 - 000027704 _____ () C:\Program Files (x86)\Microsoft Office\OFFICE11\MSODCW.DLL
2003-07-15 07:52 - 2003-07-15 07:52 - 000039992 _____ () C:\Program Files (x86)\Common Files\microsoft shared\DW\DWDCW20.DLL

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2018-08-20 16:46 - 000000825 _____ C:\WINDOWS\system32\Drivers\etc\hosts

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2562165561-2641732231-254196661-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ondřej\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\tapeta programu windows prohlížeč fotografií.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B7528DB0-481B-4B71-97CF-87B0C6A1856A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [UDP Query User{0B2AC7A5-7CCD-443E-92F2-99ED8109DA1E}C:\users\ondřej\desktop\call of duty - black ops\blackops (2).exe] => (Block) C:\users\ondřej\desktop\call of duty - black ops\blackops (2).exe
FirewallRules: [TCP Query User{C8916825-E87A-4D39-BDD5-6729BCA97BAC}C:\users\ondřej\desktop\call of duty - black ops\blackops (2).exe] => (Block) C:\users\ondřej\desktop\call of duty - black ops\blackops (2).exe
FirewallRules: [UDP Query User{1369023F-2F85-4F37-962D-C62038D2F88B}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [TCP Query User{1C34436F-579A-447E-9B55-1535BFA1FC70}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{8307FDA0-6EC2-4559-BD5A-80B64ECA2F15}] => (Allow) C:\Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe
FirewallRules: [{E77FB7A3-ADE5-4DFC-9A95-0F389141263B}] => (Allow) C:\Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe
FirewallRules: [{410C16BC-B702-4E8C-8291-EB7DE83F0FEC}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{AC9E20BF-991A-47B6-99DA-FB8720C8F106}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{5CA13096-AE9B-4167-82F6-26F14318452C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{3A306298-FAC3-4BF5-A3AA-B4410B81DE10}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4F4EFFB1-10D2-40CE-91C8-6113D2720A3D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{88691956-ABC2-4B71-8F51-A1023FBD1697}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{D2BFDE14-E573-4194-81F8-327D05CB1A1B}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
FirewallRules: [{BFA8E751-1E96-4431-9380-2C5DB20B05D8}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{07D613C9-102A-4CDB-800B-DB8E191967C5}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
FirewallRules: [{3D77B4C1-3857-4637-B381-F242222A6998}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{73E106F8-6517-46AA-A557-5D6C6452C09C}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{17D44C78-2D2E-4021-A60B-41AA13F6C102}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{1541C3A7-716F-4561-93CE-2674FC1BBDE6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{6A9C50EC-6469-42AA-AF42-DF8FF4CDE74D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{6B08247C-BDCA-4EF1-8D98-77FEA100D833}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4C8A9D64-01E4-4161-8515-0DC59274622B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{D1361036-9FAC-42AB-8228-26D670AE114D}] => (Allow) LPort=1900
FirewallRules: [{59EDCD6C-3DAD-438B-969C-58BF47E23FBA}] => (Allow) LPort=2869
FirewallRules: [{14BBC30B-4772-4B9E-B35B-FE19F2AB909A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{2AC9D0AB-2C4B-4C6E-8B78-89578E5AA3F1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{564DEDFB-2B70-456A-9951-9867C30E014C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [TCP Query User{CBE4A36D-7B7D-448D-A827-400162F10D7F}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [UDP Query User{34BC3136-6E76-478F-A410-ED9537DAAD3D}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [{17F2A35C-DC69-4EB8-B7D4-149998BF11A6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{D2AB1C85-AB00-4A54-A7CA-C7306CE582BE}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{D40DCAE4-28E0-4FD4-97DA-F3A6F9508030}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{FB33737F-183E-408A-86BC-E8FE9EBA6D1F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{6A50F561-749F-4D78-955E-6AF76300B7EC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{A2EF9A74-2829-4B42-9A1D-0FE5C852EE49}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{C85C7F83-6377-485F-A6C5-0F3583D832BB}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe

==================== Restore Points =========================

08-08-2018 21:35:49 Windows Update
03-09-2018 20:52:47 Windows Update
03-09-2018 20:55:18 Windows Update

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (09/03/2018 09:28:11 PM) (Source: MsiInstaller) (EventID: 1024) (User: NT AUTHORITY)
Description: Aktualizaci {8B689F89-5E1C-4DA9-B2B1-7B3843275596} produktu Microsoft Office Professional 2007 nebylo možné nainstalovat. Kód chyby: 1642. Instalační služba systému Windows může vytvořit soubor protokolu s informacemi, které usnadní řešení potíží při instalaci softwaru. Další informace naleznete na webu na adrese http://go.microsoft.com/fwlink/?LinkId=23127

Error: (09/03/2018 09:27:58 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu WmiApRpl v knihovně DLL C:\WINDOWS\system32\wbem\wmiaprpl.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (09/03/2018 09:27:56 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (09/03/2018 09:27:56 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu MSDTC v knihovně DLL C:\WINDOWS\system32\msdtcuiu.DLL se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (09/03/2018 09:27:54 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu Lsa v knihovně DLL C:\Windows\System32\Secur32.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (09/03/2018 09:27:54 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu ESENT v knihovně DLL C:\WINDOWS\system32\esentprf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (09/03/2018 08:54:25 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu BITS v knihovně DLL C:\Windows\System32\bitsperf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (09/03/2018 08:43:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15656

System errors:
=============
Error: (09/03/2018 09:22:36 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/03/2018 09:06:29 PM) (Source: DCOM) (EventID: 10016) (User: ONDRA)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli Ondra\Ondřej (SID: S-1-5-21-2562165561-2641732231-254196661-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/03/2018 09:00:54 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/03/2018 08:57:56 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Zjišťování interaktivních služeb byla ukončena s následující chybou:
Nesprávná funkce.

Error: (09/03/2018 08:57:56 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Zjišťování interaktivních služeb byla ukončena s následující chybou:
Nesprávná funkce.

Error: (09/03/2018 08:57:55 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Zjišťování interaktivních služeb byla ukončena s následující chybou:
Nesprávná funkce.

Error: (09/03/2018 08:57:53 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Zjišťování interaktivních služeb byla ukončena s následující chybou:
Nesprávná funkce.

Error: (09/03/2018 08:57:51 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Zjišťování interaktivních služeb byla ukončena s následující chybou:
Nesprávná funkce.

Windows Defender:
===================================
Date: 2017-12-13 15:24:33.676
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Misleading:Win32/Sofolview
ID: 240761
Závažnost: Vysoké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Program Files (x86)\Solvusoft\SuiteService.exe;process:_pid:3180,ProcessStart:131576479283872272;regkey:_HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS\\C:\Program Files (x86)\Solvusoft\SuiteService.exe;service:_Solvusoft Suite Service;shareddll:_HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS\\C:\Program Files (x86)\Solvusoft\SuiteService.exe
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Program Files (x86)\Solvusoft\SuiteService.exe
Verze podpisu: AV: 1.259.206.0, AS: 1.259.206.0, NIS: 118.2.0.0
Verze modulu: AM: 1.1.14405.2, NIS: 2.1.14202.0

Date: 2017-12-13 15:22:18.027
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Misleading:Win32/Sofolview
ID: 240761
Závažnost: Vysoké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Program Files (x86)\Solvusoft\SuiteService.exe
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClient.exe
Verze podpisu: AV: 1.259.206.0, AS: 1.259.206.0, NIS: 118.2.0.0
Verze modulu: AM: 1.1.14405.2, NIS: 2.1.14202.0

Date: 2017-12-13 15:22:00.183
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Misleading:Win32/Sofolview
ID: 240761
Závažnost: Vysoké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe;regkey:_HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\CommonToolkitTray_Solvusoft;regkey:_HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS\\C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe;runkey:_HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\CommonToolkitTray_Solvusoft;shareddll:_HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS\\C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: Ondra\Ondřej
Název procesu: C:\Windows\SysWOW64\runonce.exe
Verze podpisu: AV: 1.259.206.0, AS: 1.259.206.0, NIS: 118.2.0.0
Verze modulu: AM: 1.1.14405.2, NIS: 2.1.14202.0

Date: 2017-12-13 15:21:52.519
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Misleading:Win32/Sofolview
ID: 240761
Závažnost: Vysoké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Program Files (x86)\Solvusoft\SuiteService.exe
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClient.exe
Verze podpisu: AV: 1.259.206.0, AS: 1.259.206.0, NIS: 118.2.0.0
Verze modulu: AM: 1.1.14405.2, NIS: 2.1.14202.0

Date: 2017-12-13 15:15:33.248
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Misleading:Win32/Sofolview
ID: 240761
Závažnost: Vysoké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: Ondra\Ondřej
Název procesu: C:\Windows\SysWOW64\runonce.exe
Verze podpisu: AV: 1.259.206.0, AS: 1.259.206.0, NIS: 118.2.0.0
Verze modulu: AM: 1.1.14405.2, NIS: 2.1.14202.0

Date: 2018-06-05 16:27:43.161
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.259.257.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.14405.2
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2018-06-05 16:27:43.160
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 118.2.0.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Systém kontroly sítě
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 2.1.14202.0
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2018-06-05 16:27:43.120
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.259.257.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.14405.2
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2018-06-05 16:27:43.119
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.259.257.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.14405.2
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2018-06-05 16:27:43.118
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.259.257.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.14405.2
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

CodeIntegrity:
===================================

Date: 2018-09-03 21:29:12.427
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-03 21:29:12.420
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-03 21:28:45.398
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-03 21:28:45.389
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-03 21:28:35.356
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-03 21:28:35.349
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-03 21:28:33.334
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-03 21:28:33.329
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Celeron(R) CPU N2840 @ 2.16GHz
Percentage of memory in use: 76%
Total physical RAM: 3984.27 MB
Available physical RAM: 950.41 MB
Total Virtual: 6416.27 MB
Available Virtual: 2933.29 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:447.39 GB) (Free:133.87 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:16.44 GB) (Free:1.58 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{39cca1ee-f533-4ed8-b528-949863bc2cf9}\ (WINRE) (Fixed) (Total:0.63 GB) (Free:0.35 GB) NTFS
\\?\Volume{3bf443ea-3e87-4c31-9d37-a1c1f02ff2f0}\ () (Fixed) (Total:0.25 GB) (Free:0.14 GB) FAT32
\\?\Volume{217352a0-c3bf-4935-b4bb-72967679f681}\ () (Fixed) (Total:0.9 GB) (Free:0.34 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 6724854A)

Partition: GPT.

==================== End of Addition.txt ============================

kosta777 · #2 Příspěvek od **kosta777** » 03 zář 2018 21:02

teď sem ještě spustil čištění pomocí programu adw cleaner. tady je výpis:

# -------------------------------
# Malwarebytes AdwCleaner 7.2.3.0
# -------------------------------
# Build: 09-03-2018
# Database: 2018-09-01.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 09-03-2018
# Duration: 00:00:28
# OS: Windows 10 Home
# Cleaned: 74
# Failed: 0

***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Windows\Installer\{4D0A0750-B034-4DF8-97DE-26F1212AC2FF}
Deleted C:\ProgramData\{0897014C-63E3-47DF-8A5F-4399CC5D61B9}
Deleted C:\ProgramData\BSD\DriverHiveEngine
Deleted C:\Program Files (x86)\globalUpdate
Deleted C:\Users\Ondřej\AppData\Local\globalUpdate
Deleted C:\Users\Ondřej\Documents\PC Speed Maximizer
Deleted C:\ProgramData\Solvusoft
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solvusoft
Deleted C:\Program Files (x86)\Solvusoft
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Solvusoft
Deleted C:\Users\Ondřej\AppData\Roaming\Solvusoft
Deleted C:\Users\Ondřej\SupTab
Deleted C:\ProgramData\BSD\DriverHive

***** [ Files ] *****

Deleted C:\Windows\System32\roboot64.exe

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted C:\Windows\System32\Tasks\{F8816750-E235-4387-BA99-C652D06A69CF}
Deleted C:\Windows\System32\Tasks\LaunchSignup

***** [ Registry ] *****

Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Installer
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F8816750-E235-4387-BA99-C652D06A69CF}
Deleted HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{746C4317-CDF6-4E08-B36B-BD42D6D4A8}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Deleted HKLM\Software\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Deleted HKLM\Software\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Deleted HKLM\Software\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Deleted HKLM\Software\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Deleted HKCU\Software\BSD
Deleted HKLM\Software\Wow6432Node\BSD
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Crossrider
Deleted HKCU\Software\AppDataLow\Software\Crossrider
Deleted HKLM\Software\Wow6432Node\AppDataLow\Software\Crossrider
Deleted HKLM\Software\Wow6432Node\delta-homesSoftware
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4D0A0750-B034-4DF8-97DE-26F1212AC2FF}
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Internet Speed Checker
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|CommonToolkitTray_Solvusoft
Deleted HKCU\Software\GlobalUpdate
Deleted HKLM\Software\Wow6432Node\GlobalUpdate
Deleted HKLM\Software\Wow6432Node\webssearchesSoftware
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\0570A0D4430B8FD479ED621F12A22CFF
Deleted HKLM\Software\Classes\Installer\Products\0570A0D4430B8FD479ED621F12A22CFF
Deleted HKLM\Software\Classes\Installer\Features\0570A0D4430B8FD479ED621F12A22CFF
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}
Deleted HKLM\System\CurrentControlSet\Services\EventLog\Application\WindowsMangerProtect
Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mshartmanice.sweb.cz
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.solvusoft.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\solvusoft.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.solvusoft.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\solvusoft.com
Deleted HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Deleted HKLM\Software\Microsoft\Internet Explorer\Main|Default_Page_URL
Deleted HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Deleted HKLM\Software\Microsoft\Internet Explorer\Main|Search Page
Deleted HKLM\Software\Microsoft\Internet Explorer\Main|Default_Search_URL
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6529D049-7CF9-49BC-A893-32D0E688CE9C}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6529D049-7CF9-49BC-A893-32D0E688CE9C}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\LaunchSignup
Deleted HKCU\Software\Softonic
Deleted HKCU\Software\Classes\Softonic
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DriverDoc
Deleted HKCU\Software\Solvusoft
Deleted HKLM\Software\Wow6432Node\Solvusoft
Deleted HKLM\SOFTWARE\Classes\Applications\DriverDocSetup.exe
Deleted HKLM\SOFTWARE\CLASSES\APPLICATIONS\SolvusoftTray.exe
Deleted HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2562165561-2641732231-254196661-1001\Software\SourceApp

***** [ Chromium (and derivatives) ] *****

Deleted bopakagnckmlgajfccecajhnimjiiedh

***** [ Chromium URLs ] *****

Deleted webssearches
Deleted webssearches
Deleted webssearches
Deleted webssearches
Deleted Softonic EN

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

*************************

[+] remove_folder_Auslogics
[+] remove_folder_Auslogics(2)
[+] remove_folder_Auslogics(3)
[+] remove_folder_Auslogics(4)
[+] remove_regKey_Auslogics
[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [8833 octets] - [03/09/2018 21:52:36]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

#3 Příspěvek od **Conder** » 03 zář 2018 21:23

Ahoj

AdwCleaner si uz pouzil, tak poprosim o obidva nove logy z FRST.

kosta777 · #4 Příspěvek od **kosta777** » 04 zář 2018 06:39

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01.09.2018 03
Ran by Ondřej (administrator) on ONDRA (04-09-2018 07:26:16)
Running from C:\Users\Ondřej\Downloads
Loaded Profiles: Ondřej (Available Profiles: Ondřej)
Platform: Windows 10 Home Version 1709 16299.547 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.16299.541_none_16e8222032163850\TiWorker.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18061.13911.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.10325.20091.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Wargaming.net) C:\Games\World_of_Tanks\WargamingGameUpdater.exe
(HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe
(Microsoft Corporation) C:\Windows\System32\DeviceCensus.exe
(HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(Microsoft Corporation) C:\Windows\System32\BackgroundTransferHost.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\Install\{8029D149-9482-46D7-987F-D3930E2F2932}\68.0.3440.106_chrome_installer.exe
(Google Inc.) C:\Windows\Temp\CR_8C2B4.tmp\setup.exe
(Google Inc.) C:\Windows\Temp\CR_8C2B4.tmp\setup.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8725248 2017-04-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744 2017-04-07] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242904 2018-08-21] (AVAST Software)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [657424 2016-01-11] (HP Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\Run: [cz.seznam.software.autoupdate] => "C:\Users\Ondřej\AppData\Roaming\Seznam.cz\szninstall.exe" -c
HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\Run: [cz.seznam.software.szndesktop] => "C:\Users\Ondřej\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [25638872 2018-04-23] (Google)
HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [1217808 2009-09-14] (Valve Corporation)
HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\Run: [World of Tanks] => C:\Games\World_of_Tanks\WargamingGameUpdater.exe [3139936 2018-06-25] (Wargaming.net)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GamePark klient 2.lnk [2014-12-16]
ShortcutTarget: GamePark klient 2.lnk -> C:\Program Files\GamePark2\gpcl.exe (Allstar Group, s.r.o.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{12905df0-75d7-4ef7-9a0d-f24a393ac472}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{33a0473d-74e1-4774-9ad5-b92b295f208c}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2562165561-2641732231-254196661-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2562165561-2641732231-254196661-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM -> {AA01AFE9-E886-40EE-BA3D-ADEB15260B58} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM-x32 -> {AA01AFE9-E886-40EE-BA3D-ADEB15260B58} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-2562165561-2641732231-254196661-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2562165561-2641732231-254196661-1001 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-09-03] (Microsoft Corporation)
BHO: No Name -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> No File
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (HP Inc.)
BHO-x32: No Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> No File
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-04-30] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-03] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-03] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-03] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-09-03] (Microsoft Corporation)

Edge:
======
Edge Extension: (AutoFormFill) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [2017-09-29]
Edge Extension: (LearningTools) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [2018-03-18]

FireFox:
========
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_30_0_0_154.dll [2018-09-03] ()
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\mcafee\msc\npMcSnFFPl64.dll [No File]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_154.dll [2018-09-03] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-03-30] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-03-04] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/?clid=22668"
CHR NewTab: Default -> Active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/speeddial/newTab.html"
CHR DefaultSearchURL: Default -> hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
CHR DefaultSuggestURL: Default -> hxxp://suggest.fulltext.seznam.cz/fulltext_ff?phrase={searchTerms}
CHR Profile: C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default [2018-09-04]
CHR Extension: (Prezentace) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-20]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2018-05-06]
CHR Extension: (YouTube) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-19]
CHR Extension: (Vyhledávání Google) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-20]
CHR Extension: (Tabulky) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-03]
CHR Extension: (Avast Online Security) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-04-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-06]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-05-09]
CHR Extension: (Gmail) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-21]
CHR Extension: (Chrome Media Router) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-06-05]
CHR HKU\S-1-5-21-2562165561-2641732231-254196661-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2562165561-2641732231-254196661-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmojkbhnkkphngknkmgccmlenfaelkd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2562165561-2641732231-254196661-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2562165561-2641732231-254196661-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7780400 2018-08-21] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [322464 2018-08-21] (AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8853984 2018-08-09] (Microsoft Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [333688 2018-06-13] (HP Inc.)
R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-24] (HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224 2016-01-11] (HP Inc.)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75064 2014-12-16] ()
R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [214520 2017-01-05] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [307456 2017-04-07] (Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-08-18] (Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.17123-0\NisSrv.exe [356176 2017-12-13] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.17123-0\MsMpEng.exe [105792 2017-12-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [197160 2018-08-21] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [229392 2018-08-21] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [201328 2018-08-21] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [346664 2018-08-21] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [59592 2018-08-21] (AVAST Software)
S3 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15360 2018-08-21] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [239680 2018-08-21] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46976 2018-08-21] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [159640 2018-08-21] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111872 2018-08-21] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [85968 2018-08-21] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1027728 2018-08-21] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [465640 2018-09-03] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [211160 2018-08-21] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [381584 2018-08-21] (AVAST Software)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [100624 2015-06-08] (CyberLink)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R3 GPIO; C:\WINDOWS\System32\drivers\iaiogpioe.sys [31232 2013-11-11] (Intel Corporation)
R0 MBI; C:\WINDOWS\System32\drivers\MBI.sys [29464 2014-01-23] (Intel Corporation)
R3 netr28x; C:\WINDOWS\System32\drivers\netr28x.sys [2537984 2017-09-29] (MediaTek Inc.)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-05] (Realtek Semiconductor Corp.)
R3 rtbth; C:\WINDOWS\System32\drivers\rtbth.sys [1219200 2015-06-03] (Ralink Technology, Corp.)
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [29936 2013-12-13] (Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-17] (Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 TXEIx64; C:\WINDOWS\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46072 2017-12-13] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [288848 2017-12-13] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [129616 2017-12-13] (Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\system32\DRIVERS\WirelessButtonDriver64.sys [34960 2018-02-02] (HP)
S3 intaud_WaveExtensible; \SystemRoot\system32\drivers\intelaud.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-09-03 22:01 - 2018-09-03 22:02 - 000000000 ____D C:\Windows10Upgrade
2018-09-03 21:29 - 2018-09-03 21:35 - 000062283 _____ C:\Users\Ondřej\Downloads\Addition.txt
2018-09-03 21:27 - 2018-09-03 21:53 - 000000000 ____D C:\AdwCleaner
2018-09-03 21:22 - 2018-09-03 21:22 - 000002566 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2018-09-03 21:22 - 2018-09-03 21:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2018-09-03 21:21 - 2018-09-03 21:22 - 007566544 _____ (Malwarebytes) C:\Users\Ondřej\Downloads\adwcleaner_7.2.3.exe
2018-09-03 21:17 - 2018-09-04 07:28 - 000023532 _____ C:\Users\Ondřej\Downloads\FRST.txt
2018-09-03 21:13 - 2018-09-04 07:26 - 000000000 ____D C:\FRST
2018-09-03 21:08 - 2018-09-03 21:09 - 002413056 _____ (Farbar) C:\Users\Ondřej\Downloads\FRST64.exe
2018-09-03 20:55 - 2018-09-03 20:55 - 000000000 ____D C:\WINDOWS\UpdateAssistant
2018-08-23 17:55 - 2018-08-23 18:11 - 000000000 ____D C:\Users\Ondřej\AppData\Local\AVAST Software
2018-08-23 17:55 - 2018-08-23 17:55 - 000002016 _____ C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Avast Passwords.lnk
2018-08-23 17:55 - 2018-08-23 17:55 - 000001992 _____ C:\Users\Ondřej\Desktop\Avast Passwords.lnk
2018-08-23 17:54 - 2018-08-23 18:11 - 000000000 _____ C:\WINDOWS\SysWOW64\last.dump
2018-08-21 11:30 - 2018-08-21 11:29 - 000378072 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2018-08-21 11:30 - 2018-08-21 11:29 - 000015360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2018-08-08 21:29 - 2018-08-08 21:29 - 000000000 ____D C:\Windows.old

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-09-04 07:20 - 2018-01-06 20:12 - 000000000 ____D C:\Program Files (x86)\Steam
2018-09-04 07:19 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-09-04 07:19 - 2016-05-30 09:58 - 000000000 __SHD C:\Users\Ondřej\IntelGraphicsProfiles
2018-09-03 22:04 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-09-03 21:55 - 2017-12-08 18:31 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-09-03 21:54 - 2017-09-29 10:45 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-09-03 21:53 - 2017-12-08 17:05 - 000000000 ____D C:\Users\Ondřej
2018-09-03 21:53 - 2017-10-30 13:44 - 000000000 ____D C:\ProgramData\BSD
2018-09-03 21:53 - 2017-09-29 15:46 - 000000000 ___HD C:\Program Files\WindowsApps
2018-09-03 21:39 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-09-03 21:32 - 2014-12-08 20:31 - 000465640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-09-03 21:31 - 2017-09-29 15:44 - 000000000 ____D C:\WINDOWS\INF
2018-09-03 21:28 - 2017-09-29 15:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-09-03 21:25 - 2014-12-01 20:49 - 000000000 ____D C:\Users\Ondřej\AppData\Local\Adobe
2018-09-03 21:22 - 2017-11-07 20:14 - 000002560 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2018-09-03 21:22 - 2017-11-07 20:14 - 000002537 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2018-09-03 21:22 - 2017-11-07 20:14 - 000002532 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2018-09-03 21:22 - 2017-11-07 20:14 - 000002525 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype pro firmy.lnk
2018-09-03 21:22 - 2017-11-07 20:14 - 000002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2018-09-03 21:22 - 2017-11-07 20:14 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2018-09-03 21:22 - 2017-11-07 20:14 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2018-09-03 21:20 - 2017-12-13 19:08 - 000003990 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2018-09-03 21:19 - 2014-05-03 21:40 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2018-09-03 21:02 - 2018-03-13 22:05 - 000004636 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-09-03 21:02 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-09-03 21:02 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-09-03 20:57 - 2017-10-01 18:55 - 000000000 ____D C:\Program Files\rempl
2018-09-03 20:52 - 2014-11-27 18:32 - 000000000 ____D C:\Users\Ondřej\Documents\Youcam
2018-09-03 20:35 - 2017-12-08 18:31 - 000003358 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2562165561-2641732231-254196661-1001
2018-09-03 20:35 - 2016-05-30 10:30 - 000002433 _____ C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-09-03 20:35 - 2014-11-27 18:34 - 000000000 __RDO C:\Users\Ondřej\OneDrive
2018-09-03 20:33 - 2017-12-08 18:31 - 000004192 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F2FCDC34-3331-4502-BE97-952B1E63B756}
2018-09-03 20:24 - 2017-12-08 16:56 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-09-03 20:02 - 2017-09-29 15:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-08-23 17:49 - 2018-07-29 11:18 - 000000348 _____ C:\WINDOWS\Tasks\HPCeeScheduleForOndřej.job
2018-08-21 11:30 - 2017-09-29 15:46 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2018-08-21 11:29 - 2017-12-13 19:06 - 000197160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2018-08-21 11:29 - 2014-12-08 20:31 - 000381584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2018-08-21 11:29 - 2014-12-08 20:31 - 000211160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2018-08-21 11:29 - 2014-12-08 20:31 - 000159640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2018-08-21 11:29 - 2014-12-08 20:31 - 000111872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2018-08-21 11:29 - 2014-12-08 20:31 - 000085968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2018-08-21 11:29 - 2014-12-08 20:31 - 000046976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2018-08-21 11:28 - 2018-01-05 17:48 - 000239680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2018-08-21 11:28 - 2017-12-13 19:06 - 000346664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbloga.sys
2018-08-21 11:28 - 2017-12-13 19:06 - 000229392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2018-08-21 11:28 - 2017-12-13 19:06 - 000201328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2018-08-21 11:28 - 2017-12-13 19:06 - 000059592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2018-08-21 11:28 - 2014-12-08 20:31 - 001027728 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2018-08-20 17:18 - 2018-07-29 11:18 - 000003244 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForOndřej
2018-08-08 23:27 - 2018-04-12 18:55 - 000000000 ___HD C:\$WINDOWS.~BT
2018-08-08 23:24 - 2017-11-30 14:42 - 000000000 ___DC C:\WINDOWS\Panther
2018-08-05 16:27 - 2018-08-01 21:05 - 000000000 ___HD C:\$SysReset

==================== Files in the root of some directories =======

2017-04-12 23:22 - 2017-04-12 23:22 - 007639040 _____ () C:\Program Files (x86)\GUT3A6A.tmp
2007-04-04 20:21 - 2007-04-04 20:21 - 001723904 _____ () C:\Program Files (x86)\Microsoft_DirectX_SDK.msi
2007-04-04 19:53 - 2007-04-04 19:53 - 000079208 _____ (Microsoft Corporation) C:\Program Files (x86)\Setup.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-08-08 23:33

==================== End of FRST.txt ============================

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01.09.2018 03
Ran by Ondřej (04-09-2018 07:34:07)
Running from C:\Users\Ondřej\Downloads
Windows 10 Home Version 1709 16299.547 (X64) (2017-12-09 15:44:08)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-2562165561-2641732231-254196661-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2562165561-2641732231-254196661-503 - Limited - Disabled)
Guest (S-1-5-21-2562165561-2641732231-254196661-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2562165561-2641732231-254196661-1003 - Limited - Enabled)
Ondřej (S-1-5-21-2562165561-2641732231-254196661-1001 - Administrator - Enabled) => C:\Users\Ondřej
WDAGUtilityAccount (S-1-5-21-2562165561-2641732231-254196661-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.23) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.6.2349 - AVAST Software)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Call of Duty(R) 2 (HKLM-x32\...\{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.00.0000 - Activision) Hidden
Call of Duty(R) 2 (HKLM-x32\...\InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.3 - Activision)
Call of Duty(R) 2 Patch 1.3 (HKLM-x32\...\{7B4A5C13-069F-4AFE-AE57-C497B4E33C7E}) (Version: 1.3 - ) Hidden
Call of Duty(R) 2 Patch 1.3 (HKLM-x32\...\{C13E90B0-4E1C-11DB-6784-0152EAA218BE}) (Version: 1.3 - Activision)
CoD 2 čeština (HKLM-x32\...\CoD 2 čeština_is1) (Version: - #'Pan[S]al!er!)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.5.6902 - CyberLink Corp.)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.9.4928 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.10.5422 - CyberLink Corp.)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3.3709 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.3.3907 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Deer Hunter - The 2005 Season Demo (HKLM-x32\...\Deer Hunter 2005 Demo_is1) (Version: - Atari, Inc.)
DisableMSDefender (HKLM\...\{74FE39A0-FB76-47CD-84BA-91E2BBB17EF2}) (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
Express Courier Beta verze 0.3.6 (HKLM-x32\...\{56224C24-4579-4A63-80E2-18284A0990F7}_is1) (Version: 0.3.6 - Simopt, s.r.o.)
Fotogaléria (HKLM-x32\...\{08466673-3905-4437-93E8-34A221B7CA4E}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Fotogalerie (HKLM-x32\...\{AEA7CE08-09DC-4186-99FD-66A26F3B8B21}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Free Online TV (HKLM-x32\...\Free Online TV_is1) (Version: 1 - NETGATE Technologies s.r.o.)
GamePark klient 2.0.9.0 (HKLM\...\{52E5D8A7-B129-4A29-AD4B-EBB749DCC3A3}_is1) (Version: 2.0.9.0 - GamePark)
Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 67.0.3396.99 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Documentation (HKLM-x32\...\{F29E3AA8-CF19-4452-92B7-F1FE31CD11C5}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7372.4698 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.6.18.11 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{79CA8D8A-8371-4146-8920-C1405318E65E}) (Version: 12.9.24.3 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{025C1573-2F1D-46AF-BAB8-594EBF56A889}) (Version: 1.4.11 - HP Inc.)
HP Touchpoint Analytics Client (HKLM\...\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}) (Version: 4.0.2.1439 - HP Inc.)
HP Utility Center (HKLM\...\{891A1782-8B20-4403-8383-458962525926}) (Version: 2.3.4 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{EFA01423-3857-468C-B7B6-F30AA08E50BC}) (Version: 1.1.5.1 - Hewlett-Packard Company)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3408 - Intel Corporation)
Intel(R) Sideband Fabric Device Driver (HKLM-x32\...\C5A8BC6E-723A-4C0F-96E1-C426D1A4BCA9) (Version: 1.70.305.16316 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
MediaHuman YouTube to MP3 Converter 3.9.8.24 (HKLM-x32\...\MediaHuman YouTube to MP3 Converter_is1) (Version: 3.9.8.24 - MediaHuman)
Mediatek Bluetooth (HKLM\...\{16BCAEDC-C115-1729-07C4-7A0091C699A6}) (Version: 11.0.749.0 - Mediatek)
Microsoft Office 2010 pro studenty a domácnosti (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.10325.20118 - Microsoft Corporation)
Microsoft Office Basic Edition 2003 (HKLM-x32\...\{91130405-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.5614.0 - Microsoft Corporation)
Microsoft Office Professional 2007 (HKLM-x32\...\PROR) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\OneDriveSetup.exe) (Version: 18.131.0701.0007 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{379A0618-EF50-423C-9637-EEB2D25A4BB4}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{3C5F91EF-5C0B-4D13-BCBE-0FC6FC3ED7F9}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{45898170-E68C-4F02-AA35-C2186BF347A3}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{CFBFE244-6269-41DC-85B6-86F99C88ED02}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
NVIDIA PhysX (HKLM-x32\...\{54194F60-988C-4D03-B922-C2B00EFDA39A}) (Version: 9.10.0222 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.10325.20118 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.10325.20118 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.10325.20118 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.10325.20118 - Microsoft Corporation) Hidden
OpenOffice 4.1.1 (HKLM-x32\...\{C560D6E7-E40A-435D-8B71-62CBCF1701B2}) (Version: 4.11.9775 - Apache Software Foundation)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22532 - Microsoft Corporation)
Ralink RT3290 802.11bgn Wi-Fi Adapter (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 5.0.50.0 - Mediatek)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29082 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 8.35.716.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7634 - Realtek Semiconductor Corp.)
Seznam Software (HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\SeznamInstall) (Version: 2.1.32 - Seznam.cz)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{A6F2ADC4-12C4-41E8-B90B-3BE018F5787C}) (Version: 2.48.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
World of Tanks (HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2562165561-2641732231-254196661-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Ondřej\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => No File
CustomCLSID: HKU\S-1-5-21-2562165561-2641732231-254196661-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-21] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-21] (AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-21] (AVAST Software)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-01-15] (Cyberlink)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-01-15] (Cyberlink)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-21] (AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-21] (AVAST Software)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {03A3AB45-C7B7-43B0-B015-59F3A7B58BDE} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {04032CC2-179D-4C95-BB7D-A01B248E03E3} - System32\Tasks\adf9ec37-1363-4db4-8a24-aa0164210f70-4 => C:\Program Files (x86)\Internet Speed Checker\adf9ec37-1363-4db4-8a24-aa0164210f70-4.exe <==== ATTENTION
Task: {0A183497-113D-4D74-81E4-9BCF74AC41BC} - System32\Tasks\avastBCLRestart_chrome.exe => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Task: {0B98DE56-2389-498C-9DC8-B34673111A96} - System32\Tasks\avastBCLRestartS-1-5-21-2562165561-2641732231-254196661-1001 => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Task: {15A41C6E-937C-491A-9BDD-037813A87956} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {193D9995-B9DB-4E5B-9374-D79623CC014C} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {2717ABF9-7657-408B-A249-C8E06BFD263C} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2017-08-18] (Synaptics Incorporated)
Task: {32A059CF-2CD8-4012-B33F-D63B298A1CFC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis Install => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-05-04] (HP Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {3C540EE8-7FEC-40AF-B6E8-A9F735C7DAA2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-09-03] (Adobe Systems Incorporated)
Task: {42B82822-D367-41AC-9A46-4782FAB3EC1C} - \WPD\SqmUpload_S-1-5-21-2562165561-2641732231-254196661-1001 -> No File <==== ATTENTION
Task: {4A3873F2-0932-4199-860E-0EF8C576501A} - System32\Tasks\{486F8833-29E9-4DF8-B41B-685C6040C4CD} => C:\Windows\system32\pcalua.exe -a "C:\Users\Ondřej\Desktop\Mafia 1\Mafia 1 ľ Plna Verze Hry ľ CZ\Uninstall\setup.exe" -d "C:\Users\Ondřej\Desktop\Mafia 1\Mafia 1 ľ Plna Verze Hry ľ CZ\Uninstall"
Task: {4D5C4DCD-A890-4BAC-B7AC-8351C85831C8} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {4E277E5A-D5C4-4C49-B56A-83D3D1ABE959} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {4EFD9B5F-2CFE-4747-B925-2D46C129F64F} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {554226CC-AFC1-48B9-B34E-54CA155B94E7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {5A8272B2-0003-4A7F-A07B-57EF12606EF4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-05-04] (HP Inc.)
Task: {5CE5FC80-7FFF-4591-8589-522418B96832} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2018-07-12] (Microsoft Corporation)
Task: {66344809-754D-45D7-8E26-AF2B643EA665} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-09-03] (Microsoft Corporation)
Task: {711CA8E2-0688-4C4F-9E9D-82189043EE9F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-09-03] (Microsoft Corporation)
Task: {79F5F241-E6A0-4029-9156-C812763FE724} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2014-03-07] (CyberLink Corp.)
Task: {80F5334E-F7C6-4600-88A8-6D35D88A1110} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.)
Task: {80FCA74E-8427-4A4E-8AF2-BE20BEDD3CB4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {813CB8E0-9CCD-412B-BF52-6C458541748E} - System32\Tasks\{B61BEC5A-3F88-4D0D-988D-CE0AD2CD8555} => C:\Windows\system32\pcalua.exe -a "C:\Users\Ondřej\Desktop\Mafia 1\Mafia 1 ľ Plna Verze Hry ľ CZ\Setup.exe" -d "C:\Users\Ondřej\Desktop\Mafia 1\Mafia 1 ľ Plna Verze Hry ľ CZ"
Task: {83E4A6A3-B56D-49FF-833A-D09D4DBC7AB0} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-03] (Microsoft Corporation)
Task: {84850533-DB9E-4D23-8994-65B7C507227D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-09] (Microsoft Corporation)
Task: {87949786-64DA-4E6D-8DF0-5EABB07437BC} - System32\Tasks\Microsoft\Windows\Setup\UpgradeTriggers\UpgradeNowTask => C:\WINDOWS\System32\GWX\GWXUXWorker.exe
Task: {881AAD3F-DB78-4E41-9E21-8EA881E72E14} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {90E14AAF-876D-4985-8E0D-360F5F40DD08} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-05-04] (HP Inc.)
Task: {93E7E05B-F250-40FD-ADD7-A5A80F31DCF5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {94EEE6FC-BFF6-4662-BF6E-D6179F309720} - \{F8816750-E235-4387-BA99-C652D06A69CF} -> No File <==== ATTENTION
Task: {9882A9EB-E50C-43FC-9259-5739246DF708} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {9C9E1210-B476-45DE-86D0-1C0C7856CEAC} - System32\Tasks\{BD11348D-7066-47C9-A9EC-1675A93DDB8F} => C:\Windows\system32\pcalua.exe -a "C:\Users\Ondřej\Desktop\call of duty 2 cz\DirectX\dxsetup.exe" -d "C:\Users\Ondřej\Desktop\call of duty 2 cz\DirectX"
Task: {A12D9849-E39D-475D-9EA3-1B5965B253F3} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {A54CF1A5-0EE2-44DE-85FE-36C735BC38EB} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {A60FCABD-B94E-48EA-BE63-7B875AD14DC1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-09] (Microsoft Corporation)
Task: {A70BF27C-99F3-4FFB-A619-900E93944AB7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {B02271AA-C9B5-4C63-BA93-D249BF0A0A4E} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {BE73127D-EB1F-4A6A-BAD2-A45E28106C68} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-09-03] (AVAST Software)
Task: {C3652607-82B5-42A5-A715-41A4D6364C7C} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2017-11-24] ()
Task: {C4274DA5-64BA-4E9C-AB50-D987C6813232} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2018-06-27] (HP Inc.)
Task: {C74F372A-0EF1-4596-9016-F4B5278D62D1} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_Plugin.exe [2018-09-03] (Adobe Systems Incorporated)
Task: {D74D1EDC-A561-4066-B9A5-425C970C8DE2} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [2018-09-03] (AVAST Software)
Task: {DCB08EA6-A487-4F0A-A078-FB23C2295DBA} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {DCB699EF-47E4-4C33-9F00-4412F316256E} - System32\Tasks\HPCeeScheduleForOndřej => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {E057B32C-5C1C-49FA-BFB7-4A6867BBC678} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {E1AA7217-5B95-4191-A233-45C2B12FAB74} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.)
Task: {E1F10D4A-FF66-4661-B3BF-8C8B5587EED9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-09-03] (Microsoft Corporation)
Task: {E1FBA659-8C46-4D78-821E-7E5E47723A54} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated)
Task: {E20A914B-20E6-4F00-888A-30C3B09559CA} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-03] (Microsoft Corporation)
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\adf9ec37-1363-4db4-8a24-aa0164210f70-4" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\Adobe Acrobat Update Task" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\Adobe Flash Player Updater" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\CLVDLauncher" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\CreateChoiceProcessTask" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\HPCeeScheduleForOndřej" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\LaunchSignup" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-2562165561-2641732231-254196661-1001" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\Optimize Start Menu Cache Files-S-1-5-21-2562165561-2641732231-254196661-500" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\Synaptics TouchPad Enhancements" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\User_Feed_Synchronization-{F2FCDC34-3331-4502-BE97-952B1E63B756}" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\YCMServiceAgent" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(16): schtasks.exe -> /Change /TN "\{486F8833-29E9-4DF8-B41B-685C6040C4CD}" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(17): schtasks.exe -> /Change /TN "\{B61BEC5A-3F88-4D0D-988D-CE0AD2CD8555}" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(18): schtasks.exe -> /Change /TN "\{BD11348D-7066-47C9-A9EC-1675A93DDB8F}" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(19): schtasks.exe -> /Change /TN "\{F8816750-E235-4387-BA99-C652D06A69CF}" /ENABLE
Task: {E7A7EBE7-F84D-4333-808A-4227DE3648F7} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(20): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {EDA39620-D012-4755-880F-CC99DF1F7993} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {F0381889-80F6-4305-9D40-F74F833022E5} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2015-06-22] (CyberLink Corp.)
Task: {F525E7BA-245C-4C6D-99D6-AB8E19C74691} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {F5D49BA2-D070-44E0-9404-F83D37758831} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {F9C706F7-71B1-4935-AA3F-467A549C140F} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\osfinstaller.exe [2018-09-03] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\adf9ec37-1363-4db4-8a24-aa0164210f70-4.job => C:\Program Files (x86)\Internet Speed Checker\adf9ec37-1363-4db4-8a24-aa0164210f70-4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\HPCeeScheduleForOndřej.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2014-12-16 21:00 - 2017-01-05 21:23 - 000214520 ____N () C:\WINDOWS\SysWOW64\PnkBstrB.exe
2014-12-16 21:00 - 2014-12-16 21:00 - 000075064 ____N () C:\Windows\SysWOW64\PnkBstrA.exe
2017-09-29 15:41 - 2017-09-29 15:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-07-12 19:30 - 2018-06-29 10:00 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2018-07-12 19:30 - 2018-06-29 09:57 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-06-25 11:06 - 2018-06-08 09:24 - 003657632 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll
2018-06-25 11:06 - 2018-06-08 09:26 - 002470304 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentManagementSDK.dll
2018-07-29 11:51 - 2018-07-29 12:07 - 035195392 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18061.13911.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-07-29 11:51 - 2018-07-29 12:08 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18061.13911.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-07-29 11:51 - 2018-07-29 12:08 - 006373376 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18061.13911.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-09-26 19:08 - 2017-09-26 19:16 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18061.13911.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-07-29 11:51 - 2018-07-29 12:08 - 008903168 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18061.13911.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-07-03 15:08 - 2018-06-22 21:15 - 004608856 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\libglesv2.dll
2018-07-03 15:08 - 2018-06-22 21:15 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\libegl.dll
2018-07-18 18:41 - 2018-07-18 18:45 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-07-18 18:41 - 2018-07-18 18:45 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-07-18 18:41 - 2018-07-18 18:45 - 022373888 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-07-18 18:41 - 2018-07-18 18:45 - 002610176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll
2018-09-04 07:20 - 2018-09-04 07:20 - 000098816 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\win32api.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000110080 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\pywintypes27.dll
2018-09-04 07:20 - 2018-09-04 07:20 - 000364544 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\pythoncom27.dll
2018-09-04 07:20 - 2018-09-04 07:20 - 000320512 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\win32com.shell.shell.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000914432 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\_hashlib.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 001176576 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\wx._core_.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000806400 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\wx._gdi_.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000816128 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\wx._windows_.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 001067008 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\wx._controls_.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000733184 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\wx._misc_.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000682496 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\pysqlite2._sqlite.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000088064 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\_ctypes.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000686080 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\unicodedata.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000119808 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\win32file.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000108544 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\win32security.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000007168 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\hashobjs_ext.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000017920 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\thumbnails_ext.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000088064 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\usb_ext.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000012800 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\common.time34.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000018432 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\win32event.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000167936 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\win32gui.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000046080 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\_socket.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 001303552 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\_ssl.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000128512 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\_elementtree.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000127488 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\pyexpat.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000038912 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\win32inet.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000036864 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\_psutil_windows.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000525208 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\windows._lib_cacheinvalidation.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000011264 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\win32crypt.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000123392 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\wx._wizard.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000077312 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\wx._html2.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000027648 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\_multiprocessing.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000020480 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\_yappi.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000035840 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\win32process.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000078848 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\wx._animate.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000024064 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\win32pipe.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000010240 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\select.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000025600 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\win32pdh.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000017408 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\win32profile.pyd
2018-09-04 07:20 - 2018-09-04 07:20 - 000022528 ____R () C:\Users\ONDEJ~1\AppData\Local\Temp\_MEI26042\win32ts.pyd
2018-03-05 10:18 - 2018-03-05 10:18 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-08-21 11:29 - 2018-08-21 11:29 - 000483544 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-08-21 11:28 - 2018-08-21 11:28 - 000282840 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2016-01-15 19:30 - 2015-06-22 11:18 - 000865720 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\UNO.dll
2016-01-15 19:30 - 2013-12-30 03:20 - 001329624 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\Language\CSY\P2GRC.dll
2014-09-16 23:07 - 2014-03-12 08:34 - 000866056 _____ () C:\Program Files (x86)\CyberLink\YouCam\subsys\BigBang\Runtime\UNO.dll
2014-09-16 23:07 - 2011-08-24 04:39 - 000081920 _____ () C:\Program Files (x86)\CyberLink\YouCam\koan\_ctypes.pyd

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2018-09-04 07:29 - 000000832 _____ C:\WINDOWS\system32\Drivers\etc\hosts

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2562165561-2641732231-254196661-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ondřej\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\tapeta programu windows prohlížeč fotografií.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B7528DB0-481B-4B71-97CF-87B0C6A1856A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [UDP Query User{0B2AC7A5-7CCD-443E-92F2-99ED8109DA1E}C:\users\ondřej\desktop\call of duty - black ops\blackops (2).exe] => (Block) C:\users\ondřej\desktop\call of duty - black ops\blackops (2).exe
FirewallRules: [TCP Query User{C8916825-E87A-4D39-BDD5-6729BCA97BAC}C:\users\ondřej\desktop\call of duty - black ops\blackops (2).exe] => (Block) C:\users\ondřej\desktop\call of duty - black ops\blackops (2).exe
FirewallRules: [UDP Query User{1369023F-2F85-4F37-962D-C62038D2F88B}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [TCP Query User{1C34436F-579A-447E-9B55-1535BFA1FC70}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{8307FDA0-6EC2-4559-BD5A-80B64ECA2F15}] => (Allow) C:\Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe
FirewallRules: [{E77FB7A3-ADE5-4DFC-9A95-0F389141263B}] => (Allow) C:\Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe
FirewallRules: [{410C16BC-B702-4E8C-8291-EB7DE83F0FEC}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{AC9E20BF-991A-47B6-99DA-FB8720C8F106}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{5CA13096-AE9B-4167-82F6-26F14318452C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{3A306298-FAC3-4BF5-A3AA-B4410B81DE10}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4F4EFFB1-10D2-40CE-91C8-6113D2720A3D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{88691956-ABC2-4B71-8F51-A1023FBD1697}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{D2BFDE14-E573-4194-81F8-327D05CB1A1B}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
FirewallRules: [{BFA8E751-1E96-4431-9380-2C5DB20B05D8}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{07D613C9-102A-4CDB-800B-DB8E191967C5}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
FirewallRules: [{3D77B4C1-3857-4637-B381-F242222A6998}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{73E106F8-6517-46AA-A557-5D6C6452C09C}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{17D44C78-2D2E-4021-A60B-41AA13F6C102}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{1541C3A7-716F-4561-93CE-2674FC1BBDE6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{6A9C50EC-6469-42AA-AF42-DF8FF4CDE74D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{6B08247C-BDCA-4EF1-8D98-77FEA100D833}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4C8A9D64-01E4-4161-8515-0DC59274622B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{D1361036-9FAC-42AB-8228-26D670AE114D}] => (Allow) LPort=1900
FirewallRules: [{59EDCD6C-3DAD-438B-969C-58BF47E23FBA}] => (Allow) LPort=2869
FirewallRules: [{14BBC30B-4772-4B9E-B35B-FE19F2AB909A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{2AC9D0AB-2C4B-4C6E-8B78-89578E5AA3F1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{564DEDFB-2B70-456A-9951-9867C30E014C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [TCP Query User{CBE4A36D-7B7D-448D-A827-400162F10D7F}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [UDP Query User{34BC3136-6E76-478F-A410-ED9537DAAD3D}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [{17F2A35C-DC69-4EB8-B7D4-149998BF11A6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{D2AB1C85-AB00-4A54-A7CA-C7306CE582BE}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{D40DCAE4-28E0-4FD4-97DA-F3A6F9508030}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{FB33737F-183E-408A-86BC-E8FE9EBA6D1F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{6A50F561-749F-4D78-955E-6AF76300B7EC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{A2EF9A74-2829-4B42-9A1D-0FE5C852EE49}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{C85C7F83-6377-485F-A6C5-0F3583D832BB}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe

==================== Restore Points =========================

08-08-2018 21:35:49 Windows Update
03-09-2018 20:52:47 Windows Update
03-09-2018 20:55:18 Windows Update

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (09/03/2018 09:28:11 PM) (Source: MsiInstaller) (EventID: 1024) (User: NT AUTHORITY)
Description: Aktualizaci {8B689F89-5E1C-4DA9-B2B1-7B3843275596} produktu Microsoft Office Professional 2007 nebylo možné nainstalovat. Kód chyby: 1642. Instalační služba systému Windows může vytvořit soubor protokolu s informacemi, které usnadní řešení potíží při instalaci softwaru. Další informace naleznete na webu na adrese http://go.microsoft.com/fwlink/?LinkId=23127

Error: (09/03/2018 09:27:58 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu WmiApRpl v knihovně DLL C:\WINDOWS\system32\wbem\wmiaprpl.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (09/03/2018 09:27:56 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (09/03/2018 09:27:56 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu MSDTC v knihovně DLL C:\WINDOWS\system32\msdtcuiu.DLL se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (09/03/2018 09:27:54 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu Lsa v knihovně DLL C:\Windows\System32\Secur32.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (09/03/2018 09:27:54 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu ESENT v knihovně DLL C:\WINDOWS\system32\esentprf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (09/03/2018 08:54:25 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu BITS v knihovně DLL C:\Windows\System32\bitsperf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (09/03/2018 08:43:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15656

System errors:
=============
Error: (09/04/2018 07:34:25 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/04/2018 07:29:18 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/04/2018 07:28:07 AM) (Source: DCOM) (EventID: 10016) (User: ONDRA)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
a APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
uživateli Ondra\Ondřej (SID: S-1-5-21-2562165561-2641732231-254196661-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Microsoft.Windows.ContentDeliveryManager_10.0.16299.15_neutral_neutral_cw5n1h2txyewy – SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/04/2018 07:25:39 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/04/2018 07:25:03 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {784E29F4-5EBE-4279-9948-1E8FE941646D} se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/04/2018 07:23:34 AM) (Source: DCOM) (EventID: 10016) (User: ONDRA)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
a APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
uživateli Ondra\Ondřej (SID: S-1-5-21-2562165561-2641732231-254196661-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Microsoft.Windows.ContentDeliveryManager_10.0.16299.15_neutral_neutral_cw5n1h2txyewy – SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/04/2018 07:22:42 AM) (Source: DCOM) (EventID: 10016) (User: ONDRA)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli Ondra\Ondřej (SID: S-1-5-21-2562165561-2641732231-254196661-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/04/2018 07:21:49 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {784E29F4-5EBE-4279-9948-1E8FE941646D} se v daném časovém limitu neregistroval u služby DCOM.

Windows Defender:
===================================
Date: 2017-12-13 15:24:33.676
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Misleading:Win32/Sofolview
ID: 240761
Závažnost: Vysoké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Program Files (x86)\Solvusoft\SuiteService.exe;process:_pid:3180,ProcessStart:131576479283872272;regkey:_HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS\\C:\Program Files (x86)\Solvusoft\SuiteService.exe;service:_Solvusoft Suite Service;shareddll:_HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS\\C:\Program Files (x86)\Solvusoft\SuiteService.exe
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Program Files (x86)\Solvusoft\SuiteService.exe
Verze podpisu: AV: 1.259.206.0, AS: 1.259.206.0, NIS: 118.2.0.0
Verze modulu: AM: 1.1.14405.2, NIS: 2.1.14202.0

Date: 2017-12-13 15:22:18.027
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Misleading:Win32/Sofolview
ID: 240761
Závažnost: Vysoké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Program Files (x86)\Solvusoft\SuiteService.exe
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClient.exe
Verze podpisu: AV: 1.259.206.0, AS: 1.259.206.0, NIS: 118.2.0.0
Verze modulu: AM: 1.1.14405.2, NIS: 2.1.14202.0

Date: 2017-12-13 15:22:00.183
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Misleading:Win32/Sofolview
ID: 240761
Závažnost: Vysoké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe;regkey:_HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\CommonToolkitTray_Solvusoft;regkey:_HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS\\C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe;runkey:_HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\CommonToolkitTray_Solvusoft;shareddll:_HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS\\C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: Ondra\Ondřej
Název procesu: C:\Windows\SysWOW64\runonce.exe
Verze podpisu: AV: 1.259.206.0, AS: 1.259.206.0, NIS: 118.2.0.0
Verze modulu: AM: 1.1.14405.2, NIS: 2.1.14202.0

Date: 2017-12-13 15:21:52.519
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Misleading:Win32/Sofolview
ID: 240761
Závažnost: Vysoké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Program Files (x86)\Solvusoft\SuiteService.exe
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClient.exe
Verze podpisu: AV: 1.259.206.0, AS: 1.259.206.0, NIS: 118.2.0.0
Verze modulu: AM: 1.1.14405.2, NIS: 2.1.14202.0

Date: 2017-12-13 15:15:33.248
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Misleading:Win32/Sofolview
ID: 240761
Závažnost: Vysoké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: Ondra\Ondřej
Název procesu: C:\Windows\SysWOW64\runonce.exe
Verze podpisu: AV: 1.259.206.0, AS: 1.259.206.0, NIS: 118.2.0.0
Verze modulu: AM: 1.1.14405.2, NIS: 2.1.14202.0

Date: 2018-06-05 16:27:43.161
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.259.257.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.14405.2
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2018-06-05 16:27:43.160
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 118.2.0.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Systém kontroly sítě
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 2.1.14202.0
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2018-06-05 16:27:43.120
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.259.257.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.14405.2
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2018-06-05 16:27:43.119
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.259.257.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.14405.2
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2018-06-05 16:27:43.118
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.259.257.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.14405.2
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

CodeIntegrity:
===================================

Date: 2018-09-04 07:37:11.462
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-04 07:37:11.454
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-04 07:36:48.585
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-04 07:36:48.546
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-04 07:34:59.448
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-04 07:34:59.444
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-04 07:34:49.128
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-04 07:34:49.121
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Celeron(R) CPU N2840 @ 2.16GHz
Percentage of memory in use: 61%
Total physical RAM: 3984.27 MB
Available physical RAM: 1523.03 MB
Total Virtual: 6416.27 MB
Available Virtual: 3583.73 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:447.39 GB) (Free:133.22 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:16.44 GB) (Free:1.58 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{39cca1ee-f533-4ed8-b528-949863bc2cf9}\ (WINRE) (Fixed) (Total:0.63 GB) (Free:0.35 GB) NTFS
\\?\Volume{3bf443ea-3e87-4c31-9d37-a1c1f02ff2f0}\ () (Fixed) (Total:0.25 GB) (Free:0.14 GB) FAT32
\\?\Volume{217352a0-c3bf-4935-b4bb-72967679f681}\ () (Fixed) (Total:0.9 GB) (Free:0.34 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 6724854A)

Partition: GPT.

==================== End of Addition.txt ============================

kosta777 · #5 Příspěvek od **kosta777** » 04 zář 2018 07:24

dnes zase vykřičníku wifi a nechtělo se to připojit. systémové řešené problémů muselo resetovat wifi adaptér. ¨

výpis:

TiskSíťový adaptér Podrobnosti o vydavateli

Nalezené problémy
Adaptér Wi-Fi nemá platnou konfiguraci protokolu IP.Adaptér Wi-Fi nemá platnou konfiguraci protokolu IP. Opraveno Opraveno
Resetujte adaptér Wi-Fi. Dokončeno
Zkontrolujte, zda nedochází k potížím se směrovačem nebo širokopásmovým modemem. Nespuštěno

Nalezené problémy Podrobnosti o zjištění

6 Adaptér Wi-Fi nemá platnou konfiguraci protokolu IP. Opraveno Opraveno

Resetujte adaptér Wi-Fi. Dokončeno

Někdy to může občasný problém vyřešit.
InformativníProtokol diagnostiky sítě
Název souboru: A9DAA4F7-DAAE-43DE-95B2-C7A80F67588B.Repair.1.etl

Zkontrolujte, zda nedochází k potížím se směrovačem nebo širokopásmovým modemem. Nespuštěno

Jste-li připojeni k hotspotu nebo doménové síti, obraťte na správce sítě. V opačném případě: 1. Odpojte zařízení ze zásuvky nebo jej vypněte. 2. Jakmile zhasnou kontrolky na zařízení, počkejte alespoň 10 sekund. 3. Opět zapněte zařízení nebo jej zapojte do zásuvky. Chcete-li restartovat směrovač nebo modem s integrovanou baterií, stiskněte a rychle uvolněte tlačítko Reset.

Podrobnosti o zjištění Rozbalit

InformativníDiagnostické informace (Síťový Adaptér)
Podrobnosti diagnostiky síťový adaptér:

Informace o ovladači síťového adaptéru Wi-Fi:

Popis . . . . . . . . . . : Ralink RT3290 802.11bgn Wi-Fi Adapter
Výrobce . . . . . . . . . : Ralink Technology, Corp.
Poskytovatel . . . . . . . . . . . : Microsoft
Verze . . . . . . . . . . . : 5.0.57.0
Název souboru INF . . . . . . . . . : C:\WINDOWS\INF\netr28x.inf
Datum souboru INF . . . . . . . . . : pátek 29. září 2017 13:41:01
Název oddílu . . . . . . . . . : NDIS61_RT3900E3.ndi
ID hardwaru . . . . . . . . . . : pci\ven_1814&dev_3290
Příznaky stavu instance . . . . . : 0x180200a
Stavový kód správce zařízení . . : 0
IfType . . . . . . . . . . . . : 71
Typ fyzického média . . . . . . : 9

InformativníDiagnostické informace (Bezdrátové Připojení)
Podrobnosti diagnostiky bezdrátové připojení:

Informace o diagnostikovaných připojeních
Identifikátor GUID rozhraní: 33a0473d-74e1-4774-9ad5-b92b295f208c
Název rozhraní: Ralink RT3290 802.11bgn Wi-Fi Adapter
Typ rozhraní: Nativní Wi-Fi

Problém s připojením se diagnostikoval.
ID automatické konfigurace: 1
ID připojení: 1

Souhrnný stav připojení
Čas navázání připojení: 2018-09-04 07:45:49-866
Shoda profilu: Úspěch
Předběžné přidružení: Úspěch
Přidružení: Úspěch
Zabezpečení a ověřování: Úspěch

Seznam viditelných přístupových bodů: Celkem položek: 1, zobrazeno položek: 1
BSSID Síť PHY typu BSS Signál (dB) Kanál/frekvence SSID
-------------------------------------------------------------------------
E8-DE-27-DE-A2-92 Infra <neznámý> -83 6 Lucakova_Klient_Cryonix.cz

Historie připojení

Informace pro automatickou konfiguraci, ID = 1

Seznam viditelných sítí: Celkem položek: 1, zobrazeno položek: 1
Síť PHY typu BSS Zabezpečení Signál (RSSI) Kompatibilní SSID
------------------------------------------------------------------------------
Infra <neznámý> Ano 34 Ano Lucakova_Klient_Cryonix.cz

Seznam upřednostňovaných sítí: Počet položek: 4
Profil: Lucakova_Klient_Cryonix.cz
SSID: Lucakova_Klient_Cryonix.cz
Délka identifikátoru SSID: 26
Režim připojení: Infra
Zabezpečení: Ano
Nastaveno zásadami skupiny: Ne
Připojit se i v případě, že síť nevysílá: Ne
Lze připojit: Ano
Profil: Karolína - iPhone
SSID: KarolĂna - iPhone
Délka identifikátoru SSID: 18
Režim připojení: Infra
Zabezpečení: Ano
Nastaveno zásadami skupiny: Ne
Připojit se i v případě, že síť nevysílá: Ne
Lze připojit: Ne
Důvod: 0x00028003
Profil: Prdelky
SSID: Prdelky
Délka identifikátoru SSID: 7
Režim připojení: Infra
Zabezpečení: Ano
Nastaveno zásadami skupiny: Ne
Připojit se i v případě, že síť nevysílá: Ne
Lze připojit: Ne
Důvod: 0x00028003
Profil: UPC2388388
SSID: UPC2388388
Délka identifikátoru SSID: 10
Režim připojení: Infra
Zabezpečení: Ano
Nastaveno zásadami skupiny: Ne
Připojit se i v případě, že síť nevysílá: Ne
Lze připojit: Ne
Důvod: 0x00028003

Informace pro připojení, ID = 1
Čas navázání připojení: 2018-09-04 07:45:49-866
ID automatické konfigurace: 1
Profil: Lucakova_Klient_Cryonix.cz
SSID: Lucakova_Klient_Cryonix.cz
Délka identifikátoru SSID: 26
Režim připojení: Infra
Zabezpečení: Ano
Předběžné přidružení a přidružení
Nastavení připojení poskytnuté výrobcem zařízení (nezávislým): Ne
Nastavení zabezpečení poskytnuté výrobcem zařízení (nezávislým): Ne
Profil splňuje požadavky sítě: Úspěch
Stav předběžného přidružení: Úspěch
Stav přidružení: Úspěšné
Poslední přístupový bod (AP): e8-de-27-de-a2-92
Zabezpečení a ověřování
Nakonfigurovaný typ zabezpečení: WPA2-PSK
Nakonfigurovaný typ šifrování: CCMP(AES)
Protokol 802.1X: Ne
Výměna klíčů byla zahájena: Ano
Přijaté klíče jednosměrného vysílání: Ano
Přijatý klíč vícesměrového vysílání: Ano
Počet přijatých paketů zabezpečení: 0
Počet odeslaných paketů zabezpečení: 0
Stav pokusu o zabezpečení: Úspěch
Připojení
Statistika paketů
Ndis Rx: 136457
Ndis Tx: 76402
Úspěšné dešifrování jednosměrového vysílání: 0
Úspěšné dešifrování vícesměrového vysílání: 0
Chybné dešifrování jednosměrového vysílání: 0
Chybné dešifrování vícesměrového vysílání: 0
Úspěšně přijato: 1110
Chybně přijato: 0
Úspěšně odesláno: 177
Chybně odesláno: 0
Opakování Tx: 0
Vícenásobné opakování Tx: 0
Překročena max. životnost Tx: 0
Chybné potvrzení Tx: 0
Historie roamingu: Počet položek: 3
Časy: 2018-09-04 08:17:27-896
Počet položek roamingu od BSSID: e8-de-27-de-a2-92
Důvod: 0x00010006
Časy: 2018-09-04 08:17:23-843
Počet položek roamingu od BSSID: e8-de-27-de-a2-92
Důvod: 0x00000003
Časy: 2018-09-04 08:08:30-894
Počet položek roamingu od BSSID: e8-de-27-de-a2-92
Důvod: 0x00000003

InformativníDiagnostické informace (Bezdrátové Připojení)
Podrobnosti diagnostiky bezdrátové připojení:

Úplné informace o této relaci naleznete v informační události bezdrátového připojení.

Třída pomocníka: Automatická konfigurace
Stav inicializace: Úspěch

Informace o diagnostikovaných připojeních
Identifikátor GUID rozhraní: 33a0473d-74e1-4774-9ad5-b92b295f208c
Název rozhraní: Ralink RT3290 802.11bgn Wi-Fi Adapter
Typ rozhraní: Nativní Wi-Fi

Výsledek diagnostiky: Mohou být zjištěny potíže.

InformativníDiagnostické informace (Adaptér Bezdrátové Sítě)
Podrobnosti diagnostiky adaptér bezdrátové sítě:

Úplné informace o této relaci naleznete v informační události bezdrátového připojení.

Třída pomocníka: Nativní Wi-Fi MSM
Stav inicializace: Úspěch

Informace o diagnostikovaných připojeních
Identifikátor GUID rozhraní: 33a0473d-74e1-4774-9ad5-b92b295f208c
Název rozhraní: Ralink RT3290 802.11bgn Wi-Fi Adapter
Typ rozhraní: Nativní Wi-Fi
Profil: Lucakova_Klient_Cryonix.cz
SSID: Lucakova_Klient_Cryonix.cz
Délka identifikátoru SSID: 26
Režim připojení: Infra
Zabezpečení: Ano
Připojit se i v případě, že síť nevysílá: Ne

Výsledek diagnostiky: Mohou být zjištěny potíže.

InformativníProtokol diagnostiky sítě
Název souboru: A9DAA4F7-DAAE-43DE-95B2-C7A80F67588B.Diagnose.0.etl

InformativníDalší konfigurace sítě a protokoly
Název souboru: NetworkConfiguration.cab

Informace o kolekci
Název počítače: ONDRA
Verze Windows: 10.0
Architektura: x64
Čas: úterý 4. září 2018 8:18:22

Podrobnosti o vydavateli Rozbalit

Diagnostika sítě
Zjišťuje problémy s připojením k síti.
Verze balíčku: 4.0
Vydavatel: Microsoft Windows
Síťový adaptér
Vyhledání a odstranění problémů s adaptérem bezdrátové sítě a jinými síťovými adaptéry
Verze balíčku: 3.0
Vydavatel: Microsoft Corporation

#6 Příspěvek od **Conder** » 04 zář 2018 15:27

Ak nepouzivas, odorucam odinstalovat Seznam Software (Seznam Listicka).

Otvor poznamkovy blok (Win+R -> notepad -> enter)

Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
File: C:\Program Files (x86)\Internet Speed Checker\adf9ec37-1363-4db4-8a24-aa0164210f70-4.exe
Folder: C:\Program Files (x86)\Internet Speed Checker

HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\Run: [cz.seznam.software.autoupdate] => "C:\Users\Ondřej\AppData\Roaming\Seznam.cz\szninstall.exe" -c
HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\Run: [cz.seznam.software.szndesktop] => "C:\Users\Ondřej\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe"  -q
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
BHO: No Name -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> No File
BHO-x32: No Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> No File
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\mcafee\msc\npMcSnFFPl64.dll [No File]
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll [No File]
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/?clid=22668"
CHR NewTab: Default ->  Active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/speeddial/newTab.html"
CHR DefaultSearchURL: Default -> hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
CHR DefaultSuggestURL: Default -> hxxp://suggest.fulltext.seznam.cz/fulltext_ff?phrase={searchTerms}
CHR HKU\S-1-5-21-2562165561-2641732231-254196661-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmojkbhnkkphngknkmgccmlenfaelkd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
S3 intaud_WaveExtensible; \SystemRoot\system32\drivers\intelaud.sys [X]
2017-04-12 23:22 - 2017-04-12 23:22 - 007639040 _____ () C:\Program Files (x86)\GUT3A6A.tmp
CustomCLSID: HKU\S-1-5-21-2562165561-2641732231-254196661-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Ondřej\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
Task: {03A3AB45-C7B7-43B0-B015-59F3A7B58BDE} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {04032CC2-179D-4C95-BB7D-A01B248E03E3} - System32\Tasks\adf9ec37-1363-4db4-8a24-aa0164210f70-4 => C:\Program Files (x86)\Internet Speed Checker\adf9ec37-1363-4db4-8a24-aa0164210f70-4.exe <==== ATTENTION
Task: {193D9995-B9DB-4E5B-9374-D79623CC014C} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {42B82822-D367-41AC-9A46-4782FAB3EC1C} - \WPD\SqmUpload_S-1-5-21-2562165561-2641732231-254196661-1001 -> No File <==== ATTENTION
Task: {4D5C4DCD-A890-4BAC-B7AC-8351C85831C8} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {4E277E5A-D5C4-4C49-B56A-83D3D1ABE959} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {4EFD9B5F-2CFE-4747-B925-2D46C129F64F} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {554226CC-AFC1-48B9-B34E-54CA155B94E7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {80FCA74E-8427-4A4E-8AF2-BE20BEDD3CB4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {881AAD3F-DB78-4E41-9E21-8EA881E72E14} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {93E7E05B-F250-40FD-ADD7-A5A80F31DCF5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {94EEE6FC-BFF6-4662-BF6E-D6179F309720} - \{F8816750-E235-4387-BA99-C652D06A69CF} -> No File <==== ATTENTION
Task: {9882A9EB-E50C-43FC-9259-5739246DF708} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {A12D9849-E39D-475D-9EA3-1B5965B253F3} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {A54CF1A5-0EE2-44DE-85FE-36C735BC38EB} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {A70BF27C-99F3-4FFB-A619-900E93944AB7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {B02271AA-C9B5-4C63-BA93-D249BF0A0A4E} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {E057B32C-5C1C-49FA-BFB7-4A6867BBC678} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {EDA39620-D012-4755-880F-CC99DF1F7993} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {F525E7BA-245C-4C6D-99D6-AB8E19C74691} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\adf9ec37-1363-4db4-8a24-aa0164210f70-4.job => C:\Program Files (x86)\Internet Speed Checker\adf9ec37-1363-4db4-8a24-aa0164210f70-4.exe <==== ATTENTION

Hosts:
EmptyTemp:
End

Uloz na plochu s nazvom fixlist.txt
Spusti znovu FRST a klikni na Fix
Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj

kosta777 · #7 Příspěvek od **kosta777** » 04 zář 2018 17:47

seznam odstraněn!

Fix result of Farbar Recovery Scan Tool (x64) Version: 01.09.2018 03
Ran by Ondřej (04-09-2018 18:16:12) Run:1
Running from C:\Users\Ondřej\Desktop
Loaded Profiles: Ondřej (Available Profiles: Ondřej)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
File: C:\Program Files (x86)\Internet Speed Checker\adf9ec37-1363-4db4-8a24-aa0164210f70-4.exe
Folder: C:\Program Files (x86)\Internet Speed Checker

HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\Run: [cz.seznam.software.autoupdate] => "C:\Users\Ond�ej\AppData\Roaming\Seznam.cz\szninstall.exe" -c
HKU\S-1-5-21-2562165561-2641732231-254196661-1001\...\Run: [cz.seznam.software.szndesktop] => "C:\Users\Ond�ej\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
BHO: No Name -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> No File
BHO-x32: No Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> No File
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\mcafee\msc\npMcSnFFPl64.dll [No File]
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll [No File]
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/?clid=22668"
CHR NewTab: Default -> Active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/speeddial/newTab.html"
CHR DefaultSearchURL: Default -> hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
CHR DefaultSuggestURL: Default -> hxxp://suggest.fulltext.seznam.cz/fulltext_ff?phrase={searchTerms}
CHR HKU\S-1-5-21-2562165561-2641732231-254196661-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmojkbhnkkphngknkmgccmlenfaelkd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
S3 intaud_WaveExtensible; \SystemRoot\system32\drivers\intelaud.sys [X]
2017-04-12 23:22 - 2017-04-12 23:22 - 007639040 _____ () C:\Program Files (x86)\GUT3A6A.tmp
CustomCLSID: HKU\S-1-5-21-2562165561-2641732231-254196661-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Ond�ej\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
Task: {03A3AB45-C7B7-43B0-B015-59F3A7B58BDE} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {04032CC2-179D-4C95-BB7D-A01B248E03E3} - System32\Tasks\adf9ec37-1363-4db4-8a24-aa0164210f70-4 => C:\Program Files (x86)\Internet Speed Checker\adf9ec37-1363-4db4-8a24-aa0164210f70-4.exe <==== ATTENTION
Task: {193D9995-B9DB-4E5B-9374-D79623CC014C} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {42B82822-D367-41AC-9A46-4782FAB3EC1C} - \WPD\SqmUpload_S-1-5-21-2562165561-2641732231-254196661-1001 -> No File <==== ATTENTION
Task: {4D5C4DCD-A890-4BAC-B7AC-8351C85831C8} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {4E277E5A-D5C4-4C49-B56A-83D3D1ABE959} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {4EFD9B5F-2CFE-4747-B925-2D46C129F64F} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {554226CC-AFC1-48B9-B34E-54CA155B94E7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {80FCA74E-8427-4A4E-8AF2-BE20BEDD3CB4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {881AAD3F-DB78-4E41-9E21-8EA881E72E14} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {93E7E05B-F250-40FD-ADD7-A5A80F31DCF5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {94EEE6FC-BFF6-4662-BF6E-D6179F309720} - \{F8816750-E235-4387-BA99-C652D06A69CF} -> No File <==== ATTENTION
Task: {9882A9EB-E50C-43FC-9259-5739246DF708} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {A12D9849-E39D-475D-9EA3-1B5965B253F3} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {A54CF1A5-0EE2-44DE-85FE-36C735BC38EB} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {A70BF27C-99F3-4FFB-A619-900E93944AB7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {B02271AA-C9B5-4C63-BA93-D249BF0A0A4E} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {E057B32C-5C1C-49FA-BFB7-4A6867BBC678} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {EDA39620-D012-4755-880F-CC99DF1F7993} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {F525E7BA-245C-4C6D-99D6-AB8E19C74691} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\adf9ec37-1363-4db4-8a24-aa0164210f70-4.job => C:\Program Files (x86)\Internet Speed Checker\adf9ec37-1363-4db4-8a24-aa0164210f70-4.exe <==== ATTENTION

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========

Count : 19093
Average :
Sum : 191094334218
Maximum :
Minimum :
Property : Length

========= End of Powershell: =========

========================= File: C:\Program Files (x86)\Internet Speed Checker\adf9ec37-1363-4db4-8a24-aa0164210f70-4.exe ========================

"C:\Program Files (x86)\Internet Speed Checker\adf9ec37-1363-4db4-8a24-aa0164210f70-4.exe" => not found
====== End of File: ======

========================= Folder: C:\Program Files (x86)\Internet Speed Checker ========================

not found.

====== End of Folder: ======

"HKU\S-1-5-21-2562165561-2641732231-254196661-1001\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate" => not found
"HKU\S-1-5-21-2562165561-2641732231-254196661-1001\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop" => not found
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}" => removed successfully
"HKLM\Software\Classes\CLSID\{B4F3A835-0E21-4959-BA22-42B3008E02FF}" => removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}" => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => not found
"HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\msktbird@mcafee.com" => removed successfully
"HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10" => removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@mcafee.com/MSC,version=10" => removed successfully
"Chrome HomePage" => removed successfully
"Chrome StartupUrls" => removed successfully
"Chrome NewTab" => removed successfully
"Chrome DefaultSearchURL" => removed successfully
"Chrome DefaultSuggestURL" => removed successfully
"HKU\S-1-5-21-2562165561-2641732231-254196661-1001\SOFTWARE\Google\Chrome\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd" => removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh" => removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck" => removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki" => removed successfully
"HKLM\System\CurrentControlSet\Services\intaud_WaveExtensible" => removed successfully
intaud_WaveExtensible => service removed successfully
C:\Program Files (x86)\GUT3A6A.tmp => moved successfully
"HKU\S-1-5-21-2562165561-2641732231-254196661-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}" => removed successfully
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui" => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{03A3AB45-C7B7-43B0-B015-59F3A7B58BDE}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{03A3AB45-C7B7-43B0-B015-59F3A7B58BDE}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{04032CC2-179D-4C95-BB7D-A01B248E03E3}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{04032CC2-179D-4C95-BB7D-A01B248E03E3}" => removed successfully
C:\WINDOWS\System32\Tasks\adf9ec37-1363-4db4-8a24-aa0164210f70-4 => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\adf9ec37-1363-4db4-8a24-aa0164210f70-4" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{193D9995-B9DB-4E5B-9374-D79623CC014C}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{193D9995-B9DB-4E5B-9374-D79623CC014C}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\rundetector" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{42B82822-D367-41AC-9A46-4782FAB3EC1C}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{42B82822-D367-41AC-9A46-4782FAB3EC1C}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WPD\SqmUpload_S-1-5-21-2562165561-2641732231-254196661-1001" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4D5C4DCD-A890-4BAC-B7AC-8351C85831C8}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4D5C4DCD-A890-4BAC-B7AC-8351C85831C8}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4E277E5A-D5C4-4C49-B56A-83D3D1ABE959}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4E277E5A-D5C4-4C49-B56A-83D3D1ABE959}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4EFD9B5F-2CFE-4747-B925-2D46C129F64F}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4EFD9B5F-2CFE-4747-B925-2D46C129F64F}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{554226CC-AFC1-48B9-B34E-54CA155B94E7}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{554226CC-AFC1-48B9-B34E-54CA155B94E7}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{80FCA74E-8427-4A4E-8AF2-BE20BEDD3CB4}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{80FCA74E-8427-4A4E-8AF2-BE20BEDD3CB4}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{881AAD3F-DB78-4E41-9E21-8EA881E72E14}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{881AAD3F-DB78-4E41-9E21-8EA881E72E14}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{93E7E05B-F250-40FD-ADD7-A5A80F31DCF5}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{93E7E05B-F250-40FD-ADD7-A5A80F31DCF5}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{94EEE6FC-BFF6-4662-BF6E-D6179F309720}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{94EEE6FC-BFF6-4662-BF6E-D6179F309720}" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F8816750-E235-4387-BA99-C652D06A69CF} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9882A9EB-E50C-43FC-9259-5739246DF708}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9882A9EB-E50C-43FC-9259-5739246DF708}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A12D9849-E39D-475D-9EA3-1B5965B253F3}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A12D9849-E39D-475D-9EA3-1B5965B253F3}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A54CF1A5-0EE2-44DE-85FE-36C735BC38EB}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A54CF1A5-0EE2-44DE-85FE-36C735BC38EB}" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A70BF27C-99F3-4FFB-A619-900E93944AB7}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A70BF27C-99F3-4FFB-A619-900E93944AB7}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OfficeSoftwareProtectionPlatform\SvcRestartTask" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B02271AA-C9B5-4C63-BA93-D249BF0A0A4E}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B02271AA-C9B5-4C63-BA93-D249BF0A0A4E}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E057B32C-5C1C-49FA-BFB7-4A6867BBC678}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E057B32C-5C1C-49FA-BFB7-4A6867BBC678}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EDA39620-D012-4755-880F-CC99DF1F7993}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EDA39620-D012-4755-880F-CC99DF1F7993}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F525E7BA-245C-4C6D-99D6-AB8E19C74691}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F525E7BA-245C-4C6D-99D6-AB8E19C74691}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-Weekend" => removed successfully
C:\WINDOWS\Tasks\adf9ec37-1363-4db4-8a24-aa0164210f70-4.job => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 11821056 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 153338802 B
Java, Flash, Steam htmlcache => 870 B
Windows/system/drivers => 52042624 B
Edge => 29068887 B
Chrome => 476603828 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 91960 B
NetworkService => 42140 B
Ondřej => 101586737 B

RecycleBin => 2205515761 B
EmptyTemp: => 2.8 GB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 18:24:37 ====

#8 Příspěvek od **Conder** » 04 zář 2018 18:52

Nastala nejaka zmena?

kosta777 · #9 Příspěvek od **kosta777** » 04 zář 2018 19:36

po zapnutí se stále často notebook nechce připojit k wifi. musím několikrát ručně odpojit a připojit wifi sít v nabídce dostupných sítí...
navic cely sestem je zpomaleny. nenacita stranky. obcas nespousti programy

#10 Příspěvek od **Conder** » 04 zář 2018 20:01

Stiahni Zoek: http://download.bleepingcomputer.com/smeenk/zoek.exe

Uloz na plochu a spusti ako spravca

Do okna skopiruj nasledujuci script:

Kód: Vybrat vše

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

Klikni na Run script
Pockaj na dokoncenie a restartovanie PC
Po restartovani vyskoci log (pripadne bude v C:\zoek-results.log), jeho obsah sem skopiruj

kosta777 · #11 Příspěvek od **kosta777** » 05 zář 2018 07:07

tady je ten výpis:

Zoek.exe v5.0.0.2 Updated 03-May-2018(Online Version)
Tool run by Ondýej on 04.09.2018 at 21:11:33,84.
Microsoft Windows 10 Home 10.0.16299 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\ONDEJ~1\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

04.09.2018 22:01:37 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\Users\ONDEJ~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\TopCD deleted successfully
C:\PROGRA~3\BSD deleted successfully
C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\Users\ONDEJ~1\AppData\Local\ActiveSync deleted successfully
C:\Users\ONDEJ~1\AppData\Local\DBG deleted successfully
C:\Users\ONDEJ~1\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\ONDEJ~1\AppData\Local\EmieSiteList deleted successfully
C:\Users\ONDEJ~1\AppData\Local\EmieUserList deleted successfully
C:\Users\ONDEJ~1\AppData\Local\NetworkTiles deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\DBG deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Maps deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2562165561-2641732231-254196661-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{524A72AD-224B-4C12-8451-8891F3309C79} deleted successfully
HKEY_USERS\S-1-5-21-2562165561-2641732231-254196661-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09042018205157750\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{524A72AD-224B-4C12-8451-8891F3309C79} deleted successfully
HKEY_USERS\S-1-5-21-2562165561-2641732231-254196661-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09042018205303480\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{524A72AD-224B-4C12-8451-8891F3309C79} deleted successfully
HKEY_USERS\S-1-5-21-2562165561-2641732231-254196661-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8752647-BC69-479D-9D63-4D0CE571E8F} deleted successfully
HKEY_USERS\S-1-5-21-2562165561-2641732231-254196661-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09042018205157750\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8752647-BC69-479D-9D63-4D0CE571E8F} deleted successfully
HKEY_USERS\S-1-5-21-2562165561-2641732231-254196661-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09042018205303480\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8752647-BC69-479D-9D63-4D0CE571E8F} deleted successfully
HKEY_USERS\S-1-5-21-2562165561-2641732231-254196661-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5B6FED1-84FA-4206-8472-E68D9FC1AB16} deleted successfully
HKEY_USERS\S-1-5-21-2562165561-2641732231-254196661-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09042018205157750\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5B6FED1-84FA-4206-8472-E68D9FC1AB16} deleted successfully
HKEY_USERS\S-1-5-21-2562165561-2641732231-254196661-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09042018205303480\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5B6FED1-84FA-4206-8472-E68D9FC1AB16} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

C:\PROGRA~2\GUM3A59.tmp deleted
C:\AUTORUN.INF deleted
C:\PROGRA~3\{C19CA186-4F06-4E22-A1E6-6BAB4723A0DE} deleted
C:\Users\ONDEJ~1\AppData\Local\CrashRpt deleted
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\AVAST Software deleted
C:\windows\SysNative\Tasks\avastBCLRestartS-1-5-21-2562165561-2641732231-254196661-1001 deleted
C:\windows\SysNative\Tasks\avastBCLRestart_chrome.exe deleted
C:\windows\SysNative\Tasks\AvastUpdateTaskMachineCore deleted
C:\windows\SysNative\Tasks\AvastUpdateTaskMachineUA deleted
C:\Users\ONDEJ~1\Downloads\SoftonicDownloader_for_directx.exe deleted
"C:\ProgramData\mntemp" deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\APM\kv_pam.db" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\APM\OndřejFfl2.dat" deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\CrashpadMetrics-active.pma" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\First Run" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Local State" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Pending Metrics" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\BrowserMetrics\BrowserMetrics-5B8EC501-AC4.pma" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\BrowserMetrics\BrowserMetrics-5B8ECFE5-2B2C.pma" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Crashpad\settings.dat" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Avast Secure Browser Profile.ico" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cookies" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cookies-journal" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Current Session" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Favicons" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Favicons-journal" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\History" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\History Provider Cache" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\History-journal" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Login Data" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Login Data-journal" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Network Action Predictor" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Network Action Predictor-journal" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Network Persistent State" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Origin Bound Certs" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Origin Bound Certs-journal" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Preferences" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\previews_opt_out.db" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\previews_opt_out.db-journal" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Secure Preferences" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Shortcuts" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Shortcuts-journal" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Top Sites" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Top Sites-journal" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Translate Ranker Model" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\TransportSecurity" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Visited Links" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Web Data" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Web Data-journal" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache\data_0" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache\data_1" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache\data_2" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache\data_3" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache\f_000001" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache\index" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\data_reduction_proxy_leveldb\000005.log" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\data_reduction_proxy_leveldb\CURRENT" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\data_reduction_proxy_leveldb\LOCK" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\data_reduction_proxy_leveldb\LOG" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\data_reduction_proxy_leveldb\LOG.old" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension Rules\000003.log" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension Rules\CURRENT" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension Rules\LOCK" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension Rules\LOG" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension Rules\MANIFEST-000001" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension State\000003.log" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension State\CURRENT" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension State\LOCK" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension State\LOG" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension State\LOG.old" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension State\MANIFEST-000001" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\GPUCache\data_0" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\GPUCache\data_1" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\GPUCache\data_2" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\GPUCache\data_3" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\GPUCache\index" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Session Storage\000003.log" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Session Storage\CURRENT" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Session Storage\LOCK" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Session Storage\LOG" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Session Storage\MANIFEST-000001" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Thumbnails\000003.log" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Thumbnails\CURRENT" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Thumbnails\LOCK" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Thumbnails\LOG" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Thumbnails\LOG.old" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Thumbnails\MANIFEST-000001" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Download Service\EntryDB\000005.log" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Download Service\EntryDB\CURRENT" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Download Service\EntryDB\LOCK" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Download Service\EntryDB\LOG" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Download Service\EntryDB\LOG.old" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Download Service\EntryDB\MANIFEST-000004" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\angular.js" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\background_script.js" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_game_sender.js" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_sender.js" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\common.js" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\feedback.css" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\feedback.html" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\feedback_script.js" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\manifest.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\material_css_min.css" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\mirroring_cast_streaming.js" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\mirroring_common.js" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\mirroring_hangouts.js" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\mirroring_webrtc.js" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_setup\cast_app.js" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_setup\cast_app_min.css" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_setup\cast_app_redirect.js" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_setup\chromecast_logo_grey.png" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_setup\devices.html" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_setup\index.html" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_setup\offers.html" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_setup\setup.html" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_metadata\computed_hashes.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_metadata\verified_contents.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\am\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ar\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\bg\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\bn\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ca\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\cs\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\da\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\de\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\el\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\en\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\es\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\et\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\fa\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\fi\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\fil\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\fr\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\gu\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\hi\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\hr\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\hu\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\id\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\it\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\iw\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ja\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\kn\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ko\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\lt\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\lv\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ml\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\mr\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ms\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\nb\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\nl\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\pl\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\pt\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ro\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ru\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\sk\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\sl\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\sr\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\sv\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\sw\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ta\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\te\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\th\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\tr\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\uk\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\vi\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\zh\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\zh_TW\messages.json" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Local Storage\leveldb\000003.log" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Local Storage\leveldb\CURRENT" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Local Storage\leveldb\LOCK" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Local Storage\leveldb\LOG" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Local Storage\leveldb\LOG.old" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Local Storage\leveldb\MANIFEST-000001" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\000003.log" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\CURRENT" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOCK" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\MANIFEST-000001" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\ShaderCache\GPUCache\data_0" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\ShaderCache\GPUCache\data_1" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\ShaderCache\GPUCache\data_2" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\ShaderCache\GPUCache\data_3" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\ShaderCache\GPUCache\index" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\APM" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Avast" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\APM\Ondřej" deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Avast\Bodyguard" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\CrashReports" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\BrowserMetrics" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\CertificateRevocation" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\CertificateTransparency" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Crashpad" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\FileTypePolicies" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\MEIPreload" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\OriginTrials" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\PepperFlash" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\pnacl" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Safe Browsing" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\ShaderCache" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\SSLErrorAssistant" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Subresource Filter" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\WidevineCdm" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Crashpad\reports" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\blob_storage" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\data_reduction_proxy_leveldb" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Download Service" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension Rules" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension State" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\GPUCache" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Local Storage" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Session Storage" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Sync Extension Settings" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Thumbnails" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\blob_storage\b79d561b-279e-42d7-ab8b-e5490c0ad1ce" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Download Service\EntryDB" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Download Service\Files" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_setup" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_metadata" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\am" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ar" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\bg" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\bn" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ca" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\cs" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\da" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\de" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\el" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\en" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\es" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\et" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\fa" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\fi" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\fil" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\fr" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\gu" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\hi" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\hr" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\hu" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\id" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\it" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\iw" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ja" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\kn" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ko" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\lt" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\lv" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ml" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\mr" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ms" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\nb" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\nl" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\pl" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\pt" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ro" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ru" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\sk" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\sl" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\sr" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\sv" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\sw" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ta" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\te" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\th" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\tr" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\uk" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\vi" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\zh" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\zh_TW" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Local Storage\leveldb" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\ShaderCache\GPUCache" not deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Subresource Filter\Unindexed Rules" not deleted

==== Orphaned Tasks deleted from Registry ======================

avastBCLRestartS-1-5-21-2562165561-2641732231-254196661-1001 deleted
avastBCLRestart_chrome.exe deleted
AvastUpdateTaskMachineCore deleted
AvastUpdateTaskMachineUA deleted
Chrome Cleanup Tool post reboot run deleted
Games deleted

==== Firefox XPI-files found: ======================

- __MSG_avastAppName__ - C:\Program Files\AVAST Software\Avast\SafePrice\FF\sp@avast.com.xpi
- Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF\wrc@avast.com.xpi

==== Chromium Look ======================

Google Chrome Version: 68.0.3440.106

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - No path found[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
bgjpfhpjcgdppjbgnpnjllokbmcdllig - No path found[]
lmjegmlicamnimmfhcmpkclmigmmcbeh - No path found[]
olfeabkoenfaoljndfecamgilllcpiak - No path found[]

Chrome Media Router - ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
Seznam doplnÄ›k - Email - ONDEJ~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig
Avast Online Security - ONDEJ~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Chrome Media Router - ONDEJ~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://search.seznam.cz/?sourceid=quick ... earchTerms}"
"First Home Page"="http://www.bing.com?pc=CMNTDFJS"
"Search Bar"="https://www.seznam.cz/?clid=22668"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
HKLM\SearchScopes\{AA01AFE9-E886-40EE-BA3D-ADEB15260B58} - http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{15C4DF55-4B67-495A-A3D3-A497C4A49EE0}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
HKLM\Wow6432Node\SearchScopes\{15C4DF55-4B67-495A-A3D3-A497C4A49EE0} - http://search.seznam.cz/?sourceid=quick ... earchTerms}
HKLM\Wow6432Node\SearchScopes\{AA01AFE9-E886-40EE-BA3D-ADEB15260B58} - http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}
HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
HKCU\SearchScopes\{15C4DF55-4B67-495A-A3D3-A497C4A49EE0} - http://search.seznam.cz/?sourceid=quick ... earchTerms}

==== Reset Google Chrome ======================

C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Preferences will be reset at reboot
C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Secure Preferences will be reset at reboot
C:\Users\ONDEJ~1\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\ONDEJ~1\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Web Data will be reset at reboot
C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Web Data-journal will be reset at reboot
C:\Users\ONDEJ~1\AppData\Local\Google\Chrome\User Data\Default\Web Data will be reset at reboot
C:\Users\ONDEJ~1\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal will be reset at reboot

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\ONDEJ~1\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\ONDEJ~1\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Edge Cache ======================

Edge Cache is not empty, a reboot is needed

==== Empty Chrome Cache ======================

C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache will be emptied at reboot
C:\Users\ONDEJ~1\AppData\Local\Google\Chrome\User Data\Default\Cache will be emptied at reboot

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=256 folders=106 88007850 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\ONDEJ~1\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\ONDEJ~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\APM\kv_pam.db" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\CrashpadMetrics-active.pma" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\First Run" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Local State" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Pending Metrics" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\BrowserMetrics\BrowserMetrics-5B8EC501-AC4.pma" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\BrowserMetrics\BrowserMetrics-5B8ECFE5-2B2C.pma" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Crashpad\settings.dat" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Avast Secure Browser Profile.ico" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cookies" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cookies-journal" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Current Session" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Favicons" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Favicons-journal" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\History" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\History Provider Cache" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\History-journal" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Login Data" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Login Data-journal" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Network Action Predictor" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Network Action Predictor-journal" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Network Persistent State" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Origin Bound Certs" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Origin Bound Certs-journal" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Preferences" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\previews_opt_out.db" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\previews_opt_out.db-journal" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Secure Preferences" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Shortcuts" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Shortcuts-journal" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Top Sites" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Top Sites-journal" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Translate Ranker Model" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\TransportSecurity" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Visited Links" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Web Data" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Web Data-journal" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache\data_0" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache\data_1" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache\data_2" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache\data_3" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache\f_000001" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache\index" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\data_reduction_proxy_leveldb\000005.log" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\data_reduction_proxy_leveldb\CURRENT" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\data_reduction_proxy_leveldb\LOCK" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\data_reduction_proxy_leveldb\LOG" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\data_reduction_proxy_leveldb\LOG.old" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension Rules\000003.log" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension Rules\CURRENT" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension Rules\LOCK" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension Rules\LOG" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension Rules\MANIFEST-000001" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension State\000003.log" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension State\CURRENT" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension State\LOCK" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension State\LOG" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension State\LOG.old" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extension State\MANIFEST-000001" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\GPUCache\data_0" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\GPUCache\data_1" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\GPUCache\data_2" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\GPUCache\data_3" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\GPUCache\index" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Session Storage\000003.log" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Session Storage\CURRENT" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Session Storage\LOCK" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Session Storage\LOG" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Session Storage\MANIFEST-000001" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Thumbnails\000003.log" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Thumbnails\CURRENT" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Thumbnails\LOCK" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Thumbnails\LOG" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Thumbnails\LOG.old" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Thumbnails\MANIFEST-000001" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Download Service\EntryDB\000005.log" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Download Service\EntryDB\CURRENT" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Download Service\EntryDB\LOCK" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Download Service\EntryDB\LOG" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Download Service\EntryDB\LOG.old" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Download Service\EntryDB\MANIFEST-000004" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\angular.js" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\background_script.js" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_game_sender.js" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_sender.js" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\common.js" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\feedback.css" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\feedback.html" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\feedback_script.js" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\manifest.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\material_css_min.css" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\mirroring_cast_streaming.js" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\mirroring_common.js" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\mirroring_hangouts.js" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\mirroring_webrtc.js" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_setup\cast_app.js" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_setup\cast_app_min.css" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_setup\cast_app_redirect.js" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_setup\chromecast_logo_grey.png" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_setup\devices.html" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_setup\index.html" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_setup\offers.html" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\cast_setup\setup.html" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_metadata\computed_hashes.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_metadata\verified_contents.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\am\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ar\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\bg\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\bn\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ca\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\cs\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\da\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\de\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\el\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\en\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\es\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\et\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\fa\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\fi\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\fil\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\fr\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\gu\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\hi\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\hr\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\hu\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\id\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\it\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\iw\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ja\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\kn\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ko\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\lt\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\lv\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ml\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\mr\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ms\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\nb\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\nl\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\pl\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\pt\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ro\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ru\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\sk\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\sl\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\sr\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\sv\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\sw\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\ta\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\te\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\th\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\tr\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\uk\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\vi\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\zh\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6818.528.0.0_0\_locales\zh_TW\messages.json" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Local Storage\leveldb\000003.log" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Local Storage\leveldb\CURRENT" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Local Storage\leveldb\LOCK" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Local Storage\leveldb\LOG" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Local Storage\leveldb\LOG.old" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Local Storage\leveldb\MANIFEST-000001" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\000003.log" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\CURRENT" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOCK" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\MANIFEST-000001" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\ShaderCache\GPUCache\data_0" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\ShaderCache\GPUCache\data_1" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\ShaderCache\GPUCache\data_2" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\ShaderCache\GPUCache\data_3" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\ShaderCache\GPUCache\index" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Preferences" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Secure Preferences" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Web Data" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Web Data-journal" not found
"C:\Users\ONDEJ~1\AppData\Local\Google\Chrome\User Data\Default\Web Data" not found
"C:\Users\ONDEJ~1\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache\data_0" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache\data_1" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache\data_2" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache\data_3" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache\f_000001" not found
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software\Browser\User Data\Default\Cache\index" not found
"C:\Users\ONDEJ~1\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0" deleted
"C:\Users\ONDEJ~1\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1" deleted
"C:\Users\ONDEJ~1\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2" deleted
"C:\Users\ONDEJ~1\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3" deleted
"C:\Users\ONDEJ~1\AppData\Local\Google\Chrome\User Data\Default\Cache\index" deleted
"C:\Users\ONDEJ~1\AppData\Local\AVAST Software" not found
"C:\Users\ONDEJ~1\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\Microsoft" not found

==== EOF on 05.09.2018 at 7:57:28,53 ======================

kosta777 · #12 Příspěvek od **kosta777** » 05 zář 2018 07:09

navíc sem to ještě nechal proběhnout programem mbam(Malwarebytes):

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 04.09.18
Čas skenování: 20:51
Logovací soubor: 90defb68-b073-11e8-a2f0-3464a9bca6c8.json

-Informace o softwaru-
Verze: 3.5.1.2522
Verze komponentů: 1.0.441
Aktualizovat verzi balíku komponent: 1.0.6639
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 16299.547)
CPU: x64
Systém souborů: NTFS
Uživatel: ONDRA\Ond\u00c5\u0099ej

-Shrnutí skenování-
Typ skenování: Vlastní skenování
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 391108
Zjištěné hrozby: 11
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 10 hod, 27 min, 28 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Povoleno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 1
PUP.Optional.CrossRider, HKU\S-1-5-21-2562165561-2641732231-254196661-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{A5B6FED1-84FA-4206-8472-E68D9FC1AB16}, Žádná uživatelská akce, [402], [237487],1.0.6639

Hodnota v registru: 1
PUP.Optional.CrossRider, HKU\S-1-5-21-2562165561-2641732231-254196661-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{A5B6FED1-84FA-4206-8472-E68D9FC1AB16}|APPNAME, Žádná uživatelská akce, [402], [237487],1.0.6639

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 9
PUP.Optional.DriverHive, C:\ADWCLEANER\QUARANTINE\V1\20180903.215316\37\SOLVUSOFT\DRIVERDOC\DRIVERHIVEENGINE.DLL#25413898DFD05F69, Žádná uživatelská akce, [2893], [542209],1.0.6639
PUP.Optional.SysTweak, C:\ADWCLEANER\QUARANTINE\V1\20180903.215316\58\ROBOOT64.EXE#D5475221920302DD, Žádná uživatelská akce, [1440], [336802],1.0.6639
PUP.Optional.Solvusoft, C:\ADWCLEANER\QUARANTINE\V1\20180903.215316\62\{0897014C-63E3-47DF-8A5F-4399CC5D61B9}\OFFLINE\7B8279D2\46353557\DRIVERDOC.EXE#DF571C21FDCCA3E0, Žádná uživatelská akce, [2892], [331663],1.0.6639
PUP.Optional.DriverHive, C:\ADWCLEANER\QUARANTINE\V1\20180903.215316\62\{0897014C-63E3-47DF-8A5F-4399CC5D61B9}\OFFLINE\D4D9B972\46353557\DRIVERHIVEENGINE.DLL#25413898DFD05F69, Žádná uživatelská akce, [2893], [542209],1.0.6639
PUP.Optional.Solvusoft, C:\ADWCLEANER\QUARANTINE\V1\20180903.215316\62\{0897014C-63E3-47DF-8A5F-4399CC5D61B9}\DRIVERDOCSETUP.EXE#984E1242CBD4446F, Žádná uživatelská akce, [2892], [331663],1.0.6639
Generic.Malware/Suspicious, C:\USERS\ONDřEJ\DESKTOP\ZOEK.EXE, Žádná uživatelská akce, [0], [392686],1.0.6639
PUP.Optional.Solvusoft, C:\USERS\ONDřEJ\DOWNLOADS\SETUP_DRIVERDOC_2016.EXE, Žádná uživatelská akce, [2892], [331663],1.0.6639
PUP.Optional.SofTonic, C:\USERS\ONDřEJ\DOWNLOADS\SOFTONICDOWNLOADER_FOR_DIRECTX.EXE, Žádná uživatelská akce, [1867], [8262],1.0.6639
Generic.Malware/Suspicious, C:\USERS\ONDřEJ\DOWNLOADS\ZOEK.EXE, Žádná uživatelská akce, [0], [392686],1.0.6639

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)

(end)

#13 Příspěvek od **Conder** » 05 zář 2018 18:19

PC vyzera cisty co sa tyka malware. Nalezy Malwarebytes su z karanteny AdwCleaneru, co uz je neskodne, dve instalacky (tie odporucam vymazat a neinstalovat) a zoek, co je chybna detekcia.

Spusti kontrolu integrity systemovych suborov:

Otvor Start, napis "cmd" (bez uvodzoviek), klikni pravym tlacitkom mysi na Prikazovy riadok a klikni na Spustit ako spravca

Skopiruj a spusti prikaz:

Kód: Vybrat vše

DISM.exe /Online /Cleanup-image /Restorehealth

Po dokonceni skopiruj a spusti druhy prikaz:
Kód: Vybrat vše
```
sfc /scannow
```

Po dokonceni obidvoch prikazov skopiruj a spusti tento prikaz:

Kód: Vybrat vše

findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >> "%userprofile%\desktop\sfcdetails.txt" && copy %windir%\logs\dism\dism.log %userprofile%\desktop\dism.txt

Na ploche sa vytvoria subory sfcdetails.txt a dism.txt, tieto subory zabal ho do archivu RAR alebo ZIP a posli ako prilohu k dalsiemu prispevku
Restartuj PC a napis ako sa chova PC

kosta777 · #14 Příspěvek od **kosta777** » 06 zář 2018 11:55

tak soubor SETUP_DRIVERDOC_2016.EXE jsem smazal.
soubor SOFTONICDOWNLOADER_FOR_DIRECTX.EXE jsem tam nenasel

ve vypisu malwerbytes sem jeste nalezl zablokovany pokus o pripojeni k internetu:

-Informace o softwaru-
Verze: 3.5.1.2522
Verze komponentů: 1.0.441
Aktualizovat verzi balíku komponent: 1.0.6623
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 16299.547)
CPU: x64
Systém souborů: NTFS
Uživatel: System

-Podrobnosti o zablokovaném webu-
Škodlivý web: 1
, , Zablokováno, [-1], [-1],0.0.0

-Údaje o webu-
Kategorie: Phishing
Doména: altrok.xf.cz
IP Adresa: 185.64.219.5
Port: [51455]
Typ: Odchozí
Soubor: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(end)

jinak v příloze přikládám výsledek toho testu

našli jste v tom něco podezřelého? co kdybych zkusil přeinstalovat ovladač k wifi?
je zajímavé, že když se zkouším připojit k wifi routeru doma nebo v práci tak to neustále padá, ale ted kdyz jsem připojený přes hotspot thetering vytvořený přes telefon tak je to stabilní připojení

#15 Příspěvek od **Conder** » 06 zář 2018 17:41

A su na tej istej wifi sieti, ktora sa na tomto ntb odpaja a pada, pripojene aj nejake ine zariadenia? Tam sa problem nevyskytuje?

Ale ak budes preinstalovavat ovladace, odporucam najprv vytvorit bod obnovy. A wifi ovladac stahni idealne zo stranky vyrobcu NTB alebo vyrobcu wifi adapteru.

Ta detekcia domeny "altrok.xf.cz" je tiez chybna detekcia, ta patri nasmu moderatorovi a su tam ulozene niektore utility, na ktore odkazujeme v navodoch.

Inak to vyzera OK co sa tyka malware.

VIRY.CZ

kontrola logu - pomalý notebook a internet. odpojuje se wifi

kontrola logu - pomalý notebook a internet. odpojuje se wifi

Re: kontrola logu - pomalý notebook a internet. odpojuje se

Re: kontrola logu - pomalý notebook a internet. odpojuje se

Re: kontrola logu - pomalý notebook a internet. odpojuje se

Re: kontrola logu - pomalý notebook a internet. odpojuje se

Re: kontrola logu - pomalý notebook a internet. odpojuje se

Re: kontrola logu - pomalý notebook a internet. odpojuje se

Re: kontrola logu - pomalý notebook a internet. odpojuje se

Re: kontrola logu - pomalý notebook a internet. odpojuje se

Re: kontrola logu - pomalý notebook a internet. odpojuje se

Re: kontrola logu - pomalý notebook a internet. odpojuje se

Re: kontrola logu - pomalý notebook a internet. odpojuje se

Re: kontrola logu - pomalý notebook a internet. odpojuje se

Re: kontrola logu - pomalý notebook a internet. odpojuje se

Re: kontrola logu - pomalý notebook a internet. odpojuje se