Logfile of random's system information tool 1.10 (written by random/random)
Run by Blecha at 2018-09-06 10:13:00
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 714 GB (75%) free of 954 GB
Total RAM: 8128 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:13:06, on 6.9.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Blecha\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\Blecha\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Pidgin\pidgin.exe
C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TMMonitor.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files (x86)\IR\shutTask.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\wpctrl.exe
C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\floater.exe
C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files\Common Files\LogiShrd\sp6\LU1\LULnchr.exe
C:\program files\logitech gaming software\lu_1\lulnchr.exe
C:\program files\logitech gaming software\lu_1\LogitechUpdate.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files (x86)\Ergom\DayOrganizer\DayOrganizer.exe
C:\Program Files\trend micro\Blecha.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=12454
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [HPUsageTrackingLEDM] "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\"
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [PivotSoftware] "C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe" -delay=10
O4 - HKLM\..\Run: [DT PLP] C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe -PLP
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [shutTask] "C:\Program Files (x86)\IR\shutTask.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKCU\..\Run: [f.lux] "C:\Users\Blecha\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Blecha\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Blecha\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Chromium] "c:\users\blecha\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Pidgin.lnk = C:\Program Files (x86)\Pidgin\pidgin.exe
O4 - Global Startup: TMMonitor.lnk = C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TMMonitor.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O16 - DPF: {F680B28A-3AEE-4C88-93ED-45AE9215C128} (CryptSignX Control) - https://adisdpr.mfcr.cz/adistc/adis/idp ... tsignx.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AdobeUpdateService - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service: Adobe Genuine Monitor Service (AGMService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: DbxSvc - Unknown owner - C:\Windows\system32\DbxSvc.exe (file missing)
O23 - Service: Portrait Displays Display Tune Service (DTSRVC) - Unknown owner - C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\Windows\system32\HPSIsvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Logitech Gaming Registry Service (LogiRegistryService) - Logitech Inc. - C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14497 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe"
"C:\Program Files\Logitech\SetPointP\SetPoint.exe" /launchGaming
"C:\Program Files\Logitech Gaming Software\LCore.exe" /minimized
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
C:\Windows\system32\DbxSvc.exe
"C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe"
"C:\Users\Blecha\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe"
AvastUI.exe /nogui
C:\Windows\system32\HPSIsvc.exe
szndesktop.exe default start
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:\Program Files (x86)\Pidgin\pidgin.exe"
"C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TMMonitor.exe"
"C:\Users\Blecha\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\Windows\system32\conhost.exe
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
KHALMNPR.EXE /API
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe"
"C:\Program Files (x86)\IR\shutTask.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
"C:/Program Files/Logitech Gaming Software/LAClient/LAClient.exe"
\??\C:\Windows\system32\conhost.exe
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe" "-launchedbyvulcan-3488 C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe"
"C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\wpctrl.exe"
"C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\floater.exe"
"C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe"
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" -type:crashpad-handler --no-upload-gzip --no-rate-limit --capture-python --no-identify-client-via-url --database=C:\Users\Blecha\AppData\Local\Dropbox\Crashpad --metrics-dir=0 --url=https://d.dropbox.com/report_crashpad_minidump --https-pin=0x23,0xf2,0xed,0xff,0x3e,0xde,0x90,0x25,0x9a,0x9e,0x30,0xf4,0xa,0xf8,0xf9,0x12,0xa5,0xe5,0xb3,0x69,0x4e,0x69,0x38,0x44,0x3,0x41,0xf6,0x6,0xe,0x1,0x4f,0xfa --https-pin=0xaf,0xf9,0x88,0x90,0x6d,0xde,0x12,0x95,0x5d,0x9b,0xeb,0xbf,0x92,0x8f,0xdc,0xc3,0x1c,0xce,0x32,0x8d,0x5b,0x93,0x84,0xf2,0x1c,0x89,0x41,0xca,0x26,0xe2,0x3,0x91 --https-pin=0x5a,0x88,0x96,0x47,0x22,0xe,0x54,0xd6,0xbd,0x8a,0x16,0x81,0x72,0x24,0x52,0xb,0xb5,0xc7,0x8e,0x58,0x98,0x4b,0xd5,0x70,0x50,0x63,0x88,0xb9,0xde,0xf,0x7,0x5f --https-pin=0xfe,0xa2,0xb7,0xd6,0x45,0xfb,0xa7,0x3d,0x75,0x3c,0x1e,0xc9,0xa7,0x87,0xc,0x40,0xe1,0xf7,0xb0,0xc5,0x61,0xe9,0x27,0xb9,0x85,0xbf,0x71,0x18,0x66,0xe3,0x6f,0x22 --https-pin=0x76,0xee,0x85,0x90,0x37,0x4c,0x71,0x54,0x37,0xbb,0xca,0x6b,0xba,0x60,0x28,0xea,0xdd,0xe2,0xdc,0x6d,0xbb,0xb8,0xc3,0xf6,0x10,0xe8,0x51,0xf1,0x1d,0x1a,0xb7,0xf5 --https-pin=0x6d,0xbf,0xae,0x0,0xd3,0x7b,0x9c,0xd7,0x3f,0x8f,0xb4,0x7d,0xe6,0x59,0x17,0xaf,0x0,0xe0,0xdd,0xdf,0x42,0xdb,0xce,0xac,0x20,0xc1,0x7c,0x2,0x75,0xee,0x20,0x95 --https-pin=0x1e,0xa3,0xc5,0xe4,0x3e,0xd6,0x6c,0x2d,0xa2,0x98,0x3a,0x42,0xa4,0xa7,0x9b,0x1e,0x90,0x67,0x86,0xce,0x9f,0x1b,0x58,0x62,0x14,0x19,0xa0,0x4,0x63,0xa8,0x7d,0x38 --https-pin=0x87,0xaf,0x34,0xd6,0x6f,0xb3,0xf2,0xfd,0xf3,0x6e,0x9,0x11,0x1e,0x9a,0xba,0x2f,0x6f,0x44,0xb2,0x7,0xf3,0x86,0x3f,0x3d,0xb,0x54,0xb2,0x50,0x23,0x90,0x9a,0xa5 --https-pin=0xbc,0xfb,0x44,0xaa,0xb9,0xad,0x2,0x10,0x15,0x70,0x6b,0x41,0x21,0xea,0x76,0x1c,0x81,0xc9,0xe8,0x89,0x67,0x59,0xf,0x6f,0x94,0xae,0x74,0x4d,0xc8,0x8b,0x78,0xfb --https-pin=0xab,0x98,0x49,0x52,0x76,0xad,0xf1,0xec,0xaf,0xf2,0x8f,0x35,0xc5,0x30,0x48,0x78,0x1e,0x5c,0x17,0x18,0xda,0xb9,0xc8,0xe6,0x7a,0x50,0x4f,0x4f,0x6a,0x51,0x32,0x8f --https-pin=0x49,0x5,0x46,0x66,0x23,0xab,0x41,0x78,0xbe,0x92,0xac,0x5c,0xbd,0x65,0x84,0xf7,0xa1,0xe1,0x7f,0x27,0x65,0x2d,0x5a,0x85,0xaf,0x89,0x50,0x4e,0xa2,0x39,0xaa,0xaa --https-pin=0x56,0x32,0xd9,0x7b,0xfa,0x77,0x5b,0xf3,0xc9,0x9d,0xde,0xa5,0x2f,0xc2,0x55,0x34,0x10,0x86,0x40,0x16,0x72,0x9c,0x52,0xdd,0x65,0x24,0xc8,0xa9,0xc3,0xb4,0x48,0x9f --https-pin=0x2a,0x8f,0x2d,0x8a,0xf0,0xeb,0x12,0x38,0x98,0xf7,0x4c,0x86,0x6a,0xc3,0xfa,0x66,0x90,0x54,0xe2,0x3c,0x17,0xbc,0x7a,0x95,0xbd,0x2,0x34,0x19,0x2d,0xc6,0x35,0xd0 --https-pin=0x32,0xb6,0x4b,0x66,0x72,0x7a,0x20,0x63,0xe4,0x6,0x6f,0x3b,0x95,0x8c,0xb0,0xaa,0xee,0x57,0x6a,0x5e,0xce,0xfd,0x95,0x33,0x99,0xbb,0x88,0x74,0x73,0x1d,0x95,0x87 --https-pin=0xf5,0x3c,0x22,0x5,0x98,0x17,0xdd,0x96,0xf4,0x0,0x65,0x16,0x39,0xd2,0xf8,0x57,0xe2,0x10,0x70,0xa5,0x9a,0xbe,0xd9,0x7,0x94,0x0,0xd9,0xf6,0x95,0x50,0x69,0x0 --https-pin=0x67,0xdc,0x4f,0x32,0xfa,0x10,0xe7,0xd0,0x1a,0x79,0xa0,0x73,0xaa,0xc,0x9e,0x2,0x12,0xec,0x2f,0xfc,0x3d,0x77,0x9e,0xa,0xa7,0xf9,0xc0,0xf0,0xe1,0xc2,0xc8,0x93 --https-pin=0x19,0x6,0xc6,0x12,0x4d,0xbb,0x43,0x85,0x78,0xd0,0xe,0x6,0x6d,0x50,0x54,0xc6,0xc3,0x7f,0xf,0xa6,0x2,0x8c,0x5,0x54,0x5e,0x9,0x94,0xed,0xda,0xec,0x86,0x29 --https-pin=0x1d,0x75,0xd0,0x83,0x1b,0x9e,0x8,0x85,0x39,0x4d,0x32,0xc7,0xa1,0xbf,0xdb,0x3d,0xbc,0x1c,0x28,0xe2,0xb0,0xe8,0x39,0x1f,0xb1,0x35,0x98,0x1d,0xbc,0x5b,0xa9,0x36 --annotation=buildno=Dropbox-win-56.4.94 --annotation=client_session_id=4e7300af-5dd3-432f-8946-0437222d6695 --annotation=host_int_account1_boot=5415690108 --annotation=machine_id=53d011e6-dd46-4440-b471-144a98255bf2 --annotation=platform=win --annotation=platform_version=7 --initial-client-data=0xd8,0xdc,0xe0,0xd4,0xe4,0x64760da4,0x64760db4,0x64760dc4
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" -type:exit-monitor -session-token:4e7300af-5dd3-432f-8946-0437222d6695 -target-handle:212 -target-shutdown-event:228 "-target-command-line:\"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe\" /systemstartup" -python-version:3.5.4 -method:collectupload -handler-pipe:\\.\pipe\crashpad_3248_ZEAPZYKTTQWQPNJG
"C:\Program Files\Common Files\LogiShrd\sp6\LU1\LULnchr.exe" /po:0 /version:6.67.83 /prod:setpoint /lang:ENU /qs:hit=2 /conffile=C:\Program Files\Common Files\Logishrd\sp6\LU1\LuProduct.SPP.xml
"C:\program files\logitech gaming software\lu_1\lulnchr.exe" /po:0 /version:6.67.83 /prod:setpoint /lang:ENU /qs:hit=2 /conffile=C:\Program Files\Common Files\Logishrd\sp6\LU1\LuProduct.SPP.xml
"C:\program files\logitech gaming software\lu_1\LogitechUpdate.exe" /po:0 /version:6.67.83 /prod:setpoint /lang:ENU /qs:hit=2 /conffile=C:\Program Files\Common Files\Logishrd\sp6\LU1\LuProduct.SPP.xml
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe"
"C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe" --onOSstartup=true --showwindow=false --waitForRegistration=true
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe" --type=renderer --disable-3d-apis --disable-pinch --no-sandbox --disable-databases --primordial-pipe-token=40F1F657DD45825DD9D4896FE3047777 --lang=en-US --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-file="C:\Users\Blecha\AppData\Local\Temp\CreativeCloud\ACC\CEF.log" --log-severity=warning --user-agent="Mozilla/5.0 (Windows NT 6.1.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/537.36 CreativeCloud/4.0.0.185" --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="3488.0.1070091135\19738961" --mojo-platform-channel-handle=2296 /prefetch:1
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe" --type=renderer --disable-3d-apis --disable-pinch --no-sandbox --disable-databases --primordial-pipe-token=6DE31BA884369F06683A2F4A2B04718D --lang=en-US --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-file="C:\Users\Blecha\AppData\Local\Temp\CreativeCloud\ACC\CEF.log" --log-severity=warning --user-agent="Mozilla/5.0 (Windows NT 6.1.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/537.36 CreativeCloud/4.0.0.185" --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="3488.1.592829185\328053338" --mojo-platform-channel-handle=2584 /prefetch:1
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe" "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\main.js"
\??\C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
"C:\Program Files\Mozilla Firefox\firefox.exe"
"C:\Program Files\Mozilla Firefox\plugin-container.exe" --channel="7528.0.214037629\1895757547" "C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_154.dll" -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 308046B0AF4A39CB 7528 "\\.\pipe\gecko-crash-server-pipe.7528" plugin
"taskhost.exe"
"C:\Program Files (x86)\Ergom\DayOrganizer\DayOrganizer.exe"
"C:\Users\Blecha\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\Windows\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default
prefs.js - "browser.startup.homepage" - "https://www.google.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 30.0.0.154 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_154.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 30.0.0.154 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_154.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.144.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.144.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-09-24 571968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26 435320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-09-24 235584]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26 366200]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2015-06-12 8484056]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2016-03-08 2789248]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2016-03-08 1903344]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-11-21 36352]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01 508128]
"EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2015-08-26 3113592]
"Launch LCore"=C:\Program Files\Logitech Gaming Software\LCore.exe [2017-10-20 17987704]
"AdobeGCInvoker-1.0"=C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11 316392]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-09-05 242392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeBridge"= []
"f.lux"=C:\Users\Blecha\AppData\Local\FluxSoftware\Flux\flux.exe [2018-07-03 1806344]
"cz.seznam.software.autoupdate"=C:\Users\Blecha\AppData\Roaming\Seznam.cz\szninstall.exe [2018-03-27 1069296]
"cz.seznam.software.szndesktop"=C:\Users\Blecha\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2018-03-27 109808]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2018-01-09 10257872]
"Chromium"=c:\users\blecha\appdata\local\chromium\application\chrome.exe [2017-09-22 4149760]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\Blecha\AppData\Roaming\Seznam.cz\szninstall.exe [2018-03-27 1069296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Blecha\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2018-03-27 109808]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2017-07-18 3062560]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2000-01-01 292088]
""= []
"HPUsageTrackingLEDM"=C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe [2009-10-15 30264]
"AdobeCS4ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"PivotSoftware"=C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe [2010-05-13 110192]
"DT PLP"=C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe [2010-05-17 121456]
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2018-08-28 3750208]
"ArcSoft Connection Service"=C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2009-02-06 170496]
"shutTask"=C:\Program Files (x86)\IR\shutTask.exe [2010-01-05 110592]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-07-21 587288]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"Adobe Creative Cloud"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2017-03-27 2404952]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Pidgin.lnk - C:\Program Files (x86)\Pidgin\pidgin.exe
TMMonitor.lnk - C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TMMonitor.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2015-07-02 65992]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"msacm.vorbis"=vorbis.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
.vbs - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-09-06 10:13:00 ----D---- C:\rsit
2018-09-06 10:13:00 ----D---- C:\Program Files\trend micro
2018-09-06 07:14:35 ----A---- C:\Windows\system32\drivers\mbam.sys
2018-09-06 07:14:33 ----A---- C:\Windows\system32\drivers\mwac.sys
2018-09-06 07:14:33 ----A---- C:\Windows\system32\drivers\farflt.sys
2018-09-06 07:14:32 ----A---- C:\Windows\system32\drivers\MbamChameleon.sys
2018-09-06 07:14:24 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2018-09-06 07:14:17 ----A---- C:\Windows\system32\drivers\mbae64.sys
2018-09-05 17:35:25 ----D---- C:\Users\Blecha\AppData\Roaming\AVAST Software
2018-09-05 17:33:51 ----A---- C:\Windows\system32\drivers\aswStm.sys
2018-09-05 17:33:50 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2018-09-05 17:33:49 ----A---- C:\Windows\system32\drivers\aswSP.sys
2018-09-05 17:33:48 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2018-09-05 17:33:47 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2018-09-05 17:33:46 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2018-09-05 17:33:45 ----A---- C:\Windows\system32\drivers\aswArPot.sys
2018-09-05 17:33:41 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2018-09-05 17:33:41 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2018-09-05 17:33:40 ----A---- C:\Windows\system32\drivers\aswbuniva.sys
2018-09-05 17:33:38 ----A---- C:\Windows\system32\drivers\aswbloga.sys
2018-09-05 17:33:38 ----A---- C:\Windows\system32\drivers\aswbidsha.sys
2018-09-05 17:33:38 ----A---- C:\Windows\system32\drivers\aswbidsdrivera.sys
2018-09-05 17:33:37 ----A---- C:\Windows\system32\drivers\aswHdsKe.sys
2018-09-05 17:33:30 ----A---- C:\Windows\system32\aswBoot.exe
2018-09-05 17:31:56 ----D---- C:\Users\Blecha\AppData\Roaming\Messenger for Desktop
2018-09-05 17:31:21 ----D---- C:\Program Files\AVAST Software
2018-08-28 13:53:40 ----A---- C:\Windows\system32\drivers\dbx-stable.sys
2018-08-28 13:53:40 ----A---- C:\Windows\system32\drivers\dbx-dev.sys
2018-08-28 13:53:40 ----A---- C:\Windows\system32\drivers\dbx-canary.sys
2018-08-28 13:53:40 ----A---- C:\Windows\system32\DbxSvc.exe
======List of files/folders modified in the last 1 month======
2018-09-06 10:13:06 ----D---- C:\Windows\Prefetch
2018-09-06 10:13:00 ----D---- C:\Program Files
2018-09-06 10:12:56 ----D---- C:\Users\Blecha\AppData\Roaming\.purple
2018-09-06 10:10:26 ----D---- C:\Windows\Temp
2018-09-06 08:51:03 ----AD---- C:\Windows\system32\drivers
2018-09-06 08:22:52 ----D---- C:\Windows\system32\config
2018-09-06 07:14:21 ----HD---- C:\ProgramData
2018-09-06 07:14:20 ----D---- C:\Windows
2018-09-06 07:12:30 ----D---- C:\Users\Blecha\AppData\Roaming\Seznam.cz
2018-09-06 07:08:04 ----D---- C:\ProgramData\Logishrd
2018-09-06 07:06:55 ----D---- C:\ProgramData\NVIDIA
2018-09-06 07:06:41 ----D---- C:\Windows\winsxs
2018-09-05 20:16:45 ----D---- C:\ProgramData\AVAST Software
2018-09-05 17:34:01 ----D---- C:\Windows\system32\Tasks
2018-09-05 17:33:30 ----AD---- C:\Windows\System32
2018-09-05 17:30:34 ----D---- C:\Program Files (x86)
2018-09-05 17:24:14 ----AD---- C:\Windows\SysWOW64
2018-09-05 17:24:12 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-09-05 17:24:11 ----D---- C:\Windows\system32\Macromed
2018-09-05 17:24:10 ----D---- C:\Windows\SYSWOW64\Macromed
2018-09-05 16:30:13 ----SHD---- C:\Windows\Installer
2018-09-05 16:28:41 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2018-09-05 15:53:37 ----D---- C:\Program Files (x86)\Dropbox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2018-09-05 201320]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2018-09-05 346664]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2018-09-05 59568]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2018-09-05 87904]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2018-09-05 381560]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2012-02-01 568600]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-11-21 632168]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-11-21 28008]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2000-01-01 20464]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2018-09-05 199712]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2018-09-05 229384]
R1 aswHdsKe;aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [2018-09-05 249016]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2018-09-05 111864]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2018-09-05 1027720]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2018-09-05 467320]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 ESProtectionDriver;Malwarebytes Anti-Exploit; \??\C:\Windows\system32\drivers\mbae64.sys [2018-04-26 152184]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-06-27 88632]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2018-09-05 163272]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2018-09-05 215728]
R2 MBAMChameleon;MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [2018-09-06 190696]
R3 Afc;PPdus ASPI Shell; C:\Windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 athr;Extensible Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athrx.sys [2011-08-31 2736640]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2015-06-18 4496600]
R3 IT9135BDA;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2016-08-09 113280]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2000-01-01 358896]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2000-01-01 795632]
R3 LGBusEnum;Logitech Gaming Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\LGBusEnum.sys [2017-10-20 36496]
R3 LGJoyXlCore;Logitech Translation Layer Driver (LGS); C:\Windows\system32\drivers\LGJoyXlCore.sys [2017-10-20 67736]
R3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [2017-10-20 64280]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver; C:\Windows\system32\drivers\LGVirHid.sys [2017-10-20 26008]
R3 MBAMFarflt;MBAMFarflt; C:\Windows\system32\DRIVERS\farflt.sys [2018-09-06 112864]
R3 MBAMProtection;MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [2018-09-06 44768]
R3 MBAMSwissArmy;MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [2018-09-06 253664]
R3 MBAMWebProtection;MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [2018-09-06 94328]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2016-03-08 205456]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-03-08 28032]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2016-03-08 47760]
R3 PdiPorts;Portrait Displays low level device driver; C:\Windows\system32\DRIVERS\PdiPorts.sys [2010-04-16 20592]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-06-13 726160]
S2 LGCoreTemp;Logitech CPU Core Tempurature; \??\C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [2015-06-21 14184]
S3 AndNetDiag;LGE AndroidNet USB Serial Port; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [2015-01-26 30720]
S3 ANDNetModem;LGE AndroidNet USB Modem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [2015-01-26 37376]
S3 andnetndis;LGE AndroidNet NDIS Ethernet Adapter; C:\Windows\system32\DRIVERS\lgandnetndis64.sys [2015-01-21 93696]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2018-09-05 46968]
S3 dbx;dbx; C:\Windows\system32\DRIVERS\dbx.sys []
S3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2015-06-18 86672]
S3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2015-06-18 69264]
S3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\Windows\System32\Drivers\LUsbFilt.Sys [2015-06-18 50832]
S3 mvusbews;USB EWS Device; C:\Windows\System32\Drivers\mvusbews.sys [2012-12-24 20480]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 20992]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2009-02-06 109056]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-03-21 83984]
R2 AdobeUpdateService;AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2017-03-14 771672]
R2 AGMService;Adobe Genuine Monitor Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2018-05-11 2321384]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2018-05-11 2128872]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-09-05 322464]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DbxSvc;DbxSvc; C:\Windows\system32\DbxSvc.exe [2018-08-28 51024]
R2 DTSRVC;Portrait Displays Display Tune Service; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe [2010-05-17 121456]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-03-08 1164672]
R2 HP LaserJet Service;HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2009-10-15 136192]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2012-11-08 126856]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-11-21 15720]
R2 LogiRegistryService;Logitech Gaming Registry Service; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [2017-10-20 225400]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2018-05-09 6541008]
R2 NovaPdfServer;novaPDF Server; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [2017-02-22 51112]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-03-08 1880960]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-03-08 2609024]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2016-03-08 1264064]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2010-04-16 109168]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2016-03-08 424384]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-09-05 7994520]
R3 NvStreamNetworkSvc;NVIDIA Streamer Network Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2016-03-08 6474112]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-09 123856]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-06-21 143144]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-01 153752]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-09-05 335872]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-09 51648]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-06-21 143144]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2016-02-23 1038088]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2016-02-23 655624]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-01 153752]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2015-07-02 356808]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-12-10 194000]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-07-18 1608480]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu logu
Ahoj 
Ak nepouzivas, odorucam odinstalovat Seznam Software (Seznam Listicka).
Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
Ak nepouzivas, odorucam odinstalovat Seznam Software (Seznam Listicka). Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
- Uloz na plochu a ukonci vsetky programy
- Spusti AdwCleaner ako spravca
- Odsuhlas licencne podmienky
- Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
- Nechaj zaskrtnute vsetky nalezy
- Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
- Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
- Otvori sa log, jeho obsah sem skopiruj
Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: Prosím o kontrolu logu
Ahoj, díky. Seznam software smazán, log níže.
# -------------------------------
# Malwarebytes AdwCleaner 7.2.3.1
# -------------------------------
# Build: 09-03-2018
# Database: 2018-09-05.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 09-06-2018
# Duration: 00:00:09
# OS: Windows 7 Ultimate
# Cleaned: 10
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Users\Public\Documents\Downloaded Installers
Deleted C:\Users\Blecha\AppData\Local\slimware utilities inc
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\SOFTWARE\5cfefa2a3be509ecfa698392558adbf4
Deleted HKCU\Software\csastats
Deleted HKCU\Software\PRODUCTSETUP
Deleted HKLM\Software\Wow6432Node\SLIMWARE UTILITIES, INC.
Deleted HKCU\Software\SlimWare Utilities Inc
Deleted HKLM\Software\Wow6432Node\SlimWare Utilities Inc
***** [ Chromium (and derivatives) ] *****
Deleted Live CSS Editor
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
Deleted More Display Resolutions
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1818 octets] - [06/09/2018 20:47:20]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# -------------------------------
# Malwarebytes AdwCleaner 7.2.3.1
# -------------------------------
# Build: 09-03-2018
# Database: 2018-09-05.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 09-06-2018
# Duration: 00:00:09
# OS: Windows 7 Ultimate
# Cleaned: 10
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Users\Public\Documents\Downloaded Installers
Deleted C:\Users\Blecha\AppData\Local\slimware utilities inc
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\SOFTWARE\5cfefa2a3be509ecfa698392558adbf4
Deleted HKCU\Software\csastats
Deleted HKCU\Software\PRODUCTSETUP
Deleted HKLM\Software\Wow6432Node\SLIMWARE UTILITIES, INC.
Deleted HKCU\Software\SlimWare Utilities Inc
Deleted HKLM\Software\Wow6432Node\SlimWare Utilities Inc
***** [ Chromium (and derivatives) ] *****
Deleted Live CSS Editor
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
Deleted More Display Resolutions
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1818 octets] - [06/09/2018 20:47:20]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Re: Prosím o kontrolu logu
Poprosim o obidva logy z FRST: https://forum.viry.cz/viewtopic.php?f=13&t=154679Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: Prosím o kontrolu logu
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01.09.2018 03
Ran by Blecha (administrator) on BLECHA-PC (06-09-2018 21:16:02)
Running from C:\Users\Blecha\Desktop
Loaded Profiles: Blecha (Available Profiles: Blecha)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser not detected!)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(HP) C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(f.lux Software LLC) C:\Users\Blecha\AppData\Local\FluxSoftware\Flux\flux.exe
(HP) C:\Windows\System32\HPSIsvc.exe
(The Pidgin developer community) C:\Program Files (x86)\Pidgin\pidgin.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TMMonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
() C:\Program Files (x86)\IR\shutTask.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Logitech, Inc.) C:\Program Files\Logitech Gaming Software\LAClient\laclient.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
() C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\wpCtrl.exe
() C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Floater.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\sp6\LU1\LULnchr.exe
(Logitech, Inc.) C:\Program Files\Logitech Gaming Software\LU_1\LULnchr.exe
(Logitech, Inc.) C:\Program Files\Logitech Gaming Software\LU_1\LogitechUpdate.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8484056 2015-06-12] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2789248 2016-03-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3113592 2015-08-26] (Logitech, Inc.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [17987704 2017-10-20] (Logitech Inc.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [316392 2018-05-11] (Adobe Systems, Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242392 2018-09-05] (AVAST Software)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2000-01-01] (Intel Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HPUsageTrackingLEDM] => "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\"
HKLM-x32\...\Run: [AdobeCS4ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PivotSoftware] => C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe [110192 2010-05-13] ()
HKLM-x32\...\Run: [DT PLP] => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe [121456 2010-05-17] ()
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3750208 2018-08-28] (Dropbox, Inc.)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [170496 2009-02-06] (ArcSoft Inc.)
HKLM-x32\...\Run: [shutTask] => C:\Program Files (x86)\IR\shutTask.exe [110592 2010-01-05] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-21] (Oracle Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2404952 2017-03-27] (Adobe Systems Incorporated)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\Run: [f.lux] => C:\Users\Blecha\AppData\Local\FluxSoftware\Flux\flux.exe [1806344 2018-07-03] (f.lux Software LLC)
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10257872 2018-01-09] (Piriform Ltd)
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\Run: [Chromium] => c:\users\blecha\appdata\local\chromium\application\chrome.exe [4149760 2017-09-22] (The Chromium Authors)
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\MountPoints2: {04a6fda7-da4a-11e5-bde9-806e6f6e6963} - E:\Bin\ASSETUP.exe
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\MountPoints2: {144fe904-f0bb-11e5-96f4-60a44c32654b} - F:\LG_PC_Programs.exe
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\MountPoints2: {645176ad-da4f-11e5-b039-f9f2e2d6e348} - F:\SISetup.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Pidgin.lnk [2016-02-28]
ShortcutTarget: Pidgin.lnk -> C:\Program Files (x86)\Pidgin\pidgin.exe (The Pidgin developer community)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TMMonitor.lnk [2016-08-09]
ShortcutTarget: TMMonitor.lnk -> C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TMMonitor.exe (ArcSoft, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{04660B53-6299-48D7-B7C7-3738708245B0}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{3FFEAD84-2FBD-4D56-A1AD-905FD5F9BA2C}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{B94F2F4F-C22F-422C-8990-F0DDAA09E0F1}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-1098195284-1894212499-3841398290-1000 -> {F24E40F0-BE41-42D7-A3F7-22A3AFB8AA30} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-09-24] (Oracle Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-09-24] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
DPF: HKLM-x32 {F680B28A-3AEE-4C88-93ED-45AE9215C128} hxxps://adisdpr.mfcr.cz/adistc/adis/idpr_pub/xspa/bin/cryptsignx.cab
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: kvxl3dt3.default
FF ProfilePath: C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default [2018-09-06]
FF user.js: detected! => C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\user.js [2016-03-31]
FF Homepage: Mozilla\Firefox\Profiles\kvxl3dt3.default -> hxxps://www.google.cz/
FF Session Restore: Mozilla\Firefox\Profiles\kvxl3dt3.default -> is enabled.
FF Extension: (Web Clipper for Trello for Firefox) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\@trello-web-clipper.xpi [2016-06-20] [Legacy]
FF Extension: (Add-on Compatibility Reporter) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\compatibility@addons.mozilla.org.xpi [2017-07-29] [Legacy]
FF Extension: (Firebug) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\firebug@software.joehewitt.com.xpi [2017-10-05] [Legacy]
FF Extension: (Add to feedly) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\jid1-YZsgHbPHarNxRg@jetpack.xpi [2016-04-28] [Legacy]
FF Extension: (RankChecker) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\rankchecker@seobook.com.xpi [2017-04-28] [Legacy]
FF Extension: (SEO Doctor) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\seodoctor@prelovac.com.xpi [2016-09-19] [Legacy]
FF Extension: (Seznam doplněk - Esko) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\sko-extension@firma.seznam.cz.xpi [2018-05-04]
FF Extension: (Avast SafePrice) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\sp@avast.com.xpi [2018-09-05]
FF Extension: (MozBar) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\toolbar@seomoz.org.xpi [2016-04-15] [Legacy]
FF Extension: (Avast Online Security) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\wrc@avast.com.xpi [2018-09-05]
FF Extension: (LinkChecker) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\{49f3fc85-dcfe-4e42-9301-226ebe658509}.xpi [2016-05-01] [Legacy]
FF Extension: (Speed Dial) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi [2016-02-24] [Legacy]
FF Extension: (FormApps Extension) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\{69F080C9-A1D8-42F8-BD83-3D54D4BC81B3}.xpi [2018-03-19]
FF Extension: (ColorZilla) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}.xpi [2017-03-08]
FF Extension: (Google Analytics Opt-out Add-on (by Google)) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2017-04-01]
FF Extension: (NoDoFollow) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\{c2b1f3ae-5cd5-49b7-8a0c-2c3bcbbbb294}.xpi [2016-05-01] [Legacy]
FF Extension: (In My Pocket) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\{cd7e22de-2e34-40f0-aeff-cec824cbccac}.xpi [2018-09-05]
FF Extension: (No Name) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2018-01-16] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_154.dll [2018-09-05] ()
FF Plugin: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-09-24] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-09-24] (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-03-27] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_154.dll [2018-09-05] ()
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-03-08] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-03-08] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-08-02] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-03-27] (Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com
CHR NewTab: Default -> Active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/speeddial/newTab.html"
CHR DefaultSearchKeyword: Default -> hunter
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default [2018-09-06]
CHR Extension: (Prezentace) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-09]
CHR Extension: (YouTube) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-23]
CHR Extension: (appear.in screen sharing) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\bodncoafpihbhpfljcaofnebjkaiaiga [2018-04-15]
CHR Extension: (Vyhledávání Google) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-23]
CHR Extension: (MozBar) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\eakacpaijcpapndcfffdgphdiccmpknp [2018-09-05]
CHR Extension: (Adobe Acrobat) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-03]
CHR Extension: (Tabulky) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Page Analytics (by Google)) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnbdnhhicmebfgdgglcdacdapkcihcoh [2017-02-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-05]
CHR Extension: (Wappalyzer) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\gppongmhjkpfnbhagpmjfkannfbllamg [2018-09-05]
CHR Extension: (Keywords Everywhere - Keyword Tool) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbapdpeemoojbophdfndmlgdhppljgmp [2018-09-05]
CHR Extension: (Open SEO Stats(Formerly: PageRank Status)) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdkkfheckcdppiaiabobmennhijkknn [2018-01-15]
CHR Extension: (Hunter) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgmhmanijnjhaffoampdlllchpolkdnj [2018-05-25]
CHR Extension: (Disconnect) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2018-01-14]
CHR Extension: (IP Whois & Flags Chrome & Websites Rating) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmdfbacgombndnllogoijhnggalgmkon [2018-03-19]
CHR Extension: (Lightshot (Nástroje snímků)) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2018-01-14]
CHR Extension: (Screencastify - Screen Video Recorder) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmeijimgabbpbgpdklnllpncmdofkcpn [2018-09-06]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Toggl Button: Productivity & Time Tracker) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\oejgccbfbmkkpaidnkphaiaecficdnfn [2018-09-05]
CHR Extension: (Enable the editor) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\oelggcmknbjmhkpgjfhakedcfnkgbdpg [2018-01-14]
CHR Extension: (Check My Links) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojkcdipcgfaekbeaelaapakgnjflfglf [2017-05-31]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-09-06]
CHR Extension: (Quick WHOIS) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgmognllmoaeckjlmbdidbamknliplfl [2018-04-16]
CHR Extension: (Gmail) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-23]
CHR Extension: (Chrome Media Router) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-09-05]
CHR HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [109056 2009-02-06] (ArcSoft Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [771672 2017-03-14] (Adobe Systems Incorporated)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2321384 2018-05-11] (Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2128872 2018-05-11] (Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7994520 2018-09-05] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [322464 2018-09-05] (AVAST Software)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-06-21] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-06-21] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2018-08-28] (Dropbox, Inc.)
R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe [121456 2010-05-17] ()
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164672 2016-03-08] (NVIDIA Corporation)
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [136192 2009-10-15] (HP) [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [225400 2017-10-20] (Logitech Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [51112 2017-02-22] (Microsoft)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1880960 2016-03-08] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6474112 2016-03-08] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2609024 2016-03-08] (NVIDIA Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [30720 2015-01-26] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [37376 2015-01-26] (LG Electronics Inc.)
S3 andnetndis; C:\Windows\System32\DRIVERS\lgandnetndis64.sys [93696 2015-01-21] (LG Electronics Inc.)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [199712 2018-09-05] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [229384 2018-09-05] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [201320 2018-09-05] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [346664 2018-09-05] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [59568 2018-09-05] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [249016 2018-09-05] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46968 2018-09-05] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [163272 2018-09-05] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111864 2018-09-05] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [87904 2018-09-05] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1027720 2018-09-05] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [467320 2018-09-05] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [215728 2018-09-05] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [381560 2018-09-05] (AVAST Software)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [152184 2018-04-26] (Malwarebytes)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-11-21] (Intel Corporation)
R3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [113280 2016-08-09] (ITE )
S2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\Windows\System32\drivers\LGJoyXlCore.sys [67736 2017-10-20] (Logitech Inc.)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2017-10-20] (Logitech Inc.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [190696 2018-09-06] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [112864 2018-09-06] (Malwarebytes)
R3 MBAMProtection; C:\Windows\System32\DRIVERS\mbam.sys [44768 2018-09-06] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253664 2018-09-06] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [94328 2018-09-06] (Malwarebytes)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-12-24] (Marvell Semiconductor, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28032 2016-03-08] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47760 2016-03-08] (NVIDIA Corporation)
R3 PdiPorts; C:\Windows\System32\DRIVERS\PdiPorts.sys [20592 2010-04-16] (Portrait Displays, Inc.)
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-09-06 21:16 - 2018-09-06 21:16 - 000030646 _____ C:\Users\Blecha\Desktop\FRST.txt
2018-09-06 21:15 - 2018-09-06 21:16 - 000000000 ____D C:\FRST
2018-09-06 21:14 - 2018-09-06 21:14 - 002413056 _____ (Farbar) C:\Users\Blecha\Desktop\FRST64.exe
2018-09-06 20:45 - 2018-09-06 20:48 - 000000000 ____D C:\AdwCleaner
2018-09-06 20:44 - 2018-09-06 20:44 - 007571152 _____ (Malwarebytes) C:\Users\Blecha\Desktop\adwcleaner_7.2.3.1.exe
2018-09-06 10:13 - 2018-09-06 10:13 - 000000000 ____D C:\rsit
2018-09-06 10:13 - 2018-09-06 10:13 - 000000000 ____D C:\Program Files\trend micro
2018-09-06 10:11 - 2018-09-06 10:11 - 001222144 _____ C:\Users\Blecha\Desktop\RSITx64.exe
2018-09-06 07:14 - 2018-09-06 20:53 - 000112864 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2018-09-06 07:14 - 2018-09-06 20:53 - 000044768 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2018-09-06 07:14 - 2018-09-06 20:52 - 000253664 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-09-06 07:14 - 2018-09-06 20:52 - 000094328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2018-09-06 07:14 - 2018-09-06 07:14 - 000190696 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2018-09-06 07:14 - 2018-09-06 07:14 - 000001827 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-09-06 07:14 - 2018-09-06 07:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-09-06 07:14 - 2018-04-26 05:36 - 000152184 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2018-09-05 21:16 - 2018-09-05 21:16 - 000108959 _____ C:\Users\Blecha\Desktop\Tomasrefrence.pdf
2018-09-05 17:35 - 2018-09-06 20:53 - 000000000 ____D C:\Users\Blecha\AppData\Local\AVAST Software
2018-09-05 17:35 - 2018-09-05 17:35 - 000001882 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2018-09-05 17:35 - 2018-09-05 17:35 - 000000000 ____D C:\Users\Blecha\AppData\Roaming\AVAST Software
2018-09-05 17:35 - 2018-09-05 17:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2018-09-05 17:34 - 2018-09-05 17:34 - 000003910 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-09-05 17:33 - 2018-09-05 17:34 - 000467320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-09-05 17:33 - 2018-09-05 17:34 - 000215728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-09-05 17:33 - 2018-09-05 17:34 - 000087904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-09-05 17:33 - 2018-09-05 17:33 - 000381560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-09-05 17:33 - 2018-09-05 17:33 - 000379608 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2018-09-05 17:33 - 2018-09-05 17:33 - 000199712 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-09-05 17:33 - 2018-09-05 17:33 - 000163272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-09-05 17:33 - 2018-09-05 17:33 - 000111864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-09-05 17:33 - 2018-09-05 17:33 - 000046968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-09-05 17:33 - 2018-09-05 17:32 - 001027720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-09-05 17:33 - 2018-09-05 17:32 - 000346664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbloga.sys
2018-09-05 17:33 - 2018-09-05 17:32 - 000249016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-09-05 17:33 - 2018-09-05 17:32 - 000229384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2018-09-05 17:33 - 2018-09-05 17:32 - 000201320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsha.sys
2018-09-05 17:33 - 2018-09-05 17:32 - 000059568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniva.sys
2018-09-05 17:32 - 2018-09-05 17:45 - 000000000 ____D C:\Users\Blecha\AppData\Local\chromium
2018-09-05 17:32 - 2018-09-05 17:32 - 000002349 _____ C:\Users\Blecha\Desktop\Messenger for Desktop.lnk
2018-09-05 17:32 - 2018-09-05 17:32 - 000000000 ____D C:\Users\Blecha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MessengerForDesktop.com
2018-09-05 17:31 - 2018-09-06 20:48 - 000000000 ____D C:\Users\Blecha\AppData\Roaming\Messenger for Desktop
2018-09-05 17:31 - 2018-09-05 17:32 - 000000000 ____D C:\Users\Blecha\AppData\Local\SquirrelTemp
2018-09-05 17:31 - 2018-09-05 17:32 - 000000000 ____D C:\Users\Blecha\AppData\Local\messengerfordesktop
2018-09-05 17:31 - 2018-09-05 17:31 - 000000000 ____D C:\Program Files\AVAST Software
2018-09-05 15:53 - 2018-09-05 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2018-08-28 13:53 - 2018-08-28 13:53 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2018-08-28 13:53 - 2018-08-28 13:53 - 000050232 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2018-08-28 13:53 - 2018-08-28 13:53 - 000050232 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2018-08-28 13:53 - 2018-08-28 13:53 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-09-06 21:16 - 2016-02-25 08:57 - 000000000 ____D C:\Users\Blecha\AppData\Roaming\.purple
2018-09-06 20:58 - 2009-07-14 06:45 - 000010016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-09-06 20:58 - 2009-07-14 06:45 - 000010016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-09-06 20:54 - 2016-06-21 16:41 - 000000908 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2018-09-06 20:50 - 2016-06-21 16:41 - 000000904 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2018-09-06 20:50 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-09-06 20:49 - 2016-02-23 18:41 - 000000000 ____D C:\ProgramData\NVIDIA
2018-09-06 20:44 - 2016-08-09 17:00 - 000000000 ____D C:\Program Files (x86)\Seznam.cz
2018-09-06 20:44 - 2016-08-09 16:59 - 000000000 ____D C:\Users\Blecha\AppData\Roaming\Seznam.cz
2018-09-06 13:35 - 2018-03-21 22:13 - 000000000 ____D C:\Users\Blecha\Desktop\NORSKO
2018-09-06 13:33 - 2009-07-26 20:41 - 000668202 _____ C:\Windows\system32\perfh005.dat
2018-09-06 13:33 - 2009-07-26 20:41 - 000140878 _____ C:\Windows\system32\perfc005.dat
2018-09-06 13:33 - 2009-07-14 07:13 - 001582472 _____ C:\Windows\system32\PerfStringBackup.INI
2018-09-06 13:33 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-09-06 07:08 - 2018-01-16 17:16 - 000000000 ____D C:\ProgramData\Logishrd
2018-09-05 20:16 - 2016-02-24 10:13 - 000000000 ____D C:\ProgramData\AVAST Software
2018-09-05 17:32 - 2016-02-24 05:15 - 000000000 ____D C:\Users\Blecha\AppData\Local\CrashDumps
2018-09-05 17:24 - 2017-04-07 08:36 - 000004408 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-09-05 17:24 - 2017-04-07 08:31 - 000004544 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2018-09-05 17:24 - 2016-02-23 21:49 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-09-05 17:24 - 2016-02-23 21:49 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-09-05 17:24 - 2016-02-23 21:49 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-09-05 17:24 - 2016-02-23 21:49 - 000000000 ____D C:\Windows\system32\Macromed
2018-09-05 16:30 - 2016-03-10 19:35 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2018-09-05 16:29 - 2016-03-10 19:34 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-09-05 16:28 - 2016-11-21 23:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2018-09-05 15:56 - 2018-03-13 13:54 - 000004532 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-09-05 15:54 - 2017-03-01 22:13 - 000002184 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-09-05 15:53 - 2016-06-21 16:40 - 000000000 ____D C:\Program Files (x86)\Dropbox
2018-09-05 15:51 - 2016-11-18 07:59 - 000000000 ____D C:\Users\Blecha\AppData\LocalLow\Mozilla
2018-09-05 15:49 - 2016-06-21 16:41 - 000003904 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
2018-09-05 15:49 - 2016-06-21 16:41 - 000003652 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
2018-09-05 15:48 - 2018-03-02 03:54 - 000002050 _____ C:\Users\Blecha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk
==================== Files in the root of some directories =======
2018-02-19 21:48 - 2018-05-09 06:37 - 000000132 _____ () C:\Users\Blecha\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2018-04-10 17:36 - 2018-04-11 07:59 - 000000033 _____ () C:\Users\Blecha\AppData\Roaming\AdobeWLCMCache.dat
2016-02-23 21:55 - 2018-06-13 11:06 - 000028141 _____ () C:\Users\Blecha\AppData\Roaming\phpdesigner.xml
2017-09-29 21:23 - 2018-06-17 09:41 - 000001480 _____ () C:\Users\Blecha\AppData\Local\Adobe Uložit pro web 13.0 Prefs
Some files in TEMP:
====================
2018-03-31 08:28 - 2018-03-31 08:28 - 000175416 ____T (Symantec Corporation) C:\Users\Blecha\AppData\Local\Temp\SCC.dll
2018-04-06 06:45 - 2018-09-06 20:44 - 000534528 _____ () C:\Users\Blecha\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-09-06 09:59
==================== End of FRST.txt ============================
Ran by Blecha (administrator) on BLECHA-PC (06-09-2018 21:16:02)
Running from C:\Users\Blecha\Desktop
Loaded Profiles: Blecha (Available Profiles: Blecha)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser not detected!)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(HP) C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(f.lux Software LLC) C:\Users\Blecha\AppData\Local\FluxSoftware\Flux\flux.exe
(HP) C:\Windows\System32\HPSIsvc.exe
(The Pidgin developer community) C:\Program Files (x86)\Pidgin\pidgin.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TMMonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
() C:\Program Files (x86)\IR\shutTask.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Logitech, Inc.) C:\Program Files\Logitech Gaming Software\LAClient\laclient.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
() C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\wpCtrl.exe
() C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Floater.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\sp6\LU1\LULnchr.exe
(Logitech, Inc.) C:\Program Files\Logitech Gaming Software\LU_1\LULnchr.exe
(Logitech, Inc.) C:\Program Files\Logitech Gaming Software\LU_1\LogitechUpdate.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8484056 2015-06-12] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2789248 2016-03-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3113592 2015-08-26] (Logitech, Inc.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [17987704 2017-10-20] (Logitech Inc.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [316392 2018-05-11] (Adobe Systems, Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242392 2018-09-05] (AVAST Software)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2000-01-01] (Intel Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HPUsageTrackingLEDM] => "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\"
HKLM-x32\...\Run: [AdobeCS4ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PivotSoftware] => C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe [110192 2010-05-13] ()
HKLM-x32\...\Run: [DT PLP] => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe [121456 2010-05-17] ()
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3750208 2018-08-28] (Dropbox, Inc.)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [170496 2009-02-06] (ArcSoft Inc.)
HKLM-x32\...\Run: [shutTask] => C:\Program Files (x86)\IR\shutTask.exe [110592 2010-01-05] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-21] (Oracle Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2404952 2017-03-27] (Adobe Systems Incorporated)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\Run: [f.lux] => C:\Users\Blecha\AppData\Local\FluxSoftware\Flux\flux.exe [1806344 2018-07-03] (f.lux Software LLC)
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10257872 2018-01-09] (Piriform Ltd)
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\Run: [Chromium] => c:\users\blecha\appdata\local\chromium\application\chrome.exe [4149760 2017-09-22] (The Chromium Authors)
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\MountPoints2: {04a6fda7-da4a-11e5-bde9-806e6f6e6963} - E:\Bin\ASSETUP.exe
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\MountPoints2: {144fe904-f0bb-11e5-96f4-60a44c32654b} - F:\LG_PC_Programs.exe
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\MountPoints2: {645176ad-da4f-11e5-b039-f9f2e2d6e348} - F:\SISetup.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Pidgin.lnk [2016-02-28]
ShortcutTarget: Pidgin.lnk -> C:\Program Files (x86)\Pidgin\pidgin.exe (The Pidgin developer community)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TMMonitor.lnk [2016-08-09]
ShortcutTarget: TMMonitor.lnk -> C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TMMonitor.exe (ArcSoft, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{04660B53-6299-48D7-B7C7-3738708245B0}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{3FFEAD84-2FBD-4D56-A1AD-905FD5F9BA2C}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{B94F2F4F-C22F-422C-8990-F0DDAA09E0F1}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-1098195284-1894212499-3841398290-1000 -> {F24E40F0-BE41-42D7-A3F7-22A3AFB8AA30} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-09-24] (Oracle Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-09-24] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
DPF: HKLM-x32 {F680B28A-3AEE-4C88-93ED-45AE9215C128} hxxps://adisdpr.mfcr.cz/adistc/adis/idpr_pub/xspa/bin/cryptsignx.cab
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: kvxl3dt3.default
FF ProfilePath: C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default [2018-09-06]
FF user.js: detected! => C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\user.js [2016-03-31]
FF Homepage: Mozilla\Firefox\Profiles\kvxl3dt3.default -> hxxps://www.google.cz/
FF Session Restore: Mozilla\Firefox\Profiles\kvxl3dt3.default -> is enabled.
FF Extension: (Web Clipper for Trello for Firefox) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\@trello-web-clipper.xpi [2016-06-20] [Legacy]
FF Extension: (Add-on Compatibility Reporter) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\compatibility@addons.mozilla.org.xpi [2017-07-29] [Legacy]
FF Extension: (Firebug) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\firebug@software.joehewitt.com.xpi [2017-10-05] [Legacy]
FF Extension: (Add to feedly) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\jid1-YZsgHbPHarNxRg@jetpack.xpi [2016-04-28] [Legacy]
FF Extension: (RankChecker) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\rankchecker@seobook.com.xpi [2017-04-28] [Legacy]
FF Extension: (SEO Doctor) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\seodoctor@prelovac.com.xpi [2016-09-19] [Legacy]
FF Extension: (Seznam doplněk - Esko) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\sko-extension@firma.seznam.cz.xpi [2018-05-04]
FF Extension: (Avast SafePrice) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\sp@avast.com.xpi [2018-09-05]
FF Extension: (MozBar) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\toolbar@seomoz.org.xpi [2016-04-15] [Legacy]
FF Extension: (Avast Online Security) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\wrc@avast.com.xpi [2018-09-05]
FF Extension: (LinkChecker) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\{49f3fc85-dcfe-4e42-9301-226ebe658509}.xpi [2016-05-01] [Legacy]
FF Extension: (Speed Dial) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi [2016-02-24] [Legacy]
FF Extension: (FormApps Extension) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\{69F080C9-A1D8-42F8-BD83-3D54D4BC81B3}.xpi [2018-03-19]
FF Extension: (ColorZilla) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}.xpi [2017-03-08]
FF Extension: (Google Analytics Opt-out Add-on (by Google)) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2017-04-01]
FF Extension: (NoDoFollow) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\{c2b1f3ae-5cd5-49b7-8a0c-2c3bcbbbb294}.xpi [2016-05-01] [Legacy]
FF Extension: (In My Pocket) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\Extensions\{cd7e22de-2e34-40f0-aeff-cec824cbccac}.xpi [2018-09-05]
FF Extension: (No Name) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2018-01-16] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_154.dll [2018-09-05] ()
FF Plugin: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-09-24] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-09-24] (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-03-27] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_154.dll [2018-09-05] ()
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-03-08] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-03-08] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-08-02] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-03-27] (Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com
CHR NewTab: Default -> Active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/speeddial/newTab.html"
CHR DefaultSearchKeyword: Default -> hunter
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default [2018-09-06]
CHR Extension: (Prezentace) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-09]
CHR Extension: (YouTube) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-23]
CHR Extension: (appear.in screen sharing) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\bodncoafpihbhpfljcaofnebjkaiaiga [2018-04-15]
CHR Extension: (Vyhledávání Google) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-23]
CHR Extension: (MozBar) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\eakacpaijcpapndcfffdgphdiccmpknp [2018-09-05]
CHR Extension: (Adobe Acrobat) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-03]
CHR Extension: (Tabulky) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Page Analytics (by Google)) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnbdnhhicmebfgdgglcdacdapkcihcoh [2017-02-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-05]
CHR Extension: (Wappalyzer) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\gppongmhjkpfnbhagpmjfkannfbllamg [2018-09-05]
CHR Extension: (Keywords Everywhere - Keyword Tool) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbapdpeemoojbophdfndmlgdhppljgmp [2018-09-05]
CHR Extension: (Open SEO Stats(Formerly: PageRank Status)) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdkkfheckcdppiaiabobmennhijkknn [2018-01-15]
CHR Extension: (Hunter) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgmhmanijnjhaffoampdlllchpolkdnj [2018-05-25]
CHR Extension: (Disconnect) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2018-01-14]
CHR Extension: (IP Whois & Flags Chrome & Websites Rating) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmdfbacgombndnllogoijhnggalgmkon [2018-03-19]
CHR Extension: (Lightshot (Nástroje snímků)) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2018-01-14]
CHR Extension: (Screencastify - Screen Video Recorder) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmeijimgabbpbgpdklnllpncmdofkcpn [2018-09-06]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Toggl Button: Productivity & Time Tracker) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\oejgccbfbmkkpaidnkphaiaecficdnfn [2018-09-05]
CHR Extension: (Enable the editor) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\oelggcmknbjmhkpgjfhakedcfnkgbdpg [2018-01-14]
CHR Extension: (Check My Links) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojkcdipcgfaekbeaelaapakgnjflfglf [2017-05-31]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-09-06]
CHR Extension: (Quick WHOIS) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgmognllmoaeckjlmbdidbamknliplfl [2018-04-16]
CHR Extension: (Gmail) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-23]
CHR Extension: (Chrome Media Router) - C:\Users\Blecha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-09-05]
CHR HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [109056 2009-02-06] (ArcSoft Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [771672 2017-03-14] (Adobe Systems Incorporated)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2321384 2018-05-11] (Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2128872 2018-05-11] (Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7994520 2018-09-05] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [322464 2018-09-05] (AVAST Software)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-06-21] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-06-21] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2018-08-28] (Dropbox, Inc.)
R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe [121456 2010-05-17] ()
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164672 2016-03-08] (NVIDIA Corporation)
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [136192 2009-10-15] (HP) [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [225400 2017-10-20] (Logitech Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [51112 2017-02-22] (Microsoft)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1880960 2016-03-08] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6474112 2016-03-08] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2609024 2016-03-08] (NVIDIA Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [30720 2015-01-26] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [37376 2015-01-26] (LG Electronics Inc.)
S3 andnetndis; C:\Windows\System32\DRIVERS\lgandnetndis64.sys [93696 2015-01-21] (LG Electronics Inc.)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [199712 2018-09-05] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [229384 2018-09-05] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [201320 2018-09-05] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [346664 2018-09-05] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [59568 2018-09-05] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [249016 2018-09-05] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46968 2018-09-05] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [163272 2018-09-05] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111864 2018-09-05] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [87904 2018-09-05] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1027720 2018-09-05] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [467320 2018-09-05] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [215728 2018-09-05] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [381560 2018-09-05] (AVAST Software)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [152184 2018-04-26] (Malwarebytes)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-11-21] (Intel Corporation)
R3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [113280 2016-08-09] (ITE )
S2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\Windows\System32\drivers\LGJoyXlCore.sys [67736 2017-10-20] (Logitech Inc.)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2017-10-20] (Logitech Inc.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [190696 2018-09-06] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [112864 2018-09-06] (Malwarebytes)
R3 MBAMProtection; C:\Windows\System32\DRIVERS\mbam.sys [44768 2018-09-06] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253664 2018-09-06] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [94328 2018-09-06] (Malwarebytes)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-12-24] (Marvell Semiconductor, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28032 2016-03-08] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47760 2016-03-08] (NVIDIA Corporation)
R3 PdiPorts; C:\Windows\System32\DRIVERS\PdiPorts.sys [20592 2010-04-16] (Portrait Displays, Inc.)
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-09-06 21:16 - 2018-09-06 21:16 - 000030646 _____ C:\Users\Blecha\Desktop\FRST.txt
2018-09-06 21:15 - 2018-09-06 21:16 - 000000000 ____D C:\FRST
2018-09-06 21:14 - 2018-09-06 21:14 - 002413056 _____ (Farbar) C:\Users\Blecha\Desktop\FRST64.exe
2018-09-06 20:45 - 2018-09-06 20:48 - 000000000 ____D C:\AdwCleaner
2018-09-06 20:44 - 2018-09-06 20:44 - 007571152 _____ (Malwarebytes) C:\Users\Blecha\Desktop\adwcleaner_7.2.3.1.exe
2018-09-06 10:13 - 2018-09-06 10:13 - 000000000 ____D C:\rsit
2018-09-06 10:13 - 2018-09-06 10:13 - 000000000 ____D C:\Program Files\trend micro
2018-09-06 10:11 - 2018-09-06 10:11 - 001222144 _____ C:\Users\Blecha\Desktop\RSITx64.exe
2018-09-06 07:14 - 2018-09-06 20:53 - 000112864 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2018-09-06 07:14 - 2018-09-06 20:53 - 000044768 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2018-09-06 07:14 - 2018-09-06 20:52 - 000253664 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-09-06 07:14 - 2018-09-06 20:52 - 000094328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2018-09-06 07:14 - 2018-09-06 07:14 - 000190696 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2018-09-06 07:14 - 2018-09-06 07:14 - 000001827 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-09-06 07:14 - 2018-09-06 07:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-09-06 07:14 - 2018-04-26 05:36 - 000152184 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2018-09-05 21:16 - 2018-09-05 21:16 - 000108959 _____ C:\Users\Blecha\Desktop\Tomasrefrence.pdf
2018-09-05 17:35 - 2018-09-06 20:53 - 000000000 ____D C:\Users\Blecha\AppData\Local\AVAST Software
2018-09-05 17:35 - 2018-09-05 17:35 - 000001882 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2018-09-05 17:35 - 2018-09-05 17:35 - 000000000 ____D C:\Users\Blecha\AppData\Roaming\AVAST Software
2018-09-05 17:35 - 2018-09-05 17:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2018-09-05 17:34 - 2018-09-05 17:34 - 000003910 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-09-05 17:33 - 2018-09-05 17:34 - 000467320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-09-05 17:33 - 2018-09-05 17:34 - 000215728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-09-05 17:33 - 2018-09-05 17:34 - 000087904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-09-05 17:33 - 2018-09-05 17:33 - 000381560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-09-05 17:33 - 2018-09-05 17:33 - 000379608 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2018-09-05 17:33 - 2018-09-05 17:33 - 000199712 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-09-05 17:33 - 2018-09-05 17:33 - 000163272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-09-05 17:33 - 2018-09-05 17:33 - 000111864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-09-05 17:33 - 2018-09-05 17:33 - 000046968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-09-05 17:33 - 2018-09-05 17:32 - 001027720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-09-05 17:33 - 2018-09-05 17:32 - 000346664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbloga.sys
2018-09-05 17:33 - 2018-09-05 17:32 - 000249016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-09-05 17:33 - 2018-09-05 17:32 - 000229384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2018-09-05 17:33 - 2018-09-05 17:32 - 000201320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsha.sys
2018-09-05 17:33 - 2018-09-05 17:32 - 000059568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniva.sys
2018-09-05 17:32 - 2018-09-05 17:45 - 000000000 ____D C:\Users\Blecha\AppData\Local\chromium
2018-09-05 17:32 - 2018-09-05 17:32 - 000002349 _____ C:\Users\Blecha\Desktop\Messenger for Desktop.lnk
2018-09-05 17:32 - 2018-09-05 17:32 - 000000000 ____D C:\Users\Blecha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MessengerForDesktop.com
2018-09-05 17:31 - 2018-09-06 20:48 - 000000000 ____D C:\Users\Blecha\AppData\Roaming\Messenger for Desktop
2018-09-05 17:31 - 2018-09-05 17:32 - 000000000 ____D C:\Users\Blecha\AppData\Local\SquirrelTemp
2018-09-05 17:31 - 2018-09-05 17:32 - 000000000 ____D C:\Users\Blecha\AppData\Local\messengerfordesktop
2018-09-05 17:31 - 2018-09-05 17:31 - 000000000 ____D C:\Program Files\AVAST Software
2018-09-05 15:53 - 2018-09-05 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2018-08-28 13:53 - 2018-08-28 13:53 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2018-08-28 13:53 - 2018-08-28 13:53 - 000050232 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2018-08-28 13:53 - 2018-08-28 13:53 - 000050232 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2018-08-28 13:53 - 2018-08-28 13:53 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-09-06 21:16 - 2016-02-25 08:57 - 000000000 ____D C:\Users\Blecha\AppData\Roaming\.purple
2018-09-06 20:58 - 2009-07-14 06:45 - 000010016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-09-06 20:58 - 2009-07-14 06:45 - 000010016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-09-06 20:54 - 2016-06-21 16:41 - 000000908 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2018-09-06 20:50 - 2016-06-21 16:41 - 000000904 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2018-09-06 20:50 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-09-06 20:49 - 2016-02-23 18:41 - 000000000 ____D C:\ProgramData\NVIDIA
2018-09-06 20:44 - 2016-08-09 17:00 - 000000000 ____D C:\Program Files (x86)\Seznam.cz
2018-09-06 20:44 - 2016-08-09 16:59 - 000000000 ____D C:\Users\Blecha\AppData\Roaming\Seznam.cz
2018-09-06 13:35 - 2018-03-21 22:13 - 000000000 ____D C:\Users\Blecha\Desktop\NORSKO
2018-09-06 13:33 - 2009-07-26 20:41 - 000668202 _____ C:\Windows\system32\perfh005.dat
2018-09-06 13:33 - 2009-07-26 20:41 - 000140878 _____ C:\Windows\system32\perfc005.dat
2018-09-06 13:33 - 2009-07-14 07:13 - 001582472 _____ C:\Windows\system32\PerfStringBackup.INI
2018-09-06 13:33 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-09-06 07:08 - 2018-01-16 17:16 - 000000000 ____D C:\ProgramData\Logishrd
2018-09-05 20:16 - 2016-02-24 10:13 - 000000000 ____D C:\ProgramData\AVAST Software
2018-09-05 17:32 - 2016-02-24 05:15 - 000000000 ____D C:\Users\Blecha\AppData\Local\CrashDumps
2018-09-05 17:24 - 2017-04-07 08:36 - 000004408 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-09-05 17:24 - 2017-04-07 08:31 - 000004544 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2018-09-05 17:24 - 2016-02-23 21:49 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-09-05 17:24 - 2016-02-23 21:49 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-09-05 17:24 - 2016-02-23 21:49 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-09-05 17:24 - 2016-02-23 21:49 - 000000000 ____D C:\Windows\system32\Macromed
2018-09-05 16:30 - 2016-03-10 19:35 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2018-09-05 16:29 - 2016-03-10 19:34 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-09-05 16:28 - 2016-11-21 23:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2018-09-05 15:56 - 2018-03-13 13:54 - 000004532 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-09-05 15:54 - 2017-03-01 22:13 - 000002184 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-09-05 15:53 - 2016-06-21 16:40 - 000000000 ____D C:\Program Files (x86)\Dropbox
2018-09-05 15:51 - 2016-11-18 07:59 - 000000000 ____D C:\Users\Blecha\AppData\LocalLow\Mozilla
2018-09-05 15:49 - 2016-06-21 16:41 - 000003904 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
2018-09-05 15:49 - 2016-06-21 16:41 - 000003652 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
2018-09-05 15:48 - 2018-03-02 03:54 - 000002050 _____ C:\Users\Blecha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk
==================== Files in the root of some directories =======
2018-02-19 21:48 - 2018-05-09 06:37 - 000000132 _____ () C:\Users\Blecha\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2018-04-10 17:36 - 2018-04-11 07:59 - 000000033 _____ () C:\Users\Blecha\AppData\Roaming\AdobeWLCMCache.dat
2016-02-23 21:55 - 2018-06-13 11:06 - 000028141 _____ () C:\Users\Blecha\AppData\Roaming\phpdesigner.xml
2017-09-29 21:23 - 2018-06-17 09:41 - 000001480 _____ () C:\Users\Blecha\AppData\Local\Adobe Uložit pro web 13.0 Prefs
Some files in TEMP:
====================
2018-03-31 08:28 - 2018-03-31 08:28 - 000175416 ____T (Symantec Corporation) C:\Users\Blecha\AppData\Local\Temp\SCC.dll
2018-04-06 06:45 - 2018-09-06 20:44 - 000534528 _____ () C:\Users\Blecha\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-09-06 09:59
==================== End of FRST.txt ============================
Re: Prosím o kontrolu logu
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01.09.2018 03
Ran by Blecha (06-09-2018 21:16:40)
Running from C:\Users\Blecha\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2016-02-23 16:30:25)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1098195284-1894212499-3841398290-500 - Administrator - Disabled)
Blecha (S-1-5-21-1098195284-1894212499-3841398290-1000 - Administrator - Enabled) => C:\Users\Blecha
Guest (S-1-5-21-1098195284-1894212499-3841398290-501 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
ActivePresenter (HKLM-x32\...\{A2A40277-D807-4754-95A3-2F294C2C51D3}_is1) (Version: 5.5.2 - Atomi Systems, Inc.)
adobe (HKLM\...\{ECA002A5-48AB-4B43-86FC-8E9AA65C7077}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 18.011.20058 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.215 - Adobe Systems Incorporated)
Adobe Anchor Service x64 CS4 (HKLM\...\{887797BF-37A5-4199-B0C9-0D38D6196E9A}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe CMaps x64 CS4 (HKLM\...\{90BA8112-80B3-4617-A3C1-BD2771B60F74}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.0.1.188 - Adobe Systems Incorporated)
Adobe CSI CS4 x64 (HKLM\...\{8DAA31EB-6830-4006-A99F-4DF8AB24714F}) (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.7 - Adobe Systems Incorporated)
Adobe Drive CS4 x64 (HKLM\...\{A3454894-144A-4D80-B605-C128FE0D7329}) (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated)
Adobe Flash Player 30 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated)
Adobe Fonts All x64 (HKLM\...\{6631325A-9B1B-4EE7-8E64-8CC4A6F10643}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Illustrator CC 2017 (HKLM-x32\...\ILST_21_0_0) (Version: 21.0.0 - Adobe Systems Incorporated)
Adobe Linguistics CS4 x64 (HKLM\...\{8875A1C0-6308-4790-8CF6-D34E89880052}) (Version: 4.0.0 - Adobe Systems Incorporated) Hidden
Adobe PDF Library Files x64 CS4 (HKLM\...\{DFFABE78-8173-4E97-9C5C-22FB26192FC5}) (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS4 (64 Bit) (HKLM\...\{D40172D6-CE2D-4B72-BF5F-26A04A900B7B}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS4 (HKLM-x32\...\Adobe_faf656ef605427ee2f42989c3ad31b8) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2017 (HKLM-x32\...\PPRO_11_1_0) (Version: 11.1.0 - Adobe Systems Incorporated)
Adobe Type Support x64 CS4 (HKLM\...\{8C8D673B-20FB-43E6-BCB7-9B3F78F2E762}) (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe WinSoft Linguistics Plugin x64 (HKLM\...\{295CFB7C-A57E-4313-93E7-68E7CE1D0332}) (Version: 1.1 - Adobe Systems Incorporated) Hidden
AIDA64 Extreme v4.00 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 4.00 - FinalWire Ltd.)
Aktualizace NVIDIA 2.10.2.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.10.2.40 - NVIDIA Corporation) Hidden
ArcSoft TotalMedia 3.5 (HKLM-x32\...\{29E44E9D-ACB2-4D2D-849F-5361C941B7E1}) (Version: 3.5.7.282 - ArcSoft)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.6.2349 - AVAST Software)
Capture-A-ScreenShot (HKLM-x32\...\Capture-A-ScreenShot_is1) (Version: - PopDrops.com)
CCleaner (HKLM\...\CCleaner) (Version: 5.39 - Piriform)
Connect (HKLM-x32\...\{B29AD377-CC12-490A-A480-1452337C618D}) (Version: 1.0.0.1 - Adobe Systems Incorporated) Hidden
Crystal Reports Basic Runtime for Visual Studio 2008 (HKLM-x32\...\{CE26F10F-C80F-4377-908B-1B7882AE2CE3}) (Version: 10.5.0.0 - Business Objects)
Day Organizer, ver. 3.0.0 (HKLM-x32\...\{6DA23ED2-5074-4D95-931A-BA89F0E68FB7}) (Version: 3.0.0000 - Patrik Tanzer)
doPDF (HKLM\...\{09F9E468-7A84-422F-B3AB-DA682A56B564}) (Version: 8.8.947 - Softland) Hidden
doPDF 8 (HKLM-x32\...\{40114d1e-366c-42d4-a83c-70c0adfbccf6}) (Version: 8.8.947 - Softland)
Dropbox (HKLM-x32\...\Dropbox) (Version: 56.4.94 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.127.1 - Dropbox, Inc.) Hidden
Dungeon Keeper 2 (HKLM\...\{4f94b43a-8a00-4ac4-bb94-269cf24aef97}.sdb) (Version: - )
Dungeon Keeper 2 (HKLM-x32\...\Dungeon Keeper 2_is1) (Version: - GOG.com)
erLT (HKLM-x32\...\{A498D9EB-927B-459B-85D6-DD6EF8C2C564}) (Version: 1.20.0137 - Logitech, Inc.) Hidden
f.lux (HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\Flux) (Version: - f.lux Software LLC)
FastStone Photo Resizer 3.5 (HKLM-x32\...\FastStone Photo Resizer) (Version: 3.5 - FastStone Soft.)
FileZilla Client 3.30.0 (HKLM-x32\...\FileZilla Client) (Version: 3.30.0 - Tim Kosse)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 1.0.1 - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 68.0.3440.106 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.99 - Google Inc.) Hidden
HP LaserJet Professional M1130-M1210 MFP Series (HKLM\...\HP LaserJet Professional M1130-M1210 MFP Series) (Version: - )
hppLaserJetService (HKLM-x32\...\{D371F551-0DB9-4CEC-844B-4C90CE91EA0B}) (Version: 001.003.000145 - Hewlett-Packard) Hidden
hppM1130M1210SeriesLaserJetService (HKLM-x32\...\{0E448256-D515-4C3E-A5BE-0A7B76CED5D4}) (Version: 001.003.00073 - Hewlett-Packard) Hidden
hppusgM1130M1210Series (HKLM-x32\...\{DA6CC3A5-1F5B-4068-8BFF-C597BB6B8158}) (Version: 1.0.0.2 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.10.255 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{98f335cd-0a32-4b3f-b74c-ef9480e834f0}) (Version: 10.0.27 - Intel(R) Corporation) Hidden
IRRecevie (HKLM-x32\...\{F6BC20A5-3C48-4675-BDE6-E2E6FED30B9D}) (Version: 1.00.0000 - Mygica)
Java 8 Update 144 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Java 8 Update 73 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418073F0}) (Version: 8.0.730.2 - Oracle Corporation)
K-Lite Codec Pack 11.8.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.8.5 - KLCP)
kuler (HKLM-x32\...\{098727E1-775A-4450-B573-3F441F1CA243}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
LG PC Suite (HKLM-x32\...\LG PC Suite) (Version: 5.3.25.20150529 - LG Electronics)
LG United Mobile Drivers (HKLM-x32\...\{4DE95ED9-0A29-4C4F-8463-35857CF9BA36}) (Version: 3.14.1 - LG Electronics)
LibreOffice 5.1.0.3 (HKLM-x32\...\{2F75F86D-8362-4F49-9536-D87DCBF6ABAE}) (Version: 5.1.0.3 - The Document Foundation)
LinkChecker 9.3 (HKLM-x32\...\LinkChecker_is1) (Version: - )
Logitech Gaming Software 8.96 (HKLM\...\Logitech Gaming Software) (Version: 8.96.88 - Logitech Inc.)
Logitech SetPoint 6.67 (HKLM\...\sp6) (Version: 6.67.83 - Logitech)
Malwarebytes verze 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
MarketResearch (HKLM-x32\...\{175F0111-2968-4935-8F70-33108C6A4DE3}) (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Messenger for Desktop (HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\messengerfordesktop) (Version: 2.0.9 - MessengerForDesktop.com)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 CSY Language Pack (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0405-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{0513c9cf-7191-45a7-ace9-ecdad03c93a4}) (Version: 12.0.40660.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{10dc8dbf-d3d7-4e23-be07-120fe5c66b78}) (Version: 12.0.40660.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Additional Runtime - 14.10.25017 (HKLM\...\{E512788E-C50B-3858-A4B9-73AD5F3F9E93}) (Version: 14.10.25017 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.10.25017 (HKLM\...\{8D4F7A6D-6B81-3DC8-9C21-6008E4866727}) (Version: 14.10.25017 - Microsoft Corporation)
Microsoft Visual C++ 2017 x86 Additional Runtime - 14.10.25017 (HKLM-x32\...\{68306422-7C57-373F-8860-D26CE4BA2A15}) (Version: 14.10.25017 - Microsoft Corporation)
Microsoft Visual C++ 2017 x86 Minimum Runtime - 14.10.25017 (HKLM-x32\...\{582EA838-9199-3518-A05C-DB09462F68EC}) (Version: 14.10.25017 - Microsoft Corporation)
Mozilla Firefox 55.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 55.0.2 (x64 cs)) (Version: 55.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 55.0.2 - Mozilla)
Mozilla Thunderbird 52.8.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 52.8.0 (x86 cs)) (Version: 52.8.0 - Mozilla)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9 - Notepad++ Team)
novaPDF 8 Printer Driver (HKLM\...\{6CE23ADA-C3A6-4974-A4DB-27BCA371010B}) (Version: 8.8.947 - Softland)
NVIDIA GeForce Experience 2.10.2.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.10.2.40 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 364.51 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 364.51 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 364.51 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 364.51 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Opera Stable 53.0.2907.99 (HKLM-x32\...\Opera 53.0.2907.99) (Version: 53.0.2907.99 - Opera Software)
Ovládací panel NVIDIA 364.51 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 364.51 - NVIDIA Corporation) Hidden
PDF Settings CS4 (HKLM-x32\...\{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}) (Version: 9.0 - Adobe Systems Incorporated) Hidden
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Photoshop Camera Raw (HKLM-x32\...\{CC75AB5C-2110-4A7F-AF52-708680D22FE8}) (Version: 5.0 - Adobe Systems Incorporated) Hidden
Photoshop Camera Raw_x64 (HKLM\...\{2D74E972-5A85-44DC-9193-8A302BA8C181}) (Version: 5.0 - Adobe Systems Incorporated) Hidden
phpDesigner 8 version 8.1.1 (HKLM-x32\...\phpDesigner8_is1) (Version: - MPSOFTWARE)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.12 - )
Pivot Pro Plugin (HKLM-x32\...\{0217E1D1-BCEF-4A61-AF6D-F7740F65A066}) (Version: 9.50.110 - Portrait Displays, Inc.) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.61.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP)
Screaming Frog SEO Spider (HKLM-x32\...\Screaming Frog SEO Spider) (Version: 8.3 - Screaming Frog Ltd)
SDK (HKLM-x32\...\{0DEA342C-15CB-4F52-97B6-06A9C4B9C06F}) (Version: 2.22.002 - Portrait Displays, Inc.) Hidden
SEO SpyGlass (HKLM-x32\...\seopowersuite) (Version: 6.13.8 - Link-Assistant)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 5.1.0270 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.10.2.40 - NVIDIA Corporation) Hidden
SmartControl (HKLM-x32\...\{F4EF231A-7218-41B1-AB84-F5B48B74C50A}) (Version: 2.02.005 - Portrait Displays, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Suite Shared Configuration CS4 (HKLM-x32\...\{842B4B72-9E8F-4962-B3C1-1C422A5C4434}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
TP-LINK Wireless Client Utility (HKLM-x32\...\{385C8E5A-0B4F-4DCD-BBBD-2A8AE0400A76}) (Version: 7.0 - TP-LINK)
Vegas Pro 13.0 (64-bit) (HKLM\...\{CDA02BF0-BFBC-11E3-AFA0-F04DA23A5C58}) (Version: 13.0.290 - Sony)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.2 - VideoLAN)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
XAMPP (HKLM-x32\...\xampp) (Version: 5.6.24-1 - Bitnami)
Xenu's Link Sleuth (HKLM-x32\...\Xenu's Link Sleuth) (Version: 1.3.8 - Tilman Hausherr)
XML Notepad 2007 (HKLM-x32\...\{FC7BACF0-1FFA-4605-B3B4-A66AB382752D}) (Version: 2.3.0.0 - Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1098195284-1894212499-3841398290-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-09-05] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-09-05] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2016-02-21] ()
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-09-05] (AVAST Software)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-15] (Alexander Roshal)
ContextMenuHandlers2: [{C95FFEAE-A32E-4122-A5C4-49B5BFB69795}] -> {C95FFEAE-A32E-4122-A5C4-49B5BFB69795} => C:\Program Files\Common Files\Adobe\Adobe Drive CS4\ADFSMenu.dll [2008-08-14] (Adobe Systems Incorporated)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-09-05] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers3-x32: [{C95FFEAE-A32E-4122-A5C4-49B5BFB69795}] -> {C95FFEAE-A32E-4122-A5C4-49B5BFB69795} => C:\Program Files\Common Files\Adobe\Adobe Drive CS4\ADFSMenu.dll [2008-08-14] (Adobe Systems Incorporated)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-03-08] (NVIDIA Corporation)
ContextMenuHandlers5: [PortraitDisplaysContextMenu] -> {8602BDD8-9780-4717-B89A-7F89AF75B2AB} => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\shellmenu64.dll [2010-05-13] (Portrait Displays, Inc.)
ContextMenuHandlers5-x32: [{C95FFEAE-A32E-4122-A5C4-49B5BFB69795}] -> {C95FFEAE-A32E-4122-A5C4-49B5BFB69795} => C:\Program Files\Common Files\Adobe\Adobe Drive CS4\ADFSMenu.dll [2008-08-14] (Adobe Systems Incorporated)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-09-05] (AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-15] (Alexander Roshal)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {09BEC8B9-43A1-414F-B35F-2B71EE48FE3A} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_pepper.exe [2018-09-05] (Adobe Systems Incorporated)
Task: {13BEBF58-8D89-4104-A54D-A6FC3A1347E6} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-09-05] (AVAST Software)
Task: {2460F3FE-826B-4909-B5E6-848CD4D66D4B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-01] (Google Inc.)
Task: {35B50F8D-E6ED-481F-91BC-2CE196E27764} - System32\Tasks\AdobeAAMUpdater-1.0-Blecha-PC-Blecha => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {3F49D812-16FD-49B0-8C62-03A76AA030F6} - System32\Tasks\doPDF Update => C:\Program Files\Softland\novaPDF 8\Driver\UpdateApplication.exe [2017-02-22] ()
Task: {46AF233F-C033-4264-A23D-E901C22C26EB} - System32\Tasks\Opera scheduled Autoupdate 1476079948 => C:\Program Files (x86)\Opera\launcher.exe [2018-06-12] (Opera Software)
Task: {5D33D0B5-F46A-436B-881D-61F89545540E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-01] (Google Inc.)
Task: {7281B9B2-F6B2-48B8-87DE-A074836C32DE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-01-09] (Piriform Ltd)
Task: {7F4042EF-8673-4D0E-BF14-C27F49B70E69} - System32\Tasks\{3303B6F6-15B6-43DD-A0B8-8C0055F1E383} => C:\Windows\system32\pcalua.exe -a E:\setup.exe -d E:\
Task: {81C7EB83-4D6B-4927-89D6-6B281BED60FF} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {8A7F26A6-2107-4CEA-968D-7714456E18FC} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-06-21] (Dropbox, Inc.)
Task: {8FDE5738-51C5-4D5C-B97D-BD015BB70B88} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\Overseer.exe [2018-09-05] (AVAST Software)
Task: {AAC819AD-0CA4-4114-8BD5-5193A2FF9F6E} - System32\Tasks\AdobeGCInvoker-1.0-Blecha-PC-Blecha => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11] (Adobe Systems, Incorporated)
Task: {AF6D2733-9A6C-431B-B7B6-D221CB605BD5} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-06-21] (Dropbox, Inc.)
Task: {B03DD7D4-7737-42C5-84B2-22A79D26D9BC} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-01-09] (Piriform Ltd)
Task: {C9D08F89-03CD-437D-BFC3-B80BF7412365} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated)
Task: {E1739617-C2C9-4D72-8E76-A0D92158BBF7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-09-05] (Adobe Systems Incorporated)
Task: {E87B3C62-2FE4-40F0-8EB7-5CCA89E9452B} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_Plugin.exe [2018-09-05] (Adobe Systems Incorporated)
Task: {F095AC55-9528-4787-A033-93FE286F0BDB} - System32\Tasks\{6A2E79BC-6AF6-4A9E-8ABD-A1FA4C8A09CC} => C:\Windows\system32\pcalua.exe -a "C:\MOJE PROGAMY\ADOBE PREMIER PRO\Adobe Premiere Pro CC 2017 v11.1.0.222 (x64) + Crack (LeskliCZ)\Nová složka\Build\setup.exe" -d "C:\MOJE PROGAMY\ADOBE PREMIER PRO\Adobe Premiere Pro CC 2017 v11.1.0.222 (x64) + Crack (LeskliCZ)\Nová složka\Build"
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-02-23 18:40 - 2016-03-08 08:27 - 000134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-10-25 10:57 - 2016-10-25 10:57 - 000491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2018-01-08 15:00 - 2018-01-08 15:00 - 000076456 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2016-02-21 23:38 - 2016-02-21 23:38 - 000230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2016-02-23 19:09 - 2012-09-29 14:25 - 000409088 ____N () C:\Windows\System32\HPM1210LM.DLL
2016-02-23 19:10 - 2012-09-29 14:25 - 000074240 ____N () C:\Windows\system32\spool\PRTPROCS\x64\HPM1210PP.dll
2016-03-04 15:29 - 2010-05-17 13:03 - 000121456 _____ () C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
2015-03-07 02:07 - 2015-03-07 02:07 - 000908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2017-10-20 05:29 - 2017-10-20 05:29 - 001096824 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 000060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2017-10-20 05:29 - 2017-10-20 05:29 - 000241784 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2016-08-09 20:37 - 2010-01-05 14:01 - 000110592 _____ () C:\Program Files (x86)\IR\shutTask.exe
2017-10-20 05:02 - 2017-10-20 05:02 - 000077824 _____ () C:\Program Files\Logitech Gaming Software\LAClient\zlib.dll
2017-10-20 05:02 - 2017-10-20 05:02 - 000144896 _____ () C:\Program Files\Logitech Gaming Software\LAClient\libssh2.dll
2016-03-04 15:29 - 2010-05-13 17:34 - 000674928 _____ () C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\wpctrl.exe
2016-03-04 15:29 - 2010-05-13 17:34 - 000711792 _____ () C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\floater.exe
2017-02-22 12:18 - 2017-02-22 12:18 - 000145696 _____ () C:\Program Files\Softland\novaPDF 8\Server\AgileDotNetRT64.dll
2017-02-22 12:18 - 2017-02-22 12:18 - 000060840 _____ () C:\Program Files\Softland\novaPDF 8\Server\CryptUtil.dll
2017-02-22 12:19 - 2017-02-22 12:19 - 000035240 _____ () C:\Program Files\Softland\novaPDF 8\Server\WAFServicePlugin.dll
2016-03-12 10:41 - 2016-03-08 12:07 - 001416064 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-03-12 10:41 - 2016-03-08 12:07 - 003613056 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-03-12 10:41 - 2016-03-08 12:07 - 000299392 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2018-09-06 07:14 - 2018-04-30 12:54 - 002493648 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2018-09-06 07:14 - 2018-04-25 13:16 - 002297040 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-09-05 17:32 - 2018-09-05 17:32 - 000703192 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
2016-10-25 10:57 - 2016-10-25 10:57 - 031723696 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2018-09-05 17:32 - 2018-09-05 17:32 - 000575704 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-09-05 17:34 - 2018-09-05 17:34 - 000896216 _____ () C:\Program Files\AVAST Software\Avast\anen.dll
2018-09-05 17:32 - 2018-09-05 17:32 - 000541400 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-09-05 17:32 - 2018-09-05 17:32 - 000151768 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-09-05 17:32 - 2018-09-05 17:32 - 000986840 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-09-06 20:54 - 2018-09-06 20:54 - 005692560 _____ () C:\Program Files\AVAST Software\Avast\defs\18090604\algo.dll
2016-03-12 10:41 - 2016-03-08 12:07 - 000020352 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2009-10-15 12:13 - 2009-10-15 12:13 - 000061440 _____ () C:\Program Files (x86)\HP\HPLaserJetService\HPTools.dll
2009-10-15 12:13 - 2009-10-15 12:13 - 000964096 _____ () C:\Program Files (x86)\HP\HPLaserJetService\LEDMXMLObjects.dll
2012-12-24 07:53 - 2012-12-24 07:53 - 000082944 _____ () C:\Windows\system32\mvusbews.DLL
2016-01-01 21:37 - 2016-01-01 21:37 - 000036878 _____ () C:\Program Files (x86)\Pidgin\libssp-0.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000671031 _____ () C:\Program Files (x86)\Pidgin\exchndl.dll
2016-02-28 17:26 - 2016-02-28 17:26 - 000904525 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libcairo-2.dll
2016-02-28 17:26 - 2016-02-28 17:26 - 000279059 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libfontconfig-1.dll
2016-02-28 17:26 - 2016-02-28 17:26 - 000177586 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libexpat-1.dll
2016-02-28 17:26 - 2016-02-28 17:26 - 000553382 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\freetype6.dll
2016-02-28 17:26 - 2016-02-28 17:26 - 000216992 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libpng14-14.dll
2016-02-28 17:26 - 2016-02-28 17:26 - 000118272 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\zlib1.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 001136034 _____ () C:\Program Files (x86)\Pidgin\libxml2-2.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000475580 _____ () C:\Program Files (x86)\Pidgin\spellcheck\libgtkspell-0.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000020997 _____ () C:\Program Files (x86)\Pidgin\plugins\autoaccept.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000013253 _____ () C:\Program Files (x86)\Pidgin\plugins\buddynote.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000024924 _____ () C:\Program Files (x86)\Pidgin\plugins\convcolors.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000015702 _____ () C:\Program Files (x86)\Pidgin\plugins\extplacement.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000014147 _____ () C:\Program Files (x86)\Pidgin\plugins\gtkbuddynote.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000018882 _____ () C:\Program Files (x86)\Pidgin\plugins\history.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000012865 _____ () C:\Program Files (x86)\Pidgin\plugins\iconaway.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000019043 _____ () C:\Program Files (x86)\Pidgin\plugins\idle.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000018555 _____ () C:\Program Files (x86)\Pidgin\plugins\joinpart.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000015074 _____ () C:\Program Files (x86)\Pidgin\plugins\libaim.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000311021 _____ () C:\Program Files (x86)\Pidgin\liboscar.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000092398 _____ () C:\Program Files (x86)\Pidgin\plugins\libbonjour.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000332178 _____ () C:\Program Files (x86)\Pidgin\plugins\libgg.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000016005 _____ () C:\Program Files (x86)\Pidgin\plugins\libicq.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000107371 _____ () C:\Program Files (x86)\Pidgin\plugins\libirc.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000128694 _____ () C:\Program Files (x86)\Pidgin\libsasl2-3.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000374169 _____ () C:\Program Files (x86)\Pidgin\plugins\libmsn.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000150598 _____ () C:\Program Files (x86)\Pidgin\plugins\libmxit.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000106671 _____ () C:\Program Files (x86)\Pidgin\plugins\libmyspace.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000123540 _____ () C:\Program Files (x86)\Pidgin\plugins\libnovell.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000116071 _____ () C:\Program Files (x86)\Pidgin\plugins\libsametime.dll
2016-01-01 21:36 - 2016-01-01 21:36 - 000152852 _____ () C:\Program Files (x86)\Pidgin\libmeanwhile-1.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000171123 _____ () C:\Program Files (x86)\Pidgin\plugins\libsilc.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000868705 _____ () C:\Program Files (x86)\Pidgin\libsilc-1-1-4.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000225616 _____ () C:\Program Files (x86)\Pidgin\libsilcclient-1-1-4.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000055880 _____ () C:\Program Files (x86)\Pidgin\plugins\libsimple.dll
2016-02-28 18:06 - 2016-01-31 08:48 - 000099059 _____ () C:\Program Files (x86)\Pidgin\plugins\libsteam-1.6.1.dll
2016-02-28 18:12 - 2016-02-28 18:12 - 000278906 _____ () C:\Program Files (x86)\Pidgin\libjson-glib-1.0.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000021337 _____ () C:\Program Files (x86)\Pidgin\plugins\libxmpp.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000417764 _____ () C:\Program Files (x86)\Pidgin\libjabber.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000022832 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoo.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000236666 _____ () C:\Program Files (x86)\Pidgin\libymsg.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000019793 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoojp.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000047934 _____ () C:\Program Files (x86)\Pidgin\plugins\log_reader.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000021795 _____ () C:\Program Files (x86)\Pidgin\plugins\markerline.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000013456 _____ () C:\Program Files (x86)\Pidgin\plugins\newline.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000030249 _____ () C:\Program Files (x86)\Pidgin\plugins\notify.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000021075 _____ () C:\Program Files (x86)\Pidgin\plugins\nss-prefs.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000017023 _____ () C:\Program Files (x86)\Pidgin\plugins\offlinemsg.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000029256 _____ () C:\Program Files (x86)\Pidgin\plugins\pidginrc.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000015380 _____ () C:\Program Files (x86)\Pidgin\plugins\psychic.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000015429 _____ () C:\Program Files (x86)\Pidgin\plugins\relnot.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000015045 _____ () C:\Program Files (x86)\Pidgin\plugins\sendbutton.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000069625 _____ () C:\Program Files (x86)\Pidgin\plugins\spellchk.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000031993 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl-nss.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000012004 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000015978 _____ () C:\Program Files (x86)\Pidgin\plugins\statenotify.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000030353 _____ () C:\Program Files (x86)\Pidgin\plugins\themeedit.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000032020 _____ () C:\Program Files (x86)\Pidgin\plugins\ticker.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000018399 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000023851 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp_format.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000029791 _____ () C:\Program Files (x86)\Pidgin\plugins\win2ktrans.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000030771 _____ () C:\Program Files (x86)\Pidgin\plugins\winprefs.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000037191 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppconsole.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000044494 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppdisco.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000048402 _____ () C:\Program Files (x86)\Pidgin\sasl2\libanonymous-3.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000049962 _____ () C:\Program Files (x86)\Pidgin\sasl2\libcrammd5-3.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000079858 _____ () C:\Program Files (x86)\Pidgin\sasl2\libdigestmd5-3.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000048907 _____ () C:\Program Files (x86)\Pidgin\sasl2\libplain-3.dll
2016-01-01 21:36 - 2016-01-01 21:36 - 000486400 _____ () C:\Program Files (x86)\Pidgin\sqlite3.dll
2016-02-28 17:26 - 2016-02-28 17:26 - 000090496 _____ () C:\Program Files (x86)\Pidgin\Gtk\lib\gtk-2.0\2.10.0\engines\libwimp.dll
2018-09-05 17:35 - 2018-09-05 17:35 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-08-09 20:36 - 2007-04-19 09:33 - 000035584 _____ () C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\uPiApi.dll
2016-08-09 20:36 - 2007-04-19 09:39 - 000436992 _____ () C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\fpxlib.dll
2016-08-09 20:36 - 2007-04-19 09:29 - 000273216 _____ () C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\magengin.dll
2016-08-09 20:36 - 2007-04-19 09:29 - 000187136 _____ () C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\kgl.dll
2009-07-13 23:03 - 2009-07-14 03:15 - 000364544 _____ () C:\Windows\SysWOW64\msjetoledb40.dll
2009-10-15 19:44 - 2009-10-15 19:44 - 000067128 _____ () C:\Program Files (x86)\HP\HP UT LEDM\bin\HPTools.dll
2009-10-15 19:44 - 2009-10-15 19:44 - 000075320 _____ () C:\Program Files (x86)\HP\HP UT LEDM\bin\HPToolkit.dll
2009-10-15 19:43 - 2009-10-15 19:43 - 000140856 _____ () C:\Program Files (x86)\HP\HP UT LEDM\bin\DMBaseObjects.dll
2009-10-15 19:43 - 2009-10-15 19:43 - 000240128 _____ () C:\Program Files (x86)\HP\HP UT LEDM\bin\LEDMMapperObjects.dll
2009-10-15 19:44 - 2009-10-15 19:44 - 000969784 _____ () C:\Program Files (x86)\HP\HP UT LEDM\bin\LEDMXMLObjects.dll
2018-09-05 15:52 - 2018-08-28 13:53 - 001111880 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2018-09-05 15:52 - 2018-08-28 13:53 - 002247496 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
2018-05-15 05:46 - 2018-08-28 13:58 - 000023888 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000025456 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000142824 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 001958760 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:53 - 000118232 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes35.dll
2018-05-15 05:46 - 2018-08-28 13:53 - 000109024 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000027616 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000049128 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000074584 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000083784 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:53 - 000418776 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom35.dll
2018-09-05 15:52 - 2018-08-28 13:53 - 000023520 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000131552 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000119272 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:58 - 000401240 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:58 - 000034664 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000026600 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000182752 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000027616 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000028640 _____ () C:\Program Files (x86)\Dropbox\Client\win32job.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:55 - 000025944 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000053736 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000065504 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:59 - 000059744 _____ () C:\Program Files (x86)\Dropbox\Client\winshell.compiled._winshell.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:59 - 000028520 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:58 - 000068968 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000027488 _____ () C:\Program Files (x86)\Dropbox\Client\crashpad.compiled._Crashpad.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:59 - 000033632 _____ () C:\Program Files (x86)\Dropbox\Client\winreindex.compiled._winreindex.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:57 - 003822416 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:58 - 000090560 _____ () C:\Program Files (x86)\Dropbox\Client\sip.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 001779024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 001929552 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000032736 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:57 - 000156504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000519504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:57 - 000052056 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineCore.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:57 - 000044888 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:57 - 000132944 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:57 - 000218456 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000205656 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000061408 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:59 - 000051552 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000027624 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:58 - 000027496 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:58 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:58 - 000025448 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:59 - 000024032 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000031600 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000494048 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:59 - 000029040 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000029024 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:53 - 000036312 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2018-05-15 05:46 - 2018-08-28 13:58 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.advapi32.compiled._winffi_advapi32.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000441672 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2018-05-15 05:46 - 2018-08-28 13:58 - 000035680 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000025920 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.DLL
2018-09-05 15:52 - 2018-08-28 13:56 - 001592128 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2018-05-15 05:46 - 2018-08-28 13:59 - 000029544 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:57 - 000531280 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:57 - 000354128 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:57 - 000037200 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngine.cp35-win32.pyd
2016-08-09 20:37 - 2010-01-05 13:48 - 000028672 _____ () C:\Program Files (x86)\IR\KeyBoard.dll
2017-03-14 09:31 - 2017-03-14 09:31 - 052051544 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2017-01-25 21:07 - 2017-01-25 21:07 - 000118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2017-01-25 21:07 - 2017-01-25 21:07 - 000214528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2017-01-25 21:06 - 2017-01-25 21:06 - 000117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2017-01-25 21:07 - 2017-01-25 21:07 - 000125952 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2017-03-14 09:35 - 2017-03-14 09:35 - 000110680 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2017-01-25 21:07 - 2017-01-25 21:07 - 000086528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Blecha\Desktop\TOPKOPACKY:com.dropbox.attributes [168]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\postsignum.cz -> hxxps://www.postsignum.cz
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2016-02-29 22:06 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Blecha\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
MSCONFIG\startupreg: cz.seznam.software.autoupdate => "C:\Users\Blecha\AppData\Roaming\Seznam.cz\szninstall.exe" -c
MSCONFIG\startupreg: cz.seznam.software.szndesktop => "C:\Users\Blecha\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: seznam-listicka-distribuce => "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{DE6378B0-F91D-4933-A7C4-F643E19DA119}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B08782B2-4DA6-412F-985C-B19C18C5142E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{6BFD1842-B2B9-4D16-BE52-1C663BD31777}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{DDB13684-06A0-4685-B41A-9B9CF36AE382}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{CAACED9D-6AF2-4D3A-86A9-6338447F74F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [{01A8B0AB-9542-46D6-84EB-937EFC617F06}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [TCP Query User{D6007BE8-2FF5-47B0-84E3-A8338DDACF63}C:\program files (x86)\phpdesigner 8\phpdesigner.exe] => (Allow) C:\program files (x86)\phpdesigner 8\phpdesigner.exe
FirewallRules: [UDP Query User{88145A93-835A-423D-83E9-135A7C8EF3C8}C:\program files (x86)\phpdesigner 8\phpdesigner.exe] => (Allow) C:\program files (x86)\phpdesigner 8\phpdesigner.exe
FirewallRules: [{90B91E55-2656-4300-A3A3-0A3A681FA032}] => (Allow) LPort=5353
FirewallRules: [{987180D2-444F-4E2B-A843-CE90E85E7395}] => (Allow) C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
FirewallRules: [{63A955BD-2D1C-4706-84F5-71ED70ACD58E}] => (Allow) C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
FirewallRules: [{BFC2A9D6-B730-4B33-B363-45F4E3680D94}] => (Allow) C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TotalMedia.exe
FirewallRules: [{A42B2467-1383-42B3-AF52-9B7361232AB3}] => (Allow) C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TotalMedia.exe
FirewallRules: [{2ED64CD2-0BAF-4550-B21D-925BF0B9FD14}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{5B832660-BB79-4718-AE4B-10E9C966A272}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A30746C8-9E6E-414E-BF0C-6C84ABB296E5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{493A5750-8F2E-41A3-B47B-03242C9F8B00}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{EEE7DE04-F5C8-4D1F-BEC1-5A8CE94B2F66}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{71D60452-5EB0-40A1-8B42-5C0A160322FB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{3C0CCBC5-F273-462A-B3BB-0F3B624D0382}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D2E3F833-7780-4663-A221-AC02F0429460}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\ActivePresenter.exe
FirewallRules: [{3A3244C1-36D1-41D9-A038-EE48B719CC61}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\ActivePresenter.exe
FirewallRules: [{752945B5-C01A-4F0B-8814-ED54AF93A998}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlhtmlrenderer.exe
FirewallRules: [{5AFD1955-4E15-42ED-B874-835982EDF338}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlhtmlrenderer.exe
FirewallRules: [{62418A02-4542-4C31-94C2-68A966F59094}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlactivator.exe
FirewallRules: [{47135232-6DDE-4EBB-BBA3-7A425BEFE657}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlactivator.exe
FirewallRules: [{B5834DF9-F483-40E9-B2FA-1A05CF4FC25A}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlupdater.exe
FirewallRules: [{03ACB893-B1DF-46B0-B739-10C3C100AC4C}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlupdater.exe
FirewallRules: [{B931F673-69AE-4522-B78E-47415E1AF320}] => (Allow) C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TotalMedia.exe
FirewallRules: [{8FBC2B1A-71AB-4540-8858-EF4E6748C77C}] => (Allow) C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TotalMedia.exe
FirewallRules: [{724FA50C-ED0E-4F76-A657-8452B7A97736}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{68053E58-A85F-498E-953B-011A37FFECF8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{001F4429-50A0-4138-9317-52CB82C7D45C}] => (Allow) LPort=8501
FirewallRules: [{6AAC8E0A-9214-4009-861D-7FC8F410CE9F}] => (Allow) LPort=8501
FirewallRules: [{EE417A62-D106-404F-9868-9026AABC492B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{0DFDF57B-61B5-4540-9EBD-B2C623091E98}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{A213F143-E5A7-453B-B9E0-7FA69CCF12A9}] => (Allow) C:\Users\Blecha\AppData\Local\Apowersoft\Online Audio Recorder\Online Audio Recorder.exe
FirewallRules: [{C9497D4B-FE28-4D09-920B-A32B9D1E9BD3}] => (Allow) C:\Users\Blecha\AppData\Local\Apowersoft\Online Audio Recorder\Online Audio Recorder.exe
FirewallRules: [{2CD1A482-9704-4ACE-B95A-5175DDE18520}] => (Allow) C:\Program Files (x86)\Opera\53.0.2907.68\opera.exe
FirewallRules: [{9506A90F-C29E-4857-8FE1-6E7D4B4B6A96}] => (Allow) C:\Program Files (x86)\Opera\53.0.2907.99\opera.exe
FirewallRules: [{3EC97D1C-DE0A-470C-91E5-DC406F96EF74}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{EE334977-186B-4358-872F-424A66ED5B77}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{26B55756-874E-40BA-9AA6-BB407FC50EE5}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{6CF444B1-9AD3-4FFD-95F8-3D7CB8A66C13}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
==================== Restore Points =========================
08-06-2018 11:58:25 Naplánovaný kontrolní bod
16-06-2018 09:42:57 Naplánovaný kontrolní bod
06-09-2018 17:52:54 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/06/2018 08:54:01 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.
Error: (09/06/2018 08:50:23 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Users\Blecha\AppData\Local\chromium\Application\chrome.exe se nezdařilo.
Závislé sestavení 63.0.3223.0,language="*",type="win32",version="63.0.3223.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (09/06/2018 06:54:25 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.
Error: (09/06/2018 01:19:49 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.
Error: (09/06/2018 07:54:14 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.
Error: (09/06/2018 07:09:53 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.
Error: (09/06/2018 07:07:30 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Users\Blecha\AppData\Local\chromium\Application\chrome.exe se nezdařilo.
Závislé sestavení 63.0.3223.0,language="*",type="win32",version="63.0.3223.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (09/05/2018 08:54:21 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.
System errors:
=============
Error: (09/06/2018 08:51:54 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.
Error: (09/06/2018 08:51:54 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.
Error: (09/06/2018 08:51:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Logitech CPU Core Tempurature neuspěla při spuštění v důsledku následující chyby:
V systému Windows nelze ověřit digitální podpis tohoto souboru. Při nedávné změně hardwaru nebo softwaru mohl být nainstalován nesprávně podepsaný nebo poškozený soubor nebo soubor škodlivého softwaru z neznámého zdroje.
Error: (09/06/2018 08:48:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba novaPDF Server byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (09/06/2018 08:48:29 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NVIDIA GeForce Experience Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (09/06/2018 08:48:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.
Error: (09/06/2018 08:48:29 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NVIDIA Streamer Network Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (09/06/2018 08:48:29 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba DbxSvc byla neočekávaně ukončena. Tento stav nastal již 1krát.
CodeIntegrity:
===================================
Date: 2018-09-06 20:51:30.161
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-06 20:51:30.129
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-06 07:08:31.941
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-06 07:08:31.894
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-05 15:47:13.472
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-05 15:47:13.394
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-21 05:13:41.635
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-21 05:13:41.604
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz
Percentage of memory in use: 54%
Total physical RAM: 8128.26 MB
Available physical RAM: 3677.51 MB
Total Virtual: 16254.71 MB
Available Virtual: 11697.65 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.41 GB) (Free:696.55 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:0.1 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 371832C0)
Partition 1: (Not Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=931.4 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Ran by Blecha (06-09-2018 21:16:40)
Running from C:\Users\Blecha\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2016-02-23 16:30:25)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1098195284-1894212499-3841398290-500 - Administrator - Disabled)
Blecha (S-1-5-21-1098195284-1894212499-3841398290-1000 - Administrator - Enabled) => C:\Users\Blecha
Guest (S-1-5-21-1098195284-1894212499-3841398290-501 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
ActivePresenter (HKLM-x32\...\{A2A40277-D807-4754-95A3-2F294C2C51D3}_is1) (Version: 5.5.2 - Atomi Systems, Inc.)
adobe (HKLM\...\{ECA002A5-48AB-4B43-86FC-8E9AA65C7077}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 18.011.20058 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.215 - Adobe Systems Incorporated)
Adobe Anchor Service x64 CS4 (HKLM\...\{887797BF-37A5-4199-B0C9-0D38D6196E9A}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe CMaps x64 CS4 (HKLM\...\{90BA8112-80B3-4617-A3C1-BD2771B60F74}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.0.1.188 - Adobe Systems Incorporated)
Adobe CSI CS4 x64 (HKLM\...\{8DAA31EB-6830-4006-A99F-4DF8AB24714F}) (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.7 - Adobe Systems Incorporated)
Adobe Drive CS4 x64 (HKLM\...\{A3454894-144A-4D80-B605-C128FE0D7329}) (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated)
Adobe Flash Player 30 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated)
Adobe Fonts All x64 (HKLM\...\{6631325A-9B1B-4EE7-8E64-8CC4A6F10643}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Illustrator CC 2017 (HKLM-x32\...\ILST_21_0_0) (Version: 21.0.0 - Adobe Systems Incorporated)
Adobe Linguistics CS4 x64 (HKLM\...\{8875A1C0-6308-4790-8CF6-D34E89880052}) (Version: 4.0.0 - Adobe Systems Incorporated) Hidden
Adobe PDF Library Files x64 CS4 (HKLM\...\{DFFABE78-8173-4E97-9C5C-22FB26192FC5}) (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS4 (64 Bit) (HKLM\...\{D40172D6-CE2D-4B72-BF5F-26A04A900B7B}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS4 (HKLM-x32\...\Adobe_faf656ef605427ee2f42989c3ad31b8) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2017 (HKLM-x32\...\PPRO_11_1_0) (Version: 11.1.0 - Adobe Systems Incorporated)
Adobe Type Support x64 CS4 (HKLM\...\{8C8D673B-20FB-43E6-BCB7-9B3F78F2E762}) (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe WinSoft Linguistics Plugin x64 (HKLM\...\{295CFB7C-A57E-4313-93E7-68E7CE1D0332}) (Version: 1.1 - Adobe Systems Incorporated) Hidden
AIDA64 Extreme v4.00 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 4.00 - FinalWire Ltd.)
Aktualizace NVIDIA 2.10.2.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.10.2.40 - NVIDIA Corporation) Hidden
ArcSoft TotalMedia 3.5 (HKLM-x32\...\{29E44E9D-ACB2-4D2D-849F-5361C941B7E1}) (Version: 3.5.7.282 - ArcSoft)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.6.2349 - AVAST Software)
Capture-A-ScreenShot (HKLM-x32\...\Capture-A-ScreenShot_is1) (Version: - PopDrops.com)
CCleaner (HKLM\...\CCleaner) (Version: 5.39 - Piriform)
Connect (HKLM-x32\...\{B29AD377-CC12-490A-A480-1452337C618D}) (Version: 1.0.0.1 - Adobe Systems Incorporated) Hidden
Crystal Reports Basic Runtime for Visual Studio 2008 (HKLM-x32\...\{CE26F10F-C80F-4377-908B-1B7882AE2CE3}) (Version: 10.5.0.0 - Business Objects)
Day Organizer, ver. 3.0.0 (HKLM-x32\...\{6DA23ED2-5074-4D95-931A-BA89F0E68FB7}) (Version: 3.0.0000 - Patrik Tanzer)
doPDF (HKLM\...\{09F9E468-7A84-422F-B3AB-DA682A56B564}) (Version: 8.8.947 - Softland) Hidden
doPDF 8 (HKLM-x32\...\{40114d1e-366c-42d4-a83c-70c0adfbccf6}) (Version: 8.8.947 - Softland)
Dropbox (HKLM-x32\...\Dropbox) (Version: 56.4.94 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.127.1 - Dropbox, Inc.) Hidden
Dungeon Keeper 2 (HKLM\...\{4f94b43a-8a00-4ac4-bb94-269cf24aef97}.sdb) (Version: - )
Dungeon Keeper 2 (HKLM-x32\...\Dungeon Keeper 2_is1) (Version: - GOG.com)
erLT (HKLM-x32\...\{A498D9EB-927B-459B-85D6-DD6EF8C2C564}) (Version: 1.20.0137 - Logitech, Inc.) Hidden
f.lux (HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\Flux) (Version: - f.lux Software LLC)
FastStone Photo Resizer 3.5 (HKLM-x32\...\FastStone Photo Resizer) (Version: 3.5 - FastStone Soft.)
FileZilla Client 3.30.0 (HKLM-x32\...\FileZilla Client) (Version: 3.30.0 - Tim Kosse)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 1.0.1 - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 68.0.3440.106 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.99 - Google Inc.) Hidden
HP LaserJet Professional M1130-M1210 MFP Series (HKLM\...\HP LaserJet Professional M1130-M1210 MFP Series) (Version: - )
hppLaserJetService (HKLM-x32\...\{D371F551-0DB9-4CEC-844B-4C90CE91EA0B}) (Version: 001.003.000145 - Hewlett-Packard) Hidden
hppM1130M1210SeriesLaserJetService (HKLM-x32\...\{0E448256-D515-4C3E-A5BE-0A7B76CED5D4}) (Version: 001.003.00073 - Hewlett-Packard) Hidden
hppusgM1130M1210Series (HKLM-x32\...\{DA6CC3A5-1F5B-4068-8BFF-C597BB6B8158}) (Version: 1.0.0.2 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.10.255 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{98f335cd-0a32-4b3f-b74c-ef9480e834f0}) (Version: 10.0.27 - Intel(R) Corporation) Hidden
IRRecevie (HKLM-x32\...\{F6BC20A5-3C48-4675-BDE6-E2E6FED30B9D}) (Version: 1.00.0000 - Mygica)
Java 8 Update 144 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Java 8 Update 73 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418073F0}) (Version: 8.0.730.2 - Oracle Corporation)
K-Lite Codec Pack 11.8.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.8.5 - KLCP)
kuler (HKLM-x32\...\{098727E1-775A-4450-B573-3F441F1CA243}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
LG PC Suite (HKLM-x32\...\LG PC Suite) (Version: 5.3.25.20150529 - LG Electronics)
LG United Mobile Drivers (HKLM-x32\...\{4DE95ED9-0A29-4C4F-8463-35857CF9BA36}) (Version: 3.14.1 - LG Electronics)
LibreOffice 5.1.0.3 (HKLM-x32\...\{2F75F86D-8362-4F49-9536-D87DCBF6ABAE}) (Version: 5.1.0.3 - The Document Foundation)
LinkChecker 9.3 (HKLM-x32\...\LinkChecker_is1) (Version: - )
Logitech Gaming Software 8.96 (HKLM\...\Logitech Gaming Software) (Version: 8.96.88 - Logitech Inc.)
Logitech SetPoint 6.67 (HKLM\...\sp6) (Version: 6.67.83 - Logitech)
Malwarebytes verze 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
MarketResearch (HKLM-x32\...\{175F0111-2968-4935-8F70-33108C6A4DE3}) (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Messenger for Desktop (HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\messengerfordesktop) (Version: 2.0.9 - MessengerForDesktop.com)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 CSY Language Pack (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0405-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{0513c9cf-7191-45a7-ace9-ecdad03c93a4}) (Version: 12.0.40660.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{10dc8dbf-d3d7-4e23-be07-120fe5c66b78}) (Version: 12.0.40660.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Additional Runtime - 14.10.25017 (HKLM\...\{E512788E-C50B-3858-A4B9-73AD5F3F9E93}) (Version: 14.10.25017 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.10.25017 (HKLM\...\{8D4F7A6D-6B81-3DC8-9C21-6008E4866727}) (Version: 14.10.25017 - Microsoft Corporation)
Microsoft Visual C++ 2017 x86 Additional Runtime - 14.10.25017 (HKLM-x32\...\{68306422-7C57-373F-8860-D26CE4BA2A15}) (Version: 14.10.25017 - Microsoft Corporation)
Microsoft Visual C++ 2017 x86 Minimum Runtime - 14.10.25017 (HKLM-x32\...\{582EA838-9199-3518-A05C-DB09462F68EC}) (Version: 14.10.25017 - Microsoft Corporation)
Mozilla Firefox 55.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 55.0.2 (x64 cs)) (Version: 55.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 55.0.2 - Mozilla)
Mozilla Thunderbird 52.8.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 52.8.0 (x86 cs)) (Version: 52.8.0 - Mozilla)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9 - Notepad++ Team)
novaPDF 8 Printer Driver (HKLM\...\{6CE23ADA-C3A6-4974-A4DB-27BCA371010B}) (Version: 8.8.947 - Softland)
NVIDIA GeForce Experience 2.10.2.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.10.2.40 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 364.51 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 364.51 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 364.51 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 364.51 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Opera Stable 53.0.2907.99 (HKLM-x32\...\Opera 53.0.2907.99) (Version: 53.0.2907.99 - Opera Software)
Ovládací panel NVIDIA 364.51 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 364.51 - NVIDIA Corporation) Hidden
PDF Settings CS4 (HKLM-x32\...\{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}) (Version: 9.0 - Adobe Systems Incorporated) Hidden
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Photoshop Camera Raw (HKLM-x32\...\{CC75AB5C-2110-4A7F-AF52-708680D22FE8}) (Version: 5.0 - Adobe Systems Incorporated) Hidden
Photoshop Camera Raw_x64 (HKLM\...\{2D74E972-5A85-44DC-9193-8A302BA8C181}) (Version: 5.0 - Adobe Systems Incorporated) Hidden
phpDesigner 8 version 8.1.1 (HKLM-x32\...\phpDesigner8_is1) (Version: - MPSOFTWARE)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.12 - )
Pivot Pro Plugin (HKLM-x32\...\{0217E1D1-BCEF-4A61-AF6D-F7740F65A066}) (Version: 9.50.110 - Portrait Displays, Inc.) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.61.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP)
Screaming Frog SEO Spider (HKLM-x32\...\Screaming Frog SEO Spider) (Version: 8.3 - Screaming Frog Ltd)
SDK (HKLM-x32\...\{0DEA342C-15CB-4F52-97B6-06A9C4B9C06F}) (Version: 2.22.002 - Portrait Displays, Inc.) Hidden
SEO SpyGlass (HKLM-x32\...\seopowersuite) (Version: 6.13.8 - Link-Assistant)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 5.1.0270 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.10.2.40 - NVIDIA Corporation) Hidden
SmartControl (HKLM-x32\...\{F4EF231A-7218-41B1-AB84-F5B48B74C50A}) (Version: 2.02.005 - Portrait Displays, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Suite Shared Configuration CS4 (HKLM-x32\...\{842B4B72-9E8F-4962-B3C1-1C422A5C4434}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
TP-LINK Wireless Client Utility (HKLM-x32\...\{385C8E5A-0B4F-4DCD-BBBD-2A8AE0400A76}) (Version: 7.0 - TP-LINK)
Vegas Pro 13.0 (64-bit) (HKLM\...\{CDA02BF0-BFBC-11E3-AFA0-F04DA23A5C58}) (Version: 13.0.290 - Sony)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.2 - VideoLAN)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
XAMPP (HKLM-x32\...\xampp) (Version: 5.6.24-1 - Bitnami)
Xenu's Link Sleuth (HKLM-x32\...\Xenu's Link Sleuth) (Version: 1.3.8 - Tilman Hausherr)
XML Notepad 2007 (HKLM-x32\...\{FC7BACF0-1FFA-4605-B3B4-A66AB382752D}) (Version: 2.3.0.0 - Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1098195284-1894212499-3841398290-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-09-05] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-09-05] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2016-02-21] ()
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-09-05] (AVAST Software)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-15] (Alexander Roshal)
ContextMenuHandlers2: [{C95FFEAE-A32E-4122-A5C4-49B5BFB69795}] -> {C95FFEAE-A32E-4122-A5C4-49B5BFB69795} => C:\Program Files\Common Files\Adobe\Adobe Drive CS4\ADFSMenu.dll [2008-08-14] (Adobe Systems Incorporated)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-09-05] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers3-x32: [{C95FFEAE-A32E-4122-A5C4-49B5BFB69795}] -> {C95FFEAE-A32E-4122-A5C4-49B5BFB69795} => C:\Program Files\Common Files\Adobe\Adobe Drive CS4\ADFSMenu.dll [2008-08-14] (Adobe Systems Incorporated)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.23.0.dll [2018-08-28] (Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-03-08] (NVIDIA Corporation)
ContextMenuHandlers5: [PortraitDisplaysContextMenu] -> {8602BDD8-9780-4717-B89A-7F89AF75B2AB} => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\shellmenu64.dll [2010-05-13] (Portrait Displays, Inc.)
ContextMenuHandlers5-x32: [{C95FFEAE-A32E-4122-A5C4-49B5BFB69795}] -> {C95FFEAE-A32E-4122-A5C4-49B5BFB69795} => C:\Program Files\Common Files\Adobe\Adobe Drive CS4\ADFSMenu.dll [2008-08-14] (Adobe Systems Incorporated)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-09-05] (AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-15] (Alexander Roshal)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {09BEC8B9-43A1-414F-B35F-2B71EE48FE3A} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_pepper.exe [2018-09-05] (Adobe Systems Incorporated)
Task: {13BEBF58-8D89-4104-A54D-A6FC3A1347E6} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-09-05] (AVAST Software)
Task: {2460F3FE-826B-4909-B5E6-848CD4D66D4B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-01] (Google Inc.)
Task: {35B50F8D-E6ED-481F-91BC-2CE196E27764} - System32\Tasks\AdobeAAMUpdater-1.0-Blecha-PC-Blecha => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {3F49D812-16FD-49B0-8C62-03A76AA030F6} - System32\Tasks\doPDF Update => C:\Program Files\Softland\novaPDF 8\Driver\UpdateApplication.exe [2017-02-22] ()
Task: {46AF233F-C033-4264-A23D-E901C22C26EB} - System32\Tasks\Opera scheduled Autoupdate 1476079948 => C:\Program Files (x86)\Opera\launcher.exe [2018-06-12] (Opera Software)
Task: {5D33D0B5-F46A-436B-881D-61F89545540E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-01] (Google Inc.)
Task: {7281B9B2-F6B2-48B8-87DE-A074836C32DE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-01-09] (Piriform Ltd)
Task: {7F4042EF-8673-4D0E-BF14-C27F49B70E69} - System32\Tasks\{3303B6F6-15B6-43DD-A0B8-8C0055F1E383} => C:\Windows\system32\pcalua.exe -a E:\setup.exe -d E:\
Task: {81C7EB83-4D6B-4927-89D6-6B281BED60FF} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {8A7F26A6-2107-4CEA-968D-7714456E18FC} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-06-21] (Dropbox, Inc.)
Task: {8FDE5738-51C5-4D5C-B97D-BD015BB70B88} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\Overseer.exe [2018-09-05] (AVAST Software)
Task: {AAC819AD-0CA4-4114-8BD5-5193A2FF9F6E} - System32\Tasks\AdobeGCInvoker-1.0-Blecha-PC-Blecha => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11] (Adobe Systems, Incorporated)
Task: {AF6D2733-9A6C-431B-B7B6-D221CB605BD5} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-06-21] (Dropbox, Inc.)
Task: {B03DD7D4-7737-42C5-84B2-22A79D26D9BC} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-01-09] (Piriform Ltd)
Task: {C9D08F89-03CD-437D-BFC3-B80BF7412365} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated)
Task: {E1739617-C2C9-4D72-8E76-A0D92158BBF7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-09-05] (Adobe Systems Incorporated)
Task: {E87B3C62-2FE4-40F0-8EB7-5CCA89E9452B} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_Plugin.exe [2018-09-05] (Adobe Systems Incorporated)
Task: {F095AC55-9528-4787-A033-93FE286F0BDB} - System32\Tasks\{6A2E79BC-6AF6-4A9E-8ABD-A1FA4C8A09CC} => C:\Windows\system32\pcalua.exe -a "C:\MOJE PROGAMY\ADOBE PREMIER PRO\Adobe Premiere Pro CC 2017 v11.1.0.222 (x64) + Crack (LeskliCZ)\Nová složka\Build\setup.exe" -d "C:\MOJE PROGAMY\ADOBE PREMIER PRO\Adobe Premiere Pro CC 2017 v11.1.0.222 (x64) + Crack (LeskliCZ)\Nová složka\Build"
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-02-23 18:40 - 2016-03-08 08:27 - 000134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-10-25 10:57 - 2016-10-25 10:57 - 000491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2018-01-08 15:00 - 2018-01-08 15:00 - 000076456 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2016-02-21 23:38 - 2016-02-21 23:38 - 000230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2016-02-23 19:09 - 2012-09-29 14:25 - 000409088 ____N () C:\Windows\System32\HPM1210LM.DLL
2016-02-23 19:10 - 2012-09-29 14:25 - 000074240 ____N () C:\Windows\system32\spool\PRTPROCS\x64\HPM1210PP.dll
2016-03-04 15:29 - 2010-05-17 13:03 - 000121456 _____ () C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
2015-03-07 02:07 - 2015-03-07 02:07 - 000908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2017-10-20 05:29 - 2017-10-20 05:29 - 001096824 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 000060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2017-10-20 05:29 - 2017-10-20 05:29 - 000241784 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2016-08-09 20:37 - 2010-01-05 14:01 - 000110592 _____ () C:\Program Files (x86)\IR\shutTask.exe
2017-10-20 05:02 - 2017-10-20 05:02 - 000077824 _____ () C:\Program Files\Logitech Gaming Software\LAClient\zlib.dll
2017-10-20 05:02 - 2017-10-20 05:02 - 000144896 _____ () C:\Program Files\Logitech Gaming Software\LAClient\libssh2.dll
2016-03-04 15:29 - 2010-05-13 17:34 - 000674928 _____ () C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\wpctrl.exe
2016-03-04 15:29 - 2010-05-13 17:34 - 000711792 _____ () C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\floater.exe
2017-02-22 12:18 - 2017-02-22 12:18 - 000145696 _____ () C:\Program Files\Softland\novaPDF 8\Server\AgileDotNetRT64.dll
2017-02-22 12:18 - 2017-02-22 12:18 - 000060840 _____ () C:\Program Files\Softland\novaPDF 8\Server\CryptUtil.dll
2017-02-22 12:19 - 2017-02-22 12:19 - 000035240 _____ () C:\Program Files\Softland\novaPDF 8\Server\WAFServicePlugin.dll
2016-03-12 10:41 - 2016-03-08 12:07 - 001416064 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-03-12 10:41 - 2016-03-08 12:07 - 003613056 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-03-12 10:41 - 2016-03-08 12:07 - 000299392 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2018-09-06 07:14 - 2018-04-30 12:54 - 002493648 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2018-09-06 07:14 - 2018-04-25 13:16 - 002297040 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-09-05 17:32 - 2018-09-05 17:32 - 000703192 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
2016-10-25 10:57 - 2016-10-25 10:57 - 031723696 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2018-09-05 17:32 - 2018-09-05 17:32 - 000575704 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-09-05 17:34 - 2018-09-05 17:34 - 000896216 _____ () C:\Program Files\AVAST Software\Avast\anen.dll
2018-09-05 17:32 - 2018-09-05 17:32 - 000541400 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-09-05 17:32 - 2018-09-05 17:32 - 000151768 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-09-05 17:32 - 2018-09-05 17:32 - 000986840 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-09-06 20:54 - 2018-09-06 20:54 - 005692560 _____ () C:\Program Files\AVAST Software\Avast\defs\18090604\algo.dll
2016-03-12 10:41 - 2016-03-08 12:07 - 000020352 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2009-10-15 12:13 - 2009-10-15 12:13 - 000061440 _____ () C:\Program Files (x86)\HP\HPLaserJetService\HPTools.dll
2009-10-15 12:13 - 2009-10-15 12:13 - 000964096 _____ () C:\Program Files (x86)\HP\HPLaserJetService\LEDMXMLObjects.dll
2012-12-24 07:53 - 2012-12-24 07:53 - 000082944 _____ () C:\Windows\system32\mvusbews.DLL
2016-01-01 21:37 - 2016-01-01 21:37 - 000036878 _____ () C:\Program Files (x86)\Pidgin\libssp-0.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000671031 _____ () C:\Program Files (x86)\Pidgin\exchndl.dll
2016-02-28 17:26 - 2016-02-28 17:26 - 000904525 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libcairo-2.dll
2016-02-28 17:26 - 2016-02-28 17:26 - 000279059 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libfontconfig-1.dll
2016-02-28 17:26 - 2016-02-28 17:26 - 000177586 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libexpat-1.dll
2016-02-28 17:26 - 2016-02-28 17:26 - 000553382 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\freetype6.dll
2016-02-28 17:26 - 2016-02-28 17:26 - 000216992 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libpng14-14.dll
2016-02-28 17:26 - 2016-02-28 17:26 - 000118272 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\zlib1.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 001136034 _____ () C:\Program Files (x86)\Pidgin\libxml2-2.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000475580 _____ () C:\Program Files (x86)\Pidgin\spellcheck\libgtkspell-0.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000020997 _____ () C:\Program Files (x86)\Pidgin\plugins\autoaccept.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000013253 _____ () C:\Program Files (x86)\Pidgin\plugins\buddynote.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000024924 _____ () C:\Program Files (x86)\Pidgin\plugins\convcolors.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000015702 _____ () C:\Program Files (x86)\Pidgin\plugins\extplacement.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000014147 _____ () C:\Program Files (x86)\Pidgin\plugins\gtkbuddynote.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000018882 _____ () C:\Program Files (x86)\Pidgin\plugins\history.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000012865 _____ () C:\Program Files (x86)\Pidgin\plugins\iconaway.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000019043 _____ () C:\Program Files (x86)\Pidgin\plugins\idle.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000018555 _____ () C:\Program Files (x86)\Pidgin\plugins\joinpart.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000015074 _____ () C:\Program Files (x86)\Pidgin\plugins\libaim.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000311021 _____ () C:\Program Files (x86)\Pidgin\liboscar.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000092398 _____ () C:\Program Files (x86)\Pidgin\plugins\libbonjour.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000332178 _____ () C:\Program Files (x86)\Pidgin\plugins\libgg.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000016005 _____ () C:\Program Files (x86)\Pidgin\plugins\libicq.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000107371 _____ () C:\Program Files (x86)\Pidgin\plugins\libirc.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000128694 _____ () C:\Program Files (x86)\Pidgin\libsasl2-3.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000374169 _____ () C:\Program Files (x86)\Pidgin\plugins\libmsn.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000150598 _____ () C:\Program Files (x86)\Pidgin\plugins\libmxit.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000106671 _____ () C:\Program Files (x86)\Pidgin\plugins\libmyspace.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000123540 _____ () C:\Program Files (x86)\Pidgin\plugins\libnovell.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000116071 _____ () C:\Program Files (x86)\Pidgin\plugins\libsametime.dll
2016-01-01 21:36 - 2016-01-01 21:36 - 000152852 _____ () C:\Program Files (x86)\Pidgin\libmeanwhile-1.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000171123 _____ () C:\Program Files (x86)\Pidgin\plugins\libsilc.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000868705 _____ () C:\Program Files (x86)\Pidgin\libsilc-1-1-4.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000225616 _____ () C:\Program Files (x86)\Pidgin\libsilcclient-1-1-4.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000055880 _____ () C:\Program Files (x86)\Pidgin\plugins\libsimple.dll
2016-02-28 18:06 - 2016-01-31 08:48 - 000099059 _____ () C:\Program Files (x86)\Pidgin\plugins\libsteam-1.6.1.dll
2016-02-28 18:12 - 2016-02-28 18:12 - 000278906 _____ () C:\Program Files (x86)\Pidgin\libjson-glib-1.0.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000021337 _____ () C:\Program Files (x86)\Pidgin\plugins\libxmpp.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000417764 _____ () C:\Program Files (x86)\Pidgin\libjabber.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000022832 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoo.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000236666 _____ () C:\Program Files (x86)\Pidgin\libymsg.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000019793 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoojp.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000047934 _____ () C:\Program Files (x86)\Pidgin\plugins\log_reader.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000021795 _____ () C:\Program Files (x86)\Pidgin\plugins\markerline.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000013456 _____ () C:\Program Files (x86)\Pidgin\plugins\newline.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000030249 _____ () C:\Program Files (x86)\Pidgin\plugins\notify.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000021075 _____ () C:\Program Files (x86)\Pidgin\plugins\nss-prefs.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000017023 _____ () C:\Program Files (x86)\Pidgin\plugins\offlinemsg.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000029256 _____ () C:\Program Files (x86)\Pidgin\plugins\pidginrc.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000015380 _____ () C:\Program Files (x86)\Pidgin\plugins\psychic.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000015429 _____ () C:\Program Files (x86)\Pidgin\plugins\relnot.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000015045 _____ () C:\Program Files (x86)\Pidgin\plugins\sendbutton.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000069625 _____ () C:\Program Files (x86)\Pidgin\plugins\spellchk.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000031993 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl-nss.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000012004 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000015978 _____ () C:\Program Files (x86)\Pidgin\plugins\statenotify.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000030353 _____ () C:\Program Files (x86)\Pidgin\plugins\themeedit.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000032020 _____ () C:\Program Files (x86)\Pidgin\plugins\ticker.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000018399 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000023851 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp_format.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000029791 _____ () C:\Program Files (x86)\Pidgin\plugins\win2ktrans.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000030771 _____ () C:\Program Files (x86)\Pidgin\plugins\winprefs.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000037191 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppconsole.dll
2016-02-28 18:06 - 2016-01-01 21:37 - 000044494 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppdisco.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000048402 _____ () C:\Program Files (x86)\Pidgin\sasl2\libanonymous-3.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000049962 _____ () C:\Program Files (x86)\Pidgin\sasl2\libcrammd5-3.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000079858 _____ () C:\Program Files (x86)\Pidgin\sasl2\libdigestmd5-3.dll
2016-01-01 21:37 - 2016-01-01 21:37 - 000048907 _____ () C:\Program Files (x86)\Pidgin\sasl2\libplain-3.dll
2016-01-01 21:36 - 2016-01-01 21:36 - 000486400 _____ () C:\Program Files (x86)\Pidgin\sqlite3.dll
2016-02-28 17:26 - 2016-02-28 17:26 - 000090496 _____ () C:\Program Files (x86)\Pidgin\Gtk\lib\gtk-2.0\2.10.0\engines\libwimp.dll
2018-09-05 17:35 - 2018-09-05 17:35 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-08-09 20:36 - 2007-04-19 09:33 - 000035584 _____ () C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\uPiApi.dll
2016-08-09 20:36 - 2007-04-19 09:39 - 000436992 _____ () C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\fpxlib.dll
2016-08-09 20:36 - 2007-04-19 09:29 - 000273216 _____ () C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\magengin.dll
2016-08-09 20:36 - 2007-04-19 09:29 - 000187136 _____ () C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\kgl.dll
2009-07-13 23:03 - 2009-07-14 03:15 - 000364544 _____ () C:\Windows\SysWOW64\msjetoledb40.dll
2009-10-15 19:44 - 2009-10-15 19:44 - 000067128 _____ () C:\Program Files (x86)\HP\HP UT LEDM\bin\HPTools.dll
2009-10-15 19:44 - 2009-10-15 19:44 - 000075320 _____ () C:\Program Files (x86)\HP\HP UT LEDM\bin\HPToolkit.dll
2009-10-15 19:43 - 2009-10-15 19:43 - 000140856 _____ () C:\Program Files (x86)\HP\HP UT LEDM\bin\DMBaseObjects.dll
2009-10-15 19:43 - 2009-10-15 19:43 - 000240128 _____ () C:\Program Files (x86)\HP\HP UT LEDM\bin\LEDMMapperObjects.dll
2009-10-15 19:44 - 2009-10-15 19:44 - 000969784 _____ () C:\Program Files (x86)\HP\HP UT LEDM\bin\LEDMXMLObjects.dll
2018-09-05 15:52 - 2018-08-28 13:53 - 001111880 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2018-09-05 15:52 - 2018-08-28 13:53 - 002247496 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
2018-05-15 05:46 - 2018-08-28 13:58 - 000023888 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000025456 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000142824 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 001958760 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:53 - 000118232 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes35.dll
2018-05-15 05:46 - 2018-08-28 13:53 - 000109024 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000027616 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000049128 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000074584 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000083784 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:53 - 000418776 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom35.dll
2018-09-05 15:52 - 2018-08-28 13:53 - 000023520 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000131552 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000119272 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:58 - 000401240 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:58 - 000034664 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000026600 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000182752 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000027616 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000028640 _____ () C:\Program Files (x86)\Dropbox\Client\win32job.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:55 - 000025944 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000053736 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000065504 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:59 - 000059744 _____ () C:\Program Files (x86)\Dropbox\Client\winshell.compiled._winshell.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:59 - 000028520 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:58 - 000068968 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000027488 _____ () C:\Program Files (x86)\Dropbox\Client\crashpad.compiled._Crashpad.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:59 - 000033632 _____ () C:\Program Files (x86)\Dropbox\Client\winreindex.compiled._winreindex.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:57 - 003822416 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:58 - 000090560 _____ () C:\Program Files (x86)\Dropbox\Client\sip.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 001779024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 001929552 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000032736 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:57 - 000156504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000519504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:57 - 000052056 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineCore.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:57 - 000044888 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:57 - 000132944 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:57 - 000218456 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000205656 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000061408 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:59 - 000051552 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000027624 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:58 - 000027496 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:58 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:58 - 000025448 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:59 - 000024032 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000031600 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:53 - 000494048 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.cp35-win32.pyd
2018-05-15 05:46 - 2018-08-28 13:59 - 000029040 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000029024 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:53 - 000036312 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2018-05-15 05:46 - 2018-08-28 13:58 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.advapi32.compiled._winffi_advapi32.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000441672 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2018-05-15 05:46 - 2018-08-28 13:58 - 000035680 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:56 - 000025920 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.DLL
2018-09-05 15:52 - 2018-08-28 13:56 - 001592128 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2018-05-15 05:46 - 2018-08-28 13:59 - 000029544 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:57 - 000531280 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:57 - 000354128 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.cp35-win32.pyd
2018-09-05 15:52 - 2018-08-28 13:57 - 000037200 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngine.cp35-win32.pyd
2016-08-09 20:37 - 2010-01-05 13:48 - 000028672 _____ () C:\Program Files (x86)\IR\KeyBoard.dll
2017-03-14 09:31 - 2017-03-14 09:31 - 052051544 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2017-01-25 21:07 - 2017-01-25 21:07 - 000118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2017-01-25 21:07 - 2017-01-25 21:07 - 000214528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2017-01-25 21:06 - 2017-01-25 21:06 - 000117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2017-01-25 21:07 - 2017-01-25 21:07 - 000125952 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2017-03-14 09:35 - 2017-03-14 09:35 - 000110680 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2017-01-25 21:07 - 2017-01-25 21:07 - 000086528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Blecha\Desktop\TOPKOPACKY:com.dropbox.attributes [168]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\postsignum.cz -> hxxps://www.postsignum.cz
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2016-02-29 22:06 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Blecha\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
MSCONFIG\startupreg: cz.seznam.software.autoupdate => "C:\Users\Blecha\AppData\Roaming\Seznam.cz\szninstall.exe" -c
MSCONFIG\startupreg: cz.seznam.software.szndesktop => "C:\Users\Blecha\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: seznam-listicka-distribuce => "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{DE6378B0-F91D-4933-A7C4-F643E19DA119}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B08782B2-4DA6-412F-985C-B19C18C5142E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{6BFD1842-B2B9-4D16-BE52-1C663BD31777}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{DDB13684-06A0-4685-B41A-9B9CF36AE382}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{CAACED9D-6AF2-4D3A-86A9-6338447F74F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [{01A8B0AB-9542-46D6-84EB-937EFC617F06}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [TCP Query User{D6007BE8-2FF5-47B0-84E3-A8338DDACF63}C:\program files (x86)\phpdesigner 8\phpdesigner.exe] => (Allow) C:\program files (x86)\phpdesigner 8\phpdesigner.exe
FirewallRules: [UDP Query User{88145A93-835A-423D-83E9-135A7C8EF3C8}C:\program files (x86)\phpdesigner 8\phpdesigner.exe] => (Allow) C:\program files (x86)\phpdesigner 8\phpdesigner.exe
FirewallRules: [{90B91E55-2656-4300-A3A3-0A3A681FA032}] => (Allow) LPort=5353
FirewallRules: [{987180D2-444F-4E2B-A843-CE90E85E7395}] => (Allow) C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
FirewallRules: [{63A955BD-2D1C-4706-84F5-71ED70ACD58E}] => (Allow) C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
FirewallRules: [{BFC2A9D6-B730-4B33-B363-45F4E3680D94}] => (Allow) C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TotalMedia.exe
FirewallRules: [{A42B2467-1383-42B3-AF52-9B7361232AB3}] => (Allow) C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TotalMedia.exe
FirewallRules: [{2ED64CD2-0BAF-4550-B21D-925BF0B9FD14}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{5B832660-BB79-4718-AE4B-10E9C966A272}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A30746C8-9E6E-414E-BF0C-6C84ABB296E5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{493A5750-8F2E-41A3-B47B-03242C9F8B00}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{EEE7DE04-F5C8-4D1F-BEC1-5A8CE94B2F66}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{71D60452-5EB0-40A1-8B42-5C0A160322FB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{3C0CCBC5-F273-462A-B3BB-0F3B624D0382}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D2E3F833-7780-4663-A221-AC02F0429460}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\ActivePresenter.exe
FirewallRules: [{3A3244C1-36D1-41D9-A038-EE48B719CC61}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\ActivePresenter.exe
FirewallRules: [{752945B5-C01A-4F0B-8814-ED54AF93A998}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlhtmlrenderer.exe
FirewallRules: [{5AFD1955-4E15-42ED-B874-835982EDF338}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlhtmlrenderer.exe
FirewallRules: [{62418A02-4542-4C31-94C2-68A966F59094}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlactivator.exe
FirewallRules: [{47135232-6DDE-4EBB-BBA3-7A425BEFE657}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlactivator.exe
FirewallRules: [{B5834DF9-F483-40E9-B2FA-1A05CF4FC25A}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlupdater.exe
FirewallRules: [{03ACB893-B1DF-46B0-B739-10C3C100AC4C}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlupdater.exe
FirewallRules: [{B931F673-69AE-4522-B78E-47415E1AF320}] => (Allow) C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TotalMedia.exe
FirewallRules: [{8FBC2B1A-71AB-4540-8858-EF4E6748C77C}] => (Allow) C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TotalMedia.exe
FirewallRules: [{724FA50C-ED0E-4F76-A657-8452B7A97736}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{68053E58-A85F-498E-953B-011A37FFECF8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{001F4429-50A0-4138-9317-52CB82C7D45C}] => (Allow) LPort=8501
FirewallRules: [{6AAC8E0A-9214-4009-861D-7FC8F410CE9F}] => (Allow) LPort=8501
FirewallRules: [{EE417A62-D106-404F-9868-9026AABC492B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{0DFDF57B-61B5-4540-9EBD-B2C623091E98}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{A213F143-E5A7-453B-B9E0-7FA69CCF12A9}] => (Allow) C:\Users\Blecha\AppData\Local\Apowersoft\Online Audio Recorder\Online Audio Recorder.exe
FirewallRules: [{C9497D4B-FE28-4D09-920B-A32B9D1E9BD3}] => (Allow) C:\Users\Blecha\AppData\Local\Apowersoft\Online Audio Recorder\Online Audio Recorder.exe
FirewallRules: [{2CD1A482-9704-4ACE-B95A-5175DDE18520}] => (Allow) C:\Program Files (x86)\Opera\53.0.2907.68\opera.exe
FirewallRules: [{9506A90F-C29E-4857-8FE1-6E7D4B4B6A96}] => (Allow) C:\Program Files (x86)\Opera\53.0.2907.99\opera.exe
FirewallRules: [{3EC97D1C-DE0A-470C-91E5-DC406F96EF74}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{EE334977-186B-4358-872F-424A66ED5B77}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{26B55756-874E-40BA-9AA6-BB407FC50EE5}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{6CF444B1-9AD3-4FFD-95F8-3D7CB8A66C13}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
==================== Restore Points =========================
08-06-2018 11:58:25 Naplánovaný kontrolní bod
16-06-2018 09:42:57 Naplánovaný kontrolní bod
06-09-2018 17:52:54 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/06/2018 08:54:01 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.
Error: (09/06/2018 08:50:23 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Users\Blecha\AppData\Local\chromium\Application\chrome.exe se nezdařilo.
Závislé sestavení 63.0.3223.0,language="*",type="win32",version="63.0.3223.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (09/06/2018 06:54:25 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.
Error: (09/06/2018 01:19:49 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.
Error: (09/06/2018 07:54:14 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.
Error: (09/06/2018 07:09:53 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.
Error: (09/06/2018 07:07:30 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Users\Blecha\AppData\Local\chromium\Application\chrome.exe se nezdařilo.
Závislé sestavení 63.0.3223.0,language="*",type="win32",version="63.0.3223.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (09/05/2018 08:54:21 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.
System errors:
=============
Error: (09/06/2018 08:51:54 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.
Error: (09/06/2018 08:51:54 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.
Error: (09/06/2018 08:51:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Logitech CPU Core Tempurature neuspěla při spuštění v důsledku následující chyby:
V systému Windows nelze ověřit digitální podpis tohoto souboru. Při nedávné změně hardwaru nebo softwaru mohl být nainstalován nesprávně podepsaný nebo poškozený soubor nebo soubor škodlivého softwaru z neznámého zdroje.
Error: (09/06/2018 08:48:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba novaPDF Server byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (09/06/2018 08:48:29 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NVIDIA GeForce Experience Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (09/06/2018 08:48:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.
Error: (09/06/2018 08:48:29 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NVIDIA Streamer Network Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (09/06/2018 08:48:29 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba DbxSvc byla neočekávaně ukončena. Tento stav nastal již 1krát.
CodeIntegrity:
===================================
Date: 2018-09-06 20:51:30.161
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-06 20:51:30.129
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-06 07:08:31.941
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-06 07:08:31.894
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-05 15:47:13.472
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-05 15:47:13.394
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-21 05:13:41.635
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-21 05:13:41.604
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz
Percentage of memory in use: 54%
Total physical RAM: 8128.26 MB
Available physical RAM: 3677.51 MB
Total Virtual: 16254.71 MB
Available Virtual: 11697.65 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.41 GB) (Free:696.55 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:0.1 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 371832C0)
Partition 1: (Not Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=931.4 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Re: Prosím o kontrolu logu
Otvor poznamkovy blok (Win+R -> notepad -> enter)
- Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:
Kód: Vybrat vše
Start CloseProcesses: CreateRestorePoint: PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum File: C:\Program Files (x86)\IR\shutTask.exe File: C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe File: C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe CMD: type "C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\user.js" HKLM-x32\...\Run: [] => [X] HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\MountPoints2: {04a6fda7-da4a-11e5-bde9-806e6f6e6963} - E:\Bin\ASSETUP.exe HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\MountPoints2: {144fe904-f0bb-11e5-96f4-60a44c32654b} - F:\LG_PC_Programs.exe HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\MountPoints2: {645176ad-da4f-11e5-b039-f9f2e2d6e348} - F:\SISetup.exe FF user.js: detected! => C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\user.js [2016-03-31] FF Extension: (No Name) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found] FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2018-01-16] [Legacy] [not signed] CHR HomePage: Default -> hxxp://www.google.com CHR NewTab: Default -> Active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/speeddial/newTab.html" CHR DefaultSearchKeyword: Default -> hunter CHR HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx S3 dbx; system32\DRIVERS\dbx.sys [X] S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X] S3 tsusbhub; system32\drivers\tsusbhub.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] 2018-09-06 10:13 - 2018-09-06 10:13 - 000000000 ____D C:\rsit 2018-09-06 10:13 - 2018-09-06 10:13 - 000000000 ____D C:\Program Files\trend micro 2018-09-06 10:11 - 2018-09-06 10:11 - 001222144 _____ C:\Users\Blecha\Desktop\RSITx64.exe 2018-09-06 20:44 - 2016-08-09 17:00 - 000000000 ____D C:\Program Files (x86)\Seznam.cz 2018-09-06 20:44 - 2016-08-09 16:59 - 000000000 ____D C:\Users\Blecha\AppData\Roaming\Seznam.cz Task: {7F4042EF-8673-4D0E-BF14-C27F49B70E69} - System32\Tasks\{3303B6F6-15B6-43DD-A0B8-8C0055F1E383} => C:\Windows\system32\pcalua.exe -a E:\setup.exe -d E:\ Task: {81C7EB83-4D6B-4927-89D6-6B281BED60FF} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION MSCONFIG\startupreg: cz.seznam.software.autoupdate => "C:\Users\Blecha\AppData\Roaming\Seznam.cz\szninstall.exe" -c MSCONFIG\startupreg: cz.seznam.software.szndesktop => "C:\Users\Blecha\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q MSCONFIG\startupreg: seznam-listicka-distribuce => "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate Hosts: EmptyTemp: End - Uloz na plochu s nazvom fixlist.txt
- Spusti znovu FRST a klikni na Fix
- Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
- Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: Prosím o kontrolu logu
Fix result of Farbar Recovery Scan Tool (x64) Version: 01.09.2018 03
Ran by Blecha (06-09-2018 23:23:44) Run:1
Running from C:\Users\Blecha\Desktop
Loaded Profiles: Blecha (Available Profiles: Blecha)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
File: C:\Program Files (x86)\IR\shutTask.exe
File: C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
File: C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
CMD: type "C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\user.js"
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\MountPoints2: {04a6fda7-da4a-11e5-bde9-806e6f6e6963} - E:\Bin\ASSETUP.exe
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\MountPoints2: {144fe904-f0bb-11e5-96f4-60a44c32654b} - F:\LG_PC_Programs.exe
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\MountPoints2: {645176ad-da4f-11e5-b039-f9f2e2d6e348} - F:\SISetup.exe
FF user.js: detected! => C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\user.js [2016-03-31]
FF Extension: (No Name) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2018-01-16] [Legacy] [not signed]
CHR HomePage: Default -> hxxp://www.google.com
CHR NewTab: Default -> Active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/speeddial/newTab.html"
CHR DefaultSearchKeyword: Default -> hunter
CHR HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
2018-09-06 10:13 - 2018-09-06 10:13 - 000000000 ____D C:\rsit
2018-09-06 10:13 - 2018-09-06 10:13 - 000000000 ____D C:\Program Files\trend micro
2018-09-06 10:11 - 2018-09-06 10:11 - 001222144 _____ C:\Users\Blecha\Desktop\RSITx64.exe
2018-09-06 20:44 - 2016-08-09 17:00 - 000000000 ____D C:\Program Files (x86)\Seznam.cz
2018-09-06 20:44 - 2016-08-09 16:59 - 000000000 ____D C:\Users\Blecha\AppData\Roaming\Seznam.cz
Task: {7F4042EF-8673-4D0E-BF14-C27F49B70E69} - System32\Tasks\{3303B6F6-15B6-43DD-A0B8-8C0055F1E383} => C:\Windows\system32\pcalua.exe -a E:\setup.exe -d E:\
Task: {81C7EB83-4D6B-4927-89D6-6B281BED60FF} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION
MSCONFIG\startupreg: cz.seznam.software.autoupdate => "C:\Users\Blecha\AppData\Roaming\Seznam.cz\szninstall.exe" -c
MSCONFIG\startupreg: cz.seznam.software.szndesktop => "C:\Users\Blecha\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
MSCONFIG\startupreg: seznam-listicka-distribuce => "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
Hosts:
EmptyTemp:
End
*****************
Processes closed successfully.
Restore point was successfully created.
========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========
Count : 62201
Average :
Sum : 79758208229
Maximum :
Minimum :
Property : Length
========= End of Powershell: =========
========================= File: C:\Program Files (x86)\IR\shutTask.exe ========================
C:\Program Files (x86)\IR\shutTask.exe
File not signed
MD5: C64A076CD8536A01ADADB258AA644C2F
Creation and modification date: 2016-08-09 20:37 - 2010-01-05 14:01
Size: 000110592
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:
VirusTotal: https://www.virustotal.com/file/db7bb85 ... 519686917/
====== End of File: ======
========================= File: C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe ========================
C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
File not signed
MD5: F90DD89E8A482AC976DD4E1029802E49
Creation and modification date: 2009-10-15 12:13 - 2009-10-15 12:13
Size: 000136192
Attributes: ----A
Company Name: HP
Internal Name: HPLaserJetService.exe
Original Name: HPLaserJetService.exe
Product: HPLaserJetService
Description: HP LaserJet Service
File Version: 1.3.144.0
Product Version: 1.3.144.0
Copyright: Copyright © 2009 Hewlett-Packard Development Company, L.P.
VirusTotal: https://www.virustotal.com/file/7bb552d ... 534045697/
====== End of File: ======
========================= File: C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe ========================
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
File not signed
MD5: F577910A133A592234EBAAD3F3AFA258
Creation and modification date: 2010-02-19 13:37 - 2010-02-19 13:37
Size: 000517096
Attributes: ----A
Company Name: Adobe Systems Incorporated
Internal Name: SwitchBoard
Original Name: SwitchBoard.exe
Product: SBSV 2010/02/19-11:02:07
Description: SwitchBoard Server (32 bit)
File Version: 2.0.13.7486
Product Version: 61.421671
Copyright: © 2008-2009 Adobe Systems Incorporated. All Rights Reserved.
VirusTotal: https://www.virustotal.com/file/36f5147 ... 534366264/
====== End of File: ======
========= type "C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\user.js" =========
user_pref("plugin.state.npcontentblocker", 2);
user_pref("plugin.state.nponlinebanking", 2);
user_pref("plugin.state.npvkplugin", 2);
========= End of CMD: =========
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
"HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{04a6fda7-da4a-11e5-bde9-806e6f6e6963}" => removed successfully
HKLM\Software\Classes\CLSID\{04a6fda7-da4a-11e5-bde9-806e6f6e6963} => not found
"HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{144fe904-f0bb-11e5-96f4-60a44c32654b}" => removed successfully
HKLM\Software\Classes\CLSID\{144fe904-f0bb-11e5-96f4-60a44c32654b} => not found
"HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{645176ad-da4f-11e5-b039-f9f2e2d6e348}" => removed successfully
HKLM\Software\Classes\CLSID\{645176ad-da4f-11e5-b039-f9f2e2d6e348} => not found
C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\user.js => moved successfully
C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} => path removed successfully
C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => moved successfully
"Chrome HomePage" => removed successfully
"Chrome NewTab" => removed successfully
"Chrome DefaultSearchKeyword" => removed successfully
"HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Google\Chrome\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig" => removed successfully
"HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Google\Chrome\Extensions\olfeabkoenfaoljndfecamgilllcpiak" => removed successfully
"HKLM\System\CurrentControlSet\Services\dbx" => removed successfully
dbx => service removed successfully
"HKLM\System\CurrentControlSet\Services\Synth3dVsc" => removed successfully
Synth3dVsc => service removed successfully
"HKLM\System\CurrentControlSet\Services\tsusbhub" => removed successfully
tsusbhub => service removed successfully
"HKLM\System\CurrentControlSet\Services\VGPU" => removed successfully
VGPU => service removed successfully
C:\rsit => moved successfully
C:\Program Files\trend micro => moved successfully
C:\Users\Blecha\Desktop\RSITx64.exe => moved successfully
C:\Program Files (x86)\Seznam.cz => moved successfully
C:\Users\Blecha\AppData\Roaming\Seznam.cz => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7F4042EF-8673-4D0E-BF14-C27F49B70E69}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7F4042EF-8673-4D0E-BF14-C27F49B70E69}" => removed successfully
C:\Windows\System32\Tasks\{3303B6F6-15B6-43DD-A0B8-8C0055F1E383} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3303B6F6-15B6-43DD-A0B8-8C0055F1E383}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{81C7EB83-4D6B-4927-89D6-6B281BED60FF}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{81C7EB83-4D6B-4927-89D6-6B281BED60FF}" => removed successfully
C:\Windows\System32\Tasks\AVG EUpdate Task => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVG EUpdate Task" => removed successfully
"HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\Software\Classes\regfile" => removed successfully
"HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\cz.seznam.software.autoupdate" => removed successfully
"HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\cz.seznam.software.szndesktop" => removed successfully
"HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\seznam-listicka-distribuce" => removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 21037851 B
Java, Flash, Steam htmlcache => 80484264 B
Windows/system/drivers => 554276626 B
Edge => 0 B
Chrome => 369980312 B
Firefox => 438948807 B
Opera => 42027465 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 77954 B
Public => 0 B
ProgramData => 0 B
systemprofile => 118306 B
systemprofile32 => 692 B
LocalService => 132244 B
NetworkService => 30824 B
Blecha => 4009008208 B
UpdatusUser => 0 B
RecycleBin => 3621343 B
EmptyTemp: => 5.1 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 23:28:01 ====
Ran by Blecha (06-09-2018 23:23:44) Run:1
Running from C:\Users\Blecha\Desktop
Loaded Profiles: Blecha (Available Profiles: Blecha)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
File: C:\Program Files (x86)\IR\shutTask.exe
File: C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
File: C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
CMD: type "C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\user.js"
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\MountPoints2: {04a6fda7-da4a-11e5-bde9-806e6f6e6963} - E:\Bin\ASSETUP.exe
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\MountPoints2: {144fe904-f0bb-11e5-96f4-60a44c32654b} - F:\LG_PC_Programs.exe
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\...\MountPoints2: {645176ad-da4f-11e5-b039-f9f2e2d6e348} - F:\SISetup.exe
FF user.js: detected! => C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\user.js [2016-03-31]
FF Extension: (No Name) - C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2018-01-16] [Legacy] [not signed]
CHR HomePage: Default -> hxxp://www.google.com
CHR NewTab: Default -> Active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/speeddial/newTab.html"
CHR DefaultSearchKeyword: Default -> hunter
CHR HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
2018-09-06 10:13 - 2018-09-06 10:13 - 000000000 ____D C:\rsit
2018-09-06 10:13 - 2018-09-06 10:13 - 000000000 ____D C:\Program Files\trend micro
2018-09-06 10:11 - 2018-09-06 10:11 - 001222144 _____ C:\Users\Blecha\Desktop\RSITx64.exe
2018-09-06 20:44 - 2016-08-09 17:00 - 000000000 ____D C:\Program Files (x86)\Seznam.cz
2018-09-06 20:44 - 2016-08-09 16:59 - 000000000 ____D C:\Users\Blecha\AppData\Roaming\Seznam.cz
Task: {7F4042EF-8673-4D0E-BF14-C27F49B70E69} - System32\Tasks\{3303B6F6-15B6-43DD-A0B8-8C0055F1E383} => C:\Windows\system32\pcalua.exe -a E:\setup.exe -d E:\
Task: {81C7EB83-4D6B-4927-89D6-6B281BED60FF} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION
MSCONFIG\startupreg: cz.seznam.software.autoupdate => "C:\Users\Blecha\AppData\Roaming\Seznam.cz\szninstall.exe" -c
MSCONFIG\startupreg: cz.seznam.software.szndesktop => "C:\Users\Blecha\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
MSCONFIG\startupreg: seznam-listicka-distribuce => "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
Hosts:
EmptyTemp:
End
*****************
Processes closed successfully.
Restore point was successfully created.
========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========
Count : 62201
Average :
Sum : 79758208229
Maximum :
Minimum :
Property : Length
========= End of Powershell: =========
========================= File: C:\Program Files (x86)\IR\shutTask.exe ========================
C:\Program Files (x86)\IR\shutTask.exe
File not signed
MD5: C64A076CD8536A01ADADB258AA644C2F
Creation and modification date: 2016-08-09 20:37 - 2010-01-05 14:01
Size: 000110592
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:
VirusTotal: https://www.virustotal.com/file/db7bb85 ... 519686917/
====== End of File: ======
========================= File: C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe ========================
C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
File not signed
MD5: F90DD89E8A482AC976DD4E1029802E49
Creation and modification date: 2009-10-15 12:13 - 2009-10-15 12:13
Size: 000136192
Attributes: ----A
Company Name: HP
Internal Name: HPLaserJetService.exe
Original Name: HPLaserJetService.exe
Product: HPLaserJetService
Description: HP LaserJet Service
File Version: 1.3.144.0
Product Version: 1.3.144.0
Copyright: Copyright © 2009 Hewlett-Packard Development Company, L.P.
VirusTotal: https://www.virustotal.com/file/7bb552d ... 534045697/
====== End of File: ======
========================= File: C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe ========================
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
File not signed
MD5: F577910A133A592234EBAAD3F3AFA258
Creation and modification date: 2010-02-19 13:37 - 2010-02-19 13:37
Size: 000517096
Attributes: ----A
Company Name: Adobe Systems Incorporated
Internal Name: SwitchBoard
Original Name: SwitchBoard.exe
Product: SBSV 2010/02/19-11:02:07
Description: SwitchBoard Server (32 bit)
File Version: 2.0.13.7486
Product Version: 61.421671
Copyright: © 2008-2009 Adobe Systems Incorporated. All Rights Reserved.
VirusTotal: https://www.virustotal.com/file/36f5147 ... 534366264/
====== End of File: ======
========= type "C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\user.js" =========
user_pref("plugin.state.npcontentblocker", 2);
user_pref("plugin.state.nponlinebanking", 2);
user_pref("plugin.state.npvkplugin", 2);
========= End of CMD: =========
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
"HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{04a6fda7-da4a-11e5-bde9-806e6f6e6963}" => removed successfully
HKLM\Software\Classes\CLSID\{04a6fda7-da4a-11e5-bde9-806e6f6e6963} => not found
"HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{144fe904-f0bb-11e5-96f4-60a44c32654b}" => removed successfully
HKLM\Software\Classes\CLSID\{144fe904-f0bb-11e5-96f4-60a44c32654b} => not found
"HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{645176ad-da4f-11e5-b039-f9f2e2d6e348}" => removed successfully
HKLM\Software\Classes\CLSID\{645176ad-da4f-11e5-b039-f9f2e2d6e348} => not found
C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\user.js => moved successfully
C:\Users\Blecha\AppData\Roaming\Mozilla\Firefox\Profiles\kvxl3dt3.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} => path removed successfully
C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => moved successfully
"Chrome HomePage" => removed successfully
"Chrome NewTab" => removed successfully
"Chrome DefaultSearchKeyword" => removed successfully
"HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Google\Chrome\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig" => removed successfully
"HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\SOFTWARE\Google\Chrome\Extensions\olfeabkoenfaoljndfecamgilllcpiak" => removed successfully
"HKLM\System\CurrentControlSet\Services\dbx" => removed successfully
dbx => service removed successfully
"HKLM\System\CurrentControlSet\Services\Synth3dVsc" => removed successfully
Synth3dVsc => service removed successfully
"HKLM\System\CurrentControlSet\Services\tsusbhub" => removed successfully
tsusbhub => service removed successfully
"HKLM\System\CurrentControlSet\Services\VGPU" => removed successfully
VGPU => service removed successfully
C:\rsit => moved successfully
C:\Program Files\trend micro => moved successfully
C:\Users\Blecha\Desktop\RSITx64.exe => moved successfully
C:\Program Files (x86)\Seznam.cz => moved successfully
C:\Users\Blecha\AppData\Roaming\Seznam.cz => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7F4042EF-8673-4D0E-BF14-C27F49B70E69}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7F4042EF-8673-4D0E-BF14-C27F49B70E69}" => removed successfully
C:\Windows\System32\Tasks\{3303B6F6-15B6-43DD-A0B8-8C0055F1E383} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3303B6F6-15B6-43DD-A0B8-8C0055F1E383}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{81C7EB83-4D6B-4927-89D6-6B281BED60FF}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{81C7EB83-4D6B-4927-89D6-6B281BED60FF}" => removed successfully
C:\Windows\System32\Tasks\AVG EUpdate Task => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVG EUpdate Task" => removed successfully
"HKU\S-1-5-21-1098195284-1894212499-3841398290-1000\Software\Classes\regfile" => removed successfully
"HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\cz.seznam.software.autoupdate" => removed successfully
"HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\cz.seznam.software.szndesktop" => removed successfully
"HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\seznam-listicka-distribuce" => removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 21037851 B
Java, Flash, Steam htmlcache => 80484264 B
Windows/system/drivers => 554276626 B
Edge => 0 B
Chrome => 369980312 B
Firefox => 438948807 B
Opera => 42027465 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 77954 B
Public => 0 B
ProgramData => 0 B
systemprofile => 118306 B
systemprofile32 => 692 B
LocalService => 132244 B
NetworkService => 30824 B
Blecha => 4009008208 B
UpdatusUser => 0 B
RecycleBin => 3621343 B
EmptyTemp: => 5.1 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 23:28:01 ====
Re: Prosím o kontrolu logu
Plocha ma cez 70 GB. Presun vsetky subory a zlozky z plochy do dokumentov a na ploche nechaj iba odkazy/zastupcov. Prilis velka velkost plochy moze sposobit spomalenie systemu. Odporucam doinstalovat vsetky dolezite aktualizacie cez Windows Update. Nastala nejaka zmena alebo su este nejake problemy?Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: Prosím o kontrolu logu
Ahoj, plochu jsem takhle zasekal jen dočasně, vše vyhážu, díky za připomenutí.
Aktualizace dodělám.
Systém se určitě zrychlil, děkuji moc!
Aktualizace dodělám.
Systém se určitě zrychlil, děkuji moc!
Re: Prosím o kontrolu logu
Tak este upraceme po pouzitych nastrojoch:
- Stiahni DelFix: https://toolslib.net/downloads/finish/2-delfix/
- Uloz na plochu a spusti
- Nechaj oznacenu moznost "Remove disinfection tools"
- Klikni na "Run"
Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: Prosím o kontrolu logu
Hotovo, děkuji. 
Re: Prosím o kontrolu logu
Nie je zaco, rad som pomohol
Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Přispějete na provoz fóra?