Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Preventivní kontrola

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Mirda74
Návštěvník
Návštěvník
Příspěvky: 29
Registrován: 30 říj 2019 12:44

Preventivní kontrola

#1 Příspěvek od Mirda74 »

Prosím o kontrolu.

V poslední době mě "mizí" z horní lišty ikonky minimalizovat/obnovit okno a zavřít.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Mira at 2019-10-30 12:55:10
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 414 GB (64%) free of 643 GB
Total RAM: 8082 MB (48% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:55:10, on 30.10.2019
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19503)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\cls.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe
C:\Users\Mira\Autodesk\Genuine Service\GenuineService.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files\Autodesk\AutoCAD LT 2020\acwebbrowser\acwebbrowser.exe
C:\Program Files\Autodesk\AutoCAD LT 2020\acwebbrowser\acwebbrowser.exe
C:\Program Files\Autodesk\AutoCAD LT 2020\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingAgent\AdskLicensingAgent.exe
C:\Program Files\trend micro\Mira.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://nmd.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://nmd.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\IPS\IPSBHO.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\coIEPlg.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [Print2PDF Print Monitor] "C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe" /server
O4 - HKLM\..\Run: [Autodesk Desktop App] "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
O4 - HKLM\..\RunOnce: [EasyTuneVI] C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" -s
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\Mira\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [] (User 'Default user')
O4 - Startup: GenuineService.lnk = C:\Users\Mira\Autodesk\Genuine Service\GenuineService.exe
O4 - Global Startup: CLS 2016.10.lnk = C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\cls.exe
O4 - Global Startup: T-Cloud Záloha.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Autodesk Desktop App Service (AdAppMgrSvc) - Autodesk Inc. - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Autodesk Desktop Licensing Service (AdskLicensingService) - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: ESET Firewall Helper (ekrnEpfw) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service - Flexera - C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.70\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Sentinel HASP License Manager (hasplms) - Unknown owner - C:\Windows\system32\hasplms.exe (file missing)
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\ccSvcHst.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Sentinel Keys Server (SentinelKeysServer) - SafeNet, Inc. - C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
O23 - Service: Sentinel Protection Server (SentinelProtectionServer) - SafeNet, Inc - C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
O23 - Service: Sentinel Security Runtime (SentinelSecurityRuntime) - SafeNet, Inc. - C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TCloudZaloha - Xopero Software S.A. - C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientService.exe
O23 - Service: TeamViewer 14 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 16041 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET Security\ekrn.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe"
"C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe"
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe"
"C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe"
C:\Windows\system32\hasplms.exe -run
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe"
"C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe"
"C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe"
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe"
C:\Windows\system32\viakaraokesrv.exe
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\ESET\ESET Security\eguiproxy.exe" /hide
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-693f8dfe-f07c-445f-a914-7e1b8f0d00d4 -SystemEventPortName:HostProcess-c400b00a-3e82-490c-9b68-f53888538a65 -IoCancelEventPortName:HostProcess-d3c55454-c888-43d1-870f-ddd517480750 -NonStateChangingEventPortName:HostProcess-79633e8c-5a60-432c-824b-67eb2e87fa27 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:04c62576-8c96-49a6-a566-6d3b454df8d2 -DeviceGroupId:WpdFsGroup
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Canon\Canon MF Network Scanner Selector\CMFNSS6.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" -s
"C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe"
"C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\cls.exe"
"C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientApplication.exe" -tray -autostart
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe" /server
"C:\Users\Mira\Autodesk\Genuine Service\GenuineService.exe"
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --approot=SOFTWARE\Autodesk --appAgent=/AUTODESKDESKTOPAPP/7.0.15.17/cs-CZ/0001 --lang=cs-CZ --cache-path="C:\Users\Mira\AppData\Local\Autodesk\Autodesk Desktop App\BrowserCache" --peerPid=4868
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --type=gpu-process --channel="4356.0.1511641360\1501271541" --no-sandbox --lang=cs-CZ --log-file="C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\debug.log" --log-severity=disable --peerpid=4868 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,12,13,25,46,54 --gpu-vendor-id=0x8086 --gpu-device-id=0x0152 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2843 --lang=cs-CZ --log-file="C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\debug.log" --log-severity=disable --peerpid=4868 --mojo-platform-channel-handle=968 /prefetch:2
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --type=renderer --no-sandbox --primordial-pipe-token=E4E599107E6AB2F2AD0B3687D5D0C2BF --lang=en-US --lang=cs-CZ --log-file="C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\debug.log" --log-severity=disable --peerpid=4868 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4356.1.668006208\1803231776" --mojo-platform-channel-handle=1244 /prefetch:1
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer14_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer14_Logfile.log
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\ccSvcHst.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\diMaster.dll" /prefetch:1
"C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientService.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "https://radia.cz/radio-rock-radio#play-95"
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2704.0.151345995\394105661" -parentBuildID 20191028110005 -prefsHandle 1140 -prefMapHandle 1132 -prefsLen 1 -prefMapSize 229690 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 2704 "\\.\pipe\gecko-crash-server-pipe.2704" 1212 gpu
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2704.3.1840492655\2045709405" -childID 1 -isForBrowser -prefsHandle 1776 -prefMapHandle 1772 -prefsLen 174 -prefMapSize 229690 -parentBuildID 20191028110005 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 2704 "\\.\pipe\gecko-crash-server-pipe.2704" 1788 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2704.13.445574477\879801521" -childID 2 -isForBrowser -prefsHandle 3188 -prefMapHandle 3180 -prefsLen 6526 -prefMapSize 229690 -parentBuildID 20191028110005 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 2704 "\\.\pipe\gecko-crash-server-pipe.2704" 3200 tab
"C:\Program Files\Autodesk\AutoCAD LT 2020\acadlt.exe" /language "cs-CZ"
"C:\Program Files\Autodesk\AutoCAD LT 2020\acwebbrowser\acwebbrowser.exe" --appRoot=Software\Autodesk\AutoCAD LT\R26\ACADLT-3001:405\Applications --appAgent=Autodesk/ACADLT/23.1/cs-CZ/3001 --lang=cs-CZ --cache-path="C:\Users\Mira\AppData\Local\Autodesk\AutoCAD LT 2020\R26\csy\BrowserCache" --peerPid=5924
"C:\Program Files\Autodesk\AutoCAD LT 2020\acwebbrowser\acwebbrowser.exe" --type=gpu-process --channel="3648.0.457218407\56105307" --no-sandbox --lang=cs-CZ --log-file="C:\Program Files\Autodesk\AutoCAD LT 2020\acwebbrowser\debug.log" --log-severity=disable --peerpid=5924 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,12,13,25,46,54 --gpu-vendor-id=0x8086 --gpu-device-id=0x0152 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2843 --lang=cs-CZ --log-file="C:\Program Files\Autodesk\AutoCAD LT 2020\acwebbrowser\debug.log" --log-severity=disable --peerpid=5924 --mojo-platform-channel-handle=928 /prefetch:2
"C:\Program Files\Autodesk\AutoCAD LT 2020\acwebbrowser\acwebbrowser.exe" --type=renderer --no-sandbox --primordial-pipe-token=03629BFE5A34040EB50B53F8AEE8F822 --lang=en-US --lang=cs-CZ --log-file="C:\Program Files\Autodesk\AutoCAD LT 2020\acwebbrowser\debug.log" --log-severity=disable --peerpid=5924 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="3648.1.822551197\674363992" --mojo-platform-channel-handle=1284 /prefetch:1
"C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingAgent/AdskLicensingAgent.exe" -i 01377bf4-d3d6-47d5-70c5-ad918d3ddb42
"C:/Program Files/Autodesk/Autodesk AdSSO/AdSSO.exe" --process_name Autodesk.SSO.DefaultProcess-v2 --server_name Autodesk.SSO.DefaultServer-v2
C:\Windows\system32\spool\DRIVERS\x64\3\SE4BLMSW.EXE
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2704.41.1763514289\580930855" -childID 6 -isForBrowser -prefsHandle 7628 -prefMapHandle 844 -prefsLen 7687 -prefMapSize 229690 -parentBuildID 20191028110005 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 2704 "\\.\pipe\gecko-crash-server-pipe.2704" 2868 tab
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2704.48.700317097\753317865" -childID 7 -isForBrowser -prefsHandle 3976 -prefMapHandle 996 -prefsLen 7687 -prefMapSize 229690 -parentBuildID 20191028110005 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 2704 "\\.\pipe\gecko-crash-server-pipe.2704" 3620 tab
"C:\Program Files\Altap Salamander\salamand.exe"
"C:\Program Files\Altap Salamander\utils\salmon.exe" "SalmonE5F" "czech.slg"
taskmgr.exe /3
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Users\Mira\Downloads\RSITx64.exe"

=========Mozilla firefox=========

ProfilePath - C:\Users\Mira\AppData\Roaming\Mozilla\Firefox\Profiles\u89o9la3.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "WWW.SEZNAM.CZ"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.7.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-07-01 221664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2019-10-04 970792]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-04-04 166360]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\coIEPlg.dll [2012-07-20 827800]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\IPS\IPSBHO.DLL [2012-06-11 387040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2019-10-04 684160]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\coIEPlg.dll [2012-07-20 827800]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-08-25 170304]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-08-25 398656]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-08-25 441152]
"MFNetworkScannerSelector"=C:\Program Files\Canon\Canon MF Network Scanner Selector\CMFNSS6.EXE [2015-01-22 425512]
"egui"=C:\Program Files\ESET\ESET Security\ecmdS.exe [2019-10-30 180736]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2019-10-16 24552064]
"TomTomHOME.exe"=C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [2019-07-19 249040]
"com.squirrel.Teams.Teams"=C:\Users\Mira\AppData\Local\Microsoft\Teams\Update.exe [2019-08-19 1789768]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE [2015-07-12 563416]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-08-09 5263504]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-02-29 56088]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-05-20 291648]
"Print2PDF Print Monitor"=C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe [2011-04-12 222776]
"Autodesk Desktop App"=C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [2019-03-06 657704]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
"EasyTuneVI"=C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe [2012-07-09 40960]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
CLS 2016.10.lnk - C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\cls.exe
T-Cloud Záloha.lnk - C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientApplication.exe

C:\Users\Mira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
GenuineService.lnk - C:\Users\Mira\Autodesk\Genuine Service\GenuineService.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-08-24 441856]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
""=

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2019-10-30 12:49:51 ----D---- C:\rsit
2019-10-30 12:49:51 ----D---- C:\Program Files\trend micro
2019-10-30 11:33:50 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2019-10-30 09:24:29 ----D---- C:\Program Files\Mozilla Firefox
2019-10-28 20:43:26 ----D---- C:\Windows\system32\%LocalAppData%
2019-10-25 06:52:14 ----N---- C:\bootsqm.dat
2019-10-24 05:07:25 ----D---- C:\Program Files (x86)\Blum
2019-10-18 09:40:28 ----D---- C:\Users\Mira\AppData\Roaming\SuperSpamKiller Pro
2019-10-17 12:50:47 ----A---- C:\Windows\system32\drivers\mbae64.sys
2019-10-17 12:50:42 ----D---- C:\ProgramData\Malwarebytes
2019-10-17 12:50:42 ----D---- C:\Program Files\Malwarebytes
2019-10-10 11:34:46 ----A---- C:\Windows\SYSWOW64\msvbvm60003.dll
2019-10-10 07:02:05 ----D---- C:\Users\Mira\AppData\Roaming\TracheaOS
2019-10-10 07:01:38 ----D---- C:\Program Files (x86)\TracheaOS
2019-10-04 11:45:01 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2019-10-04 11:45:01 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2019-10-04 11:45:01 ----A---- C:\Windows\SYSWOW64\inseng.dll
2019-10-04 11:45:01 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2019-10-04 11:45:01 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2019-10-04 11:45:01 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2019-10-04 11:45:01 ----A---- C:\Windows\system32\ieUnatt.exe
2019-10-04 11:45:01 ----A---- C:\Windows\system32\ieetwproxystub.dll
2019-10-04 11:45:01 ----A---- C:\Windows\system32\ieetwcollector.exe
2019-10-04 11:45:00 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2019-10-04 11:45:00 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2019-10-04 11:45:00 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2019-10-04 11:45:00 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2019-10-04 11:45:00 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2019-10-04 11:45:00 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2019-10-04 11:45:00 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-10-04 11:45:00 ----A---- C:\Windows\system32\ie4uinit.exe
2019-10-04 11:44:59 ----A---- C:\Windows\SYSWOW64\msrating.dll
2019-10-04 11:44:59 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2019-10-04 11:44:59 ----A---- C:\Windows\SYSWOW64\jscript.dll
2019-10-04 11:44:59 ----A---- C:\Windows\SYSWOW64\ieui.dll
2019-10-04 11:44:59 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2019-10-04 11:44:59 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2019-10-04 11:44:59 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2019-10-04 11:44:59 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2019-10-04 11:44:59 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2019-10-04 11:44:59 ----A---- C:\Windows\system32\urlmon.dll
2019-10-04 11:44:59 ----A---- C:\Windows\system32\msfeeds.dll
2019-10-04 11:44:59 ----A---- C:\Windows\system32\iesetup.dll
2019-10-04 11:44:59 ----A---- C:\Windows\system32\iernonce.dll
2019-10-04 11:44:59 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2019-10-04 11:44:59 ----A---- C:\Windows\system32\iedkcs32.dll
2019-10-04 11:44:59 ----A---- C:\Windows\system32\dxtrans.dll
2019-10-04 11:44:58 ----A---- C:\Windows\SYSWOW64\wininet.dll
2019-10-04 11:44:58 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2019-10-04 11:44:58 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2019-10-04 11:44:58 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2019-10-04 11:44:58 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2019-10-04 11:44:58 ----A---- C:\Windows\system32\vbscript.dll
2019-10-04 11:44:58 ----A---- C:\Windows\system32\msrating.dll
2019-10-04 11:44:58 ----A---- C:\Windows\system32\inseng.dll
2019-10-04 11:44:58 ----A---- C:\Windows\system32\iertutil.dll
2019-10-04 11:44:58 ----A---- C:\Windows\system32\ieapfltr.dll
2019-10-04 11:44:57 ----A---- C:\Windows\system32\webcheck.dll
2019-10-04 11:44:57 ----A---- C:\Windows\system32\mshtmlmedia.dll
2019-10-04 11:44:57 ----A---- C:\Windows\system32\mshtmled.dll
2019-10-04 11:44:57 ----A---- C:\Windows\system32\jscript.dll
2019-10-04 11:44:57 ----A---- C:\Windows\system32\ieui.dll
2019-10-04 11:44:57 ----A---- C:\Windows\system32\ieframe.dll
2019-10-04 11:44:57 ----A---- C:\Windows\system32\dxtmsft.dll
2019-10-04 11:44:56 ----A---- C:\Windows\system32\wininet.dll
2019-10-04 11:44:56 ----A---- C:\Windows\system32\MshtmlDac.dll
2019-10-04 11:44:56 ----A---- C:\Windows\system32\mshtml.dll
2019-10-04 11:44:56 ----A---- C:\Windows\system32\jsproxy.dll
2019-10-04 11:44:56 ----A---- C:\Windows\system32\jscript9.dll
2019-10-04 11:44:54 ----A---- C:\Windows\SYSWOW64\occache.dll
2019-10-04 11:44:54 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2019-10-04 11:44:54 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2019-10-04 11:44:54 ----A---- C:\Windows\system32\occache.dll
2019-10-04 11:44:54 ----A---- C:\Windows\system32\jscript9diag.dll
2019-10-04 11:44:54 ----A---- C:\Windows\system32\AUDIOKSE.dll
2019-10-04 11:44:53 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2019-10-04 11:44:53 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2019-10-04 11:44:53 ----A---- C:\Windows\system32\audiosrv.dll
2019-10-04 11:44:53 ----A---- C:\Windows\system32\AudioEng.dll
2019-10-04 11:44:52 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2019-10-04 11:44:52 ----A---- C:\Windows\system32\EncDump.dll
2019-10-04 11:44:52 ----A---- C:\Windows\system32\AudioSes.dll
2019-10-04 11:44:52 ----A---- C:\Windows\system32\audiodg.exe

======List of files/folders modified in the last 1 month======

2019-10-30 12:55:10 ----D---- C:\Windows\Temp
2019-10-30 12:49:51 ----RD---- C:\Program Files
2019-10-30 12:33:58 ----D---- C:\ProgramData\firebird
2019-10-30 11:44:13 ----D---- C:\Windows\System32
2019-10-30 11:44:13 ----D---- C:\Windows\inf
2019-10-30 11:44:13 ----A---- C:\Windows\system32\PerfStringBackup.INI
2019-10-30 11:36:45 ----A---- C:\Windows\SYSWOW64\log.txt
2019-10-30 11:35:54 ----D---- C:\ProgramData\Backuplogs
2019-10-30 11:35:03 ----D---- C:\Windows\SysWOW64
2019-10-30 11:34:39 ----D---- C:\Program Files (x86)\TeamViewer
2019-10-30 11:33:50 ----D---- C:\Windows\system32\drivers
2019-10-30 11:33:01 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2019-10-30 09:15:02 ----D---- C:\Windows\system32\DriverStore
2019-10-29 07:10:57 ----D---- C:\Windows\system32\config
2019-10-29 07:10:52 ----D---- C:\Windows\winsxs
2019-10-29 07:10:52 ----D---- C:\Windows\Tasks
2019-10-29 07:10:52 ----D---- C:\Windows\system32\wfp
2019-10-29 07:10:52 ----D---- C:\Windows\system32\catroot2
2019-10-29 07:10:51 ----SHD---- C:\Windows\Installer
2019-10-29 07:10:51 ----D---- C:\Windows\system32\wbem
2019-10-29 07:10:51 ----D---- C:\Windows\system32\Tasks
2019-10-29 07:10:51 ----D---- C:\Windows\system32\drivers\UMDF
2019-10-29 07:10:50 ----D---- C:\Users\Mira\AppData\Roaming\vlc
2019-10-29 07:10:50 ----D---- C:\Users\Mira\AppData\Roaming\Thunderbird
2019-10-29 07:10:50 ----D---- C:\Users\Mira\AppData\Roaming\ESET
2019-10-29 07:10:50 ----D---- C:\Users\Mira\AppData\Roaming\Autodesk
2019-10-29 07:10:49 ----D---- C:\Program Files\Microsoft Office 15
2019-10-29 07:10:48 ----D---- C:\Program Files\CCleaner
2019-10-29 07:10:48 ----D---- C:\Program Files (x86)\Optimik
2019-10-29 07:10:31 ----D---- C:\Windows\registration
2019-10-29 07:10:23 ----D---- C:\Windows\Microsoft.NET
2019-10-29 07:09:37 ----HD---- C:\ProgramData
2019-10-29 07:09:31 ----D---- C:\ProgramData\Blum
2019-10-29 07:09:02 ----D---- C:\Program Files (x86)
2019-10-29 07:08:02 ----D---- C:\Program Files (x86)\Microsoft Office
2019-10-29 07:05:14 ----D---- C:\Windows\system32\LogFiles
2019-10-29 06:57:36 ----SHD---- C:\System Volume Information
2019-10-29 06:25:52 ----D---- C:\Windows
2019-10-29 06:20:45 ----D---- C:\Users\Mira\AppData\Roaming\TeamViewer
2019-10-29 06:20:42 ----D---- C:\Windows\SoftwareDistribution
2019-10-28 17:57:35 ----D---- C:\Windows\Prefetch
2019-10-25 07:08:47 ----SHD---- C:\Config.Msi
2019-10-25 07:08:42 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2019-10-14 05:12:09 ----D---- C:\Windows\debug
2019-10-10 07:01:39 ----D---- C:\ProgramData\Adobe
2019-10-10 07:01:38 ----D---- C:\Program Files (x86)\Common Files
2019-10-10 07:01:38 ----D---- C:\Program Files (x86)\Adobe
2019-10-10 07:01:07 ----D---- C:\Users\Mira\AppData\Roaming\Adobe
2019-10-09 16:15:14 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2019-10-09 16:15:10 ----D---- C:\Windows\system32\Macromed
2019-10-09 16:15:07 ----D---- C:\Windows\SYSWOW64\Macromed
2019-10-07 21:44:30 ----D---- C:\Program Files (x86)\Google
2019-10-07 13:59:19 ----D---- C:\Windows\rescache
2019-10-07 05:57:36 ----RSD---- C:\Windows\assembly
2019-10-07 05:33:34 ----D---- C:\Program Files\Internet Explorer
2019-10-07 05:33:33 ----D---- C:\Windows\SYSWOW64\en-US
2019-10-07 05:33:33 ----D---- C:\Windows\SYSWOW64\cs-CZ
2019-10-07 05:33:33 ----D---- C:\Windows\system32\en-US
2019-10-07 05:33:33 ----D---- C:\Windows\system32\cs-CZ
2019-10-07 05:33:33 ----D---- C:\Windows\ehome
2019-10-07 05:33:33 ----D---- C:\Program Files (x86)\Internet Explorer
2019-10-07 05:33:19 ----D---- C:\Windows\system32\MRT
2019-10-07 05:30:29 ----AC---- C:\Windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2019-10-30 103264]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2012-02-01 568600]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-05-20 19264]
R0 pwdrvio;pwdrvio; C:\Windows\system32\pwdrvio.sys [2013-09-30 19152]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2012-10-25 22680]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 516096]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2019-10-30 149944]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2019-10-30 189512]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2019-10-30 77184]
R1 EpfwLWF;ESET Firewall; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2019-10-30 61640]
R1 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2019-10-30 114136]
R2 aksdf;aksdf; \??\C:\Windows\system32\drivers\aksdf.sys [2010-07-27 75648]
R2 aksfridge;aksfridge; \??\C:\Windows\system32\drivers\aksfridge.sys [2010-09-27 131072]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2019-10-30 50712]
R2 hardlock;hardlock; \??\C:\Windows\system32\drivers\hardlock.sys [2009-03-13 318464]
R2 Sentinel64;Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [2009-09-17 145448]
R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2019-10-30 25640]
R3 GVTDrv64;GVTDrv64; \??\C:\Windows\GVTDrv64.sys [2019-10-30 30528]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-08-24 9000256]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-05-20 357184]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-05-20 789824]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2012-07-19 110744]
R3 MBAMSwissArmy;MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [2019-10-30 275232]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-02 62784]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2012-08-03 2206352]
S3 ardrv;ardrv; \??\C:\Users\Mira\AppData\Local\Temp\ardrv.sys []
S3 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20120615.003\BHDrvx64.sys [2012-06-11 1377440]
S3 ccSet_NIS;Norton Internet Security Settings Manager; C:\Windows\system32\drivers\NISx64\1400000.088\ccSetx64.sys [2012-05-25 168608]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 etdrv;etdrv; \??\C:\Windows\etdrv.sys [2019-07-29 25640]
S3 ew_usbccgpfilter;HwHandSet_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbccgpfilter.sys [2019-08-19 18944]
S3 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20120611.002\IDSVia64.sys [2012-06-11 509088]
S3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20120616.009\ENG64.SYS [2012-06-16 120440]
S3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20120616.009\EX64.SYS [2012-06-16 2068600]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pwdspio;pwdspio; \??\C:\Windows\system32\pwdspio.sys [2013-09-30 12504]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 SNTUSB64;SafeNet USB SuperPro/UltraPro/HardwareKey; C:\Windows\system32\DRIVERS\SNTUSB64.SYS [2012-12-11 63568]
S3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\system32\drivers\NISx64\1400000.088\SRTSP64.SYS [2012-05-25 753312]
S3 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\NISx64\1400000.088\SRTSPX64.SYS [2012-01-11 37496]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NISx64\1400000.088\SYMDS64.SYS [2012-05-25 485024]
S3 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NISx64\1400000.088\SYMEFA64.SYS [2012-05-21 1129120]
S3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2019-01-10 177312]
S3 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NISx64\1400000.088\Ironx64.SYS [2012-05-25 222368]
S3 SymNetS;Symantec Network Security WFP Driver; C:\Windows\system32\drivers\NISx64\1400000.088\SYMNETS.SYS [2012-05-09 431224]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2010-04-14 73728]
R2 AdAppMgrSvc;Autodesk Desktop App Service; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [2019-03-06 1164664]
R2 AdskLicensingService;Autodesk Desktop Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [2019-01-09 16939312]
R2 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2019-10-14 11642472]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2019-10-30 2243136]
R2 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [2019-01-17 1606152]
R2 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe [2019-05-21 2657616]
R2 hasplms;Sentinel HASP License Manager; C:\Windows\system32\hasplms.exe [2010-09-27 4180576]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2019-08-19 190784]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-02-01 13592]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2019-06-26 6744288]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\ccSvcHst.exe [2012-06-14 143928]
R2 SentinelKeysServer;Sentinel Keys Server; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [2010-10-20 374048]
R2 SentinelProtectionServer;Sentinel Protection Server; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [2010-10-20 1250592]
R2 SentinelSecurityRuntime;Sentinel Security Runtime; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [2010-10-20 292128]
R2 TCloudZaloha;TCloudZaloha; C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientService.exe [2019-07-23 29760]
R2 TeamViewer;TeamViewer 14; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2019-09-24 12135768]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2019-07-19 93904]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2012-08-03 27792]
R3 ekrnEpfw;ESET Firewall Helper; C:\Program Files\ESET\ESET Security\ekrn.exe [2019-10-30 2243136]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-08-30 160256]
S2 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2019-03-28 132792]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2019-03-28 158912]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-01-11 156968]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2019-10-09 335416]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2019-03-28 54912]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2019-01-17 85096]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-08-25 276288]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.70\elevation_service.exe [2019-10-20 1110512]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-01-11 156968]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2019-09-29 116224]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2019-10-30 244936]
S3 ose;Office Source Engine; c:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 226304]
S3 osppsvc;Office Software Protection Platform; c:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2018-12-26 5132888]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2019-01-11 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]

-----------------EOF-----------------
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivní kontrola

#2 Příspěvek od Conder »

Ahoj :)

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
  • Nechaj zaskrtnute vsetky nalezy
  • Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
Mirda74
Návštěvník
Návštěvník
Příspěvky: 29
Registrován: 30 říj 2019 12:44

Re: Preventivní kontrola

#3 Příspěvek od Mirda74 »

# -------------------------------
# Malwarebytes AdwCleaner 7.4.2.0
# -------------------------------
# Build: 10-21-2019
# Database: 2019-10-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-31-2019
# Duration: 00:00:02
# OS: Windows 7 Professional
# Cleaned: 2
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKLM\Software\Classes\Interface\{7697BC38-D0FA-454B-AC75-968B4CCABFCE}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{7697BC38-D0FA-454B-AC75-968B4CCABFCE}

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [9023 octets] - [31/10/2019 06:44:07]
AdwCleaner[S00].txt - [1578 octets] - [31/10/2019 06:44:46]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivní kontrola

#4 Příspěvek od Conder »

:arrow: Poprosim o obidva logy z FRST (FRST.txt a Addition.txt) podla tohto navodu: https://forum.viry.cz/viewtopic.php?f=13&t=154679
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
Mirda74
Návštěvník
Návštěvník
Příspěvky: 29
Registrován: 30 říj 2019 12:44

Re: Preventivní kontrola

#5 Příspěvek od Mirda74 »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-11-2019
Ran by Mira (administrator) on MIRA-PC-PRACE (Gigabyte Technology Co., Ltd. To be filled by O.E.M.) (01-11-2019 06:27:17)
Running from C:\Users\Mira\Desktop
Loaded Profiles: Mira (Available Profiles: Mira)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ALTAP, spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\salamand.exe
(ALTAP, spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\utils\salmon.exe
(Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\9.0.1.1462\AdskLicensingService\AdskLicensingService.exe
(Autodesk, Inc. -> Autodesk) C:\Users\Mira\Autodesk\Genuine Service\GenuineService.exe
(Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
(CANON INC. -> CANON INC.) C:\Program Files\Canon\Canon MF Network Scanner Selector\CMFNSS6.EXE
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(Giga-Byte Technology -> ) C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(SafeNet, Inc. -> SafeNet Inc.) C:\Windows\System32\hasplms.exe
(SafeNet, Inc. -> SafeNet, Inc) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
(SafeNet, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
(SafeNet, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe
(SHARP CORPORATION) [File not signed] C:\Windows\System32\spool\drivers\x64\3\SE4BLMSW.EXE
(Software602 -> Software602) C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe
(Software602 a.s.) [File not signed] C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\ccSvcHst.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(TomTom International BV -> TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
(TomTom International BV -> TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Tpa) [File not signed] C:\WDFlash\Fw\StoneEMU.exe
(Vero Software Limited) [File not signed] C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\cls.exe
(VIA Technologies Inc. -> VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(VIA Technologies Inc. -> VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Xopero Software S.A. -> Xopero Software S.A.) C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientApplication.exe
(Xopero Software S.A. -> Xopero Software S.A.) C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientService.exe
(ZONER software, a.s. -> ZONER software) C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MFNetworkScannerSelector] => C:\Program Files\Canon\Canon MF Network Scanner Selector\CMFNSS6.EXE [425512 2015-01-22] (CANON INC. -> CANON INC.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [180736 2019-10-30] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5263504 2012-08-09] (VIA Technologies Inc. -> VIA)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2012-02-01] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [Print2PDF Print Monitor] => C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe [222776 2011-04-12] (Software602 -> Software602)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [657704 2019-03-06] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\RunOnce: [EasyTuneVI] => C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe [40960 2012-07-09] () [File not signed]
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [249040 2019-07-19] (TomTom International BV -> TomTom)
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Mira\AppData\Local\Microsoft\Teams\Update.exe [1789768 2019-08-19] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\Run: [Zoner Photo Studio Autoupdate] => C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE [563416 2015-07-12] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\Policies\Explorer: []
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {71edd97c-ca35-11e9-879a-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {b7fb1081-1e3e-11e9-b678-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {c1e88568-805f-11e9-840c-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {d86387db-90c1-11e9-87cb-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {ef75f075-5f6f-11e9-8303-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {ef75f087-5f6f-11e9-8303-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {f42689c7-14a0-11e9-a574-806e6f6e6963} - D:\Run.exe
HKU\S-1-5-18\...\Run: [] => [X]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.70\Installer\chrmstp.exe [2019-10-29] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CLS 2016.10.lnk [2019-02-21]
ShortcutTarget: CLS 2016.10.lnk -> C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\cls.exe (Vero Software Limited) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\T-Cloud Záloha.lnk [2019-07-25]
ShortcutTarget: T-Cloud Záloha.lnk -> C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientApplication.exe (Xopero Software S.A. -> Xopero Software S.A.)
Startup: C:\Users\Mira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GenuineService.lnk [2019-05-21]
ShortcutTarget: GenuineService.lnk -> C:\Users\Mira\Autodesk\Genuine Service\GenuineService.exe (Autodesk, Inc. -> Autodesk)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1F5F49E4-1E6A-49E9-80CC-A53B274EC5BB} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27295856 2019-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {26364DBA-13DA-41AF-AD59-BBDA4DEB6106} - System32\Tasks\{CDF594DB-727C-43A1-84EA-C7A4765F28C0} => C:\Windows\system32\pcalua.exe -a C:\Users\Mira\Downloads\ARM160-M161-M162-M165-M205-M206-M207-5220_DRV_PCL6-PS-WinXP64-Vista64-2k364-2k864-ver0911a_CZ.exe -d C:\Users\Mira\Downloads
Task: {392FE0D5-D98F-4EE0-95A9-87CCA23816B2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-01-11] (Google Inc -> Google Inc.)
Task: {450E24DB-0B61-44B1-8223-7721FA2A9876} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [122344 2019-10-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {4D3477D8-99C4-4E70-84FD-2D1CE6122D5D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-01-11] (Google Inc -> Google Inc.)
Task: {5973244D-5F09-42D8-A14E-AC7D5707B9E9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {68121882-73A2-4E62-806A-DC0A53E24861} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [122344 2019-10-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {6DB27F2A-D714-4B31-9B9C-FEE59C07EBB2} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\SymErr.exe [53656 2012-07-05] (Symantec Corporation -> Symantec Corporation)
Task: {71DE2A7B-5D86-4F86-8237-FA28D1AD31CF} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\WSCStub.exe [157336 2012-07-25] (Symantec Corporation -> Symantec Corporation)
Task: {9678FEF2-5404-43C8-BAA3-CAE075150E08} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1430176 2019-10-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {A13C1098-BA26-4891-AA98-B758E363C620} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1430176 2019-10-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {A9903396-7CF9-44E2-A609-2E836514692C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27295856 2019-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {B8FB9A8E-AED9-42A5-87F9-2AB71857D37C} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1577608 2019-10-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCD731B3-9D49-42B8-9B03-B3684A37C233} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {DFFC2EBC-0EE8-4523-B5A6-F72A1A81BF60} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-10-09] (Adobe Inc. -> Adobe)
Task: {E6907BB7-6B02-4126-BB34-6F3BBF111D7F} - System32\Tasks\{7F5A5A82-8941-480B-8D71-794EA4B363CA} => C:\Windows\system32\pcalua.exe -a C:\Users\Mira\Downloads\Norton_Removal_Tool(1).exe -d C:\Users\Mira\Downloads
Task: {EDB60274-9F82-4E2A-B183-974DB3FC5664} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\SymErr.exe [53656 2012-07-05] (Symantec Corporation -> Symantec Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.10.10.10 8.8.8.8
Tcpip\..\Interfaces\{89431955-5625-497B-B323-815528BC2E2D}: [DhcpNameServer] 10.10.10.10 8.8.8.8

Internet Explorer:
==================
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://nmd.msn.com
SearchScopes: HKLM -> DefaultScope {3061F580-B649-41A4-9307-CE3EB11D800E} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {3061F580-B649-41A4-9307-CE3EB11D800E} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {36F61BA3-E3EE-45D9-86B8-DBB98D6D4DE8} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {36F61BA3-E3EE-45D9-86B8-DBB98D6D4DE8} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-1064124205-772266194-2725748559-1000 -> DefaultScope {3061F580-B649-41A4-9307-CE3EB11D800E} URL =
SearchScopes: HKU\S-1-5-21-1064124205-772266194-2725748559-1000 -> {3061F580-B649-41A4-9307-CE3EB11D800E} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-07-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-04-04] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\coIEPlg.dll [2012-07-20] (Symantec Corporation -> Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\IPS\IPSBHO.DLL [2012-06-11] (Symantec Corporation -> Symantec Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\coIEPlg.dll [2012-07-20] (Symantec Corporation -> Symantec Corporation)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKU\S-1-5-21-1064124205-772266194-2725748559-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: u89o9la3.default
FF ProfilePath: C:\Users\Mira\AppData\Roaming\TomTom\HOME\Profiles\d3zxrcad.default [2019-08-12]
FF Extension: (Map status indicator) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [2019-08-07] [Legacy] [not signed]
FF ProfilePath: C:\Users\Mira\AppData\Roaming\Mozilla\Firefox\Profiles\u89o9la3.default [2019-11-01]
FF Homepage: Mozilla\Firefox\Profiles\u89o9la3.default -> http://WWW.SEZNAM.CZ
FF Extension: (Deník.cz) - C:\Users\Mira\AppData\Roaming\Mozilla\Firefox\Profiles\u89o9la3.default\Extensions\rozsireni@denik.cz.xpi [2019-09-03]
FF Extension: (No Name) - C:\Users\Mira\AppData\Roaming\Mozilla\Firefox\Profiles\u89o9la3.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-10-23]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn
FF Extension: (No Name) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn [2019-01-11] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn
FF Extension: (No Name) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn [2019-01-11] [not signed]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-07] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-07] (Google Inc -> Google LLC)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2019-10-31]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default [2019-10-29]
CHR Extension: (YouTube) - C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-01-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-01-11]
CHR Extension: (Gmail) - C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-04]
CHR Extension: (Chrome Media Router) - C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-06]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\Exts\Chrome.crx <not found>

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [73728 2010-04-14] (Software602 a.s.) [File not signed]
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1164664 2019-03-06] (Autodesk, Inc. -> Autodesk Inc.)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [16939312 2019-01-09] (Autodesk, Inc. -> Autodesk)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
S3 Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [85096 2019-01-17] (Autodesk, Inc -> Autodesk)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11642472 2019-10-14] (Microsoft Corporation -> Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2243136 2019-10-30] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2243136 2019-10-30] (ESET, spol. s r.o. -> ESET)
R2 hasplms; C:\Windows\system32\hasplms.exe [4180576 2010-09-27] (SafeNet, Inc. -> SafeNet Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-08-19] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\ccSvcHst.exe [143928 2012-06-14] (Symantec Corporation -> Symantec Corporation)
R2 SentinelKeysServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [374048 2010-10-20] (SafeNet, Inc. -> SafeNet, Inc.)
R2 SentinelProtectionServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [1250592 2010-10-20] (SafeNet, Inc. -> SafeNet, Inc)
R2 SentinelSecurityRuntime; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [292128 2010-10-20] (SafeNet, Inc. -> SafeNet, Inc.)
R2 TCloudZaloha; C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientService.exe [29760 2019-07-23] (Xopero Software S.A. -> Xopero Software S.A.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12135768 2019-09-24] (TeamViewer GmbH -> TeamViewer GmbH)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27792 2012-08-03] (VIA Technologies Inc. -> VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aksdf; C:\Windows\system32\drivers\aksdf.sys [75648 2010-07-27] (Microsoft Windows Hardware Compatibility Publisher -> SafeNet Inc.)
R2 aksfridge; C:\Windows\system32\drivers\aksfridge.sys [131072 2010-09-27] (Microsoft Windows Hardware Compatibility Publisher -> SafeNet Inc.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22680 2012-10-25] (Giga-Byte Technology -> )
S3 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20120615.003\BHDrvx64.sys [1377440 2012-06-11] (Symantec Corporation -> Symantec Corporation)
S3 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1400000.088\ccSetx64.sys [168608 2012-05-25] (Symantec Corporation -> Symantec Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [149944 2019-10-30] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [103264 2019-10-30] (ESET, spol. s r.o. -> ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [189512 2019-10-30] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [50712 2019-10-30] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [77184 2019-10-30] (ESET, spol. s r.o. -> ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [61640 2019-10-30] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [114136 2019-10-30] (ESET, spol. s r.o. -> ESET)
S3 etdrv; C:\Windows\etdrv.sys [25640 2019-07-29] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
S3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [18944 2019-08-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 gdrv; C:\Windows\gdrv.sys [25640 2019-10-31] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
R3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2019-10-31] (GIGA-BYTE TECHNOLOGY CO., LTD -> )
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [318464 2009-03-13] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2019-08-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20120611.002\IDSVia64.sys [509088 2012-06-11] (Symantec Corporation -> Symantec Corporation)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-10-31] (Malwarebytes Corporation -> Malwarebytes)
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20120616.009\ENG64.SYS [120440 2012-06-16] (Symantec Corporation -> Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20120616.009\EX64.SYS [2068600 2012-06-16] (Symantec Corporation -> Symantec Corporation)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
R2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc. -> SafeNet, Inc.)
R3 SNTUSB64; C:\Windows\System32\DRIVERS\SNTUSB64.SYS [63568 2012-12-11] (SafeNet, Inc. -> SafeNet, Inc.)
S3 SRTSP; C:\Windows\system32\drivers\NISx64\1400000.088\SRTSP64.SYS [753312 2012-05-25] (Symantec Corporation -> Symantec Corporation)
S3 SRTSPX; C:\Windows\system32\drivers\NISx64\1400000.088\SRTSPX64.SYS [37496 2012-01-11] (Symantec Corporation -> Symantec Corporation)
S3 SymDS; C:\Windows\system32\drivers\NISx64\1400000.088\SYMDS64.SYS [485024 2012-05-25] (Symantec Corporation -> Symantec Corporation)
S3 SymEFA; C:\Windows\system32\drivers\NISx64\1400000.088\SYMEFA64.SYS [1129120 2012-05-21] (Symantec Corporation -> Symantec Corporation)
S3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2019-01-10] (Symantec Corporation -> Symantec Corporation)
S3 SymIRON; C:\Windows\system32\drivers\NISx64\1400000.088\Ironx64.SYS [222368 2012-05-25] (Symantec Corporation -> Symantec Corporation)
S3 SymNetS; C:\Windows\system32\drivers\NISx64\1400000.088\SYMNETS.SYS [431224 2012-05-09] (Symantec Corporation -> Symantec Corporation)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [2206352 2012-08-03] (VIA Technologies Inc. -> VIA Technologies, Inc.)
S3 ardrv; \??\C:\Users\Mira\AppData\Local\Temp\ardrv.sys [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-11-01 06:27 - 2019-11-01 06:28 - 000034530 _____ C:\Users\Mira\Desktop\FRST.txt
2019-11-01 06:26 - 2019-11-01 06:27 - 000000000 ____D C:\FRST
2019-11-01 06:25 - 2019-11-01 06:25 - 001619456 _____ (Farbar) C:\Users\Mira\Desktop\FRST64.exe
2019-10-31 06:51 - 2019-10-31 06:51 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-10-31 06:44 - 2019-10-31 06:49 - 000000000 ____D C:\AdwCleaner
2019-10-31 06:42 - 2019-10-31 06:42 - 007622344 _____ (Malwarebytes) C:\Users\Mira\Desktop\adwcleaner_7.4.2.exe
2019-10-31 06:27 - 2019-10-31 06:27 - 570032145 _____ C:\Windows\MEMORY.DMP
2019-10-31 06:27 - 2019-10-31 06:27 - 000397232 _____ C:\Windows\Minidump\103119-17955-01.dmp
2019-10-31 06:27 - 2019-10-31 06:27 - 000000000 ____D C:\Windows\Minidump
2019-10-31 06:26 - 2019-10-31 06:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-10-31 06:22 - 2019-10-31 06:22 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2019-10-31 06:22 - 2017-10-27 18:46 - 000001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2019-10-31 06:22 - 2017-10-27 17:12 - 005960824 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2019-10-31 06:22 - 2017-10-27 17:12 - 002587768 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2019-10-31 06:22 - 2017-10-27 17:12 - 001766520 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2019-10-31 06:22 - 2017-10-27 17:12 - 000607168 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2019-10-31 06:22 - 2017-10-27 17:12 - 000449656 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2019-10-31 06:22 - 2017-10-27 17:12 - 000123000 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2019-10-31 06:22 - 2017-10-27 17:12 - 000081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2019-10-31 06:22 - 2017-10-27 17:06 - 000136312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2019-10-31 06:22 - 2017-10-25 11:33 - 007802921 _____ C:\Windows\system32\nvcoproc.bin
2019-10-31 06:22 - 2017-09-14 00:20 - 000798008 _____ C:\Windows\SysWOW64\vulkan-1.dll
2019-10-31 06:22 - 2017-09-14 00:20 - 000490296 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2019-10-31 06:22 - 2017-09-14 00:19 - 000927544 _____ C:\Windows\system32\vulkan-1.dll
2019-10-31 06:22 - 2017-09-14 00:19 - 000591160 _____ C:\Windows\system32\vulkaninfo.exe
2019-10-31 06:21 - 2019-10-31 06:51 - 000000000 ____D C:\ProgramData\NVIDIA
2019-10-31 06:21 - 2019-10-31 06:22 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-10-31 06:21 - 2017-10-27 17:36 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2019-10-31 06:20 - 2017-10-27 18:46 - 040237688 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 036194424 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 035156928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 029236344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 023262464 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 021744632 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 019037416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 019012232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 018207248 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 016763000 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2019-10-31 06:20 - 2017-10-27 18:46 - 015027984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 013864232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 013254520 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 011779328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 010882720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 004284496 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 003807680 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 003799032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 003346552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 001989056 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438813.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 001673848 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438813.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 001615472 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 001135464 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 001099200 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 001030592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000981112 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000932472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000885680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000615360 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000527288 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000505976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000492048 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000446216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000407064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000225208 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2019-10-31 06:20 - 2017-10-27 18:46 - 000171896 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000154392 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000149552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000132256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000046182 _____ C:\Windows\system32\nvinfo.pb
2019-10-31 06:20 - 2017-10-27 18:46 - 000045496 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2019-10-31 06:20 - 2017-10-27 18:46 - 000000669 _____ C:\Windows\system32\nv-vk64.json
2019-10-31 06:19 - 2019-10-31 06:22 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-10-31 06:14 - 2019-10-31 06:22 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-10-30 18:35 - 2019-10-30 18:37 - 121681576 _____ (NVIDIA Corporation New) C:\Users\Mira\Downloads\GeForce_Experience_v3.20.0.118.exe
2019-10-30 14:31 - 2019-10-30 14:31 - 000000000 ____D C:\NVIDIA
2019-10-30 13:19 - 2019-10-30 13:51 - 000000000 ____D C:\Users\Mira\AppData\Roaming\Blum
2019-10-30 12:49 - 2019-10-30 12:55 - 000000000 ____D C:\Program Files\trend micro
2019-10-30 12:49 - 2019-10-30 12:50 - 000000000 ____D C:\rsit
2019-10-30 12:49 - 2019-10-30 12:49 - 001222144 _____ C:\Users\Mira\Downloads\RSITx64.exe
2019-10-30 11:35 - 2019-10-31 06:52 - 000000004 _____ C:\Windows\SysWOW64\GVTunner.ref
2019-10-30 09:24 - 2019-10-30 11:34 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-10-29 09:57 - 2019-10-29 12:52 - 000015915 _____ C:\Users\Mira\Desktop\kovani_oprava.xlsx
2019-10-28 20:43 - 2019-10-28 20:43 - 000000000 ____D C:\Windows\system32\%LocalAppData%
2019-10-28 13:39 - 2019-10-28 13:39 - 000000000 ____D C:\Users\Default\AppData\Local\mbamtray
2019-10-28 13:39 - 2019-10-28 13:39 - 000000000 ____D C:\Users\Default User\AppData\Local\mbamtray
2019-10-25 12:24 - 2019-10-25 12:25 - 037803437 _____ C:\Users\Mira\Downloads\K2_CZ.pdf
2019-10-25 06:52 - 2019-10-25 06:52 - 000003544 ____N C:\bootsqm.dat
2019-10-24 06:58 - 2019-10-24 06:58 - 001201305 _____ C:\Users\Mira\Downloads\me161798_ma_dok_bau_$sml_$aof_$v1.pdf
2019-10-24 05:08 - 2019-10-29 07:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DYNALOG
2019-10-24 05:08 - 2019-10-24 05:08 - 000001936 _____ C:\Users\Public\Desktop\DYNALOG.lnk
2019-10-24 05:08 - 2019-10-24 05:08 - 000001936 _____ C:\ProgramData\Desktop\DYNALOG.lnk
2019-10-24 05:07 - 2019-10-29 07:07 - 000000000 ____D C:\Program Files (x86)\Blum
2019-10-23 13:20 - 2019-10-23 13:25 - 443345478 _____ (Julius Blum Ges.m.b.H) C:\Users\Mira\Downloads\Blum_DYNALOG-v3643-01(1).exe
2019-10-18 09:56 - 2019-10-18 09:57 - 002470280 _____ (SPAMfighter ApS) C:\Users\Mira\Downloads\SPAMfighter_web.exe
2019-10-18 09:40 - 2019-10-21 06:04 - 000000000 ____D C:\Users\Mira\AppData\Roaming\SuperSpamKiller Pro
2019-10-18 09:39 - 2019-10-29 07:10 - 000000000 ____D C:\Users\Mira\Downloads\ssksw
2019-10-18 09:38 - 2019-10-18 09:38 - 015891457 _____ C:\Users\Mira\Downloads\ssksw.zip
2019-10-17 12:52 - 2019-10-17 12:52 - 000000000 ____D C:\Users\Mira\AppData\Local\mbam
2019-10-17 12:51 - 2019-10-17 12:51 - 000000000 ____D C:\Users\Mira\AppData\Local\mbamtray
2019-10-17 12:50 - 2019-10-29 07:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-10-17 12:50 - 2019-10-29 07:09 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-10-17 12:50 - 2019-10-29 07:09 - 000000000 ____D C:\Program Files\Malwarebytes
2019-10-17 12:50 - 2019-10-17 17:54 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-10-17 12:50 - 2019-10-17 12:50 - 000001871 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-10-17 12:50 - 2019-10-17 12:50 - 000001871 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2019-10-17 12:43 - 2019-10-17 12:44 - 066367928 _____ (Malwarebytes ) C:\Users\Mira\Downloads\mb3-setup-37469.37469-3.8.3.2965-1.0.627-1.0.12633.exe
2019-10-14 09:52 - 2019-10-14 09:57 - 372429653 _____ (Ecru Software ) C:\Users\Mira\Downloads\instal_ton2016.exe
2019-10-14 09:52 - 2019-10-14 09:54 - 139527544 _____ (Ecru Software ) C:\Users\Mira\Downloads\instal_krono-2018.exe
2019-10-14 05:10 - 2019-10-14 05:10 - 025441808 _____ (Piriform Software Ltd) C:\Users\Mira\Downloads\ccsetup562.exe
2019-10-11 13:45 - 2019-10-29 07:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2019-10-10 11:34 - 2009-07-14 02:15 - 001386496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvbvm60003.dll
2019-10-10 07:02 - 2019-10-10 07:02 - 000000000 ____D C:\Users\Mira\AppData\Roaming\TracheaOS
2019-10-10 07:01 - 2019-10-10 07:01 - 000000857 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TracheaOS.lnk
2019-10-10 07:01 - 2019-10-10 07:01 - 000000845 _____ C:\Users\Public\Desktop\TracheaOS.lnk
2019-10-10 07:01 - 2019-10-10 07:01 - 000000845 _____ C:\ProgramData\Desktop\TracheaOS.lnk
2019-10-10 07:01 - 2019-10-10 07:01 - 000000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2019-10-10 07:01 - 2019-10-10 07:01 - 000000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2019-10-10 07:01 - 2019-10-10 07:01 - 000000000 ____D C:\Program Files (x86)\TracheaOS
2019-10-10 07:00 - 2019-10-10 07:00 - 001703264 _____ C:\Users\Mira\Downloads\TracheaOS-demos-cz-4.7.147.exe
2019-10-08 08:01 - 2019-10-08 08:01 - 000000000 ____D C:\Users\Mira\Documents\2019_10_08
2019-10-04 11:45 - 2019-10-01 12:58 - 000342112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-10-04 11:45 - 2019-09-29 23:09 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-10-04 11:45 - 2019-09-29 22:57 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-10-04 11:45 - 2019-09-29 22:57 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-10-04 11:45 - 2019-09-29 22:54 - 020290560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-10-04 11:45 - 2019-09-29 22:50 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-10-04 11:45 - 2019-09-29 22:40 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-10-04 11:45 - 2019-09-29 22:40 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-10-04 11:45 - 2019-09-29 22:36 - 000496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-10-04 11:45 - 2019-09-29 22:29 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2019-10-04 11:45 - 2019-09-29 22:26 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2019-10-04 11:45 - 2019-09-29 22:21 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-10-04 11:45 - 2019-09-29 22:14 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-10-04 11:45 - 2019-09-29 22:13 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2019-10-04 11:45 - 2019-09-29 22:13 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2019-10-04 11:45 - 2019-09-29 22:10 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-10-04 11:45 - 2019-09-29 22:09 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-10-04 11:45 - 2019-09-29 22:00 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-10-04 11:45 - 2019-09-29 21:38 - 001331712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-10-04 11:44 - 2019-10-01 13:50 - 000390536 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-10-04 11:44 - 2019-09-30 00:50 - 025752064 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-10-04 11:44 - 2019-09-29 23:23 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-10-04 11:44 - 2019-09-29 23:23 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-10-04 11:44 - 2019-09-29 23:11 - 002909184 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-10-04 11:44 - 2019-09-29 23:09 - 000579072 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-10-04 11:44 - 2019-09-29 23:09 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-10-04 11:44 - 2019-09-29 23:09 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-10-04 11:44 - 2019-09-29 23:08 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-10-04 11:44 - 2019-09-29 23:02 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-10-04 11:44 - 2019-09-29 23:01 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-10-04 11:44 - 2019-09-29 22:59 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-10-04 11:44 - 2019-09-29 22:58 - 005500928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-10-04 11:44 - 2019-09-29 22:57 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-10-04 11:44 - 2019-09-29 22:57 - 000793600 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-10-04 11:44 - 2019-09-29 22:48 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2019-10-04 11:44 - 2019-09-29 22:47 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-10-04 11:44 - 2019-09-29 22:39 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-10-04 11:44 - 2019-09-29 22:36 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-10-04 11:44 - 2019-09-29 22:36 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-10-04 11:44 - 2019-09-29 22:36 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2019-10-04 11:44 - 2019-09-29 22:35 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2019-10-04 11:44 - 2019-09-29 22:35 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2019-10-04 11:44 - 2019-09-29 22:34 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-10-04 11:44 - 2019-09-29 22:34 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2019-10-04 11:44 - 2019-09-29 22:33 - 002301952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-10-04 11:44 - 2019-09-29 22:32 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-10-04 11:44 - 2019-09-29 22:30 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-10-04 11:44 - 2019-09-29 22:27 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-10-04 11:44 - 2019-09-29 22:26 - 000660480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-10-04 11:44 - 2019-09-29 22:26 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-10-04 11:44 - 2019-09-29 22:23 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-10-04 11:44 - 2019-09-29 22:21 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-10-04 11:44 - 2019-09-29 22:19 - 002132480 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-10-04 11:44 - 2019-09-29 22:19 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-10-04 11:44 - 2019-09-29 22:18 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2019-10-04 11:44 - 2019-09-29 22:17 - 015390208 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-10-04 11:44 - 2019-09-29 22:10 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2019-10-04 11:44 - 2019-09-29 22:07 - 004859392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-10-04 11:44 - 2019-09-29 22:07 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2019-10-04 11:44 - 2019-09-29 22:03 - 004112384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-10-04 11:44 - 2019-09-29 22:02 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-10-04 11:44 - 2019-09-29 22:00 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-10-04 11:44 - 2019-09-29 21:59 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2019-10-04 11:44 - 2019-09-29 21:57 - 001568256 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-10-04 11:44 - 2019-09-29 21:56 - 013791744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-10-04 11:44 - 2019-09-29 21:46 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-10-04 11:44 - 2019-09-29 21:42 - 004387840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-10-04 11:44 - 2019-09-29 21:37 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-10-04 11:44 - 2019-09-12 04:53 - 000442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2019-10-04 11:44 - 2019-09-12 04:52 - 000373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2019-10-04 11:44 - 2019-09-12 04:52 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2019-10-04 11:44 - 2019-09-12 04:44 - 000680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2019-10-04 11:44 - 2019-09-12 04:44 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2019-10-04 11:44 - 2019-09-12 04:44 - 000438784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2019-10-04 11:44 - 2019-09-12 04:44 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2019-10-04 11:44 - 2019-09-12 04:44 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2019-10-04 11:44 - 2019-09-12 04:24 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2019-10-02 11:43 - 2019-10-02 12:14 - 000377412 _____ C:\Users\Mira\Documents\Kuchyně_01-10-2019_v01.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-11-01 06:27 - 2019-01-10 09:32 - 000000000 ____D C:\Users\Mira\AppData\LocalLow\Mozilla
2019-11-01 05:01 - 2010-11-21 10:27 - 000679318 _____ C:\Windows\system32\perfh005.dat
2019-11-01 05:01 - 2010-11-21 10:27 - 000146154 _____ C:\Windows\system32\perfc005.dat
2019-11-01 05:01 - 2009-07-14 06:13 - 001613888 _____ C:\Windows\system32\PerfStringBackup.INI
2019-11-01 05:01 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2019-11-01 05:00 - 2009-07-14 05:45 - 000022080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-11-01 05:00 - 2009-07-14 05:45 - 000022080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-11-01 00:05 - 2019-07-25 05:54 - 000000000 ____D C:\ProgramData\Backuplogs
2019-10-31 09:50 - 2019-01-17 14:21 - 000000000 ____D C:\ProgramData\firebird
2019-10-31 07:41 - 2009-07-14 06:08 - 000032564 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-10-31 06:56 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-10-31 06:52 - 2019-01-16 13:34 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-10-31 06:52 - 2019-01-10 10:27 - 000030528 _____ C:\Windows\GVTDrv64.sys
2019-10-31 06:52 - 2019-01-10 10:27 - 000025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2019-10-31 06:22 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\Help
2019-10-30 18:43 - 2019-01-23 07:59 - 000000000 ____D C:\Users\Mira\AppData\Roaming\vlc
2019-10-30 14:34 - 2019-01-10 08:52 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-30 11:59 - 2019-04-09 12:24 - 000000000 ____D C:\Users\Mira\Documents\AutoCAD
2019-10-30 11:33 - 2019-01-10 10:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-10-30 09:14 - 2018-11-29 10:54 - 000149944 _____ (ESET) C:\Windows\system32\Drivers\eamonm.sys
2019-10-30 09:14 - 2018-11-29 10:54 - 000103264 _____ (ESET) C:\Windows\system32\Drivers\edevmon.sys
2019-10-30 09:14 - 2018-10-17 15:37 - 000189512 _____ (ESET) C:\Windows\system32\Drivers\ehdrv.sys
2019-10-30 09:14 - 2018-10-17 15:37 - 000114136 _____ (ESET) C:\Windows\system32\Drivers\epfwwfp.sys
2019-10-30 09:14 - 2018-10-17 15:37 - 000077184 _____ (ESET) C:\Windows\system32\Drivers\epfw.sys
2019-10-30 09:14 - 2018-10-17 15:37 - 000061640 _____ (ESET) C:\Windows\system32\Drivers\EpfwLWF.sys
2019-10-30 09:14 - 2018-10-17 15:37 - 000050712 _____ (ESET) C:\Windows\system32\Drivers\ekbdflt.sys
2019-10-30 09:02 - 2019-01-17 10:29 - 000000000 ____D C:\Users\Mira\AppData\Local\CrashDumps
2019-10-29 09:12 - 2019-01-23 13:08 - 000000000 _____ C:\Users\Mira\Documents\Print2PDF
2019-10-29 09:02 - 2019-02-01 11:56 - 000000000 ____D C:\Users\Mira\Documents\SCAN
2019-10-29 07:10 - 2019-01-18 13:00 - 000000000 ____D C:\Users\Mira\AppData\Roaming\ESET
2019-10-29 07:10 - 2019-01-18 11:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-10-29 07:10 - 2019-01-18 11:53 - 000000000 ____D C:\Program Files\CCleaner
2019-10-29 07:10 - 2019-01-18 10:28 - 000000000 ____D C:\Users\Mira\AppData\Roaming\Thunderbird
2019-10-29 07:10 - 2019-01-17 14:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RK Software
2019-10-29 07:10 - 2019-01-17 14:20 - 000000000 ____D C:\Program Files (x86)\Optimik
2019-10-29 07:10 - 2019-01-17 07:55 - 000000000 ____D C:\Users\Mira\AppData\Roaming\Autodesk
2019-10-29 07:10 - 2019-01-16 14:55 - 000000000 ____D C:\Program Files\Microsoft Office 15
2019-10-29 07:10 - 2019-01-16 10:42 - 000000000 ____D C:\Users\Mira\Documents\Optimik
2019-10-29 07:10 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\registration
2019-10-29 07:09 - 2019-06-04 11:38 - 000000000 ____D C:\ProgramData\Blum
2019-10-29 07:08 - 2019-01-16 14:55 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-10-29 06:20 - 2019-01-16 13:34 - 000000000 ____D C:\Users\Mira\AppData\Roaming\TeamViewer
2019-10-29 06:17 - 2019-01-10 08:52 - 000002188 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-29 06:17 - 2019-01-10 08:52 - 000002147 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-10-29 06:17 - 2019-01-10 08:52 - 000002147 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2019-10-29 06:14 - 2019-01-10 07:43 - 000000000 ____D C:\Users\Mira
2019-10-25 07:08 - 2019-01-16 15:07 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-22 05:50 - 2019-01-17 14:20 - 000001000 _____ C:\Users\Public\Desktop\Optimik.lnk
2019-10-22 05:50 - 2019-01-17 14:20 - 000001000 _____ C:\ProgramData\Desktop\Optimik.lnk
2019-10-17 12:45 - 2019-01-18 09:59 - 000000000 ____D C:\Users\Mira\AppData\Local\ElevatedDiagnostics
2019-10-14 05:11 - 2019-01-18 11:53 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2019-10-14 05:11 - 2019-01-18 11:53 - 000000826 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-10-14 05:11 - 2019-01-18 11:53 - 000000826 _____ C:\ProgramData\Desktop\CCleaner.lnk
2019-10-11 13:45 - 2019-01-22 10:24 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-10-11 13:45 - 2019-01-22 10:24 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-10-11 13:45 - 2019-01-22 10:24 - 000002417 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-10-11 13:45 - 2019-01-22 10:24 - 000002412 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-10-11 13:45 - 2019-01-22 10:24 - 000002405 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype pro firmy.lnk
2019-10-11 13:45 - 2019-01-22 10:24 - 000002373 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-10-11 13:45 - 2019-01-22 10:24 - 000002338 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-10-11 13:45 - 2019-01-22 10:24 - 000002334 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-10-10 11:34 - 2019-01-23 13:04 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software602 Print2PDF.lnk
2019-10-10 11:34 - 2019-01-23 13:04 - 000002081 _____ C:\Users\Public\Desktop\Software602 Print2PDF.lnk
2019-10-10 11:34 - 2019-01-23 13:04 - 000002081 _____ C:\ProgramData\Desktop\Software602 Print2PDF.lnk
2019-10-10 07:01 - 2019-01-14 13:06 - 000000000 ____D C:\Users\Mira\AppData\Roaming\Adobe
2019-10-10 07:01 - 2019-01-10 07:43 - 000000000 ____D C:\ProgramData\Adobe
2019-10-10 07:01 - 2019-01-10 07:43 - 000000000 ____D C:\Program Files (x86)\Adobe
2019-10-10 07:00 - 2019-01-14 13:06 - 000000000 ____D C:\Users\Mira\AppData\Local\Adobe
2019-10-10 06:18 - 2019-01-16 15:09 - 000003182 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1064124205-772266194-2725748559-1000
2019-10-10 06:18 - 2019-01-16 15:09 - 000002117 _____ C:\Users\Mira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2019-10-10 06:18 - 2019-01-16 15:09 - 000000000 ___RD C:\Users\Mira\OneDrive
2019-10-09 16:15 - 2019-03-22 14:35 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-10-09 16:15 - 2019-03-22 14:35 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-10-09 16:15 - 2019-03-22 14:35 - 000004408 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2019-10-09 16:15 - 2019-03-22 14:35 - 000000000 ____D C:\Windows\system32\Macromed
2019-10-09 16:15 - 2019-03-22 14:34 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-10-07 21:44 - 2019-01-10 08:52 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2019-10-07 21:44 - 2019-01-10 08:52 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2019-10-07 13:59 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2019-10-07 05:33 - 2019-01-10 15:06 - 000000000 ____D C:\Windows\system32\MRT
2019-10-07 05:30 - 2019-01-25 10:06 - 134272480 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== Files in the root of some directories ========

2019-01-10 09:35 - 2019-01-10 09:35 - 000000600 _____ () C:\Users\Mira\AppData\Roaming\winscp.rnd

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-10-21 08:00
==================== End of FRST.txt ========================



Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-11-2019
Ran by Mira (01-11-2019 06:28:56)
Running from C:\Users\Mira\Desktop
Windows 7 Professional Service Pack 1 (X64) (2019-01-10 06:43:02)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1064124205-772266194-2725748559-500 - Administrator - Disabled)
Guest (S-1-5-21-1064124205-772266194-2725748559-501 - Limited - Disabled)
Mira (S-1-5-21-1064124205-772266194-2725748559-1000 - Administrator - Enabled) => C:\Users\Mira

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Internet Security (Disabled - Up to date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AS: ESET Security (Enabled - Up to date) {333C65BB-8923-0EAA-C47E-C486E687BEFD}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Disabled - Up to date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security (Disabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.28 - GIGABYTE)
7-Zip 17.00 beta (x64) (HKLM\...\7-Zip) (Version: 17.00 beta - Igor Pavlov)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.125 - Adobe)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.270 - Adobe)
Adobe Reader 9.1 - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
AllToMP3 0.3.8 (HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\c7605133-1e88-50dc-a31b-c14ca85089b6) (Version: 0.3.8 - Basile Bruneau)
Alphacam 2011 R1 (HKLM-x32\...\{7F73B2EA-8C95-4B3D-8DDD-E895A93FD3A1}) (Version: 10.00.0000 - Planit Software Limited) Hidden
Alphacam 2011 R1 (HKLM-x32\...\InstallShield_{7F73B2EA-8C95-4B3D-8DDD-E895A93FD3A1}) (Version: 10.0.0.180 - Planit Software Limited)
Alphacam 2016 R2 (HKLM-x32\...\{8FA7BB05-6402-4E9C-865F-DC11BE830863}) (Version: 15.1.100 - Vero Software) Hidden
Alphacam 2016 R2 (HKLM-x32\...\InstallShield_{8FA7BB05-6402-4E9C-865F-DC11BE830863}) (Version: 15.5.2.136 - Vero Software)
Altap Salamander 3.08 (x64) (HKLM\...\Altap Salamander 3.08 (x64)) (Version: 3.08 - ALTAP)
ApowerREC V1.3.5.6 (HKLM-x32\...\{6F2998B2-21F7-4CEF-94B2-C3919D939CF9}_is1) (Version: 1.3.5.6 - Apowersoft LIMITED)
Apowersoft Online Launcher version 1.7.5 (HKLM-x32\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.7.5 - APOWERSOFT LIMITED)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Atheros Communications Inc.)
AutoCAD LT 2009 - český (HKLM\...\{5783F2D7-7009-0405-0102-0060B0CE6BBA}) (Version: 17.2.56.0 - Autodesk) Hidden
AutoCAD LT 2009 - český (HKLM\...\AutoCAD LT 2009 - český) (Version: 17.2.56.0 - Autodesk)
AutoCAD LT 2020 – Čeština (Czech) (HKLM\...\{28B89EEF-3009-0000-0102-CF3F3A09B77D}) (Version: 23.1.47.0 - Autodesk) Hidden
AutoCAD LT 2020 – Čeština (Czech) (HKLM\...\{28B89EEF-3009-0405-2102-CF3F3A09B77D}) (Version: 23.1.47.0 - Autodesk) Hidden
AutoCAD LT 2020 Language Pack – Čeština (Czech) (HKLM\...\{28B89EEF-3009-0405-1102-CF3F3A09B77D}) (Version: 23.1.47.0 - Autodesk) Hidden
Autodesk AutoCAD LT 2020 – Čeština (Czech) (HKLM\...\AutoCAD LT 2020 – Čeština (Czech)) (Version: 23.1.47.0 - Autodesk)
Autodesk CAD Manager Tools (HKLM\...\{28B89EEF-3111-0409-0110-CF3F3A09B77D}) (Version: 23.1.47.0 - Autodesk)
Autodesk Design Review 2009 (HKLM-x32\...\{450063AA-643B-417C-8CF5-405BA3F4EF40}) (Version: 9.0.96 - Autodesk, Inc.) Hidden
Autodesk Design Review 2009 (HKLM-x32\...\Autodesk Design Review 2009) (Version: 9.0.96 - Autodesk, Inc.)
Autodesk DWG TrueView 2019 - English (HKLM\...\DWG TrueView 2019 - English) (Version: 23.0.46.0 - Autodesk)
Autodesk Genuine Service (HKLM-x32\...\{317D67F2-9027-4E85-9ED1-ADF4D765AE02}) (Version: 3.0.11 - Autodesk)
Autodesk Material Library 2020 (HKLM-x32\...\{B9312A51-41B5-479D-9F72-E7448A2D89AF}) (Version: 18.11.1.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2020 (HKLM-x32\...\{0E976988-E753-4C81-BD96-434CE305B176}) (Version: 18.11.1.0 - Autodesk)
Autodesk Network License Manager (HKLM\...\{4BE91685-1632-47FC-B563-A8A542C6664C}) (Version: 11.16.2.0 - Autodesk, Inc.)
Autodesk Single Sign On Component (HKLM\...\{E3807FC8-DD0A-4D6D-89E9-EAADE00C845C}) (Version: 10.22.00.1800 - Autodesk)
AutoGreen B12.0206.1 (HKLM-x32\...\{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE) Hidden
AutoGreen B12.0206.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
Bing Bar (HKLM-x32\...\{B4089055-D468-45A4-A6BA-5A138DD715FC}) (Version: 7.0.850.0 - Microsoft Corporation)
Canon MF Scan Utility (HKLM-x32\...\Canon_MF_Scan_Utility) (Version: 1.8.0.0 - CANON INC.)
Canon MF633C/635C (HKLM\...\{7B95F8E4-3E24-4FAF-9CB0-5063F9E1202A}) (Version: 5.4.0.0 - CANON INC.)
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
Dassault Systemes Software VC11 Prerequisites x86-x64 (HKLM\...\{C857169D-3F1A-4530-99A0-CAE966CE267E}) (Version: 11.0.1 - Dassault Systemes)
DWG TrueView 2019 - English (HKLM\...\{28B89EEF-2028-0409-0100-CF3F3A09B77D}) (Version: 23.0.46.0 - Autodesk) Hidden
DYNALOG (HKLM-x32\...\DYNALOG) (Version: 3.6.43 DYA - Julius Blum Ges.m.b.H)
Easy Tune 6 B12.1121.1 (HKLM-x32\...\{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE) Hidden
Easy Tune 6 B12.1121.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
ESET Security (HKLM\...\{F1544F11-BFCC-43CC-9D0C-169A7E99369E}) (Version: 13.0.22.0 - ESET, spol. s r.o.)
Fast Reports Viewers (HKLM-x32\...\{1BA2BE28-E108-490B-9A14-823DC3034960}) (Version: 1.0 - Fast Reports) Hidden
Fast Reports Viewers (HKLM-x32\...\Fast Reports Viewers) (Version: 1.0 - My Company)
FORM studio (HKLM-x32\...\FSCZ_is1) (Version: - KASTNER software s.r.o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.70 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.99 - Google Inc.) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.1.0.309 - )
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2843 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)
Malwarebytes verze 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Access database engine 2010 (English) (HKLM-x32\...\{90140000-00D1-0409-0000-0000000FF1CE}) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office 365 Business - cs-cz (HKLM\...\O365BusinessRetail - cs-cz) (Version: 16.0.12026.20334 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\OneDriveSetup.exe) (Version: 19.152.0927.0012 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{B40EE88B-400A-4266-A17B-E3DE64E94431}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server 2012 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2012) (Version: - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{9AE22681-C27C-402A-A136-15854DFF693D}) (Version: 11.3.6020.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Setup (English) (HKLM\...\{BDF7F870-15E2-49A7-9123-65E8FF52ECAA}) (Version: 11.3.6020.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{076FF390-D283-4174-B602-B0B7B72BD024}) (Version: 11.3.6020.0 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\Teams) (Version: 1.2.00.19260 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40649 (HKLM-x32\...\{5d0723d3-cff7-4e07-8d0b-ada737deb5e6}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40649 (HKLM-x32\...\{35b83883-40fa-423c-ae73-2aff7e1ea820}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
MiniTool Partition Wizard Free 10.3 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Software Limited)
Mozilla Firefox 71.0 (x64 cs) (HKLM\...\Mozilla Firefox 71.0 (x64 cs)) (Version: 71.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0 - Mozilla)
Mozilla Thunderbird 60.9.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 60.9.0 (x86 cs)) (Version: 60.9.0 - Mozilla)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
NVIDIA Ovladač 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12026.20334 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12026.20334 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12026.20334 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.12026.20334 - Microsoft Corporation) Hidden
ON_OFF Charge B12.1025.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Optimik (HKLM-x32\...\Optimik_is1) (Version: - Rastislav Korytár - RK Software)
Ovládací panel NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.) Hidden
Počítačová aplikace Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.15.17 - Autodesk)
S2M Center 11 (HKLM-x32\...\{B7857928-955B-4554-89C3-C6FC4B2EBC21}) (Version: 11.00.0000 - ) Hidden
S2M Center 11 (HKLM-x32\...\InstallShield_{B7857928-955B-4554-89C3-C6FC4B2EBC21}) (Version: 11.2.0.168 - )
S2M Center 5.0 (HKLM-x32\...\{9E76AA34-D6B4-49E7-80DC-8DDC54722C5B}) (Version: 5.00.0000 - ) Hidden
S2M Center 5.0 (HKLM-x32\...\InstallShield_{9E76AA34-D6B4-49E7-80DC-8DDC54722C5B}) (Version: 5.0.3.142 - )
Sentinel Protection Installer 7.6.3 (HKLM-x32\...\{954D9E32-BE47-43F4-9BFF-6DB46F17EAF2}) (Version: 7.6.3 - SafeNet, Inc.)
Sentinel System Driver Installer 7.5.9 (HKLM-x32\...\{D19BF240-59D1-4645-B7C3-BF9D9E585A24}) (Version: 7.5.9 - SafeNet, Inc.)
Service Pack 3 for SQL Server 2012 (KB3072779) (64-bit) (HKLM\...\KB3072779) (Version: 11.3.6020.0 - Microsoft Corporation)
Software602 Print2PDF (HKLM-x32\...\{32C74893-0243-4235-A6F3-201F0E5D2C03}) (Version: 9.1.11.0421 - Software602 a.s.)
Solid 11 (HKLM-x32\...\{2F00150D-5C86-40E1-B473-5B34EDBBAC85}) (Version: 11.00.0000 - ) Hidden
Solid 11 (HKLM-x32\...\InstallShield_{2F00150D-5C86-40E1-B473-5B34EDBBAC85}) (Version: 11.2.0.168 - )
Solid 8.0 (HKLM-x32\...\{2F6E26DD-7C38-4E46-AFAF-1AD9EB76B9CA}) (Version: 8.00.0000 - ) Hidden
Solid 8.0 (HKLM-x32\...\InstallShield_{2F6E26DD-7C38-4E46-AFAF-1AD9EB76B9CA}) (Version: 8.0.3.142 - )
Solidlink 2016.30 (HKLM\...\{ AD236116-8BC1-42FD-8653-1A1D8845B2F9 }_is1) (Version: 2016.30 - Vero Software Limited)
Spotify (HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\Spotify) (Version: 1.1.7.13766.gf9dc3904 - Spotify AB)
SQL Server 2012 Common Files (HKLM\...\{1D411379-9CE0-4B13-A19B-72D3222DD620}) (Version: 11.3.6020.0 - Microsoft Corporation) Hidden
SQL Server 2012 Common Files (HKLM\...\{202AAF1F-69AA-442A-B59F-6B54B1AD07C6}) (Version: 11.3.6020.0 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Shared (HKLM\...\{54FF8FAB-DE27-4187-82F1-EBAE6AEE869A}) (Version: 11.3.6020.0 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Shared (HKLM\...\{6603C2CE-3C54-4F1D-92F9-8390CD4CCCA8}) (Version: 11.3.6020.0 - Microsoft Corporation) Hidden
T-Cloud Záloha (HKLM-x32\...\{9AB6B5AE-CEC2-4491-9322-FD0A16BC580F}) (Version: 4.0.0 - Xopero Software) Hidden
T-Cloud Záloha (HKLM-x32\...\T-Cloud Záloha 4.0.0) (Version: 4.0.0 - Xopero Software)
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.19260 - Microsoft Corporation)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.6.4835 - TeamViewer)
TomTom HOME (HKLM-x32\...\{FA238C73-1E78-45E1-8AA7-D1689040BB89}) (Version: 2.11.7 - Název společnosti:)
TomTom MyDrive Connect 4.2.5.3770 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.5.3770 - TomTom)
Trachea OS (HKLM-x32\...\{648FE12D-C32D-A07E-E81B-E53F1A8F715D}) (Version: 4.7.147 - SOFTconsult spol. s r.o.) Hidden
Trachea OS (HKLM-x32\...\TracheaOS) (Version: 4.7.147 - SOFTconsult spol. s r.o.)
TuneFab Spotify Music Converter version 2.5.5 (HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\{6C016F3A-9540-4513-9460-B5471166B3A8}_is1) (Version: 2.5.5 - TuneFab, Inc.)
Uložit do služby Autodesk Web and Mobile (HKLM\...\{26FB18F7-B553-430D-94F6-C2389A91235F}) (Version: 3.0.21 - Autodesk)
Vero Software CLS 2016.10 (HKLM-x32\...\{1CE6F900-3AEE-4096-A75E-26B20051485A}) (Version: 2016.10.7.7942 - Vero Software Limited)
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.7.1 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Wood Flash 2.9 (HKLM-x32\...\Wood Flash) (Version: 2.9 - T.P.A. S.p.A.)
Zoner Photo Studio 17 (HKLM\...\ZonerPhotoStudio17_CZ_is1) (Version: 17.0.1.12 - ZONER software)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1064124205-772266194-2725748559-1000_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Mira\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19163.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1064124205-772266194-2725748559-1000_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2019 - English\en-US\dwgviewrficn.dll (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1064124205-772266194-2725748559-1000_Classes\CLSID\{74D0CE91-F931-4FAC-BEA9-EE32E43EAD37}\localserver32 -> C:\Program Files\Autodesk\AutoCAD LT 2020\acadlt.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1064124205-772266194-2725748559-1000_Classes\CLSID\{74F5CC00-49A9-11CF-A2F9-444553540000}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD LT 2020\cs-CZ\acadltficn.dll (Autodesk Development Sarl -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1064124205-772266194-2725748559-1000_Classes\CLSID\{7AABBB95-79BE-4C0F-8024-EB6AF271231C}\localserver32 -> C:\Program Files\AutoCAD LT 2009\acadlt.exe (Autodesk, Inc -> Autodesk, Inc.) [File not signed]
CustomCLSID: HKU\S-1-5-21-1064124205-772266194-2725748559-1000_Classes\CLSID\{C78B6148-F3EA-11D2-94A1-00E0292A01E3}\InprocServer32 -> E:\Program Files (x86)\Altap Salamander\utils\salextx64.dll => No File
CustomCLSID: HKU\S-1-5-21-1064124205-772266194-2725748559-1000_Classes\CLSID\{C78B614E-F3EA-11D2-94A1-00E0292A01E3}\InprocServer32 -> C:\Program Files\Altap Salamander\utils\salextx64.dll (ALTAP) [File not signed]
CustomCLSID: HKU\S-1-5-21-1064124205-772266194-2725748559-1000_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Mira\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19163.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2019-01-30] (Autodesk, Inc. -> Autodesk, Inc.)
ShellIconOverlayIdentifiers: [Správa překryvné ikony digitálních podpisů AutoCADu ] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2019-01-30] (Autodesk, Inc. -> Autodesk, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2019-01-30] (Autodesk, Inc. -> Autodesk)
ContextMenuHandlers1-x32: [Autodesk.DWF.ContextMenu] -> {6C18531F-CA85-45F7-8278-FF33CF0A5964} => C:\Program Files (x86)\Common Files\Autodesk Shared\DWF Common\DWFShellExtension.dll [2008-01-21] (Autodesk, Inc. -> Autodesk, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-30] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [Print602] -> {D5F8CFC7-1A45-4517-A565-E42CDE7880CF} => C:\Program Files (x86)\Software602\Print2PDF\CtxMenu64.dll [2011-04-15] (Software602) [File not signed]
ContextMenuHandlers1: [ShellMenu] -> {048d8c8f-4c45-3f85-a6f3-c32a1dae2367} => C:\Program Files (x86)\T-Cloud Záloha\bin\Opero.Client.ShellMenu.DLL [2019-07-23] (Xopero Software S.A. -> Xopero Software S.A.)
ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Internet Security\Engine64\20.0.0.136\NavShExt.dll [2012-07-25] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-30] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Internet Security\Engine64\20.0.0.136\NavShExt.dll [2012-07-25] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [ShellMenu] -> {048d8c8f-4c45-3f85-a6f3-c32a1dae2367} => C:\Program Files (x86)\T-Cloud Záloha\bin\Opero.Client.ShellMenu.DLL [2019-07-23] (Xopero Software S.A. -> Xopero Software S.A.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2012-08-24] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-30] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Internet Security\Engine64\20.0.0.136\NavShExt.dll [2012-07-25] (Symantec Corporation -> Symantec Corporation)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) =============

2016-06-27 12:50 - 2016-06-27 12:50 - 000137728 _____ () [File not signed] C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\dpwin32v.dll
2010-06-10 15:52 - 2010-06-10 15:52 - 000110592 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\AMD8.dll
2008-05-07 15:22 - 2008-05-07 15:22 - 000102400 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\CIAMIB.dll
2012-05-08 15:01 - 2012-05-08 15:01 - 000069632 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\GPTT.dll
2012-11-09 16:51 - 2012-11-09 16:51 - 001429582 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\GVTunner.dll
2012-09-18 14:45 - 2012-09-18 14:45 - 001335362 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\HM.dll
2010-06-24 15:50 - 2010-06-24 15:50 - 000094208 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\IccLibDll.dll
2012-11-20 17:38 - 2012-11-20 17:38 - 000311296 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\MFCCPU.DLL
2012-11-14 14:44 - 2012-11-14 14:44 - 002875463 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\Normal.dll
2012-11-14 14:00 - 2012-11-14 14:00 - 001499204 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\OCK.dll
2012-09-17 16:25 - 2012-09-17 16:25 - 000106496 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\SF.dll
2003-02-14 14:11 - 2003-02-14 14:11 - 000102400 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\Sound.dll
2011-03-01 19:00 - 2011-03-01 19:00 - 000126976 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\StabilityLib.dll
2011-10-18 09:26 - 2011-10-18 09:26 - 000024576 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\STT.dll
2012-11-14 10:42 - 2012-11-14 10:42 - 000651331 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\work.dll
2011-09-14 17:12 - 2011-09-14 17:12 - 000102400 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\ycc.dll
2019-01-10 09:10 - 2012-02-01 16:25 - 000059904 _____ () [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2019-01-11 10:31 - 2016-12-27 16:15 - 000261120 _____ () [File not signed] C:\Program Files\Altap Salamander\lang\czech.slg
2019-01-22 13:49 - 2014-09-09 13:30 - 000603648 _____ () [File not signed] C:\Program Files\Zoner\Photo Studio 17\Program32\SpiderMonkey.dll
2019-05-17 06:00 - 2019-05-17 06:00 - 000172032 _____ () [File not signed] C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\7e8ccbb701913143cacb0b508cc071bc\IsdiInterop.ni.dll
2019-01-23 13:04 - 2010-12-02 02:13 - 000216576 _____ () [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\Software602.dll
2019-01-11 10:31 - 2016-12-27 11:42 - 000605184 _____ (ALTAP) [File not signed] C:\Program Files\Altap Salamander\SALRTL9.DLL
2019-01-11 10:31 - 2016-12-27 15:36 - 000013312 _____ (ALTAP) [File not signed] C:\Program Files\Altap Salamander\utils\salextx64.dll
2019-01-23 13:04 - 2011-03-30 20:00 - 000967168 _____ (AMYUNI Technologies hxxp://www.amyuni.com) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\acpdf450.dll
2019-01-23 13:04 - 2011-03-30 20:00 - 000508928 _____ (AMYUNI Technologies hxxp://www.amyuni.com) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\acpdfui450.dll
2019-01-17 07:47 - 2015-09-24 00:00 - 000005120 _____ (CANON INC.) [File not signed] C:\Program Files\Canon\Canon MF Network Scanner Selector\CMFNSS6.DLL
2019-01-17 07:46 - 2016-06-06 08:12 - 000153088 _____ (CANON INC.) [File not signed] C:\Windows\System32\CNCENPM6.dll
2019-01-10 10:45 - 2017-04-29 08:55 - 000075776 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2019-05-17 06:00 - 2019-05-17 06:00 - 000014336 _____ (Intel Corp.) [File not signed] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\831abe894483ee5e21bd7bd97dad76af\IAStorCommon.ni.dll
2019-01-10 09:10 - 2012-02-01 16:26 - 000007168 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\cs-CZ\IAStorDataMgr.resources.dll
2019-01-10 09:10 - 2012-02-01 16:26 - 000032768 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\cs-CZ\IAStorIcon.resources.dll
2019-01-10 09:10 - 2012-02-01 16:26 - 000004608 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\cs-CZ\IntelVisualDesign.resources.dll
2019-01-10 09:10 - 2012-02-01 16:25 - 000176128 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorUIHelper.dll
2019-01-10 09:10 - 2012-02-01 16:25 - 001319424 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IntelVisualDesign.dll
2019-01-10 09:10 - 2012-02-01 16:17 - 000278016 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\ISDI.dll
2019-01-10 09:11 - 2012-05-20 17:24 - 000073728 ____R (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2019-05-17 06:00 - 2019-05-17 06:00 - 000228864 _____ (Intel Corporation) [File not signed] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\cfe9891f7e3ce6be31ba6ef365bfc014\IAStorDataMgr.ni.dll
2019-05-17 06:00 - 2019-05-17 06:00 - 000488960 _____ (Intel Corporation) [File not signed] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\fffd832d9056ee796a810a4af197f40e\IAStorUtil.ni.dll
2019-03-27 22:34 - 2019-03-27 22:34 - 000130560 _____ (Microsoft Corporation) [File not signed] C:\Windows\Microsoft.Net\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2019-02-21 17:11 - 2019-02-21 17:11 - 000548864 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6229_none_d089f796442de10e\MSVCP80.dll
2019-02-21 17:11 - 2019-02-21 17:11 - 000626688 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6229_none_d089f796442de10e\MSVCR80.dll
2019-01-22 12:36 - 2019-01-22 12:36 - 000225280 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
2019-10-31 06:22 - 2017-10-27 17:06 - 000339256 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll
2016-06-27 12:52 - 2016-06-27 12:52 - 000118272 _____ (Rainbow Technologies, Inc.) [File not signed] C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\NSLMS324.DLL
2019-07-02 11:01 - 2019-07-02 11:01 - 001427968 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files (x86)\T-Cloud Záloha\bin\x64\SQLite.Interop.dll
2010-10-20 01:03 - 2010-10-20 01:03 - 000225400 _____ (SafeNet, Inc. -> SafeNet, Inc.) [File not signed] C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\MD5CHAP.dll
2016-06-27 12:52 - 2016-06-27 12:52 - 001081344 _____ (SafeNet, Inc.) [File not signed] C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\lsapiw32.dll
2014-05-21 09:55 - 2008-11-14 15:14 - 000126976 _____ (Sharp Corporation) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\SE4BGD.DLL
2014-05-29 12:45 - 2008-11-14 15:15 - 000088576 _____ (Sharp Corporation) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\SE4BU.DLL
2019-01-23 13:04 - 2011-04-21 17:08 - 003971584 _____ (Software602 a.s.) [File not signed] C:\Program Files (x86)\Software602\Print2PDF\Print602.dll
2019-01-23 13:04 - 2011-04-15 13:13 - 000145920 _____ (Software602) [File not signed] C:\Program Files (x86)\Software602\Print2PDF\CtxMenu64.dll
2019-01-23 13:04 - 2011-04-14 11:26 - 000131584 _____ (Software602) [File not signed] C:\Program Files (x86)\Software602\Print2PDF\Pdf602.dll
2012-07-05 13:28 - 2012-07-05 13:28 - 006080512 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\OCK_IV.dll
2016-06-27 12:54 - 2016-06-27 12:54 - 000440832 _____ (Vero Software Limited) [File not signed] C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\Utilities.dll
2019-02-21 17:27 - 2016-06-07 13:20 - 000030720 _____ (Vero Software Limited) [File not signed] C:\Program Files (x86)\Common Files\Vero Software\2016.10\Language\cs-CZ\CLS_res.dll
2019-02-21 17:27 - 2016-06-07 13:20 - 000056320 _____ (Vero Software Limited) [File not signed] C:\Program Files (x86)\Common Files\Vero Software\2016.10\Language\cs-CZ\lic_res.dll
2016-06-27 12:54 - 2016-06-27 12:54 - 001940992 _____ (Vero Software Ltd) [File not signed] C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\EdgeLicExt.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Classes\.scr: AutoCADLTScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Microsoft SQL Server\110\Tools\Binn\;C:\Program Files\Microsoft SQL Server\110\Tools\Binn\;C:\Program Files\Microsoft SQL Server\110\DTS\Binn\;C:\Program Files (x86)\combit\LL19\Redistributable Files\;C:\Program Files (x86)\combit\LL21\Redistributable Files\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Mira\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.10.10.10 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [{7E7F061E-AF66-45D5-9837-DFE050EFAC13}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E4642A05-38E3-473F-B547-3FF8B2673FE3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{CA8C55BF-8962-44FD-9553-12F5B721D05E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5DE740C7-5FF7-4D9B-8D02-83890C7CA0EA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5ED1D95D-8925-4DB5-B2D2-85A75E1B514D}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe (SafeNet, Inc. -> SafeNet, Inc)
FirewallRules: [{51A9F7FE-D08E-48EC-AC4A-4363207A0BBF}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe (SafeNet, Inc. -> SafeNet, Inc)
FirewallRules: [{F9763840-1D10-49CB-84FE-A302036B3B24}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe (SafeNet, Inc. -> SafeNet, Inc.)
FirewallRules: [{76F69ECA-2494-405F-9C41-A50E72E5FC04}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe (SafeNet, Inc. -> SafeNet, Inc.)
FirewallRules: [{79683441-AF54-4C26-BF87-306DB448F2C9}] => (Allow) C:\Windows\system32\hasplms.exe (SafeNet, Inc. -> SafeNet Inc.)
FirewallRules: [TCP Query User{FC40E351-BB2A-4D9F-9CA7-4E02B3F42D2B}C:\wdflash\bin\wscf.exe] => (Allow) C:\wdflash\bin\wscf.exe (T.P.A. S.p.A.) [File not signed]
FirewallRules: [UDP Query User{A85CB22E-760C-4725-A777-ECF101B38E4A}C:\wdflash\bin\wscf.exe] => (Allow) C:\wdflash\bin\wscf.exe (T.P.A. S.p.A.) [File not signed]
FirewallRules: [{3E9E5CAB-21E2-4897-8EF2-AA1E98E5187B}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{3CCDB3F4-E6F0-4A82-9820-894B996B373D}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{477D3CBD-CF5A-433E-8877-0D05DAF6A1E2}] => (Allow) C:\Program Files (x86)\Planit\Alphacam 2011 R1\ACAM.EXE (Licom Systems Ltd) [File not signed]
FirewallRules: [{CB0C0FA1-430D-470D-9192-F0FB6375DE85}] => (Allow) C:\Program Files (x86)\Planit\Alphacam 2011 R1\ACAM.EXE (Licom Systems Ltd) [File not signed]
FirewallRules: [{BAEDBFB5-B3A2-4CBB-B7D3-E9AFB28C35FE}] => (Allow) C:\Program Files (x86)\Planit\Alphacam 2011 R1\AEDIT.EXE (Licom Systems Ltd) [File not signed]
FirewallRules: [{B21F4D42-A571-45B7-AA66-D000291284EC}] => (Allow) C:\Program Files (x86)\Planit\Alphacam 2011 R1\AEDIT.EXE (Licom Systems Ltd) [File not signed]
FirewallRules: [{740266A9-C357-4F4D-9974-B5F8BE261046}] => (Allow) C:\Program Files\Zoner\Photo Studio 17\Program32\MediaServer.exe (ZONER software, a.s. -> ZONER software)
FirewallRules: [{F5DA30F9-849F-447A-962A-F555812A5F5B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5A1B44FC-81E4-4B58-9287-BE3F1BEA55C3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{600444E0-7D97-4FEF-9B9B-4A901AF93040}C:\users\mira\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\mira\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{A3EBDDFC-E60E-4B52-A783-4647A45F0BB8}C:\users\mira\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\mira\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{922F55A4-6C41-444E-BC3F-08D8D5DC75EE}C:\users\mira\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\mira\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{F5A4292F-D77C-4242-88F1-D21C0A2C5D3B}C:\users\mira\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\mira\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{026EF84E-6671-4CB4-8D5B-E721D013962C}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International BV -> TomTom)
FirewallRules: [{3E7B5B99-2387-491A-9F81-8269C1F93804}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{6309C2AF-5310-48FD-AE94-4C07C897DA89}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{66F7C335-1A77-4BC7-B49C-412E1B2A63E3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{30634844-A9A0-4117-9BCF-9469ADE19EAB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{2881190A-421F-4D34-AB13-D371F6BAE283}] => (Allow) C:\Planit\Common\PKeyServerCLS.exe (Vero Software, Inc. -> Vero Software, Ltd.)
FirewallRules: [{ABDF01D5-B3F9-4884-8D30-EF8B46BF3279}] => (Allow) C:\Planit\Common\PKeyServerCLS.exe (Vero Software, Inc. -> Vero Software, Ltd.)
FirewallRules: [{14658E63-D386-45AA-A211-0E7D52C916FD}] => (Allow) C:\Planit\Common\PKeyServerCLS.exe (Vero Software, Inc. -> Vero Software, Ltd.)
FirewallRules: [{1EDC4826-08FC-4A96-AD17-735A3D380F84}] => (Allow) C:\Planit\Common\PKeyServerCLS.exe (Vero Software, Inc. -> Vero Software, Ltd.)
FirewallRules: [{FABE59AB-8F57-4E10-AB66-B587AC613107}] => (Allow) C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientApplication.exe (Xopero Software S.A. -> Xopero Software S.A.)
FirewallRules: [{7833A194-17F5-4083-B20D-90578507EAB6}] => (Allow) C:\Users\Mira\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{935383E4-8ABF-41D0-AE2C-80F1B6BC3C77}] => (Allow) C:\Users\Mira\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{59F76DBB-8930-4CEC-9E0E-965CEAEAC3D0}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{94CA93E1-FFFA-4EAA-9440-0A6FD592AD4F}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{09361297-3421-4D88-BC0F-2D9C973D6227}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{308D3B8C-0BAA-4A80-8E04-1CBD962C237C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{9AC10793-2F97-4812-A83E-324E4CEDF2DC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{D168B48E-7283-4D3B-BDF5-423E92B9250A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{F197AF4B-4F35-41B4-B95E-A51483084B99}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{F4386DCA-CF11-4FA6-B679-C6E14428255E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

13-10-2019 02:05:47 Windows Update
17-10-2019 04:23:47 Windows Update
24-10-2019 23:00:03 Naplánovaný kontrolní bod
29-10-2019 06:57:23 Operace obnovení

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (11/01/2019 04:55:24 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/01/2019 04:54:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 6.1.7600.16385, časové razítko: 0x4a5bc3c1
Název chybujícího modulu: ESENT.dll, verze: 6.1.7601.17577, časové razítko: 0x4d79bfba
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000001aa6e4
ID chybujícího procesu: 0x2258
Čas spuštění chybující aplikace: 0x01d590680b47c924
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\ESENT.dll
ID zprávy: 5aac55dc-fc5b-11e9-b555-74d4350a2635

Error: (11/01/2019 04:54:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 6.1.7600.16385, časové razítko: 0x4a5bc3c1
Název chybujícího modulu: ESENT.dll, verze: 6.1.7601.17577, časové razítko: 0x4d79bfba
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000001aa6e4
ID chybujícího procesu: 0x458
Čas spuštění chybující aplikace: 0x01d590680b0e8ed7
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\ESENT.dll
ID zprávy: 48c7725a-fc5b-11e9-b555-74d4350a2635

Error: (11/01/2019 04:53:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 6.1.7600.16385, časové razítko: 0x4a5bc3c1
Název chybujícího modulu: ESENT.dll, verze: 6.1.7601.17577, časové razítko: 0x4d79bfba
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000001aa6e4
ID chybujícího procesu: 0x1da8
Čas spuštění chybující aplikace: 0x01d59067f8c938b2
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\ESENT.dll
ID zprávy: 36e5fddc-fc5b-11e9-b555-74d4350a2635

Error: (11/01/2019 04:53:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 6.1.7600.16385, časové razítko: 0x4a5bc3c1
Název chybujícího modulu: ESENT.dll, verze: 6.1.7601.17577, časové razítko: 0x4d79bfba
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000001aa6e4
ID chybujícího procesu: 0xcec
Čas spuštění chybující aplikace: 0x01d59067e7489883
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\ESENT.dll
ID zprávy: 2501f139-fc5b-11e9-b555-74d4350a2635

Error: (11/01/2019 04:52:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 6.1.7600.16385, časové razítko: 0x4a5bc3c1
Název chybujícího modulu: ESENT.dll, verze: 6.1.7601.17577, časové razítko: 0x4d79bfba
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000001aa6e4
ID chybujícího procesu: 0x1ca0
Čas spuštění chybující aplikace: 0x01d59067c3c133d7
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\ESENT.dll
ID zprávy: 1322518b-fc5b-11e9-b555-74d4350a2635

Error: (11/01/2019 04:52:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 6.1.7600.16385, časové razítko: 0x4a5bc3c1
Název chybujícího modulu: ESENT.dll, verze: 6.1.7601.17577, časové razítko: 0x4d79bfba
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000001aa6e4
ID chybujícího procesu: 0x2340
Čas spuštění chybující aplikace: 0x01d59067c382a22e
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\ESENT.dll
ID zprávy: 013df6c5-fc5b-11e9-b555-74d4350a2635

Error: (11/01/2019 04:51:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 6.1.7600.16385, časové razítko: 0x4a5bc3c1
Název chybujícího modulu: ESENT.dll, verze: 6.1.7601.17577, časové razítko: 0x4d79bfba
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000001aa6e4
ID chybujícího procesu: 0x215c
Čas spuštění chybující aplikace: 0x01d59067b1202627
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\ESENT.dll
ID zprávy: ef56540c-fc5a-11e9-b555-74d4350a2635


System errors:
=============
Error: (11/01/2019 04:54:51 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Windows Update byla neočekávaně ukončena. Tento stav nastal již 17krát.

Error: (11/01/2019 04:54:51 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Funkčnost aplikací byla neočekávaně ukončena. Tento stav nastal již 7krát.

Error: (11/01/2019 04:54:21 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Windows Update byla neočekávaně ukončena. Tento stav nastal již 16krát.

Error: (11/01/2019 04:53:51 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Windows Update byla neočekávaně ukončena. Tento stav nastal již 15krát.

Error: (11/01/2019 04:53:51 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Server byla neočekávaně ukončena. Tento stav nastal již 7krát.

Error: (11/01/2019 04:53:51 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Prohledávání počítačů byla neočekávaně ukončena. Tento stav nastal již 4krát.

Error: (11/01/2019 04:53:21 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Windows Update byla neočekávaně ukončena. Tento stav nastal již 14krát.

Error: (11/01/2019 04:52:51 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Windows Update byla neočekávaně ukončena. Tento stav nastal již 13krát.


Windows Defender:
===================================
Date: 2019-07-03 13:10:19.724
Description:
Modul programu %1 byl ukončen v důsledku neočekávané chyby.
Typ chyby:%5
Kód výjimky:%6
Zdroj:%3

Date: 2019-06-15 04:23:12.303
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Zálohování
Kód chyby:0x8050a005
Popis chyby:V programu nelze najít soubory definic, které pomáhají rozpoznat nežádoucí software. Zkontrolujte aktualizace definičních souborů a opakujte akci. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Verze podpisu:1.295.409.0
Verze modulu:1.1.16000.6

Date: 2019-06-15 04:23:09.682
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x8050a004
Popis chyby:Balíček neobsahuje aktuální soubor definic pro tento program. Další informace naleznete v nápovědě a podpoře.
Verze podpisu:1.295.609.0
Verze modulu:1.1.16000.6

Date: 2019-06-15 04:22:04.269
Description:
Modul programu %1 byl ukončen v důsledku neočekávané chyby.
Typ chyby:%5
Kód výjimky:%6
Zdroj:%3

Date: 2019-02-17 06:22:42.344
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:1.287.156.0
Předchozí verze podpisu:
Zdroj aktualizace:Uživatel
Typ podpisu:Antispywarový program
Typ aktualizace:Úplné
Uživatel:NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:1.1.15700.8
Předchozí verze modulu:
Kód chyby:0x8050a005
Popis chyby:V programu nelze najít soubory definic, které pomáhají rozpoznat nežádoucí software. Zkontrolujte aktualizace definičních souborů a opakujte akci. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

CodeIntegrity:
===================================

Date: 2019-01-18 11:35:49.643
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Mira\AppData\Local\Temp\ardrv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-01-18 11:35:49.573
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Mira\AppData\Local\Temp\ardrv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: American Megatrends Inc. F11 07/31/2013
Motherboard: Gigabyte Technology Co., Ltd. H77M-D3H
Processor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz
Percentage of memory in use: 47%
Total physical RAM: 8082.19 MB
Available physical RAM: 4207.84 MB
Total Virtual: 16162.52 MB
Available Virtual: 12329.38 MB

==================== Drives ================================

Drive c: (Win7) (Fixed) (Total:628.01 GB) (Free:402.14 GB) NTFS
Drive f: (Mira) (Fixed) (Total:303.4 GB) (Free:259.61 GB) NTFS
Drive r: (Ruzne) (Network) (Total:172.69 GB) (Free:142.23 GB) NTFS
Drive s: (Sprint) (Network) (Total:195.31 GB) (Free:136.73 GB) NTFS
Drive v: () (Network) (Total:97.56 GB) (Free:8.24 GB) NTFS


==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 61E06984)
Partition 1: (Active) - (Size=100 MB) - (Type=17)
Partition 2: (Not Active) - (Size=628 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=303.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivní kontrola

#6 Příspěvek od Conder »

:arrow: Odporucam odinstalovat Bing Bar

:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

    Kód: Vybrat vše

    Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum

HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\Policies\Explorer: [] 
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {71edd97c-ca35-11e9-879a-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {b7fb1081-1e3e-11e9-b678-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {c1e88568-805f-11e9-840c-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {d86387db-90c1-11e9-87cb-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {ef75f075-5f6f-11e9-8303-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {ef75f087-5f6f-11e9-8303-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {f42689c7-14a0-11e9-a574-806e6f6e6963} - D:\Run.exe
HKU\S-1-5-18\...\Run: [] => [X]
Task: {26364DBA-13DA-41AF-AD59-BBDA4DEB6106} - System32\Tasks\{CDF594DB-727C-43A1-84EA-C7A4765F28C0} => C:\Windows\system32\pcalua.exe -a C:\Users\Mira\Downloads\ARM160-M161-M162-M165-M205-M206-M207-5220_DRV_PCL6-PS-WinXP64-Vista64-2k364-2k864-ver0911a_CZ.exe -d C:\Users\Mira\Downloads
Task: {E6907BB7-6B02-4126-BB34-6F3BBF111D7F} - System32\Tasks\{7F5A5A82-8941-480B-8D71-794EA4B363CA} => C:\Windows\system32\pcalua.exe -a C:\Users\Mira\Downloads\Norton_Removal_Tool(1).exe -d C:\Users\Mira\Downloads
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://nmd.msn.com
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1064124205-772266194-2725748559-1000 -> DefaultScope {3061F580-B649-41A4-9307-CE3EB11D800E} URL = 
SearchScopes: HKU\S-1-5-21-1064124205-772266194-2725748559-1000 -> {3061F580-B649-41A4-9307-CE3EB11D800E} URL = 
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKU\S-1-5-21-1064124205-772266194-2725748559-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
FF Extension: (No Name) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn [2019-01-11] [not signed]
FF Extension: (No Name) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn [2019-01-11] [not signed]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\Exts\Chrome.crx <not found>
S3 ardrv; \??\C:\Users\Mira\AppData\Local\Temp\ardrv.sys [X] <==== ATTENTION
2019-10-30 12:49 - 2019-10-30 12:55 - 000000000 ____D C:\Program Files\trend micro
2019-10-30 12:49 - 2019-10-30 12:50 - 000000000 ____D C:\rsit
2019-10-30 12:49 - 2019-10-30 12:49 - 001222144 _____ C:\Users\Mira\Downloads\RSITx64.exe

Hosts:
EmptyTemp:
End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
Mirda74
Návštěvník
Návštěvník
Příspěvky: 29
Registrován: 30 říj 2019 12:44

Re: Preventivní kontrola

#7 Příspěvek od Mirda74 »

zasílám txt


Fix result of Farbar Recovery Scan Tool (x64) Version: 01-11-2019
Ran by Mira (04-11-2019 06:34:23) Run:2
Running from C:\Users\Mira\Desktop
Loaded Profiles: Mira (Available Profiles: Mira)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum

HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\Policies\Explorer: []
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {71edd97c-ca35-11e9-879a-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {b7fb1081-1e3e-11e9-b678-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {c1e88568-805f-11e9-840c-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {d86387db-90c1-11e9-87cb-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {ef75f075-5f6f-11e9-8303-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {ef75f087-5f6f-11e9-8303-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {f42689c7-14a0-11e9-a574-806e6f6e6963} - D:\Run.exe
HKU\S-1-5-18\...\Run: [] => [X]
Task: {26364DBA-13DA-41AF-AD59-BBDA4DEB6106} - System32\Tasks\{CDF594DB-727C-43A1-84EA-C7A4765F28C0} => C:\Windows\system32\pcalua.exe -a C:\Users\Mira\Downloads\ARM160-M161-M162-M165-M205-M206-M207-5220_DRV_PCL6-PS-WinXP64-Vista64-2k364-2k864-ver0911a_CZ.exe -d C:\Users\Mira\Downloads
Task: {E6907BB7-6B02-4126-BB34-6F3BBF111D7F} - System32\Tasks\{7F5A5A82-8941-480B-8D71-794EA4B363CA} => C:\Windows\system32\pcalua.exe -a C:\Users\Mira\Downloads\Norton_Removal_Tool(1).exe -d C:\Users\Mira\Downloads
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://nmd.msn.com
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1064124205-772266194-2725748559-1000 -> DefaultScope {3061F580-B649-41A4-9307-CE3EB11D800E} URL =
SearchScopes: HKU\S-1-5-21-1064124205-772266194-2725748559-1000 -> {3061F580-B649-41A4-9307-CE3EB11D800E} URL =
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKU\S-1-5-21-1064124205-772266194-2725748559-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
FF Extension: (No Name) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn [2019-01-11] [not signed]
FF Extension: (No Name) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn [2019-01-11] [not signed]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\Exts\Chrome.crx <not found>
S3 ardrv; \??\C:\Users\Mira\AppData\Local\Temp\ardrv.sys [X] <==== ATTENTION
2019-10-30 12:49 - 2019-10-30 12:55 - 000000000 ____D C:\Program Files\trend micro
2019-10-30 12:49 - 2019-10-30 12:50 - 000000000 ____D C:\rsit
2019-10-30 12:49 - 2019-10-30 12:49 - 001222144 _____ C:\Users\Mira\Downloads\RSITx64.exe

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========



Count : 14
Average :
Sum : 11013850
Maximum :
Minimum :
Property : Length


========= End of Powershell: =========

"HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\" => not found
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{71edd97c-ca35-11e9-879a-74d4350a2635} => not found
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b7fb1081-1e3e-11e9-b678-74d4350a2635} => not found
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c1e88568-805f-11e9-840c-74d4350a2635} => not found
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d86387db-90c1-11e9-87cb-74d4350a2635} => not found
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ef75f075-5f6f-11e9-8303-74d4350a2635} => not found
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ef75f087-5f6f-11e9-8303-74d4350a2635} => not found
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f42689c7-14a0-11e9-a574-806e6f6e6963} => not found
"HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{26364DBA-13DA-41AF-AD59-BBDA4DEB6106}" => not found
"C:\Windows\System32\Tasks\{CDF594DB-727C-43A1-84EA-C7A4765F28C0}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{CDF594DB-727C-43A1-84EA-C7A4765F28C0}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E6907BB7-6B02-4126-BB34-6F3BBF111D7F}" => not found
"C:\Windows\System32\Tasks\{7F5A5A82-8941-480B-8D71-794EA4B363CA}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7F5A5A82-8941-480B-8D71-794EA4B363CA}" => not found
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
"HKU\S-1-5-21-1064124205-772266194-2725748559-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3061F580-B649-41A4-9307-CE3EB11D800E} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} => not found
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{8dcb7100-df86-4384-8842-8fa844297b3f}" => not found
"HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => not found
"C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn" => not found
"C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn" => not found
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => not found
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk => not found
ardrv => service not found.
"C:\Program Files\trend micro" => not found
"C:\rsit" => not found
"C:\Users\Mira\Downloads\RSITx64.exe" => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8505686 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 382993 B
Edge => 0 B
Chrome => 0 B
Firefox => 14518335 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
systemprofile32 => 128 B
LocalService => 128 B
NetworkService => 128 B
Mira => 55925181 B

RecycleBin => 0 B
EmptyTemp: => 83.7 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 06:35:05 ====
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivní kontrola

#8 Příspěvek od Conder »

Ako to vyzera s PC? Nastala nejaka zmena alabo su este nejake problemy?
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
Mirda74
Návštěvník
Návštěvník
Příspěvky: 29
Registrován: 30 říj 2019 12:44

Re: Preventivní kontrola

#9 Příspěvek od Mirda74 »

stále stejné, ikonky někdy jsou, někdy ne :(

Ale všiml jsem si, že mám nastaveno motiv prostředí Aero a to nefunguje správně.
I když dám řešit problém, tak to na chvíli funguje, ale po té se motiv prostředí změní na základní Win.
Mám grafickou kartu integrovanou na základní desce. Zkusil jsem i přidat samostatnou, ale nepomohlo.

:( :(
Přílohy
pict_02.jpg
pict_02.jpg (40.56 KiB) Zobrazeno 2838 x
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivní kontrola

#10 Příspěvek od Conder »

Vies poslat aj screenshot (snimku obrazovky) ako vyzeraju tie zmiznute ikony?

Aka je v PC graficka karta? Podla logu je v PC procesor Intel i5-3470 a ten obsahuje integrovanu GPU Intel HD Graphics 2500.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
Mirda74
Návštěvník
Návštěvník
Příspěvky: 29
Registrován: 30 říj 2019 12:44

Re: Preventivní kontrola

#11 Příspěvek od Mirda74 »

Byl jsem mimo PC nějaký čas, proto až teď.

Posílám screenshot.
Přílohy
doc1.pdf
(508.05 KiB) Staženo 82 x
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivní kontrola

#12 Příspěvek od Conder »

:arrow: Spusti kontrolu integrity systemovych suborov:
  • Otvor Start, napis "cmd" (bez uvodzoviek), klikni pravym tlacitkom mysi na Prikazovy riadok a klikni na Spustit ako spravca
  • Skopiruj a spusti prikaz:

    Kód: Vybrat vše

    sfc /scannow
  • Po dokonceni skopiruj a spusti tento prikaz:

    Kód: Vybrat vše

    findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >> "%userprofile%\desktop\sfcdetails.txt"
  • Na ploche sa vytvori subor sfcdetails.txt, zabal ho do archivu RAR alebo ZIP a posli ako prilohu k dalsiemu prispevku
  • Restartuj PC a napis ako sa chova PC
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
Mirda74
Návštěvník
Návštěvník
Příspěvky: 29
Registrován: 30 říj 2019 12:44

Re: Preventivní kontrola

#13 Příspěvek od Mirda74 »

Posílám soubor.

Po restartu vše fungovalo správně. Cca po minutě "problikla" obrazovka a nastavení Aero opět zmizelo, ale po cca dalších dvou minutách opět probliknutí a Aero nastavení se "vrátilo".

Tak uvidíme, co se bude dít během práce na PC.
Pozn:
Minulý týden jsem odpojil dočasnou novou grafickou kartu, teď PC jede se stávající GK integrovanou na základní desce.

m.
Přílohy
sfcdetails.zip
(5.42 KiB) Staženo 64 x
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivní kontrola

#14 Příspěvek od Conder »

Motherboard: Gigabyte Technology Co., Ltd. H77M-D3H
Processor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz

Z pouziteho modelu dosky a procesoru (CPU) vyplyva, ze GPU je integrovana v CPU, nie na doske (dnes uz takmer ziadne bezne zakladne dosky nemaju integrovanu GPU).

V CPU Intel i5 3470 sa nachadza integrovana GPU Intel® HD Graphics 2500. Pokial chces nechat PC bezat iba na tejto grafike, odinstaluj vsetky ovladace k ostatnych grafickych kartam a ponechaj iba ovladace pre Intel grafiku. Ovladace odinstaluj aj cez Display Driver Uninstaller (DDU): https://www.guru3d.com/files-details/di ... nload.html
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
Mirda74
Návštěvník
Návštěvník
Příspěvky: 29
Registrován: 30 říj 2019 12:44

Re: Preventivní kontrola

#15 Příspěvek od Mirda74 »

OK,

odinstaluji všechny ovladače a zkusím pozorovat, co se bude dít.

Díky.
Nahoru
Odpovědět

Zpět na „Preventivní kontroly logů“