Prosím o kontrolu

[Brzda]

Poslední dobou se mi stává, že se z ničeho nic zaseknou otevřené aplikace a chvíli nereagují.

Kód: Vybrat vše

Logfile of random's system information tool 1.16 (written by random/random) 
Run by Lukas at 2017-06-11 12:53:37
Microsoft Windows 10 Pro 
System drive C: has 45 GB (37%) free of 122 GB
Total RAM: 16332 MB (36% free)
X64

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:01:03, on 11.06.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\Lukáš Brzobohatý\AppData\Local\Microsoft\OneDrive\OneDrive.exe
F:\World_of_Tanks\WargamingGameUpdater.exe
C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\Spotify.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
F:\World_of_Tanks\worldoftanks.exe
C:\Program Files\trend micro\Lukas_RSITx64.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Lukáš Brzobohatý\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [World of Tanks] "F:\World_of_Tanks\WargamingGameUpdater.exe"
O4 - HKCU\..\Run: [AdobeBridge] "C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe" -stealth
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Spotify] "C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
O4 - HKCU\..\Run: [com.squirrel.slack.slack] "C:\Users\Lukáš Brzobohatý\AppData\Local\slack\Update.exe" --processStart "slack.exe" --process-start-args "--startup"
O4 - HKCU\..\Run: [Docker for Windows] "C:\Program Files\Docker\Docker\Docker for Windows.exe"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Lukáš Brzobohatý\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Lukáš Brzobohatý\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Lukáš Brzobohatý\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Lukáš Brzobohatý\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: 127.0.0.1
O15 - Trusted IP range: 192.168.0.250
O15 - Trusted IP range: 192.168.0.251
O15 - Trusted IP range: 192.168.0.252
O15 - Trusted IP range: 192.168.0.10
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe
O23 - Service: Docker for Windows Service (com.docker.service) - Unknown owner - C:\Program.exe (file missing)
O23 - Service: Developer Tools Service (DeveloperToolsService) - Unknown owner - C:\WINDOWS\System32\DeveloperToolsSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 11 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vmcompute.exe,-100 (vmcompute) - Unknown owner - C:\WINDOWS\system32\vmcompute.exe (file missing)
O23 - Service: @%systemroot%\system32\vmms.exe,-10 (vmms) - Unknown owner - C:\WINDOWS\system32\vmms.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10867 bytes

====== Enumerating Processes ======

C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k NetworkService
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-b152a413-07c7-4e71-9fdf-1b80e5a61efa -SystemEventPortName:HostProcess-e1da7a8f-7050-45df-8658-1ebe91e538b1 -IoCancelEventPortName:HostProcess-e30fc9ac-583c-48af-a51c-2c2785c0d008 -NonStateChangingEventPortName:HostProcess-64e58658-6a54-4938-a01b-e40bb6796617 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:deb7de51-6bf0-4253-baa2-3d481bfc63b7 -DeviceGroupId:WpdFsGroup
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\dashost.exe
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files\Docker\Docker\com.docker.service"
"C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
"C:\Program Files (x86)\Origin\OriginWebHelperService.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k SshBrokerGroup
C:\WINDOWS\system32\vmms.exe
C:\WINDOWS\system32\svchost.exe -k SshProxyGroup
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\vmcompute.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
C:\WINDOWS\System32\dwm.exe
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
C:\Program Files\AVAST Software\Avast\AvastUI.exe
"C:\Users\Lukáš Brzobohatý\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"F:\World_of_Tanks\WargamingGameUpdater.exe" 
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe" -Embedding
"C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe" -stealth
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --disable-gpu-compositing --no-sandbox --primordial-pipe-token=6054DF01A9565DD8591A0A4B464FF0C9 --lang=en-US --lang=en-US --log-file="C:\Users\Lukáš Brzobohatý\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\debug.log" --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --service-request-channel-token=6054DF01A9565DD8591A0A4B464FF0C9 --renderer-client-id=2 --mojo-platform-channel-handle=1592 /prefetch:1
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\SpotifyWebHelper.exe" 
"C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
"C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\Spotify.exe" --type=crashpad-handler /prefetch:7 --max-uploads=5 --max-db-size=20 --max-db-age=5 "--database=C:\Users\Lukáš Brzobohatý\AppData\Local\Spotify\User Data\Crashpad" "--metrics-dir=C:\Users\Lukáš Brzobohatý\AppData\Local\Spotify\User Data" --url=https://crashdump.spotify.com:443 --annotation=channel= --annotation=platform=win32 --annotation=product=spotify --annotation=version=1.0.56.451 --initial-client-data=0x4b4,0x4b8,0x4bc,0x4ac,0x4c0,0x58218214,0x58218224,0x58218234
"C:\Users\Lukáš Brzobohatý\AppData\Local\slack\app-2.6.2\slack.exe" --startup
"C:\Program Files\Docker\Docker\Docker for Windows.exe" 
"C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\Spotify.exe" --type=gpu-process --no-sandbox --disable-d3d11 --lang=en-US --log-file="C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\debug.log" --log-severity=disable --product-version=Spotify/1.0.56.451 --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,19,20,23,41,74 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x10de --gpu-device-id=0x1187 --gpu-driver-vendor=NVIDIA --gpu-driver-version=22.21.13.8233 --gpu-driver-date=5-17-2017 --lang=en-US --log-file="C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\debug.log" --log-severity=disable --product-version=Spotify/1.0.56.451 --service-request-channel-token=F3100DE5803239BD37E8CF3C2A056931 --mojo-platform-channel-handle=1764 /prefetch:2
"C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\Spotify.exe" --type=renderer --disable-pinch --no-sandbox --primordial-pipe-token=3D8AD2F9323BC809B88C1A0B040AFA51 --lang=en-US --lang=en-US --log-file="C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\debug.log" --log-severity=disable --product-version=Spotify/1.0.56.451 --disable-spell-checking --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=3D8AD2F9323BC809B88C1A0B040AFA51 --renderer-client-id=3 --mojo-platform-channel-handle=2564 /prefetch:1
"C:\Users\Lukáš Brzobohatý\AppData\Local\slack\app-2.6.2\slack.exe" --type=gpu-process --no-sandbox --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,19,20,23,40,71 --gpu-vendor-id=0x10de --gpu-device-id=0x1187 --gpu-driver-vendor=NVIDIA --gpu-driver-version=22.21.13.8233 --gpu-driver-date=5-17-2017 --service-request-channel-token=E8AAE49F7C4F501CE2CEED508B4553CA --mojo-platform-channel-handle=1340 /prefetch:2
"C:\Users\Lukáš Brzobohatý\AppData\Local\slack\app-2.6.2\slack.exe" --reporter-url=https://slack.com/apps/breakpad --application-name=Slack "--crashes-directory=C:\Users\Lukáš Brzobohatý\AppData\Roaming\Slack\temp\Slack Crashes" --v=1
"C:\Users\Lukáš Brzobohatý\AppData\Local\slack\app-2.6.2\slack.exe" --type=renderer --disable-pinch --no-sandbox --primordial-pipe-token=4B021BB74D21814A840FC1F4DA659A64 --lang=cs --standard-schemes=slack-resources,slack-webapp-dev --app-user-model-id=com.squirrel.slack.slack --app-path="C:\Users\Lukáš Brzobohatý\AppData\Local\slack\app-2.6.2\resources\app.asar" --node-integration=true --preload="C:\Users\Lukáš Brzobohatý\AppData\Local\slack\app-2.6.2\resources\app.asar\src\static\index.js" --hidden-page --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=4B021BB74D21814A840FC1F4DA659A64 --renderer-client-id=4 --mojo-platform-channel-handle=1784 /prefetch:1
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" 
"C:\Users\Lukáš Brzobohatý\AppData\Local\slack\app-2.6.2\slack.exe" --type=renderer --disable-pinch --no-sandbox --primordial-pipe-token=147FA0C5C77966148AFCD21E1A49729E --lang=cs --standard-schemes=slack-resources,slack-webapp-dev --app-user-model-id=com.squirrel.slack.slack --app-path="C:\Users\Lukáš Brzobohatý\AppData\Local\slack\app-2.6.2\resources\app.asar" --node-integration=false --preload="C:\Users\Lukáš Brzobohatý\AppData\Local\slack\app-2.6.2\resources\app.asar\src\static\ssb-interop" --guest-instance-id=1 --enable-blink-features --disable-blink-features --hidden-page --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=147FA0C5C77966148AFCD21E1A49729E --renderer-client-id=6 --mojo-platform-channel-handle=2256 /prefetch:1
"C:\Program Files\Docker\Docker\Resources\com.docker.db.exe" --url hyperv-connect://c0a4d63a-6e2d-4c70-af8d-692028ae0420,\\.\pipe\dockerDataBase --color never
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Windows\System32\vmwp.exe" C0A4D63A-6E2D-4C70-AF8D-692028AE0420 0x214
"C:\Program Files\Docker\Docker\Resources\com.docker.slirp.exe" --ethernet hyperv-connect://c0a4d63a-6e2d-4c70-af8d-692028ae0420 --port hyperv-connect://c0a4d63a-6e2d-4c70-af8d-692028ae0420 --db \\.\pipe\dockerDataBase --debug --diagnostics \\.\pipe\dockerVpnKitDiagnostics
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\fontdrvhost.exe
"C:\Program Files\Docker\Docker\Resources\com.docker.proxy.exe" -VM=c0a4d63a-6e2d-4c70-af8d-692028ae0420 
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe" 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=58.0.3029.110 --initial-client-data=0x1ac,0x1b0,0x1b4,0x1a8,0x1b8,0x7ff9c0ca2968,0x7ff9c0ca2980,0x7ff9c0ca2990
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=2028 --on-initialized-event-handle=560 --parent-handle=564 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=784 --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,19,20,23,41,74 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x10de --gpu-device-id=0x1187 --gpu-driver-vendor=NVIDIA --gpu-driver-version=22.21.13.8233 --gpu-driver-date=5-17-2017 --service-request-channel-token=02557EAC121B465164B150274599FE54 --mojo-platform-channel-handle=1428 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=784 --primordial-pipe-token=583203C278F1F8F8FE93CF2E8421EBF0 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=583203C278F1F8F8FE93CF2E8421EBF0 --renderer-client-id=4 --mojo-platform-channel-handle=2592 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=784 --primordial-pipe-token=C780E7623A1DD8ECB214193EA4DA2847 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=C780E7623A1DD8ECB214193EA4DA2847 --renderer-client-id=5 --mojo-platform-channel-handle=2432 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=784 --primordial-pipe-token=B9527476D4CDB09F9F2DFE802F94C491 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=B9527476D4CDB09F9F2DFE802F94C491 --renderer-client-id=6 --mojo-platform-channel-handle=2616 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=784 --primordial-pipe-token=1F01941CF2042F767EB07D0375EE4F18 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=1F01941CF2042F767EB07D0375EE4F18 --renderer-client-id=14 --mojo-platform-channel-handle=3124 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=784 --primordial-pipe-token=F6056DFE82332CFEAB2245053797CBAC --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=F6056DFE82332CFEAB2245053797CBAC --renderer-client-id=7 --mojo-platform-channel-handle=3288 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=784 --primordial-pipe-token=DA54F13A34454CCCB2E3432EE3546F96 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=DA54F13A34454CCCB2E3432EE3546F96 --renderer-client-id=8 --mojo-platform-channel-handle=3552 /prefetch:1
C:\WINDOWS\system32\AUDIODG.EXE 0x44c
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=784 --primordial-pipe-token=01494D3DF3B091BCFA590A971346C8DF --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=01494D3DF3B091BCFA590A971346C8DF --renderer-client-id=17 --mojo-platform-channel-handle=6244 /prefetch:1
"C:\Program Files\Altap Salamander\salamand.exe" 
"C:\Program Files\Altap Salamander\utils\salmon.exe" "SalmonAB4" "czech.slg"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=784 --primordial-pipe-token=DB66D366D4753FC2EA3EC57211A6FE71 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=DB66D366D4753FC2EA3EC57211A6FE71 --renderer-client-id=9 --mojo-platform-channel-handle=7788 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=784 --primordial-pipe-token=481291B1C43E182CD01F16D1A4984AD6 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=481291B1C43E182CD01F16D1A4984AD6 --renderer-client-id=13 --mojo-platform-channel-handle=2276 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=784 --primordial-pipe-token=2FBCAA034E19B8AAA24CBF8181D864F1 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=2FBCAA034E19B8AAA24CBF8181D864F1 --renderer-client-id=12 --mojo-platform-channel-handle=9012 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=784 --primordial-pipe-token=A6324E23CC9BD49909E3636B2DF8850B --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=A6324E23CC9BD49909E3636B2DF8850B --renderer-client-id=22 --mojo-platform-channel-handle=9772 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=784 --primordial-pipe-token=FEEDF9A267FC471206EAF5725DB5A928 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=FEEDF9A267FC471206EAF5725DB5A928 --renderer-client-id=10 --mojo-platform-channel-handle=10232 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=784 --primordial-pipe-token=F05C10E8C672BBA360861A062D5FE933 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=F05C10E8C672BBA360861A062D5FE933 --renderer-client-id=11 --mojo-platform-channel-handle=10360 /prefetch:1
"F:\World_of_Tanks\worldoftanks.exe" wot_wait_for_mutex
"C:\WINDOWS\system32\rundll32.exe" -localserver 22d8c27b-47a1-48d1-ad08-7da7abd79617
"C:\WINDOWS\system32\taskmgr.exe" /4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=784 --primordial-pipe-token=E0E07C21C82B3E8718450C3EC5E9F18E --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=E0E07C21C82B3E8718450C3EC5E9F18E --renderer-client-id=65 --mojo-platform-channel-handle=9288 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=784 --primordial-pipe-token=3847D5393BFBB1D85FA27CAEE8345E93 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=3847D5393BFBB1D85FA27CAEE8345E93 --renderer-client-id=68 --mojo-platform-channel-handle=11664 /prefetch:1
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=784 --primordial-pipe-token=BA00B4113C743C42B681973570D92C9D --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --service-request-channel-token=BA00B4113C743C42B681973570D92C9D --renderer-client-id=88 --mojo-platform-channel-handle=10644 /prefetch:1
"D:\download\RSITx64.exe" 

====== Scheduled tasks folder ======

C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\tasks\AdobeAAMUpdater-1.0-LUKAS-Lukas - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
C:\WINDOWS\system32\tasks\Avast Emergency Update - C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
C:\WINDOWS\system32\tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe"
C:\WINDOWS\system32\tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
C:\WINDOWS\system32\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\WINDOWS\system32\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\WINDOWS\system32\tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
C:\WINDOWS\system32\tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe --logon
C:\WINDOWS\system32\tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task v2 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe 
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{D531FBDD-655E-472B-A535-3BBCFB734862} - C:\WINDOWS\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Subsystem for Linux\AptPackageIndexUpdate - %comspec% /c start "AptPackageIndexUpdate" /min %windir%\System32\LxRun.exe /update
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - %SystemRoot%\system32\UpgradeSubscription.exe -e
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\LicenseAcquisition - %SystemRoot%\system32\UpgradeSubscription.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs

=========Mozilla firefox=========

ProfilePath - C:\Users\Lukáš Brzobohatý\AppData\Roaming\Mozilla\Firefox\Profiles\2yblppzm.default

prefs.js - "browser.startup.homepage" -  "www.google.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@vmware.com/vmrc,version=5.5.0.00000]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\synology.com/SurveillancePlugin]
"Description"=
"Path"=C:\Program Files (x86)\Synology\SurveillancePlugin\1.0.0.975\npSurveillancePlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Web Components]
"Description"=
"Path"=C:\Program Files (x86)\Web Components\npWebVideoPlugin.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.131.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.131.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\synology.com/SurveillancePlugin_x86_64]
"Description"=
"Path"=C:\Program Files (x86)\Synology\SurveillancePlugin\1.0.0.975\npSurveillancePlugin_x86_64.dll


C:\Users\Lukáš Brzobohatý\AppData\Roaming\Mozilla\Firefox\Profiles\2yblppzm.default\addons.json
Firebug - extension - firebug@software.joehewitt.com
FireLogger - extension - firelogger@hildebrand.cz

C:\Users\Lukáš Brzobohatý\AppData\Roaming\Mozilla\Firefox\Profiles\2yblppzm.default\extensions.json
FireLogger - extension - firelogger@hildebrand.cz - C:\Users\Lukáš Brzobohatý\AppData\Roaming\Mozilla\Firefox\Profiles\2yblppzm.default\extensions\firelogger@hildebrand.cz.xpi
Firebug - extension - firebug@software.joehewitt.com - C:\Users\Lukáš Brzobohatý\AppData\Roaming\Mozilla\Firefox\Profiles\2yblppzm.default\extensions\firebug@software.joehewitt.com.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Follow-on Search Telemetry - extension - followonsearch@mozilla.com - C:\Users\Lukáš Brzobohatý\AppData\Roaming\Mozilla\Firefox\Profiles\2yblppzm.default\features\{bf8dc707-c67a-4ead-b0b1-2ab24c36af94}\followonsearch@mozilla.com.xpi
Shield Recipe Client - extension - shield-recipe-client@mozilla.org - C:\Users\Lukáš Brzobohatý\AppData\Roaming\Mozilla\Firefox\Profiles\2yblppzm.default\features\{bf8dc707-c67a-4ead-b0b1-2ab24c36af94}\shield-recipe-client@mozilla.org.xpi

C:\Users\Lukáš Brzobohatý\AppData\Roaming\Mozilla\Firefox\Profiles\2yblppzm.default\pluginreg.dat

=========Google Chrome=========

C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentace Google 0.9
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension ahjaciijnoiaklcomgnblndopackapon 1 Identity API Scope Approval UI 1.1
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0  
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension clhhggbfdinjmjhajaheehoeibfljjno 1 Telegram 0.5.4
Extension eelcnbccaccipfolokglfhhmapdchbfg 1 RESTED 1.0.0
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 2 Adobe Acrobat 15.1.0.3
Extension fbcohnmimjicjdomonkcbcpbpnhggkip 1 MyJDownloader Browser Extension 3.1.10
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabulky Google 1.1
Extension fhbjgbiflinjbdggehcddcbncdddomop 1 Postman 4.11.1
Extension fmkadmapgofadopljbjfkapdkoienihi 1 React Developer Tools 2.3.3
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension gidgenkbbabolejbgbpnhbimgjbffefm 0 Vysor 1.7.7
Extension gighmmpiobklfepjocnamgkkbiglidom 1 AdBlock 3.10.0
Extension gomekmidlodglbbmalcneegieacbdmki 2 Avast Online Security 11.1.0.955
Extension hmagilfopmdjkeomnjpchokglfdfjfeh 1 FireLogger for Chrome 1.0.1
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension kmhopmchchfpfdcdjodmpfaaphdclmlj 1 Gmail 2016.7.26.48047
Extension knipolnnllmklapflnccelgolnpehhpl 1 Hangouts Google 2017.420.419.1
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf   
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmkinhboiljjkhaknpaeaicmdjhagpep 1 F.B.(FluffBusting)Purity 19.0.1.4
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.2
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkclgpgponpjmpfokoepglboejdobkpl 1 Inbox by Gmail 1.0.2
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5817.313.0.5
Homepage: http://www.google.com/
default_search_provider.search_url: 
C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage: 
default_search_provider.search_url: 

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki]
"Path"=


======Registry dump ======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-04-22 571456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-22 234560]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-07-25 8804608]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2017-05-03 1893496]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-11-21 500208]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-05-27 213824]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Lukáš Brzobohatý\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-04-08 1518808]
"World of Tanks"=F:\World_of_Tanks\WargamingGameUpdater.exe [2017-02-28 3135752]
"AdobeBridge"=C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe [2010-03-09 11989960]
"Spotify Web Helper"=C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2017-06-03 1560176]
"Spotify"=C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\Spotify.exe [2017-06-03 6949488]
"com.squirrel.slack.slack"=C:\Users\Lukáš Brzobohatý\AppData\Local\slack\Update.exe [2017-05-26 1979360]
"Docker for Windows"=C:\Program Files\Docker\Docker\Docker for Windows.exe [2017-05-11 1355736]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Lukáš Brzobohatý\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"=C:\WINDOWS\system32\cmd.exe [2016-07-16 232960]
"Uninstall C:\Users\Lukáš Brzobohatý\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1"=C:\WINDOWS\system32\cmd.exe [2016-07-16 232960]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-03-15 587288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath" = "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

====== File associations ======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

====== List of files/folders created in the last 1 month ======

2017-06-11 12:53:38 ----D---- C:\Program Files\trend micro
2017-06-11 12:53:37 ----D---- C:\rsit
2017-06-10 19:14:27 ----D---- C:\ProgramData\SWCUTemp
2017-06-10 19:14:23 ----A---- C:\WINDOWS\system32\aswBoot.exe
2017-06-10 15:21:13 ----D---- C:\Program Files\RealVNC
2017-06-10 15:12:53 ----D---- C:\Users\Lukáš Brzobohatý\AppData\Roaming\RealVNC
2017-06-06 18:49:37 ----A---- C:\WINDOWS\system32\drivers\lpsport.sys
2017-05-24 20:32:39 ----D---- C:\Users\Lukáš Brzobohatý\AppData\Roaming\Sublime Text 3
2017-05-24 20:32:31 ----AD---- C:\Program Files\Sublime Text 3
2017-05-22 19:50:40 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2017-05-22 19:50:22 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2017-05-22 19:50:22 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2017-05-22 19:50:22 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2017-05-22 19:50:22 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2017-05-22 19:50:21 ----D---- C:\Program Files (x86)\VulkanRT
2017-05-22 19:43:03 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2017-05-22 19:43:03 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2017-05-22 19:43:03 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2017-05-22 19:43:03 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-05-22 19:43:03 ----A---- C:\WINDOWS\system32\nvopencl.dll
2017-05-22 19:43:03 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2017-05-22 19:43:02 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2017-05-22 19:43:02 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2017-05-22 19:43:02 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2017-05-22 19:43:02 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2017-05-22 19:43:01 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2017-05-22 19:43:01 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2017-05-22 19:43:01 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2017-05-22 19:43:01 ----A---- C:\WINDOWS\SYSWOW64\nvEncMFTH264.dll
2017-05-22 19:43:01 ----A---- C:\WINDOWS\SYSWOW64\nvDecMFTMjpeg.dll
2017-05-22 19:43:01 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2017-05-22 19:43:01 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2017-05-22 19:43:01 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2017-05-22 19:43:01 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2017-05-22 19:43:01 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-05-22 19:43:01 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-05-22 19:43:01 ----A---- C:\WINDOWS\system32\nvEncMFTH264.dll
2017-05-22 19:43:01 ----A---- C:\WINDOWS\system32\nvdispgenco6438233.dll
2017-05-22 19:43:01 ----A---- C:\WINDOWS\system32\nvdispco6438233.dll
2017-05-22 19:43:01 ----A---- C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-05-22 19:43:01 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2017-05-22 19:43:01 ----A---- C:\WINDOWS\system32\nvcuda.dll
2017-05-22 19:43:01 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2017-05-19 19:37:16 ----D---- C:\WINDOWS\Panther
2017-05-19 19:16:29 ----A---- C:\WINDOWS\system32\nvhdap64.dll
2017-05-19 19:16:25 ----A---- C:\WINDOWS\system32\nvdispgenco6438205.dll
2017-05-19 19:16:25 ----A---- C:\WINDOWS\system32\nvdispco6438205.dll
2017-05-19 19:06:13 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2017-05-19 19:06:13 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2017-05-18 18:56:49 ----D---- C:\Users\Lukáš Brzobohatý\AppData\Roaming\Google
2017-05-15 20:21:05 ----D---- C:\Program Files\Robomongo 1.0.0
2017-05-12 19:33:47 ----D---- C:\Program Files\Docker

====== List of files/folders modified in the last 1 month ======

2017-06-11 12:57:17 ----D---- C:\WINDOWS\Temp
2017-06-11 12:53:38 ----RD---- C:\Program Files
2017-06-11 12:45:00 ----D---- C:\WINDOWS\system32\sru
2017-06-11 12:44:38 ----D---- C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify
2017-06-11 12:29:47 ----D---- C:\WINDOWS\system32\SleepStudy
2017-06-11 12:25:53 ----D---- C:\ProgramData\NVIDIA
2017-06-11 11:47:04 ----D---- C:\Users\Lukáš Brzobohatý\AppData\Roaming\vlc
2017-06-11 08:52:45 ----D---- C:\WINDOWS\Prefetch
2017-06-11 08:49:55 ----D---- C:\WINDOWS\system32\drivers
2017-06-11 08:48:26 ----D---- C:\WINDOWS\System32
2017-06-11 08:48:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-11 08:44:37 ----D---- C:\Users\Lukáš Brzobohatý\AppData\Roaming\Slack
2017-06-11 08:41:57 ----D---- C:\ProgramData\Docker
2017-06-11 08:41:48 ----D---- C:\WINDOWS\SysWOW64
2017-06-11 08:41:48 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-06-11 08:41:48 ----AD---- C:\Program Files (x86)\Mozilla Thunderbird
2017-06-11 08:41:28 ----D---- C:\WINDOWS\system32\catroot2
2017-06-11 08:41:28 ----D---- C:\WINDOWS\system32\CatRoot
2017-06-11 08:35:46 ----RD---- C:\WINDOWS\Microsoft.NET
2017-06-10 21:20:10 ----D---- C:\WINDOWS\system32\config
2017-06-10 19:14:27 ----HD---- C:\ProgramData
2017-06-10 19:14:27 ----D---- C:\WINDOWS\system32\Tasks
2017-06-10 15:21:14 ----SHDC---- C:\WINDOWS\Installer
2017-06-10 15:18:19 ----RD---- C:\Program Files (x86)
2017-06-10 08:54:11 ----D---- C:\WINDOWS\WinSxS
2017-06-09 20:48:27 ----D---- C:\WINDOWS\CbsTemp
2017-06-09 20:48:24 ----D---- C:\WINDOWS\system32\appraiser
2017-06-09 18:17:37 ----D---- C:\WINDOWS\AppReadiness
2017-06-08 18:00:39 ----HD---- C:\Program Files\WindowsApps
2017-06-07 19:44:35 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2017-06-04 22:01:25 ----D---- C:\Users\Lukáš Brzobohatý\AppData\Roaming\Notepad++
2017-05-24 17:56:07 ----D---- C:\Windows
2017-05-24 17:56:06 ----D---- C:\WINDOWS\Logs
2017-05-23 18:07:36 ----D---- C:\WINDOWS\system32\MRT
2017-05-23 18:06:28 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-05-22 21:48:33 ----D---- C:\Users\Lukáš Brzobohatý\AppData\Roaming\Skype
2017-05-22 19:51:07 ----D---- C:\WINDOWS\system32\DriverStore
2017-05-22 19:51:07 ----D---- C:\WINDOWS\INF
2017-05-22 19:51:00 ----D---- C:\ProgramData\NVIDIA Corporation
2017-05-19 19:25:22 ----D---- C:\Program Files\NVIDIA Corporation
2017-05-19 19:06:53 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-05-18 18:58:53 ----D---- C:\WINDOWS\system32\LogFiles
2017-05-18 09:35:05 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2017-05-18 09:35:05 ----A---- C:\WINDOWS\system32\nvapi64.dll
2017-05-18 09:35:05 ----A---- C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-05-18 07:55:25 ----A---- C:\WINDOWS\NvContainerRecovery.bat
2017-05-18 07:48:51 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2017-05-18 07:48:51 ----A---- C:\WINDOWS\system32\nvcpl.dll
2017-05-18 07:48:49 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2017-05-18 07:48:49 ----A---- C:\WINDOWS\system32\nvshext.dll
2017-05-18 07:48:49 ----A---- C:\WINDOWS\system32\nvmctray.dll
2017-05-18 07:48:49 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2017-05-18 07:48:49 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2017-05-15 20:42:27 ----D---- C:\Users\Lukáš Brzobohatý\AppData\Roaming\npm-cache
2017-05-13 08:31:09 ----RD---- C:\Users
2017-05-12 23:52:47 ----D---- C:\WINDOWS\rescache

File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed

====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2017-05-27 190256]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2017-05-27 334576]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2017-05-27 49016]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2017-05-27 75704]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2017-05-27 339696]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R0 lxss;@%SystemRoot%\system32\drivers\lxss.sys,-100; C:\WINDOWS\system32\drivers\lxss.sys [2016-08-04 15712]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2017-05-27 311808]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2017-05-27 101152]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2017-05-27 1007160]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2017-05-27 569192]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2017-05-27 128648]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2017-05-27 158880]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-08-06 73568]
R3 MBfilt;MBfilt; C:\WINDOWS\system32\drivers\MBfilt64.sys [2016-07-25 41088]
R3 NVHDA;@oem43.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2017-05-02 218040]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_7209bde3180ef5f7\nvlddmkm.sys [2017-05-19 14458264]
R3 nvvad_WaveExtensible;@oem41.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-05-03 48248]
R3 nvvhci;@oem31.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-05-18 57792]
R3 storvsp;storvsp; C:\WINDOWS\System32\drivers\storvsp.sys [2017-03-28 97280]
R3 Synth3dVsp;Synth3dVsp; C:\WINDOWS\System32\drivers\synth3dvsp.sys [2016-08-04 103424]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-04-28 88416]
S1 lpsport;lpsport; C:\WINDOWS\system32\drivers\lpsport.sys [2017-06-09 61304]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2016-09-15 127328]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2016-07-17 157024]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2016-07-17 141152]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2017-05-27 38296]
S3 DroidCam;@oem21.inf,%DroidCam.SvcDesc%;DroidCam Virtual Audio; C:\WINDOWS\system32\DRIVERS\droidcam.sys [2016-09-28 33592]
S3 DroidCamVideo;@oem20.inf,%DroidCamVideo.DeviceDesc%;DroidCam Source 3; C:\WINDOWS\system32\DRIVERS\droidcamvideo.sys [2016-09-28 230712]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 lunparser;@%systemroot%\system32\drivers\lunparser.sys,-10010; C:\WINDOWS\system32\drivers\lunparser.sys [2016-08-04 22528]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2016-07-17 179040]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-05-03 30328]
S3 passthruparser;@%systemroot%\system32\drivers\passthruparser.sys,-10010; C:\WINDOWS\system32\drivers\passthruparser.sys [2016-08-04 24576]
S3 pcip;@wpcip.inf,%pcip.SVCDESC%;PCI Proxy driver; C:\WINDOWS\System32\drivers\pcip.sys [2016-08-04 46592]
S3 pvhdparser;@%systemroot%\system32\drivers\pvhdparser.sys,-10010; C:\WINDOWS\system32\drivers\pvhdparser.sys [2016-08-04 50176]
S3 qcfilter;@oem39.inf,%qcfilter.SvcDesc%;Qualcomm USB Composite Device Filter Driver; C:\WINDOWS\System32\drivers\qcusbfilter.sys [2017-03-15 49208]
S3 qcusbnet;@oem40.inf,%qcwwan.Service.DispName%;Qualcomm USB-NDIS miniport; C:\WINDOWS\System32\drivers\qcusbnet.sys [2017-03-15 428600]
S3 qcusbser;@oem35.inf,%QCUSBSER%;Qualcomm USB Device for Legacy Serial Communication; C:\WINDOWS\system32\DRIVERS\qcusbser.sys [2017-03-15 254520]
S3 ramparser;@%systemroot%\system32\drivers\ramparser.sys,-10010; C:\WINDOWS\system32\drivers\ramparser.sys [2016-08-04 30720]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]

====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-05-27 263304]
R2 Bonjour Service;Bonjour Service; C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe [2017-04-19 390504]
R2 com.docker.service;Docker for Windows Service; C:\Program Files\Docker\Docker\com.docker.service [2017-05-11 9728]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-05-18 462968]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-05-18 449984]
R2 OneSyncSvc_c4474;Hostitel synchronizace_c4474; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = 
R2 Origin Web Helper Service;Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2017-03-11 2185232]
R2 TeamViewer;TeamViewer 11; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2016-09-20 7500048]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-05-27 7346208]
R3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
R3 SshBroker;@%SystemRoot%\system32\SshBroker.dll,-3; %SystemRoot%\system32\svchost.exe -k SshBrokerGroup;"ServiceDll" = %SystemRoot%\System32\SshBroker.dll
R3 SshProxy;@%SystemRoot%\system32\SshProxy.dll,-3; %SystemRoot%\system32\svchost.exe -k SshProxyGroup;"ServiceDll" = %SystemRoot%\System32\SshProxy.dll
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\TimeBrokerServer.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S2 CDPUserSvc_c4474;CDPUserSvc_c4474; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = 
S2 debugregsvc;debugregsvc; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll" = %SystemRoot%\System32\debugregsvc.dll
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-09-20 324224]
S3 DeveloperToolsService;Developer Tools Service; C:\WINDOWS\System32\DeveloperToolsSvc.exe [2017-03-28 104448]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 hns;@%systemroot%\system32\HostNetSvc.dll,-100; %systemroot%\system32\svchost.exe -k NetSvcs;"ServiceDll" = %SystemRoot%\System32\HostNetSvc.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 LxssManager;@%systemroot%\system32\lxss\LxssManager.dll,-100; %systemroot%\system32\svchost.exe -k netsvcs;"ServiceDll" = %SystemRoot%\system32\lxss\LxssManager.dll
S3 MessagingService_c4474;Služba zasílání zpráv_c4474; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = 
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-05-03 173512]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2017-03-11 2124296]
S3 PimIndexMaintenanceSvc_c4474;Data kontaktů_c4474; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = 
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2016-09-15 2889896]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2016-12-14 822624]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll

-----------------EOF-----------------

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

[Brzda]

Kód: Vybrat vše

# AdwCleaner v6.047 - Log vytvořen 11/06/2017 v 17:15:14
# Aktualizováno dne 19/05/2017 z Malwarebytes
# Databáze : 2017-06-10.1 [Server]
# Operační systém : Windows 10 Pro  (X64)
# Uživatelské jméno : Lukas - LUKAS
# Spuštěno z : D:\download\adwcleaner_6.047.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****



***** [ Složky ] *****

[-] Složka smazána: C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip
[-] Složka smazána: C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fbcohnmimjicjdomonkcbcpbpnhggkip


***** [ Soubory ] *****

[-] Soubor smazán: C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_fbcohnmimjicjdomonkcbcpbpnhggkip_0.localstorage
[-] Soubor smazán: C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_fbcohnmimjicjdomonkcbcpbpnhggkip_0.localstorage-journal


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupci ] *****



***** [ Naplánované úlohy ] *****



***** [ Registry ] *****



***** [ Prohlížeče ] *****

[-] [C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: search.yahoo.com
[-] [C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: fbcohnmimjicjdomonkcbcpbpnhggkip


*************************

:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1706 Bajty] - [11/06/2017 17:15:14]
C:\AdwCleaner\AdwCleaner[S0].txt - [2354 Bajty] - [11/06/2017 17:14:46]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1852 Bajty] ##########

[Rudy]

Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

[Brzda]

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-06-2017
Ran by Lukas (administrator) on LUKAS (11-06-2017 18:31:55)
Running from D:\download
Loaded Profiles: Lukas (Available Profiles: Lukas)
Platform: Windows 10 Pro Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

Failed to access process -> Secure System
(Apple Inc.) C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe
(Docker Inc.) C:\Program Files\Docker\Docker\com.docker.service
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\System32\vmms.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Windows\System32\vmcompute.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Wargaming.net) F:\World_of_Tanks\WargamingGameUpdater.exe
(Adobe Systems, Inc.) C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
(Spotify Ltd) C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\Spotify.exe
(Slack Technologies) C:\Users\Lukáš Brzobohatý\AppData\Local\slack\app-2.6.2\slack.exe
(Docker Inc.) C:\Program Files\Docker\Docker\Docker for Windows.exe
(Spotify Ltd) C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\Spotify.exe
(Slack Technologies) C:\Users\Lukáš Brzobohatý\AppData\Local\slack\app-2.6.2\slack.exe
(Slack Technologies) C:\Users\Lukáš Brzobohatý\AppData\Local\slack\app-2.6.2\slack.exe
(Slack Technologies) C:\Users\Lukáš Brzobohatý\AppData\Local\slack\app-2.6.2\slack.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Slack Technologies) C:\Users\Lukáš Brzobohatý\AppData\Local\slack\app-2.6.2\slack.exe
() C:\Program Files\Docker\Docker\resources\com.docker.db.exe
(Microsoft Corporation) C:\Windows\System32\vmwp.exe
() C:\Program Files\Docker\Docker\resources\com.docker.slirp.exe
() C:\Program Files\Docker\Docker\resources\com.docker.proxy.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(ALTAP) C:\Program Files\Altap Salamander\salamand.exe
(ALTAP) C:\Program Files\Altap Salamander\utils\salmon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8804608 2016-07-25] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2016-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-06-11] (AVAST Software)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <====== ATTENTION
HKU\S-1-5-21-2866657111-1113376760-2114575416-1001\...\Run: [World of Tanks] => F:\World_of_Tanks\WargamingGameUpdater.exe [3135752 2017-02-28] (Wargaming.net)
HKU\S-1-5-21-2866657111-1113376760-2114575416-1001\...\Run: [AdobeBridge] => C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe [11989960 2010-03-09] (Adobe Systems, Inc.)
HKU\S-1-5-21-2866657111-1113376760-2114575416-1001\...\Run: [Spotify Web Helper] => C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1560176 2017-06-03] (Spotify Ltd)
HKU\S-1-5-21-2866657111-1113376760-2114575416-1001\...\Run: [Spotify] => C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify\Spotify.exe [6949488 2017-06-03] (Spotify Ltd)
HKU\S-1-5-21-2866657111-1113376760-2114575416-1001\...\Run: [com.squirrel.slack.slack] => "C:\Users\Lukáš Brzobohatý\AppData\Local\slack\Update.exe" --processStart "slack.exe" --process-start-args "--startup"
HKU\S-1-5-21-2866657111-1113376760-2114575416-1001\...\Run: [Docker for Windows] => C:\Program Files\Docker\Docker\Docker for Windows.exe [1355736 2017-05-11] (Docker Inc.)
HKU\S-1-5-21-2866657111-1113376760-2114575416-1001\...\RunOnce: [Uninstall C:\Users\Lukáš Brzobohatý\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Lukáš Brzobohatý\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"
HKU\S-1-5-21-2866657111-1113376760-2114575416-1001\...\RunOnce: [Uninstall C:\Users\Lukáš Brzobohatý\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Lukáš Brzobohatý\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1"
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-06-11] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-06-11] (AVAST Software)
GroupPolicy: Restriction <======= ATTENTION
GroupPolicyScripts: Restriction <======= ATTENTION
GroupPolicyScripts\User: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{7d76b36d-4143-4669-bddd-c26b4dc53fce}: [DhcpNameServer] 192.168.0.1 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{f6f7dded-43c7-4e35-a7c2-b07529644010}: [DhcpNameServer] 8.8.8.8 8.8.4.4

Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-04-22] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-22] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Lukáš Brzobohatý\AppData\Roaming\Mozilla\Firefox\Profiles\2yblppzm.default [2017-06-07]
FF Homepage: Mozilla\Firefox\Profiles\2yblppzm.default -> www.google.cz
FF Session Restore: Mozilla\Firefox\Profiles\2yblppzm.default -> is enabled.
FF Extension: (Firebug) - C:\Users\Lukáš Brzobohatý\AppData\Roaming\Mozilla\Firefox\Profiles\2yblppzm.default\Extensions\firebug@software.joehewitt.com.xpi [2017-03-26]
FF Extension: (FireLogger) - C:\Users\Lukáš Brzobohatý\AppData\Roaming\Mozilla\Firefox\Profiles\2yblppzm.default\Extensions\firelogger@hildebrand.cz.xpi [2016-05-19]
FF Extension: (Disable TLS Certificate Transparency) - C:\Users\Lukáš Brzobohatý\AppData\Roaming\Mozilla\Firefox\Profiles\2yblppzm.default\features\{b8c84243-f5c9-4b36-af73-f10f3d0b70fe}\disable-cert-transparency@mozilla.org.xpi [2017-04-27]
FF Extension: (Disable Prefetch) - C:\Users\Lukáš Brzobohatý\AppData\Roaming\Mozilla\Firefox\Profiles\2yblppzm.default\features\{b8c84243-f5c9-4b36-af73-f10f3d0b70fe}\disable-prefetch@mozilla.org.xpi [2017-04-27]
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-22] (Oracle Corporation)
FF Plugin: synology.com/SurveillancePlugin_x86_64 -> C:\Program Files (x86)\Synology\SurveillancePlugin\1.0.0.975\npSurveillancePlugin_x86_64.dll [2016-07-19] (Synology)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-05-18] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-05-18] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin-x32: synology.com/SurveillancePlugin -> C:\Program Files (x86)\Synology\SurveillancePlugin\1.0.0.975\npSurveillancePlugin.dll [2016-07-19] (Synology)
FF Plugin-x32: Web Components -> C:\Program Files (x86)\Web Components\npWebVideoPlugin.dll [No File]

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default [2017-06-11]
CHR Extension: (Prezentace Google) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-26]
CHR Extension: (Dokumenty Google) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-26]
CHR Extension: (Disk Google) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-26]
CHR Extension: (YouTube) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-26]
CHR Extension: (Telegram) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\clhhggbfdinjmjhajaheehoeibfljjno [2017-03-18]
CHR Extension: (RESTED) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\eelcnbccaccipfolokglfhhmapdchbfg [2016-11-06]
CHR Extension: (MyJDownloader Browser Extension) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2017-06-11]
CHR Extension: (Tabulky Google) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-26]
CHR Extension: (Postman) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhbjgbiflinjbdggehcddcbncdddomop [2017-06-11]
CHR Extension: (React Developer Tools) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmkadmapgofadopljbjfkapdkoienihi [2017-06-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-26]
CHR Extension: (Vysor) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidgenkbbabolejbgbpnhbimgjbffefm [2017-05-18]
CHR Extension: (AdBlock) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-14]
CHR Extension: (FireLogger for Chrome) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmagilfopmdjkeomnjpchokglfdfjfeh [2016-07-26]
CHR Extension: (Gmail) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhopmchchfpfdcdjodmpfaaphdclmlj [2016-07-26]
CHR Extension: (Hangouts Google) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgolnpehhpl [2017-05-06]
CHR Extension: (F.B.(FluffBusting)Purity) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmkinhboiljjkhaknpaeaicmdjhagpep [2017-06-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Gmail) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-26]
CHR Extension: (Inbox by Gmail) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkclgpgponpjmpfokoepglboejdobkpl [2016-07-26]
CHR Extension: (Chrome Media Router) - C:\Users\Lukáš Brzobohatý\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-18]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7346208 2017-06-11] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-06-11] (AVAST Software)
R2 Bonjour Service; C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe [390504 2017-04-19] (Apple Inc.)
R2 com.docker.service; C:\Program Files\Docker\Docker\com.docker.service [9728 2017-05-11] (Docker Inc.) [File not signed]
S2 debugregsvc; C:\WINDOWS\System32\debugregsvc.dll [29184 2016-07-15] (Microsoft Corporation)
S3 hns; C:\WINDOWS\System32\HostNetSvc.dll [584192 2017-03-28] (Microsoft Corporation)
S3 LxssManager; C:\WINDOWS\system32\lxss\LxssManager.dll [327168 2016-10-15] (Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-18] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-05-18] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2124296 2017-03-11] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2185232 2017-03-11] (Electronic Arts)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-15] (Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
R3 vmcompute; C:\WINDOWS\system32\vmcompute.exe [1934336 2017-04-28] (Microsoft Corporation)
R2 vmms; C:\WINDOWS\system32\vmms.exe [14423040 2017-04-28] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-04-28] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [311808 2017-06-11] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [190256 2017-06-11] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [334576 2017-06-11] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [49016 2017-06-11] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [38296 2017-06-11] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [128648 2017-06-11] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [101152 2017-06-11] (AVAST Software)
S0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [75704 2017-06-11] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [1007160 2017-06-11] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [569192 2017-06-11] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [158880 2017-06-11] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [339696 2017-06-11] (AVAST Software)
S3 DroidCam; C:\WINDOWS\system32\DRIVERS\droidcam.sys [33592 2016-09-28] (Dev47Apps)
S3 DroidCamVideo; C:\WINDOWS\system32\DRIVERS\droidcamvideo.sys [230712 2016-09-28] (Windows (R) Win 7 DDK provider)
U1 lpsport; C:\Windows\System32\Drivers\lpsport.sys [61304 2017-06-11] ()
S3 lunparser; C:\WINDOWS\System32\drivers\lunparser.sys [22528 2016-08-04] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_7209bde3180ef5f7\nvlddmkm.sys [14458264 2017-05-19] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-05-03] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48248 2017-05-03] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-05-18] (NVIDIA Corporation)
S3 passthruparser; C:\WINDOWS\System32\drivers\passthruparser.sys [24576 2016-08-04] (Microsoft Corporation)
S3 pcip; C:\WINDOWS\System32\drivers\pcip.sys [46592 2016-08-04] (Microsoft Corporation)
S3 pvhdparser; C:\WINDOWS\System32\drivers\pvhdparser.sys [50176 2016-08-04] (Microsoft Corporation)
S3 qcfilter; C:\WINDOWS\System32\drivers\qcusbfilter.sys [49208 2017-03-15] (QUALCOMM Incorporated)
S3 qcusbnet; C:\WINDOWS\System32\drivers\qcusbnet.sys [428600 2017-03-15] (QUALCOMM Incorporated)
S3 qcusbser; C:\WINDOWS\system32\DRIVERS\qcusbser.sys [254520 2017-03-15] (QUALCOMM Incorporated)
S3 ramparser; C:\WINDOWS\System32\drivers\ramparser.sys [30720 2016-08-04] (Microsoft Corporation)
R3 Synth3dVsp; C:\WINDOWS\System32\drivers\synth3dvsp.sys [103424 2016-08-04] (Microsoft Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Apple, Inc.) [File not signed]
S1 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [131144 2016-12-20] (Oracle Corporation)
S4 VfpExt; C:\WINDOWS\System32\drivers\vfpext.sys [988672 2017-03-28] (Microsoft Corporation)
R3 vhdparser; C:\WINDOWS\System32\drivers\vhdparser.sys [26624 2016-08-04] (Microsoft Corporation)
R3 vmsmp; C:\WINDOWS\System32\drivers\vmswitch.sys [1617920 2017-04-28] (Microsoft Corporation)
R2 VMSP; C:\WINDOWS\System32\drivers\vmswitch.sys [1617920 2017-04-28] (Microsoft Corporation)
R0 vmsproxy; C:\WINDOWS\System32\drivers\vmsproxy.sys [33632 2016-08-06] (Microsoft Corporation)
S3 VMSVSF; C:\WINDOWS\System32\drivers\vmswitch.sys [1617920 2017-04-28] (Microsoft Corporation)
S3 VMSVSP; C:\WINDOWS\System32\drivers\vmswitch.sys [1617920 2017-04-28] (Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R3 WFSONORA; C:\WINDOWS\system32\drivers\wfsonora.sys [367616 2009-09-08] (Leadtek Research Inc.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVC: hns -> C:\Windows\System32\HostNetSvc.dll (Microsoft Corporation)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-11 18:31 - 2017-06-11 18:31 - 00000000 ____D C:\FRST
2017-06-11 18:26 - 2017-06-11 18:26 - 01007160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-06-11 18:26 - 2017-06-11 18:26 - 00569192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-06-11 18:26 - 2017-06-11 18:26 - 00400456 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-06-11 18:26 - 2017-06-11 18:26 - 00339696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-06-11 18:26 - 2017-06-11 18:26 - 00334576 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
2017-06-11 18:26 - 2017-06-11 18:26 - 00311808 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2017-06-11 18:26 - 2017-06-11 18:26 - 00190256 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2017-06-11 18:26 - 2017-06-11 18:26 - 00158880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys
2017-06-11 18:26 - 2017-06-11 18:26 - 00158368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys.149719840945302
2017-06-11 18:26 - 2017-06-11 18:26 - 00128648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-06-11 18:26 - 2017-06-11 18:26 - 00101152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-06-11 18:26 - 2017-06-11 18:26 - 00075704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-06-11 18:26 - 2017-06-11 18:26 - 00049016 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2017-06-11 18:26 - 2017-06-11 18:26 - 00038296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-06-11 18:26 - 2017-06-11 18:26 - 00002016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2017-06-11 18:26 - 2017-06-11 18:26 - 00002004 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2017-06-11 18:26 - 2017-06-11 18:26 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Roaming\AVAST Software
2017-06-11 18:26 - 2017-06-11 18:26 - 00000000 ____D C:\Program Files\AVAST Software
2017-06-11 18:24 - 2017-06-11 18:24 - 00000000 ____D C:\ProgramData\AVAST Software
2017-06-11 18:21 - 2017-06-11 18:21 - 00565416 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-06-11 18:16 - 2017-06-11 18:16 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2017-06-11 17:13 - 2017-06-11 17:15 - 00000000 ____D C:\AdwCleaner
2017-06-11 12:53 - 2017-06-11 13:01 - 00000000 ____D C:\rsit
2017-06-11 12:53 - 2017-06-11 13:01 - 00000000 ____D C:\Program Files\trend micro
2017-06-11 08:49 - 2017-06-11 18:26 - 00061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2017-06-11 08:49 - 2017-06-11 08:49 - 00061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys.149719840965603
2017-06-10 15:21 - 2017-06-10 15:21 - 00001115 _____ C:\Users\Public\Desktop\VNC Viewer.lnk
2017-06-10 15:21 - 2017-06-10 15:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealVNC
2017-06-10 15:21 - 2017-06-10 15:21 - 00000000 ____D C:\Program Files\RealVNC
2017-06-10 15:12 - 2017-06-10 15:13 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Roaming\RealVNC
2017-06-10 15:12 - 2017-06-10 15:13 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Local\RealVNC
2017-06-06 18:49 - 2017-06-08 17:58 - 00061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys.149676777745303.149701284267103
2017-06-06 18:49 - 2017-06-07 17:17 - 00061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys.149676777745303.149693751698403
2017-06-06 18:49 - 2017-06-06 18:49 - 00061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys.149676777745303.149684863367103
2017-05-24 20:32 - 2017-05-24 20:32 - 00000933 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sublime Text 3.lnk
2017-05-24 20:32 - 2017-05-24 20:32 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Roaming\Sublime Text 3
2017-05-24 20:32 - 2017-05-24 20:32 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Local\Sublime Text 3
2017-05-24 20:32 - 2017-05-24 20:32 - 00000000 ____D C:\Program Files\Sublime Text 3
2017-05-22 19:50 - 2017-05-22 19:50 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-05-22 19:50 - 2017-05-18 07:21 - 00134592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-05-22 19:50 - 2017-03-10 23:17 - 00536864 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-05-22 19:50 - 2017-03-10 23:17 - 00525600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-05-22 19:50 - 2017-03-10 23:17 - 00254240 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-05-22 19:50 - 2017-03-10 23:17 - 00233760 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-05-22 19:43 - 2017-05-18 09:35 - 40201848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 35390072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 35282040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 28624504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 11056456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 11028664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 10551072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 09248144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 09014976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 08808488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 03797112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 03256440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 01988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438233.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 01606592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438233.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 01278528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 01056704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 00995736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 00993912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 00964032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 00914880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 00775864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 00725112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 00688968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 00612272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 00583800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 00577728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 00499320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-05-22 19:43 - 2017-05-18 09:35 - 00045061 _____ C:\WINDOWS\system32\nvinfo.pb
2017-05-19 19:16 - 2017-05-02 00:38 - 01988032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438205.dll
2017-05-19 19:16 - 2017-05-02 00:38 - 01589696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438205.dll
2017-05-19 19:16 - 2017-05-02 00:38 - 00046008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2017-05-19 19:16 - 2017-05-02 00:38 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-05-19 19:16 - 2017-05-02 00:38 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-05-19 19:07 - 2017-05-19 19:07 - 00004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-19 19:06 - 2017-05-03 22:21 - 00175736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-05-19 19:06 - 2017-05-03 22:21 - 00143480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-05-18 18:56 - 2017-05-18 18:56 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Roaming\Google
2017-05-15 20:21 - 2017-05-15 20:21 - 00000915 _____ C:\Users\Public\Desktop\Robomongo 1.0.0.lnk
2017-05-15 20:21 - 2017-05-15 20:21 - 00000000 ____D C:\Users\Lukáš Brzobohatý\.3T
2017-05-15 20:21 - 2017-05-15 20:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Robomongo 1.0.0
2017-05-15 20:21 - 2017-05-15 20:21 - 00000000 ____D C:\Program Files\Robomongo 1.0.0
2017-05-12 19:33 - 2017-05-12 19:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Docker
2017-05-12 19:33 - 2017-05-12 19:33 - 00000000 ____D C:\Program Files\Docker

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-11 18:29 - 2016-11-21 09:39 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\LocalLow\Mozilla
2017-06-11 18:26 - 2017-02-26 20:09 - 00003994 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-06-11 18:24 - 2016-07-25 19:46 - 02800182 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-11 18:24 - 2016-07-17 00:25 - 01131444 _____ C:\WINDOWS\system32\perfh005.dat
2017-06-11 18:24 - 2016-07-17 00:25 - 00295956 _____ C:\WINDOWS\system32\perfc005.dat
2017-06-11 18:23 - 2017-03-18 14:50 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Local\Deployment
2017-06-11 18:23 - 2016-09-14 19:08 - 00000000 ___HD C:\Users\Lukáš Brzobohatý\WebComponents
2017-06-11 18:23 - 2016-07-25 21:51 - 00000000 ____D C:\Program Files (x86)\Pidgin
2017-06-11 18:18 - 2017-03-12 18:36 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Roaming\Spotify
2017-06-11 18:18 - 2017-03-12 18:36 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Local\Spotify
2017-06-11 18:18 - 2017-02-02 20:32 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Roaming\Slack
2017-06-11 18:18 - 2016-08-04 22:56 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-11 18:18 - 2016-08-04 22:52 - 00000000 ____D C:\ProgramData\NVIDIA
2017-06-11 18:18 - 2016-07-25 20:29 - 00000000 ____D C:\ProgramData\Docker
2017-06-11 18:18 - 2016-07-25 20:24 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Local\Docker
2017-06-11 18:17 - 2016-07-16 08:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2017-06-11 18:11 - 2016-07-25 21:09 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Roaming\vlc
2017-06-11 17:25 - 2017-05-04 06:25 - 00000000 _____ C:\WINDOWS\SysWOW64\last.dump
2017-06-11 17:15 - 2016-08-04 22:53 - 00000000 ____D C:\Users\Lukáš Brzobohatý
2017-06-11 16:33 - 2016-08-04 22:51 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-11 14:11 - 2016-08-17 19:13 - 00004192 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D531FBDD-655E-472B-A535-3BBCFB734862}
2017-06-11 08:41 - 2016-11-18 22:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2017-06-11 08:41 - 2016-07-25 20:13 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-06-10 22:47 - 2016-07-25 21:21 - 00008635 _____ C:\Users\Lukáš Brzobohatý\.bash_history
2017-06-09 20:48 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-06-09 20:48 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-06-09 18:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-08 18:00 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-07 22:29 - 2016-09-06 22:16 - 00000000 __SHD C:\Users\Lukáš Brzobohatý\AppData\Local\lxss
2017-06-07 19:44 - 2016-11-17 23:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-06-05 23:03 - 2016-08-04 21:54 - 00000600 _____ C:\Users\Lukáš Brzobohatý\AppData\Roaming\winscp.rnd
2017-06-04 22:01 - 2016-07-25 21:26 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Roaming\Notepad++
2017-05-27 08:21 - 2016-07-25 20:42 - 00158368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys.149586611934302
2017-05-26 19:37 - 2016-07-25 21:09 - 00001180 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-05-26 18:21 - 2017-02-02 20:32 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies
2017-05-26 18:21 - 2017-02-02 20:32 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Local\SquirrelTemp
2017-05-26 18:21 - 2017-02-02 20:32 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Local\slack
2017-05-24 21:22 - 2017-03-31 09:31 - 06427910 _____ C:\Users\Lukáš Brzobohatý\.babel.json
2017-05-24 20:20 - 2017-03-11 19:51 - 00000121 _____ C:\Users\Lukáš Brzobohatý\.yarnrc
2017-05-23 18:07 - 2016-07-25 21:52 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-05-23 18:06 - 2016-07-25 21:52 - 132223576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-05-22 21:48 - 2016-08-18 17:35 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Roaming\Skype
2017-05-22 19:51 - 2016-08-04 22:52 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-05-22 19:51 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2017-05-22 19:43 - 2016-07-25 20:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-05-22 19:39 - 2016-07-25 20:28 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Local\NVIDIA Corporation
2017-05-19 19:25 - 2016-08-04 22:52 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-05-19 19:07 - 2016-10-11 20:02 - 00003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-19 19:06 - 2017-01-07 10:55 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-19 19:06 - 2016-10-11 20:02 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-19 19:06 - 2016-10-11 20:02 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-19 19:06 - 2016-10-11 20:02 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-19 19:06 - 2016-10-11 20:02 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-19 19:06 - 2016-10-11 20:02 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-19 19:06 - 2016-08-04 22:52 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-05-18 09:35 - 2017-02-08 10:01 - 00057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-05-18 09:35 - 2017-01-07 10:54 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-05-18 09:35 - 2016-07-25 20:22 - 04114248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-05-18 09:35 - 2016-07-25 20:22 - 03624784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-05-18 07:55 - 2016-10-11 20:02 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-05-18 07:48 - 2016-08-04 22:52 - 06437824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-05-18 07:48 - 2016-08-04 22:52 - 02479736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-05-18 07:48 - 2016-08-04 22:52 - 01762936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-05-18 07:48 - 2016-08-04 22:52 - 00548984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-05-18 07:48 - 2016-08-04 22:52 - 00392312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-05-18 07:48 - 2016-08-04 22:52 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-05-18 07:48 - 2016-08-04 22:52 - 00069752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-05-17 19:20 - 2016-07-26 19:34 - 00002309 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-16 20:09 - 2016-08-04 22:52 - 07993157 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-05-15 20:42 - 2017-04-25 21:16 - 00000000 ____D C:\Users\Lukáš Brzobohatý\AppData\Roaming\npm-cache
2017-05-12 23:52 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache

==================== Files in the root of some directories =======

2016-11-21 20:03 - 2016-11-21 20:06 - 0000132 _____ () C:\Users\Lukáš Brzobohatý\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
2016-08-04 21:54 - 2017-06-05 23:03 - 0000600 _____ () C:\Users\Lukáš Brzobohatý\AppData\Roaming\winscp.rnd
2016-08-04 22:06 - 2017-04-17 12:43 - 0000600 _____ () C:\Users\Lukáš Brzobohatý\AppData\Local\PUTTY.RND
2016-08-05 16:09 - 2016-08-05 16:09 - 0000218 _____ () C:\Users\Lukáš Brzobohatý\AppData\Local\recently-used.xbel
2017-01-16 21:32 - 2017-01-16 21:34 - 0000438 _____ () C:\Users\Lukáš Brzobohatý\AppData\Local\ReclaiMe.config
2016-09-28 20:20 - 2017-01-16 20:17 - 0000035 _____ () C:\ProgramData\droidcam-settings
2017-01-07 10:55 - 2017-02-08 10:01 - 0008442 _____ () C:\ProgramData\NvTelemetryContainer.log
2017-01-07 10:55 - 2017-02-04 09:24 - 0021770 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1
2017-01-16 21:32 - 2017-01-16 21:34 - 0000480 _____ () C:\ProgramData\ReclaiMe.config

Some files in TEMP:
====================
2017-06-04 22:01 - 2017-06-04 22:01 - 2990616 _____ () C:\Users\Lukáš Brzobohatý\AppData\Local\Temp\npp.7.4.1.Installer.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-06-02 17:46

==================== End of FRST.txt ============================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <====== ATTENTION
GroupPolicy: Restriction <======= ATTENTION
GroupPolicyScripts: Restriction <======= ATTENTION
GroupPolicyScripts\User: Restriction <======= ATTENTION
FF Plugin-x32: Web Components -> C:\Program Files (x86)\Web Components\npWebVideoPlugin.dll [No File]
R2 Bonjour Service; C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe [390504 2017-04-19] (Apple Inc.)
C:\Users\Lukáš Brzobohatý\AppData\Local\Temp

EmptyTemp:
ResetHosts:
End

Uložte do D:\download jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Brzda]

Kód: Vybrat vše

Fix result of Farbar Recovery Scan Tool (x64) Version: 11-06-2017
Ran by Lukas (11-06-2017 19:08:41) Run:1
Running from D:\download
Loaded Profiles: Lukas (Available Profiles: Lukas)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <====== ATTENTION
GroupPolicy: Restriction <======= ATTENTION
GroupPolicyScripts: Restriction <======= ATTENTION
GroupPolicyScripts\User: Restriction <======= ATTENTION
FF Plugin-x32: Web Components -> C:\Program Files (x86)\Web Components\npWebVideoPlugin.dll [No File]
R2 Bonjour Service; C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe [390504 2017-04-19] (Apple Inc.)
C:\Users\Lukáš Brzobohatý\AppData\Local\Temp

EmptyTemp:
ResetHosts:
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <====== ATTENTION => restored successfully
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
"C:\WINDOWS\system32\GroupPolicy\Machine" => not found.
C:\WINDOWS\system32\GroupPolicy\User => moved successfully
HKLM\Software\Wow6432Node\MozillaPlugins\Web Components => key removed successfully
Bonjour Service => Unable to stop service.
HKLM\System\CurrentControlSet\Services\Bonjour Service => key removed successfully
Bonjour Service => service removed successfully

"C:\Users\Lukáš Brzobohatý\AppData\Local\Temp" folder move:

Could not move "C:\Users\Lukáš Brzobohatý\AppData\Local\Temp" => Scheduled to move on reboot.

ResetHosts: => Error: No automatic fix found for this entry.

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 131751839 B
Java, Flash, Steam htmlcache => 900 B
Windows/system/drivers => 59052840 B
Edge => 1167614 B
Chrome => 985393752 B
Firefox => 132153348 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 47364 B
NetworkService => 1917984 B
Lukáš Brzobohatý => 64397774 B

RecycleBin => 0 B
EmptyTemp: => 1.3 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 11-06-2017 19:10:12)

C:\Users\Lukáš Brzobohatý\AppData\Local\Temp => moved successfully

==== End of Fixlog 19:10:12 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[Brzda]

Zatím se zdá všechno ok, uvidím časem. Díky za pomoct

[Rudy]

Rádo se stalo!