Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

preventivka+

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
JohnyHubage
Návštěvník
Návštěvník
Příspěvky: 59
Registrován: 05 bře 2007 22:01
Bydliště: Liberec
Kontaktovat uživatele:
Kontaktovat uživatele JohnyHubage

preventivka+

#1 Příspěvek od JohnyHubage »

Dobrý den, občas se stane, že mi problikne příkazový řádek, podobně jak popisuje kolega v threadu níže... Také teď vyšla aktualizace pro můj notebook: HP - Sure Connect, který se nedaří úspěšně nainstalovat, od začátku používání notebooku mám nainstalovaný McAfee, který byl na rok zdarma, proto jsem neinstaloval žádný jiný. Log z RSIT níže:

Děkuji za odpověď!


Logfile of random's system information tool 1.10 (written by random/random)
Run by Jan Hubáček at 2017-06-13 15:36:11
Microsoft Windows 10 Home
System drive C: has 83 GB (34%) free of 243 GB
Total RAM: 16269 MB (70% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:36:15, on 13.06.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe
C:\Users\hubad\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
C:\Program Files\trend micro\Jan Hubáček.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HCTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O4 - HKLM\..\Run: [HPRadioMgr] C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\HP\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [HPMessageService] C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKCU\..\Run: [OneDrive] "C:\Users\hubad\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKCU\..\Run: [iCloudPhotos] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\IntelCpHeciSvc.exe
O23 - Service: Intel(R) Content Protection HDCP Service (cplspcon) - Intel Corporation - C:\windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\IntelCpHDCPSvc.exe
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: DbxSvc - Unknown owner - C:\windows\system32\DbxSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @oem11.inf,%ServiceDisplayName%;ESIF Upper Framework Service (esifsvc) - Unknown owner - C:\windows\system32\Intel\DPTF\esif_uf.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - c:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: HP Comm Recovery (HP Comm Recover) - HP Inc. - C:\Program Files\HPCommRecovery\HPCommRecovery.exe
O23 - Service: HP JumpStart Bridge (HPJumpStartBridge) - HP Inc. - c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
O23 - Service: HP CASL Framework Service (hpqcaslwmiex) - HP - C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem35.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HPWMISVC - HP Inc. - C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @oem56.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\windows\system32\ibtsiva (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Intel Corporation - C:\windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\VSCore_15_6\McApExe.exe
O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe
O23 - Service: McAfee Boot Delay Start Service (McBootDelayStartSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\2.3.322.0\\McCSPServiceHost.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Service Controller (mfemms) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\windows\system32\mfevtps.exe (file missing)
O23 - Service: McAfee Module Core Service (ModuleCoreService) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Intel Security PEF Service (PEFService) - Intel Security, Inc. - C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Update service - Popcorn Time - C:\Program Files (x86)\Popcorn Time\Updater.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 18031 bytes

======Listing Processes======








C:\windows\system32\lsass.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-71445ab9-37e6-44b5-9e01-d51c9a28b01f -SystemEventPortName:HostProcess-c76d6a62-5a98-4991-94b7-72b58bff6a49 -IoCancelEventPortName:HostProcess-45210a12-6d99-4c10-a9d2-d8ad2e182878 -NonStateChangingEventPortName:HostProcess-b0af2610-4b2f-449b-8762-36136151bb6f -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:7a6f2354-8863-4c04-a18a-01b3e09ffa3b -DeviceGroupId:
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
dashost.exe {6bc1e575-1bdf-4cd3-a450ea6499bd7192}
C:\windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\igfxCUIService.exe
C:\windows\System32\svchost.exe -k NetworkService
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\Hpservice.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\windows\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\WLANExt.exe 2897674207104
\??\C:\windows\system32\conhost.exe 0x4
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k apphost
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\IntelCpHDCPSvc.exe
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\windows\System32\svchost.exe -k utcsvc
C:\windows\system32\DbxSvc.exe
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"c:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\windows\system32\Intel\DPTF\esif_uf.exe
"C:\windows\system32\mfevtps.exe"
C:\windows\system32\ibtsiva
"C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
"C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
"c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Popcorn Time\Updater.exe"
C:\windows\system32\svchost.exe -k appmodel

C:\windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\IntelCpHeciSvc.exe
"C:\windows\system32\mfevtps.exe" -mms
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe" -mms
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
"C:\Program Files\Common Files\McAfee\VSCore_15_6\McApExe.exe"
"C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Common Files\McAfee\CSP\2.3.322.0\\McCSPServiceHost.exe"
"C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe" /startUserModeHosting=1_TIME_TO_DIE
"C:\windows\TEMP\DPTF\esif_assist_64.exe"
\??\C:\windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
sihost.exe
C:\windows\system32\svchost.exe -k UnistackSvcGroup
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe"
"C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe" /c
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\windows\Explorer.EXE
"C:\windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\igfxEM.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe"
"C:\windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Users\hubad\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe"
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe" -Embedding
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" -Embedding
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" -Embedding
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe"
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe -Embedding
"C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe"
"C:\Program Files (x86)\HP\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --disable-gpu-compositing --no-sandbox --primordial-pipe-token=709AF182AB936DA27E81C8B9940EE674 --lang=en-US --lang=en-US --log-file="C:\Users\hubad\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\debug.log" --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --service-request-channel-token=709AF182AB936DA27E81C8B9940EE674 --renderer-client-id=2 --mojo-platform-channel-handle=1552 /prefetch:1
"C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
C:\windows\system32\AUDIODG.EXE 0x304
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" -type:crashpad-handler --no-upload-gzip --no-rate-limit --database=C:\Users\hubad\AppData\Local\Dropbox\Crashpad --metrics-dir=0 --url=https://d.dropbox.com/report_crashpad_minidump --https-pin=0x23,0xf2,0xed,0xff,0x3e,0xde,0x90,0x25,0x9a,0x9e,0x30,0xf4,0xa,0xf8,0xf9,0x12,0xa5,0xe5,0xb3,0x69,0x4e,0x69,0x38,0x44,0x3,0x41,0xf6,0x6,0xe,0x1,0x4f,0xfa --https-pin=0xaf,0xf9,0x88,0x90,0x6d,0xde,0x12,0x95,0x5d,0x9b,0xeb,0xbf,0x92,0x8f,0xdc,0xc3,0x1c,0xce,0x32,0x8d,0x5b,0x93,0x84,0xf2,0x1c,0x89,0x41,0xca,0x26,0xe2,0x3,0x91 --https-pin=0x5a,0x88,0x96,0x47,0x22,0xe,0x54,0xd6,0xbd,0x8a,0x16,0x81,0x72,0x24,0x52,0xb,0xb5,0xc7,0x8e,0x58,0x98,0x4b,0xd5,0x70,0x50,0x63,0x88,0xb9,0xde,0xf,0x7,0x5f --https-pin=0xfe,0xa2,0xb7,0xd6,0x45,0xfb,0xa7,0x3d,0x75,0x3c,0x1e,0xc9,0xa7,0x87,0xc,0x40,0xe1,0xf7,0xb0,0xc5,0x61,0xe9,0x27,0xb9,0x85,0xbf,0x71,0x18,0x66,0xe3,0x6f,0x22 --https-pin=0x76,0xee,0x85,0x90,0x37,0x4c,0x71,0x54,0x37,0xbb,0xca,0x6b,0xba,0x60,0x28,0xea,0xdd,0xe2,0xdc,0x6d,0xbb,0xb8,0xc3,0xf6,0x10,0xe8,0x51,0xf1,0x1d,0x1a,0xb7,0xf5 --https-pin=0x6d,0xbf,0xae,0x0,0xd3,0x7b,0x9c,0xd7,0x3f,0x8f,0xb4,0x7d,0xe6,0x59,0x17,0xaf,0x0,0xe0,0xdd,0xdf,0x42,0xdb,0xce,0xac,0x20,0xc1,0x7c,0x2,0x75,0xee,0x20,0x95 --https-pin=0x1e,0xa3,0xc5,0xe4,0x3e,0xd6,0x6c,0x2d,0xa2,0x98,0x3a,0x42,0xa4,0xa7,0x9b,0x1e,0x90,0x67,0x86,0xce,0x9f,0x1b,0x58,0x62,0x14,0x19,0xa0,0x4,0x63,0xa8,0x7d,0x38 --https-pin=0x87,0xaf,0x34,0xd6,0x6f,0xb3,0xf2,0xfd,0xf3,0x6e,0x9,0x11,0x1e,0x9a,0xba,0x2f,0x6f,0x44,0xb2,0x7,0xf3,0x86,0x3f,0x3d,0xb,0x54,0xb2,0x50,0x23,0x90,0x9a,0xa5 --https-pin=0xbc,0xfb,0x44,0xaa,0xb9,0xad,0x2,0x10,0x15,0x70,0x6b,0x41,0x21,0xea,0x76,0x1c,0x81,0xc9,0xe8,0x89,0x67,0x59,0xf,0x6f,0x94,0xae,0x74,0x4d,0xc8,0x8b,0x78,0xfb --https-pin=0xab,0x98,0x49,0x52,0x76,0xad,0xf1,0xec,0xaf,0xf2,0x8f,0x35,0xc5,0x30,0x48,0x78,0x1e,0x5c,0x17,0x18,0xda,0xb9,0xc8,0xe6,0x7a,0x50,0x4f,0x4f,0x6a,0x51,0x32,0x8f --https-pin=0x49,0x5,0x46,0x66,0x23,0xab,0x41,0x78,0xbe,0x92,0xac,0x5c,0xbd,0x65,0x84,0xf7,0xa1,0xe1,0x7f,0x27,0x65,0x2d,0x5a,0x85,0xaf,0x89,0x50,0x4e,0xa2,0x39,0xaa,0xaa --https-pin=0x56,0x32,0xd9,0x7b,0xfa,0x77,0x5b,0xf3,0xc9,0x9d,0xde,0xa5,0x2f,0xc2,0x55,0x34,0x10,0x86,0x40,0x16,0x72,0x9c,0x52,0xdd,0x65,0x24,0xc8,0xa9,0xc3,0xb4,0x48,0x9f --https-pin=0x2a,0x8f,0x2d,0x8a,0xf0,0xeb,0x12,0x38,0x98,0xf7,0x4c,0x86,0x6a,0xc3,0xfa,0x66,0x90,0x54,0xe2,0x3c,0x17,0xbc,0x7a,0x95,0xbd,0x2,0x34,0x19,0x2d,0xc6,0x35,0xd0 --https-pin=0x32,0xb6,0x4b,0x66,0x72,0x7a,0x20,0x63,0xe4,0x6,0x6f,0x3b,0x95,0x8c,0xb0,0xaa,0xee,0x57,0x6a,0x5e,0xce,0xfd,0x95,0x33,0x99,0xbb,0x88,0x74,0x73,0x1d,0x95,0x87 --https-pin=0xf5,0x3c,0x22,0x5,0x98,0x17,0xdd,0x96,0xf4,0x0,0x65,0x16,0x39,0xd2,0xf8,0x57,0xe2,0x10,0x70,0xa5,0x9a,0xbe,0xd9,0x7,0x94,0x0,0xd9,0xf6,0x95,0x50,0x69,0x0 --https-pin=0x67,0xdc,0x4f,0x32,0xfa,0x10,0xe7,0xd0,0x1a,0x79,0xa0,0x73,0xaa,0xc,0x9e,0x2,0x12,0xec,0x2f,0xfc,0x3d,0x77,0x9e,0xa,0xa7,0xf9,0xc0,0xf0,0xe1,0xc2,0xc8,0x93 --https-pin=0x19,0x6,0xc6,0x12,0x4d,0xbb,0x43,0x85,0x78,0xd0,0xe,0x6,0x6d,0x50,0x54,0xc6,0xc3,0x7f,0xf,0xa6,0x2,0x8c,0x5,0x54,0x5e,0x9,0x94,0xed,0xda,0xec,0x86,0x29 --https-pin=0x1d,0x75,0xd0,0x83,0x1b,0x9e,0x8,0x85,0x39,0x4d,0x32,0xc7,0xa1,0xbf,0xdb,0x3d,0xbc,0x1c,0x28,0xe2,0xb0,0xe8,0x39,0x1f,0xb1,0x35,0x98,0x1d,0xbc,0x5b,0xa9,0x36 --annotation=buildno=Dropbox-win-27.4.22 --annotation=client_session_id=b9c6cf16-df44-46cc-b352-65526e48b2d8 --annotation=host_int_account1_boot=21757910912 --annotation=machine_id=e47d32fd-100c-4f7c-ba0e-870491057101 --annotation=platform=win --annotation=platform_version=10 --initial-client-data=0x1e0,0x1e4,0x1e8,0x1dc,0x1ec,0x5d6cf83c,0x5d6cf84c,0x5d6cf85c
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" -type:exit-monitor -session-token:b9c6cf16-df44-46cc-b352-65526e48b2d8 -target-handle:476 -target-shutdown-event:492 "-target-command-line:\"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe\" /systemstartup" -method:collectupload -handler-pipe:\\.\pipe\crashpad_9660_MTTNPKUECPWLSFNZ
C:\windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe" /byrunkey
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
"C:\Program Files\HPCommRecovery\HPCommRecovery.exe"
"c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.17.420.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe"
C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe /platui
"fontdrvhost.exe"
"C:\Program Files\Common Files\McAfee\Platform\Core\mchost.exe" {da5755a9-0f5c-4918-bc5b-324ed562c6d7} /pid=13976
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\hubad\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=59.0.3071.86 --initial-client-data=0x1b0,0x1b4,0x1b8,0x1ac,0x1bc,0x7ff81e4619c8,0x7ff81e461a08,0x7ff81e4619e0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=12312 --on-initialized-event-handle=572 --parent-handle=576 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1420 --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,20,24,43,63,76 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x8086 --gpu-device-id=0x591b --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=21.20.16.4542 --gpu-driver-date=10-24-2016 --gpu-secondary-vendor-ids=0x10de --gpu-secondary-device-ids=0x1c8c --service-request-channel-token=1405BCA992EEBABB92FC888E542C5E90 --mojo-platform-channel-handle=1476 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1420 --primordial-pipe-token=3675FB762331E9A07526ED66D95A5E31 --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=3675FB762331E9A07526ED66D95A5E31 --renderer-client-id=4 --mojo-platform-channel-handle=2316 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1420 --primordial-pipe-token=BD04FE80FD65AC9EF82D55DBBC8ADD3A --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=BD04FE80FD65AC9EF82D55DBBC8ADD3A --renderer-client-id=5 --mojo-platform-channel-handle=2484 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1420 --primordial-pipe-token=3DF59B053EF689F7F88FC916928F956F --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=3DF59B053EF689F7F88FC916928F956F --renderer-client-id=6 --mojo-platform-channel-handle=2592 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1420 --primordial-pipe-token=F7068A9CF57A52C06F579B4382C8CD0F --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=F7068A9CF57A52C06F579B4382C8CD0F --renderer-client-id=10 --mojo-platform-channel-handle=3108 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1420 --primordial-pipe-token=B46C34A0A4F8F0E0B15BEE40EBCC60C4 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=B46C34A0A4F8F0E0B15BEE40EBCC60C4 --renderer-client-id=11 --mojo-platform-channel-handle=5144 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1420 --primordial-pipe-token=E582047551DA012E82C23AF6B3EE4E14 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=E582047551DA012E82C23AF6B3EE4E14 --renderer-client-id=9 --mojo-platform-channel-handle=6884 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1420 --primordial-pipe-token=363165A8E6FEE206933F1C11A4082D9B --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=363165A8E6FEE206933F1C11A4082D9B --renderer-client-id=8 --mojo-platform-channel-handle=7428 /prefetch:1
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe" /taskbarclick
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1420 --primordial-pipe-token=213B5B8145C5A099D858AEB17D338103 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=213B5B8145C5A099D858AEB17D338103 --renderer-client-id=29 --mojo-platform-channel-handle=8000 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1420 --primordial-pipe-token=024938654884E739DF520ED41C7FFAB2 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=024938654884E739DF520ED41C7FFAB2 --renderer-client-id=30 --mojo-platform-channel-handle=8084 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1420 --primordial-pipe-token=644687F23DA17F272B03806157473674 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=644687F23DA17F272B03806157473674 --renderer-client-id=31 --mojo-platform-channel-handle=4904 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1420 --primordial-pipe-token=D6D99678F49870E9A66C678AE95CE4A9 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=D6D99678F49870E9A66C678AE95CE4A9 --renderer-client-id=32 --mojo-platform-channel-handle=7112 /prefetch:1
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 632 636 644 8192 640
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Users\hubad\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\windows\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\windows\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\windows\tasks\HPCeeScheduleForJan Hubáček.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForJan Hubáček (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-05-27 210120]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17 171704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-05-27 3078960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-10-12 440680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17 171704]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17 141496]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-10-12 416104]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17 141496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17 171704]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17 141496]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2017-03-06 9186816]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-08-22 4168296]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01 508128]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2017-03-22 303928]
"ShadowPlay"=C:\windows\system32\nvspcap64.dll [2017-05-03 1893496]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\hubad\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-06-09 1555664]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2017-02-07 4701888]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2017-01-17 67384]
"iCloudDrive"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [2017-01-17 110392]
"iCloudPhotos"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [2017-01-17 356664]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HPRadioMgr"=C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [2016-08-02 324488]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\HP\HP 3D DriveGuard\AccelerometerST.exe [2016-09-28 133952]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [2017-04-05 1870928]
""= []
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2017-03-16 67896]
"HPMessageService"=C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [2017-03-15 1062392]
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2017-05-30 29246632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ModuleCoreService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcapexe]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McNaiAnn]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeaack]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeaack.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeavfk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeavfk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfemms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfencbdc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfencbdc.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeplk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeplk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfetdi2k]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfetdi2k.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ModuleCoreService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-06-13 15:36:11 ----D---- C:\rsit
2017-06-13 15:36:11 ----D---- C:\Program Files\trend micro
2017-06-13 14:55:09 ----HD---- C:\OneDriveTemp
2017-06-12 14:47:09 ----D---- C:\Program Files (x86)\VulkanRT
2017-06-12 14:47:09 ----A---- C:\windows\SYSWOW64\vulkaninfo.exe
2017-06-12 14:47:09 ----A---- C:\windows\SYSWOW64\vulkan-1.dll
2017-06-12 14:47:09 ----A---- C:\windows\system32\vulkaninfo.exe
2017-06-12 14:47:09 ----A---- C:\windows\system32\vulkan-1.dll
2017-06-12 14:45:54 ----A---- C:\windows\SYSWOW64\nvptxJitCompiler.dll
2017-06-12 14:45:54 ----A---- C:\windows\SYSWOW64\nvopencl.dll
2017-06-12 14:45:54 ----A---- C:\windows\SYSWOW64\nvoglv32.dll
2017-06-12 14:45:54 ----A---- C:\windows\SYSWOW64\NvIFROpenGL.dll
2017-06-12 14:45:54 ----A---- C:\windows\SYSWOW64\NvIFR.dll
2017-06-12 14:45:54 ----A---- C:\windows\SYSWOW64\NvFBC.dll
2017-06-12 14:45:54 ----A---- C:\windows\SYSWOW64\nvfatbinaryLoader.dll
2017-06-12 14:45:54 ----A---- C:\windows\SYSWOW64\nvEncodeAPI.dll
2017-06-12 14:45:54 ----A---- C:\windows\SYSWOW64\nvEncMFThevc.dll
2017-06-12 14:45:54 ----A---- C:\windows\SYSWOW64\nvEncMFTH264.dll
2017-06-12 14:45:54 ----A---- C:\windows\SYSWOW64\nvcuvid.dll
2017-06-12 14:45:54 ----A---- C:\windows\SYSWOW64\nvcuda.dll
2017-06-12 14:45:54 ----A---- C:\windows\SYSWOW64\nvcompiler.dll
2017-06-12 14:45:54 ----A---- C:\windows\system32\nvptxJitCompiler.dll
2017-06-12 14:45:54 ----A---- C:\windows\system32\nvopencl.dll
2017-06-12 14:45:54 ----A---- C:\windows\system32\nvoglv64.dll
2017-06-12 14:45:54 ----A---- C:\windows\system32\NvIFROpenGL.dll
2017-06-12 14:45:54 ----A---- C:\windows\system32\NvIFR64.dll
2017-06-12 14:45:54 ----A---- C:\windows\system32\NvFBC64.dll
2017-06-12 14:45:54 ----A---- C:\windows\system32\nvfatbinaryLoader.dll
2017-06-12 14:45:54 ----A---- C:\windows\system32\nvEncodeAPI64.dll
2017-06-12 14:45:54 ----A---- C:\windows\system32\nvEncMFThevc.dll
2017-06-12 14:45:54 ----A---- C:\windows\system32\nvEncMFTH264.dll
2017-06-12 14:45:54 ----A---- C:\windows\system32\nvdispgenco6438253.dll
2017-06-12 14:45:54 ----A---- C:\windows\system32\nvdispco6438253.dll
2017-06-12 14:45:54 ----A---- C:\windows\system32\nvcuvid.dll
2017-06-12 14:45:54 ----A---- C:\windows\system32\nvcuda.dll
2017-06-12 14:45:54 ----A---- C:\windows\system32\nvcompiler.dll
2017-05-30 12:22:14 ----A---- C:\windows\system32\DbxSvc.exe
2017-05-27 18:44:25 ----SHD---- C:\Config.Msi
2017-05-25 23:20:12 ----D---- C:\ProgramData\Digital Anarchy
2017-05-25 21:33:59 ----D---- C:\Program Files\REVisionEffects
2017-05-23 07:52:22 ----D---- C:\Users\hubad\AppData\Roaming\Dropbox
2017-05-23 05:36:56 ----A---- C:\windows\system32\nvdispgenco6438233.dll
2017-05-23 05:36:56 ----A---- C:\windows\system32\nvdispco6438233.dll
2017-05-23 00:29:45 ----A---- C:\windows\SYSWOW64\nvaudcap32v.dll
2017-05-23 00:29:45 ----A---- C:\windows\system32\nvaudcap64v.dll
2017-05-16 11:17:34 ----D---- C:\Users\hubad\AppData\Roaming\Google

======List of files/folders modified in the last 1 month======

2017-06-13 15:36:12 ----D---- C:\windows\Temp
2017-06-13 15:36:11 ----RD---- C:\Program Files
2017-06-13 15:27:12 ----D---- C:\SWSetup
2017-06-13 15:26:11 ----D---- C:\windows\system32\SleepStudy
2017-06-13 15:25:26 ----D---- C:\windows\system32\sru
2017-06-13 15:10:07 ----D---- C:\windows\Prefetch
2017-06-13 14:59:06 ----D---- C:\windows\System32
2017-06-13 14:59:06 ----A---- C:\windows\system32\PerfStringBackup.INI
2017-06-13 14:55:11 ----D---- C:\ProgramData\NVIDIA
2017-06-13 14:53:23 ----D---- C:\Program Files (x86)\McAfee
2017-06-13 14:53:18 ----D---- C:\windows\SysWOW64
2017-06-13 14:53:18 ----D---- C:\windows\system32\drivers
2017-06-13 14:53:01 ----D---- C:\windows\system32\CatRoot
2017-06-13 14:52:09 ----D---- C:\Program Files\HPCommRecovery
2017-06-13 14:51:07 ----SHD---- C:\windows\Installer
2017-06-13 14:51:06 ----AD---- C:\windows\HP
2017-06-13 14:50:26 ----D---- C:\windows\system32\catroot2
2017-06-13 14:50:25 ----SHD---- C:\System Volume Information
2017-06-13 14:48:16 ----RD---- C:\windows\Microsoft.NET
2017-06-13 14:48:16 ----D---- C:\windows\system32\config
2017-06-13 14:15:36 ----D---- C:\windows\system32\Tasks
2017-06-13 12:17:22 ----D---- C:\windows\WinSxS
2017-06-13 12:07:47 ----D---- C:\Windows
2017-06-13 11:20:01 ----D---- C:\windows\Tasks
2017-06-13 11:19:12 ----HD---- C:\Program Files\WindowsApps
2017-06-13 11:19:12 ----D---- C:\windows\AppReadiness
2017-06-12 14:47:13 ----D---- C:\windows\system32\DriverStore
2017-06-12 14:47:13 ----D---- C:\windows\INF
2017-06-12 14:47:09 ----RD---- C:\Program Files (x86)
2017-06-12 14:16:54 ----RSD---- C:\windows\assembly
2017-06-12 14:10:28 ----D---- C:\windows\LiveKernelReports
2017-06-10 00:00:55 ----D---- C:\windows\system32\appraiser
2017-06-10 00:00:55 ----D---- C:\windows\CbsTemp
2017-06-08 03:45:45 ----A---- C:\windows\SYSWOW64\nvapi.dll
2017-06-08 03:45:45 ----A---- C:\windows\system32\nvapi64.dll
2017-06-08 03:45:45 ----A---- C:\windows\NvTelemetryContainerRecovery.bat
2017-06-08 02:01:44 ----A---- C:\windows\NvContainerRecovery.bat
2017-06-08 01:55:17 ----A---- C:\windows\system32\nvsvc64.dll
2017-06-08 01:55:17 ----A---- C:\windows\system32\nvcpl.dll
2017-06-08 01:55:15 ----A---- C:\windows\system32\nvsvcr.dll
2017-06-08 01:55:15 ----A---- C:\windows\system32\nvshext.dll
2017-06-08 01:55:15 ----A---- C:\windows\system32\nvmctray.dll
2017-06-08 01:55:15 ----A---- C:\windows\system32\nv3dappshextr.dll
2017-06-08 01:55:15 ----A---- C:\windows\system32\nv3dappshext.dll
2017-06-07 18:17:05 ----D---- C:\ProgramData\McAfee
2017-06-07 01:16:37 ----D---- C:\Users\hubad\AppData\Roaming\vlc
2017-06-02 09:25:26 ----SD---- C:\Users\hubad\AppData\Roaming\Microsoft
2017-06-02 09:23:49 ----D---- C:\Program Files (x86)\Dropbox
2017-05-29 01:57:49 ----D---- C:\Users\hubad\AppData\Roaming\uTorrent
2017-05-27 20:23:00 ----D---- C:\ProgramData\boost_interprocess
2017-05-27 18:44:33 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2017-05-27 18:44:05 ----D---- C:\Program Files (x86)\Common Files
2017-05-27 18:43:43 ----AD---- C:\Program Files (x86)\Microsoft Office
2017-05-26 00:18:18 ----D---- C:\Users\hubad\AppData\Roaming\Adobe
2017-05-25 23:20:12 ----HD---- C:\ProgramData
2017-05-24 01:31:46 ----D---- C:\windows\system32\MRT
2017-05-24 01:30:24 ----AC---- C:\windows\system32\MRT.exe
2017-05-23 05:37:37 ----D---- C:\Program Files\NVIDIA Corporation
2017-05-23 00:30:00 ----D---- C:\ProgramData\NVIDIA Corporation
2017-05-23 00:29:54 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-05-17 23:50:52 ----D---- C:\windows\rescache
2017-05-17 18:15:34 ----RSD---- C:\windows\Fonts
2017-05-17 13:22:53 ----D---- C:\Program Files\Common Files\McAfee
2017-05-17 13:22:44 ----HD---- C:\windows\ELAMBKUP
2017-05-16 12:04:37 ----AD---- C:\Program Files\Intel

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;@oem35.inf,%service_desc%;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2016-09-26 42344]
R0 iaStorA;iaStorA; C:\windows\System32\drivers\iaStorA.sys [2016-09-20 795640]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\windows\system32\drivers\iorate.sys [2016-11-24 48992]
R0 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2017-01-20 923640]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\windows\system32\drivers\mfewfpk.sys [2017-01-20 254800]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\windows\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\windows\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\windows\System32\drivers\registry.sys [2016-07-16 70144]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\windows\system32\drivers\mmcss.sys [2016-07-16 48128]
R3 Accelerometer;@oem35.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2016-09-26 56168]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\windows\System32\drivers\BthEnum.sys [2016-11-24 114176]
R3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\windows\System32\drivers\BthLEEnum.sys [2017-04-28 249856]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\windows\System32\drivers\bthpan.sys [2016-11-24 128512]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\drivers\BTHUSB.sys [2016-11-24 84992]
R3 cfwids;McAfee Inc. cfwids; C:\windows\system32\drivers\cfwids.sys [2017-01-20 88464]
R3 dptf_cpu;dptf_cpu; C:\windows\System32\drivers\dptf_cpu.sys [2016-09-19 66624]
R3 dtlitescsibus;@oem41.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\windows\System32\drivers\dtlitescsibus.sys [2017-03-08 30264]
R3 dtliteusbbus;@oem42.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\windows\System32\drivers\dtliteusbbus.sys [2017-03-08 47672]
R3 esif_lf;esif_lf; C:\windows\system32\DRIVERS\esif_lf.sys [2016-09-19 350272]
R3 ibtusb;@oem56.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\windows\system32\DRIVERS\ibtusb.sys [2017-04-13 244744]
R3 igfx;igfx; C:\windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\igdkmd64.sys [2017-02-22 11036640]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2017-03-06 5556224]
R3 IntcDAud;@oem37.inf,%IntcAud.SvcDesc%;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2016-10-07 822248]
R3 MEIx64;@oem5.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\windows\System32\drivers\TeeDriverW8x64.sys [2016-09-23 204896]
R3 mfeaack;McAfee Inc. mfeaack; C:\windows\system32\drivers\mfeaack.sys [2017-01-20 487184]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\windows\system32\drivers\mfeavfk.sys [2017-01-20 366328]
R3 mfefirek;McAfee Inc. mfefirek; C:\windows\system32\drivers\mfefirek.sys [2017-01-20 518704]
R3 mfencbdc;McAfee Inc. mfencbdc; C:\windows\system32\DRIVERS\mfencbdc.sys [2017-01-19 498648]
R3 mfeplk;McAfee Inc. mfeplk; C:\windows\system32\drivers\mfeplk.sys [2017-01-20 110256]
R3 Netwtw04;___ Ovladač adaptéru Intel(R) Wireless pro systém Windows 10 64 Bit; C:\windows\System32\drivers\Netwtw04.sys [2016-10-11 7310600]
R3 nvlddmkm;nvlddmkm; C:\windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_f56903d2cfb40dd3\nvlddmkm.sys [2017-06-09 14461344]
R3 nvvad_WaveExtensible;@oem57.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\windows\system32\drivers\nvvad64v.sys [2017-05-03 48248]
R3 nvvhci;@oem47.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\windows\System32\drivers\nvvhci.sys [2017-05-18 57792]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\System32\drivers\rfcomm.sys [2016-07-16 183808]
R3 rt640x64;@oem21.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\windows\System32\drivers\rt640x64.sys [2016-08-05 943112]
R3 SensorsHIDClassDriver;@SensorsHidClassDriver.inf,%WudfSensorsHIDClassDriverDisplayName%;UMDF Reflector service for Sensors HID Class Driver; C:\windows\System32\drivers\WUDFRd.sys [2016-07-16 216064]
R3 SmbDrvI;SmbDrvI; C:\windows\system32\DRIVERS\Smb_driver_Intel.sys [2016-08-22 64104]
S0 LSI_SAS2i;LSI_SAS2i; C:\windows\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\windows\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\windows\System32\drivers\MegaSas2i.sys [2016-11-24 64352]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\windows\system32\drivers\mfeelamk.sys [2017-04-03 85048]
S0 percsas2i;percsas2i; C:\windows\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\windows\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\windows\System32\drivers\scmbus.sys [2017-04-28 88416]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\windows\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\windows\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\windows\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\windows\System32\drivers\BTHport.sys [2017-04-28 967680]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\windows\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\windows\System32\drivers\capimg.sys [2016-11-24 118272]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\windows\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\windows\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 HipShieldK;McAfee Inc. HipShieldK; C:\windows\system32\drivers\HipShieldK.sys [2017-04-01 225432]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\windows\system32\drivers\hvservice.sys [2016-11-24 73568]
S3 cht4iscsi;cht4iscsi; C:\windows\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\windows\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\windows\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\windows\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\windows\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\windows\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\windows\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\windows\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\windows\system32\drivers\irda.sys [2016-07-16 120320]
S3 mfencrk;McAfee Inc. mfencrk; C:\windows\system32\DRIVERS\mfencrk.sys [2017-01-19 109320]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\windows\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\windows\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\windows\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 NVHDA;@oem39.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\windows\system32\drivers\nvhda64v.sys [2017-02-10 221632]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-05-03 30328]
S3 NVSWCFilter;@oem15.inf,%NVSWCFilter.SvcDesc%;NVIDIA SHIELD Wireless Controller Trackpad Service; C:\windows\System32\drivers\nvswcfilter.sys [2016-11-01 35272]
S3 ReFSv1;ReFSv1; C:\windows\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 RTSPER;@oem27.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\windows\system32\DRIVERS\RtsPer.sys [2016-08-22 779232]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\windows\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 SmbDrv;SmbDrv; C:\windows\System32\drivers\Smb_driver_AMDASF.sys [2016-08-22 60008]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-04-25 83056]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2017-05-18 2246256]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\windows\system32\svchost.exe [2016-07-16 44496]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2017-03-17 83768]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\windows\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_b1303;CDPUserSvc_b1303; C:\windows\system32\svchost.exe [2016-07-16 44496]
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2017-05-14 3971264]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\windows\system32\svchost.exe [2016-07-16 44496]
R2 cplspcon;Intel(R) Content Protection HDCP Service; C:\windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\IntelCpHDCPSvc.exe [2017-02-22 488928]
R2 DbxSvc;DbxSvc; C:\windows\system32\DbxSvc.exe [2017-05-30 48944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\windows\System32\svchost.exe [2016-07-16 44496]
R2 esifsvc;@oem11.inf,%ServiceDisplayName%;ESIF Upper Framework Service; C:\windows\system32\Intel\DPTF\esif_uf.exe [2016-09-19 2208888]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; c:\Program Files\Intel\WiFi\bin\EvtEng.exe [2016-08-04 640928]
R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-02-22 641520]
R2 HP Comm Recover;HP Comm Recovery; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [2016-10-07 1309184]
R2 HPJumpStartBridge;HP JumpStart Bridge; c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [2016-10-25 469016]
R2 hpsrv;@oem35.inf,%hpservice_desc%;HP Service; C:\windows\system32\Hpservice.exe [2016-09-26 38752]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-06-01 321056]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [2017-02-06 630776]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2016-09-20 17976]
R2 ibtsiva;@oem56.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\windows\system32\ibtsiva []
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\igfxCUIService.exe [2017-02-22 350688]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2016-10-05 177440]
R2 McAPExe;McAfee AP Service; C:\Program Files\Common Files\McAfee\VSCore_15_6\McApExe.exe [2017-04-04 994312]
R2 McBootDelayStartSvc;McAfee Boot Delay Start Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-02-22 641520]
R2 mccspsvc;McAfee CSP Service; C:\Program Files\Common Files\McAfee\CSP\2.3.322.0\\McCSPServiceHost.exe [2017-02-28 2054080]
R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-02-22 641520]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2017-02-22 641520]
R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2017-02-22 641520]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2017-02-22 641520]
R2 mfemms;McAfee Service Controller; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [2017-01-18 385112]
R2 ModuleCoreService;McAfee Module Core Service; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [2017-02-26 1551512]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-06-08 462968]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-06-08 449984]
R2 OneSyncSvc_b1303;Hostitel synchronizace_b1303; C:\windows\system32\svchost.exe [2016-07-16 44496]
R2 PEFService;Intel Security PEF Service; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [2017-04-21 1105840]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2016-08-04 157600]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2017-03-06 320512]
R3 cphs;Intel(R) Content Protection HECI Service; C:\windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\IntelCpHeciSvc.exe [2017-02-22 310240]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2016-01-21 1129760]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\windows\System32\svchost.exe [2016-07-16 44496]
R3 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2017-01-18 241040]
R3 mfevtp;McAfee Validation Trust Protection Service; C:\windows\system32\mfevtps.exe [2017-01-18 343792]
R3 PimIndexMaintenanceSvc_b1303;Data kontaktů_b1303; C:\windows\system32\svchost.exe [2016-07-16 44496]
R3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\windows\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\windows\system32\svchost.exe [2016-07-16 44496]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-03-06 143144]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\windows\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-08 153752]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\windows\System32\svchost.exe [2016-07-16 44496]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\windows\system32\svchost.exe [2016-07-16 44496]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\windows\system32\svchost.exe [2016-07-16 44496]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-16 52920]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\windows\System32\svchost.exe [2016-07-16 44496]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\windows\System32\svchost.exe [2016-07-16 44496]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-03-06 143144]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\windows\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\windows\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2017-02-07 1471168]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\windows\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\windows\system32\svchost.exe [2016-07-16 44496]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\windows\System32\svchost.exe [2016-07-16 44496]
S3 EasyAntiCheat;EasyAntiCheat; C:\windows\syswow64\EasyAntiCheat.exe [2016-12-27 395024]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\windows\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\windows\system32\svchost.exe [2016-07-16 44496]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\windows\System32\svchost.exe [2016-07-16 44496]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-08 153752]
S3 hpqcaslwmiex;HP CASL Framework Service; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [2016-06-03 1031704]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\windows\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\windows\system32\svchost.exe [2016-07-16 44496]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2016-07-26 987432]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2017-03-22 689464]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\windows\system32\svchost.exe [2016-07-16 44496]
S3 McAWFwk;McAfee Activation Service; c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe [2016-04-01 419096]
S3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2017-02-24 1344472]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\windows\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_b1303;Služba zasílání zpráv_b1303; C:\windows\system32\svchost.exe [2016-07-16 44496]
S3 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-02-22 641520]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2016-08-04 268704]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\windows\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\windows\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\windows\system32\svchost.exe [2016-07-16 44496]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-05-14 207040]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\windows\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\windows\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\windows\System32\svchost.exe [2016-07-16 44496]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\windows\System32\svchost.exe [2016-07-16 44496]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\windows\System32\SensorDataService.exe [2017-03-04 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\windows\system32\svchost.exe [2016-07-16 44496]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\windows\System32\svchost.exe [2016-07-16 44496]

-----------------EOF-----------------
Nahoru
JohnyHubage
Návštěvník
Návštěvník
Příspěvky: 59
Registrován: 05 bře 2007 22:01
Bydliště: Liberec
Kontaktovat uživatele:
Kontaktovat uživatele JohnyHubage

Re: preventivka+

#2 Příspěvek od JohnyHubage »

Dobrý den, ještě jednou prosím někoho z rádců tady na fóru, jestli by mohl zkontrolovat log který jsem vkládal.

Děkuji moc.

J. Hubáček
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119414
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: preventivka+

#3 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
JohnyHubage
Návštěvník
Návštěvník
Příspěvky: 59
Registrován: 05 bře 2007 22:01
Bydliště: Liberec
Kontaktovat uživatele:
Kontaktovat uživatele JohnyHubage

Re: preventivka+

#4 Příspěvek od JohnyHubage »

Děkuji za odpověď, zasílám log z adwcleaneru:

# AdwCleaner v6.047 - Log vytvořen 16/06/2017 v 19:22:49
# Aktualizováno dne 19/05/2017 z Malwarebytes
# Databáze : 2017-06-16.2 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : Jan Hubáček - LAPTOP-CV002GC8
# Spuštěno z : C:\Users\hubad\Desktop\adwcleaner_6.047.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****

[-] Služba smazána: Update service


***** [ Složky ] *****



***** [ Soubory ] *****

[-] Soubor smazán: C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_klavesnice.info_0.localstorage
[-] Soubor smazán: C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_klavesnice.info_0.localstorage-journal
[#] Soubor smazán: C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_klavesnice.info_0.localstorage
[#] Soubor smazán: C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_klavesnice.info_0.localstorage-journal


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupci ] *****



***** [ Naplánované úlohy ] *****



***** [ Registry ] *****

[-] Klíč smazán: HKU\S-1-5-21-1221443000-1727349760-804829882-1001\Software\Conduit
[#] Klíč smazán po restartu: HKCU\Software\Conduit
[-] Klíč smazán: HKLM\SOFTWARE\Conduit
[#] Klíč smazán po restartu: [x64] HKCU\Software\Conduit


***** [ Prohlížeče ] *****

[-] [C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: ip-camera-viewer.en.softonic.com
[-] [C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: youndoo
[-] [C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: amisites
[-] [C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default] [startup_urls] Smazáno: hxxp://www.youndoo.com/?z=38b4036a0c49970f510f ... CX&type=hp
[-] [C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default] [startup_urls] Smazáno: hxxp://www.amisites.com/?type=hp&ts=1485182290 ... VHCH3NVHCX
[-] [C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: ip-camera-viewer.en.softonic.com
[-] [C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: youndoo
[-] [C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: amisites
[-] [C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default] [startup_urls] Smazáno: hxxp://www.youndoo.com/?z=38b4036a0c49970f510f ... CX&type=hp
[-] [C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default] [startup_urls] Smazáno: hxxp://www.amisites.com/?type=hp&ts=1485182290 ... VHCH3NVHCX


*************************

:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [3322 Bajty] - [16/06/2017 19:22:49]
C:\AdwCleaner\AdwCleaner[S0].txt - [3820 Bajty] - [16/06/2017 19:21:37]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [3468 Bajty] ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119414
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: preventivka+

#5 Příspěvek od Rudy »

Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=30&t=133101 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
JohnyHubage
Návštěvník
Návštěvník
Příspěvky: 59
Registrován: 05 bře 2007 22:01
Bydliště: Liberec
Kontaktovat uživatele:
Kontaktovat uživatele JohnyHubage

Re: preventivka+

#6 Příspěvek od JohnyHubage »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-06-2017 01
Ran by Jan Hubáček (administrator) on LAPTOP-CV002GC8 (16-06-2017 20:36:18)
Running from C:\Users\hubad\Desktop
Loaded Profiles: Jan Hubáček (Available Profiles: defaultuser0 & Jan Hubáček)
Platform: Windows 10 Home Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\igfxCUIService.exe
(HP) C:\Windows\System32\hpservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\IntelCpHDCPSvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\IntelCpHeciSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\mcsvchost\McSvHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\2.3.322.0\McCSPServiceHost.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\igfxEM.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.17.420.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(HP) C:\Program Files (x86)\HP\HP 3D DriveGuard\AccelerometerSt.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\VSCore_15_6\mcapexe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(HP Development Company, L.P.) C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17042.14211.0_x64__8wekyb3d8bbwe\Video.UI.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.524.10020.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17042.14111.0_x64__8wekyb3d8bbwe\Music.UI.exe
(HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files\mcafee\CoreUI\Launch.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ChromiumContainer\delegate.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(McAfee, Inc.) C:\Program Files\mcafee.com\agent\mcupdate.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McUICnt.exe
(forum.viry.cz) C:\Users\hubad\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9186816 2017-03-06] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4168296 2016-08-22] (Synaptics Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [303928 2017-03-22] (Apple Inc.)
HKLM\...\Run: [ShadowPlay] => "C:\windows\system32\rundll32.exe" C:\windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [324488 2016-08-02] (HP)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\HP\HP 3D DriveGuard\AccelerometerST.exe [133952 2016-09-28] (HP)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1870928 2017-04-05] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67896 2017-03-16] (Apple Inc.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [1062392 2017-03-15] (HP Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3487032 2017-06-12] (Dropbox, Inc.)
HKU\S-1-5-21-1221443000-1727349760-804829882-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2017-02-07] (Disc Soft Ltd)
HKU\S-1-5-21-1221443000-1727349760-804829882-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2017-01-17] (Apple Inc.)
HKU\S-1-5-21-1221443000-1727349760-804829882-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2017-01-17] (Apple Inc.)
HKU\S-1-5-21-1221443000-1727349760-804829882-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2017-01-17] (Apple Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-06-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-06-12] (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{3f7e188f-046a-4aa2-948e-c51a9149fd4f}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6f91a1e0-5da6-4eb5-a326-6d1688c6d198}: [DhcpNameServer] 40.23.1.12

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\S-1-5-21-1221443000-1727349760-804829882-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1221443000-1727349760-804829882-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-06-16] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17] (Adobe Systems Incorporated)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-06-16] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-10-12] (HP Inc.)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17] (Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17] (Adobe Systems Incorporated)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-10-12] (HP Inc.)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17] (Adobe Systems Incorporated)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-06-16] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-06-16] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-06-16] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-06-16] (Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2017-04-17] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2017-04-17] (McAfee, Inc.)

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat DC - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2017-05-21]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2017-03-31] [not signed]
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2017-04-17] ()
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-29] (Adobe Systems)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2017-04-17] ()
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-05-27] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-03] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-29] (Adobe Systems)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.google.cz/","hxxp://www.yandex.ru/? ... VHCH3NVHCX"
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default [2017-06-16]
CHR Extension: (Prezentace Google) - C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-03-08]
CHR Extension: (Dokumenty Google) - C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-03-08]
CHR Extension: (Disk Google) - C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-08]
CHR Extension: (YouTube) - C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-08]
CHR Extension: (Adblock Plus) - C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-03-22]
CHR Extension: (Adblock na Youtube™) - C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2017-06-15]
CHR Extension: (Adobe Acrobat) - C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-08]
CHR Extension: (Tabulky Google) - C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-03-08]
CHR Extension: (Dokumenty Google offline) - C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-08]
CHR Extension: (FormApps Extension) - C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2017-06-15]
CHR Extension: (HP Network Check Launcher) - C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkfpchpiljkaemlpmpebnglgkomamfeo [2017-03-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-10]
CHR Extension: (Gmail) - C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-08]
CHR Extension: (Chrome Media Router) - C:\Users\hubad\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-06]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [jkfpchpiljkaemlpmpebnglgkomamfeo] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-03-17] (Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [4122816 2017-06-10] (Microsoft Corporation)
R3 cphs; C:\windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\IntelCpHeciSvc.exe [310240 2017-02-22] (Intel Corporation)
R2 cplspcon; C:\windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\IntelCpHDCPSvc.exe [488928 2017-02-22] (Intel Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-03-06] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-03-06] (Dropbox, Inc.)
R2 DbxSvc; C:\windows\system32\DbxSvc.exe [48944 2017-06-12] (Dropbox, Inc.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-02-07] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\windows\SysWOW64\EasyAntiCheat.exe [395024 2016-12-27] (EasyAntiCheat Ltd)
R2 esifsvc; C:\windows\system32\Intel\DPTF\esif_uf.exe [2208888 2016-09-19] (Intel Corporation)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1309184 2016-10-07] (HP Inc.) [File not signed]
R2 HPJumpStartBridge; c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [469016 2016-10-25] (HP Inc.)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (HP)
R2 hpsrv; C:\windows\system32\Hpservice.exe [38752 2016-09-26] (HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [321056 2017-06-01] (HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [630776 2017-02-06] (HP Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [17976 2016-09-20] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\igfxCUIService.exe [350688 2017-02-22] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [987432 2016-07-26] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [177440 2016-10-05] (Intel Corporation)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_6\McApExe.exe [994312 2017-04-04] (McAfee, Inc.)
S3 McAWFwk; c:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [419096 2016-04-01] (McAfee, Inc.)
R2 McBootDelayStartSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.3.322.0\\McCSPServiceHost.exe [2054080 2017-02-28] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [1344472 2017-02-24] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [241040 2017-01-18] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [385112 2017-01-18] (McAfee, Inc.)
R3 mfevtp; C:\windows\system32\mfevtps.exe [343792 2017-01-18] (McAfee, Inc.)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1551512 2017-02-26] (McAfee, Inc.)
S3 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
S3 MyWiFiDHCPDNS; c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268704 2016-08-04] ()
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-06-08] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-06-08] (NVIDIA Corporation)
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1105840 2017-04-21] (Intel Security, Inc.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [320512 2017-03-06] (Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [258152 2016-08-22] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-04-28] (Microsoft Corporation)
R2 ZeroConfigService; c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3732896 2016-08-04] (Intel® Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [56168 2016-09-26] (HP)
R3 cfwids; C:\windows\System32\drivers\cfwids.sys [88464 2017-01-20] (McAfee, Inc.)
R3 dptf_cpu; C:\windows\System32\drivers\dptf_cpu.sys [66624 2016-09-19] (Intel Corporation)
R3 dtlitescsibus; C:\windows\System32\drivers\dtlitescsibus.sys [30264 2017-03-08] (Disc Soft Ltd)
R3 dtliteusbbus; C:\windows\System32\drivers\dtliteusbbus.sys [47672 2017-03-08] (Disc Soft Ltd)
R3 esif_lf; C:\windows\system32\DRIVERS\esif_lf.sys [350272 2016-09-19] (Intel Corporation)
S3 HipShieldK; C:\windows\System32\drivers\HipShieldK.sys [225432 2017-04-01] (McAfee, Inc.)
R0 hpdskflt; C:\windows\System32\DRIVERS\hpdskflt.sys [42344 2016-09-26] (HP)
R3 ibtusb; C:\windows\system32\DRIVERS\ibtusb.sys [244744 2017-04-13] (Intel Corporation)
R3 igfx; C:\windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\igdkmd64.sys [11036640 2017-02-22] (Intel Corporation)
R3 mfeaack; C:\windows\System32\drivers\mfeaack.sys [487184 2017-01-20] (McAfee, Inc.)
R3 mfeavfk; C:\windows\System32\drivers\mfeavfk.sys [366328 2017-01-20] (McAfee, Inc.)
S0 mfeelamk; C:\windows\System32\drivers\mfeelamk.sys [85048 2017-04-03] (McAfee, Inc.)
R3 mfefirek; C:\windows\System32\drivers\mfefirek.sys [518704 2017-01-20] (McAfee, Inc.)
R0 mfehidk; C:\windows\System32\drivers\mfehidk.sys [923640 2017-01-20] (McAfee, Inc.)
R3 mfencbdc; C:\windows\System32\DRIVERS\mfencbdc.sys [498648 2017-01-19] (McAfee, Inc.)
S3 mfencrk; C:\windows\System32\DRIVERS\mfencrk.sys [109320 2017-01-19] (McAfee, Inc.)
R3 mfeplk; C:\windows\System32\drivers\mfeplk.sys [110256 2017-01-20] (McAfee, Inc.)
R0 mfewfpk; C:\windows\System32\drivers\mfewfpk.sys [254800 2017-01-20] (McAfee, Inc.)
S3 NetAdapterCx; C:\windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 Netwtw04; C:\windows\System32\drivers\Netwtw04.sys [7310600 2016-10-11] (Intel Corporation)
R3 nvlddmkm; C:\windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_f56903d2cfb40dd3\nvlddmkm.sys [14461344 2017-06-09] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-05-03] (NVIDIA Corporation)
S3 NVSWCFilter; C:\windows\System32\drivers\nvswcfilter.sys [35272 2016-11-01] (Windows (R) Win 7 DDK provider)
R3 nvvad_WaveExtensible; C:\windows\system32\drivers\nvvad64v.sys [48248 2017-05-03] (NVIDIA Corporation)
R3 nvvhci; C:\windows\System32\drivers\nvvhci.sys [57792 2017-05-18] (NVIDIA Corporation)
R3 rt640x64; C:\windows\System32\drivers\rt640x64.sys [943112 2016-08-05] (Realtek )
S3 RTSPER; C:\windows\system32\DRIVERS\RtsPer.sys [779232 2016-08-22] (Realsil Semiconductor Corporation)
S3 SmbDrv; C:\windows\System32\drivers\Smb_driver_AMDASF.sys [60008 2016-08-22] (Synaptics Incorporated)
R3 SmbDrvI; C:\windows\system32\DRIVERS\Smb_driver_Intel.sys [64104 2016-08-22] (Synaptics Incorporated)
S3 WdBoot; C:\windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R3 WirelessButtonDriver64; C:\windows\system32\DRIVERS\WirelessButtonDriver64.sys [32832 2016-07-31] (HP)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-16 20:36 - 2017-06-16 20:36 - 00033676 _____ C:\Users\hubad\Desktop\FRST.txt
2017-06-16 20:35 - 2017-06-16 20:36 - 00000000 ____D C:\FRST
2017-06-16 20:34 - 2017-06-16 20:34 - 00112640 _____ (forum.viry.cz) C:\Users\hubad\Desktop\FRSTLauncher.exe
2017-06-16 20:31 - 2017-06-16 20:31 - 02438656 _____ (Farbar) C:\Users\hubad\Desktop\FRST64.exe
2017-06-16 19:26 - 2017-06-16 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2017-06-16 19:20 - 2017-06-16 19:22 - 00000000 ____D C:\AdwCleaner
2017-06-16 19:12 - 2017-06-16 19:12 - 41601995 _____ C:\Users\hubad\Desktop\REVisionFX Effections Plus v16.0.2.rar
2017-06-16 19:08 - 2017-06-16 19:08 - 04200213 _____ C:\Users\hubad\Desktop\TXCC2015.rar
2017-06-16 19:07 - 2017-06-16 19:07 - 04200242 _____ C:\Users\hubad\Desktop\RVFXTPv6.2.1_DownloadPirate.com.rar
2017-06-16 17:27 - 2017-06-16 19:20 - 04110280 _____ C:\Users\hubad\Desktop\adwcleaner_6.047.exe
2017-06-16 12:02 - 2017-06-16 12:02 - 00000000 ___HD C:\OneDriveTemp
2017-06-15 23:27 - 2017-06-15 23:27 - 00000000 ___SD C:\windows\UpdateAssistantV2
2017-06-15 23:22 - 2017-06-15 23:22 - 00067410 _____ C:\Users\hubad\Desktop\faktura_62017 (1).pdf
2017-06-15 23:21 - 2017-06-15 23:21 - 00069573 _____ C:\Users\hubad\Desktop\faktura_62017.pdf
2017-06-15 21:29 - 2017-06-03 12:50 - 00315744 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2017-06-15 21:29 - 2017-06-03 12:16 - 00279904 _____ (Microsoft Corporation) C:\windows\system32\Drivers\sdbus.sys
2017-06-15 21:29 - 2017-06-03 12:14 - 00379232 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2017-06-15 21:29 - 2017-06-03 12:11 - 01706488 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2017-06-15 21:29 - 2017-06-03 12:09 - 02213760 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2017-06-15 21:29 - 2017-06-03 12:08 - 07783256 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2017-06-15 21:29 - 2017-06-03 12:06 - 02048496 _____ C:\windows\SysWOW64\CoreUIComponents.dll
2017-06-15 21:29 - 2017-06-03 12:01 - 02681200 _____ C:\windows\system32\CoreUIComponents.dll
2017-06-15 21:29 - 2017-06-03 11:59 - 01181024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2017-06-15 21:29 - 2017-06-03 11:59 - 00764392 _____ (Microsoft Corporation) C:\windows\system32\CoreMessaging.dll
2017-06-15 21:29 - 2017-06-03 11:59 - 00118112 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tdx.sys
2017-06-15 21:29 - 2017-06-03 11:58 - 00340832 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2017-06-15 21:29 - 2017-06-03 11:55 - 00780640 _____ (Microsoft Corporation) C:\windows\SysWOW64\WWAHost.exe
2017-06-15 21:29 - 2017-06-03 11:54 - 00187232 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dumpsd.sys
2017-06-15 21:29 - 2017-06-03 11:53 - 00404824 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2017-06-15 21:29 - 2017-06-03 11:52 - 01021784 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppxPackaging.dll
2017-06-15 21:29 - 2017-06-03 11:52 - 00607072 _____ (Microsoft Corporation) C:\windows\SysWOW64\NetSetupEngine.dll
2017-06-15 21:29 - 2017-06-03 11:52 - 00111968 _____ (Microsoft Corporation) C:\windows\SysWOW64\NetSetupApi.dll
2017-06-15 21:29 - 2017-06-03 11:51 - 02187104 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2017-06-15 21:29 - 2017-06-03 11:51 - 00402272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2017-06-15 21:29 - 2017-06-03 11:50 - 00857440 _____ (Microsoft Corporation) C:\windows\system32\WWAHost.exe
2017-06-15 21:29 - 2017-06-03 11:50 - 00381792 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBXHCI.SYS
2017-06-15 21:29 - 2017-06-03 11:49 - 20967840 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2017-06-15 21:29 - 2017-06-03 11:48 - 01112416 _____ (Microsoft Corporation) C:\windows\system32\AppxPackaging.dll
2017-06-15 21:29 - 2017-06-03 11:48 - 00857952 _____ (Microsoft Corporation) C:\windows\system32\NetSetupEngine.dll
2017-06-15 21:29 - 2017-06-03 11:48 - 00148832 _____ (Microsoft Corporation) C:\windows\system32\NetSetupApi.dll
2017-06-15 21:29 - 2017-06-03 11:45 - 22220864 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2017-06-15 21:29 - 2017-06-03 11:44 - 01600624 _____ (Microsoft Corporation) C:\windows\system32\sppobjs.dll
2017-06-15 21:29 - 2017-06-03 11:44 - 01412640 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32full.dll
2017-06-15 21:29 - 2017-06-03 11:44 - 00545944 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontdrvhost.exe
2017-06-15 21:29 - 2017-06-03 11:40 - 01566552 _____ (Microsoft Corporation) C:\windows\system32\gdi32full.dll
2017-06-15 21:29 - 2017-06-03 11:40 - 00628552 _____ (Microsoft Corporation) C:\windows\system32\fontdrvhost.exe
2017-06-15 21:29 - 2017-06-03 11:39 - 05686272 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Data.Pdf.dll
2017-06-15 21:29 - 2017-06-03 11:39 - 02532192 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2017-06-15 21:29 - 2017-06-03 11:33 - 00095232 _____ (Microsoft Corporation) C:\windows\SysWOW64\UserDataTimeUtil.dll
2017-06-15 21:29 - 2017-06-03 11:32 - 00002560 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2017-06-15 21:29 - 2017-06-03 11:31 - 00224256 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExSMime.dll
2017-06-15 21:29 - 2017-06-03 11:31 - 00037376 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2017-06-15 21:29 - 2017-06-03 11:28 - 00285184 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-06-15 21:29 - 2017-06-03 11:28 - 00232448 _____ (Microsoft Corporation) C:\windows\SysWOW64\edputil.dll
2017-06-15 21:29 - 2017-06-03 11:26 - 00231936 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-06-15 21:29 - 2017-06-03 11:26 - 00100352 _____ (Microsoft Corporation) C:\windows\SysWOW64\AuthBrokerUI.dll
2017-06-15 21:29 - 2017-06-03 11:23 - 00306688 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieproxy.dll
2017-06-15 21:29 - 2017-06-03 11:22 - 07217152 _____ (Microsoft Corporation) C:\windows\system32\Windows.Data.Pdf.dll
2017-06-15 21:29 - 2017-06-03 11:22 - 00364544 _____ (Microsoft Corporation) C:\windows\SysWOW64\NetSetupShim.dll
2017-06-15 21:29 - 2017-06-03 11:22 - 00327168 _____ (Microsoft Corporation) C:\windows\SysWOW64\netcorehc.dll
2017-06-15 21:29 - 2017-06-03 11:22 - 00181760 _____ (Microsoft Corporation) C:\windows\SysWOW64\tcpipcfg.dll
2017-06-15 21:29 - 2017-06-03 11:20 - 00755712 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2017-06-15 21:29 - 2017-06-03 11:19 - 01164288 _____ (Microsoft Corporation) C:\windows\SysWOW64\certutil.exe
2017-06-15 21:29 - 2017-06-03 11:18 - 22569984 _____ (Microsoft Corporation) C:\windows\system32\edgehtml.dll
2017-06-15 21:29 - 2017-06-03 11:16 - 00709120 _____ (Microsoft Corporation) C:\windows\SysWOW64\CPFilters.dll
2017-06-15 21:29 - 2017-06-03 11:16 - 00119808 _____ (Microsoft Corporation) C:\windows\system32\UserDataTimeUtil.dll
2017-06-15 21:29 - 2017-06-03 11:15 - 19414016 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2017-06-15 21:29 - 2017-06-03 11:15 - 18364928 _____ (Microsoft Corporation) C:\windows\SysWOW64\edgehtml.dll
2017-06-15 21:29 - 2017-06-03 11:15 - 00886272 _____ (Microsoft Corporation) C:\windows\SysWOW64\aadtb.dll
2017-06-15 21:29 - 2017-06-03 11:15 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\musdialoghandlers.dll
2017-06-15 21:29 - 2017-06-03 11:15 - 00041472 _____ (Microsoft Corporation) C:\windows\system32\Drivers\BasicRender.sys
2017-06-15 21:29 - 2017-06-03 11:14 - 00238592 _____ (Microsoft Corporation) C:\windows\system32\MusNotification.exe
2017-06-15 21:29 - 2017-06-03 11:14 - 00124416 _____ (Microsoft Corporation) C:\windows\system32\mssprxy.dll
2017-06-15 21:29 - 2017-06-03 11:14 - 00098304 _____ (Microsoft Corporation) C:\windows\system32\MusNotificationUx.exe
2017-06-15 21:29 - 2017-06-03 11:12 - 00027136 _____ (Microsoft Corporation) C:\windows\SysWOW64\fdProxy.dll
2017-06-15 21:29 - 2017-06-03 11:11 - 00353792 _____ (Microsoft Corporation) C:\windows\system32\cloudAP.dll
2017-06-15 21:29 - 2017-06-03 11:10 - 00418304 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.BlockedShutdown.dll
2017-06-15 21:29 - 2017-06-03 11:09 - 00441344 _____ (Microsoft Corporation) C:\windows\system32\netcorehc.dll
2017-06-15 21:29 - 2017-06-03 11:09 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\NetworkBindingEngineMigPlugin.dll
2017-06-15 21:29 - 2017-06-03 11:08 - 12187648 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2017-06-15 21:29 - 2017-06-03 11:08 - 02643968 _____ (Microsoft Corporation) C:\windows\SysWOW64\tquery.dll
2017-06-15 21:29 - 2017-06-03 11:08 - 01221120 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Audio.dll
2017-06-15 21:29 - 2017-06-03 11:08 - 00691200 _____ (Microsoft Corporation) C:\windows\system32\ieproxy.dll
2017-06-15 21:29 - 2017-06-03 11:07 - 00552960 _____ (Microsoft Corporation) C:\windows\system32\MusUpdateHandlers.dll
2017-06-15 21:29 - 2017-06-03 11:07 - 00456192 _____ (Microsoft Corporation) C:\windows\system32\puiobj.dll
2017-06-15 21:29 - 2017-06-03 11:06 - 03664384 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2017-06-15 21:29 - 2017-06-03 11:05 - 01883648 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Logon.dll
2017-06-15 21:29 - 2017-06-03 11:05 - 00295424 _____ (Microsoft Corporation) C:\windows\SysWOW64\hnetcfg.dll
2017-06-15 21:29 - 2017-06-03 11:04 - 06042624 _____ (Microsoft Corporation) C:\windows\SysWOW64\Chakra.dll
2017-06-15 21:29 - 2017-06-03 11:04 - 02006528 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2017-06-15 21:29 - 2017-06-03 11:04 - 00773120 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchIndexer.exe
2017-06-15 21:29 - 2017-06-03 11:03 - 01988096 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssrch.dll
2017-06-15 21:29 - 2017-06-03 11:03 - 00932864 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2017-06-15 21:29 - 2017-06-03 11:02 - 02997760 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32kfull.sys
2017-06-15 21:29 - 2017-06-03 11:01 - 00856064 _____ (Microsoft Corporation) C:\windows\system32\efscore.dll
2017-06-15 21:29 - 2017-06-03 11:00 - 23677440 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2017-06-15 21:29 - 2017-06-03 10:56 - 13091840 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2017-06-15 21:29 - 2017-06-03 10:54 - 01217024 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Audio.dll
2017-06-15 21:29 - 2017-06-03 10:53 - 08125440 _____ (Microsoft Corporation) C:\windows\system32\Chakra.dll
2017-06-15 21:29 - 2017-06-03 10:52 - 03403264 _____ (Microsoft Corporation) C:\windows\system32\tquery.dll
2017-06-15 21:29 - 2017-06-03 10:52 - 00975872 _____ (Microsoft Corporation) C:\windows\HelpPane.exe
2017-06-15 21:29 - 2017-06-03 10:52 - 00886784 _____ (Microsoft Corporation) C:\windows\system32\CPFilters.dll
2017-06-15 21:29 - 2017-06-03 10:51 - 00266752 _____ (Microsoft Corporation) C:\windows\system32\NetSetupSvc.dll
2017-06-15 21:29 - 2017-06-03 10:50 - 04744704 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2017-06-15 21:29 - 2017-06-03 10:50 - 02538496 _____ (Microsoft Corporation) C:\windows\system32\mssrch.dll
2017-06-15 21:29 - 2017-06-03 10:49 - 03615744 _____ (Microsoft Corporation) C:\windows\system32\win32kfull.sys
2017-06-15 21:29 - 2017-06-03 10:49 - 02691072 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Logon.dll
2017-06-15 21:29 - 2017-06-03 10:49 - 02475520 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2017-06-15 21:29 - 2017-06-03 10:49 - 02318848 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2017-06-15 21:29 - 2017-06-03 10:49 - 01845248 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2017-06-15 21:29 - 2017-06-03 10:49 - 01513472 _____ (Microsoft Corporation) C:\windows\system32\win32kbase.sys
2017-06-15 21:29 - 2017-06-03 10:49 - 00903680 _____ (Microsoft Corporation) C:\windows\system32\SearchIndexer.exe
2017-06-15 21:29 - 2017-06-03 10:49 - 00351744 _____ (Microsoft Corporation) C:\windows\system32\hnetcfg.dll
2017-06-15 21:29 - 2017-06-03 10:48 - 01490432 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2017-06-15 21:29 - 2017-06-03 10:48 - 01131008 _____ (Microsoft Corporation) C:\windows\system32\localspl.dll
2017-06-15 21:29 - 2017-06-03 10:48 - 00834048 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2017-06-15 21:29 - 2017-06-03 10:48 - 00391168 _____ (Microsoft Corporation) C:\windows\system32\wuuhext.dll
2017-06-15 21:29 - 2017-06-03 10:46 - 01121280 _____ (Microsoft Corporation) C:\windows\system32\aadtb.dll
2017-06-15 21:29 - 2017-06-03 10:40 - 00483840 _____ (Microsoft Corporation) C:\windows\SysWOW64\CoreMessaging.dll
2017-06-15 21:29 - 2017-05-25 07:56 - 00038752 _____ (Microsoft Corporation) C:\windows\system32\OOBEUpdater.exe
2017-06-15 21:29 - 2017-03-04 08:22 - 00822784 _____ (Microsoft Corporation) C:\windows\SysWOW64\Chakradiag.dll
2017-06-15 21:29 - 2017-03-04 08:19 - 00635904 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2017-06-15 21:29 - 2017-03-04 08:16 - 00368128 _____ (Microsoft Corporation) C:\windows\SysWOW64\puiobj.dll
2017-06-15 21:29 - 2017-03-04 08:16 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\wpninprc.dll
2017-06-15 21:28 - 2017-06-03 12:50 - 00192856 _____ (Microsoft Corporation) C:\windows\SysWOW64\aepic.dll
2017-06-15 21:28 - 2017-06-03 12:14 - 01564512 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2017-06-15 21:28 - 2017-06-03 12:14 - 01214816 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2017-06-15 21:28 - 2017-06-03 12:14 - 00629088 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2017-06-15 21:28 - 2017-06-03 12:14 - 00544096 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2017-06-15 21:28 - 2017-06-03 12:14 - 00335712 _____ (Microsoft Corporation) C:\windows\system32\dcntel.dll
2017-06-15 21:28 - 2017-06-03 12:14 - 00334176 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2017-06-15 21:28 - 2017-06-03 12:14 - 00233824 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2017-06-15 21:28 - 2017-06-03 12:14 - 00136032 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2017-06-15 21:28 - 2017-06-03 12:14 - 00136024 _____ (Microsoft Corporation) C:\windows\system32\ImplatSetup.dll
2017-06-15 21:28 - 2017-06-03 12:14 - 00096608 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2017-06-15 21:28 - 2017-06-03 12:14 - 00034648 _____ (Microsoft Corporation) C:\windows\system32\DeviceCensus.exe
2017-06-15 21:28 - 2017-06-03 12:11 - 00128864 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tm.sys
2017-06-15 21:28 - 2017-06-03 11:49 - 00624048 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2017-06-15 21:28 - 2017-06-03 11:49 - 00509280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys
2017-06-15 21:28 - 2017-06-03 11:48 - 01100128 _____ (Microsoft Corporation) C:\windows\system32\hvix64.exe
2017-06-15 21:28 - 2017-06-03 11:48 - 00989024 _____ (Microsoft Corporation) C:\windows\system32\hvax64.exe
2017-06-15 21:28 - 2017-06-03 11:39 - 00455520 _____ (Microsoft Corporation) C:\windows\system32\securekernel.exe
2017-06-15 21:28 - 2017-06-03 11:16 - 00002560 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2017-06-15 21:28 - 2017-06-03 11:14 - 00045056 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2017-06-15 21:28 - 2017-06-03 11:10 - 00252928 _____ (Microsoft Corporation) C:\windows\system32\edputil.dll
2017-06-15 21:28 - 2017-06-03 11:10 - 00117760 _____ (Microsoft Corporation) C:\windows\system32\AuthBrokerUI.dll
2017-06-15 21:28 - 2017-06-03 11:09 - 00489472 _____ (Microsoft Corporation) C:\windows\system32\NetSetupShim.dll
2017-06-15 21:28 - 2017-06-03 11:08 - 00324608 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.LockScreen.dll
2017-06-15 21:28 - 2017-06-03 11:08 - 00147456 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2017-06-15 21:28 - 2017-06-03 11:07 - 00255488 _____ (Microsoft Corporation) C:\windows\system32\HNetCfgClient.dll
2017-06-15 21:28 - 2017-06-03 11:06 - 00198144 _____ (Microsoft Corporation) C:\windows\system32\dpapisrv.dll
2017-06-15 21:28 - 2017-06-03 10:58 - 00064512 _____ (Microsoft Corporation) C:\windows\system32\fdProxy.dll
2017-06-15 21:28 - 2017-06-03 10:52 - 02510848 _____ (Microsoft Corporation) C:\windows\system32\NetworkMobileSettings.dll
2017-06-15 21:28 - 2017-06-03 10:51 - 01418240 _____ (Microsoft Corporation) C:\windows\system32\certutil.exe
2017-06-15 21:28 - 2017-06-03 08:08 - 00080078 _____ C:\windows\system32\normidna.nls
2017-06-14 20:48 - 2017-06-14 20:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-06-13 15:36 - 2017-06-13 15:36 - 01222144 _____ C:\Users\hubad\Desktop\RSITx64.exe
2017-06-13 15:36 - 2017-06-13 15:36 - 00000000 ____D C:\rsit
2017-06-13 15:36 - 2017-06-13 15:36 - 00000000 ____D C:\Program Files\trend micro
2017-06-13 13:55 - 2017-06-13 13:58 - 219416067 _____ C:\Users\hubad\Desktop\Babicce od vnoucat.mp4
2017-06-12 14:47 - 2017-06-12 14:47 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-06-12 14:47 - 2017-03-10 23:17 - 00536864 _____ C:\windows\system32\vulkan-1.dll
2017-06-12 14:47 - 2017-03-10 23:17 - 00525600 _____ C:\windows\SysWOW64\vulkan-1.dll
2017-06-12 14:47 - 2017-03-10 23:17 - 00254240 _____ C:\windows\system32\vulkaninfo.exe
2017-06-12 14:47 - 2017-03-10 23:17 - 00233760 _____ C:\windows\SysWOW64\vulkaninfo.exe
2017-06-12 14:45 - 2017-06-08 03:45 - 40201664 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 35390584 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv64.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 35281344 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcompiler.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 28624320 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglv32.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 11056272 _____ (NVIDIA Corporation) C:\windows\system32\nvptxJitCompiler.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 11028664 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 10551256 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 09248144 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuda.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 09014976 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvptxJitCompiler.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 08808488 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvopencl.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 03796928 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 03256440 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvid.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 01988216 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6438253.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 01606776 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6438253.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 01278712 _____ (NVIDIA Corporation) C:\windows\system32\nvEncMFTH264.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 01275944 _____ (NVIDIA Corporation) C:\windows\system32\nvEncMFThevc.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 01056888 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC64.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 00995736 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvEncMFTH264.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 00994240 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvFBC.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 00993360 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvEncMFThevc.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 00964216 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR64.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 00914880 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFR.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 00775864 _____ (NVIDIA Corporation) C:\windows\system32\nvEncodeAPI64.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 00688784 _____ (NVIDIA Corporation) C:\windows\system32\nvfatbinaryLoader.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 00612088 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvEncodeAPI.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 00609728 _____ (NVIDIA Corporation) C:\windows\system32\NvIFROpenGL.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 00577728 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvfatbinaryLoader.dll
2017-06-12 14:45 - 2017-06-08 03:45 - 00499320 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFROpenGL.dll
2017-06-12 13:55 - 2017-06-12 13:55 - 00048944 _____ (Dropbox, Inc.) C:\windows\system32\DbxSvc.exe
2017-06-12 13:52 - 2017-06-12 13:52 - 00045672 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-stable.sys
2017-06-12 13:52 - 2017-06-12 13:52 - 00045672 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-dev.sys
2017-06-12 13:52 - 2017-06-12 13:52 - 00045672 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-canary.sys
2017-06-06 17:56 - 2017-06-06 18:56 - 00003446 _____ C:\windows\System32\Tasks\McAfee Remediation (Prepare)
2017-06-05 21:04 - 2017-06-05 21:04 - 19488256 _____ C:\Users\hubad\Desktop\P1190505.RW2
2017-06-05 11:56 - 2017-06-05 12:01 - 2840499890 _____ C:\Users\hubad\Desktop\BeReal.zip
2017-06-05 11:53 - 2017-06-05 11:55 - 00000000 ____D C:\Users\hubad\Desktop\BeReal
2017-06-04 16:00 - 2017-06-04 16:00 - 00000000 ____D C:\Users\hubad\ansel
2017-06-02 09:25 - 2017-06-02 09:25 - 02473384 _____ C:\Users\hubad\Desktop\FormApps_Signing_Extension.exe
2017-06-02 09:25 - 2017-06-02 09:25 - 00002268 _____ C:\Users\hubad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormApps Signing Extension.lnk
2017-06-02 09:25 - 2017-06-02 09:25 - 00000000 ____D C:\Users\hubad\AppData\Local\Software602
2017-05-30 16:43 - 2017-05-30 16:43 - 00009712 _____ C:\Users\hubad\Desktop\Jan+HubacekProfile2.pdf
2017-05-30 16:41 - 2017-05-30 16:41 - 00009719 _____ C:\Users\hubad\Desktop\Jan+HubáčekProfile.pdf
2017-05-29 00:37 - 2017-05-29 00:37 - 00000000 ____D C:\Users\hubad\AppData\LocalLow\uTorrent
2017-05-25 23:20 - 2017-05-25 23:20 - 00000000 ____D C:\Users\Public\Documents\Digital Anarchy
2017-05-25 23:20 - 2017-05-25 23:20 - 00000000 ____D C:\Users\hubad\Documents\Digital Anarchy
2017-05-25 23:20 - 2017-05-25 23:20 - 00000000 ____D C:\ProgramData\Digital Anarchy
2017-05-25 23:16 - 2017-05-25 23:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flicker Free 1.1.6
2017-05-25 22:07 - 2017-05-25 22:08 - 00000000 ____D C:\Users\hubad\Desktop\zlaty dzban
2017-05-25 21:43 - 2017-05-25 21:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REVisionEffects
2017-05-25 21:38 - 2017-05-25 21:38 - 00390880 _____ C:\Users\hubad\Desktop\REVisionFX_DEFlicker_1_2_0_for_After_Effects_password_12345.zip
2017-05-25 21:33 - 2017-05-25 21:43 - 00000000 ____D C:\Program Files\REVisionEffects
2017-05-25 21:31 - 2017-05-25 21:32 - 22061867 _____ C:\Users\hubad\Desktop\DEFlicker1AEInstaller.zip
2017-05-25 21:30 - 2017-05-25 21:31 - 11337655 _____ C:\Users\hubad\Desktop\flickerfree_116_AE.zip
2017-05-24 16:48 - 2017-05-24 17:09 - 00000000 ____D C:\Users\hubad\Desktop\druha varka
2017-05-24 16:47 - 2017-05-24 17:16 - 00000000 ____D C:\Users\hubad\Desktop\VYBER DO TV SEMESTRALKA
2017-05-23 07:53 - 2017-05-24 02:15 - 00000000 ___RD C:\Users\hubad\Dropbox
2017-05-23 07:53 - 2017-05-23 07:53 - 00001306 _____ C:\Users\hubad\Desktop\Dropbox.lnk
2017-05-23 07:52 - 2017-06-14 20:48 - 00000000 ____D C:\Users\hubad\AppData\Local\Dropbox
2017-05-23 07:52 - 2017-05-23 07:52 - 00000000 ____D C:\Users\hubad\AppData\Roaming\Dropbox
2017-05-23 05:36 - 2017-05-18 09:35 - 01988216 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6438233.dll
2017-05-23 05:36 - 2017-05-18 09:35 - 01606592 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6438233.dll
2017-05-23 05:36 - 2017-05-18 09:35 - 00000669 _____ C:\windows\SysWOW64\nv-vk32.json
2017-05-23 05:36 - 2017-05-18 09:35 - 00000669 _____ C:\windows\system32\nv-vk64.json
2017-05-23 00:29 - 2017-05-23 00:29 - 00004000 _____ C:\windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-23 00:29 - 2017-05-23 00:29 - 00001492 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-05-23 00:29 - 2017-05-03 22:21 - 00175736 _____ (NVIDIA Corporation) C:\windows\system32\nvaudcap64v.dll
2017-05-23 00:29 - 2017-05-03 22:21 - 00143480 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvaudcap32v.dll
2017-05-22 00:48 - 2017-05-22 00:48 - 00148042 _____ C:\Users\hubad\Desktop\unineue.zip
2017-05-21 20:08 - 2017-05-21 14:54 - 24334492 _____ C:\Users\hubad\Desktop\DJI_0335.DNG
2017-05-18 17:16 - 2017-05-25 21:43 - 23768568 _____ (RE:Vision Effects) C:\Users\hubad\Desktop\DEFlicker1AE-1.4.11-windows-installer.exe
2017-05-17 22:57 - 2017-05-21 20:12 - 00002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2017-05-17 22:57 - 2017-05-21 20:12 - 00002121 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2017-05-17 21:24 - 2017-05-17 21:24 - 02702726 _____ C:\Users\hubad\Desktop\Robotic_arm_with_7_servos.zip
2017-05-17 21:18 - 2017-05-17 21:18 - 00107487 _____ C:\Users\hubad\Desktop\Arduino Robot Arm.zip
2017-05-17 18:53 - 2017-05-17 18:53 - 00000112 _____ C:\Users\hubad\AppData\Roaming\JP2K CS6 Prefs
2017-05-17 18:15 - 2017-05-17 18:15 - 00000000 ____D C:\Users\hubad\Desktop\exo
2017-05-17 18:14 - 2017-05-17 18:14 - 01251822 _____ C:\Users\hubad\Desktop\exo.zip
2017-05-17 12:58 - 2017-05-17 12:58 - 00028405 _____ C:\Users\hubad\Desktop\vskp-titulni-strana.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-16 20:30 - 2016-07-29 14:32 - 00000000 ____D C:\windows\system32\SleepStudy
2017-06-16 19:46 - 2017-04-19 16:16 - 00004034 _____ C:\windows\System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse
2017-06-16 19:31 - 2016-11-24 11:31 - 01163230 _____ C:\windows\system32\perfh005.dat
2017-06-16 19:31 - 2016-11-24 11:31 - 00306292 _____ C:\windows\system32\perfc005.dat
2017-06-16 19:31 - 2016-07-29 14:37 - 02999122 _____ C:\windows\system32\PerfStringBackup.INI
2017-06-16 19:31 - 2016-07-16 13:45 - 00000000 ____D C:\windows\INF
2017-06-16 19:24 - 2017-03-22 12:27 - 00000000 ___RD C:\Users\hubad\iCloudDrive
2017-06-16 19:24 - 2017-03-06 19:08 - 00000000 ___RD C:\Users\hubad\OneDrive
2017-06-16 19:24 - 2017-01-09 16:41 - 00000000 ____D C:\ProgramData\NVIDIA
2017-06-16 19:23 - 2016-07-29 14:32 - 00000006 ____H C:\windows\Tasks\SA.DAT
2017-06-16 19:23 - 2016-07-16 08:04 - 00524288 _____ C:\windows\system32\config\BBI
2017-06-16 16:06 - 2017-05-15 11:53 - 00004222 _____ C:\windows\System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse
2017-06-16 15:36 - 2017-03-08 13:41 - 00000000 ____D C:\Users\hubad\AppData\Local\Adobe
2017-06-16 13:52 - 2017-03-06 19:04 - 00000000 ____D C:\Users\hubad
2017-06-16 12:18 - 2016-11-24 02:56 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-06-16 12:08 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-16 12:08 - 2016-07-16 13:47 - 00000000 ____D C:\windows\AppReadiness
2017-06-16 12:02 - 2016-07-29 14:33 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-06-16 11:29 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-06-16 11:20 - 2016-07-29 14:32 - 05050112 _____ C:\windows\system32\FNTCACHE.DAT
2017-06-15 23:27 - 2016-07-16 13:47 - 00000000 ___RD C:\windows\ImmersiveControlPanel
2017-06-15 23:27 - 2016-07-16 13:47 - 00000000 ____D C:\windows\system32\appraiser
2017-06-15 23:27 - 2016-07-16 13:47 - 00000000 ____D C:\windows\ShellExperiences
2017-06-15 22:51 - 2016-07-16 13:36 - 00000000 ____D C:\windows\CbsTemp
2017-06-15 22:18 - 2017-03-17 16:31 - 00000000 ____D C:\ProgramData\boost_interprocess
2017-06-15 21:18 - 2017-03-08 15:19 - 00002279 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-06-15 21:16 - 2017-04-25 13:49 - 00000000 ____D C:\Users\hubad\AppData\Local\Arduino15
2017-06-14 20:48 - 2016-11-24 02:55 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-06-14 14:13 - 2017-03-07 16:05 - 00000000 ____D C:\windows\system32\MRT
2017-06-14 14:11 - 2017-03-06 19:09 - 00003302 _____ C:\windows\System32\Tasks\OneDrive Standalone Update Task v2
2017-06-14 14:11 - 2017-03-06 19:08 - 00002394 _____ C:\Users\hubad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-06-14 14:10 - 2017-03-07 16:05 - 133627792 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2017-06-14 14:09 - 2016-11-24 11:46 - 00118272 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppointmentActivation.dll
2017-06-14 11:51 - 2016-11-24 11:25 - 00000000 ____D C:\SWSetup
2017-06-13 17:10 - 2017-04-06 11:17 - 00534264 _____ C:\windows\system32\Drivers\EasyAntiCheat.sys
2017-06-13 14:53 - 2017-03-06 19:56 - 00000388 _____ C:\windows\Tasks\HPCeeScheduleForJan Hubáček.job
2017-06-13 14:53 - 2017-01-09 16:58 - 00000000 ____D C:\Program Files (x86)\McAfee
2017-06-13 14:53 - 2016-11-24 02:55 - 00000948 _____ C:\windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-06-13 14:53 - 2016-11-24 02:55 - 00000944 _____ C:\windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-06-13 14:52 - 2016-11-24 02:56 - 00000000 ____D C:\Program Files\HPCommRecovery
2017-06-13 14:51 - 2017-01-09 16:55 - 00000000 ____D C:\windows\HP
2017-06-13 11:20 - 2017-03-06 19:56 - 00003304 _____ C:\windows\System32\Tasks\HPCeeScheduleForJan Hubáček
2017-06-12 14:16 - 2016-07-16 08:04 - 00032768 _____ C:\windows\system32\config\ELAM
2017-06-12 14:11 - 2017-03-06 19:09 - 00000000 ____D C:\Users\hubad\AppData\Local\NVIDIA Corporation
2017-06-12 14:10 - 2016-07-16 13:47 - 00000000 ____D C:\windows\LiveKernelReports
2017-06-09 02:03 - 2017-01-09 16:40 - 14461344 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2017-06-08 03:45 - 2017-04-06 12:57 - 00001951 _____ C:\windows\NvTelemetryContainerRecovery.bat
2017-06-08 03:45 - 2017-02-10 18:48 - 03625992 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvapi.dll
2017-06-08 03:45 - 2017-01-09 16:40 - 04115112 _____ (NVIDIA Corporation) C:\windows\system32\nvapi64.dll
2017-06-08 03:45 - 2017-01-09 16:40 - 00045163 _____ C:\windows\system32\nvinfo.pb
2017-06-08 02:01 - 2017-03-06 19:14 - 00001951 _____ C:\windows\NvContainerRecovery.bat
2017-06-08 01:55 - 2017-01-09 16:41 - 06467008 _____ (NVIDIA Corporation) C:\windows\system32\nvcpl.dll
2017-06-08 01:55 - 2017-01-09 16:41 - 02479552 _____ (NVIDIA Corporation) C:\windows\system32\nvsvc64.dll
2017-06-08 01:55 - 2017-01-09 16:41 - 01762936 _____ (NVIDIA Corporation) C:\windows\system32\nvsvcr.dll
2017-06-08 01:55 - 2017-01-09 16:41 - 00549312 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshext.dll
2017-06-08 01:55 - 2017-01-09 16:41 - 00392312 _____ (NVIDIA Corporation) C:\windows\system32\nvmctray.dll
2017-06-08 01:55 - 2017-01-09 16:41 - 00082040 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshextr.dll
2017-06-08 01:55 - 2017-01-09 16:41 - 00069568 _____ (NVIDIA Corporation) C:\windows\system32\nvshext.dll
2017-06-07 18:17 - 2017-01-09 16:58 - 00000000 ____D C:\ProgramData\McAfee
2017-06-07 14:42 - 2017-01-09 16:41 - 08075477 _____ C:\windows\system32\nvcoproc.bin
2017-06-07 01:16 - 2017-03-21 02:31 - 00000000 ____D C:\Users\hubad\AppData\Roaming\vlc
2017-06-06 21:46 - 2017-03-20 00:28 - 00000000 ____D C:\Users\hubad\Downloads\PopcornTime
2017-06-04 22:48 - 2017-03-06 19:07 - 00000000 ____D C:\Users\hubad\AppData\Local\Packages
2017-06-04 13:17 - 2017-03-07 15:45 - 00000000 ____D C:\Users\hubad\AppData\Local\CrashDumps
2017-06-03 08:36 - 2016-07-16 13:49 - 00835576 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2017-06-03 08:36 - 2016-07-16 13:49 - 00177656 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-05-29 01:57 - 2017-04-06 01:50 - 00000000 ____D C:\Users\hubad\AppData\Roaming\uTorrent
2017-05-26 00:18 - 2017-03-06 19:07 - 00000000 ____D C:\Users\hubad\AppData\Roaming\Adobe
2017-05-25 23:16 - 2016-11-17 22:33 - 11350506 _____ C:\Users\hubad\Desktop\Flicker Free 1.1.6 After Effects.exe
2017-05-24 01:31 - 2017-03-06 19:07 - 00000000 ____D C:\Users\hubad\AppData\Local\VirtualStore
2017-05-23 07:52 - 2017-03-29 15:05 - 00000034 _____ C:\Users\hubad\AppData\Roaming\AdobeWLCMCache.dat
2017-05-23 07:52 - 2016-11-24 02:55 - 00004008 _____ C:\windows\System32\Tasks\DropboxUpdateTaskMachineUA
2017-05-23 07:52 - 2016-11-24 02:55 - 00003776 _____ C:\windows\System32\Tasks\DropboxUpdateTaskMachineCore
2017-05-23 05:37 - 2017-01-09 16:40 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-05-23 00:30 - 2017-01-09 16:41 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-05-23 00:29 - 2017-04-06 12:57 - 00004308 _____ C:\windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-23 00:29 - 2017-04-06 12:57 - 00003994 _____ C:\windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-23 00:29 - 2017-04-06 12:57 - 00003894 _____ C:\windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-23 00:29 - 2017-04-06 12:57 - 00003866 _____ C:\windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-23 00:29 - 2017-04-06 12:57 - 00003858 _____ C:\windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-23 00:29 - 2017-04-06 12:57 - 00003696 _____ C:\windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-23 00:29 - 2017-04-06 12:57 - 00003654 _____ C:\windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-23 00:29 - 2017-01-09 16:41 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-05-20 23:01 - 2017-05-15 10:00 - 94350886 _____ C:\Users\hubad\Desktop\Doležalová BAKALARSKA PRACE_KNIHA.pdf
2017-05-20 23:01 - 2017-05-15 10:00 - 16718430 _____ C:\Users\hubad\Desktop\bakalarka-kostruchova.pdf
2017-05-18 09:35 - 2017-04-06 12:57 - 00057792 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvvhci.sys
2017-05-17 23:50 - 2016-07-16 13:47 - 00000000 ____D C:\windows\rescache
2017-05-17 22:41 - 2017-03-29 15:05 - 00000000 ____D C:\Users\hubad\AppData\LocalLow\Adobe
2017-05-17 13:22 - 2017-01-09 16:59 - 00003126 _____ C:\windows\System32\Tasks\McAfeeLogon
2017-05-17 13:22 - 2017-01-09 16:59 - 00000000 ____D C:\windows\System32\Tasks\McAfee
2017-05-17 13:22 - 2017-01-09 16:58 - 00000000 ____D C:\Program Files\Common Files\McAfee
2017-05-17 13:22 - 2016-07-16 13:47 - 00000000 ___HD C:\windows\ELAMBKUP

==================== Files in the root of some directories =======

2017-03-29 15:05 - 2017-05-23 07:52 - 0000034 _____ () C:\Users\hubad\AppData\Roaming\AdobeWLCMCache.dat
2017-05-17 18:53 - 2017-05-17 18:53 - 0000112 _____ () C:\Users\hubad\AppData\Roaming\JP2K CS6 Prefs

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-05-20 17:00

==================== End of FRST.txt ============================



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (Windows) (Fixed) (Total:237.24 GB) (Free:68.93 GB) NTFS
Drive d: (DATA) (Fixed) (Total:920.02 GB) (Free:520.83 GB) NTFS
Drive e: (RECOVERY) (Fixed) (Total:11.5 GB) (Free:1.41 GB) NTFS ==>[system with boot components (obtained from drive)]

Available physical RAM: 11491.1 MB
Total physical RAM: 16269.22 MB
Percentage of memory in use: 29%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 238.5 GB) (Disk ID: 3EB628D3)
Disk: 1 (Size: 931.5 GB) (Disk ID: 8A5A36B8)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\windows\Tasks\HPCeeScheduleForJan Hubáček.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee VirusScan (Enabled - Up to date) {8BCDACFA-D264-3528-5EF8-E94FD0BC1FBC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee VirusScan (Enabled - Up to date) {30AC4D1E-F45E-3AA6-6448-D23DAB3B5501}
FW: McAfee Firewall (Enabled) {B3F62DDF-980B-3470-75A7-407A2E6F58C7}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\hubad\Desktop" je 12624 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000001
"Generalize_DisableSR"=dword:00000001


==================== End Of Log ==============================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119414
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: preventivka+

#7 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1221443000-1727349760-804829882-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
CHR StartupUrls: Default -> "hxxp://www.google.cz/","hxxp://www.yandex.ru/? ... VHCH3NVHCX"

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Z logu:
Velikost slozky "C:\Users\hubad\Desktop" je 12624 MB.
To je příliš mnoho a může to zpmalovat start systému. Vytvořte v C:\Users\hubad novou složku, do které přesuňte všechna data z plochy (kromě zástupců). Na plochu si pak dejte zástupce té složky pro snazší přístup.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
JohnyHubage
Návštěvník
Návštěvník
Příspěvky: 59
Registrován: 05 bře 2007 22:01
Bydliště: Liberec
Kontaktovat uživatele:
Kontaktovat uživatele JohnyHubage

Re: preventivka+

#8 Příspěvek od JohnyHubage »

Fix result of Farbar Recovery Scan Tool (x64) Version: 18-06-2017 01
Ran by Jan Hubáček (19-06-2017 09:31:18) Run:1
Running from C:\Users\hubad\Desktop
Loaded Profiles: Jan Hubáček (Available Profiles: defaultuser0 & Jan Hubáček)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1221443000-1727349760-804829882-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
CHR StartupUrls: Default -> "hxxp://www.google.cz/","hxxp://www.yandex.ru/? ... VHCH3NVHCX"

EmptyTemp:
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKU\S-1-5-21-1221443000-1727349760-804829882-1001\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
Chrome StartupUrls => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 332047 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 1065332311 B
Java, Flash, Steam htmlcache => 1160 B
Windows/system/drivers => 411998716 B
Edge => 3658714 B
Chrome => 791765079 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 110 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 233558 B
systemprofile32 => 128 B
LocalService => 28508 B
NetworkService => 2924 B
defaultuser0 => 595457 B
hubad => 26582026384 B

RecycleBin => 3303522093 B
EmptyTemp: => 30 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 09:34:23 ====
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119414
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: preventivka+

#9 Příspěvek od Rudy »

Smazáno, log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
JohnyHubage
Návštěvník
Návštěvník
Příspěvky: 59
Registrován: 05 bře 2007 22:01
Bydliště: Liberec
Kontaktovat uživatele:
Kontaktovat uživatele JohnyHubage

Re: preventivka+

#10 Příspěvek od JohnyHubage »

Děuji mnohokrát za pomoc! :)
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119414
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: preventivka+

#11 Příspěvek od Rudy »

Rádo se stalo! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Zamčeno

Zpět na „Preventivní kontroly logů“