VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Pomalé PC

https://forum.viry.cz:443/viewtopic.php?t=154228

Stránka 1 z 1

Pomalé PC

Napsal: 13 kvě 2018 06:45
od Dadejs
Dobrý den,
Poslední dobou se mi PC strašně pomalu spouští a i programy a aplikace se dlouho startují. například firefox, než po startu načte domovskou stránku, tak to trvá snad půl minuty.

Díky za pomoc.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Dadejs at 2018-05-13 07:41:41
Microsoft Windows 10 Home
System drive C: has 152 GB (34%) free of 451 GB
Total RAM: 4078 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:41:45, on 13.5.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0371)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Users\Dadejs\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
C:\Windows\jmesoft\hotkey.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files\trend micro\Dadejs.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll
O4 - HKLM\..\Run: [jmekey] C:\windows\jmesoft\hotkey.exe
O4 - HKLM\..\Run: [jmesoft] C:\Windows\jmesoft\ServiceLoader.exe
O4 - HKLM\..\Run: [Lenovo Eye Distance System] C:\Program Files\Lenovo\Lenovo Eye Distance System\Lenovo Eye Distance System.exe 1
O4 - HKLM\..\Run: [Lenovo Dynamic Brightness System] C:\Program Files\Lenovo\Lenovo Brightness System\Lenovo Dynamic Brightness System.exe 1
O4 - HKLM\..\Run: [4-Day Forecast] "C:\Program Files (x86)\4-Day Forecast\4-Day Forecast\4-Day Forecast.exe" /Startup
O4 - HKLM\..\Run: [Raptr] C:\Program Files (x86)\Raptr\RAPTRS~1.EXE --startup
O4 - HKLM\..\Run: [SilentCleanService] C:\Program Files (x86)\iMobie\PhoneClean\SilentCleanServer.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [Syncios device service] C:\Program Files (x86)\Anvsoft\Syncios\SynciosDeviceService.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Dadejs\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Xvid] C:\Program Files (x86)\Xvid\CheckUpdate.exe
O4 - HKCU\..\Run: [Google Update] C:\Users\Dadejs\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe
O4 - HKCU\..\Run: [MusicManager] "C:\Users\Dadejs\AppData\Local\Programs\Google\MusicManager\MusicManager.exe"
O4 - HKCU\..\Run: [iCloudServices] "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Dadejs\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: Avast Cleanup Premium.lnk = C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\Program Files (x86)\Microsoft Office\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Přeložit - {230D1201-7607-4CF6-A11F-9E4BF0A333E0} - C:\Program Files (x86)\Verdict Free\etnxp.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: (no name) - {2C73F784-D2DE-4422-B070-2E3332FE5744} - C:\Program Files (x86)\Verdict Free\etnxp.dll
O9 - Extra 'Tools' menuitem: Internetový překladač... - {2C73F784-D2DE-4422-B070-2E3332FE5744} - C:\Program Files (x86)\Verdict Free\etnxp.dll
O9 - Extra button: @C:\windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AllShare Framework DMS - Samsung - C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Služba %1!s! Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba %1!s! Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Avast Cleanup Premium (CleanupPSvc) - AVAST Software - C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) - Foxit Corporation - C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
O23 - Service: Foxit Reader Service (FoxitReaderService) - Foxit Software Inc. - C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\WINDOWS\system32\IProsetMonitor.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: JME Keyboard Driver (JME Keyboard) - Unknown owner - C:\Windows\jmesoft\Service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Lenovo Solution Center System Service (LSC.Services.SystemService) - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Samsung Link Service - Samsung Electronics Co.,Ltd - C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)

--
End of file - 16477 bytes

======Listing Processes======








winlogon.exe

c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
"dwm.exe"
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s lmhosts
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k localservice -p -s SEMgrSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\system32\atiesrxx.exe
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
atieclxx
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem

c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection

c:\windows\system32\svchost.exe -k localservicenonetwork -p -s NcdAutoSetup
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k localservice -p -s fdPHost
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s FDResPub
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s HomeGroupProvider
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
dashost.exe {18a94649-03b4-4e3d-97d13d0fc74b7f41}
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
C:\Windows\jmesoft\Service.exe
"C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe"
C:\WINDOWS\system32\IProsetMonitor.exe
"C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe"
"C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
c:\windows\syswow64\svchost.exe -k hpdevmgmt -s hpqddsvc
c:\windows\system32\svchost.exe -k apphost -s AppHostSvc
c:\windows\system32\svchost.exe -k networkservice -s TermService
"C:\Program Files\Samsung\Samsung Link\Samsung Link.exe"
"C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
C:\windows\System32\svchost.exe -k HPZ12
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\system32\mqsvc.exe
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
C:\windows\System32\svchost.exe -k HPZ12

C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe"
"C:\Program Files\Samsung\Samsung Link\Samsung Link.exe" "Samsung Link Service" __i4j_restart
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
"C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
c:\windows\system32\svchost.exe -k netsvcs -p -s NetSetupSvc
c:\windows\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s Browser
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s upnphost
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe" scan upload
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
"ctfmon.exe"
C:\WINDOWS\Explorer.EXE
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s Netman
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc

"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe"
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca
"C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe" /showasync
c:\windows\system32\svchost.exe -k unistacksvcgroup
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Logitech\SetPointP\SetPoint.exe" /launchGaming
"C:\Program Files\SAMSUNG\Samsung Link\Samsung Link Tray Agent.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s WdiSystemHost
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
"C:\Users\Dadejs\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe"
"C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\jmesoft\hotkey.exe"
KHALMNPR.EXE /API
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\jmesoft\JME_LOAD.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" -Embedding
AvastUI.exe /nogui
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
c:\windows\system32\svchost.exe -k hpservice -s HPSLPSVC
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe -Embedding
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe" /frequentupdate SCHEDULEDTASK displaylevel=False
"C:\Program Files\SAMSUNG\Samsung Link\Samsung Link Tray Agent.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
c:\windows\syswow64\svchost.exe -k hpdevmgmt -s hpqcxs08
C:\WINDOWS\system32\WerFault.exe -u -p 2148 -s 2760
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1813.286.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
"C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe" UpdateStatus
taskhostw.exe
C:\WINDOWS\system32\msiexec.exe /V
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s BITS
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 748 752 760 8192 756
"C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe"
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
C:\WINDOWS\system32\AUDIODG.EXE 0x4fc
taskhostw.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{133EAC4F-5891-4D04-BADA-D84870380A80}
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s tiledatamodelsvc
"C:\Users\Dadejs\Desktop\RSITx64.exe"

=========Mozilla firefox=========

ProfilePath - C:\Users\Dadejs\AppData\Roaming\Mozilla\Firefox\Profiles\a1lpsxma.default-1402684941049-1519852364944

prefs.js - "browser.startup.homepage" - "https://www.centrum.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.171 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_171.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.171.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.171.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.171 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_29_0_0_171.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll


C:\Program Files (x86)\Mozilla Firefox\plugins\
NPOFFICE.DLL

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-04-30 207024]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-04-30 149168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll [2018-04-19 480200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-04-19 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 630168]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-10-26 11543656]
"EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2011-10-07 1744152]
"Samsung Link"=C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe [2016-03-09 615144]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-04-08 242392]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2018-04-08 298296]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Dadejs\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2018-04-26 1624224]
"Xvid"=C:\Program Files (x86)\Xvid\CheckUpdate.exe [2011-01-17 8192]
"Google Update"=C:\Users\Dadejs\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe [2017-11-17 601680]
"MusicManager"=C:\Users\Dadejs\AppData\Local\Programs\Google\MusicManager\MusicManager.exe [2018-01-30 5968896]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2018-03-18 67384]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2018-04-12 18334528]
"cz.seznam.software.szndesktop"=C:\Users\Dadejs\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2018-03-27 109808]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2018-02-16 5263040]
"iCloudDrive"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [2018-03-18 110392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApplePhotoStreams]
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2018-03-18 67896]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2018-03-16 67896]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2018-04-12 18334528]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpqSRMon]
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [2008-07-22 150528]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iCloudServices]
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2018-03-18 67384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files (x86)\iTunes\iTunesHelper.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-10-06 27832264]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile Device Center]
C:\WINDOWS\WindowsMobile\wmdc.exe [2007-05-31 660360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
C:\Program Files (x86)\HP\DIGITA~1\bin\hpqtra08.exe [2009-09-20 270336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Dadejs^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EvernoteClipper.lnk]
C:\Program Files (x86)\Evernote\Evernote\EVERNO~2.EXE []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"jmekey"=C:\windows\jmesoft\hotkey.exe [2011-03-21 118784]
"jmesoft"=C:\Windows\jmesoft\ServiceLoader.exe [2011-03-16 28672]
"Lenovo Eye Distance System"=C:\Program Files\Lenovo\Lenovo Eye Distance System\Lenovo Eye Distance System.exe [2010-09-09 265216]
"Lenovo Dynamic Brightness System"=C:\Program Files\Lenovo\Lenovo Brightness System\Lenovo Dynamic Brightness System.exe [2010-10-08 285696]
"4-Day Forecast"=C:\Program Files (x86)\4-Day Forecast\4-Day Forecast\4-Day Forecast.exe [2008-11-10 1060864]
"Raptr"=C:\Program Files (x86)\Raptr\RAPTRS~1.EXE [2015-10-01 56080]
"SilentCleanService"=C:\Program Files (x86)\iMobie\PhoneClean\SilentCleanServer.exe [2016-03-31 484528]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-11-04 767176]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"Syncios device service"=C:\Program Files (x86)\Anvsoft\Syncios\SynciosDeviceService.exe [2018-02-27 2174072]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-03-28 588704]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Avast Cleanup Premium.lnk - C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2011-09-27 68376]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"vidc.XVID"=xvidvfw.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-05-12 21:32:24 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2018-05-12 19:39:01 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2018-05-12 19:39:01 ----A---- C:\WINDOWS\system32\WpcMon.exe
2018-05-12 19:39:00 ----A---- C:\WINDOWS\system32\diagtrack.dll
2018-05-12 19:38:59 ----A---- C:\WINDOWS\system32\Wpc.dll
2018-05-12 19:38:58 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-05-12 19:38:58 ----A---- C:\WINDOWS\system32\cdp.dll
2018-05-12 19:38:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2018-05-12 19:38:57 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2018-05-12 19:38:57 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2018-05-12 19:38:56 ----A---- C:\WINDOWS\SYSWOW64\ninput.dll
2018-05-12 19:38:56 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2018-05-12 19:38:56 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-05-12 19:38:56 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2018-05-12 19:38:55 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-05-12 19:38:55 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2018-05-12 19:38:55 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2018-05-12 19:38:55 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2018-05-12 19:38:54 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-05-12 19:38:54 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2018-05-12 19:38:53 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2018-05-12 19:38:53 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2018-05-12 19:38:53 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2018-05-12 19:38:53 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-05-12 19:38:53 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2018-05-12 19:38:53 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2018-05-12 19:38:53 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2018-05-12 19:38:53 ----A---- C:\WINDOWS\system32\wups2.dll
2018-05-12 19:38:53 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2018-05-12 19:38:53 ----A---- C:\WINDOWS\system32\mssprxy.dll
2018-05-12 19:38:53 ----A---- C:\WINDOWS\system32\browserexport.exe
2018-05-12 19:38:53 ----A---- C:\WINDOWS\system32\atmfd.dll
2018-05-12 19:38:52 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-05-12 19:38:52 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2018-05-12 19:38:52 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-05-12 19:38:52 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2018-05-12 19:38:52 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-05-12 19:38:51 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2018-05-12 19:38:51 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2018-05-12 19:38:51 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-05-12 19:38:51 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-05-12 19:38:51 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2018-05-12 19:38:51 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2018-05-12 19:38:51 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-05-12 19:38:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2018-05-12 19:38:50 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-05-12 19:38:50 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2018-05-12 19:38:50 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-05-12 19:38:50 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2018-05-12 19:38:50 ----A---- C:\WINDOWS\system32\tquery.dll
2018-05-12 19:38:50 ----A---- C:\WINDOWS\system32\t2embed.dll
2018-05-12 19:38:50 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2018-05-12 19:38:50 ----A---- C:\WINDOWS\system32\ieproxy.dll
2018-05-12 19:38:50 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2018-05-12 19:38:49 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-05-12 19:38:49 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2018-05-12 19:38:49 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2018-05-12 19:38:49 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-05-12 19:38:49 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2018-05-12 19:38:48 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2018-05-12 19:38:48 ----A---- C:\WINDOWS\system32\securekernel.exe
2018-05-12 19:38:48 ----A---- C:\WINDOWS\system32\gameux.dll
2018-05-12 19:38:48 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2018-05-12 19:38:47 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-05-12 19:38:47 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-05-12 19:38:47 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-05-12 19:38:47 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-05-12 19:38:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-05-12 19:38:46 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2018-05-12 19:38:46 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-05-12 19:38:46 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2018-05-12 19:38:46 ----A---- C:\WINDOWS\system32\vbscript.dll
2018-05-12 19:38:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-05-12 19:38:45 ----A---- C:\WINDOWS\system32\wuuhext.dll
2018-05-12 19:38:45 ----A---- C:\WINDOWS\system32\TSpkg.dll
2018-05-12 19:38:45 ----A---- C:\WINDOWS\system32\netlogon.dll
2018-05-12 19:38:45 ----A---- C:\WINDOWS\system32\fontsub.dll
2018-05-12 19:38:45 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2018-05-12 19:38:45 ----A---- C:\WINDOWS\system32\D3D12.dll
2018-05-12 19:38:45 ----A---- C:\WINDOWS\system32\credssp.dll
2018-05-12 19:38:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2018-05-12 19:38:44 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2018-05-12 19:38:44 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2018-05-12 19:38:44 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-05-12 19:38:44 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-05-12 19:38:44 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2018-05-12 19:38:44 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2018-05-12 19:38:44 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2018-05-12 19:38:44 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2018-05-12 19:38:43 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-05-12 19:38:43 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2018-05-12 19:38:43 ----A---- C:\WINDOWS\system32\mssrch.dll
2018-05-12 19:38:43 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-05-12 19:38:43 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2018-05-12 19:38:42 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-05-12 19:38:42 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-05-12 19:38:42 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-05-12 19:38:42 ----A---- C:\WINDOWS\system32\gdi32full.dll
2018-05-12 19:38:41 ----A---- C:\WINDOWS\system32\msisip.dll
2018-05-12 19:38:41 ----A---- C:\WINDOWS\system32\mshtmled.dll
2018-05-12 19:38:41 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-05-12 19:38:41 ----A---- C:\WINDOWS\system32\imgutil.dll
2018-05-12 19:38:41 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-05-12 19:38:41 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-05-12 19:38:40 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2018-05-12 19:38:40 ----A---- C:\WINDOWS\system32\jscript.dll
2018-05-12 19:38:40 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2018-05-12 19:38:40 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-05-12 19:38:40 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-05-12 19:38:40 ----A---- C:\WINDOWS\system32\dxtrans.dll
2018-05-12 19:38:40 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2018-05-12 19:38:39 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2018-05-12 19:38:39 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2018-05-12 19:38:39 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2018-05-12 19:38:39 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2018-05-12 19:38:39 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-05-12 19:38:39 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-05-12 19:38:38 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-05-12 19:38:38 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-05-12 19:38:38 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2018-05-12 19:38:38 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-05-12 19:38:38 ----A---- C:\WINDOWS\system32\BFE.DLL
2018-05-12 19:38:37 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2018-05-12 19:38:37 ----A---- C:\WINDOWS\system32\ninput.dll
2018-05-12 19:38:37 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-05-12 19:38:37 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-05-12 19:38:37 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2018-05-12 19:38:37 ----A---- C:\WINDOWS\system32\AcSpecfc.dll
2018-05-12 19:38:36 ----A---- C:\WINDOWS\system32\wininet.dll
2018-05-12 19:38:36 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-05-12 19:38:35 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-05-12 19:38:35 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-05-12 19:38:35 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2018-05-12 19:38:34 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-05-12 19:38:32 ----A---- C:\WINDOWS\system32\wmp.dll
2018-05-12 19:38:32 ----A---- C:\WINDOWS\system32\drivers\http.sys
2018-05-12 19:38:31 ----A---- C:\WINDOWS\system32\mfplat.dll
2018-05-12 19:38:31 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2018-05-12 19:38:31 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-05-12 19:38:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2018-05-12 19:38:30 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2018-05-12 19:38:30 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2018-05-12 19:38:30 ----A---- C:\WINDOWS\system32\SettingSync.dll
2018-05-12 19:38:30 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2018-05-12 19:38:30 ----A---- C:\WINDOWS\system32\BrowserSettingSync.dll
2018-05-12 19:38:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2018-05-12 19:38:29 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2018-05-12 19:38:29 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2018-05-12 19:38:29 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2018-05-12 19:38:29 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2018-05-12 19:38:29 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2018-05-12 19:38:29 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2018-05-12 19:38:28 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2018-05-12 19:38:28 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2018-05-12 19:38:28 ----A---- C:\WINDOWS\SYSWOW64\twext.dll
2018-05-12 19:38:28 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2018-05-12 19:38:28 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2018-05-12 19:38:28 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2018-05-12 19:38:28 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2018-05-12 19:38:28 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-05-12 19:38:27 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2018-05-12 19:38:27 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2018-05-12 19:38:27 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2018-05-12 19:38:27 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2018-05-12 19:38:27 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2018-05-12 19:38:27 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2018-05-12 19:38:27 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2018-05-12 19:38:27 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-05-12 19:38:27 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2018-05-12 19:38:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2018-05-12 19:38:26 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2018-05-12 19:38:26 ----A---- C:\WINDOWS\SYSWOW64\itss.dll
2018-05-12 19:38:26 ----A---- C:\WINDOWS\system32\twext.dll
2018-05-12 19:38:26 ----A---- C:\WINDOWS\system32\StartTileData.dll
2018-05-12 19:38:26 ----A---- C:\WINDOWS\system32\pcalua.exe
2018-05-12 19:38:26 ----A---- C:\WINDOWS\system32\mssvp.dll
2018-05-12 19:38:26 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2018-05-12 19:38:26 ----A---- C:\WINDOWS\system32\hgcpl.dll
2018-05-12 19:38:25 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2018-05-12 19:38:25 ----A---- C:\WINDOWS\system32\wldp.dll
2018-05-12 19:38:25 ----A---- C:\WINDOWS\system32\wintrust.dll
2018-05-12 19:38:25 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-05-12 19:38:25 ----A---- C:\WINDOWS\system32\stobject.dll
2018-05-12 19:38:24 ----A---- C:\WINDOWS\system32\twinui.dll
2018-05-12 19:38:24 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2018-05-12 19:38:24 ----A---- C:\WINDOWS\system32\ntshrui.dll
2018-05-12 19:38:24 ----A---- C:\WINDOWS\system32\msctf.dll
2018-05-12 19:38:24 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2018-05-12 19:38:24 ----A---- C:\WINDOWS\system32\comdlg32.dll
2018-05-12 19:38:23 ----A---- C:\WINDOWS\system32\zipfldr.dll
2018-05-12 19:38:23 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-05-12 19:38:23 ----A---- C:\WINDOWS\system32\LogonController.dll
2018-05-12 19:38:23 ----A---- C:\WINDOWS\system32\itss.dll
2018-05-12 19:38:23 ----A---- C:\WINDOWS\system32\aitstatic.exe
2018-05-12 19:38:22 ----A---- C:\WINDOWS\system32\fontext.dll
2018-05-12 19:38:22 ----A---- C:\WINDOWS\explorer.exe
2018-05-12 19:38:21 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2018-05-12 19:38:21 ----A---- C:\WINDOWS\system32\shell32.dll
2018-05-12 19:38:20 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-05-12 19:38:20 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2018-05-12 19:38:20 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-05-12 19:38:08 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2018-05-12 19:38:08 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-05-12 19:38:08 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-05-12 19:38:08 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-05-12 19:38:07 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-05-12 19:38:06 ----A---- C:\WINDOWS\system32\DeviceUpdateAgent.dll
2018-05-12 19:38:05 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2018-05-12 19:38:05 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2018-05-12 19:38:05 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2018-05-12 19:38:05 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-05-12 19:38:04 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2018-05-12 19:38:04 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2018-05-12 19:38:04 ----A---- C:\WINDOWS\system32\winresume.exe
2018-05-12 19:38:04 ----A---- C:\WINDOWS\system32\winload.exe
2018-05-12 19:38:04 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-05-12 19:38:04 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2018-05-12 19:38:04 ----A---- C:\WINDOWS\system32\ci.dll
2018-05-12 19:38:03 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-05-12 19:38:02 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2018-05-12 19:38:02 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2018-05-12 19:38:02 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2018-05-12 19:38:02 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2018-05-12 19:38:02 ----A---- C:\WINDOWS\system32\usercpl.dll
2018-05-12 19:38:02 ----A---- C:\WINDOWS\system32\themecpl.dll
2018-05-12 19:38:02 ----A---- C:\WINDOWS\system32\SettingsHandlers_User.dll
2018-05-12 19:38:02 ----A---- C:\WINDOWS\system32\pcasvc.dll
2018-05-12 19:38:02 ----A---- C:\WINDOWS\system32\invagent.dll
2018-05-12 19:38:02 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2018-05-12 19:38:02 ----A---- C:\WINDOWS\system32\devinv.dll
2018-05-12 19:38:02 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2018-05-12 19:38:02 ----A---- C:\WINDOWS\system32\dcntel.dll
2018-05-12 19:38:02 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2018-05-12 19:38:02 ----A---- C:\WINDOWS\system32\authui.dll
2018-05-12 19:38:02 ----A---- C:\WINDOWS\system32\aepic.dll
2018-05-12 19:38:02 ----A---- C:\WINDOWS\system32\aeinv.dll
2018-05-12 19:38:01 ----A---- C:\WINDOWS\system32\generaltel.dll
2018-05-12 19:38:01 ----A---- C:\WINDOWS\system32\daxexec.dll
2018-05-12 19:38:01 ----A---- C:\WINDOWS\system32\appraiser.dll
2018-05-12 19:37:59 ----A---- C:\WINDOWS\system32\usocore.dll
2018-05-12 19:37:59 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-05-12 19:37:59 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-05-12 19:37:54 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-05-12 19:37:52 ----A---- C:\WINDOWS\system32\combase.dll
2018-05-12 19:37:51 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2018-05-12 19:37:51 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2018-05-12 19:37:51 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2018-05-12 19:37:51 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2018-05-12 19:37:48 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2018-05-12 19:37:46 ----A---- C:\WINDOWS\system32\dosvc.dll
2018-05-12 19:37:45 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountWAMExtension.dll
2018-05-12 19:37:45 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2018-05-12 19:37:45 ----A---- C:\WINDOWS\system32\mstscax.dll
2018-05-12 19:37:44 ----A---- C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2018-05-12 19:37:44 ----A---- C:\WINDOWS\system32\acmigration.dll
2018-05-12 19:37:43 ----A---- C:\WINDOWS\SYSWOW64\BrowserSettingSync.dll
2018-05-12 19:37:43 ----A---- C:\WINDOWS\system32\ShareHost.dll
2018-05-12 19:37:43 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-05-12 19:37:42 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2018-05-12 19:37:42 ----A---- C:\WINDOWS\SYSWOW64\msisip.dll
2018-05-12 19:37:42 ----A---- C:\WINDOWS\system32\profsvc.dll
2018-05-12 19:37:41 ----A---- C:\WINDOWS\system32\Windows.CloudStore.Schema.Shell.dll
2018-05-12 19:37:41 ----A---- C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2018-05-12 19:37:41 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2018-05-12 19:37:40 ----A---- C:\WINDOWS\system32\msxml3.dll
2018-05-12 19:37:40 ----A---- C:\WINDOWS\system32\Geolocation.dll
2018-05-12 19:37:40 ----A---- C:\WINDOWS\system32\comsvcs.dll
2018-05-12 19:37:39 ----A---- C:\WINDOWS\SYSWOW64\CloudNotifications.exe
2018-05-12 19:37:39 ----A---- C:\WINDOWS\system32\WinTypes.dll
2018-05-12 19:37:39 ----A---- C:\WINDOWS\system32\oleaut32.dll
2018-05-12 19:37:39 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2018-05-12 19:37:38 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2018-05-12 19:37:38 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2018-05-12 19:37:38 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2018-05-12 19:37:38 ----A---- C:\WINDOWS\system32\wuauclt.exe
2018-05-12 19:37:38 ----A---- C:\WINDOWS\system32\wlidprov.dll
2018-05-12 19:37:38 ----A---- C:\WINDOWS\system32\crypt32.dll
2018-05-12 19:37:37 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2018-05-12 19:37:37 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2018-05-12 19:37:37 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2018-05-12 19:37:36 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2018-05-12 19:37:36 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2018-05-12 19:37:36 ----A---- C:\WINDOWS\system32\Wldap32.dll
2018-05-12 19:37:36 ----A---- C:\WINDOWS\system32\AppResolver.dll
2018-05-12 19:37:35 ----A---- C:\WINDOWS\SYSWOW64\SmartcardCredentialProvider.dll
2018-05-12 19:37:35 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2018-05-12 19:37:35 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2018-05-12 19:37:35 ----A---- C:\WINDOWS\system32\DAFWSD.dll
2018-05-12 19:37:35 ----A---- C:\WINDOWS\system32\aadauthhelper.dll
2018-05-12 19:37:34 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2018-05-12 19:37:34 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2018-05-12 19:37:34 ----A---- C:\WINDOWS\system32\kernel32.dll
2018-05-12 19:37:34 ----A---- C:\WINDOWS\system32\domgmt.dll
2018-05-12 19:37:34 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2018-05-12 19:37:33 ----A---- C:\WINDOWS\system32\comctl32.dll
2018-05-12 19:37:28 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2018-05-12 19:37:28 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2018-05-12 19:37:27 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2018-05-12 19:37:27 ----A---- C:\WINDOWS\system32\LockController.dll
2018-05-12 19:37:27 ----A---- C:\WINDOWS\HelpPane.exe
2018-05-12 19:37:26 ----A---- C:\WINDOWS\system32\rdpcore.dll
2018-05-12 19:37:26 ----A---- C:\WINDOWS\system32\mstsc.exe
2018-05-12 19:37:26 ----A---- C:\WINDOWS\system32\LockHostingFramework.dll
2018-05-12 19:37:26 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2018-05-12 19:37:25 ----A---- C:\WINDOWS\system32\credprovhost.dll
2018-05-12 19:37:25 ----A---- C:\WINDOWS\system32\CredProv2faHelper.dll
2018-05-12 19:37:25 ----A---- C:\WINDOWS\system32\catsrvut.dll
2018-05-12 19:37:24 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2018-05-12 19:37:24 ----A---- C:\WINDOWS\SYSWOW64\aadauthhelper.dll
2018-05-12 19:37:24 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2018-05-12 19:37:23 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2018-05-12 19:37:23 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2018-05-12 19:37:23 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2018-05-12 19:37:23 ----A---- C:\WINDOWS\system32\CloudStorageWizard.exe
2018-05-12 19:37:22 ----A---- C:\WINDOWS\system32\CloudNotifications.exe
2018-05-12 19:37:21 ----A---- C:\WINDOWS\SYSWOW64\CloudStorageWizard.exe
2018-05-12 19:37:21 ----A---- C:\WINDOWS\SYSWOW64\appidapi.dll
2018-05-12 19:37:21 ----A---- C:\WINDOWS\system32\appidapi.dll
2018-05-12 19:37:20 ----A---- C:\WINDOWS\system32\credprovs.dll
2018-05-12 19:37:19 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2018-05-12 19:37:19 ----A---- C:\WINDOWS\SYSWOW64\CredProv2faHelper.dll
2018-05-12 19:37:19 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2018-05-12 19:37:19 ----A---- C:\WINDOWS\system32\schannel.dll
2018-05-12 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\shlwapi.dll
2018-05-12 19:37:18 ----A---- C:\WINDOWS\system32\shlwapi.dll
2018-05-12 19:37:18 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2018-05-12 19:37:18 ----A---- C:\WINDOWS\system32\BitLockerCsp.dll
2018-05-12 19:37:17 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2018-05-12 19:37:17 ----A---- C:\WINDOWS\system32\srpapi.dll
2018-05-12 19:37:16 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2018-05-12 19:37:16 ----A---- C:\WINDOWS\SYSWOW64\BitLockerCsp.dll
2018-05-12 19:37:16 ----A---- C:\WINDOWS\system32\wsecedit.dll
2018-05-12 19:37:16 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2018-05-12 19:37:16 ----A---- C:\WINDOWS\system32\mssph.dll
2018-05-12 19:37:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2018-05-12 19:37:15 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2018-05-12 19:37:15 ----A---- C:\WINDOWS\SYSWOW64\srpapi.dll
2018-05-12 19:37:15 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2018-05-12 19:37:15 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2018-05-12 19:37:14 ----A---- C:\WINDOWS\SYSWOW64\wsecedit.dll
2018-05-12 19:37:14 ----A---- C:\WINDOWS\SYSWOW64\itircl.dll
2018-05-12 19:37:14 ----A---- C:\WINDOWS\system32\SettingSyncPolicy.dll
2018-05-12 19:37:14 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2018-05-12 19:37:14 ----A---- C:\WINDOWS\system32\itircl.dll
2018-05-12 19:37:14 ----A---- C:\WINDOWS\system32\eShims.dll
2018-05-12 19:37:14 ----A---- C:\WINDOWS\system32\ByteCodeGenerator.exe
2018-05-12 19:37:12 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncPolicy.dll
2018-05-12 19:37:12 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2018-05-12 19:37:12 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2018-05-12 19:37:12 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2018-05-12 19:37:12 ----A---- C:\WINDOWS\system32\coredpus.dll
2018-05-12 19:37:10 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerUI.dll
2018-05-12 19:37:10 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2018-05-12 19:37:10 ----A---- C:\WINDOWS\system32\TokenBrokerUI.dll
2018-05-12 19:37:10 ----A---- C:\WINDOWS\system32\mssitlb.dll
2018-05-12 19:37:10 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2018-05-12 19:37:10 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2018-05-12 19:37:10 ----A---- C:\WINDOWS\system32\appidsvc.dll
2018-05-12 19:37:09 ----A---- C:\WINDOWS\SYSWOW64\ByteCodeGenerator.exe
2018-05-12 19:37:09 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2018-05-12 19:37:09 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2018-05-12 19:37:09 ----A---- C:\WINDOWS\system32\wincorlib.dll
2018-05-12 19:37:09 ----A---- C:\WINDOWS\system32\pcadm.dll
2018-05-12 19:37:09 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2018-05-12 19:37:09 ----A---- C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2018-05-12 19:37:08 ----A---- C:\WINDOWS\system32\pcaevts.dll
2018-04-27 21:45:08 ----D---- C:\Program Files\Microsoft Office 15
2018-04-25 19:56:37 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2018-04-25 19:48:32 ----D---- C:\Program Files\iPod
2018-04-25 19:47:42 ----D---- C:\Program Files\iTunes
2018-04-15 22:26:25 ----D---- C:\Program Files (x86)\Opera
2018-04-15 22:17:35 ----A---- C:\WINDOWS\system32\drivers\RtsUer.sys

======List of files/folders modified in the last 1 month======

2018-05-13 07:41:43 ----D---- C:\Program Files\trend micro
2018-05-13 07:41:26 ----SHDC---- C:\WINDOWS\Installer
2018-05-13 07:41:26 ----D---- C:\WINDOWS\Temp
2018-05-13 07:41:15 ----D---- C:\WINDOWS\Prefetch
2018-05-13 07:26:37 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2018-05-13 07:22:04 ----D---- C:\Windows
2018-05-13 07:19:33 ----D---- C:\WINDOWS\system32\drivers
2018-05-13 07:18:01 ----D---- C:\WINDOWS\system32\sru
2018-05-13 07:18:00 ----D---- C:\WINDOWS\system32\catroot2
2018-05-13 07:15:22 ----D---- C:\Users\Dadejs\AppData\Roaming\Media Player Classic
2018-05-13 07:15:10 ----D---- C:\WINDOWS\INF
2018-05-13 07:15:09 ----D---- C:\WINDOWS\debug
2018-05-13 07:11:27 ----D---- C:\WINDOWS\system32\Tasks
2018-05-12 21:52:00 ----RD---- C:\WINDOWS\Microsoft.NET
2018-05-12 21:50:31 ----RD---- C:\WINDOWS\assembly
2018-05-12 21:45:13 ----D---- C:\WINDOWS\system32\Macromed
2018-05-12 21:45:08 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2018-05-12 21:37:46 ----D---- C:\WINDOWS\AppReadiness
2018-05-12 21:36:30 ----D---- C:\WINDOWS\System32
2018-05-12 21:36:30 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-05-12 21:33:27 ----D---- C:\WINDOWS\system32\config
2018-05-12 21:33:02 ----D---- C:\WINDOWS\WinSxS
2018-05-12 21:32:24 ----D---- C:\WINDOWS\SysWOW64
2018-05-12 21:30:22 ----D---- C:\WINDOWS\system32\DriverStore
2018-05-12 21:29:25 ----D---- C:\WINDOWS\Logs
2018-05-12 21:28:41 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-05-12 21:28:41 ----D---- C:\Config.Msi
2018-05-12 21:28:41 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2018-05-12 21:28:40 ----RSD---- C:\WINDOWS\Fonts
2018-05-12 21:26:16 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2018-05-12 21:26:16 ----D---- C:\WINDOWS\SYSWOW64\wbem
2018-05-12 21:26:16 ----D---- C:\WINDOWS\SYSWOW64\migration
2018-05-12 21:26:16 ----D---- C:\WINDOWS\SYSWOW64\Dism
2018-05-12 21:26:16 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2018-05-12 21:26:10 ----D---- C:\WINDOWS\system32\wbem
2018-05-12 21:26:09 ----SD---- C:\WINDOWS\system32\DiagSvcs
2018-05-12 21:26:09 ----D---- C:\WINDOWS\system32\oobe
2018-05-12 21:26:09 ----D---- C:\WINDOWS\system32\migration
2018-05-12 21:26:09 ----D---- C:\WINDOWS\system32\Dism
2018-05-12 21:26:09 ----D---- C:\WINDOWS\system32\cs-CZ
2018-05-12 21:26:09 ----D---- C:\WINDOWS\system32\Boot
2018-05-12 21:26:07 ----D---- C:\WINDOWS\ShellExperiences
2018-05-12 21:26:07 ----D---- C:\WINDOWS\servicing
2018-05-12 21:26:06 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2018-05-12 21:26:06 ----D---- C:\WINDOWS\apppatch
2018-05-12 21:26:06 ----D---- C:\Program Files\Windows Media Player
2018-05-12 21:26:06 ----D---- C:\Program Files (x86)\Windows Media Player
2018-05-12 21:22:30 ----D---- C:\WINDOWS\system32\SleepStudy
2018-05-12 20:51:08 ----SHD---- C:\System Volume Information
2018-05-12 20:21:53 ----D---- C:\WINDOWS\rescache
2018-05-12 20:05:18 ----D---- C:\WINDOWS\system32\MRT
2018-05-12 19:58:45 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2018-05-12 19:58:37 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-05-12 19:57:39 ----D---- C:\WINDOWS\CbsTemp
2018-05-12 19:45:28 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2018-05-12 19:44:52 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2018-05-12 19:44:36 ----A---- C:\WINDOWS\system32\jsproxy.dll
2018-05-12 19:36:54 ----D---- C:\WINDOWS\DeliveryOptimization
2018-05-12 19:31:41 ----HD---- C:\Program Files\WindowsApps
2018-05-04 14:03:47 ----D---- C:\WINDOWS\system32\LogFiles
2018-05-03 19:48:09 ----SD---- C:\Users\Dadejs\AppData\Roaming\Microsoft
2018-05-01 17:59:03 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-05-01 17:58:37 ----D---- C:\Program Files (x86)\Common Files
2018-05-01 17:57:08 ----AD---- C:\Program Files (x86)\Microsoft Office
2018-04-28 18:25:28 ----D---- C:\Users\Dadejs\AppData\Roaming\vlc
2018-04-27 22:15:17 ----D---- C:\WINDOWS\ShellNew
2018-04-27 22:15:05 ----A---- C:\WINDOWS\win.ini
2018-04-27 21:45:11 ----SD---- C:\ProgramData\Microsoft
2018-04-27 21:45:08 ----RD---- C:\Program Files
2018-04-27 21:44:59 ----D---- C:\Program Files\Common Files\microsoft shared
2018-04-19 18:30:11 ----D---- C:\Program Files (x86)\Java
2018-04-19 18:28:28 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2018-04-15 22:26:26 ----D---- C:\Users\Dadejs\AppData\Roaming\IObit
2018-04-15 22:26:25 ----RD---- C:\Program Files (x86)
2018-04-15 22:24:01 ----D---- C:\ProgramData\ProductData
2018-04-15 22:23:00 ----D---- C:\ProgramData\IObit
2018-04-15 22:17:52 ----D---- C:\WINDOWS\system32\CatRoot
2018-04-15 21:38:04 ----D---- C:\WINDOWS\Downloaded Installations
2018-04-14 08:04:17 ----D---- C:\WINDOWS\system32\WDI
2018-04-14 07:54:51 ----AD---- C:\Program Files (x86)\WinRAR
2018-04-14 07:38:09 ----D---- C:\ProgramData\Foxit Software
2018-04-14 07:27:43 ----D---- C:\Users\Dadejs\AppData\Roaming\DAEMON Tools Lite

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2018-03-06 199440]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2018-03-06 343752]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2018-03-06 57680]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2018-04-08 84368]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2018-04-08 380528]
R0 fbfmon;fbfmon; C:\WINDOWS\system32\drivers\fbfmon.sys [2011-08-26 57952]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-09-29 56728]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2018-04-08 196640]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2018-03-06 227504]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2018-04-08 227784]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2018-04-08 111352]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2018-04-08 1026696]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2018-05-12 460520]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-03-30 59808]
R1 BPntDrv;BPntDrv; C:\WINDOWS\system32\drivers\BPntDrv.sys [2011-08-26 13408]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2017-09-29 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-03-30 8192]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [2017-04-23 27552]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2018-04-12 147224]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2018-04-08 205976]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-02-10 385536]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2017-09-29 43520]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-12-16 21648880]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-12-16 674288]
R3 AtiHDAudioService;@oem56.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2017-04-23 110096]
R3 dtlitescsibus;@oem9.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2018-02-25 30264]
R3 dtliteusbbus;@oem16.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2018-02-25 47672]
R3 e1cexpress;@oem10.inf,%e1cExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\WINDOWS\system32\DRIVERS\e1c65x64.sys [2017-06-02 472016]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2010-10-26 2530152]
R3 LHidFilt;@oem17.inf,%LHidFilt.SvcDesc%;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2011-09-02 66840]
R3 LMouFilt;@oem17.inf,%LMouFilt.SvcDesc%;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2011-09-02 60696]
R3 MBAMSwissArmy;MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [2018-05-13 253664]
R3 MEIx64;@oem30.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface; C:\WINDOWS\System32\drivers\HECIx64.sys [2010-10-20 56344]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2018-03-30 176128]
R3 NAL;Nal Service ; \??\C:\WINDOWS\system32\Drivers\iqvw64e.sys [2016-09-03 50640]
S0 amdkmafd;@oem34.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmafd.sys [2015-06-03 31992]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2017-09-29 37784]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-09-29 357272]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2017-09-29 123800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2017-09-29 103320]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-09-29 63520]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2017-09-29 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2017-09-29 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2017-09-29 39832]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-09-29 118168]
S1 MpKslb397354c;MpKslb397354c; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{AFFE26B0-0FC1-486A-A0AB-24B73D09A774}\MpKslb397354c.sys [2018-03-11 58120]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-09-29 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-09-29 18432]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2018-04-08 46968]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2017-09-29 39424]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-09-29 60312]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2017-09-29 122368]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-04-25 129152]
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\windows\SysWOW64\FsUsbExDisk.SYS [2013-05-22 37344]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2017-09-29 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2017-09-29 50584]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2018-05-12 73112]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2017-09-29 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-09-29 1723288]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-09-29 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2017-09-29 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-09-29 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-09-29 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2017-09-29 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-09-29 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2017-09-29 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-09-29 39424]
S3 invdimm;@invdimm.inf,%invdimm.SvcDesc%;Microsoft iNVDIMM device driver; C:\WINDOWS\System32\drivers\invdimm.sys [2017-09-29 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2017-09-29 26112]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-03-30 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-09-29 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-09-29 55840]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2017-09-29 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2017-09-29 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-09-29 132608]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-09-29 88576]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-09-29 100352]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2017-09-29 16896]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2017-09-29 936856]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2017-09-29 103936]
S3 RimUsb;zařízení BlackBerry Smartphone; C:\WINDOWS\System32\Drivers\RimUsb_AMD64.sys [2007-05-14 27520]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2010-07-20 247400]
S3 RTSUER;@oem28.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2018-04-15 424384]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-09-29 33176]
S3 semav6msr64;semav6msr64; \??\C:\WINDOWS\system32\drivers\semav6msr64.sys [2016-10-18 21984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AllShare Framework DMS;AllShare Framework DMS; C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe [2013-12-21 404360]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-12-16 255472]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2018-03-29 83768]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-04-08 313640]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 CDPUserSvc_4f6b5;Uživatelská služba platformy připojených zařízení_4f6b5; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 CleanupPSvc;Avast Cleanup Premium; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [2018-03-11 7649576]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2018-04-23 8566440]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [2014-06-17 242216]
R2 FoxitReaderService;Foxit Reader Service; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [2017-12-11 1659456]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\syswow64\svchost.exe [2017-09-29 44520]
R2 HPSLPSVC;HP Network Devices Support; C:\windows\system32\svchost.exe [2017-09-29 48688]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\WINDOWS\system32\IProsetMonitor.exe [2017-02-27 505856]
R2 JME Keyboard;JME Keyboard Driver; C:\Windows\jmesoft\Service.exe [2011-03-16 32768]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-05 325656]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2018-03-27 6479136]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2017-09-30 26112]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2017-09-29 48688]
R2 OneSyncSvc_4f6b5;Hostitel synchronizace_4f6b5; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2017-09-29 48688]
R2 Samsung Link Service;Samsung Link Service; C:\Program Files\Samsung\Samsung Link\Samsung Link.exe [2016-03-09 623848]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-03-01 519152]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-04-08 7603408]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2018-02-16 3480768]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\syswow64\svchost.exe [2017-09-29 44520]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R3 PimIndexMaintenanceSvc_4f6b5;Data kontaktů_4f6b5; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S2 avast;Služba %1!s! Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-06 164984]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-09-29 136312]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-09-29 136312]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-09-29 136312]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-05-12 272384]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-09-29 52856]
S3 avastm;Služba %1!s! Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-06 164984]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DevicesFlowUserSvc_4f6b5;Tok zařízení_4f6b5; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-05-03 86016]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-12-16 43648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2018-04-08 673592]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2011-09-27 359192]
S3 LSC.Services.SystemService;Lenovo Solution Center System Service; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [2017-06-09 271128]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 MessagingService_4f6b5;Služba zasílání zpráv_4f6b5; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-03-27 194512]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-04-23 211632]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc_4f6b5;PrintWorkflow_4f6b5; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-09-29 1288704]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]

-----------------EOF-----------------

Re: Pomalé PC

Napsal: 13 kvě 2018 10:39
od Rudy
Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: Pomalé PC

Napsal: 13 kvě 2018 11:13
od Dadejs
toť log:

# -------------------------------
# Malwarebytes AdwCleaner 7.1.1.0
# -------------------------------
# Build: 04-27-2018
# Database: 2018-05-11.1
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 05-13-2018
# Duration: 00:00:11
# OS: Windows 10 Home
# Cleaned: 7
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Users\Dadejs\AppData\Roaming\IObit\Advanced SystemCare
Deleted C:\ProgramData\IObit\ASCDownloader

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted C:\Windows\System32\Tasks\Driver Booster Scheduler

***** [ Registry ] *****

Deleted HKCU\Software\Conduit
Deleted HKLM\Software\Wow6432Node\Conduit
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9849AE44-82A6-4E84-A83E-4CBE3DCD3B72}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scheduler

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************


########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Re: Pomalé PC

Napsal: 13 kvě 2018 12:04
od Rudy
OK. Teď dejte log FRST: https://forum.viry.cz/viewtopic.php?f=13&t=152707 .

Re: Pomalé PC

Napsal: 13 kvě 2018 12:22
od Dadejs
Takže tady

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12.05.2018
Ran by Dadejs (administrator) on DADEJS-PC (13-05-2018 13:17:02)
Running from C:\Users\Dadejs\Desktop
Loaded Profiles: Dadejs (Available Profiles: Dadejs & DefaultAppPool)
Platform: Windows 10 Home Version 1709 16299.431 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Samsung) C:\Program Files\SAMSUNG\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
() C:\Windows\jmesoft\Service.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Foxit Corporation) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Samsung Electronics Co.,Ltd) C:\Program Files\SAMSUNG\Samsung Link\Samsung Link.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Samsung) C:\Program Files\SAMSUNG\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
(Samsung Electronics Co.,Ltd) C:\Program Files\SAMSUNG\Samsung Link\Samsung Link.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Samsung Electronics Co.,Ltd) C:\Program Files\SAMSUNG\Samsung Link\Samsung Link Tray Agent.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
(Lenovo) C:\Windows\jmesoft\hotkey.exe
() C:\Windows\jmesoft\JME_LOAD.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1813.286.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11543656 2010-10-26] (Realtek Semiconductor)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [1744152 2011-10-07] (Logitech, Inc.)
HKLM\...\Run: [Samsung Link] => C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe [615144 2016-03-09] (Samsung Electronics Co.,Ltd)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242392 2018-04-08] (AVAST Software)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [298296 2018-04-08] (Apple Inc.)
HKLM-x32\...\Run: [jmekey] => C:\windows\jmesoft\hotkey.exe [118784 2011-03-21] (Lenovo)
HKLM-x32\...\Run: [jmesoft] => C:\Windows\jmesoft\ServiceLoader.exe [28672 2011-03-16] ()
HKLM-x32\...\Run: [Lenovo Eye Distance System] => C:\Program Files\Lenovo\Lenovo Eye Distance System\Lenovo Eye Distance System.exe [265216 2010-09-09] (Lenovo)
HKLM-x32\...\Run: [Lenovo Dynamic Brightness System] => C:\Program Files\Lenovo\Lenovo Brightness System\Lenovo Dynamic Brightness System.exe [285696 2010-10-08] (Lenovo)
HKLM-x32\...\Run: [4-Day Forecast] => C:\Program Files (x86)\4-Day Forecast\4-Day Forecast\4-Day Forecast.exe [1060864 2008-11-10] ()
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\RAPTRS~1.EXE [56080 2015-10-01] (Raptr, Inc)
HKLM-x32\...\Run: [SilentCleanService] => C:\Program Files (x86)\iMobie\PhoneClean\SilentCleanServer.exe [484528 2016-03-31] (iMobie Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [Syncios device service] => C:\Program Files (x86)\Anvsoft\Syncios\SynciosDeviceService.exe [2174072 2018-02-27] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\Run: [Xvid] => C:\Program Files (x86)\Xvid\CheckUpdate.exe [8192 2011-01-17] ()
HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\Run: [Google Update] => C:\Users\Dadejs\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe [601680 2017-11-17] (Google Inc.)
HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\Run: [MusicManager] => C:\Users\Dadejs\AppData\Local\Programs\Google\MusicManager\MusicManager.exe [5968896 2018-01-30] (Google Inc.)
HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2018-03-18] (Apple Inc.)
HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18334528 2018-04-12] (Piriform Ltd)
HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Dadejs\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [109808 2018-03-27] ()
HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [5263040 2018-02-16] (Disc Soft Ltd)
HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2018-03-18] (Apple Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Cleanup Premium.lnk [2017-12-26]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{2faf1ea1-f0a0-4770-9457-da6c90906265}: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{32e90e6b-2749-4fe6-b287-ffdfbc08fe80}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-04-30] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-04-30] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll [2018-04-19] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-04-19] (Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-30] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-30] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-30] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-30] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: a1lpsxma.default-1402684941049-1519852364944
FF ProfilePath: C:\Users\Dadejs\AppData\Roaming\Mozilla\Firefox\Profiles\a1lpsxma.default-1402684941049-1519852364944 [2018-05-13]
FF Homepage: Mozilla\Firefox\Profiles\a1lpsxma.default-1402684941049-1519852364944 -> hxxps://www.centrum.cz/
FF Extension: (Avast Online Security) - C:\Users\Dadejs\AppData\Roaming\Mozilla\Firefox\Profiles\a1lpsxma.default-1402684941049-1519852364944\Extensions\wrc@avast.com.xpi [2017-11-17]
FF Extension: (Video DownloadHelper) - C:\Users\Dadejs\AppData\Roaming\Mozilla\Firefox\Profiles\a1lpsxma.default-1402684941049-1519852364944\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-04-19]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011-11-19] [Legacy] [not signed]
FF HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_29_0_0_171.dll [2018-05-12] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_171.dll [2018-05-12] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2011-10-17] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-04-19] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-04-19] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-04-27] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-04-27] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-27] (VideoLAN)
FF Plugin HKU\S-1-5-21-2026504303-3394863346-1200617100-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Dadejs\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-17] (Google Inc.)
FF Plugin HKU\S-1-5-21-2026504303-3394863346-1200617100-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Dadejs\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-17] (Google Inc.)
FF Plugin HKU\S-1-5-21-2026504303-3394863346-1200617100-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Dadejs\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-05-01] (Unity Technologies ApS)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.centrum.cz/
CHR StartupUrls: Default -> "hxxp://www.centrum.cz/"
CHR Profile: C:\Users\Dadejs\AppData\Local\Google\Chrome\User Data\Default [2018-05-13]
CHR Extension: (Seznam pro Chrome - Email) - C:\Users\Dadejs\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2018-03-21]
CHR Extension: (Avast SafePrice) - C:\Users\Dadejs\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-03-13]
CHR Extension: (Hudba Google Play) - C:\Users\Dadejs\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2018-03-14]
CHR Extension: (Avast Online Security) - C:\Users\Dadejs\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-03-13]
CHR Extension: (Centrum.cz Email Notifikátor) - C:\Users\Dadejs\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmmnahgmbjnpgdoadbfoficgoamahklm [2017-01-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dadejs\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-11-18]
CHR Extension: (Chrome Media Router) - C:\Users\Dadejs\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-03-13]
CHR HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AllShare Framework DMS; C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe [404360 2013-12-21] (Samsung) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-03-29] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7603408 2018-04-08] (AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-06] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [313640 2018-04-08] (AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-06] (AVAST Software)
R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [7649576 2018-03-11] (AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8566440 2018-04-23] (Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3480768 2018-02-16] (Disc Soft Ltd)
R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [242216 2014-06-17] (Foxit Corporation)
R2 FoxitReaderService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1659456 2017-12-11] (Foxit Software Inc.)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [File not signed]
R2 Intel(R) PROSet Monitoring Service; C:\WINDOWS\system32\IProsetMonitor.exe [505856 2017-02-27] (Intel Corporation) [File not signed]
R2 JME Keyboard; C:\Windows\jmesoft\Service.exe [32768 2011-03-16] () [File not signed]
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [271128 2017-06-09] (Lenovo)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6479136 2018-03-27] (Malwarebytes)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Samsung Link Service; C:\Program Files\Samsung\Samsung Link\Samsung Link.exe [623848 2016-03-09] (Samsung Electronics Co.,Ltd)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU Co., LTD.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\NisSrv.exe [356152 2018-03-04] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MsMpEng.exe [106280 2018-03-04] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [31992 2015-06-03] (Advanced Micro Devices, Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [196640 2018-04-08] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [227504 2018-03-06] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [199440 2018-03-06] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [343752 2018-03-06] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [57680 2018-03-06] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [227784 2018-04-08] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46968 2018-04-08] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [147224 2018-04-12] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111352 2018-04-08] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84368 2018-04-08] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1026696 2018-04-08] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [460520 2018-05-12] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [205976 2018-04-08] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [380528 2018-04-08] (AVAST Software)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [110096 2017-04-23] (Advanced Micro Devices)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2018-02-25] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-02-25] (Disc Soft Ltd)
R3 e1cexpress; C:\WINDOWS\system32\DRIVERS\e1c65x64.sys [472016 2017-06-02] (Intel Corporation)
S3 FsUsbExDisk; C:\windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-05-22] () [File not signed]
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-04-23] (REALiX(tm))
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253664 2018-05-13] (Malwarebytes)
S1 MpKslb397354c; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{AFFE26B0-0FC1-486A-A0AB-24B73D09A774}\MpKslb397354c.sys [58120 2018-03-11] () [File not signed]
S3 RimUsb; C:\WINDOWS\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [424384 2018-04-15] (Realsil Semiconductor Corporation)
S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2016-10-18] ()
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46072 2018-03-04] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [288296 2018-03-04] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [129568 2018-03-04] (Microsoft Corporation)
R0 WinI2C-DDC; C:\WINDOWS\System32\drivers\DDCDrv.sys [20832 2008-04-08] (Nicomsoft Ltd.)
R0 WinI2C-DDC; C:\Windows\SysWOW64\drivers\DDCDrv.sys [15712 2010-03-23] (Nicomsoft Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-05-13 13:17 - 2018-05-13 13:18 - 000026647 _____ C:\Users\Dadejs\Desktop\FRST.txt
2018-05-13 13:10 - 2018-05-13 13:10 - 002404864 _____ (Farbar) C:\Users\Dadejs\Desktop\FRST64.exe
2018-05-13 11:49 - 2018-05-13 11:49 - 007271632 _____ (Malwarebytes) C:\Users\Dadejs\Desktop\adwcleaner_7.1.1.exe
2018-05-13 07:40 - 2018-05-13 07:40 - 001222144 _____ C:\Users\Dadejs\Desktop\RSITx64.exe
2018-05-12 21:32 - 2018-05-01 23:25 - 000835064 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-05-12 21:32 - 2018-05-01 23:25 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-05-12 19:39 - 2018-04-15 23:25 - 001430768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2018-05-12 19:39 - 2018-04-15 22:04 - 001342464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2018-05-12 19:39 - 2018-04-15 22:03 - 002628608 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-05-12 19:38 - 2018-05-03 09:57 - 000599448 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-05-12 19:38 - 2018-05-03 09:56 - 001092016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-05-12 19:38 - 2018-05-03 09:56 - 000924648 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-05-12 19:38 - 2018-05-03 09:54 - 000748448 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-05-12 19:38 - 2018-05-03 09:54 - 000608160 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-05-12 19:38 - 2018-05-03 09:53 - 000461216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-05-12 19:38 - 2018-05-03 09:52 - 001568160 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-05-12 19:38 - 2018-05-03 09:52 - 001415296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-05-12 19:38 - 2018-05-03 09:52 - 000137112 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-05-12 19:38 - 2018-05-03 09:51 - 001056152 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-05-12 19:38 - 2018-05-03 09:50 - 001206688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-05-12 19:38 - 2018-05-03 09:50 - 000664992 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-05-12 19:38 - 2018-05-03 09:50 - 000423328 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-05-12 19:38 - 2018-05-03 09:50 - 000069536 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-05-12 19:38 - 2018-05-03 09:49 - 000035232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2018-05-12 19:38 - 2018-05-03 09:48 - 002002336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-05-12 19:38 - 2018-05-03 09:48 - 000272288 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-05-12 19:38 - 2018-05-03 09:48 - 000077216 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-05-12 19:38 - 2018-05-03 09:47 - 008600472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-05-12 19:38 - 2018-05-03 09:47 - 001209760 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-05-12 19:38 - 2018-05-03 09:45 - 002395040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-05-12 19:38 - 2018-05-03 09:45 - 000711936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-05-12 19:38 - 2018-05-03 09:43 - 000373664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2018-05-12 19:38 - 2018-05-03 09:41 - 000540064 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-05-12 19:38 - 2018-05-03 09:38 - 002574240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-05-12 19:38 - 2018-05-03 09:37 - 000749984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-05-12 19:38 - 2018-05-03 09:37 - 000408992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-05-12 19:38 - 2018-05-03 09:36 - 007675792 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-05-12 19:38 - 2018-05-03 09:36 - 002710736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-05-12 19:38 - 2018-05-03 09:36 - 000437664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2018-05-12 19:38 - 2018-05-03 09:36 - 000247200 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-05-12 19:38 - 2018-05-03 09:35 - 002472864 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2018-05-12 19:38 - 2018-05-03 09:35 - 000358496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2018-05-12 19:38 - 2018-05-03 09:34 - 021356824 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-05-12 19:38 - 2018-05-03 09:34 - 000070864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2018-05-12 19:38 - 2018-05-03 09:32 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-05-12 19:38 - 2018-05-03 08:36 - 025254400 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-05-12 19:38 - 2018-05-03 08:31 - 006092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-05-12 19:38 - 2018-05-03 08:31 - 002193688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-05-12 19:38 - 2018-05-03 08:29 - 000285144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2018-05-12 19:38 - 2018-05-03 08:28 - 000061024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2018-05-12 19:38 - 2018-05-03 08:26 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-05-12 19:38 - 2018-05-03 08:25 - 020290248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-05-12 19:38 - 2018-05-03 08:19 - 003663360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-05-12 19:38 - 2018-05-03 08:18 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2018-05-12 19:38 - 2018-05-03 08:18 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2018-05-12 19:38 - 2018-05-03 08:18 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcSpecfc.dll
2018-05-12 19:38 - 2018-05-03 08:17 - 007545344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-05-12 19:38 - 2018-05-03 08:16 - 023674880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-05-12 19:38 - 2018-05-03 08:16 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2018-05-12 19:38 - 2018-05-03 08:16 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2018-05-12 19:38 - 2018-05-03 08:16 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-05-12 19:38 - 2018-05-03 08:16 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-05-12 19:38 - 2018-05-03 08:16 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2018-05-12 19:38 - 2018-05-03 08:16 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2018-05-12 19:38 - 2018-05-03 08:15 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2018-05-12 19:38 - 2018-05-03 08:15 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\imgutil.dll
2018-05-12 19:38 - 2018-05-03 08:14 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-05-12 19:38 - 2018-05-03 08:14 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2018-05-12 19:38 - 2018-05-03 08:13 - 000276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2018-05-12 19:38 - 2018-05-03 08:12 - 000816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-05-12 19:38 - 2018-05-03 08:12 - 000672768 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-05-12 19:38 - 2018-05-03 08:12 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2018-05-12 19:38 - 2018-05-03 08:11 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-05-12 19:38 - 2018-05-03 08:09 - 008068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-05-12 19:38 - 2018-05-03 08:09 - 004723712 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-05-12 19:38 - 2018-05-03 08:09 - 003405824 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-05-12 19:38 - 2018-05-03 08:09 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-05-12 19:38 - 2018-05-03 08:09 - 002784256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-05-12 19:38 - 2018-05-03 08:09 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-05-12 19:38 - 2018-05-03 08:09 - 001548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-05-12 19:38 - 2018-05-03 08:08 - 001597952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-05-12 19:38 - 2018-05-03 08:08 - 000808960 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-05-12 19:38 - 2018-05-03 08:07 - 001822720 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-05-12 19:38 - 2018-05-03 08:05 - 000389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2018-05-12 19:38 - 2018-05-03 08:04 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2018-05-12 19:38 - 2018-05-03 08:03 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2018-05-12 19:38 - 2018-05-03 08:02 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2018-05-12 19:38 - 2018-05-03 08:00 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-05-12 19:38 - 2018-05-03 08:00 - 000473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll
2018-05-12 19:38 - 2018-05-03 08:00 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2018-05-12 19:38 - 2018-05-03 07:59 - 018924544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-05-12 19:38 - 2018-05-03 07:58 - 006467072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-05-12 19:38 - 2018-05-03 07:58 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-05-12 19:38 - 2018-05-03 07:57 - 019354624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-05-12 19:38 - 2018-05-03 07:57 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2018-05-12 19:38 - 2018-05-03 07:57 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2018-05-12 19:38 - 2018-05-03 07:57 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2018-05-12 19:38 - 2018-05-03 07:56 - 002677248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-05-12 19:38 - 2018-05-03 07:56 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2018-05-12 19:38 - 2018-05-03 07:56 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2018-05-12 19:38 - 2018-05-03 07:55 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-05-12 19:38 - 2018-05-03 07:54 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2018-05-12 19:38 - 2018-05-03 07:53 - 006060544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-05-12 19:38 - 2018-05-03 07:53 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-05-12 19:38 - 2018-05-03 07:52 - 003662848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-05-12 19:38 - 2018-05-03 07:52 - 000664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-05-12 19:38 - 2018-05-03 07:52 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-05-12 19:38 - 2018-05-03 07:51 - 002869760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-05-12 19:38 - 2018-05-03 07:51 - 001560064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-05-12 19:38 - 2018-05-03 07:50 - 001474560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-05-12 19:38 - 2018-05-03 07:48 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2018-05-12 19:38 - 2018-04-16 00:07 - 001463344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2018-05-12 19:38 - 2018-04-16 00:04 - 000779952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-05-12 19:38 - 2018-04-16 00:03 - 000128408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2018-05-12 19:38 - 2018-04-15 23:57 - 000279968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2018-05-12 19:38 - 2018-04-15 23:51 - 002513920 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-05-12 19:38 - 2018-04-15 23:50 - 001925760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2018-05-12 19:38 - 2018-04-15 23:49 - 001954056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-05-12 19:38 - 2018-04-15 23:49 - 000382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2018-05-12 19:38 - 2018-04-15 23:48 - 005859248 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2018-05-12 19:38 - 2018-04-15 23:48 - 001638424 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-05-12 19:38 - 2018-04-15 23:47 - 000398744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2018-05-12 19:38 - 2018-04-15 23:38 - 000979360 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2018-05-12 19:38 - 2018-04-15 23:34 - 000230304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2018-05-12 19:38 - 2018-04-15 23:33 - 000362904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-05-12 19:38 - 2018-04-15 23:32 - 003904296 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-05-12 19:38 - 2018-04-15 23:32 - 001416392 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2018-05-12 19:38 - 2018-04-15 23:30 - 002268024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2018-05-12 19:38 - 2018-04-15 23:29 - 001779936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-05-12 19:38 - 2018-04-15 23:28 - 000688064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-05-12 19:38 - 2018-04-15 23:26 - 007384576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-05-12 19:38 - 2018-04-15 23:26 - 002711176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-05-12 19:38 - 2018-04-15 23:26 - 001506200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-05-12 19:38 - 2018-04-15 23:23 - 001101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-05-12 19:38 - 2018-04-15 22:47 - 001929712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-05-12 19:38 - 2018-04-15 22:47 - 001615712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-05-12 19:38 - 2018-04-15 22:47 - 001490856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2018-05-12 19:38 - 2018-04-15 22:47 - 001433360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-05-12 19:38 - 2018-04-15 22:47 - 001323336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2018-05-12 19:38 - 2018-04-15 22:47 - 000649304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2018-05-12 19:38 - 2018-04-15 22:47 - 000311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2018-05-12 19:38 - 2018-04-15 22:38 - 003485392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2018-05-12 19:38 - 2018-04-15 22:38 - 001123464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2018-05-12 19:38 - 2018-04-15 22:37 - 000747416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2018-05-12 19:38 - 2018-04-15 22:35 - 002462704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2018-05-12 19:38 - 2018-04-15 22:34 - 006482664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-05-12 19:38 - 2018-04-15 22:34 - 001524776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2018-05-12 19:38 - 2018-04-15 22:34 - 001456104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2018-05-12 19:38 - 2018-04-15 22:34 - 001017048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2018-05-12 19:38 - 2018-04-15 22:16 - 003995136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2018-05-12 19:38 - 2018-04-15 22:15 - 003490816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2018-05-12 19:38 - 2018-04-15 22:14 - 000250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2018-05-12 19:38 - 2018-04-15 22:14 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2018-05-12 19:38 - 2018-04-15 22:14 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2018-05-12 19:38 - 2018-04-15 22:14 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-05-12 19:38 - 2018-04-15 22:14 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-05-12 19:38 - 2018-04-15 22:14 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
2018-05-12 19:38 - 2018-04-15 22:13 - 002890240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2018-05-12 19:38 - 2018-04-15 22:12 - 017160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-05-12 19:38 - 2018-04-15 22:12 - 013704704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2018-05-12 19:38 - 2018-04-15 22:12 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2018-05-12 19:38 - 2018-04-15 22:11 - 000531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-05-12 19:38 - 2018-04-15 22:10 - 001498112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-05-12 19:38 - 2018-04-15 22:10 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-05-12 19:38 - 2018-04-15 22:10 - 000363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2018-05-12 19:38 - 2018-04-15 22:10 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2018-05-12 19:38 - 2018-04-15 22:09 - 000503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_User.dll
2018-05-12 19:38 - 2018-04-15 22:09 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
2018-05-12 19:38 - 2018-04-15 22:08 - 006576128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-05-12 19:38 - 2018-04-15 22:08 - 003181568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2018-05-12 19:38 - 2018-04-15 22:08 - 000859648 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2018-05-12 19:38 - 2018-04-15 22:08 - 000246272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2018-05-12 19:38 - 2018-04-15 22:08 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\twext.dll
2018-05-12 19:38 - 2018-04-15 22:08 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2018-05-12 19:38 - 2018-04-15 22:07 - 012689920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-05-12 19:38 - 2018-04-15 22:07 - 008031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-05-12 19:38 - 2018-04-15 22:07 - 005195776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-05-12 19:38 - 2018-04-15 22:07 - 003367936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2018-05-12 19:38 - 2018-04-15 22:07 - 001495552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-05-12 19:38 - 2018-04-15 22:07 - 001425408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-05-12 19:38 - 2018-04-15 22:07 - 000792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-05-12 19:38 - 2018-04-15 22:07 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2018-05-12 19:38 - 2018-04-15 22:07 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-05-12 19:38 - 2018-04-15 22:07 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-05-12 19:38 - 2018-04-15 22:07 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2018-05-12 19:38 - 2018-04-15 22:07 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2018-05-12 19:38 - 2018-04-15 22:07 - 000158208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twext.dll
2018-05-12 19:38 - 2018-04-15 22:07 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2018-05-12 19:38 - 2018-04-15 22:07 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2018-05-12 19:38 - 2018-04-15 22:06 - 013660672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-05-12 19:38 - 2018-04-15 22:06 - 011924480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-05-12 19:38 - 2018-04-15 22:06 - 000820224 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2018-05-12 19:38 - 2018-04-15 22:06 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-05-12 19:38 - 2018-04-15 22:06 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2018-05-12 19:38 - 2018-04-15 22:06 - 000377856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-05-12 19:38 - 2018-04-15 22:05 - 004113408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-05-12 19:38 - 2018-04-15 22:05 - 000863744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2018-05-12 19:38 - 2018-04-15 22:05 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2018-05-12 19:38 - 2018-04-15 22:05 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2018-05-12 19:38 - 2018-04-15 22:05 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2018-05-12 19:38 - 2018-04-15 22:04 - 012833280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-05-12 19:38 - 2018-04-15 22:04 - 002523136 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2018-05-12 19:38 - 2018-04-15 22:04 - 002490880 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2018-05-12 19:38 - 2018-04-15 22:04 - 002464768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-05-12 19:38 - 2018-04-15 22:04 - 002209280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-05-12 19:38 - 2018-04-15 22:04 - 001236480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-05-12 19:38 - 2018-04-15 22:04 - 001230848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2018-05-12 19:38 - 2018-04-15 22:04 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2018-05-12 19:38 - 2018-04-15 22:04 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-05-12 19:38 - 2018-04-15 22:04 - 000965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2018-05-12 19:38 - 2018-04-15 22:04 - 000884736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2018-05-12 19:38 - 2018-04-15 22:04 - 000621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2018-05-12 19:38 - 2018-04-15 22:04 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2018-05-12 19:38 - 2018-04-15 22:04 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2018-05-12 19:38 - 2018-04-15 22:04 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 004772352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 004385280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 004248064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 003287040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 003177472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 002976256 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 002857984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 002814976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 002741248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 002462208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 002413568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 001353728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 000920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2018-05-12 19:38 - 2018-04-15 22:03 - 000826880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2018-05-12 19:38 - 2018-04-15 22:03 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 000508928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 000402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2018-05-12 19:38 - 2018-04-15 22:03 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2018-05-12 19:38 - 2018-04-15 22:02 - 004814336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-05-12 19:38 - 2018-04-15 22:02 - 001669120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2018-05-12 19:38 - 2018-04-15 22:02 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2018-05-12 19:38 - 2018-04-15 22:02 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-05-12 19:38 - 2018-04-15 22:01 - 001509888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2018-05-12 19:38 - 2018-04-15 22:00 - 002223616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2018-05-12 19:38 - 2018-04-15 22:00 - 001739264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-05-12 19:38 - 2018-04-15 22:00 - 000726016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-05-12 19:38 - 2018-04-15 22:00 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2018-05-12 19:38 - 2018-04-15 21:58 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2018-05-12 19:37 - 2018-05-03 09:53 - 000300448 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-05-12 19:37 - 2018-05-03 09:48 - 000793960 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2018-05-12 19:37 - 2018-05-03 09:43 - 000702568 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2018-05-12 19:37 - 2018-05-03 08:44 - 000595448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2018-05-12 19:37 - 2018-05-03 08:43 - 000594056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2018-05-12 19:37 - 2018-05-03 08:39 - 000212896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2018-05-12 19:37 - 2018-05-03 08:19 - 001300992 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-05-12 19:37 - 2018-05-03 08:19 - 000496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-05-12 19:37 - 2018-05-03 08:18 - 000400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-05-12 19:37 - 2018-05-03 08:16 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadauthhelper.dll
2018-05-12 19:37 - 2018-05-03 08:16 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-05-12 19:37 - 2018-05-03 08:16 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2018-05-12 19:37 - 2018-05-03 08:15 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\itircl.dll
2018-05-12 19:37 - 2018-05-03 08:14 - 000623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2018-05-12 19:37 - 2018-05-03 08:13 - 000253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2018-05-12 19:37 - 2018-05-03 08:12 - 000657408 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2018-05-12 19:37 - 2018-05-03 08:09 - 008432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2018-05-12 19:37 - 2018-05-03 08:09 - 001856000 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2018-05-12 19:37 - 2018-05-03 08:09 - 001344000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2018-05-12 19:37 - 2018-05-03 08:06 - 003630080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2018-05-12 19:37 - 2018-05-03 08:05 - 001717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2018-05-12 19:37 - 2018-05-03 08:05 - 000483840 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2018-05-12 19:37 - 2018-05-03 08:03 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2018-05-12 19:37 - 2018-05-03 08:03 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2018-05-12 19:37 - 2018-05-03 07:57 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itircl.dll
2018-05-12 19:37 - 2018-05-03 07:57 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadauthhelper.dll
2018-05-12 19:37 - 2018-05-03 07:57 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2018-05-12 19:37 - 2018-05-03 07:53 - 007813120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2018-05-12 19:37 - 2018-05-03 07:53 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2018-05-12 19:37 - 2018-05-03 07:50 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2018-05-12 19:37 - 2018-05-03 07:49 - 003430400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2018-05-12 19:37 - 2018-05-03 07:48 - 001353728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2018-05-12 19:37 - 2018-05-03 07:48 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2018-05-12 19:37 - 2018-05-03 07:47 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2018-05-12 19:37 - 2018-04-15 23:49 - 000563632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2018-05-12 19:37 - 2018-04-15 23:38 - 003180720 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2018-05-12 19:37 - 2018-04-15 23:33 - 001269616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2018-05-12 19:37 - 2018-04-15 23:29 - 001873944 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2018-05-12 19:37 - 2018-04-15 23:29 - 000198440 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2018-05-12 19:37 - 2018-04-15 23:25 - 000661920 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2018-05-12 19:37 - 2018-04-15 23:25 - 000327008 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2018-05-12 19:37 - 2018-04-15 23:25 - 000092032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2018-05-12 19:37 - 2018-04-15 23:24 - 000063656 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2018-05-12 19:37 - 2018-04-15 22:38 - 000444280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2018-05-12 19:37 - 2018-04-15 22:36 - 002386832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2018-05-12 19:37 - 2018-04-15 22:36 - 001575896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2018-05-12 19:37 - 2018-04-15 22:36 - 000832648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2018-05-12 19:37 - 2018-04-15 22:36 - 000543920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2018-05-12 19:37 - 2018-04-15 22:34 - 000572312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2018-05-12 19:37 - 2018-04-15 22:34 - 000279472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shlwapi.dll
2018-05-12 19:37 - 2018-04-15 22:34 - 000166408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2018-05-12 19:37 - 2018-04-15 22:34 - 000077552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2018-05-12 19:37 - 2018-04-15 22:34 - 000052248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2018-05-12 19:37 - 2018-04-15 22:15 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2018-05-12 19:37 - 2018-04-15 22:14 - 000436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2018-05-12 19:37 - 2018-04-15 22:14 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2018-05-12 19:37 - 2018-04-15 22:14 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProv2faHelper.dll
2018-05-12 19:37 - 2018-04-15 22:14 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProv2faHelper.dll
2018-05-12 19:37 - 2018-04-15 22:13 - 000084992 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2018-05-12 19:37 - 2018-04-15 22:12 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2018-05-12 19:37 - 2018-04-15 22:12 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2018-05-12 19:37 - 2018-04-15 22:11 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2018-05-12 19:37 - 2018-04-15 22:11 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2018-05-12 19:37 - 2018-04-15 22:11 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2018-05-12 19:37 - 2018-04-15 22:11 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2018-05-12 19:37 - 2018-04-15 22:11 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2018-05-12 19:37 - 2018-04-15 22:11 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\eShims.dll
2018-05-12 19:37 - 2018-04-15 22:10 - 001576960 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2018-05-12 19:37 - 2018-04-15 22:10 - 000571904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2018-05-12 19:37 - 2018-04-15 22:10 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2018-05-12 19:37 - 2018-04-15 22:10 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2018-05-12 19:37 - 2018-04-15 22:10 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2018-05-12 19:37 - 2018-04-15 22:10 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2018-05-12 19:37 - 2018-04-15 22:10 - 000192000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2018-05-12 19:37 - 2018-04-15 22:10 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2018-05-12 19:37 - 2018-04-15 22:10 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2018-05-12 19:37 - 2018-04-15 22:09 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2018-05-12 19:37 - 2018-04-15 22:09 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2018-05-12 19:37 - 2018-04-15 22:09 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2018-05-12 19:37 - 2018-04-15 22:09 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll
2018-05-12 19:37 - 2018-04-15 22:08 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2018-05-12 19:37 - 2018-04-15 22:08 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2018-05-12 19:37 - 2018-04-15 22:08 - 000583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.Schema.Shell.dll
2018-05-12 19:37 - 2018-04-15 22:08 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2018-05-12 19:37 - 2018-04-15 22:08 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2018-05-12 19:37 - 2018-04-15 22:08 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2018-05-12 19:37 - 2018-04-15 22:08 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2018-05-12 19:37 - 2018-04-15 22:08 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2018-05-12 19:37 - 2018-04-15 22:08 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2018-05-12 19:37 - 2018-04-15 22:07 - 000837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-05-12 19:37 - 2018-04-15 22:07 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2018-05-12 19:37 - 2018-04-15 22:07 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2018-05-12 19:37 - 2018-04-15 22:07 - 000406016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2018-05-12 19:37 - 2018-04-15 22:07 - 000319488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2018-05-12 19:37 - 2018-04-15 22:07 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2018-05-12 19:37 - 2018-04-15 22:07 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2018-05-12 19:37 - 2018-04-15 22:07 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2018-05-12 19:37 - 2018-04-15 22:07 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll
2018-05-12 19:37 - 2018-04-15 22:07 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
2018-05-12 19:37 - 2018-04-15 22:06 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2018-05-12 19:37 - 2018-04-15 22:06 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2018-05-12 19:37 - 2018-04-15 22:06 - 000139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2018-05-12 19:37 - 2018-04-15 22:05 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2018-05-12 19:37 - 2018-04-15 22:05 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2018-05-12 19:37 - 2018-04-15 22:04 - 000997376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2018-05-12 19:37 - 2018-04-15 22:04 - 000976896 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2018-05-12 19:37 - 2018-04-15 22:04 - 000648704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2018-05-12 19:37 - 2018-04-15 22:04 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2018-05-12 19:37 - 2018-04-15 22:03 - 001224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2018-05-12 19:37 - 2018-04-15 22:03 - 000825856 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2018-05-12 19:37 - 2018-04-15 22:03 - 000697344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2018-05-12 19:37 - 2018-04-15 22:02 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2018-05-12 19:37 - 2018-04-15 22:01 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2018-05-12 19:37 - 2018-04-15 22:01 - 000518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2018-05-12 19:37 - 2018-04-15 22:01 - 000366592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2018-05-12 19:37 - 2018-04-15 22:01 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2018-05-12 19:37 - 2018-04-15 22:01 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe
2018-05-12 19:37 - 2018-04-15 22:00 - 000682496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2018-05-12 19:37 - 2018-04-15 22:00 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2018-05-12 19:37 - 2018-04-15 22:00 - 000496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2018-05-12 19:37 - 2018-04-15 22:00 - 000356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2018-05-12 19:37 - 2018-04-15 22:00 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2018-05-12 19:37 - 2018-04-15 22:00 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2018-05-12 19:37 - 2018-04-15 22:00 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2018-05-12 19:37 - 2018-04-15 22:00 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe
2018-05-12 19:37 - 2018-04-15 21:59 - 001332736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2018-05-12 19:37 - 2018-04-15 21:59 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2018-05-12 19:37 - 2018-04-15 21:58 - 001472000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2018-05-12 19:37 - 2017-11-26 15:26 - 000048112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2018-05-04 14:03 - 2018-05-04 14:18 - 000000000 ____D C:\Users\Dadejs\Documents\Vysvětlení XI
2018-05-04 14:03 - 2018-05-04 14:03 - 000000000 ____D C:\Users\Dadejs\Documents\Vlastní šablony Office
2018-05-03 20:17 - 2018-05-04 14:14 - 000000000 ____D C:\Users\Dadejs\Documents\Vysvětlení X
2018-05-03 19:39 - 2018-05-04 10:12 - 000000000 ____D C:\Users\Dadejs\Documents\Vysvětlení IX
2018-04-29 21:59 - 2018-04-29 21:59 - 000000901 _____ C:\Users\Dadejs\Desktop\Stanley cup 2018.xls – zástupce.lnk
2018-04-27 22:05 - 2018-04-27 22:05 - 000002553 _____ C:\Users\Dadejs\Desktop\Word.lnk
2018-04-27 22:05 - 2018-04-27 22:05 - 000002525 _____ C:\Users\Dadejs\Desktop\Excel.lnk
2018-04-27 21:58 - 2018-05-03 19:45 - 000002553 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2018-04-27 21:58 - 2018-04-29 21:58 - 000002525 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2018-04-27 21:58 - 2018-04-27 21:58 - 000002559 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2018-04-27 21:58 - 2018-04-27 21:58 - 000002530 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2018-04-27 21:58 - 2018-04-27 21:58 - 000002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype pro firmy.lnk
2018-04-27 21:58 - 2018-04-27 21:58 - 000002486 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2018-04-27 21:58 - 2018-04-27 21:58 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2018-04-27 21:58 - 2018-04-27 21:58 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2018-04-27 21:45 - 2018-04-27 21:45 - 000000000 ____D C:\Program Files\Microsoft Office 15
2018-04-25 19:56 - 2018-05-13 12:05 - 000253664 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2018-04-25 19:48 - 2018-04-25 19:48 - 000001816 _____ C:\Users\Public\Desktop\iTunes.lnk
2018-04-25 19:48 - 2018-04-25 19:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2018-04-25 19:48 - 2018-04-25 19:48 - 000000000 ____D C:\Program Files\iPod
2018-04-25 19:47 - 2018-04-25 19:48 - 000000000 ____D C:\Program Files\iTunes
2018-04-15 22:26 - 2018-04-15 22:26 - 000000000 ____D C:\Program Files (x86)\Opera
2018-04-15 22:22 - 2018-04-15 22:24 - 000002355 _____ C:\Users\Public\Desktop\Driver Booster 5.lnk
2018-04-15 22:22 - 2018-04-15 22:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 5
2018-04-15 22:17 - 2018-04-15 22:17 - 000424384 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys
2018-04-15 21:44 - 2018-04-15 21:44 - 000002158 _____ C:\Users\Public\Desktop\Lenovo Solution Center.lnk
2018-04-15 11:00 - 2018-05-13 12:12 - 000000000 ___RD C:\Users\Dadejs\iCloudDrive
2018-04-15 11:00 - 2018-04-15 11:00 - 000000000 ____D C:\Users\Dadejs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iCloud
2018-04-14 07:40 - 2018-04-14 07:40 - 000001143 _____ C:\Users\Public\Desktop\VLC media player.lnk
2018-04-14 07:37 - 2018-04-14 07:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-05-13 13:17 - 2017-11-18 20:52 - 000000000 ____D C:\FRST
2018-05-13 13:17 - 2016-11-19 09:22 - 000000000 ____D C:\Users\Dadejs\AppData\LocalLow\Mozilla
2018-05-13 12:06 - 2011-08-26 05:10 - 000417787 _____ C:\WINDOWS\system32\fastboot.set
2018-05-13 12:05 - 2017-12-16 17:27 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-05-13 12:04 - 2017-09-29 10:45 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-05-13 12:03 - 2017-04-23 08:38 - 000000000 ____D C:\ProgramData\IObit
2018-05-13 12:03 - 2017-04-23 08:37 - 000000000 ____D C:\Users\Dadejs\AppData\Roaming\IObit
2018-05-13 11:52 - 2015-01-23 23:39 - 000000000 ____D C:\AdwCleaner
2018-05-13 10:08 - 2012-09-16 09:18 - 000000000 ____D C:\Users\Dadejs\Documents\comics
2018-05-13 09:51 - 2017-12-16 16:48 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-05-13 07:41 - 2017-12-16 17:27 - 000004202 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{E25A9633-24AF-4BB2-AF2A-BE85B5AAC76B}
2018-05-13 07:41 - 2012-12-21 19:42 - 000000000 ____D C:\Program Files\trend micro
2018-05-13 07:16 - 2017-12-16 17:27 - 000002340 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Dadejs)
2018-05-13 07:15 - 2017-09-29 15:44 - 000000000 ____D C:\WINDOWS\INF
2018-05-13 07:15 - 2011-11-19 18:20 - 000000000 ____D C:\Users\Dadejs\AppData\Roaming\Media Player Classic
2018-05-13 07:11 - 2017-12-16 17:27 - 000003936 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2018-05-13 07:11 - 2015-12-19 14:46 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-05-12 21:45 - 2018-03-14 19:11 - 000004644 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-05-12 21:45 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-05-12 21:45 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-05-12 21:45 - 2014-10-20 07:42 - 000000000 ____D C:\Users\Dadejs\AppData\Local\Adobe
2018-05-12 21:38 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-05-12 21:36 - 2017-12-16 16:53 - 002479056 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-05-12 21:36 - 2017-09-30 16:31 - 001064688 _____ C:\WINDOWS\system32\perfh005.dat
2018-05-12 21:36 - 2017-09-30 16:31 - 000261122 _____ C:\WINDOWS\system32\perfc005.dat
2018-05-12 21:35 - 2015-08-06 21:36 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-05-12 21:34 - 2017-12-16 17:30 - 000000000 ___RD C:\Users\Dadejs\3D Objects
2018-05-12 21:29 - 2018-01-25 09:56 - 000406912 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-05-12 21:28 - 2017-04-22 12:10 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-05-12 21:28 - 2013-08-17 19:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-05-12 21:26 - 2017-09-29 15:46 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2018-05-12 21:26 - 2017-09-29 15:46 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2018-05-12 21:26 - 2017-09-29 15:46 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-05-12 21:26 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2018-05-12 21:26 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-05-12 21:26 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-05-12 21:26 - 2017-09-29 10:45 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-05-12 21:26 - 2017-09-29 10:45 - 000000000 ____D C:\WINDOWS\servicing
2018-05-12 21:23 - 2017-03-19 16:07 - 000000000 ____D C:\Users\Dadejs\AppData\Local\SmartView2
2018-05-12 20:21 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\rescache
2018-05-12 20:05 - 2013-08-17 22:48 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-05-12 19:58 - 2017-10-11 22:02 - 141696960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-05-12 19:58 - 2017-09-29 15:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-05-12 19:58 - 2011-11-20 09:02 - 141696960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-05-12 19:45 - 2017-09-29 15:42 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2018-05-12 19:44 - 2017-09-29 15:41 - 000073112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2018-05-12 19:44 - 2017-09-29 15:41 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2018-05-12 19:44 - 2017-09-29 15:41 - 000020888 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2018-05-12 19:36 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-05-12 19:31 - 2017-09-29 15:46 - 000000000 ___HD C:\Program Files\WindowsApps
2018-05-12 19:23 - 2011-11-19 17:29 - 000460520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-05-12 19:00 - 2017-12-27 19:10 - 000000000 ____D C:\Users\Dadejs\Documents\Harry Potter II
2018-05-12 18:20 - 2017-12-16 17:27 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2018-05-04 14:02 - 2017-12-16 17:00 - 000000000 ____D C:\Users\Dadejs\AppData\Local\Packages
2018-05-02 18:50 - 2014-11-27 08:37 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-05-01 17:59 - 2017-09-29 15:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-05-01 17:57 - 2011-11-19 17:43 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2018-05-01 17:53 - 2012-11-23 23:48 - 000001232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-04-28 18:25 - 2011-11-19 20:06 - 000000000 ____D C:\Users\Dadejs\AppData\Roaming\vlc
2018-04-27 22:15 - 2015-10-30 20:35 - 000000000 ____D C:\WINDOWS\ShellNew
2018-04-27 22:15 - 2009-07-14 04:34 - 000000524 _____ C:\WINDOWS\win.ini
2018-04-27 21:44 - 2017-09-29 15:46 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-04-26 19:17 - 2017-12-16 17:27 - 000003368 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2026504303-3394863346-1200617100-1001
2018-04-26 19:17 - 2015-08-06 21:43 - 000002433 _____ C:\Users\Dadejs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-04-26 19:17 - 2015-08-06 21:43 - 000000000 ___RD C:\Users\Dadejs\OneDrive
2018-04-22 16:51 - 2017-12-29 19:20 - 000000000 ____D C:\Users\Dadejs\AppData\Local\PlaceholderTileLogoFolder
2018-04-19 18:30 - 2014-07-17 19:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-04-19 18:30 - 2011-11-19 17:58 - 000000000 ____D C:\Program Files (x86)\Java
2018-04-19 18:28 - 2014-07-17 19:45 - 000098760 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2018-04-15 22:24 - 2017-04-23 08:38 - 000000000 ____D C:\ProgramData\ProductData
2018-04-15 21:44 - 2017-12-16 17:27 - 000000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2018-04-15 21:38 - 2017-04-29 10:49 - 000000000 ____D C:\WINDOWS\Downloaded Installations
2018-04-15 11:00 - 2017-12-16 16:59 - 000000000 ____D C:\Users\Dadejs
2018-04-15 11:00 - 2016-01-01 23:37 - 000000000 ____D C:\Users\Dadejs\AppData\Local\Apple Inc
2018-04-15 11:00 - 2011-12-17 22:44 - 000000000 ____D C:\Users\Dadejs\AppData\Local\Apple Computer
2018-04-14 07:54 - 2011-11-19 18:28 - 000000000 ____D C:\Program Files (x86)\WinRAR
2018-04-14 07:38 - 2017-07-12 21:30 - 000000000 ____D C:\ProgramData\Foxit Software
2018-04-14 07:38 - 2013-03-23 08:31 - 000000000 ____D C:\Users\Dadejs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-04-14 07:38 - 2013-03-23 08:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-04-14 07:27 - 2018-02-25 12:15 - 000000000 ____D C:\Users\Dadejs\AppData\Roaming\DAEMON Tools Lite

==================== Files in the root of some directories =======

2018-02-28 23:33 - 2018-04-10 21:59 - 000004096 ____H () C:\Users\Dadejs\AppData\Local\keyfile3.drm
2017-09-06 22:15 - 2017-09-06 22:15 - 000002288 _____ () C:\Users\Dadejs\AppData\Local\recently-used.xbel
2014-05-17 21:09 - 2014-11-04 22:18 - 000007610 _____ () C:\Users\Dadejs\AppData\Local\Resmon.ResmonCfg
2012-04-21 10:51 - 2012-04-21 10:52 - 000000210 _____ () C:\Users\Dadejs\AppData\Local\SRDownloader.err
2012-04-21 10:50 - 2012-04-21 10:53 - 000001528 _____ () C:\Users\Dadejs\AppData\Local\SRDownloader.nast
2017-03-02 22:57 - 2017-03-02 22:57 - 000000000 _____ () C:\Users\Dadejs\AppData\Local\{2B6D7FCC-0303-4BFE-B8F6-6E6B1696D5B3}

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-05-12 20:10

==================== End of FRST.txt ============================

Re: Pomalé PC

Napsal: 13 kvě 2018 12:24
od Dadejs
a tady

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12.05.2018
Ran by Dadejs (13-05-2018 13:19:14)
Running from C:\Users\Dadejs\Desktop
Windows 10 Home Version 1709 16299.431 (X64) (2017-12-16 15:29:49)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2026504303-3394863346-1200617100-500 - Administrator - Disabled)
Dadejs (S-1-5-21-2026504303-3394863346-1200617100-1001 - Administrator - Enabled) => C:\Users\Dadejs
DefaultAccount (S-1-5-21-2026504303-3394863346-1200617100-503 - Limited - Disabled)
Guest (S-1-5-21-2026504303-3394863346-1200617100-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2026504303-3394863346-1200617100-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 29 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 29.0.0.171 - Adobe Systems Incorporated)
AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.60.1483, 27.02.2015 - AIMP DevTeam)
AllShare Framework DMS (HKLM\...\{83232C27-8C3F-44A5-9EB2-BB7161228ADD}) (Version: 1.3.23 - Samsung)
Apple Mobile Device Support (HKLM\...\{9E005AAA-81A3-478E-8944-532D350952EE}) (Version: 11.3.1.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
aTube Catcher verze 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Avast Cleanup Premium (HKLM-x32\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 17.3.4228 - AVAST Software)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.3.2333 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 64.0.387.186 - AVAST Software)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.72.1082 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.42 - Piriform)
CDisplayEx 1.10.29 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.)
Centrum zařízení Windows Mobile (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
ComicRack v0.9.177 (HKLM\...\ComicRack) (Version: v0.9.177 - cYo Soft)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.7.1.0342 - Disc Soft Ltd)
Driver Booster 5 (HKLM-x32\...\Driver Booster_is1) (Version: 5.3.0 - IObit)
FOTOLAB CEWE fotosvet (HKLM-x32\...\FOTOLAB CEWE fotosvet) (Version: 6.2.4 - CEWE Stiftung u Co. KGaA)
Fotolab Fotosvet (HKLM-x32\...\Fotolab Fotosvet) (Version: 6.1.5 - CEWE Stiftung u Co. KGaA)
Foxit PhantomPDF Standard (HKLM-x32\...\{002C7EBB-F986-4C33-AD1A-9A1570F2FBBE}) (Version: 7.2.0.722 - Foxit Software Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.0.1.1049 - Foxit Software Inc.)
GonVisor 2.51.04 (HKLM-x32\...\GonVisor_is1) (Version: - GON)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 66.0.3359.139 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Harry Potter (HKLM-x32\...\{3F50AF3B-8997-4916-0095-99D63DDB785A}) (Version: - )
Harry Potter a ohnivý pohár™ (HKLM-x32\...\{9799BD05-5F89-484C-008E-F50592F53440}) (Version: - )
Harry Potter CZ (HKLM-x32\...\Harry Potter CZ) (Version: - )
Harry Potter II (HKLM-x32\...\{7BF68B83-5057-4D4B-0093-28285EEB9EE3}) (Version: - )
Harry Potter(TM) a vězeň z Azkabanu (HKLM-x32\...\{A4CBCF09-0C7E-40AA-0080-34B8A5CFE7FA}) (Version: - )
HF Designer 5.2 (HKLM-x32\...\HappyFoto-Designer_is1) (Version: - )
iCloud (HKLM\...\{5BD11939-D2C2-4F1B-AAAF-5ECE19A801F7}) (Version: 7.4.0.111 - Apple Inc.)
iMyfone Umate 3.5.0.0 (HKLM-x32\...\{5284F901-9F62-4462-A0E6-2E4373A64454}_is1) (Version: 3.5.0.0 - Shenzhen iMyfone Technology Co., Ltd.)
Intel(R) Network Connections 22.1.104.0 (HKLM\...\PROSetDX) (Version: 22.1.104.0 - Intel)
Intel® Chipset Device Software (HKLM-x32\...\{619e726e-d2b4-4e28-9568-c964fd81ee6c}) (Version: 10.1.1.14 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{C2039790-AFFD-4761-896D-E97CDBC935F1}) (Version: 12.7.4.80 - Apple Inc.)
Java 8 Update 171 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
Johanka z Arku (HKLM-x32\...\{F2AFB780-FF87-4E4B-8097-451152CDD321}_is1) (Version: 1.0 - US - ACTION, s.r.o.)
K-Lite Codec Pack 9.3.0 (Basic) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.3.0 - )
Lenovo Solution Center (HKLM\...\{06913C0C-88EB-42AF-9D94-3E9136CEE9BC}) (Version: 3.6.002.003 - Lenovo)
Malwarebytes verze 3.4.5.2467 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.4.5.2467 - Malwarebytes)
Medvěd Míša - Cesta kolem světa (HKLM-x32\...\Medvěd Míša - Cesta kolem světa) (Version: - )
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.9226.2114 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\OneDriveSetup.exe) (Version: 18.065.0329.0002 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mozilla Firefox 59.0.3 (x64 en-US) (HKLM\...\Mozilla Firefox 59.0.3 (x64 en-US)) (Version: 59.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 61.0a1 - Mozilla)
Music Manager (HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\MusicManager) (Version: - Google, Inc.)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (HKLM-x32\...\{C2FD7DB5-FE30-49B6-8A2F-C5652E053C31}) (Version: 15.4.5722.2 - Microsoft Corporation)
PhoneClean (HKLM-x32\...\PhoneClean) (Version: 4.0.6.0 - iMobie Inc.)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{543F829B-4591-4B2F-AF63-6E6E6AE59EB2}) (Version: 6.4 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{0ECA3BB5-4410-414B-B226-241FF1C12CD0}) (Version: 6.4 - Apple Inc.)
Pokémon Trading Card Game Online (HKLM-x32\...\{81A5C6E9-AF9A-4EF9-B3C4-F9001D59800B}) (Version: 2.25.0 - The Pokémon Company International)
Polda II (HKLM-x32\...\Polda II_is1) (Version: - )
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.5.8.2500 - Jan Fiala)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Raptr (HKLM-x32\...\Raptr) (Version: - )
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31233 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6230 - Realtek Semiconductor Corp.)
Samsung Kies3 (HKLM-x32\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.15072.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.15072.2 - Samsung Electronics Co., Ltd.)
Samsung Link 2.0.0.1603091618 (HKLM\...\8474-7877-9059-0204) (Version: 2.0.0.1603091618 - Samsung Electronics Co.,Ltd)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.55.0 - Samsung Electronics Co., Ltd.)
Seznam Software (HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\SeznamInstall) (Version: - Seznam.cz)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Slovník Verdict Free (a internetový překladač) (HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\Verdict Free) (Version: - )
Smart View (HKLM-x32\...\{1800D8A5-F7B2-4C20-868E-1CF55CBBDF21}) (Version: 1.0.0.0 - Samsung )
SopCast 4.0.0 (HKLM-x32\...\SopCast) (Version: 4.0.0 - www.sopcast.com)
SPCA1628 PC Driver (HKLM-x32\...\{5F1C7F21-AB33-4362-BCEE-6E0FD1EDC6D8}) (Version: 1.2.1.0 - Icatch)
Sweet Home 3D version 4.6 (HKLM\...\Sweet Home 3D_is1) (Version: - eTeks)
Syncios 6.3.3 (HKLM-x32\...\Syncios) (Version: 6.3.3 - Anvsoft)
Telegram Desktop version 1.0.29 (HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.0.29 - Telegram Messenger LLP)
Unity Web Player (HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.1 - VideoLAN)
VobSub 2.23 (HKLM-x32\...\VobSub) (Version: 2.23 - Gabest)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2026504303-3394863346-1200617100-1001_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\Dadejs\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2026504303-3394863346-1200617100-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Dadejs\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2026504303-3394863346-1200617100-1001_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files (x86)\PSPad editor\pspshellx64.dll ()
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-04-08] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-04-08] (AVAST Software)
ContextMenuHandlers1: [AIMP] -> [CC]{1F77B17B-F531-44DB-ACA4-76ABB5010A28} => -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-04-08] (AVAST Software)
ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2015-07-10] (Foxit Software Inc.)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-12-11] (Foxit Software Inc.)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2018-03-18] (Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-02-16] (Disc Soft Ltd)
ContextMenuHandlers2: [ShellPlusContextMenu] -> {1C311AAA-D8B1-4A0A-BEE5-2387FEC583DA} => -> No File
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-04-08] (AVAST Software)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-02-16] (Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-27] (Malwarebytes)
ContextMenuHandlers3: [ShellPlusContextMenu] -> {1C311AAA-D8B1-4A0A-BEE5-2387FEC583DA} => -> No File
ContextMenuHandlers4: [AIMP] -> [CC]{1F77B17B-F531-44DB-ACA4-76ABB5010A28} => -> No File
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-04-08] (AVAST Software)
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-12-11] (Foxit Software Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-27] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-2026504303-3394863346-1200617100-1001: [EditWithPSPad] -> [CC]{ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => -> No File
ContextMenuHandlers1_S-1-5-21-2026504303-3394863346-1200617100-1001: [SysMenuExt] -> {020B1D4B-5738-4C77-9E19-4F173DD9B486} => -> No File

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {003ADBFA-CEA7-41B2-8BC9-F7808A93AC0A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-04-23] (Microsoft Corporation)
Task: {014B00E9-0FC2-4C75-BEB8-43876596CEC3} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2018-01-08] (Apple Inc.)
Task: {07744BA4-96B1-4F11-8DCE-5FD63803FAFE} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2017-06-09] (Lenovo)
Task: {0A86DDF4-6781-4197-AC2B-83D4E0DCD137} - System32\Tasks\{E514DE3A-4FCA-467E-941A-18C7F5CB3A41} => C:\windows\system32\pcalua.exe -a C:\Users\Dadejs\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=obw
Task: {0B0B287C-CEF0-40F9-8575-F88C2C452C6F} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {0B582171-EE55-4A7F-929C-C26928E86CAF} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {0C4FFFA7-26C8-47BD-ACF9-3D34C530BA61} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-04-30] (Microsoft Corporation)
Task: {0C57EBB9-7E46-4793-95A7-65F4CA0863BE} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {13CB64C3-5AAB-4364-B971-DAD06345D588} - System32\Tasks\{CA57B439-FA24-4A52-BBD1-CE08A387C814} => C:\windows\system32\pcalua.exe -a D:\SETUP.EXE -d D:\
Task: {142B395D-802E-4F95-9426-515412713349} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {1956A466-0499-4615-82AB-273C27CDE05D} - System32\Tasks\{44B4B797-88CB-44D2-BBD7-94D8305AD30D} => C:\GOG Games\Fallout\falloutw.exe
Task: {1B52CAA3-D13E-4A67-B865-4725666DF5C2} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1C33348C-12FE-48B4-86C6-A126412224FB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2026504303-3394863346-1200617100-1001Core => C:\Users\Dadejs\AppData\Local\Google\Update\GoogleUpdate.exe [2016-11-27] (Google Inc.)
Task: {1FF983FD-4654-4E88-80D3-B6B38D5D935A} - System32\Tasks\{878F13FE-1C23-497E-BAAC-B6E844415B90} => C:\windows\system32\pcalua.exe -a C:\Users\Dadejs\Documents\Downloads\Codecs6030_allin1.exe -d C:\Users\Dadejs\Documents\Downloads
Task: {225BF448-381A-4796-952B-8C4248490586} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {28C779DC-016D-43AF-8D67-27474A3D5179} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {2A0EE3BC-C873-4413-9161-31F1CCDF26EC} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {33DCD19E-2FB8-4EBD-9A2D-68C3E4296CAF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-04-12] (Piriform Ltd)
Task: {3501C161-F26C-4811-A1E6-409C4A28FB31} - System32\Tasks\{11B437CA-ACAD-45E4-9F6F-E4D67542F2CC} => C:\windows\system32\pcalua.exe -a C:\Users\Dadejs\Documents\Downloads\utorrent-lista-centrumcz.exe -d C:\Users\Dadejs\Documents\Downloads
Task: {3502E266-2B0B-4E9C-A9EE-8C490266F114} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {40C0FA96-0B2E-429A-8774-86F1C1D170B2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {413EAA54-4DF0-46AA-8490-5DCF951A938D} - System32\Tasks\Avast TUNEUP Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe [2018-03-11] (AVAST Software)
Task: {45AF0794-2F66-4D93-B5CD-66E5C2C40E18} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {45E4EFF4-5F96-4734-803F-B04BFFFCED1F} - System32\Tasks\{67A27620-1D66-447C-89D1-7831641590CA} => C:\windows\system32\pcalua.exe -a C:\Users\Dadejs\Documents\Downloads\webcam1051enu.exe -d C:\Users\Dadejs\Documents\Downloads
Task: {4A6D73C3-CA8A-4B9D-A1A7-9296012E00A4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {4C1AF2EE-62A9-4754-880A-863DB5E84141} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {51AE2A5F-DAC4-4447-BC98-B1567A14AEA7} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {5447DC40-E9C3-459D-A08E-ECA330D00247} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {55204A23-35ED-41B0-8FDB-B1AD698D067A} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-04-08] (AVAST Software)
Task: {558CA25D-D156-4FB1-8DCE-1D0C476C16CD} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {59105480-20DA-45BD-8B6E-8756986B452D} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {5CF35368-7346-4D14-99B7-CE2F61FE655F} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-06] (AVAST Software)
Task: {5E5A974C-3BA8-49B9-9E85-436CA06368A2} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2026504303-3394863346-1200617100-1001UA => C:\Users\Dadejs\AppData\Local\Google\Update\GoogleUpdate.exe [2016-11-27] (Google Inc.)
Task: {669A8F7F-0FAA-4BDA-BC66-C16D66170D93} - System32\Tasks\{F01B9E89-8BE5-4E9F-BB54-34A5352BFDBB} => C:\windows\system32\pcalua.exe -a C:\Users\Dadejs\Desktop\tirpatch_europe\Setup.exe -d C:\Users\Dadejs\Desktop\tirpatch_europe
Task: {6756836B-CC24-4A79-BB26-1B2540CB2160} - System32\Tasks\{209B5D2B-6B2B-4514-BFA7-97B6768AC658} => C:\windows\system32\pcalua.exe -a C:\windows\TEMP\avast_ash\IrfanView\iview436_setup.exe -d "C:\Program Files\AVAST Software\Avast" <==== ATTENTION
Task: {6B6E444D-B4DF-4B56-B2B3-87356F18890F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {6C669153-A7D2-46DE-9B66-9423A411CD6B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6FFAC09A-AE78-449A-A8BC-E4D7779B2618} - System32\Tasks\Driver Booster SkipUAC (Dadejs) => C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DriverBooster.exe [2018-03-22] (IObit)
Task: {72737B2B-F034-4CCB-9F97-97E0C2A419C9} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {750A1186-5E17-46C4-8B71-BEEB1885DAF0} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-05-12] (Adobe Systems Incorporated)
Task: {77E7D077-DE5B-4F65-9832-94BB208B03D0} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {78CEE009-1655-46C0-AE54-5A543B5B0160} - System32\Tasks\{4A6B67A3-0270-43C5-9400-9DB166E1309D} => C:\windows\system32\pcalua.exe -a C:\Users\Dadejs\Documents\Downloads\iview438_setup.exe -d C:\Users\Dadejs\Documents\Downloads
Task: {7BB64BC3-3150-4D75-9DAD-4B1AE2D293E6} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_171_Plugin.exe [2018-05-12] (Adobe Systems Incorporated)
Task: {7CF077A1-BFF1-4030-B7D7-A8811F0FCBF3} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {80186BE4-ECC0-4BB8-AC94-BCE8D359C22B} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {82D96A23-59EB-4B6C-8F52-9994658C5C09} - System32\Tasks\{7F87A7A7-F6C9-441A-8FE1-F1887F4F4BD7} => C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\RegiStax 6\Uninstal.exe"
Task: {890D9811-CE91-4B5C-9E91-136535365887} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {8D145074-E58C-4C36-A69C-10B2FF03EC04} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {927CDE65-D7D6-4FD2-BAC8-9DEBCA3A78FA} - System32\Tasks\{72C7426E-7FBD-429F-84D3-96BAA652A4AE} => C:\windows\system32\pcalua.exe -a D:\setup.exe -d D:\
Task: {9483162D-1BD5-45EA-B080-CA6B125CC8B5} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {97743A4B-CEA5-4B6E-B364-155A2EBEE1A0} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {A3A8096D-33A0-4E98-8422-A22ECC56AEAD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {A89EB1F8-91FA-46E0-8B68-8E4F193C82F1} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-04-30] (Microsoft Corporation)
Task: {B1EDAB93-1145-47DE-8155-870E418DA35B} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B6AF02A7-D5E3-41D2-B353-8D0E16BBD60C} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [2017-06-09] ()
Task: {BCED8C14-9555-4556-886C-64D85463E56D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {BCF1E733-EB67-44C3-B855-AACE47BCD6DF} - System32\Tasks\avastBCLRestartS-1-5-21-2026504303-3394863346-1200617100-1001 => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Task: {BDEB5DE9-7BE6-47BA-B4DC-9DF0880446AE} - System32\Tasks\{EF1013A5-5994-4F38-87F2-F57E46B126FE} => C:\windows\system32\pcalua.exe -a C:\Users\Dadejs\Downloads\irfanview_lang_czech.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {BE2A0742-9AC2-4716-BBF2-D09EA9D30166} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {BF1A4147-2086-4C5A-913A-9DFB52BF6E8D} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-04-30] (Microsoft Corporation)
Task: {C2C378A0-1A9E-4FE5-841D-DA99DDC05962} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {C6D0E85B-9965-42F7-A983-4701E4AF5CBA} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2018-05-12] (Microsoft Corporation)
Task: {CF612478-EF47-43FD-9726-5ADCFDC0EC85} - System32\Tasks\{27D3FB9A-BF9A-4C67-B71D-8810AA7305DB} => C:\windows\system32\pcalua.exe -a "C:\Users\Dadejs\Local Settings\Application Data\Bundled software uninstaller\biclient.exe" -c /initurl hxxp://bi.bisrv.com/:affid:/:sid:/:uid:? /affid uninstall /id uninstall /name "Bundled software uninstaller"
Task: {CFF4FFCD-96B8-4F9E-9AE8-7A46580BAEE0} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DA27B917-0C6B-4B5C-94FA-739B7A76DED0} - System32\Tasks\{BB6158F1-4053-4F3D-978B-40FC71283A3C} => C:\GOG Games\Fallout\falloutw.exe
Task: {DBD04159-3E48-44F2-A44E-3A95CA741E59} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E61E7209-A11F-4332-8AE6-075DD77E7EFB} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {E93A9508-4365-49FA-BA87-3450F78805D3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-04-13] (AVAST Software)
Task: {EB7ED247-3563-4777-AA6D-045AEB7F2290} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EB90F477-CA03-43BC-A3AD-ACA9A5B7BCBB} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {ED15759A-A1B8-41E2-ACBE-46F44DBF8BD5} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {ED7C3FF5-BE8F-4C66-ADE1-D5D7FF7C925E} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-06] (AVAST Software)
Task: {F3DD45CF-A257-4449-92C3-9F4268E399CE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-04-30] (Microsoft Corporation)
Task: {F50A4801-DE53-415A-A133-9C38CF9F7FD2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-04-30] (Microsoft Corporation)
Task: {F5151A6A-AA65-4548-A0C2-1031CAEDC8C8} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-04-12] (Piriform Ltd)
Task: {F6150514-5B22-4508-B23C-4C18B3D352A3} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2017-06-09] (Lenovo)
Task: {F9C33DB0-D125-437D-9DA1-C5AEF6F6053A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-04-23] (Microsoft Corporation)
Task: {FB8D9EFE-AF76-4822-A133-F4E0A320B6EA} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {FF6E8F36-97D2-4654-BED3-D0974B598F98} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\Dadejs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Hudba Google Play.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi

==================== Loaded Modules (Whitelisted) ==============

2017-09-29 15:41 - 2017-09-29 15:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-11-30 19:54 - 2017-11-30 19:54 - 000088888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2018-03-16 15:19 - 2018-03-16 15:19 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2018-04-05 21:24 - 2018-03-12 15:09 - 002300192 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2011-08-26 04:53 - 2011-03-16 05:47 - 000032768 _____ () C:\Windows\jmesoft\Service.exe
2015-11-08 18:14 - 2016-03-09 17:18 - 000025088 _____ () C:\Program Files\SAMSUNG\Samsung Link\JniSys.dll
2015-11-08 18:14 - 2016-03-09 17:18 - 002513920 _____ () C:\Program Files\SAMSUNG\Samsung Link\scone_proxy.dll
2015-11-08 18:14 - 2016-03-09 17:18 - 002436096 _____ () C:\Program Files\SAMSUNG\Samsung Link\scone_stub.dll
2013-12-21 12:25 - 2013-12-21 12:25 - 000036864 _____ () C:\Program Files\SAMSUNG\AllShare Framework DMS\1.3.23\64bit\JNIInterface.dll
2013-12-21 12:26 - 2013-12-21 12:26 - 000144384 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\ASFAPI.dll
2013-12-21 12:27 - 2013-12-21 12:27 - 000018944 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\MediaDB_Manager.dll
2013-10-22 10:52 - 2013-10-22 10:52 - 000030720 _____ () C:\WINDOWS\SYSTEM32\MediaDB64.dll
2013-10-22 10:52 - 2013-10-22 10:52 - 000908800 _____ () C:\WINDOWS\SYSTEM32\ContentDirectoryPresenter64.dll
2013-12-21 12:27 - 2013-12-21 12:27 - 000521728 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\DMS_Manager.dll
2013-07-23 20:19 - 2013-07-23 20:19 - 000049152 _____ () C:\WINDOWS\SYSTEM32\boost_date_time-vc90-mt-1_47.dll
2013-07-23 20:19 - 2013-07-23 20:19 - 000058880 _____ () C:\WINDOWS\SYSTEM32\boost_thread-vc90-mt-1_47.dll
2013-07-23 20:19 - 2013-07-23 20:19 - 000299520 _____ () C:\WINDOWS\SYSTEM32\boost_serialization-vc90-mt-1_47.dll
2013-07-23 20:19 - 2013-07-23 20:19 - 000016896 _____ () C:\WINDOWS\SYSTEM32\boost_system-vc90-mt-1_47.dll
2018-01-25 09:56 - 2018-01-25 09:56 - 000669696 ____N () C:\Windows\Temp\sqlite-3.7.151-amd64-sqlitejdbc.dll
2018-03-14 20:31 - 2018-02-22 02:26 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2018-03-14 20:32 - 2018-02-22 02:21 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2011-10-07 11:39 - 2011-10-07 11:39 - 001304856 _____ () C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll
2015-11-08 18:14 - 2016-03-09 17:18 - 000049664 _____ () C:\Program Files\SAMSUNG\Samsung Link\JniIO.dll
2011-08-26 04:53 - 2011-03-21 23:12 - 000020480 _____ () C:\Windows\jmesoft\JME_LOAD.exe
2018-04-25 19:20 - 2018-04-25 19:21 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1813.286.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-04-25 19:20 - 2018-04-25 19:21 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1813.286.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-04-25 19:20 - 2018-04-25 19:21 - 022320128 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1813.286.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-04-25 19:20 - 2018-04-25 19:21 - 002603008 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1813.286.0_x64__kzf8qxf38zg5c\skypert.dll
2018-04-25 19:20 - 2018-04-25 19:20 - 000657408 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1813.286.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-04-12 22:15 - 2018-04-12 22:15 - 000083784 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2018-05-12 19:26 - 2018-05-12 19:27 - 000062464 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11804.1001.8.0_x64__8wekyb3d8bbwe\WinStoreTasksWrapper.dll
2018-05-12 19:26 - 2018-05-12 19:27 - 000084992 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11804.1001.8.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2013-12-11 17:46 - 2013-12-11 17:46 - 001114624 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DMSManager.dll
2013-07-23 20:18 - 2013-07-23 20:18 - 000227840 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_serialization-vc90-mt-1_47.dll
2013-10-24 17:53 - 2013-10-24 17:53 - 000107008 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMCDP.dll
2013-10-24 17:53 - 2013-10-24 17:53 - 000032768 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\Autobackup.dll
2013-04-19 17:38 - 2013-04-19 17:38 - 000055808 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RosettaAllShare.dll
2013-07-23 20:18 - 2013-07-23 20:18 - 000038912 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_date_time-vc90-mt-1_47.dll
2013-07-23 20:18 - 2013-07-23 20:18 - 000046592 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_thread-vc90-mt-1_47.dll
2013-07-23 20:18 - 2013-07-23 20:18 - 000012800 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_system-vc90-mt-1_47.dll
2013-12-11 17:46 - 2013-12-11 17:46 - 000102400 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\FolderCDP.dll
2013-10-22 10:48 - 2013-10-22 10:48 - 000707072 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ContentDirectoryPresenter.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 000520234 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\sqlite3.dll
2013-12-11 17:46 - 2013-12-11 17:46 - 000077312 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MetadataFramework.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 000450560 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MoodExtractor.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 000028672 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AutoChaptering.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 005717504 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMImgExtractor.dll
2013-10-25 20:49 - 2013-10-25 20:49 - 000028160 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AudioExtractor.dll
2013-12-11 17:45 - 2013-12-11 17:45 - 000017920 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoExtractor.dll
2013-10-25 20:53 - 2013-10-25 20:53 - 000012288 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageExtractor.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 000013824 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\TextExtractor.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 000012288 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoThumb.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 000064000 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ID3Driver.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 000023040 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RichInfoDriver.dll
2013-10-25 20:53 - 2013-10-25 20:53 - 000117248 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ThumbnailMaker.dll
2013-12-11 17:45 - 2013-12-11 17:45 - 000134144 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoMetadataDriver.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 000024064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\SECMetaDriver.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 004671488 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avcodec-52.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 000686080 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avformat-52.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 000152064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\swscale-0.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 000366592 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\tag.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 000289792 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libThumbnail.dll
2013-10-25 20:53 - 2013-10-25 20:53 - 001033728 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageMagickWrapper.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 000290816 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libKeyFrame.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 000147456 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexpat.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 000024064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\photoDriver.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 000070656 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avutil-50.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 000399826 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexif-12.dll.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 000044032 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\us.dll
2018-03-16 15:20 - 2018-03-16 15:20 - 001042232 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2017-11-30 19:55 - 2017-11-30 19:55 - 000076088 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2017-12-26 12:19 - 2016-09-12 15:53 - 048936448 _____ () C:\Program Files (x86)\AVAST Software\Avast Cleanup\libcef.dll
2011-08-26 04:53 - 2007-12-31 19:27 - 000007168 _____ () C:\Windows\jmesoft\VistaVolume.dll
2011-08-26 04:53 - 2009-07-16 18:20 - 000032768 _____ () C:\Windows\jmesoft\Keyhook.dll
2018-04-08 22:14 - 2018-04-08 22:14 - 000282840 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2018-03-06 21:51 - 2018-03-06 21:51 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-04-08 22:13 - 2018-04-08 22:13 - 000349912 _____ () C:\Program Files\AVAST Software\Avast\streamback_avast.dll
2018-04-08 22:14 - 2018-04-08 22:14 - 000295640 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-04-08 22:12 - 2018-04-08 22:12 - 000281816 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2018-03-16 15:19 - 2018-03-16 15:19 - 000189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\mojebanka.cz -> hxxps://etrading.mojebanka.cz

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2016-11-19 14:03 - 000000035 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\Control Panel\Desktop\\Wallpaper -> c:\users\dadejs\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\{18526843-177e-4a81-85cd-a3833314cb3a}.jpg
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Dadejs^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EvernoteClipper.lnk => C:\windows\pss\EvernoteClipper.lnk.Startup
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: hpqSRMon => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Windows Mobile Device Center => %windir%\WindowsMobile\wmdc.exe
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "4-Day Forecast"
HKLM\...\StartupApproved\Run32: => "Raptr"
HKLM\...\StartupApproved\Run32: => "SilentCleanService"
HKLM\...\StartupApproved\Run32: => "Syncios device service"
HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\StartupApproved\Run: => "Xvid"
HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\StartupApproved\Run: => "ApplePhotoStreams"
HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\StartupApproved\Run: => "Google Update"
HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\StartupApproved\Run: => "MusicManager"
HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\StartupApproved\Run: => "cz.seznam.software.szndesktop"
HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{94B63C3D-56FF-46D2-B23F-E6758BD7CF54}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [{2CC54076-0DF7-4D4A-8770-75317D98D15C}] => (Block) LPort=445
FirewallRules: [{5B739F43-D640-4782-A531-A9A0E87AA578}] => (Block) LPort=445
FirewallRules: [{3629AF0D-208E-4B4F-8D6A-F3DBB93316AA}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
FirewallRules: [{9AEDD161-6021-4600-80B3-3A6DE1736ED0}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
FirewallRules: [{CC1DB046-C693-4323-8027-6E2D28884A99}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
FirewallRules: [{40A93ED6-CD66-4D2E-BCF9-86F3AAB82875}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
FirewallRules: [{2956244A-89FB-4613-B725-F4163AD1C84B}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
FirewallRules: [{B918DA71-8E00-4B8C-B442-0BFD9721B454}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
FirewallRules: [{F7F46F98-BA98-46B1-A9D0-48C5E2FA7D76}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
FirewallRules: [{3B05F1C6-89E0-496C-ADE0-965419F64806}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
FirewallRules: [{747144FD-8137-4300-A6C4-58C8C38C24D9}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [UDP Query User{1EBB9612-FAFC-42AE-AE8D-DB0047E71013}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{992DCC29-FEA4-4B8B-9C2C-230771E0885F}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{47C2160D-29FB-4AE8-B339-D3A7FA0AFB6F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8BE277F1-0A3E-44A7-AF37-8E6BD50B5A02}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A49025E5-2EC0-4FBD-92B9-ADE76046BAE0}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{B227E27F-E712-4381-BEEB-A051ED6DA06B}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [UDP Query User{2D946EDB-54AD-4107-9068-843DE618CB6B}C:\program files\comicrack\comicrack.exe] => (Allow) C:\program files\comicrack\comicrack.exe
FirewallRules: [TCP Query User{9AAE79E7-D990-4A1D-8A98-BA41F9C12632}C:\program files\comicrack\comicrack.exe] => (Allow) C:\program files\comicrack\comicrack.exe
FirewallRules: [UDP Query User{893392A2-BEC2-4CEB-A889-54DAFDD2C25D}C:\program files\comicrack\comicrack.exe] => (Allow) C:\program files\comicrack\comicrack.exe
FirewallRules: [TCP Query User{EAD0ADCD-D25E-487A-9A6C-8E61DF8BE7BD}C:\program files\comicrack\comicrack.exe] => (Allow) C:\program files\comicrack\comicrack.exe
FirewallRules: [UDP Query User{1E9F609E-8763-48AE-9F21-29738DF399FE}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [TCP Query User{070DAD3D-4907-47A5-BB9D-643509015AF1}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [{5EA36752-3AFD-48A7-BE0D-DEE0033F7086}] => (Allow) C:\Windows\SysWOW64\msiexec.exe
FirewallRules: [{D91041FF-7A22-4BB5-8791-28A9ADB0EDBA}] => (Allow) C:\Windows\SysWOW64\msiexec.exe
FirewallRules: [UDP Query User{CAEA970C-52C2-4546-86B9-C32B07D48FCF}C:\program files (x86)\java\jre7\launch4j-tmp\stanza.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\stanza.exe
FirewallRules: [TCP Query User{E45ACE82-4459-426E-AB4F-54B7515A6B32}C:\program files (x86)\java\jre7\launch4j-tmp\stanza.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\stanza.exe
FirewallRules: [{C214A1EB-E328-400B-A70D-9EABF761517B}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{7847847B-B279-4FF3-8AB3-45521E941F95}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{446C6228-9A45-4655-8D3A-833AC0947E0A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{3DE64D11-2DA3-444D-AE0C-CCB90FF9A27B}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{A8958102-15AA-49A6-AD7E-772E590EEF65}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{973E749D-1036-406E-A8C9-825B78EE3483}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{3726EC98-6D8B-4D0F-96BA-6EE534372A60}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpse.exe
FirewallRules: [{F6F22B3F-29D3-4864-9338-610C0E718063}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{9BD6D0A8-E84A-4E02-90BF-7BAC3A055F66}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{07C9ACF5-B835-48CA-BAB9-77716752CA12}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpsapp.exe
FirewallRules: [{8AAB3435-963F-4172-89C4-75FF70B02052}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsudi.exe
FirewallRules: [{0F33D7ED-BD50-4A2D-9B70-523FC8C59E57}] => (Allow) C:\Program Files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe
FirewallRules: [{66C91513-FDBF-4876-8A76-2062FE1A1138}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{E4954D3E-BD8A-44E7-8655-A2F12D135C04}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqnrs08.exe
FirewallRules: [{5F05BFD0-CAA2-4304-841B-A0316A822177}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{4E05BB09-D748-4334-8178-CFAF9D354A71}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{9DDD580B-F256-4D8C-8817-2128C4C3560A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{5C5BB4D4-D015-4483-B092-B09461D586FD}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{8FDF9938-8E1E-4811-89F9-45A520E52F4C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{F61C3639-889E-4AC2-A408-B1F7F94593DD}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{3A936732-EED7-4258-873A-AE195DCB1D59}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{1A7CA04F-F1D5-465B-A6C9-FBF76E9D9441}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{A0C8E11A-D2D7-4ED5-9315-096E0B8E8B1F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{4E0732F2-9A36-4FE5-9CA7-72313465E265}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [UDP Query User{FC24255B-642E-4FC3-842B-C90CE1BAF813}C:\program files (x86)\sopcast\adv\sopadver.exe] => (Allow) C:\program files (x86)\sopcast\adv\sopadver.exe
FirewallRules: [TCP Query User{87B9BAA4-4DA8-45DF-B341-0884DEC83DBF}C:\program files (x86)\sopcast\adv\sopadver.exe] => (Allow) C:\program files (x86)\sopcast\adv\sopadver.exe
FirewallRules: [UDP Query User{053C7255-5DAC-4FBE-A199-91C7A233AB18}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe
FirewallRules: [TCP Query User{CE3C5E2D-77A4-4E61-867F-19287B707F33}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe
FirewallRules: [{2BDF116A-7D5D-408F-BA4A-5A11EBF268B2}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{4C311ABF-CE7E-48C2-9D40-91D3081F5BAB}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{22697577-E94E-479A-AFCD-5C2089688468}] => (Allow) LPort=1900
FirewallRules: [{185E6DC2-FD37-428E-AF76-4896D7051857}] => (Allow) LPort=2869
FirewallRules: [{1858720A-EB2E-4E5F-8938-F23E09FD5FE9}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{0B10F5F6-7660-4097-BB85-505DD2F7EECD}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{FF455534-DE6F-4D1C-87B7-D474C27188B9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{25A7F5F6-A463-45CE-806B-108C65CF523D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{0B148664-7CFA-4CE0-95A2-7E36F89C9CFD}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{6BD42562-D389-4E31-A025-16CD8390091C}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{9E39E3D9-464E-4500-A20D-BB933683DB8C}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{D26A0F3D-750F-43F0-A8DE-A044E9F8AE6C}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{D8C76E42-98D3-4541-8700-3FBC9BBCE65C}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{17BA9807-3142-4EB2-A2FA-004F38E8EE48}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1CA9DF1B-A411-48EF-943B-7A9ED3AFF0DD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4FDD9710-C777-4113-8C63-0AC1465448F0}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
FirewallRules: [{9D29EBAB-2BAC-41B1-B9EE-712734299C69}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
FirewallRules: [{5A687A0E-0325-46C5-A28B-A0EA6FB241A5}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
FirewallRules: [{20630BCB-D823-44CE-8341-83B86FC48B0C}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
FirewallRules: [{2D3DEAE6-E559-4CCC-B89D-7E0C3808DE1B}] => (Allow) C:\Program Files\SAMSUNG\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
FirewallRules: [{5159B634-0FE8-442C-B401-236483DBBFBF}] => (Allow) C:\Program Files\SAMSUNG\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
FirewallRules: [{16D33B58-0AC0-463A-9C53-79C4F0A8A3F3}] => (Allow) LPort=8743
FirewallRules: [{49D693E6-7F9D-4B15-82F0-280B1AAF9F64}] => (Allow) LPort=8643
FirewallRules: [{3E97FBAB-354B-4055-8E3B-48ED7BEAA8D0}] => (Allow) LPort=7676
FirewallRules: [{448B31A5-832A-4384-8E74-84548840D218}] => (Allow) LPort=7679
FirewallRules: [{AFA4C3DD-03DD-419A-A50A-83E8E4432AE8}] => (Allow) LPort=24234
FirewallRules: [{CB8925F3-ED06-4095-9671-E61D83E151D9}] => (Allow) LPort=7900
FirewallRules: [{3E71F29D-759D-48EE-BDD6-CEF95840554B}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{796E47AC-D54D-4044-B0D0-BF1F25285ACC}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe
FirewallRules: [UDP Query User{9C08FE44-7DDB-4FE2-B4D8-66ED32EF20AC}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe
FirewallRules: [TCP Query User{E54C8FAC-F19C-4C8F-AFEC-78A787AF427A}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe
FirewallRules: [UDP Query User{5E37C9FE-8625-4891-AD4A-5A9E6344D680}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe
FirewallRules: [{605DFFBA-BBF8-444E-ACE3-AB99EA969009}] => (Allow) C:\Program Files (x86)\Anvsoft\Syncios\pdt_syncios.exe
FirewallRules: [{E5D46203-855E-4FB1-BD8A-BA35B014440A}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
FirewallRules: [{08D19C88-3535-4C4B-A9AB-05D9053BC729}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
FirewallRules: [{5F811C56-827D-4940-9A18-9C97ADBAD18C}] => (Allow) C:\Program Files (x86)\Anvsoft\Syncios\pdt_syncios.exe
FirewallRules: [{C4C299CA-6C09-428E-8C8A-573245F9824A}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DriverBooster.exe
FirewallRules: [{1830C10C-ADD6-4B2A-A7F6-4DB54D1A4521}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DriverBooster.exe
FirewallRules: [{558CC9C2-9C0C-4B15-A8B8-9747AE1446F0}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DBDownloader.exe
FirewallRules: [{50B49622-A85D-4EE0-ADCA-858CDA145C4D}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DBDownloader.exe
FirewallRules: [{C29166A3-4187-42A6-9939-6DC31906BE43}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\AutoUpdate.exe
FirewallRules: [{D32074E5-6211-414C-81DC-A0B729AB30E0}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\AutoUpdate.exe
FirewallRules: [{50D8C95B-6EC1-40CF-ACB9-1DA866E782D5}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{AF24D098-26B6-4ADB-99BE-9C1A84EF7006}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{3DF89353-2003-4195-A870-CBDC59BEB778}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{E46EAA5A-4834-47C1-83D1-FC623F614FC8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{697FF514-E886-4DB8-88B4-9AAA104A48E6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{10ECC153-9881-4320-86AE-D969839231FA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{02FD6AA6-0E36-4FC3-B6F9-3BD8E8C46B5C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

27-04-2018 22:08:49 Odebráno: Microsoft Office Professional Edition 2003
12-05-2018 19:35:56 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/13/2018 01:13:51 PM) (Source: ESENT) (EventID: 489) (User: )
Description: CCleaner64 (984,G,0) Pokus o otevření souboru C:\Users\Dadejs\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení selhal. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru selže a dojde k chybě -1032 (0xfffffbf8).

Error: (05/13/2018 12:31:01 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (05/13/2018 12:14:20 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (05/13/2018 12:03:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_WpnUserService, verze: 10.0.16299.15, časové razítko: 0x9c786b9a
Název chybujícího modulu: NotificationController.dll, verze: 10.0.16299.15, časové razítko: 0x24cfcd08
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000036f4f
ID chybujícího procesu: 0xf60
Čas spuštění chybující aplikace: 0x01d3ea7a0d98b6c9
Cesta k chybující aplikaci: c:\windows\system32\svchost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\NotificationController.dll
ID zprávy: 08db1d4d-e5a5-4210-bfd6-f8b3d95d0733
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (05/13/2018 11:31:00 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (05/13/2018 10:31:02 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (05/13/2018 09:31:00 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (05/13/2018 08:31:00 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.


System errors:
=============
Error: (05/13/2018 12:12:16 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Správce stažených map přestala během spouštění reagovat.

Error: (05/13/2018 12:10:10 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Služba platformy připojených zařízení přestala během spouštění reagovat.

Error: (05/13/2018 12:09:55 PM) (Source: DCOM) (EventID: 10010) (User: DADEJS-PC)
Description: Server {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} se v daném časovém limitu neregistroval u služby DCOM.

Error: (05/13/2018 12:08:21 PM) (Source: DCOM) (EventID: 10010) (User: DADEJS-PC)
Description: Server {21F282D1-A881-49E1-9A3A-26E44E39B86C} se v daném časovém limitu neregistroval u služby DCOM.

Error: (05/13/2018 12:06:09 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/13/2018 12:06:09 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/13/2018 12:06:09 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/13/2018 12:06:09 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


Windows Defender:
===================================
Date: 2018-04-09 20:49:35.541
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Windows Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Systém kontroly sítě
Kód chyby: 0x80004004
Popis chyby: Operace přerušena
Důvod: Antimalwarová ochrana přestala z neznámých důvodů fungovat. V některých případech lze tento problém vyřešit restartováním služby.

Date: 2018-04-09 20:49:34.758
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Windows Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Systém kontroly sítě
Kód chyby: 0x80004004
Popis chyby: Operace přerušena
Důvod: V systému chybí aktualizace potřebné ke spuštění systému kontroly sítě. Nainstalujte potřebné aktualizace a restartujte zařízení.

Date: 2018-03-08 21:38:27.736
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.263.332.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.14600.4
Kód chyby: 0x80240016
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2018-03-03 16:27:55.268
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu:
Zdroj aktualizace: Uživatel
Typ podpisu:
Typ aktualizace:
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:
Kód chyby: 0x80070652
Popis chyby :Momentálně je spuštěna jiná instalace. Před spuštěním nové instalace nejdříve dokončete spuštěnou instalaci.

Date: 2018-01-21 17:09:57.552
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu:
Zdroj aktualizace: Uživatel
Typ podpisu:
Typ aktualizace:
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:
Kód chyby: 0x80070652
Popis chyby :Momentálně je spuštěna jiná instalace. Před spuštěním nové instalace nejdříve dokončete spuštěnou instalaci.

CodeIntegrity:
===================================

Date: 2018-05-13 13:04:06.380
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-05-13 13:04:06.378
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-05-13 12:56:49.667
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-05-13 12:56:49.662
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-05-13 12:54:40.447
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-05-13 12:54:40.445
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-05-13 12:41:05.631
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-05-13 12:41:05.630
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-2120 CPU @ 3.30GHz
Percentage of memory in use: 48%
Total physical RAM: 4078.38 MB
Available physical RAM: 2120.12 MB
Total Virtual: 8174.38 MB
Available Virtual: 5896.13 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:440.15 GB) (Free:151.85 GB) NTFS

\\?\Volume{6266a7ac-cf8d-11e0-82c4-806e6f6e6963}\ (SYSTEM RESERVED) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{0b2de10c-0000-0000-0000-f00f6e000000}\ () (Fixed) (Total:0.44 GB) (Free:0.05 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 0B2DE10C)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=440.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
Partition 4: (Not Active) - (Size=25.1 GB) - (Type=12)

==================== End of Addition.txt ============================

Re: Pomalé PC

Napsal: 13 kvě 2018 13:10
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
ContextMenuHandlers1: [AIMP] -> [CC]{1F77B17B-F531-44DB-ACA4-76ABB5010A28} => -> No File
ContextMenuHandlers2: [ShellPlusContextMenu] -> {1C311AAA-D8B1-4A0A-BEE5-2387FEC583DA} => -> No File
ContextMenuHandlers3: [ShellPlusContextMenu] -> {1C311AAA-D8B1-4A0A-BEE5-2387FEC583DA} => -> No File
ContextMenuHandlers4: [AIMP] -> [CC]{1F77B17B-F531-44DB-ACA4-76ABB5010A28} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers1_S-1-5-21-2026504303-3394863346-1200617100-1001: [EditWithPSPad] -> [CC]{ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => -> No File
ContextMenuHandlers1_S-1-5-21-2026504303-3394863346-1200617100-1001: [SysMenuExt] -> {020B1D4B-5738-4C77-9E19-4F173DD9B486} => -> No File
Task: {0B582171-EE55-4A7F-929C-C26928E86CAF} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {142B395D-802E-4F95-9426-515412713349} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {225BF448-381A-4796-952B-8C4248490586} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {3501C161-F26C-4811-A1E6-409C4A28FB31} - System32\Tasks\{11B437CA-ACAD-45E4-9F6F-E4D67542F2CC} => C:\windows\system32\pcalua.exe -a C:\Users\Dadejs\Documents\Downloads\utorrent-lista-centrumcz.exe -d C:\Users\Dadejs\Documents\Downloads
Task: {45AF0794-2F66-4D93-B5CD-66E5C2C40E18} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {45E4EFF4-5F96-4734-803F-B04BFFFCED1F} - System32\Tasks\{67A27620-1D66-447C-89D1-7831641590CA} => C:\windows\system32\pcalua.exe -a C:\Users\Dadejs\Documents\Downloads\webcam1051enu.exe -d C:\Users\Dadejs\Documents\Downloads
Task: {4A6D73C3-CA8A-4B9D-A1A7-9296012E00A4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {59105480-20DA-45BD-8B6E-8756986B452D} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {669A8F7F-0FAA-4BDA-BC66-C16D66170D93} - System32\Tasks\{F01B9E89-8BE5-4E9F-BB54-34A5352BFDBB} => C:\windows\system32\pcalua.exe -a C:\Users\Dadejs\Desktop\tirpatch_europe\Setup.exe -d C:\Users\Dadejs\Desktop\tirpatch_europe
Task: {6756836B-CC24-4A79-BB26-1B2540CB2160} - System32\Tasks\{209B5D2B-6B2B-4514-BFA7-97B6768AC658} => C:\windows\system32\pcalua.exe -a C:\windows\TEMP\avast_ash\IrfanView\iview436_setup.exe -d "C:\Program Files\AVAST Software\Avast" <==== ATTENTION
Task: {72737B2B-F034-4CCB-9F97-97E0C2A419C9} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {890D9811-CE91-4B5C-9E91-136535365887} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {A3A8096D-33A0-4E98-8422-A22ECC56AEAD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {BCED8C14-9555-4556-886C-64D85463E56D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {BDEB5DE9-7BE6-47BA-B4DC-9DF0880446AE} - System32\Tasks\{EF1013A5-5994-4F38-87F2-F57E46B126FE} => C:\windows\system32\pcalua.exe -a C:\Users\Dadejs\Downloads\irfanview_lang_czech.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {FB8D9EFE-AF76-4822-A133-F4E0A320B6EA} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
C:\Program Files\Bonjour
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
C:\Users\Dadejs\AppData\Local\{2B6D7FCC-0303-4BFE-B8F6-6E6B1696D5B3}

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Pomalé PC

Napsal: 13 kvě 2018 16:23
od Dadejs
Toť log:
Fix result of Farbar Recovery Scan Tool (x64) Version: 12.05.2018
Ran by Dadejs (13-05-2018 17:14:13) Run:2
Running from C:\Users\Dadejs\Desktop
Loaded Profiles: Dadejs (Available Profiles: Dadejs & DefaultAppPool)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ContextMenuHandlers1: [AIMP] -> [CC]{1F77B17B-F531-44DB-ACA4-76ABB5010A28} => -> No File
ContextMenuHandlers2: [ShellPlusContextMenu] -> {1C311AAA-D8B1-4A0A-BEE5-2387FEC583DA} => -> No File
ContextMenuHandlers3: [ShellPlusContextMenu] -> {1C311AAA-D8B1-4A0A-BEE5-2387FEC583DA} => -> No File
ContextMenuHandlers4: [AIMP] -> [CC]{1F77B17B-F531-44DB-ACA4-76ABB5010A28} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers1_S-1-5-21-2026504303-3394863346-1200617100-1001: [EditWithPSPad] -> [CC]{ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => -> No File
ContextMenuHandlers1_S-1-5-21-2026504303-3394863346-1200617100-1001: [SysMenuExt] -> {020B1D4B-5738-4C77-9E19-4F173DD9B486} => -> No File
Task: {0B582171-EE55-4A7F-929C-C26928E86CAF} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {142B395D-802E-4F95-9426-515412713349} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {225BF448-381A-4796-952B-8C4248490586} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {3501C161-F26C-4811-A1E6-409C4A28FB31} - System32\Tasks\{11B437CA-ACAD-45E4-9F6F-E4D67542F2CC} => C:\windows\system32\pcalua.exe -a C:\Users\Dadejs\Documents\Downloads\utorrent-lista-centrumcz.exe -d C:\Users\Dadejs\Documents\Downloads
Task: {45AF0794-2F66-4D93-B5CD-66E5C2C40E18} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {45E4EFF4-5F96-4734-803F-B04BFFFCED1F} - System32\Tasks\{67A27620-1D66-447C-89D1-7831641590CA} => C:\windows\system32\pcalua.exe -a C:\Users\Dadejs\Documents\Downloads\webcam1051enu.exe -d C:\Users\Dadejs\Documents\Downloads
Task: {4A6D73C3-CA8A-4B9D-A1A7-9296012E00A4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {59105480-20DA-45BD-8B6E-8756986B452D} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {669A8F7F-0FAA-4BDA-BC66-C16D66170D93} - System32\Tasks\{F01B9E89-8BE5-4E9F-BB54-34A5352BFDBB} => C:\windows\system32\pcalua.exe -a C:\Users\Dadejs\Desktop\tirpatch_europe\Setup.exe -d C:\Users\Dadejs\Desktop\tirpatch_europe
Task: {6756836B-CC24-4A79-BB26-1B2540CB2160} - System32\Tasks\{209B5D2B-6B2B-4514-BFA7-97B6768AC658} => C:\windows\system32\pcalua.exe -a C:\windows\TEMP\avast_ash\IrfanView\iview436_setup.exe -d "C:\Program Files\AVAST Software\Avast" <==== ATTENTION
Task: {72737B2B-F034-4CCB-9F97-97E0C2A419C9} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {890D9811-CE91-4B5C-9E91-136535365887} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {A3A8096D-33A0-4E98-8422-A22ECC56AEAD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {BCED8C14-9555-4556-886C-64D85463E56D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {BDEB5DE9-7BE6-47BA-B4DC-9DF0880446AE} - System32\Tasks\{EF1013A5-5994-4F38-87F2-F57E46B126FE} => C:\windows\system32\pcalua.exe -a C:\Users\Dadejs\Downloads\irfanview_lang_czech.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {FB8D9EFE-AF76-4822-A133-F4E0A320B6EA} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
C:\Program Files\Bonjour
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
C:\Users\Dadejs\AppData\Local\{2B6D7FCC-0303-4BFE-B8F6-6E6B1696D5B3}

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\AIMP" => removed successfully
HKLM\Software\Classes\CLSID\[CC]{1F77B17B-F531-44DB-ACA4-76ABB5010A28} => not found
"HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\ShellPlusContextMenu" => removed successfully
HKLM\Software\Classes\CLSID\{1C311AAA-D8B1-4A0A-BEE5-2387FEC583DA} => not found
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\ShellPlusContextMenu" => removed successfully
HKLM\Software\Classes\CLSID\{1C311AAA-D8B1-4A0A-BEE5-2387FEC583DA} => not found
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\AIMP" => removed successfully
HKLM\Software\Classes\CLSID\[CC]{1F77B17B-F531-44DB-ACA4-76ABB5010A28} => not found
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets" => removed successfully
HKLM\Software\Classes\CLSID\{6B9228DA-9C15-419e-856C-19E768A13BDC} => not found
"HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\Software\Classes\*\ShellEx\ContextMenuHandlers\EditWithPSPad" => removed successfully
HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\SOFTWARE\Classes\CLSID\[CC]{ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => not found
"HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\Software\Classes\*\ShellEx\ContextMenuHandlers\SysMenuExt" => removed successfully
HKU\S-1-5-21-2026504303-3394863346-1200617100-1001\SOFTWARE\Classes\CLSID\{020B1D4B-5738-4C77-9E19-4F173DD9B486} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0B582171-EE55-4A7F-929C-C26928E86CAF}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0B582171-EE55-4A7F-929C-C26928E86CAF}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{142B395D-802E-4F95-9426-515412713349}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{142B395D-802E-4F95-9426-515412713349}" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{225BF448-381A-4796-952B-8C4248490586}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{225BF448-381A-4796-952B-8C4248490586}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3501C161-F26C-4811-A1E6-409C4A28FB31}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3501C161-F26C-4811-A1E6-409C4A28FB31}" => removed successfully
C:\WINDOWS\System32\Tasks\{11B437CA-ACAD-45E4-9F6F-E4D67542F2CC} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{11B437CA-ACAD-45E4-9F6F-E4D67542F2CC}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{45AF0794-2F66-4D93-B5CD-66E5C2C40E18}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{45AF0794-2F66-4D93-B5CD-66E5C2C40E18}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{45E4EFF4-5F96-4734-803F-B04BFFFCED1F}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{45E4EFF4-5F96-4734-803F-B04BFFFCED1F}" => removed successfully
C:\WINDOWS\System32\Tasks\{67A27620-1D66-447C-89D1-7831641590CA} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{67A27620-1D66-447C-89D1-7831641590CA}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4A6D73C3-CA8A-4B9D-A1A7-9296012E00A4}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4A6D73C3-CA8A-4B9D-A1A7-9296012E00A4}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{59105480-20DA-45BD-8B6E-8756986B452D}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{59105480-20DA-45BD-8B6E-8756986B452D}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{669A8F7F-0FAA-4BDA-BC66-C16D66170D93}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{669A8F7F-0FAA-4BDA-BC66-C16D66170D93}" => removed successfully
C:\WINDOWS\System32\Tasks\{F01B9E89-8BE5-4E9F-BB54-34A5352BFDBB} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F01B9E89-8BE5-4E9F-BB54-34A5352BFDBB}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6756836B-CC24-4A79-BB26-1B2540CB2160}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6756836B-CC24-4A79-BB26-1B2540CB2160}" => removed successfully
C:\WINDOWS\System32\Tasks\{209B5D2B-6B2B-4514-BFA7-97B6768AC658} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{209B5D2B-6B2B-4514-BFA7-97B6768AC658}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{72737B2B-F034-4CCB-9F97-97E0C2A419C9}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{72737B2B-F034-4CCB-9F97-97E0C2A419C9}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{890D9811-CE91-4B5C-9E91-136535365887}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{890D9811-CE91-4B5C-9E91-136535365887}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A3A8096D-33A0-4E98-8422-A22ECC56AEAD}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A3A8096D-33A0-4E98-8422-A22ECC56AEAD}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BCED8C14-9555-4556-886C-64D85463E56D}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BCED8C14-9555-4556-886C-64D85463E56D}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BDEB5DE9-7BE6-47BA-B4DC-9DF0880446AE}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BDEB5DE9-7BE6-47BA-B4DC-9DF0880446AE}" => removed successfully
C:\WINDOWS\System32\Tasks\{EF1013A5-5994-4F38-87F2-F57E46B126FE} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{EF1013A5-5994-4F38-87F2-F57E46B126FE}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FB8D9EFE-AF76-4822-A133-F4E0A320B6EA}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FB8D9EFE-AF76-4822-A133-F4E0A320B6EA}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully
C:\Program Files\Bonjour => moved successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki" => removed successfully
C:\Users\Dadejs\AppData\Local\{2B6D7FCC-0303-4BFE-B8F6-6E6B1696D5B3} => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 9199616 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 219195920 B
Java, Flash, Steam htmlcache => 1119 B
Windows/system/drivers => 19449455 B
Edge => 9216 B
Chrome => 381363 B
Firefox => 30671998 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Dadejs => 28425680 B
DefaultAppPool => 6656 B

RecycleBin => 0 B
EmptyTemp: => 293.1 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 17:14:53 ====

Re: Pomalé PC

Napsal: 13 kvě 2018 16:52
od Rudy
Smazáno. Nastala nějaká změna?

Re: Pomalé PC

Napsal: 13 kvě 2018 17:05
od Dadejs
Pc se stratuje rychleji. Ale kdyz spustim firefox, tak pořád čekám půl minuty, než se načte centrum.cz. Nebo kterákoliv jiná stránka. Pak je to postupně svižnější. Ale celkově nic moc ☹️

Re: Pomalé PC

Napsal: 13 kvě 2018 18:13
od Rudy
Zkusíme ještě vyčistit prohlížeče. Spusťte postupně tyto utility:

1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize




autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;





Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: http://www.stahuj.centrum.cz/utility_a_ ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.

Re: Pomalé PC

Napsal: 13 kvě 2018 20:01
od Dadejs
Prohlížeč je teď najednou dokonale svižný :-)
Přikládám logy.

Tady první:
Zoek.exe v5.0.0.2 Updated 03-May-2018(Online Version)
Tool run by Dadejs on ne 13.05.2018 at 19:48:08,11.
Microsoft Windows 10 Home 10.0.16299 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Dadejs\Documents\Downloads\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

13.5.2018 19:53:21 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\2462c312-01da-478d-993d-b91a52e47a07 deleted successfully
C:\PROGRA~2\Empire Interactive deleted successfully
C:\PROGRA~2\FontUtilities deleted successfully
C:\PROGRA~2\Malwarebytes Anti-Malware deleted successfully
C:\PROGRA~2\Malwarebytes' Anti-Malware deleted successfully
C:\PROGRA~2\McAfee deleted successfully
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\PROGRA~2\Opera deleted successfully
C:\PROGRA~2\SmartView2 deleted successfully
C:\PROGRA~2\Winamp deleted successfully
C:\Program Files\Google deleted successfully
C:\Program Files\Intel Driver Update Utility deleted successfully
C:\Program Files\Common Files\AV deleted successfully
C:\Program Files\Common Files\McAfee deleted successfully
C:\PROGRA~3\Adobe deleted successfully
C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\PROGRA~3\ZoomBrowser deleted successfully
C:\Users\Dadejs\AppData\Roaming\CameraWindowDC deleted successfully
C:\Users\Dadejs\AppData\Roaming\Malwarebytes deleted successfully
C:\Users\Dadejs\AppData\Roaming\Media Player Classic deleted successfully
C:\Users\Dadejs\AppData\Roaming\Nico Mak Computing deleted successfully
C:\Users\Dadejs\AppData\Roaming\QuickScan deleted successfully
C:\Users\Dadejs\AppData\Local\ActiveSync deleted successfully
C:\Users\Dadejs\AppData\Local\Adobe deleted successfully
C:\Users\Dadejs\AppData\Local\Application Data deleted successfully
C:\Users\Dadejs\AppData\Local\DBG deleted successfully
C:\Users\Dadejs\AppData\Local\EmieSiteList deleted successfully
C:\Users\Dadejs\AppData\Local\EmieUserList deleted successfully
C:\Users\Dadejs\AppData\Local\Mobilbonus deleted successfully
C:\Users\Dadejs\AppData\Local\PackageStaging deleted successfully
C:\Users\Dadejs\AppData\Local\PlaceholderTileLogoFolder deleted successfully
C:\Users\Dadejs\AppData\Local\Skype deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\DBG deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Maps deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Dadejs\AppData\Roaming\Mozilla\Firefox\Profiles\a1lpsxma.default-1402684941049-1519852364944\prefs.js:
user_pref("browser.startup.homepage", "https://www.centrum.cz/");

Added to C:\Users\Dadejs\AppData\Roaming\Mozilla\Firefox\Profiles\a1lpsxma.default-1402684941049-1519852364944\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Deleting Files \ Folders ======================

C:\PROGRA~2\2462c312-01da-478d-993d-b91a52e47a07 not found
C:\PROGRA~2\Empire Interactive not found
C:\PROGRA~2\FontUtilities not found
C:\PROGRA~2\McAfee not found
C:\PROGRA~2\Opera not found
C:\PROGRA~2\SmartView2 not found
C:\PROGRA~2\Winamp not found
C:\PROGRA~3\HPs deleted
C:\PROGRA~3\HP deleted
C:\Users\Dadejs\AppData\Local\Opera deleted
C:\Users\Dadejs\AppData\Local\SmartView2 deleted
C:\Users\Dadejs\AppData\Roaming\Aegisub deleted
C:\Users\Dadejs\AppData\Roaming\calibre deleted
C:\WINDOWS\syswow64\appdata deleted
C:\Users\Dadejs\.android deleted
C:\PROGRA~2\SopCast deleted
C:\Users\Dadejs\AppData\Roaming\ZoomBrowser EX deleted
C:\PROGRA~3\ProductData deleted
C:\PROGRA~3\InstallMate deleted
C:\PROGRA~3\DriverGenius deleted
C:\PROGRA~3\{93E26451-CD9A-43A5-A2FA-C42392EA4001} deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Dadejs\AppData\Local\Unity deleted
C:\Users\Dadejs\AppData\Local\AVAST Software deleted
C:\Users\Dadejs\AppData\Local\CrashRpt deleted
C:\windows\SysNative\Tasks\Avast TUNEUP Update deleted
C:\windows\SysNative\Tasks\avastBCLRestartS-1-5-21-2026504303-3394863346-1200617100-1001 deleted
C:\windows\SysNative\Tasks\AvastUpdateTaskMachineCore deleted
C:\windows\SysNative\Tasks\AvastUpdateTaskMachineUA deleted
C:\Users\Public\Documents\GenieSoft deleted
C:\WINDOWS\Syswow64\SET301B.tmp deleted
C:\WINDOWS\Syswow64\SET33C7.tmp deleted
C:\WINDOWS\Syswow64\SET5BB7.tmp deleted
C:\WINDOWS\Syswow64\SETB550.tmp deleted
"C:\Users\Dadejs\AppData\Roaming\Temp" deleted
"C:\Users\Dadejs\AppData\LocalLow\Unity" deleted

==== Orphaned Tasks deleted from Registry ======================

Avast TUNEUP Update deleted
avastBCLRestartS-1-5-21-2026504303-3394863346-1200617100-1001 deleted
AvastUpdateTaskMachineCore deleted
AvastUpdateTaskMachineUA deleted
Games deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Dadejs\AppData\Roaming\Mozilla\Firefox\Profiles\a1lpsxma.default-1402684941049-1519852364944
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [19.11.2011 21:37]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [19.11.2011 21:37]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Dadejs\AppData\Roaming\Mozilla\Firefox\Profiles\a1lpsxma.default-1402684941049-1519852364944
- Avast Online Security - %ProfilePath%\extensions\wrc@avast.com.xpi
- Video DownloadHelper - %ProfilePath%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\Dadejs\AppData\Roaming\Mozilla\Firefox\Profiles\a1lpsxma.default-1402684941049-1519852364944
- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_29_0_0_171.dll - [?]
6745B601D1F1FAB82C7AF08B20250D85 - C:\Users\Dadejs\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll - Google Update
- C:\Users\Dadejs\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - [?]
81D6D6EE6226773449C5CBE9496EDAF6 - c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrlui.dll - Microsoft® Silverlight
FC18E6D133877BE07C753552705A5B8C - c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll - Silverlight Plug-In
- C:\Program Files x86\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll - [?]


==== Chromium Look ======================

Google Chrome Version: 66.0.3359.139

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
eofcbnmajmjmplflapaojjnihcjkigck - No path found[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
bgjpfhpjcgdppjbgnpnjllokbmcdllig - No path found[]
olfeabkoenfaoljndfecamgilllcpiak - No path found[]

Seznam pro Chrome - Email - Dadejs\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig
Centrum.cz Email Notifikátor - Dadejs\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmmnahgmbjnpgdoadbfoficgoamahklm
Chrome Media Router - Dadejs\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Bar"="https://www.google.com/?trackid=sp-006"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IESR02

==== Reset Google Chrome ======================

C:\Users\Dadejs\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Dadejs\AppData\Local\Google\Chrome\User Data\Default\Preferences.bad was reset successfully
C:\Users\Dadejs\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Dadejs\AppData\Local\Opera Software\Opera Neon\User Data\Default\Preferences was reset successfully
C:\Users\Dadejs\AppData\Local\Opera Software\Opera Neon\User Data\Default\Secure Preferences was reset successfully
C:\Users\Dadejs\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Dadejs\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\Dadejs\AppData\Local\Opera Software\Opera Neon\User Data\Default\Web Data was reset successfully
C:\Users\Dadejs\AppData\Local\Opera Software\Opera Neon\User Data\Default\Web Data-journal was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{44C6256A-6DA5-A1BD-C0E3-658B22846A6E} deleted successfully
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\UnityWebPlayer deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Dadejs\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Dadejs\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Dadejs\AppData\Local\Mozilla\Firefox\Profiles\a1lpsxma.default-1402684941049-1519852364944\cache2 emptied successfully

==== Empty Edge Cache ======================

Edge Cache Emptied Successfully

==== Empty Chrome Cache ======================

C:\Users\Dadejs\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Dadejs\AppData\Local\Opera Software\Opera Neon\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=3887 folders=1278 1605412502 bytes)

==== Empty Temp Folders ======================

C:\Users\Dadejs\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\DefaultAppPool\AppData\Local\Temp emptied successfully
C:\Users\Public\AppData\Local\temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot


a druhý

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64
Ran by Dadejs (Administrator) on ne 13.05.2018 at 20:55:09,99
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 3

Successfully deleted: C:\Users\Dadejs\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig (Folder)
Successfully deleted: C:\Users\Dadejs\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bgjpfhpjcgdppjbgnpnjllokbmcdllig (Folder)
Successfully deleted: C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (Dadejs) (Task)



Registry: 2

Successfully deleted: HKCU\Software\Google\Chrome\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig (Registry Key)
Successfully deleted: HKCU\Software\Google\Chrome\Extensions\olfeabkoenfaoljndfecamgilllcpiak (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 13.05.2018 at 20:58:34,38
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Re: Pomalé PC

Napsal: 13 kvě 2018 20:09
od Rudy
Prohlížeče promazány. Ještě máte nějaký problém?

Re: Pomalé PC

Napsal: 13 kvě 2018 20:16
od Dadejs
To bude asi vše. Zase jednou díky moc za pomoc :thumbsup:

Re: Pomalé PC

Napsal: 13 kvě 2018 20:55
od Rudy
Rádo se stalo! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz