Prosím preventivní kontrolu
Napsal: 12 srp 2018 17:42
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02.08.2018
Ran by Oem (administrator) on OEM-PC (12-08-2018 18:38:08)
Running from C:\Users\Oem\Desktop
Loaded Profiles: Oem & All & DefaultAppPool (Available Profiles: Oem & All & DefaultAppPool)
Platform: Windows 10 Pro Version 1803 17134.165 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Hi-Rez Studios) D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(McAfee, LLC.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(McAfee, LLC.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(LogMeIn Inc.) D:\mezi\Plakát\x64\hamachi-2.exe
(LogMeIn, Inc.) D:\mezi\Plakát\x64\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
(McAfee, LLC.) C:\Program Files\TrueKey\McAfee.TrueKey.SmartMonitor.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Program Files (x86)\QNAP\Qfinder\iSCSIAgent.exe
(Microsoft) C:\Windows\Správce úloh\Správce úloh.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2LAK.EXE
(CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2RPK.EXE
(CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNACBSWK.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
() C:\Program Files (x86)\QNAP\Qfinder\QfinderPro.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(LogMeIn Inc.) D:\mezi\Plakát\hamachi-2-ui.exe
(LogMeIn, Inc.) D:\mezi\Plakát\LMIGuardianSvc.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(AVAST Software) C:\Program Files\Common Files\avast software\overseer\overseer.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\Oem\Desktop\FRST-OlderVersion\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [CNAP2 Launcher] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE [226784 2010-10-15] (CANON INC.)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242904 2018-06-21] (AVAST Software)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297272 2017-12-05] (Apple Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [QfinderPro] => C:\Program Files (x86)\QNAP\Qfinder\QfinderPro.exe [9888056 2018-05-08] ()
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => D:\mezi\Plakát\hamachi-2-ui.exe [5885352 2018-05-30] (LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-2448862905-1201201786-659708398-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4289728 2016-04-04] (Disc Soft Ltd)
HKU\S-1-5-21-2448862905-1201201786-659708398-1000\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [3206432 2018-08-09] (Valve Corporation)
HKU\S-1-5-21-2448862905-1201201786-659708398-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832264 2017-10-06] (Skype Technologies S.A.)
HKU\S-1-5-21-2448862905-1201201786-659708398-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10290608 2018-02-07] (Piriform Ltd)
HKU\S-1-5-21-2448862905-1201201786-659708398-1000\...\MountPoints2: {3b687123-ed13-11e7-8069-3860771bc34b} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2448862905-1201201786-659708398-1000\...\MountPoints2: {88a8be78-fe1b-11e5-a423-3860771bc34b} - "I:\setup_chuchel_1.0.0_(19089).exe"
HKU\S-1-5-21-2448862905-1201201786-659708398-1000\...\MountPoints2: {c5baad6e-8906-11e8-8094-3860771bc34b} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2448862905-1201201786-659708398-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\All\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [109808 2018-03-27] ()
HKU\S-1-5-21-2448862905-1201201786-659708398-1001\...\MountPoints2: {3b687123-ed13-11e7-8069-3860771bc34b} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2448862905-1201201786-659708398-1001\...\MountPoints2: {88a8be78-fe1b-11e5-a423-3860771bc34b} - "I:\setup_chuchel_1.0.0_(19089).exe"
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
IFEO\AcroRd32.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\dtagent.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\dtlauncher.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Silverlight\Office14\GROOVEEX.DLL -> No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Cleanup Premium.lnk [2018-03-14]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.0 telemetry.malwarebytes.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a4dc94b2-fad4-415b-bd28-c8e20d58bdd0}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{a4dc94b2-fad4-415b-bd28-c8e20d58bdd0}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-2448862905-1201201786-659708398-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=13554
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1001 -> {1E20659B-088D-4208-9152-79FADD977E4B} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13554
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1001 -> {5F9632F8-80E1-4AAA-907A-68B037B367D9} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13554
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1001 -> {86592764-74C4-4514-9B9F-DDEF255526CC} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13554
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1001 -> {8ACA543D-910C-4E51-AEA7-CB9234744519} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13554
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1001 -> {9D9DF0F7-DA52-43C7-BD2A-0E8B6946A663} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13554
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1001 -> {C0D3922C-A75F-4CD2-B909-AB0C08FB3E8B} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_13554
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1001 -> {C84B8FB0-CE37-48D0-913F-9B99FFD24BEF} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13554
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1001 -> {D701CE3D-5F61-4FC1-B87D-CAD36FE7A03B} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13554
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1001 -> {FCE7EB19-066F-4555-B2B0-4921B9C45883} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13554
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Silverlight\Office14\GROOVEEX.DLL => No File
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2018-07-17] (McAfee, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Silverlight\Office14\URLREDIR.DLL => No File
BHO-x32: Wondershare AllMyTube 4.9.0 -> {067DF9EC-26B7-40DC-8DB8-CD8BE85AE367} -> C:\ProgramData\Wondershare\AllMyTube\WSBrowserAppMgr.dll => No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-08-12] (Oracle Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2018-07-17] (McAfee, Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-08-12] (Oracle Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2018-07-17] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2018-07-17] (McAfee, Inc.)
Handler: WSAllMyTubechrome - {0A0C95CF-A116-4C74 - No File
FireFox:
========
FF DefaultProfile: tz8ef4hd.default
FF ProfilePath: C:\Users\Oem\AppData\Roaming\Mozilla\Firefox\Profiles\tz8ef4hd.default [2018-08-12]
FF NetworkProxy: Mozilla\Firefox\Profiles\tz8ef4hd.default -> type", 4
FF Extension: (MyJDownloader Browser Extension) - C:\Users\Oem\AppData\Roaming\Mozilla\Firefox\Profiles\tz8ef4hd.default\Extensions\jid1-OY8Xu5BsKZQa6A@jetpack.xpi [2018-08-05]
FF Extension: (Google Translator for Firefox) - C:\Users\Oem\AppData\Roaming\Mozilla\Firefox\Profiles\tz8ef4hd.default\Extensions\translator@zoli.bod.xpi [2018-02-03]
FF Extension: (Avast Online Security) - C:\Users\Oem\AppData\Roaming\Mozilla\Firefox\Profiles\tz8ef4hd.default\Extensions\wrc@avast.com.xpi [2018-05-29]
FF Extension: (Google Analytics Opt-out Add-on (by Google)) - C:\Users\Oem\AppData\Roaming\Mozilla\Firefox\Profiles\tz8ef4hd.default\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2017-03-31]
FF Extension: (Adblock Plus) - C:\Users\Oem\AppData\Roaming\Mozilla\Firefox\Profiles\tz8ef4hd.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-07-17]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi [2018-05-15]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
FF HKU\S-1-5-21-2448862905-1201201786-659708398-1001\...\Firefox\Extensions: [fdm_ffext@freedownloadmanager.org] - C:\Program Files (x86)\Free Download Manager\Firefox\Extension => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_30_0_0_134.dll [2018-07-11] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\Microsoft Silverlight\Office14\NPAUTHZ.DLL [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_134.dll [2018-07-11] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1231201.dll [2017-11-02] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-08-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-08-12] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2448862905-1201201786-659708398-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Oem\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR NewTab: Default -> Not-active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"
CHR Profile: C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default [2018-08-12]
CHR Extension: (Prezentace) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-28]
CHR Extension: (Dokumenty) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-17]
CHR Extension: (Disk Google) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-10]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2018-05-15]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2018-05-15]
CHR Extension: (YouTube) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-10]
CHR Extension: (Avast SafePrice) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-05-17]
CHR Extension: (Tabulky) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-17]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2018-08-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-05-26]
CHR Extension: (Avast Online Security) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-05-15]
CHR Extension: (Skype) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2018-01-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-05-15]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-05-15]
CHR Extension: (Gmail) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-10]
CHR Extension: (Chrome Media Router) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-05-15]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2448862905-1201201786-659708398-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2448862905-1201201786-659708398-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmojkbhnkkphngknkmgccmlenfaelkd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2448862905-1201201786-659708398-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-11-27] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7780400 2018-06-21] (AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-05-08] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [322464 2018-06-21] (AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-05-08] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2018-02-15] ()
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2016-12-07] (BitRaider, LLC)
R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [8730648 2018-07-24] (AVAST Software)
S4 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1443520 2016-04-04] (Disc Soft Ltd)
R2 Hamachi2Svc; D:\mezi\Plakát\x64\hamachi-2.exe [3346856 2018-05-30] (LogMeIn Inc.)
U2 HiPatchService; d:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-10-10] (Hi-Rez Studios) [File not signed]
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-04-20] () [File not signed]
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21304 2017-09-28] (Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [604824 2018-07-17] (McAfee, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation)
R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [107832 2016-11-28] ()
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-04-12] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (DEVGURU Co., LTD.)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [187904 2017-09-28] (Microsoft Corporation) [File not signed]
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [1000824 2018-05-14] (McAfee, LLC.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16928 2018-05-14] (McAfee, LLC.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [87760 2018-05-14] (McAfee, Inc.)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [142440 2017-12-14] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105344 2018-04-12] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [197160 2018-06-21] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [229392 2018-06-21] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [201328 2018-06-21] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [346664 2018-06-21] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [59592 2018-06-21] (AVAST Software)
S3 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15360 2018-06-21] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [239680 2018-06-21] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46976 2018-06-21] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [159640 2018-06-21] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111872 2018-06-21] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [85968 2018-06-21] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1027728 2018-06-21] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [467064 2018-07-23] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [211160 2018-06-21] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [381584 2018-06-21] (AVAST Software)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2017-09-28] (BitRaider)
S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [269408 2018-02-23] (Bluestack System Inc. )
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-04-09] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-04-09] (Disc Soft Ltd)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2017-07-26] (Huawei Technologies Co., Ltd.)
S3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2016-11-11] (LogMeIn Inc.)
R1 HWiNFO32; C:\WINDOWS\SysWoW64\drivers\HWiNFO64A.SYS [27552 2017-02-08] (REALiX(tm))
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-04-20] (Huawei Technologies Co., Ltd.)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253664 2018-08-04] (Malwarebytes)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [111608 2017-02-14] (McAfee, Inc.)
R3 Neo_VPN; C:\WINDOWS\System32\drivers\Neo6_x64_VPN.sys [49424 2017-03-10] (SoftEther Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys [16936048 2017-11-09] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31168 2018-03-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [59240 2017-12-15] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [58816 2018-03-14] (NVIDIA Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-08-12 18:38 - 2018-08-12 18:38 - 000029944 _____ C:\Users\Oem\Desktop\FRST.txt
2018-08-12 18:37 - 2018-08-12 18:37 - 000029696 _____ C:\Users\Oem\AppData\Local\MSGBOX.EXE
2018-08-12 18:37 - 2018-08-12 18:37 - 000015327 _____ C:\Users\Oem\Desktop\LM.bat
2018-08-12 18:07 - 2018-08-12 18:07 - 007673187 _____ C:\Users\Oem\Desktop\Moderní včelař 2004 propolis.pdf
2018-08-12 15:06 - 2018-08-12 15:06 - 000347516 _____ C:\Users\Oem\Desktop\Spravna-praxe-v-chovu-vcel.pdf
2018-08-11 22:10 - 2018-08-11 22:10 - 000097960 _____ C:\Users\Oem\Downloads\Man-Up(0000264426)(1).srt
2018-08-11 22:09 - 2018-08-11 22:09 - 000100493 _____ C:\Users\Oem\Downloads\Man-Up(0000260267).srt
2018-08-11 22:09 - 2018-08-11 22:09 - 000097960 _____ C:\Users\Oem\Downloads\Man-Up(0000264426).srt
2018-08-11 22:09 - 2018-08-11 22:09 - 000094822 _____ C:\Users\Oem\Downloads\Man-Up(0000263587).srt
2018-08-11 18:57 - 2018-08-12 15:45 - 000010179 _____ C:\Users\Oem\Desktop\Včely výnos 2018.xlsx
2018-08-10 22:46 - 2018-08-10 22:53 - 000000000 ____D C:\Users\Oem\Desktop\Dovolené
2018-08-10 22:41 - 2018-08-10 22:48 - 000000000 ____D C:\Users\Oem\Desktop\zastupitelstvo
2018-08-05 17:34 - 2018-08-05 17:34 - 000031766 _____ C:\Users\Oem\Downloads\červenec.pdf
2018-08-04 12:26 - 2018-08-04 12:26 - 000000000 ____D C:\Users\Oem\Documents\The Movies
2018-08-04 12:26 - 2018-08-04 12:26 - 000000000 ____D C:\Users\Oem\AppData\Roaming\Lionhead Studios
2018-08-03 22:59 - 2018-08-10 21:54 - 000003140 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-03 22:59 - 2018-08-03 22:59 - 000000000 ____D C:\Users\Oem\ansel
2018-08-03 22:59 - 2018-03-14 15:05 - 000058816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2018-08-03 22:59 - 2017-12-15 04:03 - 000059240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2018-08-03 22:51 - 2018-08-03 22:51 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2018-08-03 22:51 - 2018-08-03 22:51 - 000002241 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2018-08-03 22:51 - 2018-08-03 22:51 - 000000000 ____D C:\Program Files\Google
2018-07-31 09:58 - 2018-07-31 09:58 - 000000812 _____ C:\Users\Public\Desktop\StarMaker.lnk
2018-07-31 09:58 - 2018-07-31 09:58 - 000000809 _____ C:\Users\Public\Desktop\The Movies Stunts & Effects.lnk
2018-07-31 09:58 - 2018-07-31 09:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Movies Stunts & Effects
2018-07-30 15:57 - 2018-07-30 17:43 - 1888054997 _____ C:\Users\All\Downloads\The Movies - Stunts and Effects - PC hra (strategie) CZ.rar
2018-07-30 09:34 - 2018-07-30 09:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\State of Decay - Year One Survival Edition
2018-07-24 14:04 - 2018-07-24 14:04 - 000000000 ____D C:\Users\All\AppData\Roaming\com.amanitadesign.chuchel
2018-07-24 14:04 - 2018-07-24 14:04 - 000000000 ____D C:\Users\All\AppData\Roaming\Amanita-Design.CHUCHEL
2018-07-23 13:38 - 2018-07-23 13:38 - 000000573 _____ C:\Users\Oem\Desktop\Chuchel.exe – zástupce.lnk
2018-07-23 13:29 - 2018-07-23 13:29 - 000000000 ____D C:\Users\Oem\AppData\Roaming\com.amanitadesign.chuchel
2018-07-23 13:29 - 2018-07-23 13:29 - 000000000 ____D C:\Users\Oem\AppData\Roaming\Amanita-Design.CHUCHEL
2018-07-23 13:28 - 2018-07-23 13:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CHUCHEL [GOG.com]
2018-07-22 20:05 - 2018-07-22 20:05 - 000051950 _____ C:\Users\Oem\Downloads\receipt_VP0000578168.pdf
2018-07-22 20:05 - 2018-07-22 20:05 - 000051950 _____ C:\Users\Oem\Downloads\receipt_VP0000578168(2).pdf
2018-07-22 20:05 - 2018-07-22 20:05 - 000051950 _____ C:\Users\Oem\Downloads\receipt_VP0000578168(1).pdf
2018-07-22 19:38 - 2018-07-22 19:38 - 000075183 _____ C:\Users\Oem\Downloads\pojistka_9901199740_2018-07-22_Cenek_Pavel (1).pdf
2018-07-22 19:37 - 2018-07-22 19:37 - 000075183 _____ C:\Users\Oem\Downloads\pojistka_9901199740_2018-07-22_Cenek_Pavel.pdf
2018-07-22 19:37 - 2018-07-22 19:37 - 000065612 _____ C:\Users\Oem\Downloads\9901199740_2018-07-22_Cenek_Pavel.pdf
2018-07-21 15:41 - 2018-07-21 21:37 - 000000000 ____D C:\WINDOWS\Minidump
2018-07-19 19:22 - 2018-07-19 19:22 - 000001060 _____ C:\Users\Public\Desktop\HiSuite.lnk
2018-07-19 19:22 - 2018-07-19 19:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite
2018-07-15 21:38 - 2018-07-15 21:38 - 000342263 _____ C:\Users\All\Downloads\008436.pdf
2018-07-15 21:38 - 2018-07-15 21:38 - 000342043 _____ C:\Users\All\Downloads\009313.pdf
2018-07-14 21:16 - 2018-07-14 21:16 - 000064906 _____ C:\Users\Oem\Downloads\Sicario(0000264090).srt
2018-07-14 15:48 - 2018-07-14 15:49 - 000000000 ____D C:\Users\All\Documents\Lords of the Fallen
2018-07-13 21:49 - 2018-07-13 21:49 - 000125166 _____ C:\Users\Oem\Downloads\Wag-the-Dog(0000006685).srt
2018-07-13 21:48 - 2018-07-13 21:48 - 000133420 _____ C:\Users\Oem\Downloads\Wag-the-dog(0000065782).srt
2018-07-13 21:48 - 2018-07-13 21:48 - 000133156 _____ C:\Users\Oem\Downloads\Wag-the-dog(0000089567).srt
2018-07-13 21:48 - 2018-07-13 21:48 - 000086061 _____ C:\Users\Oem\Downloads\Wag-The-Dog(0000016329).sub
2018-07-13 21:48 - 2018-07-13 21:48 - 000077020 _____ C:\Users\Oem\Downloads\Wag-the-Dog(0000282172).srt
2018-07-13 21:48 - 2018-07-13 21:48 - 000076331 _____ C:\Users\Oem\Downloads\Wag-the-Dog(0000161791).srt
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-08-12 18:38 - 2017-02-10 23:19 - 000000000 ____D C:\FRST
2018-08-12 18:37 - 2017-03-04 08:04 - 000000000 ____D C:\Users\Oem\Desktop\FRST-OlderVersion
2018-08-12 18:37 - 2017-02-10 23:18 - 002412544 _____ (Farbar) C:\Users\Oem\Desktop\FRST64.exe
2018-08-12 18:11 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-08-12 17:58 - 2018-05-21 05:58 - 000000000 ____D C:\Users\Oem\AppData\Local\LogMeIn Hamachi
2018-08-12 17:58 - 2018-02-22 21:39 - 000000000 ____D C:\Users\Oem\AppData\Local\AVAST Software
2018-08-12 17:58 - 2017-02-11 06:09 - 000000000 ____D C:\Users\Oem\AppData\LocalLow\Mozilla
2018-08-12 17:58 - 2016-04-13 20:12 - 000000000 ____D C:\Users\Oem\AppData\Roaming\Skype
2018-08-12 17:57 - 2017-11-23 19:26 - 000000000 ____D C:\ProgramData\NVIDIA
2018-08-12 16:14 - 2016-04-17 05:57 - 000000000 ____D C:\Users\Oem\AppData\Roaming\uTorrent
2018-08-12 15:57 - 2017-01-15 13:40 - 000000000 ____D C:\Users\Oem\Desktop\Manželská společenství, setkání, chlapi
2018-08-12 15:48 - 2017-09-05 17:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2018-08-12 15:48 - 2017-05-26 20:22 - 000000000 _____ C:\WINDOWS\SysWOW64\last.dump
2018-08-12 15:48 - 2016-05-13 17:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-08-12 15:48 - 2016-05-13 17:51 - 000000000 ____D C:\Program Files (x86)\Java
2018-08-12 15:47 - 2016-05-13 17:51 - 000098680 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2018-08-12 15:40 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-08-12 15:08 - 2017-02-10 20:24 - 000000000 ____D C:\Users\Oem\AppData\Local\JDownloader 2.0
2018-08-12 14:45 - 2018-05-21 05:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-08-11 15:36 - 2018-05-21 06:07 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2018-08-11 14:15 - 2018-05-21 06:07 - 000003542 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2018-08-11 07:09 - 2016-12-18 22:14 - 000000000 ____D C:\Users\Oem\Desktop\Fun
2018-08-11 06:30 - 2018-05-21 06:07 - 000003354 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2448862905-1201201786-659708398-1000
2018-08-11 06:30 - 2018-05-21 05:58 - 000002381 _____ C:\Users\Oem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-08-11 06:30 - 2016-07-30 05:56 - 000000000 ___RD C:\Users\Oem\OneDrive
2018-08-11 05:59 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-08-10 22:52 - 2017-02-11 09:09 - 000000000 ____D C:\Users\Oem\Desktop\ebook
2018-08-10 22:51 - 2017-01-15 18:09 - 000000000 ____D C:\Users\Oem\Desktop\ZSM
2018-08-10 22:44 - 2016-02-17 13:43 - 000000000 ____D C:\Users\Oem\Desktop\Daňová přiznání
2018-08-10 22:25 - 2017-02-04 08:29 - 000303594 _____ C:\Users\Oem\Desktop\fun 6-10.txt
2018-08-10 21:54 - 2018-05-22 20:59 - 000002382 _____ C:\WINDOWS\System32\Tasks\McAfee Remediation (Prepare)
2018-08-10 21:54 - 2018-05-21 06:07 - 000003816 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-08-10 21:54 - 2018-05-21 06:07 - 000003406 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2018-08-10 21:54 - 2018-05-21 06:07 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-08-10 21:54 - 2018-05-21 06:07 - 000003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-10 21:54 - 2018-05-21 06:07 - 000003194 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2018-08-10 21:54 - 2018-05-21 06:07 - 000003176 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-10 21:54 - 2018-05-21 06:07 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-08-10 21:54 - 2018-05-21 06:07 - 000002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-10 21:54 - 2018-05-21 06:07 - 000002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-10 21:54 - 2018-05-21 06:07 - 000002914 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-10 21:54 - 2018-05-21 06:07 - 000002856 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2448862905-1201201786-659708398-1001
2018-08-10 21:54 - 2018-05-21 06:07 - 000002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-10 21:54 - 2018-05-21 06:07 - 000002756 _____ C:\WINDOWS\System32\Tasks\AutoPico Daily Restart
2018-08-10 21:54 - 2018-05-21 06:07 - 000002746 _____ C:\WINDOWS\System32\Tasks\Správce úloh
2018-08-10 21:54 - 2018-05-21 06:07 - 000002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-10 21:54 - 2018-05-21 06:07 - 000002282 _____ C:\WINDOWS\System32\Tasks\iSCSIAgentAutoStartup
2018-08-10 21:54 - 2018-05-21 06:07 - 000002272 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Oem)
2018-08-10 21:54 - 2018-05-21 06:07 - 000002218 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2018-08-10 21:54 - 2018-05-21 06:07 - 000002174 _____ C:\WINDOWS\System32\Tasks\{C5A8F72F-C08D-45CB-939E-061AFDB7DD38}
2018-08-10 21:54 - 2018-05-21 06:07 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2018-08-10 19:23 - 2017-02-09 16:01 - 000000000 ____D C:\Users\Oem\AppData\Local\CrashDumps
2018-08-10 18:33 - 2016-11-01 20:30 - 000000733 _____ C:\Users\Oem\Desktop\Potter.txt
2018-08-10 05:58 - 2017-02-10 23:55 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-08-10 05:48 - 2016-03-04 17:12 - 000001159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-08-10 05:48 - 2016-03-04 17:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-08-07 07:51 - 2018-05-21 05:58 - 000000000 ____D C:\Users\All\AppData\Local\LogMeIn Hamachi
2018-08-07 07:50 - 2018-05-08 08:19 - 000000000 ____D C:\Users\All\AppData\Local\AVAST Software
2018-08-07 07:49 - 2017-02-11 09:47 - 000000000 ____D C:\Users\All\AppData\LocalLow\Mozilla
2018-08-07 07:42 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-08-07 07:42 - 2016-03-05 15:58 - 000000000 ____D C:\Users\Oem\AppData\Local\ElevatedDiagnostics
2018-08-06 07:30 - 2018-05-21 06:07 - 000004284 _____ C:\WINDOWS\System32\Tasks\Avast TUNEUP Update
2018-08-04 21:05 - 2018-02-17 07:36 - 000000000 ____D C:\FFOutput
2018-08-04 06:02 - 2018-05-21 05:53 - 001956628 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-08-04 06:02 - 2018-04-12 17:51 - 000808346 _____ C:\WINDOWS\system32\perfh005.dat
2018-08-04 06:02 - 2018-04-12 17:51 - 000186590 _____ C:\WINDOWS\system32\perfc005.dat
2018-08-04 06:02 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2018-08-04 05:56 - 2018-06-01 21:23 - 000253664 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2018-08-04 05:56 - 2018-05-21 06:07 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-08-04 05:56 - 2017-11-23 19:26 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-08-04 05:55 - 2018-04-11 23:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-08-03 23:00 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-08-03 22:59 - 2018-05-21 05:58 - 000000000 ____D C:\Users\Oem
2018-08-03 22:59 - 2017-11-23 19:26 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-08-03 22:59 - 2017-11-23 19:26 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-08-03 22:53 - 2018-07-10 15:40 - 000000000 ____D C:\ProgramData\Packages
2018-07-30 16:05 - 2016-08-01 09:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Movies
2018-07-30 16:05 - 2016-07-16 18:41 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-07-28 20:15 - 2017-02-08 18:13 - 000000000 ____D C:\Users\All\AppData\Local\CrashDumps
2018-07-24 21:35 - 2018-05-21 05:58 - 000000000 ____D C:\Users\All\AppData\Local\Microsoft Help
2018-07-24 18:24 - 2018-05-08 06:27 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2018-07-23 19:13 - 2017-02-10 23:54 - 000467064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-07-23 11:45 - 2016-03-22 20:00 - 000000000 ____D C:\Users\Oem\Documents\Knihovna Calibre
2018-07-21 21:40 - 2016-07-24 21:52 - 000000000 ____D C:\Users\Oem\AppData\Roaming\Factorio
2018-07-21 15:41 - 2016-12-20 20:13 - 000000000 ____D C:\Program Files (x86)\McAfee
2018-07-19 19:22 - 2017-10-10 22:06 - 000000000 ____D C:\Users\Oem\AppData\Local\Hisuite
2018-07-19 19:22 - 2017-10-10 22:06 - 000000000 ____D C:\Program Files (x86)\HiSuite
2018-07-19 10:11 - 2018-06-01 21:23 - 000152688 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2018-07-18 06:43 - 2018-05-21 05:58 - 000002381 _____ C:\Users\All\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-07-18 06:43 - 2016-07-30 05:42 - 000000000 ___RD C:\Users\All\OneDrive
==================== Files in the root of some directories =======
2017-06-08 19:01 - 2017-06-08 19:06 - 000004608 _____ () C:\Users\Oem\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-01-26 20:33 - 2017-01-26 20:33 - 000000000 ___SH () C:\Users\Oem\AppData\Local\LumaEmu
2018-08-12 18:37 - 2018-08-12 18:37 - 000029696 _____ () C:\Users\Oem\AppData\Local\MSGBOX.EXE
2018-04-15 21:41 - 2018-04-15 21:41 - 000000017 _____ () C:\Users\Oem\AppData\Local\resmon.resmoncfg
Some files in TEMP:
====================
2018-08-12 15:45 - 2018-08-12 15:45 - 001906040 _____ (Oracle Corporation) C:\Users\Oem\AppData\Local\Temp\jre-8u181-windows-au.exe
2018-08-10 18:52 - 2018-08-10 18:52 - 000040448 ____N () C:\Users\Oem\AppData\Local\Temp\proxy_vole5670474629202389694.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-05-21 05:51
==================== End of FRST.txt ============================
Ran by Oem (administrator) on OEM-PC (12-08-2018 18:38:08)
Running from C:\Users\Oem\Desktop
Loaded Profiles: Oem & All & DefaultAppPool (Available Profiles: Oem & All & DefaultAppPool)
Platform: Windows 10 Pro Version 1803 17134.165 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Hi-Rez Studios) D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(McAfee, LLC.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(McAfee, LLC.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(LogMeIn Inc.) D:\mezi\Plakát\x64\hamachi-2.exe
(LogMeIn, Inc.) D:\mezi\Plakát\x64\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
(McAfee, LLC.) C:\Program Files\TrueKey\McAfee.TrueKey.SmartMonitor.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Program Files (x86)\QNAP\Qfinder\iSCSIAgent.exe
(Microsoft) C:\Windows\Správce úloh\Správce úloh.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2LAK.EXE
(CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2RPK.EXE
(CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNACBSWK.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
() C:\Program Files (x86)\QNAP\Qfinder\QfinderPro.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(LogMeIn Inc.) D:\mezi\Plakát\hamachi-2-ui.exe
(LogMeIn, Inc.) D:\mezi\Plakát\LMIGuardianSvc.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(AVAST Software) C:\Program Files\Common Files\avast software\overseer\overseer.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\Oem\Desktop\FRST-OlderVersion\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [CNAP2 Launcher] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE [226784 2010-10-15] (CANON INC.)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242904 2018-06-21] (AVAST Software)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297272 2017-12-05] (Apple Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [QfinderPro] => C:\Program Files (x86)\QNAP\Qfinder\QfinderPro.exe [9888056 2018-05-08] ()
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => D:\mezi\Plakát\hamachi-2-ui.exe [5885352 2018-05-30] (LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-2448862905-1201201786-659708398-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4289728 2016-04-04] (Disc Soft Ltd)
HKU\S-1-5-21-2448862905-1201201786-659708398-1000\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [3206432 2018-08-09] (Valve Corporation)
HKU\S-1-5-21-2448862905-1201201786-659708398-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832264 2017-10-06] (Skype Technologies S.A.)
HKU\S-1-5-21-2448862905-1201201786-659708398-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10290608 2018-02-07] (Piriform Ltd)
HKU\S-1-5-21-2448862905-1201201786-659708398-1000\...\MountPoints2: {3b687123-ed13-11e7-8069-3860771bc34b} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2448862905-1201201786-659708398-1000\...\MountPoints2: {88a8be78-fe1b-11e5-a423-3860771bc34b} - "I:\setup_chuchel_1.0.0_(19089).exe"
HKU\S-1-5-21-2448862905-1201201786-659708398-1000\...\MountPoints2: {c5baad6e-8906-11e8-8094-3860771bc34b} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2448862905-1201201786-659708398-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\All\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [109808 2018-03-27] ()
HKU\S-1-5-21-2448862905-1201201786-659708398-1001\...\MountPoints2: {3b687123-ed13-11e7-8069-3860771bc34b} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2448862905-1201201786-659708398-1001\...\MountPoints2: {88a8be78-fe1b-11e5-a423-3860771bc34b} - "I:\setup_chuchel_1.0.0_(19089).exe"
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
IFEO\AcroRd32.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\dtagent.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\dtlauncher.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Silverlight\Office14\GROOVEEX.DLL -> No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Cleanup Premium.lnk [2018-03-14]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.0 telemetry.malwarebytes.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a4dc94b2-fad4-415b-bd28-c8e20d58bdd0}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{a4dc94b2-fad4-415b-bd28-c8e20d58bdd0}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-2448862905-1201201786-659708398-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=13554
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1001 -> {1E20659B-088D-4208-9152-79FADD977E4B} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13554
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1001 -> {5F9632F8-80E1-4AAA-907A-68B037B367D9} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13554
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1001 -> {86592764-74C4-4514-9B9F-DDEF255526CC} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13554
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1001 -> {8ACA543D-910C-4E51-AEA7-CB9234744519} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13554
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1001 -> {9D9DF0F7-DA52-43C7-BD2A-0E8B6946A663} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13554
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1001 -> {C0D3922C-A75F-4CD2-B909-AB0C08FB3E8B} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_13554
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1001 -> {C84B8FB0-CE37-48D0-913F-9B99FFD24BEF} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13554
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1001 -> {D701CE3D-5F61-4FC1-B87D-CAD36FE7A03B} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13554
SearchScopes: HKU\S-1-5-21-2448862905-1201201786-659708398-1001 -> {FCE7EB19-066F-4555-B2B0-4921B9C45883} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13554
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Silverlight\Office14\GROOVEEX.DLL => No File
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2018-07-17] (McAfee, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Silverlight\Office14\URLREDIR.DLL => No File
BHO-x32: Wondershare AllMyTube 4.9.0 -> {067DF9EC-26B7-40DC-8DB8-CD8BE85AE367} -> C:\ProgramData\Wondershare\AllMyTube\WSBrowserAppMgr.dll => No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-08-12] (Oracle Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2018-07-17] (McAfee, Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-08-12] (Oracle Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2018-07-17] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2018-07-17] (McAfee, Inc.)
Handler: WSAllMyTubechrome - {0A0C95CF-A116-4C74 - No File
FireFox:
========
FF DefaultProfile: tz8ef4hd.default
FF ProfilePath: C:\Users\Oem\AppData\Roaming\Mozilla\Firefox\Profiles\tz8ef4hd.default [2018-08-12]
FF NetworkProxy: Mozilla\Firefox\Profiles\tz8ef4hd.default -> type", 4
FF Extension: (MyJDownloader Browser Extension) - C:\Users\Oem\AppData\Roaming\Mozilla\Firefox\Profiles\tz8ef4hd.default\Extensions\jid1-OY8Xu5BsKZQa6A@jetpack.xpi [2018-08-05]
FF Extension: (Google Translator for Firefox) - C:\Users\Oem\AppData\Roaming\Mozilla\Firefox\Profiles\tz8ef4hd.default\Extensions\translator@zoli.bod.xpi [2018-02-03]
FF Extension: (Avast Online Security) - C:\Users\Oem\AppData\Roaming\Mozilla\Firefox\Profiles\tz8ef4hd.default\Extensions\wrc@avast.com.xpi [2018-05-29]
FF Extension: (Google Analytics Opt-out Add-on (by Google)) - C:\Users\Oem\AppData\Roaming\Mozilla\Firefox\Profiles\tz8ef4hd.default\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2017-03-31]
FF Extension: (Adblock Plus) - C:\Users\Oem\AppData\Roaming\Mozilla\Firefox\Profiles\tz8ef4hd.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-07-17]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi [2018-05-15]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
FF HKU\S-1-5-21-2448862905-1201201786-659708398-1001\...\Firefox\Extensions: [fdm_ffext@freedownloadmanager.org] - C:\Program Files (x86)\Free Download Manager\Firefox\Extension => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_30_0_0_134.dll [2018-07-11] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\Microsoft Silverlight\Office14\NPAUTHZ.DLL [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_134.dll [2018-07-11] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1231201.dll [2017-11-02] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-08-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-08-12] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2448862905-1201201786-659708398-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Oem\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR NewTab: Default -> Not-active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"
CHR Profile: C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default [2018-08-12]
CHR Extension: (Prezentace) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-28]
CHR Extension: (Dokumenty) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-17]
CHR Extension: (Disk Google) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-10]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2018-05-15]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2018-05-15]
CHR Extension: (YouTube) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-10]
CHR Extension: (Avast SafePrice) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-05-17]
CHR Extension: (Tabulky) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-17]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2018-08-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-05-26]
CHR Extension: (Avast Online Security) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-05-15]
CHR Extension: (Skype) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2018-01-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-05-15]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-05-15]
CHR Extension: (Gmail) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-10]
CHR Extension: (Chrome Media Router) - C:\Users\Oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-05-15]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2448862905-1201201786-659708398-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2448862905-1201201786-659708398-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmojkbhnkkphngknkmgccmlenfaelkd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2448862905-1201201786-659708398-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-11-27] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7780400 2018-06-21] (AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-05-08] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [322464 2018-06-21] (AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-05-08] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2018-02-15] ()
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2016-12-07] (BitRaider, LLC)
R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [8730648 2018-07-24] (AVAST Software)
S4 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1443520 2016-04-04] (Disc Soft Ltd)
R2 Hamachi2Svc; D:\mezi\Plakát\x64\hamachi-2.exe [3346856 2018-05-30] (LogMeIn Inc.)
U2 HiPatchService; d:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-10-10] (Hi-Rez Studios) [File not signed]
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-04-20] () [File not signed]
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21304 2017-09-28] (Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [604824 2018-07-17] (McAfee, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation)
R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [107832 2016-11-28] ()
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-04-12] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (DEVGURU Co., LTD.)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [187904 2017-09-28] (Microsoft Corporation) [File not signed]
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [1000824 2018-05-14] (McAfee, LLC.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16928 2018-05-14] (McAfee, LLC.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [87760 2018-05-14] (McAfee, Inc.)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [142440 2017-12-14] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105344 2018-04-12] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [197160 2018-06-21] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [229392 2018-06-21] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [201328 2018-06-21] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [346664 2018-06-21] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [59592 2018-06-21] (AVAST Software)
S3 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15360 2018-06-21] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [239680 2018-06-21] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46976 2018-06-21] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [159640 2018-06-21] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111872 2018-06-21] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [85968 2018-06-21] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1027728 2018-06-21] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [467064 2018-07-23] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [211160 2018-06-21] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [381584 2018-06-21] (AVAST Software)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2017-09-28] (BitRaider)
S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [269408 2018-02-23] (Bluestack System Inc. )
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-04-09] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-04-09] (Disc Soft Ltd)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2017-07-26] (Huawei Technologies Co., Ltd.)
S3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2016-11-11] (LogMeIn Inc.)
R1 HWiNFO32; C:\WINDOWS\SysWoW64\drivers\HWiNFO64A.SYS [27552 2017-02-08] (REALiX(tm))
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-04-20] (Huawei Technologies Co., Ltd.)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253664 2018-08-04] (Malwarebytes)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [111608 2017-02-14] (McAfee, Inc.)
R3 Neo_VPN; C:\WINDOWS\System32\drivers\Neo6_x64_VPN.sys [49424 2017-03-10] (SoftEther Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys [16936048 2017-11-09] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31168 2018-03-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [59240 2017-12-15] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [58816 2018-03-14] (NVIDIA Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-08-12 18:38 - 2018-08-12 18:38 - 000029944 _____ C:\Users\Oem\Desktop\FRST.txt
2018-08-12 18:37 - 2018-08-12 18:37 - 000029696 _____ C:\Users\Oem\AppData\Local\MSGBOX.EXE
2018-08-12 18:37 - 2018-08-12 18:37 - 000015327 _____ C:\Users\Oem\Desktop\LM.bat
2018-08-12 18:07 - 2018-08-12 18:07 - 007673187 _____ C:\Users\Oem\Desktop\Moderní včelař 2004 propolis.pdf
2018-08-12 15:06 - 2018-08-12 15:06 - 000347516 _____ C:\Users\Oem\Desktop\Spravna-praxe-v-chovu-vcel.pdf
2018-08-11 22:10 - 2018-08-11 22:10 - 000097960 _____ C:\Users\Oem\Downloads\Man-Up(0000264426)(1).srt
2018-08-11 22:09 - 2018-08-11 22:09 - 000100493 _____ C:\Users\Oem\Downloads\Man-Up(0000260267).srt
2018-08-11 22:09 - 2018-08-11 22:09 - 000097960 _____ C:\Users\Oem\Downloads\Man-Up(0000264426).srt
2018-08-11 22:09 - 2018-08-11 22:09 - 000094822 _____ C:\Users\Oem\Downloads\Man-Up(0000263587).srt
2018-08-11 18:57 - 2018-08-12 15:45 - 000010179 _____ C:\Users\Oem\Desktop\Včely výnos 2018.xlsx
2018-08-10 22:46 - 2018-08-10 22:53 - 000000000 ____D C:\Users\Oem\Desktop\Dovolené
2018-08-10 22:41 - 2018-08-10 22:48 - 000000000 ____D C:\Users\Oem\Desktop\zastupitelstvo
2018-08-05 17:34 - 2018-08-05 17:34 - 000031766 _____ C:\Users\Oem\Downloads\červenec.pdf
2018-08-04 12:26 - 2018-08-04 12:26 - 000000000 ____D C:\Users\Oem\Documents\The Movies
2018-08-04 12:26 - 2018-08-04 12:26 - 000000000 ____D C:\Users\Oem\AppData\Roaming\Lionhead Studios
2018-08-03 22:59 - 2018-08-10 21:54 - 000003140 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-03 22:59 - 2018-08-03 22:59 - 000000000 ____D C:\Users\Oem\ansel
2018-08-03 22:59 - 2018-03-14 15:05 - 000058816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2018-08-03 22:59 - 2017-12-15 04:03 - 000059240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2018-08-03 22:51 - 2018-08-03 22:51 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2018-08-03 22:51 - 2018-08-03 22:51 - 000002241 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2018-08-03 22:51 - 2018-08-03 22:51 - 000000000 ____D C:\Program Files\Google
2018-07-31 09:58 - 2018-07-31 09:58 - 000000812 _____ C:\Users\Public\Desktop\StarMaker.lnk
2018-07-31 09:58 - 2018-07-31 09:58 - 000000809 _____ C:\Users\Public\Desktop\The Movies Stunts & Effects.lnk
2018-07-31 09:58 - 2018-07-31 09:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Movies Stunts & Effects
2018-07-30 15:57 - 2018-07-30 17:43 - 1888054997 _____ C:\Users\All\Downloads\The Movies - Stunts and Effects - PC hra (strategie) CZ.rar
2018-07-30 09:34 - 2018-07-30 09:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\State of Decay - Year One Survival Edition
2018-07-24 14:04 - 2018-07-24 14:04 - 000000000 ____D C:\Users\All\AppData\Roaming\com.amanitadesign.chuchel
2018-07-24 14:04 - 2018-07-24 14:04 - 000000000 ____D C:\Users\All\AppData\Roaming\Amanita-Design.CHUCHEL
2018-07-23 13:38 - 2018-07-23 13:38 - 000000573 _____ C:\Users\Oem\Desktop\Chuchel.exe – zástupce.lnk
2018-07-23 13:29 - 2018-07-23 13:29 - 000000000 ____D C:\Users\Oem\AppData\Roaming\com.amanitadesign.chuchel
2018-07-23 13:29 - 2018-07-23 13:29 - 000000000 ____D C:\Users\Oem\AppData\Roaming\Amanita-Design.CHUCHEL
2018-07-23 13:28 - 2018-07-23 13:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CHUCHEL [GOG.com]
2018-07-22 20:05 - 2018-07-22 20:05 - 000051950 _____ C:\Users\Oem\Downloads\receipt_VP0000578168.pdf
2018-07-22 20:05 - 2018-07-22 20:05 - 000051950 _____ C:\Users\Oem\Downloads\receipt_VP0000578168(2).pdf
2018-07-22 20:05 - 2018-07-22 20:05 - 000051950 _____ C:\Users\Oem\Downloads\receipt_VP0000578168(1).pdf
2018-07-22 19:38 - 2018-07-22 19:38 - 000075183 _____ C:\Users\Oem\Downloads\pojistka_9901199740_2018-07-22_Cenek_Pavel (1).pdf
2018-07-22 19:37 - 2018-07-22 19:37 - 000075183 _____ C:\Users\Oem\Downloads\pojistka_9901199740_2018-07-22_Cenek_Pavel.pdf
2018-07-22 19:37 - 2018-07-22 19:37 - 000065612 _____ C:\Users\Oem\Downloads\9901199740_2018-07-22_Cenek_Pavel.pdf
2018-07-21 15:41 - 2018-07-21 21:37 - 000000000 ____D C:\WINDOWS\Minidump
2018-07-19 19:22 - 2018-07-19 19:22 - 000001060 _____ C:\Users\Public\Desktop\HiSuite.lnk
2018-07-19 19:22 - 2018-07-19 19:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite
2018-07-15 21:38 - 2018-07-15 21:38 - 000342263 _____ C:\Users\All\Downloads\008436.pdf
2018-07-15 21:38 - 2018-07-15 21:38 - 000342043 _____ C:\Users\All\Downloads\009313.pdf
2018-07-14 21:16 - 2018-07-14 21:16 - 000064906 _____ C:\Users\Oem\Downloads\Sicario(0000264090).srt
2018-07-14 15:48 - 2018-07-14 15:49 - 000000000 ____D C:\Users\All\Documents\Lords of the Fallen
2018-07-13 21:49 - 2018-07-13 21:49 - 000125166 _____ C:\Users\Oem\Downloads\Wag-the-Dog(0000006685).srt
2018-07-13 21:48 - 2018-07-13 21:48 - 000133420 _____ C:\Users\Oem\Downloads\Wag-the-dog(0000065782).srt
2018-07-13 21:48 - 2018-07-13 21:48 - 000133156 _____ C:\Users\Oem\Downloads\Wag-the-dog(0000089567).srt
2018-07-13 21:48 - 2018-07-13 21:48 - 000086061 _____ C:\Users\Oem\Downloads\Wag-The-Dog(0000016329).sub
2018-07-13 21:48 - 2018-07-13 21:48 - 000077020 _____ C:\Users\Oem\Downloads\Wag-the-Dog(0000282172).srt
2018-07-13 21:48 - 2018-07-13 21:48 - 000076331 _____ C:\Users\Oem\Downloads\Wag-the-Dog(0000161791).srt
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-08-12 18:38 - 2017-02-10 23:19 - 000000000 ____D C:\FRST
2018-08-12 18:37 - 2017-03-04 08:04 - 000000000 ____D C:\Users\Oem\Desktop\FRST-OlderVersion
2018-08-12 18:37 - 2017-02-10 23:18 - 002412544 _____ (Farbar) C:\Users\Oem\Desktop\FRST64.exe
2018-08-12 18:11 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-08-12 17:58 - 2018-05-21 05:58 - 000000000 ____D C:\Users\Oem\AppData\Local\LogMeIn Hamachi
2018-08-12 17:58 - 2018-02-22 21:39 - 000000000 ____D C:\Users\Oem\AppData\Local\AVAST Software
2018-08-12 17:58 - 2017-02-11 06:09 - 000000000 ____D C:\Users\Oem\AppData\LocalLow\Mozilla
2018-08-12 17:58 - 2016-04-13 20:12 - 000000000 ____D C:\Users\Oem\AppData\Roaming\Skype
2018-08-12 17:57 - 2017-11-23 19:26 - 000000000 ____D C:\ProgramData\NVIDIA
2018-08-12 16:14 - 2016-04-17 05:57 - 000000000 ____D C:\Users\Oem\AppData\Roaming\uTorrent
2018-08-12 15:57 - 2017-01-15 13:40 - 000000000 ____D C:\Users\Oem\Desktop\Manželská společenství, setkání, chlapi
2018-08-12 15:48 - 2017-09-05 17:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2018-08-12 15:48 - 2017-05-26 20:22 - 000000000 _____ C:\WINDOWS\SysWOW64\last.dump
2018-08-12 15:48 - 2016-05-13 17:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-08-12 15:48 - 2016-05-13 17:51 - 000000000 ____D C:\Program Files (x86)\Java
2018-08-12 15:47 - 2016-05-13 17:51 - 000098680 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2018-08-12 15:40 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-08-12 15:08 - 2017-02-10 20:24 - 000000000 ____D C:\Users\Oem\AppData\Local\JDownloader 2.0
2018-08-12 14:45 - 2018-05-21 05:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-08-11 15:36 - 2018-05-21 06:07 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2018-08-11 14:15 - 2018-05-21 06:07 - 000003542 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2018-08-11 07:09 - 2016-12-18 22:14 - 000000000 ____D C:\Users\Oem\Desktop\Fun
2018-08-11 06:30 - 2018-05-21 06:07 - 000003354 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2448862905-1201201786-659708398-1000
2018-08-11 06:30 - 2018-05-21 05:58 - 000002381 _____ C:\Users\Oem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-08-11 06:30 - 2016-07-30 05:56 - 000000000 ___RD C:\Users\Oem\OneDrive
2018-08-11 05:59 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-08-10 22:52 - 2017-02-11 09:09 - 000000000 ____D C:\Users\Oem\Desktop\ebook
2018-08-10 22:51 - 2017-01-15 18:09 - 000000000 ____D C:\Users\Oem\Desktop\ZSM
2018-08-10 22:44 - 2016-02-17 13:43 - 000000000 ____D C:\Users\Oem\Desktop\Daňová přiznání
2018-08-10 22:25 - 2017-02-04 08:29 - 000303594 _____ C:\Users\Oem\Desktop\fun 6-10.txt
2018-08-10 21:54 - 2018-05-22 20:59 - 000002382 _____ C:\WINDOWS\System32\Tasks\McAfee Remediation (Prepare)
2018-08-10 21:54 - 2018-05-21 06:07 - 000003816 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-08-10 21:54 - 2018-05-21 06:07 - 000003406 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2018-08-10 21:54 - 2018-05-21 06:07 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-08-10 21:54 - 2018-05-21 06:07 - 000003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-10 21:54 - 2018-05-21 06:07 - 000003194 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2018-08-10 21:54 - 2018-05-21 06:07 - 000003176 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-10 21:54 - 2018-05-21 06:07 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-08-10 21:54 - 2018-05-21 06:07 - 000002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-10 21:54 - 2018-05-21 06:07 - 000002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-10 21:54 - 2018-05-21 06:07 - 000002914 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-10 21:54 - 2018-05-21 06:07 - 000002856 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2448862905-1201201786-659708398-1001
2018-08-10 21:54 - 2018-05-21 06:07 - 000002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-10 21:54 - 2018-05-21 06:07 - 000002756 _____ C:\WINDOWS\System32\Tasks\AutoPico Daily Restart
2018-08-10 21:54 - 2018-05-21 06:07 - 000002746 _____ C:\WINDOWS\System32\Tasks\Správce úloh
2018-08-10 21:54 - 2018-05-21 06:07 - 000002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-10 21:54 - 2018-05-21 06:07 - 000002282 _____ C:\WINDOWS\System32\Tasks\iSCSIAgentAutoStartup
2018-08-10 21:54 - 2018-05-21 06:07 - 000002272 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Oem)
2018-08-10 21:54 - 2018-05-21 06:07 - 000002218 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2018-08-10 21:54 - 2018-05-21 06:07 - 000002174 _____ C:\WINDOWS\System32\Tasks\{C5A8F72F-C08D-45CB-939E-061AFDB7DD38}
2018-08-10 21:54 - 2018-05-21 06:07 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2018-08-10 19:23 - 2017-02-09 16:01 - 000000000 ____D C:\Users\Oem\AppData\Local\CrashDumps
2018-08-10 18:33 - 2016-11-01 20:30 - 000000733 _____ C:\Users\Oem\Desktop\Potter.txt
2018-08-10 05:58 - 2017-02-10 23:55 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-08-10 05:48 - 2016-03-04 17:12 - 000001159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-08-10 05:48 - 2016-03-04 17:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-08-07 07:51 - 2018-05-21 05:58 - 000000000 ____D C:\Users\All\AppData\Local\LogMeIn Hamachi
2018-08-07 07:50 - 2018-05-08 08:19 - 000000000 ____D C:\Users\All\AppData\Local\AVAST Software
2018-08-07 07:49 - 2017-02-11 09:47 - 000000000 ____D C:\Users\All\AppData\LocalLow\Mozilla
2018-08-07 07:42 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-08-07 07:42 - 2016-03-05 15:58 - 000000000 ____D C:\Users\Oem\AppData\Local\ElevatedDiagnostics
2018-08-06 07:30 - 2018-05-21 06:07 - 000004284 _____ C:\WINDOWS\System32\Tasks\Avast TUNEUP Update
2018-08-04 21:05 - 2018-02-17 07:36 - 000000000 ____D C:\FFOutput
2018-08-04 06:02 - 2018-05-21 05:53 - 001956628 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-08-04 06:02 - 2018-04-12 17:51 - 000808346 _____ C:\WINDOWS\system32\perfh005.dat
2018-08-04 06:02 - 2018-04-12 17:51 - 000186590 _____ C:\WINDOWS\system32\perfc005.dat
2018-08-04 06:02 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2018-08-04 05:56 - 2018-06-01 21:23 - 000253664 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2018-08-04 05:56 - 2018-05-21 06:07 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-08-04 05:56 - 2017-11-23 19:26 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-08-04 05:55 - 2018-04-11 23:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-08-03 23:00 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-08-03 22:59 - 2018-05-21 05:58 - 000000000 ____D C:\Users\Oem
2018-08-03 22:59 - 2017-11-23 19:26 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-08-03 22:59 - 2017-11-23 19:26 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-08-03 22:53 - 2018-07-10 15:40 - 000000000 ____D C:\ProgramData\Packages
2018-07-30 16:05 - 2016-08-01 09:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Movies
2018-07-30 16:05 - 2016-07-16 18:41 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-07-28 20:15 - 2017-02-08 18:13 - 000000000 ____D C:\Users\All\AppData\Local\CrashDumps
2018-07-24 21:35 - 2018-05-21 05:58 - 000000000 ____D C:\Users\All\AppData\Local\Microsoft Help
2018-07-24 18:24 - 2018-05-08 06:27 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2018-07-23 19:13 - 2017-02-10 23:54 - 000467064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-07-23 11:45 - 2016-03-22 20:00 - 000000000 ____D C:\Users\Oem\Documents\Knihovna Calibre
2018-07-21 21:40 - 2016-07-24 21:52 - 000000000 ____D C:\Users\Oem\AppData\Roaming\Factorio
2018-07-21 15:41 - 2016-12-20 20:13 - 000000000 ____D C:\Program Files (x86)\McAfee
2018-07-19 19:22 - 2017-10-10 22:06 - 000000000 ____D C:\Users\Oem\AppData\Local\Hisuite
2018-07-19 19:22 - 2017-10-10 22:06 - 000000000 ____D C:\Program Files (x86)\HiSuite
2018-07-19 10:11 - 2018-06-01 21:23 - 000152688 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2018-07-18 06:43 - 2018-05-21 05:58 - 000002381 _____ C:\Users\All\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-07-18 06:43 - 2016-07-30 05:42 - 000000000 ___RD C:\Users\All\OneDrive
==================== Files in the root of some directories =======
2017-06-08 19:01 - 2017-06-08 19:06 - 000004608 _____ () C:\Users\Oem\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-01-26 20:33 - 2017-01-26 20:33 - 000000000 ___SH () C:\Users\Oem\AppData\Local\LumaEmu
2018-08-12 18:37 - 2018-08-12 18:37 - 000029696 _____ () C:\Users\Oem\AppData\Local\MSGBOX.EXE
2018-04-15 21:41 - 2018-04-15 21:41 - 000000017 _____ () C:\Users\Oem\AppData\Local\resmon.resmoncfg
Some files in TEMP:
====================
2018-08-12 15:45 - 2018-08-12 15:45 - 001906040 _____ (Oracle Corporation) C:\Users\Oem\AppData\Local\Temp\jre-8u181-windows-au.exe
2018-08-10 18:52 - 2018-08-10 18:52 - 000040448 ____N () C:\Users\Oem\AppData\Local\Temp\proxy_vole5670474629202389694.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-05-21 05:51
==================== End of FRST.txt ============================
Stiahni AdwCleaner: