VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

prevence, děkuji

https://forum.viry.cz:443/viewtopic.php?t=155569

Stránka 1 z 1

prevence, děkuji

Napsal: 17 úno 2019 00:38
od llucaa
Logfile of random's system information tool 1.10 (written by random/random)
Run by xLab at 2019-02-17 00:13:00
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 275 GB (41%) free of 670 GB
Total RAM: 2988 MB (40% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:13:23, on 17.2.2019
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19267)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Lenovo\Energy Management\Energy Management.exe
C:\Program Files\Lenovo\Energy Management\utility.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Blackmagic Design\Blackmagic Desktop Video\BMDStreamingServer.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Blackmagic Design\Blackmagic Desktop Video\CheckVersionPCI.exe
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\EPSON Software\Event Manager\EEventManager.exe
C:\Program Files\ZaagTech\zinFrameServer\zinFrameServer.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\System32\StikyNot.exe
C:\Program Files\Sony\Xperia Companion\XperiaCompanionAgent.exe
C:\Program Files\HP\HP DeskJet 5000 series\Bin\ScanToPCActivationApp.exe
C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\PROGRA~1\HP\HPDESK~2\Bin\HPNETW~1.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Opera\57.0.3098.116\opera.exe
C:\Program Files\Opera\57.0.3098.116\opera_crashreporter.exe
C:\Program Files\Opera\57.0.3098.116\opera.exe
C:\Program Files\Opera\57.0.3098.116\opera.exe
C:\Program Files\Opera\57.0.3098.116\opera.exe
C:\Program Files\Opera\57.0.3098.116\opera.exe
C:\Program Files\Opera\57.0.3098.116\opera.exe
C:\Program Files\Opera\57.0.3098.116\opera.exe
C:\Program Files\Opera\57.0.3098.116\opera.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\McAfee Security Scan\3.11.961\SSScheduler.exe
C:\Program Files\Opera\57.0.3098.116\opera.exe
C:\Program Files\Opera\57.0.3098.116\opera.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\xLab\AppData\Local\Temp\scoped_dir3092_15660\RSIT.exe
C:\Program Files\trend micro\xLab.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: 0.0.0.1 mssplus.mcafee.com
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [Energy Management] C:\Program Files\Lenovo\Energy Management\Energy Management.exe
O4 - HKLM\..\Run: [EnergyUtility] C:\Program Files\Lenovo\Energy Management\Utility.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IntelPAN] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray
O4 - HKLM\..\Run: [Blackmagic Streaming Server] C:\Program Files\Blackmagic Design\Blackmagic Desktop Video\BMDStreamingServer.exe
O4 - HKLM\..\Run: [Blackmagic CheckVersion PCI] C:\Program Files\Blackmagic Design\Blackmagic Desktop Video\CheckVersionPCI.exe
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Adobe_ID0ENQBO] C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [IgfxTray] "C:\Windows\system32\igfxtray.exe"
O4 - HKLM\..\Run: [HotKeysCmds] "C:\Windows\system32\hkcmd.exe"
O4 - HKLM\..\Run: [Persistence] "C:\Windows\system32\igfxpers.exe"
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [zinFrameServerV3] C:\Program Files\ZaagTech\zinFrameServer\zinFrameServer.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateCore.exe
O4 - HKCU\..\Run: [EPSON SX420W Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGCE.EXE /FU "C:\Windows\TEMP\E_SCDE.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [cfweatherStation] C:\Weather\Weather.exe
O4 - HKCU\..\Run: [CCleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTOS
O4 - HKCU\..\Run: [EPSON SX420W Series (kopie 1)] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGCE.EXE /FU "C:\Windows\TEMP\E_SEDD3.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [AvastBrowserAutoLaunch_C84FD93AA71ABAE9AE341A7F78175912] "C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe" --check-run=src=logon --onboarding-at-startup
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKCU\..\Run: [XperiaCompanionAgent] "C:\Program Files\Sony\Xperia Companion\XperiaCompanionAgent.exe"
O4 - HKCU\..\Run: [HP DeskJet 5000 (NET)] "C:\Program Files\HP\HP DeskJet 5000 series\Bin\ScanToPCActivationApp.exe" -deviceID "TH8AU6G0X9:NW" -scfn "HP DeskJet 5000 (NET)" -AutoStart 1
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-703911552-1951188683-890541146-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-703911552-1951188683-890541146-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'DefaultAppPool')
O4 - HKUS\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'DefaultAppPool')
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.11.961\SSScheduler.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{90698986-0963-4476-A5F3-6E3F050410B6}: NameServer = 0.0.0.0
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O20 - AppInit_DLLs: c:\windows\system32\nvinit.dll
O23 - Service: Adobe Version Cue CS4 - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Služba %1!s! Update (avast) (avast) - AVAST Software - C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba %1!s! Update (avastm) (avastm) - AVAST Software - C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Secure Browser Elevation Service (AvastSecureBrowserElevationService) - AVAST Software - C:\Program Files\AVAST Software\Browser\Application\71.0.1037.99\elevation_service.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\system32\IntelCpHeciSvc.exe
O23 - Service: Digital Wave Update Service (DigitalWave.Update.Service) - Digital Wave Ltd. - C:\Program Files\Common Files\DVDVideoSoft\lib\app_updater.exe
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google Inc. - C:\Program Files\Google\Chrome\Application\72.0.3626.109\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HuaweiHiSuiteService.exe - Unknown owner - C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.11.961\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: RtLedService Installer (RtLedService) - Realtek Semiconductor Corp. - C:\Program Files\Realtek\RtLED\RtLEDService.exe
O23 - Service: SInstalátor (ssinstall) - PS Media s.r.o. - C:\Windows\System32\ssins.exe
O23 - Service: Služba Xperia Companion (XperiaCompanionService) - Sony - C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe

--
End of file - 12268 bytes

=========Mozilla firefox=========

ProfilePath - C:\Users\xLab\AppData\Roaming\Mozilla\Firefox\Profiles\v0xbmwi7.default-1486683694487

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Users\xLab\Desktop\fds\vlc\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Users\xLab\Desktop\fds\vlc\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


C:\Program Files\Mozilla Firefox\components\
nsIQTScriptablePlugin.xpt

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2010-12-14 9951848]
"Energy Management"=C:\Program Files\Lenovo\Energy Management\Energy Management.exe [2010-12-15 8943520]
"EnergyUtility"=C:\Program Files\Lenovo\Energy Management\Utility.exe [2010-12-13 5117856]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-09-13 283160]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-12-22 2049320]
"IntelPAN"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2011-07-27 1210640]
"Blackmagic Streaming Server"=C:\Program Files\Blackmagic Design\Blackmagic Desktop Video\BMDStreamingServer.exe [2012-05-25 1103360]
"Blackmagic CheckVersion PCI"=C:\Program Files\Blackmagic Design\Blackmagic Desktop Video\CheckVersionPCI.exe [2012-05-25 26571944]
"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"Adobe Acrobat Speed Launcher"=C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2008-06-12 37232]
"Acrobat Assistant 8.0"=C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2008-06-11 640376]
"Adobe_ID0ENQBO"=C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE [2008-08-15 378224]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2016-11-14 1002984]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2014-01-29 145880]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2014-01-29 181208]
"Persistence"=C:\Windows\system32\igfxpers.exe [2014-01-29 189912]
"EEventManager"=C:\Program Files\Epson Software\Event Manager\EEventManager.exe [2014-06-10 1065024]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2019-01-17 222600]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-04-11 3672384]
"zinFrameServerV3"=C:\Program Files\ZaagTech\zinFrameServer\zinFrameServer.exe [2012-03-15 4971288]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Google Update"=C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateCore.exe [2018-12-27 605992]
"EPSON SX420W Series"=C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGCE.EXE [2009-09-14 200704]
"cfweatherStation"=C:\Weather\Weather.exe [2009-08-17 1189376]
"CCleaner"=C:\Program Files\CCleaner\CCleaner.exe [2018-10-23 14544792]
"EPSON SX420W Series (kopie 1)"=C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGCE.EXE [2009-09-14 200704]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 354304]
"AvastBrowserAutoLaunch_C84FD93AA71ABAE9AE341A7F78175912"=C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [2019-01-09 1822448]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner.exe [2018-10-23 14544792]
"XperiaCompanionAgent"=C:\Program Files\Sony\Xperia Companion\XperiaCompanionAgent.exe [2018-11-20 2136416]
"HP DeskJet 5000 (NET)"=C:\Program Files\HP\HP DeskJet 5000 series\Bin\ScanToPCActivationApp.exe [2018-04-19 2889352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2018-10-23 14544792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cfweatherStation]
C:\Weather\Weather.exe [2009-08-17 1189376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\xLab\AppData\Roaming\Seznam.cz\szninstall.exe -c []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\xLab\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe -q []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\xLab\AppData\Local\Google\Update\GoogleUpdate.exe [2016-04-12 154440]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe]
C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files\Seznam.cz\distribution\szninstall.exe -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~1\MCAFEE~1\311~1.309\SSSCHE~1.EXE []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.11.961\SSScheduler.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\windows\system32\nvinit.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\SYSTEM32\igfxdev.dll [2014-01-29 330752]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=myokent.dll
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"aux6"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"aux7"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"aux8"=wdmaud.drv
"aux9"=wdmaud.drv
"vidc.hdyc"=C:\PROGRA~1\BLACKM~1\BLACKM~2\BMDCOD~1.DLL
"vidc.v210"=C:\PROGRA~1\BLACKM~1\BLACKM~2\BMDCOD~1.DLL
"vidc.r210"=C:\PROGRA~1\BLACKM~1\BLACKM~2\BMDCOD~1.DLL
"VIDC.UYVY"=msyuv.dll
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "C:\Program Files\Adobe\Adobe Dreamweaver CS4\dreamweaver.exe","%1"

======List of files/folders created in the last 1 month======

2019-02-16 12:40:20 ----D---- C:\ProgramData\McAfee Security Scan
2019-02-12 20:05:53 ----A---- C:\Windows\system32\mshtml.dll
2019-02-12 20:05:52 ----A---- C:\Windows\system32\ieframe.dll
2019-02-12 20:05:51 ----A---- C:\Windows\system32\wininet.dll
2019-02-12 20:05:51 ----A---- C:\Windows\system32\msi.dll
2019-02-12 20:05:51 ----A---- C:\Windows\system32\lsass.exe
2019-02-12 20:05:51 ----A---- C:\Windows\system32\lsasrv.dll
2019-02-12 20:05:51 ----A---- C:\Windows\system32\jscript9.dll
2019-02-12 20:05:50 ----A---- C:\Windows\system32\urlmon.dll
2019-02-12 20:05:50 ----A---- C:\Windows\system32\sspisrv.dll
2019-02-12 20:05:50 ----A---- C:\Windows\system32\sspicli.dll
2019-02-12 20:05:50 ----A---- C:\Windows\system32\secur32.dll
2019-02-12 20:05:50 ----A---- C:\Windows\system32\msjet40.dll
2019-02-12 20:05:50 ----A---- C:\Windows\system32\iertutil.dll
2019-02-12 20:05:50 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2019-02-12 20:05:49 ----A---- C:\Windows\system32\win32k.sys
2019-02-12 20:05:49 ----A---- C:\Windows\system32\termsrv.dll
2019-02-12 20:05:49 ----A---- C:\Windows\system32\ntoskrnl.exe
2019-02-12 20:05:49 ----A---- C:\Windows\system32\ntkrnlpa.exe
2019-02-12 20:05:49 ----A---- C:\Windows\system32\msrd2x40.dll
2019-02-12 20:05:49 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2019-02-12 20:05:48 ----A---- C:\Windows\system32\mf3216.dll
2019-02-12 20:05:48 ----A---- C:\Windows\system32\itss.dll
2019-02-12 20:05:48 ----A---- C:\Windows\system32\iedkcs32.dll
2019-02-12 20:05:48 ----A---- C:\Windows\system32\drivers\srv2.sys
2019-02-12 20:05:48 ----A---- C:\Windows\system32\consent.exe
2019-02-12 20:05:47 ----A---- C:\Windows\system32\ntdll.dll
2019-02-12 20:05:47 ----A---- C:\Windows\system32\halmacpi.dll
2019-02-12 20:05:47 ----A---- C:\Windows\system32\halacpi.dll
2019-02-12 20:05:47 ----A---- C:\Windows\system32\hal.dll
2019-02-12 20:05:47 ----A---- C:\Windows\system32\drivers\srvnet.sys
2019-02-12 20:05:47 ----A---- C:\Windows\system32\drivers\srv.sys
2019-02-12 20:05:47 ----A---- C:\Windows\system32\drivers\hidparse.sys
2019-02-12 20:05:46 ----A---- C:\Windows\system32\vbscript.dll
2019-02-12 20:05:46 ----A---- C:\Windows\system32\sscore.dll
2019-02-12 20:05:46 ----A---- C:\Windows\system32\srvsvc.dll
2019-02-12 20:05:46 ----A---- C:\Windows\system32\oleaut32.dll
2019-02-12 20:05:46 ----A---- C:\Windows\system32\msrd3x40.dll
2019-02-12 20:05:46 ----A---- C:\Windows\system32\msimg32.dll
2019-02-12 20:05:46 ----A---- C:\Windows\system32\mshtmlmedia.dll
2019-02-12 20:05:46 ----A---- C:\Windows\system32\msfeeds.dll
2019-02-12 20:05:46 ----A---- C:\Windows\system32\jscript.dll
2019-02-12 20:05:45 ----A---- C:\Windows\system32\ole32.dll
2019-02-12 20:05:45 ----A---- C:\Windows\system32\drivers\videoprt.sys
2019-02-12 20:05:44 ----A---- C:\Windows\system32\ieui.dll
2019-02-12 20:05:44 ----A---- C:\Windows\system32\ieapfltr.dll
2019-02-12 20:05:44 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2019-02-12 20:05:43 ----A---- C:\Windows\system32\webcheck.dll
2019-02-12 20:05:43 ----A---- C:\Windows\system32\rpcrt4.dll
2019-02-12 20:05:43 ----A---- C:\Windows\system32\msiexec.exe
2019-02-12 20:05:43 ----A---- C:\Windows\system32\mshtmled.dll
2019-02-12 20:05:43 ----A---- C:\Windows\system32\kerberos.dll
2019-02-12 20:05:43 ----A---- C:\Windows\system32\jscript9diag.dll
2019-02-12 20:05:42 ----A---- C:\Windows\system32\smss.exe
2019-02-12 20:05:42 ----A---- C:\Windows\system32\rpcss.dll
2019-02-12 20:05:42 ----A---- C:\Windows\system32\occache.dll
2019-02-12 20:05:42 ----A---- C:\Windows\system32\msv1_0.dll
2019-02-12 20:05:42 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2019-02-12 20:05:42 ----A---- C:\Windows\system32\msrating.dll
2019-02-12 20:05:42 ----A---- C:\Windows\system32\jsproxy.dll
2019-02-12 20:05:42 ----A---- C:\Windows\system32\dxtrans.dll
2019-02-12 20:05:42 ----A---- C:\Windows\system32\dxtmsft.dll
2019-02-12 20:05:42 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2019-02-12 20:05:42 ----A---- C:\Windows\system32\drivers\hidclass.sys
2019-02-12 20:05:42 ----A---- C:\Windows\system32\advapi32.dll
2019-02-12 20:05:41 ----A---- C:\Windows\system32\srcore.dll
2019-02-12 20:05:41 ----A---- C:\Windows\system32\schannel.dll
2019-02-12 20:05:41 ----A---- C:\Windows\system32\msihnd.dll
2019-02-12 20:05:41 ----A---- C:\Windows\system32\MshtmlDac.dll
2019-02-12 20:05:41 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-02-12 20:05:41 ----A---- C:\Windows\system32\inseng.dll
2019-02-12 20:05:41 ----A---- C:\Windows\system32\ieUnatt.exe
2019-02-12 20:05:41 ----A---- C:\Windows\system32\ieetwproxystub.dll
2019-02-12 20:05:41 ----A---- C:\Windows\system32\ie4uinit.exe
2019-02-12 20:05:41 ----A---- C:\Windows\system32\authui.dll
2019-02-12 20:05:40 ----A---- C:\Windows\system32\wdigest.dll
2019-02-12 20:05:40 ----A---- C:\Windows\system32\TSpkg.dll
2019-02-12 20:05:40 ----A---- C:\Windows\system32\srclient.dll
2019-02-12 20:05:40 ----A---- C:\Windows\system32\rpchttp.dll
2019-02-12 20:05:40 ----A---- C:\Windows\system32\ncrypt.dll
2019-02-12 20:05:40 ----A---- C:\Windows\system32\itircl.dll
2019-02-12 20:05:40 ----A---- C:\Windows\system32\iesetup.dll
2019-02-12 20:05:40 ----A---- C:\Windows\system32\iernonce.dll
2019-02-12 20:05:40 ----A---- C:\Windows\system32\ieetwcollector.exe
2019-02-12 20:05:40 ----A---- C:\Windows\system32\drivers\viac7.sys
2019-02-12 20:05:40 ----A---- C:\Windows\system32\drivers\processr.sys
2019-02-12 20:05:40 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2019-02-12 20:05:40 ----A---- C:\Windows\system32\drivers\intelppm.sys
2019-02-12 20:05:40 ----A---- C:\Windows\system32\drivers\amdk8.sys
2019-02-12 20:05:40 ----A---- C:\Windows\system32\bcrypt.dll
2019-02-12 20:05:40 ----A---- C:\Windows\system32\appidapi.dll
2019-02-12 20:05:40 ----A---- C:\Windows\system32\apisetschema.dll
2019-02-12 20:05:39 ----A---- C:\Windows\system32\setbcdlocale.dll
2019-02-12 20:05:39 ----A---- C:\Windows\system32\rstrui.exe
2019-02-12 20:05:39 ----A---- C:\Windows\system32\drivers\hidusb.sys
2019-02-12 20:05:39 ----A---- C:\Windows\system32\drivers\appid.sys
2019-02-12 20:05:39 ----A---- C:\Windows\system32\drivers\amdppm.sys
2019-02-12 20:05:39 ----A---- C:\Windows\system32\csrsrv.dll
2019-02-12 20:05:39 ----A---- C:\Windows\system32\cryptbase.dll
2019-02-12 20:05:39 ----A---- C:\Windows\system32\credssp.dll
2019-02-12 20:05:39 ----A---- C:\Windows\system32\appinfo.dll
2019-02-12 20:05:39 ----A---- C:\Windows\system32\appidsvc.dll
2019-02-12 20:05:39 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2019-02-12 20:05:38 ----A---- C:\Windows\system32\msaudite.dll
2019-02-12 20:05:38 ----A---- C:\Windows\system32\comcat.dll
2019-02-12 20:05:38 ----A---- C:\Windows\system32\auditpol.exe
2019-02-12 20:05:38 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2019-02-12 20:05:38 ----A---- C:\Windows\system32\adtschema.dll
2019-02-12 20:05:36 ----A---- C:\Windows\system32\oleres.dll
2019-02-12 20:05:36 ----A---- C:\Windows\system32\msobjs.dll
2019-02-12 20:05:35 ----A---- C:\Windows\system32\msimsg.dll
2019-02-12 20:05:35 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2019-01-22 00:52:38 ----D---- C:\Users\xLab\AppData\Roaming\Visan
2019-01-22 00:52:38 ----D---- C:\Users\xLab\AppData\Roaming\HP Photo Creations
2019-01-21 22:27:15 ----D---- C:\Users\xLab\AppData\Roaming\HPPSDr

======List of files/folders modified in the last 1 month======

2019-02-17 00:13:13 ----D---- C:\Windows\Prefetch
2019-02-17 00:13:05 ----D---- C:\Program Files\trend micro
2019-02-17 00:12:42 ----D---- C:\Windows\Temp
2019-02-16 23:53:34 ----SHD---- C:\Windows\Installer
2019-02-16 12:41:02 ----D---- C:\Program Files\McAfee Security Scan
2019-02-16 12:40:23 ----HD---- C:\ProgramData
2019-02-15 18:41:46 ----D---- C:\Windows\system32\Tasks
2019-02-15 18:41:46 ----D---- C:\Program Files\Opera
2019-02-15 02:44:16 ----D---- C:\Windows\rescache
2019-02-15 02:04:07 ----SHD---- C:\Config.Msi
2019-02-15 02:01:55 ----D---- C:\Windows
2019-02-15 01:59:49 ----D---- C:\Windows\System32
2019-02-14 22:39:15 ----D---- C:\Windows\Microsoft.NET
2019-02-14 22:38:21 ----RSD---- C:\Windows\assembly
2019-02-14 22:17:56 ----D---- C:\Windows\inf
2019-02-14 22:17:12 ----D---- C:\Windows\debug
2019-02-14 22:15:03 ----A---- C:\Windows\system32\PerfStringBackup.INI
2019-02-14 22:13:55 ----D---- C:\Weather
2019-02-14 22:08:45 ----D---- C:\Windows\winsxs
2019-02-14 22:06:01 ----D---- C:\Windows\system32\config
2019-02-14 22:04:20 ----D---- C:\Program Files\CCleaner
2019-02-14 21:58:07 ----D---- C:\Windows\system32\sk-SK
2019-02-14 21:58:07 ----D---- C:\Windows\system32\drivers\en-US
2019-02-14 21:58:07 ----D---- C:\Windows\system32\drivers\de-DE
2019-02-14 21:58:07 ----D---- C:\Windows\system32\drivers
2019-02-14 21:58:07 ----D---- C:\Windows\system32\de-DE
2019-02-14 21:58:07 ----D---- C:\Program Files\Internet Explorer
2019-02-14 21:58:06 ----D---- C:\Windows\system32\en-US
2019-02-14 21:58:06 ----D---- C:\Windows\system32\cs-CZ
2019-02-14 21:58:01 ----D---- C:\Windows\system32\DriverStore
2019-02-13 19:33:13 ----D---- C:\Windows\system32\MRT
2019-02-13 19:15:31 ----AC---- C:\Windows\system32\MRT.exe
2019-02-13 19:10:14 ----D---- C:\Windows\system32\catroot2
2019-02-13 19:01:20 ----SHD---- C:\System Volume Information
2019-02-13 00:56:38 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2019-02-13 00:56:32 ----D---- C:\Windows\system32\Macromed
2019-02-04 19:21:25 ----D---- C:\Windows\Minidump
2019-02-04 01:59:07 ----D---- C:\Program Files\Microsoft Silverlight
2019-01-22 00:53:30 ----D---- C:\Windows\Tasks
2019-01-22 00:53:28 ----RD---- C:\Program Files
2019-01-21 22:28:57 ----D---- C:\ProgramData\HP
2019-01-21 22:23:43 ----D---- C:\Program Files\HP

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswArDisk;aswArDisk; C:\Windows\system32\drivers\aswArDisk.sys [2019-01-17 34680]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2019-01-17 72992]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-09-13 353304]
R0 LHDmgr;LHDmgr; C:\Windows\System32\DRIVERS\LhdX86.sys [2010-01-15 32352]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2016-08-25 252808]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2013-12-26 27936]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 173288]
R1 aswHdsKe;aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [2019-01-17 183160]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2019-01-17 40888]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2019-01-17 401832]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 389632]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-04-24 242240]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2019-01-18 138272]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2015-11-05 117760]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\Windows\system32\DRIVERS\AcpiVpc.sys [2010-10-25 23136]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2014-01-29 3768320]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2010-12-14 3340968]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 269824]
R3 MEI;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECI.sys [2010-10-19 41088]
R3 NETwNs32;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 32 Bit; C:\Windows\system32\DRIVERS\NETwNs32.sys [2011-08-03 7517696]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2016-08-25 105696]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2010-11-30 226408]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 9216]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-12-22 1321904]
R3 unisofthid;Universal Software HID device; C:\Windows\system32\DRIVERS\unisofthid.sys [2009-05-24 14848]
S0 AVPCIFilter;Avatron PCI Bus Device Filter; C:\Windows\system32\DRIVERS\AVPCIFilter.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 AirDisplay;Air Display Support; C:\Windows\system32\DRIVERS\AVVideoCard.sys [2012-09-24 14784]
S3 AirDisplayMirror;Air Display Mirror Support; C:\Windows\system32\DRIVERS\AVVideoCardMirror.sys [2012-09-24 14784]
S3 AirDisplayWDDM;AirDisplayWDDM; C:\Windows\system32\DRIVERS\AVWDDMMiniPort.sys [2012-09-24 35776]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2018-02-10 52928]
S3 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2019-01-17 169216]
S3 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriver.sys [2019-01-17 187248]
S3 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsh.sys [2019-01-17 158288]
S3 aswblog;aswblog; C:\Windows\system32\drivers\aswblog.sys [2019-01-17 255416]
S3 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniv.sys [2019-01-17 51320]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2019-01-17 42928]
S3 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2019-01-17 101176]
S3 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2019-01-17 785776]
S3 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2019-01-17 163344]
S3 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2019-01-17 310400]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 94208]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys []
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys []
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys []
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys []
S3 ew_usbccgpfilter;HwHandSet_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbccgpfilter.sys [2017-07-26 15360]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2010-09-28 57800]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2010-09-28 72520]
S3 ggflt;SOMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2018-04-14 13440]
S3 ggsomc;SOMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsomc.sys [2018-04-14 27264]
S3 grmnusb;grmnusb; C:\Windows\system32\drivers\grmnusb.sys [2012-04-18 15720]
S3 HTCAND32;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2009-10-26 25088]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2012-12-07 23040]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\Windows\system32\DRIVERS\ewdcsc.sys []
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys []
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 Ser2plx86;Prolific Serial port WDF driver; C:\Windows\system32\DRIVERS\ser2pl.sys [2015-10-07 160272]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2018-02-10 51904]
S3 SPUVCbv;SPUVCb Driver Service; C:\Windows\System32\Drivers\usbvideo.sys [2013-07-12 146816]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Streaming;Blackmagic Streaming Driver; C:\Windows\system32\DRIVERS\blackmagicusb.sys [2012-05-25 9856]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 15872]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2018-02-01 45056]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2017-07-26 28160]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-12-16 83984]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2019-01-17 309480]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DigitalWave.Update.Service;Digital Wave Update Service; C:\Program Files\Common Files\DVDVideoSoft\lib\app_updater.exe [2017-03-22 440808]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [2009-09-14 153600]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [2009-09-14 121856]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2011-07-27 936208]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-09-13 13336]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2016-11-14 103696]
R2 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
R2 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-10-29 662816]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-12-26 1364256]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [2012-12-07 167424]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2011-07-27 481552]
R2 RtLedService;RtLedService Installer; C:\Program Files\Realtek\RtLED\RtLEDService.exe [2010-09-30 311296]
R2 ssinstall;SInstalátor; C:\Windows\System32\ssins.exe [2017-06-16 4696960]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-07-27 227600]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2016-11-14 280864]
S2 916e5338;Install Supporter; c:\progra~1\AssistantSvc.dll,service []
S2 avast;Služba %1!s! Update (avast); C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-10-21 164984]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2018-01-09 153168]
S2 HuaweiHiSuiteService.exe;HuaweiHiSuiteService.exe; C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe [2017-07-26 155848]
S3 Adobe Version Cue CS4;Adobe Version Cue CS4; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [2008-08-15 284016]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2019-02-13 335872]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2019-01-17 6300272]
S3 avastm;Služba %1!s! Update (avastm); C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-10-21 164984]
S3 AvastSecureBrowserElevationService;Avast Secure Browser Elevation Service; C:\Program Files\AVAST Software\Browser\Application\71.0.1037.99\elevation_service.exe [2019-01-09 390552]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\system32\IntelCpHeciSvc.exe [2014-01-29 279000]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-03-12 655624]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files\Google\Chrome\Application\72.0.3626.109\elevation_service.exe [2019-02-13 1043440]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2018-01-09 153168]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-06-06 136120]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2019-01-26 104960]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.11.961\McCHSvc.exe [2019-02-08 322792]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2018-05-01 174544]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2018-03-26 47200]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]

-----------------EOF-----------------

Re: prevence, děkuji

Napsal: 17 úno 2019 03:41
od Diallix
Dobry den.

:arrow: Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.

Re: prevence, děkuji

Napsal: 17 úno 2019 19:19
od llucaa
# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-02-15.6 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-17-2019
# Duration: 00:00:30
# OS: Windows 7 Ultimate
# Cleaned: 13
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\ProgramData\SSAVENEWAAPPZ
Deleted C:\ProgramData\COUPEXTEENSIIONI
Deleted C:\Program Files\Seznam.cz
Deleted C:\Users\xLab\AppData\Local\Seznam.cz
Deleted C:\Users\xLab\AppData\Roaming\Seznam.cz

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKU\S-1-5-21-703911552-1951188683-890541146-1003\Software\Conduit
Deleted HKU\S-1-5-21-703911552-1951188683-890541146-1003\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Deleted HKU\S-1-5-21-703911552-1951188683-890541146-1003\Software\Sunisoft
Deleted HKCU\Software\Sunisoft
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\cz.seznam.software.szndesktop
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\cz.seznam.software.autoupdate
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\seznam-listicka-distribuce
Deleted HKCU\Software\Seznam.cz

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2328 octets] - [17/02/2019 14:56:04]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Re: prevence, děkuji

Napsal: 17 úno 2019 19:26
od Diallix
Preskenujte pocitac s FRST - navod tu: https://forum.viry.cz/viewtopic.php?f=24&t=132509, skopirujte FRST.log + Addition log sem.

Re: prevence, děkuji

Napsal: 17 úno 2019 21:28
od llucaa
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-02-2019
Ran by xLab (administrator) on XLAB-PC (17-02-2019 21:13:30)
Running from C:\Users\xLab\Desktop
Loaded Profiles: xLab & UpdatusUser (Available Profiles: xLab & UpdatusUser & DefaultAppPool)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: "C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe" -- "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Digital Wave Ltd.) C:\Program Files\Common Files\DVDVideoSoft\lib\app_updater.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
() C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtLED\RtLEDService.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtLED\RtLED.exe
(PS Media s.r.o.) C:\Windows\System32\ssins.exe
(Sony) C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
() C:\Program Files\Blackmagic Design\Blackmagic Desktop Video\BMDStreamingServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Malwarebytes) C:\Users\xLab\Desktop\adwcleaner_7.2.7.0.exe
(Blackmagic Design) C:\Program Files\Blackmagic Design\Blackmagic Desktop Video\CheckVersionPCI.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON Software\Event Manager\EEventManager.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(ZaagTech Co., Ltd.) C:\Program Files\ZaagTech\zinFrameServer\zinFrameServer.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Sony) C:\Program Files\Sony\Xperia Companion\XperiaCompanionAgent.exe
(HP Inc.) C:\Program Files\HP\HP DeskJet 5000 series\Bin\ScanToPCActivationApp.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.961\SSScheduler.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(HP Inc.) C:\Program Files\HP\HP DeskJet 5000 series\Bin\HPNetworkCommunicatorCom.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Opera Software) C:\Program Files\Opera\58.0.3135.65\opera.exe
(Opera Software) C:\Program Files\Opera\58.0.3135.65\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\58.0.3135.65\opera.exe
(Opera Software) C:\Program Files\Opera\58.0.3135.65\opera.exe
(Opera Software) C:\Program Files\Opera\58.0.3135.65\opera.exe
(Opera Software) C:\Program Files\Opera\58.0.3135.65\opera.exe
(Opera Software) C:\Program Files\Opera\58.0.3135.65\opera.exe
(Opera Software) C:\Program Files\Opera\58.0.3135.65\opera.exe
(Opera Software) C:\Program Files\Opera\58.0.3135.65\opera.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(Opera Software) C:\Program Files\Opera\58.0.3135.65\opera.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
(Opera Software) C:\Program Files\Opera\58.0.3135.65\opera.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9951848 2010-12-14] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Energy Management] => C:\Program Files\Lenovo\Energy Management\Energy Management.exe [8943520 2010-12-15] (Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files\Lenovo\Energy Management\Utility.exe [5117856 2010-12-13] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-13] (Intel Corporation -> Intel Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2049320 2010-12-22] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [IntelPAN] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1210640 2011-07-27] (Intel Corporation - Mobile Wireless Group -> Intel(R) Corporation)
HKLM\...\Run: [Blackmagic Streaming Server] => C:\Program Files\Blackmagic Design\Blackmagic Desktop Video\BMDStreamingServer.exe [1103360 2012-05-25] () [File not signed]
HKLM\...\Run: [Blackmagic CheckVersion PCI] => C:\Program Files\Blackmagic Design\Blackmagic Desktop Video\CheckVersionPCI.exe [26571944 2012-05-25] (Blackmagic Design, Inc. -> Blackmagic Design)
HKLM\...\Run: [AdobeCS4ServiceManager] => C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [37232 2008-06-12] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [640376 2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM\...\Run: [Adobe_ID0ENQBO] => C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4Tray.exe [378224 2008-08-15] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1002984 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [1065024 2014-06-10] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [222600 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3672384 2012-04-11] (DT Soft Ltd -> DT Soft Ltd)
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\Run: [zinFrameServerV3] => C:\Program Files\ZaagTech\zinFrameServer\zinFrameServer.exe [4971288 2012-03-15] (Zaag Technology Co.,Ltd -> ZaagTech Co., Ltd.)
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\Run: [Google Update] => C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateCore.exe [605992 2018-12-27] (Google Inc -> Google Inc.)
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\Run: [EPSON SX420W Series] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGCE.EXE [200704 2009-09-14] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\Run: [cfweatherStation] => C:\Weather\Weather.exe [1189376 2009-08-17] (weather-life.com)
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner.exe [14544792 2018-10-23] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\Run: [EPSON SX420W Series (kopie 1)] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGCE.EXE [200704 2009-09-14] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\Run: [AvastBrowserAutoLaunch_C84FD93AA71ABAE9AE341A7F78175912] => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1822448 2019-01-09] (AVAST Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [14544792 2018-10-23] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\Run: [XperiaCompanionAgent] => C:\Program Files\Sony\Xperia Companion\XperiaCompanionAgent.exe [2136416 2018-11-20] (Sony Mobile Communications AB -> Sony)
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\Run: [HP DeskJet 5000 (NET)] => C:\Program Files\HP\HP DeskJet 5000 series\Bin\ScanToPCActivationApp.exe [2889352 2018-04-19] (Hewlett Packard -> HP Inc.)
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\MountPoints2: {3ca08d37-fd07-11e3-9ca0-f0def19adff5} - F:\AutoRun.exe
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\MountPoints2: {58c7057c-1504-11e9-9dd0-f0def19adff5} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\MountPoints2: {80fb3345-53a2-11e3-bb0e-f0def19adff5} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\MountPoints2: {8c41d852-5bb5-11e5-99b0-f0def19adff5} - H:\startme.exe
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\MountPoints2: {fc86475c-20d1-11e7-9e27-f0def19adff5} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\MountPoints2: {fc864766-20d1-11e7-9e27-f0def19adff5} - F:\HiSuiteDownLoader.exe
HKLM\...\Drivers32: [midi1] => C:\Windows\SYSTEM32\myokent.dll [39936 2007-09-23] (Jamie O'Connell)
HKLM\...\Drivers32: [vidc.hdyc] => C:\Program Files\Blackmagic Design\Blackmagic Desktop Video\BMDCodecLib.dll [478208 2012-05-25] (Blackmagic Design)
HKLM\...\Drivers32: [vidc.v210] => C:\Program Files\Blackmagic Design\Blackmagic Desktop Video\BMDCodecLib.dll [478208 2012-05-25] (Blackmagic Design)
HKLM\...\Drivers32: [vidc.r210] => C:\Program Files\Blackmagic Design\Blackmagic Desktop Video\BMDCodecLib.dll [478208 2012-05-25] (Blackmagic Design)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\72.0.3626.109\Installer\chrmstp.exe [2019-02-13] (Google LLC -> Google Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files\AVAST Software\Browser\Application\71.0.1037.99\Installer\chrmstp.exe [2019-01-16] (AVAST Software s.r.o. -> AVAST Software)
AppInit_DLLs: c:\windows\system32\nvinit.dll => c:\windows\system32\nvinit.dll [156256 2013-12-26] (NVIDIA CORPORATION -> NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2019-02-16]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.961\SSScheduler.exe (McAfee, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{0DECDDF4-2C58-48E7-80CD-F366DCAF8C15}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{24AA7C19-F5DF-4B51-81DF-9521AF221E9B}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{90698986-0963-4476-A5F3-6E3F050410B6}: [NameServer] 0.0.0.0
ManualProxies:

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSSE
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-703911552-1951188683-890541146-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://seznam.cz/
SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-703911552-1951188683-890541146-1000 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL =
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-703911552-1951188683-890541146-1000 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File

FireFox:
========
FF ProfilePath: C:\Users\xLab\AppData\Roaming\Mozilla\Firefox\Profiles\v0xbmwi7.default-1486683694487 [2019-02-17]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\xLab\AppData\Roaming\Mozilla\Firefox\Profiles\v0xbmwi7.default-1486683694487\Extensions\sp@avast.com.xpi [2019-01-29]
FF Extension: (Avast Online Security) - C:\Users\xLab\AppData\Roaming\Mozilla\Firefox\Profiles\v0xbmwi7.default-1486683694487\Extensions\wrc@avast.com.xpi [2018-10-21]
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-12-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-12-18] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-27] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-27] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Users\xLab\Desktop\fds\vlc\npvlc.dll [No File]
FF Plugin: @videolan.org/vlc,version=3.0.5 -> C:\Users\xLab\Desktop\fds\vlc\npvlc.dll [No File]
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-02-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-703911552-1951188683-890541146-1000: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\xLab\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-11-15] (RocketLife, LLP)
FF Plugin HKU\S-1-5-21-703911552-1951188683-890541146-1000: @tools.google.com/Google Update;version=3 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-27] (Google Inc.)
FF Plugin HKU\S-1-5-21-703911552-1951188683-890541146-1000: @tools.google.com/Google Update;version=9 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-27] (Google Inc.)
FF Plugin HKU\S-1-5-21-703911552-1951188683-890541146-1000: google.com/WidevineMediaOptimizer -> C:\Users\xLab\AppData\Roaming\IDM\bin\npwidevinemediaoptimizer.dll [2014-06-09] (Google Inc.)

Chrome:
=======
CHR Profile: C:\Users\xLab\AppData\Local\Google\Chrome\User Data\Default [2019-02-17]
CHR Extension: (Prezentace) - C:\Users\xLab\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-09]
CHR Extension: (Dokumenty) - C:\Users\xLab\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-09]
CHR Extension: (Disk Google) - C:\Users\xLab\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-01-09]
CHR Extension: (YouTube) - C:\Users\xLab\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-01-09]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\xLab\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-11-16]
CHR Extension: (Tabulky) - C:\Users\xLab\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-09]
CHR Extension: (Dokumenty Google offline) - C:\Users\xLab\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-16]
CHR Extension: (Avast Online Security) - C:\Users\xLab\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-11-16]
CHR Extension: (Skype) - C:\Users\xLab\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2018-01-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\xLab\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-08]
CHR Extension: (Gmail) - C:\Users\xLab\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-01-09]
CHR Extension: (Chrome Media Router) - C:\Users\xLab\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-01-31]
CHR Profile: C:\Users\xLab\AppData\Local\Google\Chrome\User Data\System Profile [2019-02-17]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

Opera:
=======
OPR Extension: (Translator) - C:\Users\xLab\AppData\Roaming\Opera Software\Opera Stable\Extensions\cnbpedcoekjafichoehopgaaldogogch [2018-08-19]
OPR Extension: (Přeložit) - C:\Users\xLab\AppData\Roaming\Opera Software\Opera Stable\Extensions\ibnombjmjocaccigcefonnipcnlaeaed [2016-06-17]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Adobe Version Cue CS4; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [284016 2008-08-15] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6300272 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-10-21] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [309480 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-10-21] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\71.0.1037.99\elevation_service.exe [390552 2019-01-09] (AVAST Software s.r.o. -> AVAST Software)
S3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [279000 2014-01-29] (Intel Corporation - pGFX -> Intel Corporation)
R2 DigitalWave.Update.Service; C:\Program Files\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-03-22] (Digital Wave Ltd -> Digital Wave Ltd.)
R2 EPSON_EB_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [153600 2009-09-14] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
R2 EPSON_PM_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [121856 2009-09-14] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
S2 HuaweiHiSuiteService.exe; C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe [155848 2017-07-26] (Huawei Software Technologies Co., LTD. -> ) [File not signed]
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.961\McCHSvc.exe [322792 2019-02-08] (McAfee, Inc. -> McAfee, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [103696 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [227600 2011-07-27] (Intel Corporation - Mobile Wireless Group -> )
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [280864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
R2 RtLedService; C:\Program Files\Realtek\RtLED\RtLEDService.exe [311296 2010-09-30] (Realtek Semiconductor Corp.) [File not signed]
R2 ssinstall; C:\Windows\System32\ssins.exe [4696960 2017-06-16] (PS Media s.r.o. -> PS Media s.r.o.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [1427808 2018-11-20] (Sony Mobile Communications AB -> Sony)
S2 916e5338; "C:\Windows\system32\rundll32.exe" "c:\progra~1\AssistantSvc.dll",service

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ACPIVPC; C:\Windows\System32\DRIVERS\AcpiVpc.sys [23136 2010-10-25] (Lenovo (Beijing) Limited -> Lenovo Corporation)
S3 AirDisplay; C:\Windows\System32\DRIVERS\AVVideoCard.sys [14784 2012-09-24] (Avatron Software, Inc -> Windows (R) Win 7 DDK provider)
S3 AirDisplayMirror; C:\Windows\System32\DRIVERS\AVVideoCardMirror.sys [14784 2012-09-24] (Avatron Software, Inc -> Windows (R) Win 7 DDK provider)
S3 AirDisplayWDDM; C:\Windows\System32\DRIVERS\AVWDDMMiniPort.sys [35776 2012-09-24] (Avatron Software, Inc -> Windows (R) Win 7 DDK provider)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [34680 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
S3 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [169216 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
S3 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [187248 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
S3 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [158288 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
S3 aswblog; C:\Windows\System32\drivers\aswblog.sys [255416 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
S3 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [51320 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [183160 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [42928 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [40888 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [138272 2019-01-18] (AVAST Software s.r.o. -> AVAST Software)
S3 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [101176 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [72992 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
S3 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [785776 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [401832 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
S3 aswStm; C:\Windows\System32\drivers\aswStm.sys [163344 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
S3 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [310400 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2012-04-24] (DT Soft Ltd -> DT Soft Ltd)
S3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [15360 2017-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [57800 2010-09-28] (Future Technology Devices International Ltd -> FTDI Ltd.)
S3 FTSER2K; C:\Windows\System32\drivers\ftser2k.sys [72520 2010-09-28] (Future Technology Devices International Ltd -> FTDI Ltd.)
S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [27264 2018-04-14] (Sony Mobile Communications AB -> Sony Mobile Communications)
S3 grmnusb; C:\Windows\System32\drivers\grmnusb.sys [15720 2012-04-18] (Garmin International -> GARMIN Corp.)
S3 HTCAND32; C:\Windows\System32\Drivers\ANDROIDUSB.sys [25088 2009-10-26] (Microsoft Windows Hardware Compatibility Publisher -> HTC, Corporation)
S3 htcnprot; C:\Windows\System32\DRIVERS\htcnprot.sys [23040 2012-12-07] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2017-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 igfx; C:\Windows\System32\DRIVERS\igdkmd32.sys [3768320 2014-01-29] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [269824 2010-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
R0 LHDmgr; C:\Windows\System32\DRIVERS\LhdX86.sys [32352 2010-01-15] (Lenovo (Beijing) Limited -> Lenovo.)
R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [41088 2010-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [252808 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R1 MpKsl4ffbcbd9; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6C7A733F-538B-4F19-8258-AF82EB89D173}\MpKsl4ffbcbd9.sys [49504 2019-02-17] (Microsoft Corporation -> Microsoft Corporation)
R3 NETwNs32; C:\Windows\System32\DRIVERS\NETwNs32.sys [7517696 2011-08-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R0 nvpciflt; C:\Windows\System32\DRIVERS\nvpciflt.sys [27936 2013-12-26] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RSUSBVSTOR; C:\Windows\System32\Drivers\RtsUVStor.sys [226408 2010-11-30] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 Ser2plx86; C:\Windows\System32\DRIVERS\ser2pl.sys [160272 2015-10-07] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
S3 SPUVCbv; C:\Windows\System32\Drivers\usbvideo.sys [146816 2013-07-12] (Microsoft Windows -> Microsoft Corporation)
S3 Streaming; C:\Windows\System32\DRIVERS\blackmagicusb.sys [9856 2012-05-25] (Blackmagic Design, Inc. -> Blackmagic Design)
R3 unisofthid; C:\Windows\System32\DRIVERS\unisofthid.sys [14848 2009-05-24] (Windows (R) Win 7 DDK provider)
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [45056 2018-02-01] (Apple, Inc.) [File not signed]
S3 zinFrameDriver; C:\Windows\System32\Drivers\zinFrameDriver.sys [23384 2011-09-07] (Zaag Technology Co.,Ltd -> Windows (R) Win 7 DDK provider)
U3 aswbdisk; no ImagePath
S0 AVPCIFilter; system32\DRIVERS\AVPCIFilter.sys [X]
S3 btwaudio; system32\drivers\btwaudio.sys [X]
S3 btwavdt; system32\drivers\btwavdt.sys [X]
S3 btwl2cap; system32\DRIVERS\btwl2cap.sys [X]
S3 btwrchid; system32\DRIVERS\btwrchid.sys [X]
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
S3 pccsmcfd; system32\DRIVERS\pccsmcfd.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-02-17 21:13 - 2019-02-17 21:17 - 000030385 _____ C:\Users\xLab\Desktop\FRST.txt
2019-02-17 21:12 - 2019-02-17 21:13 - 000000000 ____D C:\FRST
2019-02-17 21:11 - 2019-02-17 21:11 - 001793024 _____ (Farbar) C:\Users\xLab\Desktop\FRST.exe
2019-02-17 14:53 - 2019-02-17 14:54 - 007316688 _____ (Malwarebytes) C:\Users\xLab\Desktop\adwcleaner_7.2.7.0.exe
2019-02-17 01:09 - 2019-02-17 01:09 - 000442638 _____ C:\Users\xLab\Downloads\0248.zip
2019-02-17 01:09 - 2019-02-17 01:09 - 000418195 _____ C:\Users\xLab\Downloads\0249.zip
2019-02-17 00:40 - 2019-02-17 00:40 - 004598356 _____ C:\Users\xLab\Downloads\prilohy_155522.zip
2019-02-17 00:40 - 2019-02-17 00:40 - 000639200 _____ C:\Users\xLab\Downloads\prilohy_155524.zip
2019-02-17 00:12 - 2019-02-17 00:12 - 001107968 _____ C:\Users\xLab\Desktop\RSIT.exe
2019-02-16 12:41 - 2019-02-16 12:41 - 000002045 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2019-02-16 12:41 - 2019-02-16 12:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2019-02-16 12:40 - 2019-02-16 12:44 - 000000000 ____D C:\ProgramData\McAfee Security Scan
2019-02-12 20:05 - 2019-01-27 15:32 - 000348760 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-02-12 20:05 - 2019-01-26 01:27 - 020279808 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-02-12 20:05 - 2019-01-26 01:18 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-02-12 20:05 - 2019-01-26 01:18 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-02-12 20:05 - 2019-01-26 01:06 - 000498176 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-02-12 20:05 - 2019-01-26 01:06 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-02-12 20:05 - 2019-01-26 01:06 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-02-12 20:05 - 2019-01-26 01:05 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-02-12 20:05 - 2019-01-26 01:05 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-02-12 20:05 - 2019-01-26 01:03 - 002295808 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-02-12 20:05 - 2019-01-26 01:00 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-02-12 20:05 - 2019-01-26 00:59 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-02-12 20:05 - 2019-01-26 00:58 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-02-12 20:05 - 2019-01-26 00:57 - 000663040 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-02-12 20:05 - 2019-01-26 00:57 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-02-12 20:05 - 2019-01-26 00:56 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-02-12 20:05 - 2019-01-26 00:56 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-02-12 20:05 - 2019-01-26 00:51 - 000668160 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-02-12 20:05 - 2019-01-26 00:48 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-02-12 20:05 - 2019-01-26 00:44 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-02-12 20:05 - 2019-01-26 00:43 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-02-12 20:05 - 2019-01-26 00:43 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-02-12 20:05 - 2019-01-26 00:40 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-02-12 20:05 - 2019-01-26 00:40 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-02-12 20:05 - 2019-01-26 00:39 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-02-12 20:05 - 2019-01-26 00:37 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-02-12 20:05 - 2019-01-26 00:34 - 004494336 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-02-12 20:05 - 2019-01-26 00:32 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-02-12 20:05 - 2019-01-26 00:31 - 000696320 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-02-12 20:05 - 2019-01-26 00:30 - 002060288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-02-12 20:05 - 2019-01-26 00:30 - 000692224 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-02-12 20:05 - 2019-01-26 00:29 - 013680640 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-02-12 20:05 - 2019-01-26 00:29 - 001155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-02-12 20:05 - 2019-01-26 00:11 - 004386304 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-02-12 20:05 - 2019-01-26 00:08 - 001331200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-02-12 20:05 - 2019-01-26 00:06 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-02-12 20:05 - 2019-01-15 07:55 - 000067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-02-12 20:05 - 2019-01-15 07:54 - 000137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-02-12 20:05 - 2019-01-15 07:52 - 001072640 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-02-12 20:05 - 2019-01-15 07:52 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-02-12 20:05 - 2019-01-15 07:52 - 000554496 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-02-12 20:05 - 2019-01-15 07:52 - 000261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-02-12 20:05 - 2019-01-15 07:52 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-02-12 20:05 - 2019-01-15 07:52 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-02-12 20:05 - 2019-01-15 07:52 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-02-12 20:05 - 2019-01-15 07:52 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-02-12 20:05 - 2019-01-15 07:52 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-02-12 20:05 - 2019-01-15 07:52 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-02-12 20:05 - 2019-01-15 07:52 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-02-12 20:05 - 2019-01-15 07:52 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-02-12 20:05 - 2019-01-15 07:52 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-02-12 20:05 - 2019-01-15 07:52 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-02-12 20:05 - 2019-01-15 07:51 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-02-12 20:05 - 2019-01-15 07:51 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-02-12 20:05 - 2019-01-15 07:33 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-02-12 20:05 - 2019-01-15 07:30 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-02-12 20:05 - 2019-01-15 07:30 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-02-12 20:05 - 2019-01-15 07:30 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-02-12 20:05 - 2019-01-15 07:29 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-02-12 20:05 - 2019-01-15 07:29 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-02-12 20:05 - 2019-01-15 07:29 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-02-12 20:05 - 2019-01-12 03:55 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-02-12 20:05 - 2019-01-12 03:55 - 000004608 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2019-02-12 20:05 - 2019-01-12 03:36 - 001311744 _____ (Microsoft Corporation) C:\Windows\system32\msjet40.dll
2019-02-12 20:05 - 2019-01-12 03:36 - 000352768 _____ (Microsoft Corporation) C:\Windows\system32\msrd3x40.dll
2019-02-12 20:05 - 2019-01-12 03:36 - 000313344 _____ (Microsoft Corporation) C:\Windows\system32\msrd2x40.dll
2019-02-12 20:05 - 2019-01-09 03:58 - 004055784 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2019-02-12 20:05 - 2019-01-09 03:58 - 003960552 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-02-12 20:05 - 2019-01-09 03:58 - 000189672 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2019-02-12 20:05 - 2019-01-09 03:58 - 000189672 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-02-12 20:05 - 2019-01-09 03:58 - 000136424 _____ (Microsoft Corporation) C:\Windows\system32\halacpi.dll
2019-02-12 20:05 - 2019-01-09 03:57 - 001310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-02-12 20:05 - 2019-01-09 03:55 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-02-12 20:05 - 2019-01-09 03:55 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-02-12 20:05 - 2019-01-09 03:55 - 000167936 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-02-12 20:05 - 2019-01-09 03:55 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-02-12 20:05 - 2019-01-09 03:55 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-02-12 20:05 - 2019-01-09 03:55 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-02-12 20:05 - 2019-01-09 03:55 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-02-12 20:05 - 2019-01-09 03:55 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-02-12 20:05 - 2019-01-09 03:40 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2019-02-12 20:05 - 2019-01-09 03:40 - 000026496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2019-02-12 20:05 - 2019-01-09 03:40 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2019-02-12 20:05 - 2019-01-09 03:37 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-02-12 20:05 - 2019-01-09 03:37 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-02-12 20:05 - 2019-01-09 03:37 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-02-12 20:05 - 2019-01-09 03:37 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-02-12 20:05 - 2019-01-09 03:37 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-02-12 20:05 - 2019-01-09 03:36 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-02-12 20:05 - 2019-01-09 03:35 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-02-12 20:05 - 2019-01-09 03:34 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-02-12 20:05 - 2019-01-09 03:34 - 000314368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-02-12 20:05 - 2019-01-09 03:34 - 000117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-02-12 20:05 - 2019-01-09 03:33 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-02-12 20:05 - 2019-01-09 03:33 - 000055296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-02-12 20:05 - 2019-01-09 03:33 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-02-12 20:05 - 2019-01-09 03:33 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\viac7.sys
2019-02-12 20:05 - 2019-01-09 03:33 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-02-12 20:05 - 2019-01-09 03:33 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-02-12 20:05 - 2019-01-07 18:15 - 002405376 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-02-12 20:05 - 2019-01-01 17:01 - 000105192 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2019-02-12 20:05 - 2019-01-01 16:58 - 002368000 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-02-12 20:05 - 2019-01-01 16:58 - 000337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2019-02-12 20:05 - 2019-01-01 16:58 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2019-02-12 20:05 - 2019-01-01 16:57 - 001806848 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2019-02-12 20:05 - 2019-01-01 16:57 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2019-02-12 20:05 - 2019-01-01 16:39 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2019-02-12 20:05 - 2018-12-28 20:48 - 001425920 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-02-12 20:05 - 2018-12-28 20:48 - 000582144 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-02-12 20:05 - 2018-12-28 20:48 - 000380928 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-02-12 20:05 - 2018-12-28 20:48 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2019-02-12 20:05 - 2018-12-28 20:32 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2019-02-12 20:05 - 2018-12-04 16:55 - 000158720 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2019-02-12 20:05 - 2018-12-04 16:55 - 000142848 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2019-02-12 20:05 - 2018-12-02 16:55 - 000527872 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2019-02-07 00:42 - 2019-02-07 00:42 - 000182915 _____ C:\Users\xLab\Downloads\SKMBT_22319020616410.pdf
2019-02-04 22:11 - 2019-02-04 22:11 - 000153927 _____ C:\Users\xLab\Downloads\PTV_TPS_PSB_CZ.pdf
2019-02-03 22:22 - 2019-02-03 22:22 - 003269632 _____ C:\Users\xLab\Downloads\RSD_smlouvy2015.xls
2019-02-03 22:10 - 2019-02-03 22:10 - 000085487 _____ C:\Users\xLab\Desktop\GALERIE_ Zločinci 
a detektivové 
v Muzeu Policie ČR_ Takhle utíkali... _ FOTO 1 _ Ahaonline.cz.html
2019-02-03 22:10 - 2019-02-03 22:10 - 000000000 ____D C:\Users\xLab\Desktop\GALERIE_ Zločinci 
a detektivové 
v Muzeu Policie ČR_ Takhle utíkali... _ FOTO 1 _ Ahaonline.cz_files
2019-02-03 20:40 - 2019-02-03 21:14 - 1519605760 _____ C:\Users\xLab\Downloads\Mucednici-Martyrs-2008-cz-dabing-Svely-Horor.avi
2019-02-01 20:01 - 2019-02-01 20:10 - 734136320 _____ C:\Users\xLab\Downloads\Houbicky - CZ dabing.avi
2019-01-29 01:19 - 2019-01-29 01:19 - 000001962 _____ C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk
2019-01-26 11:25 - 2019-01-26 11:25 - 003561392 _____ (Oleg N. Scherbakov) C:\Users\xLab\Downloads\HPSupportSolutionsFramework-12.10.49.21.exe
2019-01-26 02:39 - 2019-01-26 12:56 - 000000000 ____D C:\Users\xLab\Desktop\Nová složka
2019-01-22 00:54 - 2019-02-03 22:30 - 000000000 ___RD C:\Users\xLab\Documents\RocketLifeNetwork
2019-01-22 00:52 - 2019-02-03 22:30 - 000000000 ____D C:\Users\xLab\AppData\Roaming\HP Photo Creations
2019-01-22 00:52 - 2019-01-22 00:54 - 000000000 ____D C:\Users\xLab\AppData\Roaming\Visan
2019-01-22 00:52 - 2019-01-22 00:52 - 000002090 _____ C:\Users\xLab\Desktop\HP Photo Creations.lnk
2019-01-22 00:52 - 2019-01-22 00:52 - 000000000 ____D C:\Users\xLab\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP
2019-01-22 00:52 - 2019-01-22 00:52 - 000000000 ____D C:\Users\xLab\AppData\Local\RLPlatform
2019-01-21 23:08 - 2019-01-28 23:06 - 000000000 ____D C:\Users\xLab\Desktop\HP DeskJet 500 series
2019-01-21 22:30 - 2019-01-21 22:30 - 000000000 ____D C:\Users\xLab\Documents\HpReg_Backup
2019-01-21 22:27 - 2019-01-21 22:27 - 000000000 ____D C:\Users\xLab\AppData\Roaming\HPPSDr

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-02-17 19:17 - 2018-10-21 12:47 - 000000000 ____D C:\Users\xLab\AppData\Local\AVAST Software
2019-02-17 19:17 - 2015-08-12 04:20 - 000000000 ___RD C:\Users\xLab\Desktop\Programy
2019-02-17 19:17 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\inf
2019-02-17 19:15 - 2017-07-19 20:08 - 000000000 ____D C:\Users\xLab\Documents\ZaagTech
2019-02-17 19:15 - 2016-02-07 00:13 - 000000000 ____D C:\Weather
2019-02-17 15:11 - 2009-07-14 05:34 - 000020224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-02-17 15:11 - 2009-07-14 05:34 - 000020224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-02-17 15:08 - 2014-05-08 04:58 - 000727140 _____ C:\Windows\system32\perfh007.dat
2019-02-17 15:08 - 2014-05-08 04:58 - 000159510 _____ C:\Windows\system32\perfc007.dat
2019-02-17 15:08 - 2012-04-24 17:40 - 002556922 _____ C:\Windows\system32\PerfStringBackup.INI
2019-02-17 15:08 - 2009-07-26 18:53 - 000702674 _____ C:\Windows\system32\perfh005.dat
2019-02-17 15:08 - 2009-07-26 18:53 - 000152402 _____ C:\Windows\system32\perfc005.dat
2019-02-17 14:59 - 2009-07-14 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-02-17 14:56 - 2015-05-01 19:10 - 000000000 ____D C:\AdwCleaner
2019-02-17 01:01 - 2018-07-22 17:00 - 000000000 ____D C:\Users\xLab\Documents\diplomy
2019-02-17 00:13 - 2016-08-02 21:59 - 000000000 ____D C:\Program Files\trend micro
2019-02-16 12:41 - 2015-11-17 12:21 - 000000000 ____D C:\Program Files\McAfee Security Scan
2019-02-15 18:41 - 2015-03-29 06:43 - 000000000 ____D C:\Program Files\Opera
2019-02-15 02:44 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\rescache
2019-02-15 02:01 - 2015-05-01 18:59 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-02-14 22:06 - 2018-10-30 20:28 - 002361952 _____ C:\Windows\system32\FNTCACHE.DAT
2019-02-14 22:04 - 2016-08-03 17:14 - 000000000 ____D C:\Program Files\CCleaner
2019-02-13 23:56 - 2018-01-09 18:23 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-02-13 19:33 - 2013-09-12 20:31 - 000000000 ____D C:\Windows\system32\MRT
2019-02-13 19:15 - 2012-04-24 19:02 - 126228304 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-02-13 00:56 - 2016-02-08 18:03 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2019-02-13 00:56 - 2016-02-08 18:03 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2019-02-13 00:56 - 2012-07-13 08:41 - 000000000 ____D C:\Windows\system32\Macromed
2019-02-12 00:41 - 2017-12-03 02:23 - 000000000 ____D C:\Users\DefaultAppPool
2019-02-04 19:21 - 2014-02-19 14:06 - 000000000 ____D C:\Windows\Minidump
2019-02-04 19:21 - 2013-01-22 01:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2019-02-04 01:59 - 2014-05-08 05:02 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2019-02-03 01:20 - 2012-04-24 17:36 - 000000000 ____D C:\Users\xLab\AppData\Local\VirtualStore
2019-02-03 01:14 - 2017-04-01 16:35 - 000000000 ____D C:\Users\xLab\.gimp-2.8
2019-01-30 02:34 - 2017-12-28 08:08 - 000000000 ____D C:\Users\xLab\AppData\LocalLow\Mozilla
2019-01-22 00:53 - 2013-02-25 11:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2019-01-21 22:28 - 2013-02-25 11:14 - 000000000 ____D C:\ProgramData\HP
2019-01-21 22:26 - 2013-02-25 11:01 - 000000000 ____D C:\Users\xLab\AppData\Local\HP
2019-01-21 22:23 - 2012-06-06 07:34 - 000000000 ____D C:\Program Files\HP
2019-01-18 22:15 - 2018-10-21 12:44 - 000138272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys

==================== Files in the root of some directories =======

2013-01-22 02:59 - 2013-01-22 02:59 - 000000008 ___SH () C:\ProgramData\desktop.dat
2015-04-19 13:20 - 2015-04-19 13:20 - 000005872 _____ () C:\Users\xLab\AppData\Roaming\5luXLfcKjFxDLCqBh
2015-02-06 17:32 - 2015-04-27 22:05 - 000000020 _____ () C:\Users\xLab\AppData\Roaming\appdataFr3.bin
2015-04-19 13:20 - 2015-04-19 13:20 - 000005872 _____ () C:\Users\xLab\AppData\Roaming\LPsNL2G0hiSFkGKuJedSoq
2017-09-30 23:04 - 2017-10-11 23:00 - 000003072 _____ () C:\Users\xLab\AppData\Roaming\MCLAB Prefsv3
2018-01-13 12:53 - 2018-05-04 00:48 - 000003072 _____ () C:\Users\xLab\AppData\Roaming\O-Print Prefsv3
2015-04-14 17:28 - 2015-04-14 17:28 - 000001171 _____ () C:\Users\xLab\AppData\Roaming\spQcPKp
2015-04-14 17:28 - 2015-04-14 17:28 - 000001171 _____ () C:\Users\xLab\AppData\Roaming\YKrJHM3fw3v5WkXTRLkcm6IEn
2014-03-02 13:53 - 2018-10-21 01:10 - 000009728 _____ () C:\Users\xLab\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-08-04 23:59 - 2017-08-21 20:31 - 000000058 _____ () C:\Users\xLab\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat
2016-12-05 20:27 - 2016-12-05 20:27 - 045700992 _____ (Sony) C:\Users\xLab\AppData\Local\pcc.exe
2018-05-12 13:27 - 2018-05-12 13:27 - 000002925 _____ () C:\Users\xLab\AppData\Local\recently-used.xbel

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\dllhost.exe => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2019-02-14 23:58

==================== End of FRST.txt ============================

Re: prevence, děkuji

Napsal: 17 úno 2019 21:29
od llucaa
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 17-02-2019
Ran by xLab (17-02-2019 21:17:55)
Running from C:\Users\xLab\Desktop
Microsoft Windows 7 Ultimate Service Pack 1 (X86) (2012-04-24 16:35:50)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-703911552-1951188683-890541146-500 - Administrator - Disabled)
Guest (S-1-5-21-703911552-1951188683-890541146-501 - Limited - Disabled)
UpdatusUser (S-1-5-21-703911552-1951188683-890541146-1003 - Limited - Enabled) => C:\Users\UpdatusUser
xLab (S-1-5-21-703911552-1951188683-890541146-1000 - Administrator - Enabled) => C:\Users\xLab

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Ableton Live 8 (HKLM\...\{5236C5F0-9539-49DB-829A-D2C964F455D3}) (Version: 8.0.0.0 - Ableton)
Acrobat.com (HKLM\...\{C86E7C99-E4AD-79C7-375B-1AEF9A91EC2B}) (Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Acrobat.com (HKLM\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.2.443 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.010.20091 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 31.0.0.96 - Adobe Systems Incorporated)
Adobe Creative Suite 4 Master Collection (HKLM\...\Adobe_b2d6abde968e6f277ddbfd501383e02) (Version: 4.0 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 32.0.0.142 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 32.0.0.142 - Adobe Systems Incorporated)
Aktualizace NVIDIA 1.14.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.14.17 - NVIDIA Corporation)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Optimizer FREE (HKLM\...\Ashampoo Photo Optimizer FREE_is1) (Version: 1.2.0 - ashampoo GmbH & Co. KG)
Audacity 1.2.6 (HKLM\...\Audacity_is1) (Version: - )
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 19.1.2360 - AVAST Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 71.0.1037.99 - Autoři prohlížeče Avast Secure Browser)
Blackmagic ATEM Switchers (HKLM\...\{03DCA3D4-6CBF-46B6-BC58-CD80A63CB90B}) (Version: 3.1.1.0 - Blackmagic Design)
CCleaner (HKLM\...\CCleaner) (Version: 5.48 - Piriform)
CINEMA 4D 12.016 (HKLM\...\MAXON8C02D5E0) (Version: 12.016 - MAXON Computer GmbH)
Codec Pack - All In 1 6.0.3.0 (HKLM\...\Cool's_Codec_pack_4.12) (Version: - )
Connect (HKLM\...\{B29AD377-CC12-490A-A480-1452337C618D}) (Version: 1.0.0.1 - Adobe Systems Incorporated) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.45.4.0314 - DT Soft Ltd)
EGR-ShellExtension (HKLM\...\EGR-ShellExtension) (Version: 1.0.0.100 - EasternGraphics)
Energy Management (HKLM\...\{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 6.0.1.6 - Lenovo) Hidden
Energy Management (HKLM\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 6.0.1.6 - Lenovo)
Epson Event Manager (HKLM\...\{4B22C430-7EA8-4534-8358-376FD900B953}) (Version: 3.10.0042 - Seiko Epson Corporation)
EPSON Scan (HKLM\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
Epson Software Updater (HKLM\...\{7BAC3F7A-B963-468E-982E-B5608A87408D}) (Version: 4.4.4 - SEIKO EPSON CORPORATION)
EPSON SX420W Series Printer Uninstall (HKLM\...\EPSON SX420W Series) (Version: - SEIKO EPSON Corporation)
EpsonNet Setup 3.3 (HKLM\...\{C9D8A041-2963-4B31-8FFC-1500F3DB9293}) (Version: 3.3a - SEIKO EPSON CORPORATION)
Free Video to JPG Converter (HKLM\...\Free Video to JPG Converter_is1) (Version: 5.0.101.201 - Digital Wave Ltd)
GIMP 2.8.20 (HKLM\...\GIMP-2_is1) (Version: 2.8.20 - The GIMP Team)
Google Chrome (HKLM\...\Google Chrome) (Version: 72.0.3626.109 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.115 - Google Inc.) Hidden
HiSuite (HKLM\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
HP DeskJet 5000 series Nápověda (HKLM\...\{6DC9CFE5-48BB-41D3-9127-AF239C4FD8D4}) (Version: 44.0.0 - HP)
HP Dropbox Plugin (HKLM\...\{2B241F10-5647-4C07-B982-CC0B81682A59}) (Version: 36.0.102.68541 - HP)
HP EmailSMTP Plugin (HKLM\...\{FBCFDA37-DD90-4465-9E8B-26C2D2260EFF}) (Version: 43.0.0.0 - HP)
HP FTP Plugin (HKLM\...\{5B4F8499-E03E-4A81-850D-81B27CC8EC9C}) (Version: 43.0.0.0 - HP)
HP Google Drive Plugin (HKLM\...\{489527CD-23E4-4F60-82CB-F85DF758049F}) (Version: 36.0.102.68541 - HP)
HP OneDrive Plugin (HKLM\...\{904BE479-2821-419D-B44F-C963042CB6FD}) (Version: 36.0.0.0 - HP)
HP Photo Creations (HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\HP Photo Creations) (Version: 1.0.0.22192 - HP)
HP SharePoint Plugin (HKLM\...\{86B04693-5E1B-4A2A-8715-6E1E1B5AE8C2}) (Version: 43.0.0.0 - HP)
HTC Driver Installer (HKLM\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.10.0.001 - HTC Corporation)
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.0.0.1046 - Intel Corporation)
IPTInstaller (HKLM\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.510 - Oracle)
kuler (HKLM\...\{098727E1-775A-4450-B573-3F441F1CA243}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
LADSPA_plugins-win-0.4.15 (HKLM\...\LADSPA_plugins-win_is1) (Version: - Audacity Team)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.961.1 - McAfee, Inc.)
Microsoft .NET Framework 4.7.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
MIDI Yoke (HKLM\...\{CCB3F587-BAD0-4F32-99FC-301E6F9ABAB4}) (Version: 1.75.53 - JOConnell)
MIDI-OX (HKLM\...\{A6457851-5EA9-45B0-AF1D-D2A0A4781CFB}) (Version: 7.02.372 - MIDIOX Computing)
Mozilla Firefox 63.0.1 (x86 cs) (HKLM\...\Mozilla Firefox 63.0.1 (x86 cs)) (Version: 63.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 58.0.2.6611 - Mozilla)
MSVC80_x86_v2 (HKLM\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x86 (HKLM\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA Ovladače grafiky 327.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.62 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.12.0213 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0213 - NVIDIA Corporation)
OpenOffice 4.1.3 (HKLM\...\{7308600A-5231-459C-A3E2-A637F842CACA}) (Version: 4.13.9783 - Apache Software Foundation)
Opera Stable 49.0.2725.47 (HKLM\...\Opera 49.0.2725.47) (Version: 49.0.2725.47 - Opera Software)
Opera Stable 58.0.3135.65 (HKLM\...\Opera 58.0.3135.65) (Version: 58.0.3135.65 - Opera Software)
Ovládací panel NVIDIA 327.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 327.62 - NVIDIA Corporation) Hidden
paint.net (HKLM\...\{E8FA8815-3817-4128-A814-E2EAC456ADEF}) (Version: 4.0.21 - dotPDN LLC)
PDF Settings CS4 (HKLM\...\{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}) (Version: 9.0 - Adobe Systems Incorporated) Hidden
Photoshop Camera Raw (HKLM\...\{CC75AB5C-2110-4A7F-AF52-708680D22FE8}) (Version: 5.0 - Adobe Systems Incorporated) Hidden
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
Pixel Bender Toolkit (HKLM\...\{43509E18-076E-40FE-AF38-CA5ED400A5A9}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Poradce pro upgrade na systém Windows 7 (HKLM\...\{C3A13A35-63AC-427a-92E6-960C1D01FABB}) (Version: 2.0.5000.0 - Microsoft Corporation)
ppvote (HKLM\...\ppvote4) (Version: 4 - Albert Hall Meetings Limited)
Realtek Ethernet Controller Driver For Windows 7 (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.21.531.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6267 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Reader Driver (HKLM\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10008 - Realtek Semiconductor Corp.)
Resolume 2.4 (HKLM\...\Resolume 2.4_is1) (Version: 2.4 - Resolume)
RocketDock 1.3.5 (HKLM\...\RocketDock_is1) (Version: - Punk Software)
RtLED (HKLM\...\{74BCB66E-8E4B-4C24-BC44-11FB5C12A8B7}) (Version: 1.0.3 - Realtek Semiconductor Corp.)
Screenshot Captor 4.21.1 (HKLM\...\ScreenshotCaptor_is1) (Version: - )
Seznam Instalátor (HKLM\...\ssinstall) (Version: - Seznam.cz)
Skype Click to Call (HKLM\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype verze 8.33 (HKLM\...\Skype_is1) (Version: 8.33 - Skype Technologies S.A.)
Služba Xperia Companion (HKLM\...\{AEEFEB49-3F89-4B0E-9031-56563B8F7D4E}) (Version: 2.3.7.0 - Sony) Hidden
Software Intel(R) PROSet/Wireless WiFi (HKLM\...\{25FBDA9A-E868-4B3B-B9FF-D923818511A1}) (Version: 14.2.0000 - Intel Corporation)
Sony Mobile Update Engine (HKLM\...\Update Engine) (Version: 2.18.4.201803151630 - Sony Mobile Communications Inc.)
Studie vylepšování produktu HP Deskjet 2050 J510 series (HKLM\...\{341F2C60-29E4-476C-9AD8-7FE4911AA8CE}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
Studie vylepšování produktu HP DeskJet 5000 series (HKLM\...\{A1E5F048-119B-4E14-BC50-A770A270550E}) (Version: 44.3.2218.18109 - HP Inc.)
Suite Shared Configuration CS4 (HKLM\...\{842B4B72-9E8F-4962-B3C1-1C422A5C4434}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.2.7.0 - Synaptics Incorporated)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 7.50a - Ghisler Software GmbH)
Ventuz 3 (HKLM\...\{7C5E92BC-726D-44BF-826E-F5AB33241C12}) (Version: 3.07.00 - Ventuz Technology)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.5 - VideoLAN)
weather_ask1.6 (HKLM\...\Weather_ask1.6_is1) (Version: - )
Widevine Media Optimizer IE 6.0.0 (HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\optimizer_ie) (Version: 6.0.0.12757 - Widevine Technologies)
WinRAR 5.60 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH)
Xperia Companion (HKLM\...\{128ab02b-3b93-4490-8304-8b16d7d1564f}) (Version: 2.3.7.0 - Sony)
Xperia Companion (HKLM\...\{8F6C5405-9677-4516-BCB0-775128C31874}) (Version: 2.3.7.0 - Sony) Hidden
Základní software zařízení HP DeskJet 5000 series (HKLM\...\{1E439DE0-1510-4B94-BE9E-3235D69609F2}) (Version: 44.3.2218.18109 - HP Inc.)
zinFrameServer (HKLM\...\{BBC7D37D-23FB-46CE-98FB-EB5C1AC14D8A}) (Version: 3.7.1.0316 - ZaagTech)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\xLab\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateOnDemand.exe (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateOnDemand.exe (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{30A2652A-DDF7-45e7-ACA6-3EAB26FC8A4E}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{41662FC2-0D57-4aff-AB27-AD2E12E7C273}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{448BB771-CFE2-47C4-BCDF-1FBF378E202C}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateOnDemand.exe (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{7B342DC4-139A-4a46-8A93-DB0827CCEE9C}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\ooofilt.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{7FA8AE11-B3E3-4D88-AABF-255526CD1CE8}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{82154420-0FBF-11d4-8313-005004526AB4}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{9356e2bb-6c9a-43c0-a771-5cacbdab6afe}\InprocServer32 -> C:\Users\xLab\AppData\Roaming\HP Photo Creations\RLPNUpload.dll (RocketLife -> RocketLife)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{A10E0335-AFCA-4E7E-975F-CA30235FB29A}\InprocServer32 -> C:\Users\xLab\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife -> RocketLife, LLP)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{A804CF1A-91E5-4F0C-9E8C-DB39E74056DD}\InprocServer32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\psuser.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\propertyhdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\npGoogleUpdate3.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\npGoogleUpdate3.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{cc05a616-ddb3-4cc0-9a21-dc0e9962b444}\InprocServer32 -> C:\Users\xLab\AppData\Roaming\HP Photo Creations\ContentMan.dll (RocketLife -> RocketLife)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{D0484DE6-AAEE-468a-991F-8D4B0737B57A}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{D2D59CD1-0A6A-4D36-AE20-47817077D57C}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{defa762b-ebc6-4ce2-a48c-32b232aac64d}\InprocServer32 -> C:\Users\xLab\AppData\Roaming\IDM\bin\npwidevinemediaoptimizer.dll (Widevine Technologies -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{E5A0B632-DFBA-4549-9346-E414DA06E6F8}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateOnDemand.exe (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\psuser.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{EE5D1EA4-D445-4289-B2FC-55FC93693917}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{F616B81F-7BB8-4F22-B8A5-47428D59F8AD}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{ff280b55-14f1-49ae-b40f-15f5294ce630}\InprocServer32 -> C:\Users\xLab\AppData\Roaming\HP Photo Creations\RocketEngine.dll (RocketLife -> Visan inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\xLab\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{035FBE31-3755-450A-A775-5E6BBD43D344}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.135\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.33.5\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> "C:\Users\xLab\AppData\Local\Google\Update\1.3.21.115\GoogleUpdateOnDemand.exe" => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> "C:\Users\xLab\AppData\Local\Google\Update\1.3.21.115\GoogleUpdateOnDemand.exe" => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{30A2652A-DDF7-45e7-ACA6-3EAB26FC8A4E}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{41662FC2-0D57-4aff-AB27-AD2E12E7C273}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{448BB771-CFE2-47C4-BCDF-1FBF378E202C}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> "C:\Users\xLab\AppData\Local\Google\Update\1.3.21.115\GoogleUpdateOnDemand.exe" => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{62A0D750-DED9-448C-B693-406B34BB0892}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.145\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{634059C0-D264-4B2C-AE80-F73E48D33E5B}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.123\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{6D7374DE-63AA-473C-8C02-60D9CDCD84C5}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.153\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{7B342DC4-139A-4a46-8A93-DB0827CCEE9C}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\ooofilt.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{7FA8AE11-B3E3-4D88-AABF-255526CD1CE8}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{82154420-0FBF-11d4-8313-005004526AB4}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\propertyhdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files\OpenOffice 4\program\shlxthdl\shlxthdl.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{C5A2122B-A05B-4FD8-AE49-91990AE10998}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.115\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{D0484DE6-AAEE-468a-991F-8D4B0737B57A}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{D2D59CD1-0A6A-4D36-AE20-47817077D57C}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{DEFA762B-EBC6-4CE2-A48C-32B232AAC64D}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Roaming\IDM\bin\npwidevinemediaoptimizer.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{E5A0B632-DFBA-4549-9346-E414DA06E6F8}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> "C:\Users\xLab\AppData\Local\Google\Update\1.3.21.115\GoogleUpdateOnDemand.exe" => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.115\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{EE5D1EA4-D445-4289-B2FC-55FC93693917}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{F616B81F-7BB8-4F22-B8A5-47428D59F8AD}\localserver32 -> C:\Program Files\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{FB994D36-B312-46CE-A40B-CF63980641F9}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.111\psuser.dll => No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files\Adobe\Acrobat 9.0\Acrobat Elements\ContextMenu.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers2: [{C95FFEAE-A32E-4122-A5C4-49B5BFB69795}] -> {C95FFEAE-A32E-4122-A5C4-49B5BFB69795} => C:\Program Files\Common Files\Adobe\Adobe Drive CS4\ADFSMenu.dll [2008-08-14] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{C95FFEAE-A32E-4122-A5C4-49B5BFB69795}] -> {C95FFEAE-A32E-4122-A5C4-49B5BFB69795} => C:\Program Files\Common Files\Adobe\Adobe Drive CS4\ADFSMenu.dll [2008-08-14] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2014-01-29] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2013-10-29] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [{C95FFEAE-A32E-4122-A5C4-49B5BFB69795}] -> {C95FFEAE-A32E-4122-A5C4-49B5BFB69795} => C:\Program Files\Common Files\Adobe\Adobe Drive CS4\ADFSMenu.dll [2008-08-14] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files\Adobe\Acrobat 9.0\Acrobat Elements\ContextMenu.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {14A9B69A-E07A-4774-9529-0530C166E03E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-703911552-1951188683-890541146-1000Core => C:\Users\xLab\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {16703C78-C24F-43B6-A8FB-2A6CC01585FE} - System32\Tasks\{33B47F13-559A-42EE-998C-2FB7256A6BD1} => C:\Windows\system32\pcalua.exe -a C:\Users\xLab\AppData\Local\Temp\ckz_BJ2R\mp_app_setup.exe -d C:\Users\xLab\AppData\Local\Temp\ckz_BJ2R <==== ATTENTION
Task: {1DED44B9-4579-48D6-BB0C-A7356402E47B} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (AVAST Software s.r.o. -> AVAST Software) <==== ATTENTION
Task: {2327C115-B40E-409F-8361-6144048FF4D1} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {2346EAE6-E36D-498C-8BBF-A87B58CB1589} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2EB56B45-E1EE-4D75-AA0D-F3F005E814EC} - System32\Tasks\{25EB8C00-959B-4F13-A3F9-65623C71E5DA} => C:\Program Files\Google\Chrome\Application\chrome.exe
Task: {3111BAEE-6F25-48E2-B90B-4F0D2180A49A} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {325F1239-48C7-4049-8E0C-1044C0120D3A} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {35B62B7D-F028-4124-B365-992C6B4442BB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {3F094C0D-0D10-42D8-8F1E-AF06103DFAD9} - System32\Tasks\{612D34B2-6139-4C5A-A25B-4E5AE8E6B8D5} => C:\Program Files\O-Print\O-Print.exe
Task: {40EE216D-84A3-4D82-A2D5-9596AFB9DD12} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {447E6E6C-157B-4140-9857-42F4929B724D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Ltd)
Task: {46779B43-1027-4A88-8951-1AF48DF8D536} - System32\Tasks\{BCFD944E-687B-474E-8467-E4A2C8CA99E9} => C:\Windows\system32\pcalua.exe -a C:\Users\xLab\Desktop\setup.exe -d C:\Users\xLab\Desktop
Task: {472EA993-9720-4367-AF9C-E09DAC6FC1D0} - System32\Tasks\{8E4837CB-6E31-4CBD-BDA4-AB08CAACB4B4} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\AVAST Software\Avast\aswRunDll.exe" -c "C:\Program Files\AVAST Software\Avast\Setup\setiface.dll" RunSetup
Task: {56D9D6FB-3D78-44FD-927C-6ABA1949D1F7} - System32\Tasks\{AE211472-28A6-48E9-8C9E-4F14D8E2DF3E} => C:\Program Files\GIMP 2\bin\gimp-2.8.exe (Jernej Simončič -> Spencer Kimball, Peter Mattis and the GIMP Development Team)
Task: {5AE46598-1E82-412B-90F3-B8DFA4D550BA} - System32\Tasks\{0667CB83-C5A5-46A0-B285-C6BEBD27BE68} => C:\Program Files\GIMP 2\bin\gimp-2.8.exe (Jernej Simončič -> Spencer Kimball, Peter Mattis and the GIMP Development Team)
Task: {6510F176-844B-4F3A-8349-2FC16E629942} - System32\Tasks\{8668A13C-D5BE-4E05-BD53-97A996102C77} => C:\Windows\system32\pcalua.exe -a C:\Users\xLab\AppData\Local\Temp\scoped_dir8680_26274\wmp11-windowsxp-x86-CS-CZ.exe -d C:\Users\xLab\AppData\Local\Temp\scoped_dir8680_26274 <==== ATTENTION
Task: {6FA67C0D-AE96-4EAE-88F6-0D1C14A393F1} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_32_0_0_142_pepper.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {7698DF03-1416-4D15-96F8-C4EB057D62B4} - System32\Tasks\{1FF52DC9-DB97-40CA-8532-7FA68814A1BC} => C:\Program Files\LibreOffice 5\program\soffice.exe
Task: {7B61C93F-F631-443D-9118-43E799BFAFFD} - System32\Tasks\{0EC6621F-D096-4515-99A0-0B9CEF526765} => C:\Program Files\MCLAB\MCLAB.exe (Computer MCL Brno, spol. s.r.o. -> Computer MCL Brno, spol. s.r.o.)
Task: {8779502D-A469-45D2-B823-53B6527C4939} - System32\Tasks\{44CD8D11-BA61-45B7-9E9A-AE8FD165FE00} => C:\Windows\system32\pcalua.exe -a "C:\Users\xLab\Downloads\Instaluj.cz - 15352.exe" -d C:\Users\xLab\Downloads
Task: {95C440BC-BB0D-4CC4-81F5-B8BF64F58994} - System32\Tasks\{785791EB-4EB9-4FAD-B9F5-C3DD9FBB0D76} => C:\Program Files\MCLAB\MCLAB.exe (Computer MCL Brno, spol. s.r.o. -> Computer MCL Brno, spol. s.r.o.)
Task: {A42A638F-1103-475E-8F0A-4AD42CDB9DD8} - System32\Tasks\{D29F6DE5-211D-404C-A44D-17785DED8AC1} => C:\Program Files\MCLAB\MCLAB.exe (Computer MCL Brno, spol. s.r.o. -> Computer MCL Brno, spol. s.r.o.)
Task: {AC87D843-FE63-4304-8F78-E1BC8CEA41B9} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-703911552-1951188683-890541146-1000UA => C:\Users\xLab\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {AE859D57-0B83-4CC3-B0A0-6B4358B1A32A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {B4FD10E0-5554-4183-9502-7151A46C0294} - System32\Tasks\HPCustParticipation HP DeskJet 5000 series => C:\Program Files\HP\HP DeskJet 5000 series\Bin\HPCustPartic.exe (Hewlett Packard -> HP Inc.)
Task: {BCD18A09-D720-4DB7-8E86-E6B03DF7E58B} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (AVAST Software s.r.o. -> AVAST Software) <==== ATTENTION
Task: {D0F7175A-3165-40C2-9D6E-9D7C04B404BE} - System32\Tasks\HPCustParticipation HP Deskjet 2050 J510 series => C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe (Hewlett Packard -> Hewlett-Packard Co.)
Task: {D4F3AA8A-80CA-4334-AFA0-A1A542DDD3C4} - System32\Tasks\{ABF9BE47-E7C1-4440-A3CA-251B86A8A894} => C:\Program Files\MCLAB\MCLAB.exe (Computer MCL Brno, spol. s.r.o. -> Computer MCL Brno, spol. s.r.o.)
Task: {D55FC017-F2C6-47C6-8B9F-111CC5CB4287} - System32\Tasks\{EF7538B3-D633-4216-8F14-BD197458DFE1} => C:\Program Files\Google\Chrome\Application\chrome.exe
Task: {DB8AD4F3-F620-453E-9891-A774546CEEC2} - System32\Tasks\{7FDC7829-D94E-47D8-9F40-A0E5AD5C5CFF} => C:\Program Files\LibreOffice 5\program\soffice.exe
Task: {DBEC5708-598C-43B7-A096-54231BD88BAB} - System32\Tasks\{3490D71F-D544-43C2-9BB7-C4CDE26667C5} => C:\Program Files\LibreOffice 5\program\soffice.exe
Task: {DDF1A663-AC86-4E83-82C0-33B8EE76045F} - \AutoKMS -> No File <==== ATTENTION
Task: {EECAC68C-E22B-4BF9-9A6C-BD77EB58CF0D} - System32\Tasks\{8A09FDB7-AA3D-42D3-9932-EA21274076D6} => C:\Program Files\Google\Chrome\Application\chrome.exe
Task: {FB83534E-E503-486D-A9D5-F944D950FF60} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {FFDD45DF-5823-43EC-839B-B82F1C135318} - System32\Tasks\Opera scheduled Autoupdate 1465154197 => C:\Program Files\Opera\launcher.exe (Opera Software AS -> Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\xLab\lasernet\komunikace start – zástupce.lnk -> C:\Users\xLab\lasernet\lasernet2midi\start.bat ()

==================== Loaded Modules (Whitelisted) ==============

2012-07-24 09:37 - 2013-10-29 00:22 - 000088864 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2019-01-17 22:06 - 2019-01-17 22:06 - 000570248 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2019-02-17 14:50 - 2019-02-17 14:50 - 005760144 _____ () C:\Program Files\AVAST Software\Avast\defs\19021702\algo.dll
2019-01-17 22:06 - 2019-01-17 22:06 - 000475016 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2019-01-17 22:07 - 2019-01-17 22:07 - 001030536 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2019-01-17 22:06 - 2019-01-17 22:06 - 001793928 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2013-11-18 21:42 - 2012-09-18 15:26 - 000169472 _____ () C:\Windows\System32\ZLhp1020.DLL
2013-11-18 21:42 - 2012-09-18 15:26 - 000059904 _____ () C:\Windows\system32\spool\PRTPROCS\W32X86\pphp1020.dll
2017-08-20 21:09 - 2017-03-20 16:06 - 000114664 _____ () C:\Program Files\Common Files\DVDVideoSoft\lib\zlib1.dll
2017-08-20 21:10 - 2017-03-20 16:06 - 000108008 _____ () C:\Program Files\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2017-08-20 21:10 - 2017-03-20 16:06 - 000024040 _____ () C:\Program Files\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2017-08-20 21:10 - 2017-03-20 16:06 - 000048104 _____ () C:\Program Files\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2012-12-07 18:27 - 2012-12-07 18:27 - 000167424 _____ () C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
2019-02-14 22:12 - 2019-02-14 22:12 - 000169984 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\fc20ffcedaa7ff2f475520f5e26ea5b5\IsdiInterop.ni.dll
2012-04-26 04:31 - 2010-09-13 17:28 - 000058880 _____ () C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2008-12-20 02:20 - 2008-12-20 02:20 - 000051016 _____ () C:\Program Files\Lenovo\Energy Management\HookLib.dll
2008-12-20 02:20 - 2008-12-20 02:20 - 000063304 _____ () C:\Program Files\Lenovo\Energy Management\kbdhook.dll
2012-05-25 15:25 - 2012-05-25 15:25 - 001103360 _____ () C:\Program Files\Blackmagic Design\Blackmagic Desktop Video\BMDStreamingServer.exe
2012-05-25 15:24 - 2012-05-25 15:24 - 000257024 _____ () C:\Program Files\Blackmagic Design\Blackmagic Desktop Video\BMDStreamingAPI.dll
2010-12-16 15:37 - 2010-12-16 15:37 - 000094208 _____ () C:\Windows\System32\IccLibDll.dll
2018-10-21 12:46 - 2018-10-21 12:46 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-10-23 12:22 - 2018-10-23 12:22 - 000088472 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2019-02-15 18:41 - 2019-02-15 18:41 - 000596056 _____ () C:\Program Files\Opera\58.0.3135.65\opera_elf.dll
2019-02-15 18:41 - 2019-02-15 18:41 - 092928088 _____ () C:\Program Files\Opera\58.0.3135.65\opera_browser.dll
2019-02-15 18:41 - 2019-02-15 18:40 - 004418136 _____ () C:\Program Files\Opera\58.0.3135.65\libglesv2.dll
2019-02-15 18:41 - 2019-02-15 18:40 - 000097880 _____ () C:\Program Files\Opera\58.0.3135.65\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:0A8E2C33 [133]
AlternateDataStreams: C:\ProgramData\TEMP:373E1720 [118]
AlternateDataStreams: C:\ProgramData\TEMP:A31FAD21 [118]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2019-02-16 12:41 - 000000938 _____ C:\Windows\system32\drivers\etc\hosts

127.0.0.1 activate.adobe.com
0.0.0.1 mssplus.mcafee.com

2014-06-26 09:25 - 2016-12-29 21:38 - 000000375 _____ C:\Windows\system32\drivers\etc\hosts.ics


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\PROGRAM FILES\NVIDIA CORPORATION\PHYSX\COMMON;%SYSTEMROOT%\SYSTEM32;%SYSTEMROOT%;%SYSTEMROOT%\SYSTEM32\WBEM;%SYSTEMROOT%\SYSTEM32\WINDOWSPOWERSHELL\V1.0\;C:\PROGRAM FILES\INTEL\WIFI\BIN\;C:\PROGRAM FILES\COMMON FILES\INTEL\WIRELESSCOMMON\
HKU\S-1-5-21-703911552-1951188683-890541146-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\xLab\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: cfweatherStation => C:\Weather\Weather.exe
MSCONFIG\startupreg: Google Update => "C:\Users\xLab\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: NokiaSuite.exe => C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{D8886755-74B6-4E1C-87D0-A729E4C6372E}C:\program files\ventuz technology group\ventuz 3\ventuzpresenter.exe] => (Allow) C:\program files\ventuz technology group\ventuz 3\ventuzpresenter.exe (Ventuz Technology Group)
FirewallRules: [UDP Query User{9AD7B518-D295-44A1-AC5B-6BE98B5A8532}C:\program files\ventuz technology group\ventuz 3\ventuzpresenter.exe] => (Allow) C:\program files\ventuz technology group\ventuz 3\ventuzpresenter.exe (Ventuz Technology Group)
FirewallRules: [TCP Query User{8465D4AB-3037-41EB-8993-E18C8C166873}C:\program files\ventuz technology group\ventuz 3\ventuz.exe] => (Allow) C:\program files\ventuz technology group\ventuz 3\ventuz.exe (Ventuz Technology Group)
FirewallRules: [UDP Query User{883FA87F-4C8D-4477-9DC9-CCCDB9DD74D1}C:\program files\ventuz technology group\ventuz 3\ventuz.exe] => (Allow) C:\program files\ventuz technology group\ventuz 3\ventuz.exe (Ventuz Technology Group)
FirewallRules: [{07CC56F9-3A63-465F-BE4B-14797B3773DE}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4F5BCCC9-24EE-46C7-8A72-E94DC2999171}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E460D3C8-2485-4E11-B7B3-6A7BFADE8005}] => (Allow) LPort=1826
FirewallRules: [{487124DE-A76E-4A5F-8C78-676953B1081A}] => (Allow) LPort=1926
FirewallRules: [{62F7FD8B-2754-4E54-8D82-231C74250B73}] => (Allow) LPort=1726
FirewallRules: [{DE2C32E1-F979-46EA-A0C0-1B713671DF15}] => (Allow) LPort=1826
FirewallRules: [{11E8C3CB-33E9-474E-BE86-F7293B862455}] => (Allow) LPort=1926
FirewallRules: [{08B2E888-D521-4943-826F-53D5EB2A6B33}] => (Allow) LPort=1726
FirewallRules: [{8EBF9415-8B8A-4949-B97F-339DC085C550}] => (Allow) LPort=1826
FirewallRules: [{73B4A4E4-6045-43DC-BAA9-EA6BDD6F61D1}] => (Allow) LPort=1926
FirewallRules: [{91D4C2EE-378C-4683-A877-8F67DE842476}] => (Allow) LPort=1726
FirewallRules: [{5562C9D6-41C0-428F-B2C9-0144DC94EE54}] => (Block) %ProgramFiles%\Ventuz Technology Group\Ventuz 3\Ventuz.exe (Ventuz Technology Group)
FirewallRules: [{C9569331-24C1-4A93-86AB-AEE0CEA23818}] => (Allow) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{776EE5EC-2656-4DE6-9CB5-80204155C96B}] => (Allow) LPort=5353
FirewallRules: [{B35F1586-3504-4BA6-A0E0-861CF79857E9}] => (Allow) C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{896E817A-85A8-4515-B086-C4BC112DE9E0}] => (Allow) C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{B0929AE7-0426-4C60-AB92-B0F457E6A924}] => (Allow) LPort=3703
FirewallRules: [{14E3A42A-4020-46FE-8F44-5FA517718714}] => (Allow) LPort=3704
FirewallRules: [{AACCE4A6-7FA1-422D-993D-0D08762CD9EF}] => (Allow) LPort=51000
FirewallRules: [{CE505DBB-0159-45ED-82CA-49FB587A3F23}] => (Allow) LPort=51001
FirewallRules: [{0342367B-90D9-4F99-808D-D2E1BB15EF1F}] => (Allow) C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{46AAB6FC-F066-49F6-8AC3-C6D604BA399E}] => (Allow) C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{EB198040-2C3A-4957-9A19-D692729AEFF4}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{641170AD-DC82-4D50-97BF-E5030970E6DF}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F462DDFA-B2FC-4B9E-BB44-7D2BFE51E4FD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A43D77F7-E598-4803-B977-562BB75E1891}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{880DB12B-AE14-4318-8FCA-D19588E0A5AB}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{B5204E32-C4DA-4D35-A7EF-95667F25F503}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{B93DDE42-F6B4-44B5-9095-D9EB65DAC795}C:\users\xlab\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\xlab\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.)
FirewallRules: [UDP Query User{BCF65B8B-F677-4DCC-A9D4-1B730CEB1B9F}C:\users\xlab\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\xlab\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.)
FirewallRules: [{48750212-C0EB-487C-A743-44ECF3B8729D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{8C651725-C314-48C2-A028-0B67CA371EDC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{5A055A17-EF69-4221-92D3-5A7A4420B6D0}C:\program files\resolume 2.4\resolume.exe] => (Block) C:\program files\resolume 2.4\resolume.exe (Resolume V.O.F)
FirewallRules: [UDP Query User{6386FFEA-0BB7-40D9-95C4-FD5F1F23A6A4}C:\program files\resolume 2.4\resolume.exe] => (Block) C:\program files\resolume 2.4\resolume.exe (Resolume V.O.F)
FirewallRules: [TCP Query User{A2463772-3990-4153-A628-8F9E12229215}C:\users\xlab\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\xlab\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.)
FirewallRules: [UDP Query User{E93C7714-1621-4147-961D-5E16FD290815}C:\users\xlab\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\xlab\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.)
FirewallRules: [{2DF8A237-C2BD-4030-8367-5FA49F568420}] => (Allow) C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{D921A631-57FB-4CD8-98EA-7520A9F2C7E5}] => (Allow) C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{B0513230-A833-4CCC-A94C-0EEF424FA579}] => (Allow) C:\Program Files\Opera\49.0.2725.39\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{23BDA6AF-6626-4F22-B930-69909C0B3A8C}] => (Allow) C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe (Sony Mobile Communications AB -> )
FirewallRules: [{20567799-5AB6-4CF4-A25F-DD3811EAF0CC}] => (Allow) C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe (Sony Mobile Communications AB -> )
FirewallRules: [{33701D39-67C8-4542-9AA9-59EAF5827237}] => (Allow) C:\Program Files\Apowersoft\ApowerManager\ApowerManager.exe (Apowersoft Ltd -> Apowersoft Ltd.)
FirewallRules: [{384D3F39-7ADC-43D8-B3B8-BF4FF604694D}] => (Allow) C:\Program Files\Apowersoft\ApowerManager\ApowerManager.exe (Apowersoft Ltd -> Apowersoft Ltd.)
FirewallRules: [{8497C730-01BE-4378-93FA-4F9BF590973E}] => (Allow) C:\Program Files\Apowersoft\ApowerManager\ApowerManagerCoreServices.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{DC143C20-FF55-4C5D-9F5C-78DB0979EFDC}] => (Allow) C:\Program Files\Apowersoft\ApowerManager\ApowerManagerCoreServices.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{7D28F517-6548-40C5-8248-6723D6D52FA5}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{F57C68C7-3417-4111-986A-41521628FCCD}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{A545753C-4B8C-4A36-8A4F-815E23964046}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DEFD72C7-317E-45E3-AD01-FEA78ED61ACC}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{A5DE7A0E-9635-412C-8A2C-B43707097EF3}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{7D7EA82F-08FC-4D68-88D7-75183A18C506}] => (Allow) C:\Program Files\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony)
FirewallRules: [{43458C12-9092-4CD1-AE31-AAF0BC623DDF}] => (Allow) C:\Program Files\Opera\57.0.3098.116\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{4EE02E26-122B-4803-BAAF-74BC5AAA2D5F}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS693A\HP.EasyStart.exe No File
FirewallRules: [{6BD9CCB4-E9A7-4042-9E0D-B824A735072F}] => (Allow) C:\Program Files\HP\HP DeskJet 5000 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{59A06329-F03D-4269-8DF2-4A25C5114064}] => (Allow) LPort=5357
FirewallRules: [{9CE0A55D-4A23-4792-B13A-7E36A2E25568}] => (Allow) C:\Program Files\HP\HP DeskJet 5000 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{DA59F2B6-D181-4E24-9416-78B30955B383}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{CB35617B-CA1E-4E54-9033-5500A5856974}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS3AE7\HPDiagnosticCoreUI.exe No File
FirewallRules: [{8A2D12AB-C146-4E28-89B8-847AF4436A63}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS3AE7\HPDiagnosticCoreUI.exe No File
FirewallRules: [{E753178C-3DD9-4572-8A7B-EEB94D70F900}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS4D3C\HPDiagnosticCoreUI.exe No File
FirewallRules: [{D8FC64FE-965A-4745-9AAB-4855A9CB1475}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS4D3C\HPDiagnosticCoreUI.exe No File
FirewallRules: [{56012407-EC5E-46BA-ACD4-6CD496930003}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS431E\HPDiagnosticCoreUI.exe No File
FirewallRules: [{E0E35843-1823-4361-B780-3C4FAF2E9AE8}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS431E\HPDiagnosticCoreUI.exe No File
FirewallRules: [{5CDC4465-70C5-47F7-9DC6-BA07176346E9}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS7E53\HPDiagnosticCoreUI.exe No File
FirewallRules: [{1F7902B5-A43E-4DAD-8826-E79BF54A9B0D}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS7E53\HPDiagnosticCoreUI.exe No File
FirewallRules: [{F30AB76C-DD9B-42EF-8C41-DDA1588C5033}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{3D34C1D4-EB44-4E93-807A-69E470D424C6}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{25336529-7ACC-4486-B393-656F67139DF9}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{EDBFA608-D2E3-42BD-8285-EBFE2A33B91A}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation - Mobile Wireless Group -> )
FirewallRules: [{6D22A9C8-680A-4ABC-B3B8-0462158E704B}] => (Allow) C:\Program Files\Opera\58.0.3135.65\opera.exe (Opera Software AS -> Opera Software)

==================== Restore Points =========================

05-02-2019 01:22:11 Naplánovaný kontrolní bod
06-02-2019 22:57:13 Windows Update
11-02-2019 23:10:49 Windows Update
13-02-2019 19:00:28 Windows Update
17-02-2019 11:04:58 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/17/2019 08:53:36 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (02/17/2019 07:53:34 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (02/17/2019 07:24:09 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (02/17/2019 03:53:35 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (02/17/2019 03:01:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HuaweiHiSuiteService.exe, verze: 2.0.0.42, časové razítko: 0x57beb9f8
Název chybujícího modulu: HuaweiHiSuiteService.exe, verze: 2.0.0.42, časové razítko: 0x57beb9f8
Kód výjimky: 0xc0000005
Posun chyby: 0x00003717
ID chybujícího procesu: 0xaec
Čas spuštění chybující aplikace: 0x01d4c6c9354bf293
Cesta k chybující aplikaci: C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe
Cesta k chybujícímu modulu: C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe
ID zprávy: 7c689229-32bc-11e9-885f-f0def19adff5

Error: (02/17/2019 02:53:35 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (02/17/2019 01:53:34 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (02/17/2019 12:53:35 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.


System errors:
=============
Error: (02/17/2019 07:15:22 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 20.

Error: (02/17/2019 03:43:07 PM) (Source: NetBT) (EventID: 4319) (User: )
Description: V síti TCP byl zjištěn duplicitní název. Adresa IP počítače, který zprávu odeslal,
je uvedena v datech. Zadáte-li na příkazovém řádku příkaz nbtstat -n,
zjistíte, který název je v konfliktním stavu.

Error: (02/17/2019 03:02:23 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
a APPID
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
uživateli NT AUTHORITY\SYSTEM SID (S-1-5-18) z adresy LocalHost (pomocí LRPC). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (02/17/2019 03:02:20 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
a APPID
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
uživateli NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) z adresy LocalHost (pomocí LRPC). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (02/17/2019 03:01:28 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HuaweiHiSuiteService.exe byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/17/2019 03:01:28 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
AVPCIFilter

Error: (02/17/2019 03:00:52 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Install Supporter bylo dosaženo časového limitu (60000 ms).

Error: (02/17/2019 02:57:45 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\System32\IWMSSvc.dll


Windows Defender:
===================================
Date: 2013-08-12 16:12:49.596
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{5ABFFFAC-6BEC-4091-B43A-93DEE7AA37FE}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:xLab-PC\xLab

Date: 2013-08-12 16:12:05.596
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{F7E975AD-EDCA-4F80-9570-A329CCA33B2F}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:xLab-PC\xLab

Date: 2013-11-18 21:26:29.820
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:
Zdroj aktualizace:Uživatel
Typ podpisu:
Typ aktualizace:
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:
Kód chyby:0x80070652
Popis chyby:Momentálně je spuštěna jiná instalace. Před spuštěním nové instalace nejdříve dokončete spuštěnou instalaci.

CodeIntegrity:
===================================

Date: 2014-03-02 21:38:37.677
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-03-02 21:24:40.504
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-03-02 14:58:58.243
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-03-02 14:48:35.542
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-03-02 13:52:25.657
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-03-02 11:23:53.264
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-03-02 08:22:13.503
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-03-01 23:20:12.464
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-2430M CPU @ 2.40GHz
Percentage of memory in use: 80%
Total physical RAM: 2988.17 MB
Available physical RAM: 579.11 MB
Total Virtual: 5974.71 MB
Available Virtual: 3217.31 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:654.69 GB) (Free:268.5 GB) NTFS
Drive d: (LENOVO) (Fixed) (Total:29 GB) (Free:27.19 GB) NTFS

\\?\Volume{84687b6d-8e2a-11e1-965a-806e6f6e6963}\ () (Fixed) (Total:0.2 GB) (Free:0.16 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: C798D13D)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=654.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=29 GB) - (Type=0F Extended)
Partition 4: (Not Active) - (Size=14.7 GB) - (Type=12)

==================== End of Addition.txt ============================

Re: prevence, děkuji

Napsal: 17 úno 2019 21:53
od Diallix
Do poznamkoveho bloku skopirujte obsah dole:

Kód: Vybrat vše

CloseProcesses:
CreateRestorePoint:

C:\Program Files\McAfee Security Scan\3.11.961\SSScheduler.exe
C:\Program Files\McAfee Security Scan
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
c:\progra~1\AssistantSvc.dll
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\MountPoints2: {3ca08d37-fd07-11e3-9ca0-f0def19adff5} - F:\AutoRun.exe
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\MountPoints2: {58c7057c-1504-11e9-9dd0-f0def19adff5} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\MountPoints2: {80fb3345-53a2-11e3-bb0e-f0def19adff5} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\MountPoints2: {8c41d852-5bb5-11e5-99b0-f0def19adff5} - H:\startme.exe
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\MountPoints2: {fc86475c-20d1-11e7-9e27-f0def19adff5} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\MountPoints2: {fc864766-20d1-11e7-9e27-f0def19adff5} - F:\HiSuiteDownLoader.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2019-02-16]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.961\SSScheduler.exe (McAfee, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-703911552-1951188683-890541146-1000 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = 
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Users\xLab\Desktop\fds\vlc\npvlc.dll [No File]
FF Plugin: @videolan.org/vlc,version=3.0.5 -> C:\Users\xLab\Desktop\fds\vlc\npvlc.dll [No File]
S2 916e5338; "C:\Windows\system32\rundll32.exe" "c:\progra~1\AssistantSvc.dll",service
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.961\McCHSvc.exe [322792 2019-02-08] (McAfee, Inc. -> McAfee, Inc.)
U3 aswbdisk; no ImagePath
S0 AVPCIFilter; system32\DRIVERS\AVPCIFilter.sys [X]
S3 btwaudio; system32\drivers\btwaudio.sys [X]
S3 btwavdt; system32\drivers\btwavdt.sys [X]
S3 btwl2cap; system32\DRIVERS\btwl2cap.sys [X]
S3 btwrchid; system32\DRIVERS\btwrchid.sys [X]
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
S3 pccsmcfd; system32\DRIVERS\pccsmcfd.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
2019-02-16 12:41 - 2019-02-16 12:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2019-02-16 12:40 - 2019-02-16 12:44 - 000000000 ____D C:\ProgramData\McAfee Security Scan
2013-01-22 02:59 - 2013-01-22 02:59 - 000000008 ___SH () C:\ProgramData\desktop.dat
2015-04-19 13:20 - 2015-04-19 13:20 - 000005872 _____ () C:\Users\xLab\AppData\Roaming\5luXLfcKjFxDLCqBh
2015-02-06 17:32 - 2015-04-27 22:05 - 000000020 _____ () C:\Users\xLab\AppData\Roaming\appdataFr3.bin
2015-04-19 13:20 - 2015-04-19 13:20 - 000005872 _____ () C:\Users\xLab\AppData\Roaming\LPsNL2G0hiSFkGKuJedSoq
2017-09-30 23:04 - 2017-10-11 23:00 - 000003072 _____ () C:\Users\xLab\AppData\Roaming\MCLAB Prefsv3
2018-01-13 12:53 - 2018-05-04 00:48 - 000003072 _____ () C:\Users\xLab\AppData\Roaming\O-Print Prefsv3
2015-04-14 17:28 - 2015-04-14 17:28 - 000001171 _____ () C:\Users\xLab\AppData\Roaming\spQcPKp
2015-04-14 17:28 - 2015-04-14 17:28 - 000001171 _____ () C:\Users\xLab\AppData\Roaming\YKrJHM3fw3v5WkXTRLkcm6IEn
2017-08-04 23:59 - 2017-08-21 20:31 - 000000058 _____ () C:\Users\xLab\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat
2016-12-05 20:27 - 2016-12-05 20:27 - 045700992 _____ (Sony) C:\Users\xLab\AppData\Local\pcc.exe
2018-05-12 13:27 - 2018-05-12 13:27 - 000002925 _____ () C:\Users\xLab\AppData\Local\recently-used.xbel
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\xLab\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateOnDemand.exe (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateOnDemand.exe (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateOnDemand.exe (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{A804CF1A-91E5-4F0C-9E8C-DB39E74056DD}\InprocServer32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\psuser.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\npGoogleUpdate3.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\npGoogleUpdate3.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateOnDemand.exe (Google Inc -> Google Inc.
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\psuser.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\xLab\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{035FBE31-3755-450A-A775-5E6BBD43D344}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.135\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.33.5\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> "C:\Users\xLab\AppData\Local\Google\Update\1.3.21.115\GoogleUpdateOnDemand.exe" => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> "C:\Users\xLab\AppData\Local\Google\Update\1.3.21.115\GoogleUpdateOnDemand.exe" => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> "C:\Users\xLab\AppData\Local\Google\Update\1.3.21.115\GoogleUpdateOnDemand.exe" => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{62A0D750-DED9-448C-B693-406B34BB0892}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.145\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{634059C0-D264-4B2C-AE80-F73E48D33E5B}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.123\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{6D7374DE-63AA-473C-8C02-60D9CDCD84C5}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.153\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{C5A2122B-A05B-4FD8-AE49-91990AE10998}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.115\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{DEFA762B-EBC6-4CE2-A48C-32B232AAC64D}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Roaming\IDM\bin\npwidevinemediaoptimizer.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> "C:\Users\xLab\AppData\Local\Google\Update\1.3.21.115\GoogleUpdateOnDemand.exe" => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.115\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{FB994D36-B312-46CE-A40B-CF63980641F9}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.111\psuser.dll => No File
Task: {14A9B69A-E07A-4774-9529-0530C166E03E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-703911552-1951188683-890541146-1000Core => C:\Users\xLab\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {16703C78-C24F-43B6-A8FB-2A6CC01585FE} - System32\Tasks\{33B47F13-559A-42EE-998C-2FB7256A6BD1} => C:\Windows\system32\pcalua.exe -a C:\Users\xLab\AppData\Local\Temp\ckz_BJ2R\mp_app_setup.exe -d C:\Users\xLab\AppData\Local\Temp\ckz_BJ2R <==== ATTENTION
Task: {1DED44B9-4579-48D6-BB0C-A7356402E47B} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (AVAST Software s.r.o. -> AVAST Software) <==== ATTENTION
Task: {40EE216D-84A3-4D82-A2D5-9596AFB9DD12} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {6510F176-844B-4F3A-8349-2FC16E629942} - System32\Tasks\{8668A13C-D5BE-4E05-BD53-97A996102C77} => C:\Windows\system32\pcalua.exe -a C:\Users\xLab\AppData\Local\Temp\scoped_dir8680_26274\wmp11-windowsxp-x86-CS-CZ.exe -d C:\Users\xLab\AppData\Local\Temp\scoped_dir8680_26274 <==== ATTENTION
Task: {8779502D-A469-45D2-B823-53B6527C4939} - System32\Tasks\{44CD8D11-BA61-45B7-9E9A-AE8FD165FE00} => C:\Windows\system32\pcalua.exe -a "C:\Users\xLab\Downloads\Instaluj.cz - 15352.exe" -d C:\Users\xLab\Downloads
Task: {AC87D843-FE63-4304-8F78-E1BC8CEA41B9} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-703911552-1951188683-890541146-1000UA => C:\Users\xLab\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {DDF1A663-AC86-4E83-82C0-33B8EE76045F} - \AutoKMS -> No File <==== ATTENTION
Shortcut: C:\Users\xLab\lasernet\komunikace start – zástupce.lnk -> C:\Users\xLab\lasernet\lasernet2midi\start.bat ()
AlternateDataStreams: C:\ProgramData\TEMP:0A8E2C33 [133]
AlternateDataStreams: C:\ProgramData\TEMP:373E1720 [118]
AlternateDataStreams: C:\ProgramData\TEMP:A31FAD21 [118]
FirewallRules: [{E460D3C8-2485-4E11-B7B3-6A7BFADE8005}] => (Allow) LPort=1826
FirewallRules: [{487124DE-A76E-4A5F-8C78-676953B1081A}] => (Allow) LPort=1926
FirewallRules: [{62F7FD8B-2754-4E54-8D82-231C74250B73}] => (Allow) LPort=1726
FirewallRules: [{DE2C32E1-F979-46EA-A0C0-1B713671DF15}] => (Allow) LPort=1826
FirewallRules: [{11E8C3CB-33E9-474E-BE86-F7293B862455}] => (Allow) LPort=1926
FirewallRules: [{08B2E888-D521-4943-826F-53D5EB2A6B33}] => (Allow) LPort=1726
FirewallRules: [{8EBF9415-8B8A-4949-B97F-339DC085C550}] => (Allow) LPort=1826
FirewallRules: [{73B4A4E4-6045-43DC-BAA9-EA6BDD6F61D1}] => (Allow) LPort=1926
FirewallRules: [{91D4C2EE-378C-4683-A877-8F67DE842476}] => (Allow) LPort=1726
FirewallRules: [{776EE5EC-2656-4DE6-9CB5-80204155C96B}] => (Allow) LPort=5353
FirewallRules: [{B0929AE7-0426-4C60-AB92-B0F457E6A924}] => (Allow) LPort=3703
FirewallRules: [{14E3A42A-4020-46FE-8F44-5FA517718714}] => (Allow) LPort=3704
FirewallRules: [{AACCE4A6-7FA1-422D-993D-0D08762CD9EF}] => (Allow) LPort=51000
FirewallRules: [{CE505DBB-0159-45ED-82CA-49FB587A3F23}] => (Allow) LPort=51001
FirewallRules: [{4EE02E26-122B-4803-BAAF-74BC5AAA2D5F}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS693A\HP.EasyStart.exe No File
FirewallRules: [{CB35617B-CA1E-4E54-9033-5500A5856974}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS3AE7\HPDiagnosticCoreUI.exe No File
FirewallRules: [{8A2D12AB-C146-4E28-89B8-847AF4436A63}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS3AE7\HPDiagnosticCoreUI.exe No File
FirewallRules: [{E753178C-3DD9-4572-8A7B-EEB94D70F900}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS4D3C\HPDiagnosticCoreUI.exe No File
FirewallRules: [{D8FC64FE-965A-4745-9AAB-4855A9CB1475}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS4D3C\HPDiagnosticCoreUI.exe No File
FirewallRules: [{56012407-EC5E-46BA-ACD4-6CD496930003}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS431E\HPDiagnosticCoreUI.exe No File
FirewallRules: [{E0E35843-1823-4361-B780-3C4FAF2E9AE8}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS431E\HPDiagnosticCoreUI.exe No File
FirewallRules: [{5CDC4465-70C5-47F7-9DC6-BA07176346E9}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS7E53\HPDiagnosticCoreUI.exe No File
FirewallRules: [{1F7902B5-A43E-4DAD-8826-E79BF54A9B0D}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS7E53\HPDiagnosticCoreUI.exe No File

EmptyTemp:
Hosts:
Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST.
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.

Re: prevence, děkuji

Napsal: 17 úno 2019 23:34
od llucaa
Fix result of Farbar Recovery Scan Tool (x86) Version: 17-02-2019
Ran by xLab (17-02-2019 23:09:26) Run:1
Running from C:\Users\xLab\Desktop\Programy\číštění PC
Loaded Profiles: xLab & UpdatusUser (Available Profiles: xLab & UpdatusUser & DefaultAppPool)
Boot Mode: Normal

==============================================

fixlist content:
*****************
CloseProcesses:
CreateRestorePoint:

C:\Program Files\McAfee Security Scan\3.11.961\SSScheduler.exe
C:\Program Files\McAfee Security Scan
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
c:\progra~1\AssistantSvc.dll
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\MountPoints2: {3ca08d37-fd07-11e3-9ca0-f0def19adff5} - F:\AutoRun.exe
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\MountPoints2: {58c7057c-1504-11e9-9dd0-f0def19adff5} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\MountPoints2: {80fb3345-53a2-11e3-bb0e-f0def19adff5} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\MountPoints2: {8c41d852-5bb5-11e5-99b0-f0def19adff5} - H:\startme.exe
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\MountPoints2: {fc86475c-20d1-11e7-9e27-f0def19adff5} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-703911552-1951188683-890541146-1000\...\MountPoints2: {fc864766-20d1-11e7-9e27-f0def19adff5} - F:\HiSuiteDownLoader.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2019-02-16]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.961\SSScheduler.exe (McAfee, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-703911552-1951188683-890541146-1000 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL =
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Users\xLab\Desktop\fds\vlc\npvlc.dll [No File]
FF Plugin: @videolan.org/vlc,version=3.0.5 -> C:\Users\xLab\Desktop\fds\vlc\npvlc.dll [No File]
S2 916e5338; "C:\Windows\system32\rundll32.exe" "c:\progra~1\AssistantSvc.dll",service
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.961\McCHSvc.exe [322792 2019-02-08] (McAfee, Inc. -> McAfee, Inc.)
U3 aswbdisk; no ImagePath
S0 AVPCIFilter; system32\DRIVERS\AVPCIFilter.sys [X]
S3 btwaudio; system32\drivers\btwaudio.sys [X]
S3 btwavdt; system32\drivers\btwavdt.sys [X]
S3 btwl2cap; system32\DRIVERS\btwl2cap.sys [X]
S3 btwrchid; system32\DRIVERS\btwrchid.sys [X]
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
S3 pccsmcfd; system32\DRIVERS\pccsmcfd.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
2019-02-16 12:41 - 2019-02-16 12:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2019-02-16 12:40 - 2019-02-16 12:44 - 000000000 ____D C:\ProgramData\McAfee Security Scan
2013-01-22 02:59 - 2013-01-22 02:59 - 000000008 ___SH () C:\ProgramData\desktop.dat
2015-04-19 13:20 - 2015-04-19 13:20 - 000005872 _____ () C:\Users\xLab\AppData\Roaming\5luXLfcKjFxDLCqBh
2015-02-06 17:32 - 2015-04-27 22:05 - 000000020 _____ () C:\Users\xLab\AppData\Roaming\appdataFr3.bin
2015-04-19 13:20 - 2015-04-19 13:20 - 000005872 _____ () C:\Users\xLab\AppData\Roaming\LPsNL2G0hiSFkGKuJedSoq
2017-09-30 23:04 - 2017-10-11 23:00 - 000003072 _____ () C:\Users\xLab\AppData\Roaming\MCLAB Prefsv3
2018-01-13 12:53 - 2018-05-04 00:48 - 000003072 _____ () C:\Users\xLab\AppData\Roaming\O-Print Prefsv3
2015-04-14 17:28 - 2015-04-14 17:28 - 000001171 _____ () C:\Users\xLab\AppData\Roaming\spQcPKp
2015-04-14 17:28 - 2015-04-14 17:28 - 000001171 _____ () C:\Users\xLab\AppData\Roaming\YKrJHM3fw3v5WkXTRLkcm6IEn
2017-08-04 23:59 - 2017-08-21 20:31 - 000000058 _____ () C:\Users\xLab\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat
2016-12-05 20:27 - 2016-12-05 20:27 - 045700992 _____ (Sony) C:\Users\xLab\AppData\Local\pcc.exe
2018-05-12 13:27 - 2018-05-12 13:27 - 000002925 _____ () C:\Users\xLab\AppData\Local\recently-used.xbel
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\xLab\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateOnDemand.exe (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateOnDemand.exe (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateOnDemand.exe (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{A804CF1A-91E5-4F0C-9E8C-DB39E74056DD}\InprocServer32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\psuser.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\npGoogleUpdate3.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\npGoogleUpdate3.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateOnDemand.exe (Google Inc -> Google Inc.
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\xLab\AppData\Local\Google\Update\1.3.33.23\psuser.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\xLab\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{035FBE31-3755-450A-A775-5E6BBD43D344}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.135\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.33.5\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> "C:\Users\xLab\AppData\Local\Google\Update\1.3.21.115\GoogleUpdateOnDemand.exe" => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> "C:\Users\xLab\AppData\Local\Google\Update\1.3.21.115\GoogleUpdateOnDemand.exe" => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> "C:\Users\xLab\AppData\Local\Google\Update\1.3.21.115\GoogleUpdateOnDemand.exe" => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{62A0D750-DED9-448C-B693-406B34BB0892}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.145\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{634059C0-D264-4B2C-AE80-F73E48D33E5B}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.123\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{6D7374DE-63AA-473C-8C02-60D9CDCD84C5}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.153\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{C5A2122B-A05B-4FD8-AE49-91990AE10998}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.115\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{DEFA762B-EBC6-4CE2-A48C-32B232AAC64D}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Roaming\IDM\bin\npwidevinemediaoptimizer.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> "C:\Users\xLab\AppData\Local\Google\Update\1.3.21.115\GoogleUpdateOnDemand.exe" => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.115\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{FB994D36-B312-46CE-A40B-CF63980641F9}\InprocServer32 -> C:\Users\UpdatusUser\AppData\Local\Google\Update\1.3.21.111\psuser.dll => No File
Task: {14A9B69A-E07A-4774-9529-0530C166E03E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-703911552-1951188683-890541146-1000Core => C:\Users\xLab\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {16703C78-C24F-43B6-A8FB-2A6CC01585FE} - System32\Tasks\{33B47F13-559A-42EE-998C-2FB7256A6BD1} => C:\Windows\system32\pcalua.exe -a C:\Users\xLab\AppData\Local\Temp\ckz_BJ2R\mp_app_setup.exe -d C:\Users\xLab\AppData\Local\Temp\ckz_BJ2R <==== ATTENTION
Task: {1DED44B9-4579-48D6-BB0C-A7356402E47B} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (AVAST Software s.r.o. -> AVAST Software) <==== ATTENTION
Task: {40EE216D-84A3-4D82-A2D5-9596AFB9DD12} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {6510F176-844B-4F3A-8349-2FC16E629942} - System32\Tasks\{8668A13C-D5BE-4E05-BD53-97A996102C77} => C:\Windows\system32\pcalua.exe -a C:\Users\xLab\AppData\Local\Temp\scoped_dir8680_26274\wmp11-windowsxp-x86-CS-CZ.exe -d C:\Users\xLab\AppData\Local\Temp\scoped_dir8680_26274 <==== ATTENTION
Task: {8779502D-A469-45D2-B823-53B6527C4939} - System32\Tasks\{44CD8D11-BA61-45B7-9E9A-AE8FD165FE00} => C:\Windows\system32\pcalua.exe -a "C:\Users\xLab\Downloads\Instaluj.cz - 15352.exe" -d C:\Users\xLab\Downloads
Task: {AC87D843-FE63-4304-8F78-E1BC8CEA41B9} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-703911552-1951188683-890541146-1000UA => C:\Users\xLab\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {DDF1A663-AC86-4E83-82C0-33B8EE76045F} - \AutoKMS -> No File <==== ATTENTION
Shortcut: C:\Users\xLab\lasernet\komunikace start � z�stupce.lnk -> C:\Users\xLab\lasernet\lasernet2midi\start.bat ()
AlternateDataStreams: C:\ProgramData\TEMP:0A8E2C33 [133]
AlternateDataStreams: C:\ProgramData\TEMP:373E1720 [118]
AlternateDataStreams: C:\ProgramData\TEMP:A31FAD21 [118]
FirewallRules: [{E460D3C8-2485-4E11-B7B3-6A7BFADE8005}] => (Allow) LPort=1826
FirewallRules: [{487124DE-A76E-4A5F-8C78-676953B1081A}] => (Allow) LPort=1926
FirewallRules: [{62F7FD8B-2754-4E54-8D82-231C74250B73}] => (Allow) LPort=1726
FirewallRules: [{DE2C32E1-F979-46EA-A0C0-1B713671DF15}] => (Allow) LPort=1826
FirewallRules: [{11E8C3CB-33E9-474E-BE86-F7293B862455}] => (Allow) LPort=1926
FirewallRules: [{08B2E888-D521-4943-826F-53D5EB2A6B33}] => (Allow) LPort=1726
FirewallRules: [{8EBF9415-8B8A-4949-B97F-339DC085C550}] => (Allow) LPort=1826
FirewallRules: [{73B4A4E4-6045-43DC-BAA9-EA6BDD6F61D1}] => (Allow) LPort=1926
FirewallRules: [{91D4C2EE-378C-4683-A877-8F67DE842476}] => (Allow) LPort=1726
FirewallRules: [{776EE5EC-2656-4DE6-9CB5-80204155C96B}] => (Allow) LPort=5353
FirewallRules: [{B0929AE7-0426-4C60-AB92-B0F457E6A924}] => (Allow) LPort=3703
FirewallRules: [{14E3A42A-4020-46FE-8F44-5FA517718714}] => (Allow) LPort=3704
FirewallRules: [{AACCE4A6-7FA1-422D-993D-0D08762CD9EF}] => (Allow) LPort=51000
FirewallRules: [{CE505DBB-0159-45ED-82CA-49FB587A3F23}] => (Allow) LPort=51001
FirewallRules: [{4EE02E26-122B-4803-BAAF-74BC5AAA2D5F}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS693A\HP.EasyStart.exe No File
FirewallRules: [{CB35617B-CA1E-4E54-9033-5500A5856974}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS3AE7\HPDiagnosticCoreUI.exe No File
FirewallRules: [{8A2D12AB-C146-4E28-89B8-847AF4436A63}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS3AE7\HPDiagnosticCoreUI.exe No File
FirewallRules: [{E753178C-3DD9-4572-8A7B-EEB94D70F900}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS4D3C\HPDiagnosticCoreUI.exe No File
FirewallRules: [{D8FC64FE-965A-4745-9AAB-4855A9CB1475}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS4D3C\HPDiagnosticCoreUI.exe No File
FirewallRules: [{56012407-EC5E-46BA-ACD4-6CD496930003}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS431E\HPDiagnosticCoreUI.exe No File
FirewallRules: [{E0E35843-1823-4361-B780-3C4FAF2E9AE8}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS431E\HPDiagnosticCoreUI.exe No File
FirewallRules: [{5CDC4465-70C5-47F7-9DC6-BA07176346E9}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS7E53\HPDiagnosticCoreUI.exe No File
FirewallRules: [{1F7902B5-A43E-4DAD-8826-E79BF54A9B0D}] => (Allow) C:\Users\xLab\AppData\Local\Temp\7zS7E53\HPDiagnosticCoreUI.exe No File

EmptyTemp:
Hosts:


*****************

Processes closed successfully.
Restore point was successfully created.
C:\Program Files\McAfee Security Scan\3.11.961\SSScheduler.exe => moved successfully
C:\Program Files\McAfee Security Scan => moved successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk => moved successfully
"c:\progra~1\AssistantSvc.dll" => not found
HKU\S-1-5-21-703911552-1951188683-890541146-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3ca08d37-fd07-11e3-9ca0-f0def19adff5} => removed successfully.
HKLM\Software\Classes\CLSID\{3ca08d37-fd07-11e3-9ca0-f0def19adff5} => not found
HKU\S-1-5-21-703911552-1951188683-890541146-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{58c7057c-1504-11e9-9dd0-f0def19adff5} => removed successfully.
HKLM\Software\Classes\CLSID\{58c7057c-1504-11e9-9dd0-f0def19adff5} => not found
HKU\S-1-5-21-703911552-1951188683-890541146-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{80fb3345-53a2-11e3-bb0e-f0def19adff5} => removed successfully.
HKLM\Software\Classes\CLSID\{80fb3345-53a2-11e3-bb0e-f0def19adff5} => not found
HKU\S-1-5-21-703911552-1951188683-890541146-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8c41d852-5bb5-11e5-99b0-f0def19adff5} => removed successfully.
HKLM\Software\Classes\CLSID\{8c41d852-5bb5-11e5-99b0-f0def19adff5} => not found
HKU\S-1-5-21-703911552-1951188683-890541146-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fc86475c-20d1-11e7-9e27-f0def19adff5} => removed successfully.
HKLM\Software\Classes\CLSID\{fc86475c-20d1-11e7-9e27-f0def19adff5} => not found
HKU\S-1-5-21-703911552-1951188683-890541146-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fc864766-20d1-11e7-9e27-f0def19adff5} => removed successfully.
HKLM\Software\Classes\CLSID\{fc864766-20d1-11e7-9e27-f0def19adff5} => not found
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk" => not found
"C:\Program Files\McAfee Security Scan\3.11.961\SSScheduler.exe" => not found
HKLM\SOFTWARE\Policies\Google => removed successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{80c554b9-c7f8-4a21-9471-06d606da78a2} => removed successfully.
HKLM\Software\Classes\CLSID\{80c554b9-c7f8-4a21-9471-06d606da78a2} => not found
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully.
"HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully.
"HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully.
HKU\S-1-5-21-703911552-1951188683-890541146-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{80c554b9-c7f8-4a21-9471-06d606da78a2} => removed successfully.
HKLM\Software\Classes\CLSID\{80c554b9-c7f8-4a21-9471-06d606da78a2} => not found
HKLM\Software\Classes\PROTOCOLS\Handler\skype4com => removed successfully.
HKLM\Software\Classes\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} => not found
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully.
HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.1 => removed successfully.
HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.5 => removed successfully.
HKLM\System\CurrentControlSet\Services\916e5338 => removed successfully.
916e5338 => service removed successfully.
HKLM\System\CurrentControlSet\Services\McComponentHostService => removed successfully.
McComponentHostService => service removed successfully.
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
HKLM\System\CurrentControlSet\Services\AVPCIFilter => removed successfully.
AVPCIFilter => service removed successfully.
HKLM\System\CurrentControlSet\Services\btwaudio => removed successfully.
btwaudio => service removed successfully.
HKLM\System\CurrentControlSet\Services\btwavdt => removed successfully.
btwavdt => service removed successfully.
HKLM\System\CurrentControlSet\Services\btwl2cap => removed successfully.
btwl2cap => service removed successfully.
HKLM\System\CurrentControlSet\Services\btwrchid => removed successfully.
btwrchid => service removed successfully.
HKLM\System\CurrentControlSet\Services\Huawei => removed successfully.
Huawei => service removed successfully.
HKLM\System\CurrentControlSet\Services\hwdatacard => removed successfully.
hwdatacard => service removed successfully.
HKLM\System\CurrentControlSet\Services\hwusbdev => removed successfully.
hwusbdev => service removed successfully.
HKLM\System\CurrentControlSet\Services\pccsmcfd => removed successfully.
pccsmcfd => service removed successfully.
HKLM\System\CurrentControlSet\Services\Synth3dVsc => removed successfully.
Synth3dVsc => service removed successfully.
HKLM\System\CurrentControlSet\Services\tsusbhub => removed successfully.
tsusbhub => service removed successfully.
HKLM\System\CurrentControlSet\Services\VGPU => removed successfully.
VGPU => service removed successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus => moved successfully
C:\ProgramData\McAfee Security Scan => moved successfully
C:\ProgramData\desktop.dat => moved successfully
C:\Users\xLab\AppData\Roaming\5luXLfcKjFxDLCqBh => moved successfully
C:\Users\xLab\AppData\Roaming\appdataFr3.bin => moved successfully
C:\Users\xLab\AppData\Roaming\LPsNL2G0hiSFkGKuJedSoq => moved successfully
C:\Users\xLab\AppData\Roaming\MCLAB Prefsv3 => moved successfully
C:\Users\xLab\AppData\Roaming\O-Print Prefsv3 => moved successfully
C:\Users\xLab\AppData\Roaming\spQcPKp => moved successfully
C:\Users\xLab\AppData\Roaming\YKrJHM3fw3v5WkXTRLkcm6IEn => moved successfully
C:\Users\xLab\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat => moved successfully
C:\Users\xLab\AppData\Local\pcc.exe => moved successfully
C:\Users\xLab\AppData\Local\recently-used.xbel => moved successfully
HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F} => removed successfully.
HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43} => removed successfully.
HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598} => removed successfully.
HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119} => removed successfully.
HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{A804CF1A-91E5-4F0C-9E8C-DB39E74056DD} => removed successfully.
HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} => removed successfully.
HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55} => removed successfully.
HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750} => removed successfully.
HKU\S-1-5-21-703911552-1951188683-890541146-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F} => removed successfully.
"HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}" => not found
"HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{035FBE31-3755-450A-A775-5E6BBD43D344}" => not found
"HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}" => not found
"HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}" => not found
"HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}" => not found
"HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}" => not found
"HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{62A0D750-DED9-448C-B693-406B34BB0892}" => not found
"HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{634059C0-D264-4B2C-AE80-F73E48D33E5B}" => not found
"HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{6D7374DE-63AA-473C-8C02-60D9CDCD84C5}" => not found
"HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}" => not found
"HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}" => not found
"HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{C5A2122B-A05B-4FD8-AE49-91990AE10998}" => not found
"HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{DEFA762B-EBC6-4CE2-A48C-32B232AAC64D}" => not found
"HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}" => not found
"HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}" => not found
"HKU\S-1-5-21-703911552-1951188683-890541146-1003_Classes\CLSID\{FB994D36-B312-46CE-A40B-CF63980641F9}" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{14A9B69A-E07A-4774-9529-0530C166E03E}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{14A9B69A-E07A-4774-9529-0530C166E03E}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-703911552-1951188683-890541146-1000Core => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-703911552-1951188683-890541146-1000Core" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{16703C78-C24F-43B6-A8FB-2A6CC01585FE}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{16703C78-C24F-43B6-A8FB-2A6CC01585FE}" => removed successfully.
C:\Windows\System32\Tasks\{33B47F13-559A-42EE-998C-2FB7256A6BD1} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{33B47F13-559A-42EE-998C-2FB7256A6BD1}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1DED44B9-4579-48D6-BB0C-A7356402E47B}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1DED44B9-4579-48D6-BB0C-A7356402E47B}" => removed successfully.
C:\Windows\System32\Tasks\AvastUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AvastUpdateTaskMachineUA" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{40EE216D-84A3-4D82-A2D5-9596AFB9DD12}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{40EE216D-84A3-4D82-A2D5-9596AFB9DD12}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6510F176-844B-4F3A-8349-2FC16E629942}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6510F176-844B-4F3A-8349-2FC16E629942}" => removed successfully.
C:\Windows\System32\Tasks\{8668A13C-D5BE-4E05-BD53-97A996102C77} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8668A13C-D5BE-4E05-BD53-97A996102C77}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8779502D-A469-45D2-B823-53B6527C4939}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8779502D-A469-45D2-B823-53B6527C4939}" => removed successfully.
C:\Windows\System32\Tasks\{44CD8D11-BA61-45B7-9E9A-AE8FD165FE00} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{44CD8D11-BA61-45B7-9E9A-AE8FD165FE00}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AC87D843-FE63-4304-8F78-E1BC8CEA41B9}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AC87D843-FE63-4304-8F78-E1BC8CEA41B9}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-703911552-1951188683-890541146-1000UA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-703911552-1951188683-890541146-1000UA" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{DDF1A663-AC86-4E83-82C0-33B8EE76045F}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DDF1A663-AC86-4E83-82C0-33B8EE76045F}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS" => removed successfully.
C:\Users\xLab\lasernet\komunikace start � z�stupce.lnk => not found.
C:\ProgramData\TEMP => ":0A8E2C33" ADS removed successfully.
C:\ProgramData\TEMP => ":373E1720" ADS removed successfully.
C:\ProgramData\TEMP => ":A31FAD21" ADS removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E460D3C8-2485-4E11-B7B3-6A7BFADE8005}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{487124DE-A76E-4A5F-8C78-676953B1081A}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{62F7FD8B-2754-4E54-8D82-231C74250B73}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DE2C32E1-F979-46EA-A0C0-1B713671DF15}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{11E8C3CB-33E9-474E-BE86-F7293B862455}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{08B2E888-D521-4943-826F-53D5EB2A6B33}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8EBF9415-8B8A-4949-B97F-339DC085C550}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{73B4A4E4-6045-43DC-BAA9-EA6BDD6F61D1}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{91D4C2EE-378C-4683-A877-8F67DE842476}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{776EE5EC-2656-4DE6-9CB5-80204155C96B}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B0929AE7-0426-4C60-AB92-B0F457E6A924}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{14E3A42A-4020-46FE-8F44-5FA517718714}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AACCE4A6-7FA1-422D-993D-0D08762CD9EF}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CE505DBB-0159-45ED-82CA-49FB587A3F23}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4EE02E26-122B-4803-BAAF-74BC5AAA2D5F}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CB35617B-CA1E-4E54-9033-5500A5856974}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8A2D12AB-C146-4E28-89B8-847AF4436A63}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E753178C-3DD9-4572-8A7B-EEB94D70F900}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D8FC64FE-965A-4745-9AAB-4855A9CB1475}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{56012407-EC5E-46BA-ACD4-6CD496930003}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E0E35843-1823-4361-B780-3C4FAF2E9AE8}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5CDC4465-70C5-47F7-9DC6-BA07176346E9}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1F7902B5-A43E-4DAD-8826-E79BF54A9B0D}" => removed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 15847157 B
Java, Flash, Steam htmlcache => 657 B
Windows/system/drivers => 6789471 B
Edge => 0 B
Chrome => 287120 B
Firefox => 25326700 B
Opera => 413190164 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 66228 B
Public => 0 B
ProgramData => 0 B
systemprofile => 55947065 B
LocalService => 85100 B
NetworkService => 63946658 B
xLab => 10445705 B
UpdatusUser => 0 B
DefaultAppPool => 66228 B

RecycleBin => 1278924 B
EmptyTemp: => 573.8 MB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 17-02-2019 23:26:31)


Result of scheduled keys to remove after reboot:

HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected

==== End of Fixlog 23:26:31 ====

Re: prevence, děkuji

Napsal: 18 úno 2019 08:42
od Diallix
Ako je na tom pocitac?

Re: prevence, děkuji

Napsal: 18 úno 2019 21:13
od llucaa
myslím že dobrý, moc děkuji

Re: prevence, děkuji

Napsal: 18 úno 2019 21:28
od Diallix
neemate zac :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz