VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Niečo sa mi nezdá...

https://forum.viry.cz:443/viewtopic.php?t=155777

Stránka 1 z 1

Niečo sa mi nezdá...

Napsal: 06 dub 2019 19:38
od Sudoku33
Zdravím všetkých! Minule som tu mal menší problém s Phising mailom, s ktorým mi pomohol pán Rudy, za čo mu naozaj ďakujem :), teraz zas ide o to, že na priatelkynom PC sa zacali objavovať reklamy hneď ako otvorý Chrome, prestal jej fungovať Word a tak podobne. Keď som dal urobiť skúšku cez Malware bytes našlo 5x TROJANA (3x v registroch, 1x súbor a 1x časť registra), IHNEĎ SOM TO VYMAZAL.

Následne som robil ako pri Phising mailu som urobil logy cez FRST, posielam Log + Addition, aj som urobil čistenie cez Adware cleaner a ten nič nenašiel. Posielam LOG + Addition.

Ďakujem dopredu :P

Re: Niečo sa mi nezdá...

Napsal: 06 dub 2019 19:38
od Sudoku33
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17.03.2019
Ran by Richard (administrator) on GALLAS (06-04-2019 20:30:38)
Running from C:\Users\Richard\Desktop
Loaded Profiles: Richard & Administrator (Available Profiles: Richard & Administrator)
Platform: Windows 8.1 (Update) (X64) Language: Čeština (Česká republika)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Softex Inc.) [File not signed] C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\tbaseprovisioning.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
() [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Andrea Electronics -> Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [File not signed] C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(SafeNet Canada, Inc. -> SafeNet, Inc.) C:\Windows\System32\hasplms.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
(SafeNet Canada, Inc. -> SafeNet, Inc.) C:\Windows\System32\hasplmv.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler.exe
(Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
() [File not signed] C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Softex Incorporated -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
(Softex Incorporated -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(Softex Incorporated -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine\Vpn.exe
(Disig a.s. -> Disig a.s.) C:\Program Files (x86)\Disig\Disig Web Signer 1.0.7\Updater\WebSignerTray.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
(Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Ministerstvo vnútra Slovenskej republiky -> Ministerstvo vnútra Slovenskej republiky) C:\Program Files (x86)\EAC MW klient\EAC_MW_klient.exe
() [File not signed] C:\Program Files (x86)\EAC MW klient\eIDCertPropagator.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7535832 2014-02-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SimplePass] => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [3962936 2014-03-28] (Softex Incorporated -> Hewlett-Packard)
HKLM\...\Run: [OPBHOBroker] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [415288 2014-03-28] (Softex Incorporated -> Hewlett-Packard)
HKLM\...\Run: [OPBHOBrokerDesktop] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [415288 2014-03-28] (Softex Incorporated -> Hewlett-Packard)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [1045304 2013-10-08] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [640376 2008-10-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [260488 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [EAC_MW_klient] => C:\Program Files (x86)\EAC MW klient\EAC_MW_klient.exe [10600336 2019-03-18] (Ministerstvo vnútra Slovenskej republiky -> Ministerstvo vnútra Slovenskej republiky)
HKLM-x32\...\Run: [eIDCertPropagator] => C:\Program Files (x86)\EAC MW klient\eIDCertPropagator.exe [533504 2019-01-17] () [File not signed]
HKU\S-1-5-21-4070732696-2307962366-2096404084-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [731240 2018-10-04] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-4070732696-2307962366-2096404084-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19645800 2019-02-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4070732696-2307962366-2096404084-1002\...\Run: [AvastBrowserAutoLaunch_FEC1B1EBE9D1F5B302899B220563DBD4] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1942968 2019-03-06] (AVAST Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-4070732696-2307962366-2096404084-1002\...\RunOnce: [Uninstall C:\Users\Richard\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Richard\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"
HKU\S-1-5-21-4070732696-2307962366-2096404084-1002\...\MountPoints2: {0df0e81f-c992-11e8-8261-acb57d3aeb7d} - "F:\setup.exe"
HKU\S-1-5-21-4070732696-2307962366-2096404084-500\...\Run: [Power2GoExpress8] => C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1714952 2013-10-16] (CyberLink Corp. -> CyberLink Corp.)
HKU\S-1-5-21-4070732696-2307962366-2096404084-500\...\Run: [WindowsWelcomeCenter] => C:\WINDOWS\system32\oobefldr.dll [630784 2014-03-18] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.86\Installer\chrmstp.exe [2019-03-21] (Google LLC -> Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\72.0.1174.122\Installer\chrmstp.exe [2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
HKLM\Software\...\Authentication\Credential Providers: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2014-03-07] (CyberLink Corp. -> CyberLink)
HKLM\Software\...\Authentication\Credential Providers: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] -> C:\Program Files\Hewlett-Packard\SimplePass\OmniPassCredProv.dll [2014-03-28] (Softex Inc..) [File not signed]
HKLM\Software\...\Authentication\Credential Provider Filters: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] -> C:\Program Files\Hewlett-Packard\SimplePass\OmniPassCredProv.dll [2014-03-28] (Softex Inc..) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Cleanup Premium.lnk [2019-03-15]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine.lnk [2019-03-15]
ShortcutTarget: Avast SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\Vpn.exe (AVAST Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Web Signer.lnk [2019-01-29]
ShortcutTarget: Web Signer.lnk -> C:\Program Files (x86)\Disig\Disig Web Signer 1.0.7\Updater\WebSignerTray.exe (Disig a.s. -> Disig a.s.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{39487A7D-9E4F-40BE-A565-0D457B9D8633}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{E58A1CCD-A04A-4804-A96D-CEA4CBE43774}: [DhcpNameServer] 172.16.0.1
HKLM\System\...\Parameters\PersistentRoutes: [100.100.0.10,255.255.255.255,0.0.0.0,1]

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-4070732696-2307962366-2096404084-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-4070732696-2307962366-2096404084-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
SearchScopes: HKLM -> {D451AF2A-C3FF-4A85-8AE5-234189038854} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {D451AF2A-C3FF-4A85-8AE5-234189038854} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-4070732696-2307962366-2096404084-1002 -> {D451AF2A-C3FF-4A85-8AE5-234189038854} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-4070732696-2307962366-2096404084-500 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4070732696-2307962366-2096404084-500 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-01-28] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-01-28] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-01-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-01-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-02-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: ditec.sk/DAsicFac -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~1.DLL [2019-01-14] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/DitecZepDViewerFb -> C:\PROGRA~2\Ditec\DViewer\NPDITE~1.DLL [2019-01-15] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigMessageContainer -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~2.DLL [2016-12-15] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesExtender -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~3.DLL [2016-12-15] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesFb -> C:\PROGRA~2\Ditec\DSIGNE~1.NET\NPDITE~1.DLL [2019-01-15] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/XmlDataContainerFb -> C:\PROGRA~2\Ditec\DSIGNE~1.NET\NPDITE~2.DLL [2019-01-15] (DITEC, a.s. -> Ditec,a.s.)

Chrome:
=======
CHR Profile: C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default [2019-04-06]
CHR Extension: (Prezentácie) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-05-20]
CHR Extension: (Dokumenty) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-05-20]
CHR Extension: (Disk Google) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-05-20]
CHR Extension: (YouTube) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-05-20]
CHR Extension: (Tabuľky) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-05-20]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-24]
CHR Extension: (Avast Online Security) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-02-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-05-20]
CHR Extension: (Disig Web Signer 1.0.7) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\odbdbcaekkgabdfaabepfjgiooilmaoe [2019-01-29]
CHR Extension: (Gmail) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-05-20]
CHR Extension: (Chrome Media Router) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-13]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [odbdbcaekkgabdfaabepfjgiooilmaoe] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [140288 2014-04-17] () [File not signed]
R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [240128 2014-04-18] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-04-17] (Advanced Micro Devices, Inc.) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6570352 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-08-07] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [File not signed]
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [360440 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [371824 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\72.0.1174.122\elevation_service.exe [1070600 2019-03-06] (AVAST Software s.r.o. -> AVAST Software)
R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [9874528 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11082312 2019-03-28] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3730024 2018-10-04] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 hasplms; C:\WINDOWS\system32\hasplms.exe [3500552 2018-07-18] (SafeNet Canada, Inc. -> SafeNet, Inc.)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2014-01-13] (Hewlett-Packard Company) [File not signed]
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-10-08] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [88064 2014-03-28] (Softex Inc.) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-02-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [6688232 2019-03-28] (AVAST Software s.r.o. -> AVAST Software)
R2 tbaseprovisioning; C:\WINDOWS\SysWOW64\tbaseprovisioning.exe [51712 2014-02-25] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2014-05-15] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-05-15] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 akshasp; C:\WINDOWS\system32\DRIVERS\akshasp.sys [87832 2018-07-18] (SafeNet, Inc. -> SafeNet, Inc.)
S3 akshhl; C:\WINDOWS\system32\DRIVERS\akshhl.sys [69640 2018-07-18] (SafeNet Canada, Inc. -> SafeNet, Inc.)
S3 aksusb; C:\WINDOWS\system32\DRIVERS\aksusb.sys [323600 2018-07-18] (SafeNet Canada, Inc. -> SafeNet, Inc.)
R3 AmdAS4; C:\WINDOWS\System32\drivers\AmdAS4.sys [17640 2013-10-24] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, INC.)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [85704 2014-02-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [13939712 2014-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [628224 2014-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [36608 2013-12-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amdpsp; C:\WINDOWS\System32\DRIVERS\amdpsp.sys [230088 2014-02-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205608 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [254408 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196304 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320904 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [58168 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42496 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [169104 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R1 aswNetSec; C:\WINDOWS\System32\drivers\aswNetSec.sys [518784 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112520 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88152 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1034640 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [476256 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [220632 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\system32\DRIVERS\aswTap.sys [53904 2018-09-05] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [380160 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R3 athr; C:\WINDOWS\system32\DRIVERS\athwbx.sys [3858944 2013-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWB6.sys [222720 2014-03-12] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2018-10-06] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-10-06] (Disc Soft Ltd -> Disc Soft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
S3 GemCCID; C:\WINDOWS\system32\DRIVERS\GemCCID.sys [137712 2016-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Gemalto)
R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [1971208 2018-07-18] (SafeNet Canada, Inc. -> SafeNet, Inc.)
R2 hardlock; C:\WINDOWS\SysWOW64\drivers\hardlock.sys [420000 2004-01-31] () [File not signed]
S2 Haspnt; C:\WINDOWS\SysWOW64\drivers\Haspnt.sys [132608 2007-05-22] () [File not signed]
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [198512 2019-04-06] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [127136 2019-04-06] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73912 2019-04-06] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [274416 2019-04-06] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [114040 2019-04-06] (Malwarebytes Corporation -> Malwarebytes)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [291544 2014-01-04] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [35856 2014-05-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [237400 2014-05-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [124760 2014-05-15] (Microsoft Windows -> Microsoft Corporation)
S3 WinDivert1.1; C:\WINDOWS\files\bin\x64WDV\WinDivert.sys [35376 2013-12-03] (Nemea Mjukvaruutveckling AB -> Basil Projects)
R3 WirelessButtonDriver; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
U3 McAPExe; no ImagePath
U3 McMPFSvc; no ImagePath
U3 McNaiAnn; no ImagePath
U3 mcpltsvc; no ImagePath
U3 McProxy; no ImagePath
U3 mfecore; no ImagePath
U3 MSK80Service; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-06 20:30 - 2019-04-06 20:31 - 000031196 _____ C:\Users\Richard\Desktop\FRST.txt
2019-04-06 20:30 - 2019-04-06 20:30 - 000000000 ____D C:\FRST
2019-04-06 20:29 - 2019-04-06 20:29 - 002434048 _____ (Farbar) C:\Users\Richard\Desktop\FRST64.exe
2019-04-06 20:20 - 2019-04-06 20:20 - 000198512 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2019-04-06 20:20 - 2019-04-06 20:20 - 000127136 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2019-04-06 20:20 - 2019-04-06 20:20 - 000114040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2019-04-06 20:20 - 2019-04-06 20:20 - 000073912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2019-04-06 20:20 - 2019-04-06 20:20 - 000000000 ____D C:\Users\Richard\AppData\Local\mbamtray
2019-04-06 20:20 - 2019-04-06 20:20 - 000000000 ____D C:\Users\Richard\AppData\Local\mbam
2019-04-06 20:19 - 2019-04-06 20:19 - 000274416 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-04-06 20:19 - 2019-04-06 20:19 - 000001890 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-04-06 20:19 - 2019-04-06 20:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-04-06 20:19 - 2019-04-06 20:19 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-04-06 20:19 - 2019-04-06 20:19 - 000000000 ____D C:\Program Files\Malwarebytes
2019-04-06 20:19 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-04-06 20:17 - 2019-04-06 20:18 - 062643232 _____ (Malwarebytes ) C:\Users\Richard\Downloads\mb3-setup-consumer-3.7.1.2839-1.0.563-1.0.10014.exe
2019-04-06 20:00 - 2019-04-06 20:00 - 000002491 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visio 2016.lnk
2019-04-06 20:00 - 2019-04-06 20:00 - 000002461 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2019-04-06 20:00 - 2019-04-06 20:00 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project 2016.lnk
2019-04-06 20:00 - 2019-04-06 20:00 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2019-04-06 20:00 - 2019-04-06 20:00 - 000002433 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2019-04-06 20:00 - 2019-04-06 20:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2019-04-02 19:53 - 2019-04-02 19:53 - 001537024 _____ C:\Users\Richard\Downloads\kartografia_uvod (1).pps
2019-04-02 17:59 - 2019-04-02 17:59 - 000161678 _____ C:\Users\Richard\Downloads\4_doplnujuce_info.pdf
2019-04-02 17:58 - 2019-04-02 17:59 - 000206009 _____ C:\Users\Richard\Downloads\4.pdf
2019-04-02 17:58 - 2019-04-02 17:58 - 000065536 _____ C:\Users\Richard\Downloads\8_2D_NAHODNA_PREMENNA.pdf
2019-04-02 17:57 - 2019-04-02 17:58 - 002719744 _____ C:\Users\Richard\Downloads\GEODEZIA_2_1_prednaska_1 (1).pdf
2019-04-02 17:57 - 2019-04-02 17:57 - 000000318 _____ C:\Users\Richard\Downloads\sradnice-tachymetria2019.txt
2019-04-02 17:55 - 2019-04-02 17:56 - 001284716 _____ C:\Users\Richard\Downloads\gravitacia.pdf
2019-04-02 17:54 - 2019-04-02 17:54 - 000396800 _____ C:\Users\Richard\Downloads\kartografia_stereograficke_aplikacie.pps
2019-04-02 17:54 - 2019-04-02 17:54 - 000396800 _____ C:\Users\Richard\Downloads\kartografia_stereograficke_aplikacie (1).pps
2019-04-02 17:53 - 2019-04-02 17:54 - 000396288 _____ C:\Users\Richard\Downloads\kartografia_stereograficke.pps
2019-04-02 17:53 - 2019-04-02 17:53 - 001339392 _____ C:\Users\Richard\Downloads\kartografia_gnomonicke.pps
2019-04-02 17:53 - 2019-04-02 17:53 - 000521216 _____ C:\Users\Richard\Downloads\kartografia_ortograficke.pps
2019-04-02 17:53 - 2019-04-02 17:53 - 000191488 _____ C:\Users\Richard\Downloads\kartografia_azimutalne_projekcie - uvod.pps
2019-04-02 17:52 - 2019-04-02 17:52 - 000891392 _____ C:\Users\Richard\Downloads\kartografia_neprave.pps
2019-04-02 17:51 - 2019-04-02 17:51 - 001265152 _____ C:\Users\Richard\Downloads\kartografia_jednoduche_kuzelove.pps
2019-04-02 17:51 - 2019-04-02 17:51 - 000892928 _____ C:\Users\Richard\Downloads\kartografia_jednoduche_valcove.pps
2019-04-02 17:49 - 2019-04-02 17:50 - 001534976 _____ C:\Users\Richard\Downloads\kartografia_uvod.pps
2019-03-31 12:13 - 2019-03-31 12:13 - 000639645 _____ C:\Users\Richard\Downloads\6_CHYBY_MERANI (1).pdf
2019-03-31 12:13 - 2019-03-31 12:13 - 000504744 _____ C:\Users\Richard\Downloads\5(2)_EMPIRICKE_CHARAKTERISTIKY (2).pdf
2019-03-31 12:13 - 2019-03-31 12:13 - 000339464 _____ C:\Users\Richard\Downloads\7_SPRACOVANIE_PRIAMYCH_MERANI.pdf
2019-03-31 12:13 - 2019-03-31 12:13 - 000275533 _____ C:\Users\Richard\Downloads\5(1)_NAHODNY_VYBER (2).pdf
2019-03-31 12:08 - 2019-03-31 12:09 - 000000000 ____D C:\Users\Richard\Desktop\IGS
2019-03-31 12:07 - 2019-03-31 12:07 - 000097305 _____ C:\Users\Richard\Downloads\VÝSLEDNÝ_KOKEŠ_STRUHÁR (1).pdf
2019-03-31 12:07 - 2019-03-31 12:07 - 000012501 _____ C:\Users\Richard\Downloads\Struhár3 (1).vyk
2019-03-31 12:07 - 2019-03-31 12:07 - 000006346 _____ C:\Users\Richard\Downloads\VÝSLEDNÝ_KOKEŠ_STRUHÁR (1).vyk
2019-03-31 12:07 - 2019-03-31 12:07 - 000003875 _____ C:\Users\Richard\Downloads\STRUHAR_ULOHA4 (1).vyk
2019-03-31 12:07 - 2019-03-31 12:07 - 000001368 _____ C:\Users\Richard\Downloads\STRUHAR-ULOHA3 (1).vyk
2019-03-31 12:07 - 2019-03-31 12:07 - 000001284 _____ C:\Users\Richard\Downloads\struhár (1).vyk
2019-03-31 12:07 - 2019-03-31 12:07 - 000001041 _____ C:\Users\Richard\Downloads\STRUHAR_ULOHA2 (1).vyk
2019-03-31 12:07 - 2019-03-31 12:07 - 000000562 _____ C:\Users\Richard\Downloads\ULOHA3 (1) (1).vyk
2019-03-31 12:07 - 2019-03-31 12:07 - 000000471 _____ C:\Users\Richard\Downloads\Struhár3 (1).ss
2019-03-31 12:07 - 2019-03-31 12:07 - 000000384 _____ C:\Users\Richard\Downloads\struhár (1).ss
2019-03-31 12:07 - 2019-03-31 12:07 - 000000355 _____ C:\Users\Richard\Downloads\STRUHAR_ULOHA2 (1).ss
2019-03-31 12:04 - 2019-03-31 12:04 - 000104703 _____ C:\Users\Richard\Downloads\Zadan5e4.xmcd
2019-03-31 09:15 - 2019-03-31 09:15 - 000002313 _____ C:\Users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive pro firmy.lnk
2019-03-31 08:54 - 2019-03-31 08:56 - 000000000 ____D C:\AdwCleaner
2019-03-31 08:54 - 2019-03-31 08:54 - 007316688 _____ (Malwarebytes) C:\Users\Richard\Downloads\adwcleaner_7.2.7.0.exe
2019-03-31 08:48 - 2019-03-31 08:51 - 056254335 _____ C:\Users\Richard\Downloads\OCAD.11.5.6.2031.rar
2019-03-30 11:57 - 2019-03-30 11:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EAC MW klient
2019-03-30 11:57 - 2019-03-30 11:57 - 000000000 ____D C:\Program Files (x86)\EAC MW klient
2019-03-29 21:40 - 2019-03-29 21:41 - 000000000 ____D C:\Users\Richard\Desktop\anaglyf
2019-03-29 21:39 - 2019-03-29 21:39 - 000746949 _____ C:\Users\Richard\Downloads\anamk108.zip
2019-03-29 20:01 - 2019-03-29 20:01 - 000399847 _____ C:\Users\Richard\Downloads\Rodný list1.PDF
2019-03-29 20:01 - 2019-03-29 20:01 - 000208294 _____ C:\Users\Richard\Downloads\Potvrdenie KG.PDF
2019-03-29 20:01 - 2019-03-29 20:01 - 000194565 _____ C:\Users\Richard\Downloads\Rodný list2.PDF
2019-03-29 20:01 - 2019-03-29 20:01 - 000125859 _____ C:\Users\Richard\Downloads\Potvrdenie LG.PDF
2019-03-29 19:54 - 2019-03-29 19:54 - 000399847 _____ C:\Users\Richard\Downloads\EPSON050.PDF
2019-03-29 19:54 - 2019-03-29 19:54 - 000208294 _____ C:\Users\Richard\Downloads\EPSON047.PDF
2019-03-29 19:54 - 2019-03-29 19:54 - 000194565 _____ C:\Users\Richard\Downloads\EPSON048.PDF
2019-03-29 19:54 - 2019-03-29 19:54 - 000125859 _____ C:\Users\Richard\Downloads\EPSON046.PDF
2019-03-29 19:39 - 2019-03-29 19:39 - 000012215 _____ C:\Users\Richard\Downloads\2018 DPFO RICHARD form.413.xml
2019-03-27 22:51 - 2019-03-27 22:53 - 000000000 ____D C:\Users\Richard\Desktop\Nová složka
2019-03-26 22:02 - 2019-03-26 22:02 - 000154614 _____ C:\Users\Richard\Documents\zadanie 3.xmcd
2019-03-26 00:32 - 2019-03-26 00:32 - 000278659 _____ C:\Users\Richard\Downloads\Úloha 3.pptx
2019-03-26 00:32 - 2019-03-26 00:32 - 000097951 _____ C:\Users\Richard\Downloads\Úloha 3.xmcd
2019-03-26 00:06 - 2019-03-26 00:06 - 000021007 _____ C:\Users\Richard\Downloads\VYSLEDNY_KOKES_GALLASOVA.pdf
2019-03-24 17:31 - 2019-03-24 17:31 - 000134259 _____ C:\Users\Richard\Downloads\file (2).pdf
2019-03-24 17:28 - 2019-03-24 17:28 - 000113217 _____ C:\Users\Richard\Downloads\file (1).pdf
2019-03-24 17:02 - 2019-03-24 17:02 - 000370637 _____ C:\Users\Richard\Downloads\Microsoft_Word_-_VVC_2011_2012.pdf
2019-03-18 22:15 - 2019-03-18 22:16 - 001331481 _____ C:\Users\Richard\Downloads\11_VG_PresnaNivelacia.ppsx
2019-03-18 22:15 - 2019-03-18 22:16 - 001076306 _____ C:\Users\Richard\Downloads\zaverecna_prace.pdf
2019-03-18 20:58 - 2019-03-18 20:58 - 000361984 _____ C:\Users\Richard\Downloads\cylindricka_1cast.pps
2019-03-18 20:58 - 2019-03-18 20:58 - 000224768 _____ C:\Users\Richard\Downloads\konicka.pps
2019-03-18 20:57 - 2019-03-18 20:57 - 000368128 _____ C:\Users\Richard\Downloads\cylindricka_2cast.pps
2019-03-18 20:24 - 2019-04-02 17:56 - 000000000 ____D C:\Users\Richard\Desktop\Fyzika 2
2019-03-18 20:24 - 2019-03-18 20:25 - 005243003 _____ C:\Users\Richard\Downloads\kinematikaHB.pdf
2019-03-18 20:20 - 2019-03-18 20:22 - 011834876 _____ C:\Users\Richard\Downloads\dynamikaHB.pdf
2019-03-18 20:10 - 2019-03-18 20:11 - 000639645 _____ C:\Users\Richard\Downloads\6_CHYBY_MERANI.pdf
2019-03-18 20:10 - 2019-03-18 20:10 - 000049152 _____ C:\Users\Richard\Downloads\5(2)_EMPIRICKE_CHARAKTERISTIKY (1).pdf
2019-03-18 20:09 - 2019-03-18 20:10 - 000275533 _____ C:\Users\Richard\Downloads\5(1)_NAHODNY_VYBER (1).pdf
2019-03-18 20:00 - 2019-03-18 20:04 - 028633034 _____ C:\Users\Richard\Downloads\GEODEZIA 2_4 prednáška 4 (3).pptx
2019-03-18 19:54 - 2019-03-18 19:58 - 020281834 _____ C:\Users\Richard\Downloads\GEODEZIA 2_4 prednáška 4 (2).pptx
2019-03-18 19:49 - 2019-03-18 19:53 - 023139540 _____ C:\Users\Richard\Downloads\zasilka-KZ3EJ2HU33VUS5ZI.zip
2019-03-18 19:47 - 2019-03-18 19:48 - 000688634 _____ C:\Users\Richard\Downloads\GEODEZIA 2_4 prednáška 4 (1).pptx
2019-03-18 19:43 - 2019-03-18 19:44 - 004370723 _____ C:\Users\Richard\Downloads\GEODEZIA 2_3 prednáška 3.pptx
2019-03-18 19:40 - 2019-03-18 19:41 - 009746416 _____ C:\Users\Richard\Downloads\GEODEZIA 2_4 prednáška 4.pptx
2019-03-18 19:37 - 2019-03-18 19:37 - 000229920 _____ C:\Users\Richard\Downloads\3_doplnujuce_info.pdf
2019-03-18 19:36 - 2019-03-18 19:36 - 000199774 _____ C:\Users\Richard\Downloads\3.pdf
2019-03-17 13:24 - 2019-03-17 13:24 - 000001041 _____ C:\Users\Richard\Downloads\STRUHAR_ULOHA2.vyk
2019-03-17 13:23 - 2019-03-17 13:23 - 000012501 _____ C:\Users\Richard\Downloads\Struhár3.vyk
2019-03-17 13:23 - 2019-03-17 13:23 - 000012501 _____ C:\Users\Richard\Downloads\Struhár3.v00
2019-03-17 13:23 - 2019-03-17 13:23 - 000003875 _____ C:\Users\Richard\Downloads\STRUHAR_ULOHA4.vyk
2019-03-17 13:23 - 2019-03-17 13:23 - 000001368 _____ C:\Users\Richard\Downloads\STRUHAR-ULOHA3.vyk
2019-03-17 13:23 - 2019-03-17 13:23 - 000001368 _____ C:\Users\Richard\Downloads\STRUHAR-ULOHA3.v00
2019-03-17 13:23 - 2019-03-17 13:23 - 000001284 _____ C:\Users\Richard\Downloads\struhár.vyk
2019-03-17 13:23 - 2019-03-17 13:23 - 000001203 _____ C:\Users\Richard\Downloads\struhár.v00
2019-03-17 13:23 - 2019-03-17 13:23 - 000001041 _____ C:\Users\Richard\Downloads\STRUHAR_ULOHA2.v00
2019-03-17 13:23 - 2019-03-17 13:23 - 000000562 _____ C:\Users\Richard\Downloads\ULOHA3 (1).vyk
2019-03-17 13:23 - 2019-03-17 13:23 - 000000562 _____ C:\Users\Richard\Downloads\ULOHA3 (1).v00
2019-03-17 13:23 - 2019-03-17 13:23 - 000000471 _____ C:\Users\Richard\Downloads\Struhár3.ss
2019-03-17 13:23 - 2019-03-17 13:23 - 000000384 _____ C:\Users\Richard\Downloads\struhár.ss
2019-03-17 13:23 - 2019-03-17 13:23 - 000000355 _____ C:\Users\Richard\Downloads\STRUHAR_ULOHA2.ss
2019-03-17 13:23 - 2019-03-17 13:23 - 000000176 _____ C:\Users\Richard\Downloads\STRUHAR_ULOHA4.v00
2019-03-17 13:22 - 2019-03-17 13:22 - 000097305 _____ C:\Users\Richard\Downloads\VÝSLEDNÝ_KOKEŠ_STRUHÁR.pdf
2019-03-17 13:22 - 2019-03-17 13:22 - 000006346 _____ C:\Users\Richard\Downloads\VÝSLEDNÝ_KOKEŠ_STRUHÁR.vyk
2019-03-17 13:22 - 2019-03-17 13:22 - 000006346 _____ C:\Users\Richard\Downloads\VÝSLEDNÝ_KOKEŠ_STRUHÁR.v00
2019-03-16 13:06 - 2019-03-16 13:06 - 000156572 _____ C:\Users\Richard\Downloads\Zadanie_2_MZ_2018_19.pdf
2019-03-16 13:06 - 2019-03-16 13:06 - 000121436 _____ C:\Users\Richard\Downloads\kartografia_valcove_priklady_2019.ppsx
2019-03-16 13:06 - 2019-03-16 13:06 - 000101743 _____ C:\Users\Richard\Downloads\Pracovne_listy_19_22_2019.ppsx
2019-03-16 13:05 - 2019-03-16 13:05 - 000234242 _____ C:\Users\Richard\Downloads\ZADANIE_3_GAK_2018 (1).pdf
2019-03-15 22:11 - 2019-04-03 17:28 - 000004180 _____ C:\WINDOWS\System32\Tasks\Avast SecureLine Update
2019-03-15 22:11 - 2019-03-15 22:11 - 000000991 _____ C:\Users\Public\Desktop\Avast SecureLine.lnk
2019-03-15 22:11 - 2018-09-05 22:01 - 000053904 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\aswTap.sys
2019-03-15 22:08 - 2019-03-15 22:07 - 000362888 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-03-15 22:03 - 2019-04-03 17:25 - 000004194 _____ C:\WINDOWS\System32\Tasks\Avast Cleanup Update
2019-03-15 22:03 - 2019-03-15 22:03 - 000001242 _____ C:\Users\Public\Desktop\Avast Cleanup Premium.lnk
2019-03-15 21:52 - 2019-03-15 21:52 - 000000000 ____D C:\Users\Richard\AppData\Roaming\AVAST Software
2019-03-15 21:51 - 2019-03-15 22:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2019-03-15 21:51 - 2019-03-15 21:51 - 000001945 _____ C:\Users\Public\Desktop\Avast Premier.lnk
2019-03-15 21:50 - 2019-04-03 21:00 - 000004168 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-03-15 21:50 - 2019-03-15 21:50 - 000002524 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2019-03-15 21:50 - 2019-03-15 21:50 - 000002489 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2019-03-15 21:48 - 2019-03-15 22:03 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2019-03-15 21:48 - 2019-03-15 21:48 - 000003428 _____ C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineUA
2019-03-15 21:48 - 2019-03-15 21:48 - 000003300 _____ C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineCore
2019-03-15 21:46 - 2019-03-15 22:08 - 000476256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-03-15 21:46 - 2019-03-15 22:08 - 000380160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-03-15 21:46 - 2019-03-15 22:08 - 000220632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-03-15 21:46 - 2019-03-15 22:08 - 000169104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-03-15 21:46 - 2019-03-15 22:08 - 000112520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-03-15 21:46 - 2019-03-15 22:08 - 000088152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-03-15 21:46 - 2019-03-15 22:08 - 000042496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-03-15 21:46 - 2019-03-15 22:07 - 001034640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-03-15 21:46 - 2019-03-15 22:07 - 000518784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys
2019-03-15 21:46 - 2019-03-15 22:07 - 000320904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys
2019-03-15 21:46 - 2019-03-15 22:07 - 000254408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-03-15 21:46 - 2019-03-15 22:07 - 000205608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-03-15 21:46 - 2019-03-15 22:07 - 000196304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-03-15 21:46 - 2019-03-15 22:07 - 000058168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-03-15 21:44 - 2019-03-15 22:11 - 000000000 ____D C:\Program Files\AVAST Software
2019-03-15 14:54 - 2019-03-15 15:08 - 712510293 _____ C:\Users\Richard\Downloads\Avast! Internet Security Premier Antivirus 2019 19.2.2364 Full.zip
2019-03-13 20:08 - 2019-03-13 20:08 - 000707410 _____ C:\Users\Richard\Downloads\Uloha_2.pptx
2019-03-13 19:33 - 2019-03-13 19:33 - 000663913 _____ C:\Users\Richard\Downloads\hjklů.pptx
2019-03-13 16:00 - 2019-03-13 16:00 - 001425827 _____ C:\Users\Richard\Downloads\Uloha-2.pptx
2019-03-12 19:55 - 2019-03-12 19:55 - 000877213 _____ C:\Users\Richard\Downloads\3_ROZDELENIA_PRAVDEPODOBNOSTI (4).pdf
2019-03-12 19:54 - 2019-03-12 19:55 - 000877213 _____ C:\Users\Richard\Downloads\3_ROZDELENIA_PRAVDEPODOBNOSTI (3).pdf
2019-03-12 19:54 - 2019-03-12 19:54 - 000049152 _____ C:\Users\Richard\Downloads\3_ROZDELENIA_PRAVDEPODOBNOSTI (2).pdf
2019-03-12 19:51 - 2019-03-12 19:52 - 001574911 _____ C:\Users\Richard\Downloads\4_SPECIALNE_ROZDELENIA_PRAVDEPODOBNOSTI (4).pdf
2019-03-12 19:20 - 2019-03-12 19:20 - 000504744 _____ C:\Users\Richard\Downloads\5(2)_EMPIRICKE_CHARAKTERISTIKY.pdf
2019-03-12 19:20 - 2019-03-12 19:20 - 000275533 _____ C:\Users\Richard\Downloads\5(1)_NAHODNY_VYBER.pdf
2019-03-12 18:47 - 2019-03-12 18:47 - 000012900 _____ C:\Users\Richard\Downloads\Zošit1.xlsx
2019-03-10 16:06 - 2019-03-10 16:06 - 001478066 _____ C:\Users\Richard\Downloads\fotogrametria_jednosnimkove_studentom_2019 (1).ppsx
2019-03-08 22:58 - 2019-03-08 22:58 - 001322692 _____ C:\Users\Richard\Downloads\RSuo.vgi
2019-03-08 22:56 - 2019-03-08 22:56 - 000000000 ____D C:\Users\Richard\Desktop\kokeš
2019-03-07 20:54 - 2019-04-03 21:41 - 000000000 ____D C:\Users\Richard\Desktop\English 1
2019-03-07 20:52 - 2019-03-07 20:52 - 001478066 _____ C:\Users\Richard\Downloads\fotogrametria_jednosnimkove_studentom_2019.ppsx
2019-03-07 20:52 - 2019-03-07 20:52 - 000179685 _____ C:\Users\Richard\Downloads\Pracovne_listy_15_16.pdf

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-06 20:04 - 2018-03-24 13:06 - 000003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4070732696-2307962366-2096404084-1002
2019-04-06 20:02 - 2017-08-29 14:42 - 000000000 ____D C:\Users\Richard\Documents\Youcam
2019-04-06 20:02 - 2013-08-22 17:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-04-06 20:01 - 2013-08-22 17:36 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-04-06 19:58 - 2018-10-06 20:17 - 000000000 ____D C:\Program Files\Microsoft Office
2019-04-06 11:29 - 2019-03-04 21:45 - 000000000 ____D C:\Users\Richard\Desktop\Metódy zobrazovania
2019-04-06 11:22 - 2017-08-29 14:39 - 000000000 ____D C:\Users\Richard\AppData\Local\Packages
2019-04-05 23:05 - 2018-10-27 17:52 - 000004476 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-04-05 23:05 - 2018-10-07 09:20 - 000003174 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4070732696-2307962366-2096404084-1002
2019-04-05 23:05 - 2018-10-06 20:49 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
2019-04-05 23:05 - 2018-10-06 20:27 - 000004128 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-04-05 23:05 - 2018-10-06 20:27 - 000002790 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-04-05 23:05 - 2018-05-20 10:04 - 000003368 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-04-05 23:05 - 2018-05-20 10:04 - 000003240 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-04-05 23:05 - 2014-05-14 21:14 - 000003160 _____ C:\WINDOWS\System32\Tasks\CLVDLauncher
2019-04-05 23:05 - 2014-05-14 21:14 - 000003160 _____ C:\WINDOWS\System32\Tasks\CLMLSvc_P2G8
2019-04-05 23:05 - 2014-05-14 21:11 - 000003156 _____ C:\WINDOWS\System32\Tasks\YCMServiceAgent
2019-04-05 23:05 - 2014-05-14 20:56 - 000002990 _____ C:\WINDOWS\System32\Tasks\Synaptics TouchPad Enhancements
2019-04-02 18:01 - 2019-02-23 20:27 - 000000000 ____D C:\Users\Richard\Desktop\SAM1
2019-04-02 17:57 - 2019-02-20 20:49 - 000000000 ____D C:\Users\Richard\Desktop\Geodézia 2
2019-03-31 20:33 - 2014-05-15 04:05 - 000753788 _____ C:\WINDOWS\system32\perfh005.dat
2019-03-31 20:33 - 2014-05-15 04:05 - 000163570 _____ C:\WINDOWS\system32\perfc005.dat
2019-03-31 20:33 - 2014-03-18 11:53 - 001876148 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-03-31 20:33 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf
2019-03-31 12:10 - 2018-10-06 20:08 - 000000000 ____D C:\Users\Richard\Desktop\Fotky
2019-03-31 09:00 - 2014-05-14 21:03 - 001501422 _____ C:\WINDOWS\SysWOW64\rootpa.e2e
2019-03-31 08:58 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-03-31 08:57 - 2014-05-14 20:53 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2019-03-30 23:19 - 2019-01-28 21:22 - 000000000 ____D C:\ProgramData\boost_interprocess
2019-03-30 11:57 - 2019-01-29 21:57 - 000002555 _____ C:\Users\Public\Desktop\Štart eID.lnk
2019-03-30 11:57 - 2019-01-29 21:57 - 000002529 _____ C:\Users\Public\Desktop\eID Certificate Propagator.lnk
2019-03-28 22:05 - 2018-10-27 18:03 - 000000000 ____D C:\Users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-03-28 22:05 - 2018-10-27 18:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-03-28 22:05 - 2018-10-27 18:03 - 000000000 ____D C:\Program Files\WinRAR
2019-03-24 22:10 - 2019-02-02 16:13 - 000000000 ____D C:\WINDOWS\Minidump
2019-03-24 22:10 - 2018-10-06 20:12 - 000000000 ____D C:\Users\Richard\AppData\Roaming\uTorrent
2019-03-21 20:31 - 2018-05-20 10:06 - 000002263 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-03-21 20:31 - 2018-05-20 10:06 - 000002222 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-03-16 12:58 - 2018-10-06 20:12 - 000000000 ____D C:\Users\Richard\Desktop\stahovanie
2019-03-15 22:11 - 2018-10-06 20:47 - 000000000 ____D C:\ProgramData\AVAST Software
2019-03-15 21:48 - 2018-10-06 21:11 - 000000000 ____D C:\Users\Richard\AppData\Local\AVAST Software
2019-03-15 15:14 - 2013-08-22 15:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2019-03-12 20:05 - 2018-03-24 12:56 - 000000000 ____D C:\Users\Richard\AppData\Local\VirtualStore

==================== Files in the root of some directories =======

2019-02-24 16:15 - 2019-02-24 16:15 - 000143360 _____ (Gepro s.r.o.) C:\Program Files (x86)\kokundo.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2019-04-02 18:43

==================== End of FRST.txt ============================

Re: Niečo sa mi nezdá...

Napsal: 06 dub 2019 19:39
od Sudoku33
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17.03.2019
Ran by Richard (06-04-2019 20:32:46)
Running from C:\Users\Richard\Desktop
Windows 8.1 (Update) (X64) (2018-03-24 10:55:52)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4070732696-2307962366-2096404084-500 - Administrator - Disabled) => C:\Users\Administrator
Guest (S-1-5-21-4070732696-2307962366-2096404084-501 - Limited - Disabled)
Richard (S-1-5-21-4070732696-2307962366-2096404084-1002 - Administrator - Enabled) => C:\Users\Richard

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 19.010.20098 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
AMD Catalyst Install Manager (HKLM\...\{7536C341-2F7D-EFE6-F521-DEBE68B025C5}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Avast Cleanup Premium (HKLM-x32\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 18.3.6507 - AVAST Software)
Avast Premier (HKLM-x32\...\Avast Antivirus) (Version: 19.3.2369 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 72.0.1174.122 - AVAST Software)
Avast SecureLine (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 5.2.429 - AVAST Software)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.154.333 - AVAST Software) Hidden
Balík softvéru eID (HKLM-x32\...\{ea81dcd3-f9f3-4959-8bee-0349fc294ae5}) (Version: 1.0.0.0 - Ministerstvo vnútra Slovenskej republiky) Hidden
Bit4id - miniLector (HKLM-x32\...\Bit4id - miniLector) (Version: 3.7 - Bit4id)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BS.Player PRO (HKLM-x32\...\BSPlayerp) (Version: 2.71.1081 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.41 - Piriform)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.5.6902 - CyberLink Corp.)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.5.3303 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.5.3416 - CyberLink Corp.)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3.3709 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.3.3907 - CyberLink Corp.)
D.Launcher (x86) (HKLM-x32\...\{130A1B8A-2C4A-405D-90F3-3CBA000A8800}) (Version: 1.1.0.0 - DITEC, a.s.)
D.Signer/XAdES .NET Tools (x86) (HKLM-x32\...\{B3377E91-E400-4579-B5ED-5544098B7D47}) (Version: 4.0.9 - DITEC, a.s.)
D.Signer/XAdES .NET with plugins (x86) (HKLM-x32\...\{60E7A096-CD91-4AD1-9E9C-34414DA78CFD}) (Version: 4.0.13 - DITEC, a.s.)
D.Suite/eIDAS (x86) (HKLM-x32\...\{1d028b37-36ce-4e1b-ae0f-a0beb6cc3537}) (Version: 1.0.15 - DITEC, a.s.)
D.Suite/eIDAS (x86) (HKLM-x32\...\{f6fbc4ed-b1f8-4f4c-9b23-5b8e64af50b4}) (Version: 1.0.15 - DITEC, a.s.)
D.Viewer .NET (x86) (HKLM-x32\...\{4ACA51B0-AD85-4EF1-AADA-81887BC2E85C}) (Version: 4.0.2025 - DITEC, a.s.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.9.0.0637 - Disc Soft Ltd)
DisableMSDefender (HKLM\...\{74FE39A0-FB76-47CD-84BA-91E2BBB17EF2}) (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Disig Web Signer 1.0.7 (HKLM-x32\...\{21859B7E-5E38-4892-A480-FA8B180ADE72}) (Version: 1.1.8 - Disig)
EAC MW klient (HKLM-x32\...\{3C1EB559-A939-4569-8EDE-006675312B46}) (Version: 3.1.3 - Ministerstvo vnútra Slovenskej republiky)
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
Fotogaléria (HKLM-x32\...\{08466673-3905-4437-93E8-34A221B7CA4E}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Fotogalerie (HKLM-x32\...\{AEA7CE08-09DC-4186-99FD-66A26F3B8B21}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
GemPcCCID (HKLM\...\{C2C14C20-A217-4FCA-B668-89B6C70B6EFF}) (Version: 2.0.7 - Gemalto)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.86 - Spoločnosť Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
GPL Ghostscript (HKLM-x32\...\GPL Ghostscript 9.10) (Version: 9.10 - Artifex Software Inc.)
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: 1.0 - Meridian Audio Ltd)
HP Documentation (HKLM-x32\...\{F29E3AA8-CF19-4452-92B7-F1FE31CD11C5}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7372.4698 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.11 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{8C696B4B-6AB1-44BC-9416-96EAC474CABE}) (Version: 7.5.2.12 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{C78E8F51-3EAD-4F0C-83F0-EF371075E0B4}) (Version: 1.0.10 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{891A1782-8B20-4403-8383-458962525926}) (Version: 2.3.4 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
Inst5675 (HKLM\...\{2DE6247C-7077-451B-8BA7-FFD1A2ABBB47}) (Version: 8.01.11 - Softex Inc.) Hidden
Inst5676 (HKLM\...\{878F6913-7421-4713-97F7-0A736EE2A188}) (Version: 8.01.11 - Softex Inc.) Hidden
Java 8 Update 201 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Malwarebytes verze 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Mathcad 15 M020 (HKLM-x32\...\{1FABCC0D-6190-4FA9-8C25-1AFC2A5F1E74}) (Version: 15.0.2.0 - PTC)
Mathcad PDSi viewable support (HKLM-x32\...\{AC76D478-1033-0000-3478-000000000004}) (Version: 9.0.0 - Adobe Systems) Hidden
Mathcad PDSi viewable support (HKLM-x32\...\Mathcad PDSi viewable support) (Version: 9.0.0 - Adobe Systems)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProplusRetail - cs-cz) (Version: 16.0.11425.20202 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4070732696-2307962366-2096404084-1002\...\OneDriveSetup.exe) (Version: 19.033.0218.0011 - Microsoft Corporation)
Microsoft Project Professional 2016 - cs-cz (HKLM\...\ProjectProRetail - cs-cz) (Version: 16.0.11425.20202 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visio Professional 2016 - cs-cz (HKLM\...\VisioProRetail - cs-cz) (Version: 16.0.11425.20202 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{379A0618-EF50-423C-9637-EEB2D25A4BB4}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{3C5F91EF-5C0B-4D13-BCBE-0FC6FC3ED7F9}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{45898170-E68C-4F02-AA35-C2186BF347A3}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{CFBFE244-6269-41DC-85B6-86F99C88ED02}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
OEM Application Profile (HKLM-x32\...\{315F1A48-D883-B234-7C79-15873574ACC1}) (Version: 1.00.0000 - Název společnosti:)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
pdfFactory Pro (HKLM\...\pdfFactory Pro) (Version: 6.19 - FinePrint Software, LLC)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.232 - Qualcomm Atheros)
Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29075 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 8.24.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7164 - Realtek Semiconductor Corp.)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.0.4.0 - Synaptics Incorporated)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4070732696-2307962366-2096404084-1002_Classes\CLSID\{D9AC5E73-BB10-467b-B884-AA1E475C51F5}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll [2008-10-06] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2013-10-17] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2013-10-17] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-10-04] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-10-04] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2014-04-17] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll [2008-10-06] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {052ACE70-DCEE-4E0E-87EC-042D9D8F5F66} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {0955BD0D-3644-4BD6-B602-04CB9958EB6F} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe (CyberLink Corp. -> CyberLink Corp.)
Task: {29D13C42-15FF-4A96-A1B6-959F59956877} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {2B907BCD-542C-4D28-91A3-521FB2FECCBF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3229312D-1272-43B4-A207-AE7C3B64C5CA} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {394D1DBC-A520-45F5-928B-83CA7ECD2F19} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {4122F099-825C-4AF7-B1A7-B53F0D55F748} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {415BB9DB-148E-4B9D-B058-3BF3FDFB24C8} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {46A8CECE-BE51-4B95-B24E-322DEC96DA7B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {4A728ECD-72B1-4C66-844E-5E8400744F22} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {4CF4DEE6-D976-4A5F-A34A-AAEA47BD1AC6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {4DA5BAF9-2D9F-47B8-8C75-02EBCA532C85} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated)
Task: {5361DE09-4248-438C-994A-E273017DD45A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {6D7B631B-B1C9-456A-A2BD-260DABBB45AA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {869E83C1-CEFB-4C1C-B21B-7EA4FF8BAB32} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {8C737A4A-AF68-4B00-A4A9-EA02A1160722} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {BE472F04-ED83-4320-AF15-C8A6AB9784E6} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe (CyberLink Corp. -> CyberLink)
Task: {BEBD267A-5DD9-45DA-A009-3EE10975047F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CA68711C-8005-4407-8EF4-F38F28EFFB1D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {CF5F4D21-625B-4F50-85B0-10F68CF89C1F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {D3A3DE02-3E8C-4FA8-96BC-C9044F817374} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {DCC9B246-5ECC-4852-876C-B2BC9EF5B69F} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe (CyberLink Corp. -> CyberLink Corp.)
Task: {E1D14C60-9865-4379-9710-EA248E288927} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {E96CFD85-3DF8-4FDD-A34F-DE24A0FC7C03} - System32\Tasks\Avast Cleanup Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {ED218458-A557-47FE-AAB0-D40FB8BACEC4} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {FFAE4807-7565-4B83-94A2-85F111C362DD} - System32\Tasks\Avast SecureLine Update => C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2014-03-28 13:39 - 2014-03-28 13:39 - 000088064 _____ (Softex Inc.) [File not signed] C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
2014-03-28 13:32 - 2014-03-28 13:32 - 001107968 _____ (Hewlett-Packard) [File not signed] C:\Program Files\Hewlett-Packard\SimplePass\userdata.dll
2014-03-28 13:29 - 2014-03-28 13:29 - 000692224 _____ (Hewlett-Packard) [File not signed] C:\Program Files\Hewlett-Packard\SimplePass\storeng.dll
2014-03-28 13:31 - 2014-03-28 13:31 - 002110464 _____ () [File not signed] C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll
2014-03-28 13:27 - 2014-03-28 13:27 - 000021504 _____ () [File not signed] C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll
2014-03-28 13:27 - 2014-03-28 13:27 - 000035328 _____ () [File not signed] C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll
2014-03-28 13:27 - 2014-03-28 13:27 - 000055296 _____ () [File not signed] C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll
2014-03-28 13:48 - 2014-03-28 13:48 - 000759184 _____ (Softex Incorporated -> Hewlett-Packard) [File not signed] C:\Program Files\Hewlett-Packard\SimplePass\hdddrv.dll
2014-03-28 13:48 - 2014-03-28 13:48 - 000367504 _____ (Softex Incorporated -> ) [File not signed] C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll
2014-03-28 13:48 - 2014-03-28 13:48 - 000712080 _____ (Softex Incorporated -> ) [File not signed] C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll
2014-03-28 13:48 - 2014-03-28 13:48 - 001204112 _____ (Softex Incorporated -> Hewlett-Packard) [File not signed] C:\Program Files\Hewlett-Packard\SimplePass\Wbf.dll
2014-04-17 15:38 - 2014-04-17 15:38 - 000140288 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
2014-04-17 15:37 - 2014-04-17 15:37 - 000344064 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
2014-04-17 15:37 - 2014-04-17 15:37 - 000127488 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2013-08-07 01:34 - 2013-08-07 01:34 - 000312448 _____ (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [File not signed] C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
2014-01-13 08:02 - 2014-01-13 08:02 - 000092160 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
2014-03-28 13:36 - 2014-03-28 13:36 - 000065024 _____ () [File not signed] C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
2014-03-28 13:47 - 2014-03-28 13:47 - 000646656 _____ (Hewlett-Packard) [File not signed] C:\Program Files\Hewlett-Packard\SimplePass\OpBHO64.dll
2019-02-10 15:03 - 2019-02-10 15:03 - 004715520 _____ (Disc Soft Ltd) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DiscSoft.NET.Common\a9a6d50bf504df3daf576c3dac1d6832\DiscSoft.NET.Common.ni.dll
2019-02-12 22:48 - 2019-02-12 22:48 - 003083264 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DotNetCommon\62ff080ad01a950d1576d95c6ff5aed4\DotNetCommon.ni.dll
2019-02-10 15:03 - 2019-02-10 15:03 - 005184512 _____ (Disc Soft Ltd) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DTLite\2250bb7c0271f32e8b180883fbcf450a\DTLite.ni.exe
2019-02-10 15:03 - 2019-02-10 15:03 - 000139264 _____ (Disc Soft Ltd) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DTLiteHelper\8d2e2b2a7e36be9f2ee6a439e8055224\DTLiteHelper.ni.exe
2019-01-17 10:20 - 2019-01-17 10:20 - 000533504 _____ () [File not signed] C:\Program Files (x86)\EAC MW klient\eIDCertPropagator.exe
2019-03-15 22:11 - 2018-09-05 22:32 - 002095104 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\AVAST Software\SecureLine\libcrypto-1_1.dll
2019-03-15 22:03 - 2016-09-12 15:53 - 048936448 _____ () [File not signed] C:\Program Files (x86)\AVAST Software\Avast Cleanup\libcef.dll
2013-12-02 11:05 - 2013-12-02 11:05 - 002558464 _____ (Digia Plc and/or its subsidiary(-ies)) [File not signed] C:\Program Files (x86)\EAC MW klient\QtCore_mw_x86_4.dll
2013-12-02 11:29 - 2013-12-02 11:29 - 008353280 _____ (Digia Plc and/or its subsidiary(-ies)) [File not signed] C:\Program Files (x86)\EAC MW klient\QtGui_mw_x86_4.dll
2013-12-02 11:06 - 2013-12-02 11:06 - 000341504 _____ (Digia Plc and/or its subsidiary(-ies)) [File not signed] C:\Program Files (x86)\EAC MW klient\QtXml_mw_x86_4.dll
2013-12-02 11:08 - 2013-12-02 11:08 - 001023488 _____ (Digia Plc and/or its subsidiary(-ies)) [File not signed] C:\Program Files (x86)\EAC MW klient\QtNetwork_mw_x86_4.dll
2013-12-02 12:25 - 2013-12-02 12:25 - 002543104 _____ (Digia Plc and/or its subsidiary(-ies)) [File not signed] C:\Program Files (x86)\EAC MW klient\QtDeclarative_mw_x86_4.dll
2019-01-17 10:19 - 2019-01-17 10:19 - 000046592 _____ () [File not signed] C:\Program Files (x86)\EAC MW klient\boost_thread-vc90-mt-1_49.dll
2013-12-02 12:07 - 2013-12-02 12:07 - 001298432 _____ (Digia Plc and/or its subsidiary(-ies)) [File not signed] C:\Program Files (x86)\EAC MW klient\QtScript_mw_x86_4.dll
2013-12-02 11:08 - 2013-12-02 11:08 - 000195072 _____ (Digia Plc and/or its subsidiary(-ies)) [File not signed] C:\Program Files (x86)\EAC MW klient\QtSql_mw_x86_4.dll
2013-12-02 11:47 - 2013-12-02 11:47 - 002568704 _____ (Digia Plc and/or its subsidiary(-ies)) [File not signed] C:\Program Files (x86)\EAC MW klient\QtXmlPatterns_mw_x86_4.dll
2019-01-17 10:19 - 2019-01-17 10:19 - 000227840 _____ () [File not signed] C:\Program Files (x86)\EAC MW klient\boost_serialization-vc90-mt-1_49.dll
2019-01-17 10:19 - 2019-01-17 10:19 - 000567808 _____ () [File not signed] C:\Program Files (x86)\EAC MW klient\boost_log-vc90-mt-1_49.dll
2019-01-17 10:19 - 2019-01-17 10:19 - 000135680 _____ () [File not signed] C:\Program Files (x86)\EAC MW klient\boost_filesystem-vc90-mt-1_49.dll
2019-01-17 10:19 - 2019-01-17 10:19 - 000012800 _____ () [File not signed] C:\Program Files (x86)\EAC MW klient\boost_system-vc90-mt-1_49.dll
2019-01-17 10:20 - 2019-01-17 10:20 - 001888256 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\EAC MW klient\xerces-c_3_1.dll
2019-01-17 10:20 - 2019-01-17 10:20 - 001212928 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\EAC MW klient\LIBEAY32.dll
2019-01-17 10:20 - 2019-01-17 10:20 - 000276480 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\EAC MW klient\SSLEAY32.dll
2019-01-17 10:20 - 2019-01-17 10:20 - 000456192 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] C:\Program Files (x86)\EAC MW klient\libcurl.dll
2019-01-17 10:19 - 2019-01-17 10:19 - 000038912 _____ () [File not signed] C:\Program Files (x86)\EAC MW klient\boost_date_time-vc90-mt-1_49.dll
2014-05-14 21:07 - 2014-05-14 21:07 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
2019-04-06 20:19 - 2019-03-13 09:22 - 003084800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
2019-04-06 20:19 - 2019-03-13 09:22 - 004571648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
2019-04-06 20:19 - 2019-03-13 09:22 - 000438272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
2019-04-06 20:19 - 2019-03-13 09:22 - 005139968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
2019-04-06 20:19 - 2019-03-13 09:22 - 002950144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
2019-04-06 20:19 - 2019-03-13 09:22 - 002234880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
2019-04-06 20:19 - 2019-03-13 09:22 - 005010944 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
2019-04-06 20:19 - 2019-03-13 09:22 - 001181184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
2019-04-06 20:19 - 2019-03-13 09:22 - 000124928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll
2019-04-06 20:19 - 2019-03-13 09:22 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
2019-04-06 20:19 - 2019-03-13 09:22 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
2019-04-06 20:19 - 2019-03-13 09:22 - 000259584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
2019-04-06 20:19 - 2019-03-13 09:22 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
2019-04-06 20:19 - 2019-03-13 09:22 - 000729088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-04-06 20:19 - 2019-03-13 09:22 - 000073216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-04-06 20:19 - 2019-03-13 09:22 - 000179712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
2019-04-06 20:19 - 2019-03-13 09:22 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
2019-04-06 20:19 - 2019-03-13 09:22 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
2019-04-06 20:19 - 2019-03-13 09:22 - 000101888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2019-03-15 21:54 - 000001049 _____ C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 75.126.120.203
127.0.0.1 46.4.58.71
127.0.0.1 46.4.62.150
127.0.0.1 46.4.28.80

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Hewlett-Packard\SimplePass\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\EAC MW klient\
HKU\S-1-5-21-4070732696-2307962366-2096404084-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Richard\Desktop\thailand-rocks-sea-islands-tropical-islands.jpg
HKU\S-1-5-21-4070732696-2307962366-2096404084-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{F67644CA-875C-41FD-B753-E60102FEEC1B}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4B88B347-C45C-4913-950C-4EEB5CDF8483}] => (Allow) LPort=2869
FirewallRules: [{C2F6A5D3-30BC-491C-841E-C84952038C16}] => (Allow) LPort=1900
FirewallRules: [{DE37F22C-1F1F-4BFE-B536-E0757363EE8B}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe (Meridian Audio Ltd -> Meridian Audio Ltd)
FirewallRules: [{3EF1A830-F1E2-47B7-8EA5-48D60E423858}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe (Meridian Audio Ltd -> Meridian Audio Ltd)
FirewallRules: [{9E090B11-A18D-4F85-8CD8-0D85BFAC2EBA}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe (Meridian Audio Ltd -> Meridian Audio Ltd)
FirewallRules: [{6177F9F7-DE33-4C1F-8527-EEC4CCFBF352}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe (Meridian Audio Ltd -> Meridian Audio Ltd)
FirewallRules: [{3B098172-57AE-4943-A596-CB6985FDA917}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B648A4FE-482D-4719-8635-2666C00D869E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5DEFEF1B-B37B-462F-ADE0-8A34FA02ADF6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D0387780-2DE4-49E1-9CBF-3D2414830580}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D431329B-D09A-4282-8631-06D816A00277}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{57C42B9C-7FE4-4ED6-8BD6-B651A7611899}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe (CyberLink Corp. -> CyberLink)
FirewallRules: [{12402D8B-0384-4734-9351-111DAA018747}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{F9791160-D0CE-4DC3-8425-377AFCE38151}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{C8D351A2-DBCD-4ECA-BD46-AE8BF5B2C93E}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [TCP Query User{B0EBEF5B-3430-47C8-96EA-4D4667C4A327}C:\users\richard\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\richard\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{37BEBA28-F63A-4EC9-B5C4-D778821B5347}C:\users\richard\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\richard\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{4F042218-15C4-4884-B216-74741DE633F0}C:\users\richard\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\richard\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{C7B7A15C-058E-4B26-9B63-2576B7CE5F41}C:\users\richard\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\richard\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{1DBBB65B-A7D6-4DB2-B39F-D14FD7DB1570}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe
FirewallRules: [UDP Query User{253A5442-E3EB-4A96-95DA-E8FFB2C9F240}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe
FirewallRules: [{093DB0A9-5CE6-49DF-B117-4B5B48878E35}] => (Allow) C:\WINDOWS\system32\hasplms.exe (SafeNet Canada, Inc. -> SafeNet, Inc.)
FirewallRules: [{F10C7A98-367D-4B94-9046-D83888386536}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{90B1690E-830C-46EB-A7D4-83C1A648DE35}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{AAA73C8E-CA2D-4DFE-99BB-65DB147190B4}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{8E99C710-097E-4206-BFC8-E771BC7ECD2C}] => (Allow) C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{54071ADC-31C0-45AA-96AB-67B4B747E51D}] => (Allow) C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{A624DDE1-F6B6-4DFF-9CF5-956B671580D6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)

==================== Restore Points =========================

10-03-2019 16:35:03 Naplánovaný kontrolní bod
30-03-2019 11:55:38 Nainštalované: EAC MW klient

==================== Faulty Device Manager Devices =============

Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/06/2019 08:16:20 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 559250

Error: (04/06/2019 08:16:20 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 559250

Error: (04/06/2019 08:16:20 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/06/2019 08:07:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1469

Error: (04/06/2019 08:07:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1469

Error: (04/06/2019 08:07:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/06/2019 11:05:22 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11531

Error: (04/06/2019 11:05:22 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11531


System errors:
=============
Error: (04/06/2019 07:54:40 PM) (Source: DCOM) (EventID: 10010) (User: Gallas)
Description: Server {4545DEA0-2DFC-4906-A728-6D986BA399A9} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/06/2019 07:54:40 PM) (Source: DCOM) (EventID: 10010) (User: Gallas)
Description: Server {4545DEA0-2DFC-4906-A728-6D986BA399A9} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/06/2019 11:30:12 AM) (Source: DCOM) (EventID: 10010) (User: Gallas)
Description: Server {4545DEA0-2DFC-4906-A728-6D986BA399A9} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/06/2019 11:30:12 AM) (Source: DCOM) (EventID: 10010) (User: Gallas)
Description: Server {4545DEA0-2DFC-4906-A728-6D986BA399A9} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/06/2019 11:30:06 AM) (Source: DCOM) (EventID: 10010) (User: Gallas)
Description: Server {4545DEA0-2DFC-4906-A728-6D986BA399A9} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/06/2019 11:30:06 AM) (Source: DCOM) (EventID: 10010) (User: Gallas)
Description: Server {4545DEA0-2DFC-4906-A728-6D986BA399A9} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/06/2019 11:30:00 AM) (Source: DCOM) (EventID: 10010) (User: Gallas)
Description: Server {4545DEA0-2DFC-4906-A728-6D986BA399A9} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/06/2019 11:30:00 AM) (Source: DCOM) (EventID: 10010) (User: Gallas)
Description: Server {4545DEA0-2DFC-4906-A728-6D986BA399A9} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
===================================
Date: 2019-03-15 20:52:54.957
Description:
Windows Defender Funkce ochrany v reálném čase zjistila chybu a nezdařila se.
Funkce: Systém kontroly sítě
Kód chyby: 0x80070002
Popis chyby: Systém nemůže nalézt uvedený soubor.
Důvod: Antimalwarová ochrana přestala z neznámých důvodů fungovat. V některých případech lze tento problém vyřešit restartováním služby.

Date: 2019-03-15 14:15:21.660
Description:
Windows Defender Funkce ochrany v reálném čase zjistila chybu a nezdařila se.
Funkce: Systém kontroly sítě
Kód chyby: 0x80070002
Popis chyby: Systém nemůže nalézt uvedený soubor.
Důvod: V systému chybí aktualizace potřebné ke spuštění systému pro kontrolu sítě. Nainstalujte požadované aktualizace a restartujte počítač.

Date: 2019-03-15 13:56:14.540
Description:
Windows Defender Funkce ochrany v reálném čase zjistila chybu a nezdařila se.
Funkce: Systém kontroly sítě
Kód chyby: 0x80070002
Popis chyby: Systém nemůže nalézt uvedený soubor.
Důvod: V systému chybí aktualizace potřebné ke spuštění systému pro kontrolu sítě. Nainstalujte požadované aktualizace a restartujte počítač.

Date: 2018-10-06 20:06:47.625
Description:
Windows Defender Funkce ochrany v reálném čase zjistila chybu a nezdařila se.
Funkce: Systém kontroly sítě
Kód chyby: 0x80070002
Popis chyby: Systém nemůže nalézt uvedený soubor.
Důvod: Antimalwarová ochrana přestala z neznámých důvodů fungovat. V některých případech lze tento problém vyřešit restartováním služby.

Date: 2018-10-06 20:06:36.351
Description:
Windows Defender Funkce ochrany v reálném čase zjistila chybu a nezdařila se.
Funkce: Systém kontroly sítě
Kód chyby: 0x80070002
Popis chyby: Systém nemůže nalézt uvedený soubor.
Důvod: V systému chybí aktualizace potřebné ke spuštění systému pro kontrolu sítě. Nainstalujte požadované aktualizace a restartujte počítač.

CodeIntegrity:
===================================

Date: 2018-12-26 21:22:24.447
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Processor: AMD A4-6210 APU with AMD Radeon R3 Graphics
Percentage of memory in use: 40%
Total physical RAM: 7112.98 MB
Available physical RAM: 4247.77 MB
Total Virtual: 8264.98 MB
Available Virtual: 4927.76 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:916.75 GB) (Free:858.59 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:13.74 GB) (Free:1.32 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive f: (MATHCAD 15 M020) (CDROM) (Total:0.49 GB) (Free:0 GB) CDFS

\\?\Volume{e7f3f21a-5a19-4fd9-9571-75debd2a7c54}\ (WINRE) (Fixed) (Total:0.63 GB) (Free:0.35 GB) NTFS

==================== MBR & Partition Table ==================

==================== End of Addition.txt ============================

Re: Niečo sa mi nezdá...

Napsal: 06 dub 2019 20:05
od Rudy
Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
Task: {6D7B631B-B1C9-456A-A2BD-260DABBB45AA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {8C737A4A-AF68-4B00-A4A9-EA02A1160722} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
C:\Program Files\Bonjour
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-4070732696-2307962366-2096404084-1002\...\MountPoints2: {0df0e81f-c992-11e8-8261-acb57d3aeb7d} - "F:\setup.exe"
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-4070732696-2307962366-2096404084-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-4070732696-2307962366-2096404084-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
SearchScopes: HKU\S-1-5-21-4070732696-2307962366-2096404084-500 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4070732696-2307962366-2096404084-500 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
U3 McAPExe; no ImagePath
U3 McMPFSvc; no ImagePath
U3 McNaiAnn; no ImagePath
U3 mcpltsvc; no ImagePath
U3 McProxy; no ImagePath
U3 mfecore; no ImagePath
U3 MSK80Service; no ImagePath
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
Hosts:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Niečo sa mi nezdá...

Napsal: 06 dub 2019 20:16
od Sudoku33
Fix result of Farbar Recovery Scan Tool (x64) Version: 17.03.2019
Ran by Richard (06-04-2019 21:09:12) Run:1
Running from C:\Users\Richard\Desktop
Loaded Profiles: Richard & Administrator (Available Profiles: Richard & Administrator)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
Task: {6D7B631B-B1C9-456A-A2BD-260DABBB45AA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {8C737A4A-AF68-4B00-A4A9-EA02A1160722} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
C:\Program Files\Bonjour
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-4070732696-2307962366-2096404084-1002\...\MountPoints2: {0df0e81f-c992-11e8-8261-acb57d3aeb7d} - "F:\setup.exe"
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-4070732696-2307962366-2096404084-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-4070732696-2307962366-2096404084-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
SearchScopes: HKU\S-1-5-21-4070732696-2307962366-2096404084-500 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4070732696-2307962366-2096404084-500 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
U3 McAPExe; no ImagePath
U3 McMPFSvc; no ImagePath
U3 McNaiAnn; no ImagePath
U3 mcpltsvc; no ImagePath
U3 McProxy; no ImagePath
U3 mfecore; no ImagePath
U3 MSK80Service; no ImagePath
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
Hosts:
End
*****************

Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6D7B631B-B1C9-456A-A2BD-260DABBB45AA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6D7B631B-B1C9-456A-A2BD-260DABBB45AA}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8C737A4A-AF68-4B00-A4A9-EA02A1160722}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8C737A4A-AF68-4B00-A4A9-EA02A1160722}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
C:\Program Files\Bonjour => moved successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKU\S-1-5-21-4070732696-2307962366-2096404084-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0df0e81f-c992-11e8-8261-acb57d3aeb7d} => removed successfully
HKLM\Software\Classes\CLSID\{0df0e81f-c992-11e8-8261-acb57d3aeb7d} => not found
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKU\S-1-5-21-4070732696-2307962366-2096404084-1002\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-4070732696-2307962366-2096404084-1002\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
"HKU\S-1-5-21-4070732696-2307962366-2096404084-500\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-4070732696-2307962366-2096404084-500\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
HKLM\System\CurrentControlSet\Services\McAPExe => removed successfully
McAPExe => service removed successfully
HKLM\System\CurrentControlSet\Services\McMPFSvc => removed successfully
McMPFSvc => service removed successfully
HKLM\System\CurrentControlSet\Services\McNaiAnn => removed successfully
McNaiAnn => service removed successfully
HKLM\System\CurrentControlSet\Services\mcpltsvc => removed successfully
mcpltsvc => service removed successfully
HKLM\System\CurrentControlSet\Services\McProxy => removed successfully
McProxy => service removed successfully
HKLM\System\CurrentControlSet\Services\mfecore => removed successfully
mfecore => service removed successfully
HKLM\System\CurrentControlSet\Services\MSK80Service => removed successfully
MSK80Service => service removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 12643538 B
Java, Flash, Steam htmlcache => 506 B
Windows/system/drivers => 3161776 B
Edge => 0 B
Chrome => 9552524 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 128 B
LocalService => 0 B
NetworkService => 0 B
Richard => 856941 B
Administrator => 22513 B

RecycleBin => 0 B
EmptyTemp: => 33 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:09:39 ====

Re: Niečo sa mi nezdá...

Napsal: 06 dub 2019 20:19
od Sudoku33
Tu je LOG, všetko je v ňom ok? Alebo sa ešte nachádza nejaká neplecha? ☺️

Re: Niečo sa mi nezdá...

Napsal: 06 dub 2019 21:09
od Rudy
Bylo dočištěno od zbytečností. Log by nyní měl být OK.

Re: Niečo sa mi nezdá...

Napsal: 06 dub 2019 21:34
od Sudoku33
Takže už žiadny Malware, žiadny vírus, nič?
Bomba! Ďakujem krásne !
Príjemný zvyšok sobotného večera :wink:

Re: Niečo sa mi nezdá...

Napsal: 07 dub 2019 10:02
od Rudy
Není tam nic. Nemáte zač a hezký den! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz