VIRY.CZ

Prosím o kontrolu.

V poslední době mě "mizí" z horní lišty ikonky minimalizovat/obnovit okno a zavřít.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Mira at 2019-10-30 12:55:10
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 414 GB (64%) free of 643 GB
Total RAM: 8082 MB (48% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:55:10, on 30.10.2019
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19503)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\cls.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe
C:\Users\Mira\Autodesk\Genuine Service\GenuineService.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files\Autodesk\AutoCAD LT 2020\acwebbrowser\acwebbrowser.exe
C:\Program Files\Autodesk\AutoCAD LT 2020\acwebbrowser\acwebbrowser.exe
C:\Program Files\Autodesk\AutoCAD LT 2020\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingAgent\AdskLicensingAgent.exe
C:\Program Files\trend micro\Mira.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://nmd.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://nmd.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\IPS\IPSBHO.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\coIEPlg.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [Print2PDF Print Monitor] "C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe" /server
O4 - HKLM\..\Run: [Autodesk Desktop App] "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
O4 - HKLM\..\RunOnce: [EasyTuneVI] C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" -s
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\Mira\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [] (User 'Default user')
O4 - Startup: GenuineService.lnk = C:\Users\Mira\Autodesk\Genuine Service\GenuineService.exe
O4 - Global Startup: CLS 2016.10.lnk = C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\cls.exe
O4 - Global Startup: T-Cloud Záloha.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Autodesk Desktop App Service (AdAppMgrSvc) - Autodesk Inc. - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Autodesk Desktop Licensing Service (AdskLicensingService) - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: ESET Firewall Helper (ekrnEpfw) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service - Flexera - C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.70\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Sentinel HASP License Manager (hasplms) - Unknown owner - C:\Windows\system32\hasplms.exe (file missing)
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\ccSvcHst.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Sentinel Keys Server (SentinelKeysServer) - SafeNet, Inc. - C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
O23 - Service: Sentinel Protection Server (SentinelProtectionServer) - SafeNet, Inc - C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
O23 - Service: Sentinel Security Runtime (SentinelSecurityRuntime) - SafeNet, Inc. - C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TCloudZaloha - Xopero Software S.A. - C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientService.exe
O23 - Service: TeamViewer 14 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 16041 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET Security\ekrn.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe"
"C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe"
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe"
"C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe"
C:\Windows\system32\hasplms.exe -run
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe"
"C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe"
"C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe"
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe"
C:\Windows\system32\viakaraokesrv.exe
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\ESET\ESET Security\eguiproxy.exe" /hide
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-693f8dfe-f07c-445f-a914-7e1b8f0d00d4 -SystemEventPortName:HostProcess-c400b00a-3e82-490c-9b68-f53888538a65 -IoCancelEventPortName:HostProcess-d3c55454-c888-43d1-870f-ddd517480750 -NonStateChangingEventPortName:HostProcess-79633e8c-5a60-432c-824b-67eb2e87fa27 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:04c62576-8c96-49a6-a566-6d3b454df8d2 -DeviceGroupId:WpdFsGroup
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Canon\Canon MF Network Scanner Selector\CMFNSS6.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" -s
"C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe"
"C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\cls.exe"
"C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientApplication.exe" -tray -autostart
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe" /server
"C:\Users\Mira\Autodesk\Genuine Service\GenuineService.exe"
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --approot=SOFTWARE\Autodesk --appAgent=/AUTODESKDESKTOPAPP/7.0.15.17/cs-CZ/0001 --lang=cs-CZ --cache-path="C:\Users\Mira\AppData\Local\Autodesk\Autodesk Desktop App\BrowserCache" --peerPid=4868
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --type=gpu-process --channel="4356.0.1511641360\1501271541" --no-sandbox --lang=cs-CZ --log-file="C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\debug.log" --log-severity=disable --peerpid=4868 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,12,13,25,46,54 --gpu-vendor-id=0x8086 --gpu-device-id=0x0152 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2843 --lang=cs-CZ --log-file="C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\debug.log" --log-severity=disable --peerpid=4868 --mojo-platform-channel-handle=968 /prefetch:2
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --type=renderer --no-sandbox --primordial-pipe-token=E4E599107E6AB2F2AD0B3687D5D0C2BF --lang=en-US --lang=cs-CZ --log-file="C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\debug.log" --log-severity=disable --peerpid=4868 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4356.1.668006208\1803231776" --mojo-platform-channel-handle=1244 /prefetch:1
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer14_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer14_Logfile.log
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\ccSvcHst.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\diMaster.dll" /prefetch:1
"C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientService.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "https://radia.cz/radio-rock-radio#play-95"
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2704.0.151345995\394105661" -parentBuildID 20191028110005 -prefsHandle 1140 -prefMapHandle 1132 -prefsLen 1 -prefMapSize 229690 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 2704 "\\.\pipe\gecko-crash-server-pipe.2704" 1212 gpu
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2704.3.1840492655\2045709405" -childID 1 -isForBrowser -prefsHandle 1776 -prefMapHandle 1772 -prefsLen 174 -prefMapSize 229690 -parentBuildID 20191028110005 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 2704 "\\.\pipe\gecko-crash-server-pipe.2704" 1788 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2704.13.445574477\879801521" -childID 2 -isForBrowser -prefsHandle 3188 -prefMapHandle 3180 -prefsLen 6526 -prefMapSize 229690 -parentBuildID 20191028110005 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 2704 "\\.\pipe\gecko-crash-server-pipe.2704" 3200 tab
"C:\Program Files\Autodesk\AutoCAD LT 2020\acadlt.exe" /language "cs-CZ"
"C:\Program Files\Autodesk\AutoCAD LT 2020\acwebbrowser\acwebbrowser.exe" --appRoot=Software\Autodesk\AutoCAD LT\R26\ACADLT-3001:405\Applications --appAgent=Autodesk/ACADLT/23.1/cs-CZ/3001 --lang=cs-CZ --cache-path="C:\Users\Mira\AppData\Local\Autodesk\AutoCAD LT 2020\R26\csy\BrowserCache" --peerPid=5924
"C:\Program Files\Autodesk\AutoCAD LT 2020\acwebbrowser\acwebbrowser.exe" --type=gpu-process --channel="3648.0.457218407\56105307" --no-sandbox --lang=cs-CZ --log-file="C:\Program Files\Autodesk\AutoCAD LT 2020\acwebbrowser\debug.log" --log-severity=disable --peerpid=5924 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,12,13,25,46,54 --gpu-vendor-id=0x8086 --gpu-device-id=0x0152 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2843 --lang=cs-CZ --log-file="C:\Program Files\Autodesk\AutoCAD LT 2020\acwebbrowser\debug.log" --log-severity=disable --peerpid=5924 --mojo-platform-channel-handle=928 /prefetch:2
"C:\Program Files\Autodesk\AutoCAD LT 2020\acwebbrowser\acwebbrowser.exe" --type=renderer --no-sandbox --primordial-pipe-token=03629BFE5A34040EB50B53F8AEE8F822 --lang=en-US --lang=cs-CZ --log-file="C:\Program Files\Autodesk\AutoCAD LT 2020\acwebbrowser\debug.log" --log-severity=disable --peerpid=5924 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="3648.1.822551197\674363992" --mojo-platform-channel-handle=1284 /prefetch:1
"C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingAgent/AdskLicensingAgent.exe" -i 01377bf4-d3d6-47d5-70c5-ad918d3ddb42
"C:/Program Files/Autodesk/Autodesk AdSSO/AdSSO.exe" --process_name Autodesk.SSO.DefaultProcess-v2 --server_name Autodesk.SSO.DefaultServer-v2
C:\Windows\system32\spool\DRIVERS\x64\3\SE4BLMSW.EXE
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2704.41.1763514289\580930855" -childID 6 -isForBrowser -prefsHandle 7628 -prefMapHandle 844 -prefsLen 7687 -prefMapSize 229690 -parentBuildID 20191028110005 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 2704 "\\.\pipe\gecko-crash-server-pipe.2704" 2868 tab
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2704.48.700317097\753317865" -childID 7 -isForBrowser -prefsHandle 3976 -prefMapHandle 996 -prefsLen 7687 -prefMapSize 229690 -parentBuildID 20191028110005 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 2704 "\\.\pipe\gecko-crash-server-pipe.2704" 3620 tab
"C:\Program Files\Altap Salamander\salamand.exe"
"C:\Program Files\Altap Salamander\utils\salmon.exe" "SalmonE5F" "czech.slg"
taskmgr.exe /3
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Users\Mira\Downloads\RSITx64.exe"

=========Mozilla firefox=========

ProfilePath - C:\Users\Mira\AppData\Roaming\Mozilla\Firefox\Profiles\u89o9la3.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "WWW.SEZNAM.CZ"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.7.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-07-01 221664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2019-10-04 970792]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-04-04 166360]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\coIEPlg.dll [2012-07-20 827800]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\IPS\IPSBHO.DLL [2012-06-11 387040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2019-10-04 684160]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\coIEPlg.dll [2012-07-20 827800]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-08-25 170304]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-08-25 398656]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-08-25 441152]
"MFNetworkScannerSelector"=C:\Program Files\Canon\Canon MF Network Scanner Selector\CMFNSS6.EXE [2015-01-22 425512]
"egui"=C:\Program Files\ESET\ESET Security\ecmdS.exe [2019-10-30 180736]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2019-10-16 24552064]
"TomTomHOME.exe"=C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [2019-07-19 249040]
"com.squirrel.Teams.Teams"=C:\Users\Mira\AppData\Local\Microsoft\Teams\Update.exe [2019-08-19 1789768]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE [2015-07-12 563416]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-08-09 5263504]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-02-29 56088]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-05-20 291648]
"Print2PDF Print Monitor"=C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe [2011-04-12 222776]
"Autodesk Desktop App"=C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [2019-03-06 657704]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
"EasyTuneVI"=C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe [2012-07-09 40960]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
CLS 2016.10.lnk - C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\cls.exe
T-Cloud Záloha.lnk - C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientApplication.exe

C:\Users\Mira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
GenuineService.lnk - C:\Users\Mira\Autodesk\Genuine Service\GenuineService.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-08-24 441856]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
""=

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2019-10-30 12:49:51 ----D---- C:\rsit
2019-10-30 12:49:51 ----D---- C:\Program Files\trend micro
2019-10-30 11:33:50 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2019-10-30 09:24:29 ----D---- C:\Program Files\Mozilla Firefox
2019-10-28 20:43:26 ----D---- C:\Windows\system32\%LocalAppData%
2019-10-25 06:52:14 ----N---- C:\bootsqm.dat
2019-10-24 05:07:25 ----D---- C:\Program Files (x86)\Blum
2019-10-18 09:40:28 ----D---- C:\Users\Mira\AppData\Roaming\SuperSpamKiller Pro
2019-10-17 12:50:47 ----A---- C:\Windows\system32\drivers\mbae64.sys
2019-10-17 12:50:42 ----D---- C:\ProgramData\Malwarebytes
2019-10-17 12:50:42 ----D---- C:\Program Files\Malwarebytes
2019-10-10 11:34:46 ----A---- C:\Windows\SYSWOW64\msvbvm60003.dll
2019-10-10 07:02:05 ----D---- C:\Users\Mira\AppData\Roaming\TracheaOS
2019-10-10 07:01:38 ----D---- C:\Program Files (x86)\TracheaOS
2019-10-04 11:45:01 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2019-10-04 11:45:01 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2019-10-04 11:45:01 ----A---- C:\Windows\SYSWOW64\inseng.dll
2019-10-04 11:45:01 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2019-10-04 11:45:01 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2019-10-04 11:45:01 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2019-10-04 11:45:01 ----A---- C:\Windows\system32\ieUnatt.exe
2019-10-04 11:45:01 ----A---- C:\Windows\system32\ieetwproxystub.dll
2019-10-04 11:45:01 ----A---- C:\Windows\system32\ieetwcollector.exe
2019-10-04 11:45:00 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2019-10-04 11:45:00 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2019-10-04 11:45:00 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2019-10-04 11:45:00 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2019-10-04 11:45:00 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2019-10-04 11:45:00 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2019-10-04 11:45:00 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-10-04 11:45:00 ----A---- C:\Windows\system32\ie4uinit.exe
2019-10-04 11:44:59 ----A---- C:\Windows\SYSWOW64\msrating.dll
2019-10-04 11:44:59 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2019-10-04 11:44:59 ----A---- C:\Windows\SYSWOW64\jscript.dll
2019-10-04 11:44:59 ----A---- C:\Windows\SYSWOW64\ieui.dll
2019-10-04 11:44:59 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2019-10-04 11:44:59 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2019-10-04 11:44:59 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2019-10-04 11:44:59 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2019-10-04 11:44:59 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2019-10-04 11:44:59 ----A---- C:\Windows\system32\urlmon.dll
2019-10-04 11:44:59 ----A---- C:\Windows\system32\msfeeds.dll
2019-10-04 11:44:59 ----A---- C:\Windows\system32\iesetup.dll
2019-10-04 11:44:59 ----A---- C:\Windows\system32\iernonce.dll
2019-10-04 11:44:59 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2019-10-04 11:44:59 ----A---- C:\Windows\system32\iedkcs32.dll
2019-10-04 11:44:59 ----A---- C:\Windows\system32\dxtrans.dll
2019-10-04 11:44:58 ----A---- C:\Windows\SYSWOW64\wininet.dll
2019-10-04 11:44:58 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2019-10-04 11:44:58 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2019-10-04 11:44:58 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2019-10-04 11:44:58 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2019-10-04 11:44:58 ----A---- C:\Windows\system32\vbscript.dll
2019-10-04 11:44:58 ----A---- C:\Windows\system32\msrating.dll
2019-10-04 11:44:58 ----A---- C:\Windows\system32\inseng.dll
2019-10-04 11:44:58 ----A---- C:\Windows\system32\iertutil.dll
2019-10-04 11:44:58 ----A---- C:\Windows\system32\ieapfltr.dll
2019-10-04 11:44:57 ----A---- C:\Windows\system32\webcheck.dll
2019-10-04 11:44:57 ----A---- C:\Windows\system32\mshtmlmedia.dll
2019-10-04 11:44:57 ----A---- C:\Windows\system32\mshtmled.dll
2019-10-04 11:44:57 ----A---- C:\Windows\system32\jscript.dll
2019-10-04 11:44:57 ----A---- C:\Windows\system32\ieui.dll
2019-10-04 11:44:57 ----A---- C:\Windows\system32\ieframe.dll
2019-10-04 11:44:57 ----A---- C:\Windows\system32\dxtmsft.dll
2019-10-04 11:44:56 ----A---- C:\Windows\system32\wininet.dll
2019-10-04 11:44:56 ----A---- C:\Windows\system32\MshtmlDac.dll
2019-10-04 11:44:56 ----A---- C:\Windows\system32\mshtml.dll
2019-10-04 11:44:56 ----A---- C:\Windows\system32\jsproxy.dll
2019-10-04 11:44:56 ----A---- C:\Windows\system32\jscript9.dll
2019-10-04 11:44:54 ----A---- C:\Windows\SYSWOW64\occache.dll
2019-10-04 11:44:54 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2019-10-04 11:44:54 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2019-10-04 11:44:54 ----A---- C:\Windows\system32\occache.dll
2019-10-04 11:44:54 ----A---- C:\Windows\system32\jscript9diag.dll
2019-10-04 11:44:54 ----A---- C:\Windows\system32\AUDIOKSE.dll
2019-10-04 11:44:53 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2019-10-04 11:44:53 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2019-10-04 11:44:53 ----A---- C:\Windows\system32\audiosrv.dll
2019-10-04 11:44:53 ----A---- C:\Windows\system32\AudioEng.dll
2019-10-04 11:44:52 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2019-10-04 11:44:52 ----A---- C:\Windows\system32\EncDump.dll
2019-10-04 11:44:52 ----A---- C:\Windows\system32\AudioSes.dll
2019-10-04 11:44:52 ----A---- C:\Windows\system32\audiodg.exe

======List of files/folders modified in the last 1 month======

2019-10-30 12:55:10 ----D---- C:\Windows\Temp
2019-10-30 12:49:51 ----RD---- C:\Program Files
2019-10-30 12:33:58 ----D---- C:\ProgramData\firebird
2019-10-30 11:44:13 ----D---- C:\Windows\System32
2019-10-30 11:44:13 ----D---- C:\Windows\inf
2019-10-30 11:44:13 ----A---- C:\Windows\system32\PerfStringBackup.INI
2019-10-30 11:36:45 ----A---- C:\Windows\SYSWOW64\log.txt
2019-10-30 11:35:54 ----D---- C:\ProgramData\Backuplogs
2019-10-30 11:35:03 ----D---- C:\Windows\SysWOW64
2019-10-30 11:34:39 ----D---- C:\Program Files (x86)\TeamViewer
2019-10-30 11:33:50 ----D---- C:\Windows\system32\drivers
2019-10-30 11:33:01 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2019-10-30 09:15:02 ----D---- C:\Windows\system32\DriverStore
2019-10-29 07:10:57 ----D---- C:\Windows\system32\config
2019-10-29 07:10:52 ----D---- C:\Windows\winsxs
2019-10-29 07:10:52 ----D---- C:\Windows\Tasks
2019-10-29 07:10:52 ----D---- C:\Windows\system32\wfp
2019-10-29 07:10:52 ----D---- C:\Windows\system32\catroot2
2019-10-29 07:10:51 ----SHD---- C:\Windows\Installer
2019-10-29 07:10:51 ----D---- C:\Windows\system32\wbem
2019-10-29 07:10:51 ----D---- C:\Windows\system32\Tasks
2019-10-29 07:10:51 ----D---- C:\Windows\system32\drivers\UMDF
2019-10-29 07:10:50 ----D---- C:\Users\Mira\AppData\Roaming\vlc
2019-10-29 07:10:50 ----D---- C:\Users\Mira\AppData\Roaming\Thunderbird
2019-10-29 07:10:50 ----D---- C:\Users\Mira\AppData\Roaming\ESET
2019-10-29 07:10:50 ----D---- C:\Users\Mira\AppData\Roaming\Autodesk
2019-10-29 07:10:49 ----D---- C:\Program Files\Microsoft Office 15
2019-10-29 07:10:48 ----D---- C:\Program Files\CCleaner
2019-10-29 07:10:48 ----D---- C:\Program Files (x86)\Optimik
2019-10-29 07:10:31 ----D---- C:\Windows\registration
2019-10-29 07:10:23 ----D---- C:\Windows\Microsoft.NET
2019-10-29 07:09:37 ----HD---- C:\ProgramData
2019-10-29 07:09:31 ----D---- C:\ProgramData\Blum
2019-10-29 07:09:02 ----D---- C:\Program Files (x86)
2019-10-29 07:08:02 ----D---- C:\Program Files (x86)\Microsoft Office
2019-10-29 07:05:14 ----D---- C:\Windows\system32\LogFiles
2019-10-29 06:57:36 ----SHD---- C:\System Volume Information
2019-10-29 06:25:52 ----D---- C:\Windows
2019-10-29 06:20:45 ----D---- C:\Users\Mira\AppData\Roaming\TeamViewer
2019-10-29 06:20:42 ----D---- C:\Windows\SoftwareDistribution
2019-10-28 17:57:35 ----D---- C:\Windows\Prefetch
2019-10-25 07:08:47 ----SHD---- C:\Config.Msi
2019-10-25 07:08:42 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2019-10-14 05:12:09 ----D---- C:\Windows\debug
2019-10-10 07:01:39 ----D---- C:\ProgramData\Adobe
2019-10-10 07:01:38 ----D---- C:\Program Files (x86)\Common Files
2019-10-10 07:01:38 ----D---- C:\Program Files (x86)\Adobe
2019-10-10 07:01:07 ----D---- C:\Users\Mira\AppData\Roaming\Adobe
2019-10-09 16:15:14 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2019-10-09 16:15:10 ----D---- C:\Windows\system32\Macromed
2019-10-09 16:15:07 ----D---- C:\Windows\SYSWOW64\Macromed
2019-10-07 21:44:30 ----D---- C:\Program Files (x86)\Google
2019-10-07 13:59:19 ----D---- C:\Windows\rescache
2019-10-07 05:57:36 ----RSD---- C:\Windows\assembly
2019-10-07 05:33:34 ----D---- C:\Program Files\Internet Explorer
2019-10-07 05:33:33 ----D---- C:\Windows\SYSWOW64\en-US
2019-10-07 05:33:33 ----D---- C:\Windows\SYSWOW64\cs-CZ
2019-10-07 05:33:33 ----D---- C:\Windows\system32\en-US
2019-10-07 05:33:33 ----D---- C:\Windows\system32\cs-CZ
2019-10-07 05:33:33 ----D---- C:\Windows\ehome
2019-10-07 05:33:33 ----D---- C:\Program Files (x86)\Internet Explorer
2019-10-07 05:33:19 ----D---- C:\Windows\system32\MRT
2019-10-07 05:30:29 ----AC---- C:\Windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2019-10-30 103264]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2012-02-01 568600]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-05-20 19264]
R0 pwdrvio;pwdrvio; C:\Windows\system32\pwdrvio.sys [2013-09-30 19152]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2012-10-25 22680]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 516096]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2019-10-30 149944]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2019-10-30 189512]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2019-10-30 77184]
R1 EpfwLWF;ESET Firewall; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2019-10-30 61640]
R1 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2019-10-30 114136]
R2 aksdf;aksdf; \??\C:\Windows\system32\drivers\aksdf.sys [2010-07-27 75648]
R2 aksfridge;aksfridge; \??\C:\Windows\system32\drivers\aksfridge.sys [2010-09-27 131072]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2019-10-30 50712]
R2 hardlock;hardlock; \??\C:\Windows\system32\drivers\hardlock.sys [2009-03-13 318464]
R2 Sentinel64;Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [2009-09-17 145448]
R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2019-10-30 25640]
R3 GVTDrv64;GVTDrv64; \??\C:\Windows\GVTDrv64.sys [2019-10-30 30528]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-08-24 9000256]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-05-20 357184]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-05-20 789824]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2012-07-19 110744]
R3 MBAMSwissArmy;MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [2019-10-30 275232]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-02 62784]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2012-08-03 2206352]
S3 ardrv;ardrv; \??\C:\Users\Mira\AppData\Local\Temp\ardrv.sys []
S3 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20120615.003\BHDrvx64.sys [2012-06-11 1377440]
S3 ccSet_NIS;Norton Internet Security Settings Manager; C:\Windows\system32\drivers\NISx64\1400000.088\ccSetx64.sys [2012-05-25 168608]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 etdrv;etdrv; \??\C:\Windows\etdrv.sys [2019-07-29 25640]
S3 ew_usbccgpfilter;HwHandSet_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbccgpfilter.sys [2019-08-19 18944]
S3 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20120611.002\IDSVia64.sys [2012-06-11 509088]
S3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20120616.009\ENG64.SYS [2012-06-16 120440]
S3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20120616.009\EX64.SYS [2012-06-16 2068600]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pwdspio;pwdspio; \??\C:\Windows\system32\pwdspio.sys [2013-09-30 12504]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 SNTUSB64;SafeNet USB SuperPro/UltraPro/HardwareKey; C:\Windows\system32\DRIVERS\SNTUSB64.SYS [2012-12-11 63568]
S3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\system32\drivers\NISx64\1400000.088\SRTSP64.SYS [2012-05-25 753312]
S3 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\NISx64\1400000.088\SRTSPX64.SYS [2012-01-11 37496]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NISx64\1400000.088\SYMDS64.SYS [2012-05-25 485024]
S3 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NISx64\1400000.088\SYMEFA64.SYS [2012-05-21 1129120]
S3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2019-01-10 177312]
S3 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NISx64\1400000.088\Ironx64.SYS [2012-05-25 222368]
S3 SymNetS;Symantec Network Security WFP Driver; C:\Windows\system32\drivers\NISx64\1400000.088\SYMNETS.SYS [2012-05-09 431224]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2010-04-14 73728]
R2 AdAppMgrSvc;Autodesk Desktop App Service; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [2019-03-06 1164664]
R2 AdskLicensingService;Autodesk Desktop Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [2019-01-09 16939312]
R2 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2019-10-14 11642472]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2019-10-30 2243136]
R2 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [2019-01-17 1606152]
R2 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe [2019-05-21 2657616]
R2 hasplms;Sentinel HASP License Manager; C:\Windows\system32\hasplms.exe [2010-09-27 4180576]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2019-08-19 190784]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-02-01 13592]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2019-06-26 6744288]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\ccSvcHst.exe [2012-06-14 143928]
R2 SentinelKeysServer;Sentinel Keys Server; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [2010-10-20 374048]
R2 SentinelProtectionServer;Sentinel Protection Server; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [2010-10-20 1250592]
R2 SentinelSecurityRuntime;Sentinel Security Runtime; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [2010-10-20 292128]
R2 TCloudZaloha;TCloudZaloha; C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientService.exe [2019-07-23 29760]
R2 TeamViewer;TeamViewer 14; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2019-09-24 12135768]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2019-07-19 93904]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2012-08-03 27792]
R3 ekrnEpfw;ESET Firewall Helper; C:\Program Files\ESET\ESET Security\ekrn.exe [2019-10-30 2243136]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-08-30 160256]
S2 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2019-03-28 132792]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2019-03-28 158912]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-01-11 156968]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2019-10-09 335416]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2019-03-28 54912]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2019-01-17 85096]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-08-25 276288]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.70\elevation_service.exe [2019-10-20 1110512]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-01-11 156968]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2019-09-29 116224]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2019-10-30 244936]
S3 ose;Office Source Engine; c:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 226304]
S3 osppsvc;Office Software Protection Platform; c:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2018-12-26 5132888]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2019-01-11 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]

-----------------EOF-----------------

Ahoj

Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/

• Uloz na plochu a ukonci vsetky programy
• Spusti AdwCleaner ako spravca
• Odsuhlas licencne podmienky
• Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
• Nechaj zaskrtnute vsetky nalezy
• Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
• Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
• Otvori sa log, jeho obsah sem skopiruj

# -------------------------------
# Malwarebytes AdwCleaner 7.4.2.0
# -------------------------------
# Build: 10-21-2019
# Database: 2019-10-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-31-2019
# Duration: 00:00:02
# OS: Windows 7 Professional
# Cleaned: 2
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKLM\Software\Classes\Interface\{7697BC38-D0FA-454B-AC75-968B4CCABFCE}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{7697BC38-D0FA-454B-AC75-968B4CCABFCE}

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [9023 octets] - [31/10/2019 06:44:07]
AdwCleaner[S00].txt - [1578 octets] - [31/10/2019 06:44:46]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Poprosim o obidva logy z FRST (FRST.txt a Addition.txt) podla tohto navodu: https://forum.viry.cz/viewtopic.php?f=13&t=154679

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-11-2019
Ran by Mira (administrator) on MIRA-PC-PRACE (Gigabyte Technology Co., Ltd. To be filled by O.E.M.) (01-11-2019 06:27:17)
Running from C:\Users\Mira\Desktop
Loaded Profiles: Mira (Available Profiles: Mira)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ALTAP, spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\salamand.exe
(ALTAP, spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\utils\salmon.exe
(Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\9.0.1.1462\AdskLicensingService\AdskLicensingService.exe
(Autodesk, Inc. -> Autodesk) C:\Users\Mira\Autodesk\Genuine Service\GenuineService.exe
(Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
(CANON INC. -> CANON INC.) C:\Program Files\Canon\Canon MF Network Scanner Selector\CMFNSS6.EXE
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(Giga-Byte Technology -> ) C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(SafeNet, Inc. -> SafeNet Inc.) C:\Windows\System32\hasplms.exe
(SafeNet, Inc. -> SafeNet, Inc) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
(SafeNet, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
(SafeNet, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe
(SHARP CORPORATION) [File not signed] C:\Windows\System32\spool\drivers\x64\3\SE4BLMSW.EXE
(Software602 -> Software602) C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe
(Software602 a.s.) [File not signed] C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\ccSvcHst.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(TomTom International BV -> TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
(TomTom International BV -> TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Tpa) [File not signed] C:\WDFlash\Fw\StoneEMU.exe
(Vero Software Limited) [File not signed] C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\cls.exe
(VIA Technologies Inc. -> VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(VIA Technologies Inc. -> VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Xopero Software S.A. -> Xopero Software S.A.) C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientApplication.exe
(Xopero Software S.A. -> Xopero Software S.A.) C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientService.exe
(ZONER software, a.s. -> ZONER software) C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MFNetworkScannerSelector] => C:\Program Files\Canon\Canon MF Network Scanner Selector\CMFNSS6.EXE [425512 2015-01-22] (CANON INC. -> CANON INC.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [180736 2019-10-30] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5263504 2012-08-09] (VIA Technologies Inc. -> VIA)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2012-02-01] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [Print2PDF Print Monitor] => C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe [222776 2011-04-12] (Software602 -> Software602)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [657704 2019-03-06] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\RunOnce: [EasyTuneVI] => C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe [40960 2012-07-09] () [File not signed]
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [249040 2019-07-19] (TomTom International BV -> TomTom)
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Mira\AppData\Local\Microsoft\Teams\Update.exe [1789768 2019-08-19] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\Run: [Zoner Photo Studio Autoupdate] => C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE [563416 2015-07-12] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\Policies\Explorer: []
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {71edd97c-ca35-11e9-879a-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {b7fb1081-1e3e-11e9-b678-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {c1e88568-805f-11e9-840c-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {d86387db-90c1-11e9-87cb-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {ef75f075-5f6f-11e9-8303-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {ef75f087-5f6f-11e9-8303-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {f42689c7-14a0-11e9-a574-806e6f6e6963} - D:\Run.exe
HKU\S-1-5-18\...\Run: [] => [X]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.70\Installer\chrmstp.exe [2019-10-29] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CLS 2016.10.lnk [2019-02-21]
ShortcutTarget: CLS 2016.10.lnk -> C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\cls.exe (Vero Software Limited) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\T-Cloud Záloha.lnk [2019-07-25]
ShortcutTarget: T-Cloud Záloha.lnk -> C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientApplication.exe (Xopero Software S.A. -> Xopero Software S.A.)
Startup: C:\Users\Mira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GenuineService.lnk [2019-05-21]
ShortcutTarget: GenuineService.lnk -> C:\Users\Mira\Autodesk\Genuine Service\GenuineService.exe (Autodesk, Inc. -> Autodesk)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1F5F49E4-1E6A-49E9-80CC-A53B274EC5BB} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27295856 2019-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {26364DBA-13DA-41AF-AD59-BBDA4DEB6106} - System32\Tasks\{CDF594DB-727C-43A1-84EA-C7A4765F28C0} => C:\Windows\system32\pcalua.exe -a C:\Users\Mira\Downloads\ARM160-M161-M162-M165-M205-M206-M207-5220_DRV_PCL6-PS-WinXP64-Vista64-2k364-2k864-ver0911a_CZ.exe -d C:\Users\Mira\Downloads
Task: {392FE0D5-D98F-4EE0-95A9-87CCA23816B2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-01-11] (Google Inc -> Google Inc.)
Task: {450E24DB-0B61-44B1-8223-7721FA2A9876} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [122344 2019-10-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {4D3477D8-99C4-4E70-84FD-2D1CE6122D5D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-01-11] (Google Inc -> Google Inc.)
Task: {5973244D-5F09-42D8-A14E-AC7D5707B9E9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {68121882-73A2-4E62-806A-DC0A53E24861} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [122344 2019-10-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {6DB27F2A-D714-4B31-9B9C-FEE59C07EBB2} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\SymErr.exe [53656 2012-07-05] (Symantec Corporation -> Symantec Corporation)
Task: {71DE2A7B-5D86-4F86-8237-FA28D1AD31CF} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\WSCStub.exe [157336 2012-07-25] (Symantec Corporation -> Symantec Corporation)
Task: {9678FEF2-5404-43C8-BAA3-CAE075150E08} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1430176 2019-10-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {A13C1098-BA26-4891-AA98-B758E363C620} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1430176 2019-10-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {A9903396-7CF9-44E2-A609-2E836514692C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27295856 2019-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {B8FB9A8E-AED9-42A5-87F9-2AB71857D37C} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1577608 2019-10-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCD731B3-9D49-42B8-9B03-B3684A37C233} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {DFFC2EBC-0EE8-4523-B5A6-F72A1A81BF60} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-10-09] (Adobe Inc. -> Adobe)
Task: {E6907BB7-6B02-4126-BB34-6F3BBF111D7F} - System32\Tasks\{7F5A5A82-8941-480B-8D71-794EA4B363CA} => C:\Windows\system32\pcalua.exe -a C:\Users\Mira\Downloads\Norton_Removal_Tool(1).exe -d C:\Users\Mira\Downloads
Task: {EDB60274-9F82-4E2A-B183-974DB3FC5664} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\SymErr.exe [53656 2012-07-05] (Symantec Corporation -> Symantec Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.10.10.10 8.8.8.8
Tcpip\..\Interfaces\{89431955-5625-497B-B323-815528BC2E2D}: [DhcpNameServer] 10.10.10.10 8.8.8.8

Internet Explorer:
==================
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://nmd.msn.com
SearchScopes: HKLM -> DefaultScope {3061F580-B649-41A4-9307-CE3EB11D800E} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {3061F580-B649-41A4-9307-CE3EB11D800E} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {36F61BA3-E3EE-45D9-86B8-DBB98D6D4DE8} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {36F61BA3-E3EE-45D9-86B8-DBB98D6D4DE8} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-1064124205-772266194-2725748559-1000 -> DefaultScope {3061F580-B649-41A4-9307-CE3EB11D800E} URL =
SearchScopes: HKU\S-1-5-21-1064124205-772266194-2725748559-1000 -> {3061F580-B649-41A4-9307-CE3EB11D800E} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-07-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-04-04] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\coIEPlg.dll [2012-07-20] (Symantec Corporation -> Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\IPS\IPSBHO.DLL [2012-06-11] (Symantec Corporation -> Symantec Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\coIEPlg.dll [2012-07-20] (Symantec Corporation -> Symantec Corporation)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKU\S-1-5-21-1064124205-772266194-2725748559-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: u89o9la3.default
FF ProfilePath: C:\Users\Mira\AppData\Roaming\TomTom\HOME\Profiles\d3zxrcad.default [2019-08-12]
FF Extension: (Map status indicator) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [2019-08-07] [Legacy] [not signed]
FF ProfilePath: C:\Users\Mira\AppData\Roaming\Mozilla\Firefox\Profiles\u89o9la3.default [2019-11-01]
FF Homepage: Mozilla\Firefox\Profiles\u89o9la3.default -> http://WWW.SEZNAM.CZ
FF Extension: (Deník.cz) - C:\Users\Mira\AppData\Roaming\Mozilla\Firefox\Profiles\u89o9la3.default\Extensions\rozsireni@denik.cz.xpi [2019-09-03]
FF Extension: (No Name) - C:\Users\Mira\AppData\Roaming\Mozilla\Firefox\Profiles\u89o9la3.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-10-23]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn
FF Extension: (No Name) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn [2019-01-11] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn
FF Extension: (No Name) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn [2019-01-11] [not signed]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-07] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-07] (Google Inc -> Google LLC)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2019-10-31]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default [2019-10-29]
CHR Extension: (YouTube) - C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-01-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-01-11]
CHR Extension: (Gmail) - C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-04]
CHR Extension: (Chrome Media Router) - C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-06]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\Exts\Chrome.crx <not found>

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [73728 2010-04-14] (Software602 a.s.) [File not signed]
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1164664 2019-03-06] (Autodesk, Inc. -> Autodesk Inc.)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [16939312 2019-01-09] (Autodesk, Inc. -> Autodesk)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
S3 Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [85096 2019-01-17] (Autodesk, Inc -> Autodesk)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11642472 2019-10-14] (Microsoft Corporation -> Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2243136 2019-10-30] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2243136 2019-10-30] (ESET, spol. s r.o. -> ESET)
R2 hasplms; C:\Windows\system32\hasplms.exe [4180576 2010-09-27] (SafeNet, Inc. -> SafeNet Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-08-19] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\ccSvcHst.exe [143928 2012-06-14] (Symantec Corporation -> Symantec Corporation)
R2 SentinelKeysServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [374048 2010-10-20] (SafeNet, Inc. -> SafeNet, Inc.)
R2 SentinelProtectionServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [1250592 2010-10-20] (SafeNet, Inc. -> SafeNet, Inc)
R2 SentinelSecurityRuntime; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [292128 2010-10-20] (SafeNet, Inc. -> SafeNet, Inc.)
R2 TCloudZaloha; C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientService.exe [29760 2019-07-23] (Xopero Software S.A. -> Xopero Software S.A.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12135768 2019-09-24] (TeamViewer GmbH -> TeamViewer GmbH)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27792 2012-08-03] (VIA Technologies Inc. -> VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aksdf; C:\Windows\system32\drivers\aksdf.sys [75648 2010-07-27] (Microsoft Windows Hardware Compatibility Publisher -> SafeNet Inc.)
R2 aksfridge; C:\Windows\system32\drivers\aksfridge.sys [131072 2010-09-27] (Microsoft Windows Hardware Compatibility Publisher -> SafeNet Inc.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22680 2012-10-25] (Giga-Byte Technology -> )
S3 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20120615.003\BHDrvx64.sys [1377440 2012-06-11] (Symantec Corporation -> Symantec Corporation)
S3 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1400000.088\ccSetx64.sys [168608 2012-05-25] (Symantec Corporation -> Symantec Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [149944 2019-10-30] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [103264 2019-10-30] (ESET, spol. s r.o. -> ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [189512 2019-10-30] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [50712 2019-10-30] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [77184 2019-10-30] (ESET, spol. s r.o. -> ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [61640 2019-10-30] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [114136 2019-10-30] (ESET, spol. s r.o. -> ESET)
S3 etdrv; C:\Windows\etdrv.sys [25640 2019-07-29] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
S3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [18944 2019-08-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 gdrv; C:\Windows\gdrv.sys [25640 2019-10-31] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
R3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2019-10-31] (GIGA-BYTE TECHNOLOGY CO., LTD -> )
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [318464 2009-03-13] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2019-08-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20120611.002\IDSVia64.sys [509088 2012-06-11] (Symantec Corporation -> Symantec Corporation)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-10-31] (Malwarebytes Corporation -> Malwarebytes)
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20120616.009\ENG64.SYS [120440 2012-06-16] (Symantec Corporation -> Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20120616.009\EX64.SYS [2068600 2012-06-16] (Symantec Corporation -> Symantec Corporation)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
R2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc. -> SafeNet, Inc.)
R3 SNTUSB64; C:\Windows\System32\DRIVERS\SNTUSB64.SYS [63568 2012-12-11] (SafeNet, Inc. -> SafeNet, Inc.)
S3 SRTSP; C:\Windows\system32\drivers\NISx64\1400000.088\SRTSP64.SYS [753312 2012-05-25] (Symantec Corporation -> Symantec Corporation)
S3 SRTSPX; C:\Windows\system32\drivers\NISx64\1400000.088\SRTSPX64.SYS [37496 2012-01-11] (Symantec Corporation -> Symantec Corporation)
S3 SymDS; C:\Windows\system32\drivers\NISx64\1400000.088\SYMDS64.SYS [485024 2012-05-25] (Symantec Corporation -> Symantec Corporation)
S3 SymEFA; C:\Windows\system32\drivers\NISx64\1400000.088\SYMEFA64.SYS [1129120 2012-05-21] (Symantec Corporation -> Symantec Corporation)
S3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2019-01-10] (Symantec Corporation -> Symantec Corporation)
S3 SymIRON; C:\Windows\system32\drivers\NISx64\1400000.088\Ironx64.SYS [222368 2012-05-25] (Symantec Corporation -> Symantec Corporation)
S3 SymNetS; C:\Windows\system32\drivers\NISx64\1400000.088\SYMNETS.SYS [431224 2012-05-09] (Symantec Corporation -> Symantec Corporation)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [2206352 2012-08-03] (VIA Technologies Inc. -> VIA Technologies, Inc.)
S3 ardrv; \??\C:\Users\Mira\AppData\Local\Temp\ardrv.sys [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-11-01 06:27 - 2019-11-01 06:28 - 000034530 _____ C:\Users\Mira\Desktop\FRST.txt
2019-11-01 06:26 - 2019-11-01 06:27 - 000000000 ____D C:\FRST
2019-11-01 06:25 - 2019-11-01 06:25 - 001619456 _____ (Farbar) C:\Users\Mira\Desktop\FRST64.exe
2019-10-31 06:51 - 2019-10-31 06:51 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-10-31 06:44 - 2019-10-31 06:49 - 000000000 ____D C:\AdwCleaner
2019-10-31 06:42 - 2019-10-31 06:42 - 007622344 _____ (Malwarebytes) C:\Users\Mira\Desktop\adwcleaner_7.4.2.exe
2019-10-31 06:27 - 2019-10-31 06:27 - 570032145 _____ C:\Windows\MEMORY.DMP
2019-10-31 06:27 - 2019-10-31 06:27 - 000397232 _____ C:\Windows\Minidump\103119-17955-01.dmp
2019-10-31 06:27 - 2019-10-31 06:27 - 000000000 ____D C:\Windows\Minidump
2019-10-31 06:26 - 2019-10-31 06:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-10-31 06:22 - 2019-10-31 06:22 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2019-10-31 06:22 - 2017-10-27 18:46 - 000001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2019-10-31 06:22 - 2017-10-27 17:12 - 005960824 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2019-10-31 06:22 - 2017-10-27 17:12 - 002587768 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2019-10-31 06:22 - 2017-10-27 17:12 - 001766520 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2019-10-31 06:22 - 2017-10-27 17:12 - 000607168 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2019-10-31 06:22 - 2017-10-27 17:12 - 000449656 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2019-10-31 06:22 - 2017-10-27 17:12 - 000123000 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2019-10-31 06:22 - 2017-10-27 17:12 - 000081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2019-10-31 06:22 - 2017-10-27 17:06 - 000136312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2019-10-31 06:22 - 2017-10-25 11:33 - 007802921 _____ C:\Windows\system32\nvcoproc.bin
2019-10-31 06:22 - 2017-09-14 00:20 - 000798008 _____ C:\Windows\SysWOW64\vulkan-1.dll
2019-10-31 06:22 - 2017-09-14 00:20 - 000490296 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2019-10-31 06:22 - 2017-09-14 00:19 - 000927544 _____ C:\Windows\system32\vulkan-1.dll
2019-10-31 06:22 - 2017-09-14 00:19 - 000591160 _____ C:\Windows\system32\vulkaninfo.exe
2019-10-31 06:21 - 2019-10-31 06:51 - 000000000 ____D C:\ProgramData\NVIDIA
2019-10-31 06:21 - 2019-10-31 06:22 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-10-31 06:21 - 2017-10-27 17:36 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2019-10-31 06:20 - 2017-10-27 18:46 - 040237688 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 036194424 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 035156928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 029236344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 023262464 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 021744632 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 019037416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 019012232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 018207248 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 016763000 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2019-10-31 06:20 - 2017-10-27 18:46 - 015027984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 013864232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 013254520 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 011779328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 010882720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 004284496 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 003807680 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 003799032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 003346552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 001989056 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438813.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 001673848 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438813.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 001615472 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 001135464 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 001099200 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 001030592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000981112 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000932472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000885680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000615360 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000527288 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000505976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000492048 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000446216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000407064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000225208 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2019-10-31 06:20 - 2017-10-27 18:46 - 000171896 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000154392 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000149552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000132256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000046182 _____ C:\Windows\system32\nvinfo.pb
2019-10-31 06:20 - 2017-10-27 18:46 - 000045496 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2019-10-31 06:20 - 2017-10-27 18:46 - 000000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2019-10-31 06:20 - 2017-10-27 18:46 - 000000669 _____ C:\Windows\system32\nv-vk64.json
2019-10-31 06:19 - 2019-10-31 06:22 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-10-31 06:14 - 2019-10-31 06:22 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-10-30 18:35 - 2019-10-30 18:37 - 121681576 _____ (NVIDIA Corporation New) C:\Users\Mira\Downloads\GeForce_Experience_v3.20.0.118.exe
2019-10-30 14:31 - 2019-10-30 14:31 - 000000000 ____D C:\NVIDIA
2019-10-30 13:19 - 2019-10-30 13:51 - 000000000 ____D C:\Users\Mira\AppData\Roaming\Blum
2019-10-30 12:49 - 2019-10-30 12:55 - 000000000 ____D C:\Program Files\trend micro
2019-10-30 12:49 - 2019-10-30 12:50 - 000000000 ____D C:\rsit
2019-10-30 12:49 - 2019-10-30 12:49 - 001222144 _____ C:\Users\Mira\Downloads\RSITx64.exe
2019-10-30 11:35 - 2019-10-31 06:52 - 000000004 _____ C:\Windows\SysWOW64\GVTunner.ref
2019-10-30 09:24 - 2019-10-30 11:34 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-10-29 09:57 - 2019-10-29 12:52 - 000015915 _____ C:\Users\Mira\Desktop\kovani_oprava.xlsx
2019-10-28 20:43 - 2019-10-28 20:43 - 000000000 ____D C:\Windows\system32\%LocalAppData%
2019-10-28 13:39 - 2019-10-28 13:39 - 000000000 ____D C:\Users\Default\AppData\Local\mbamtray
2019-10-28 13:39 - 2019-10-28 13:39 - 000000000 ____D C:\Users\Default User\AppData\Local\mbamtray
2019-10-25 12:24 - 2019-10-25 12:25 - 037803437 _____ C:\Users\Mira\Downloads\K2_CZ.pdf
2019-10-25 06:52 - 2019-10-25 06:52 - 000003544 ____N C:\bootsqm.dat
2019-10-24 06:58 - 2019-10-24 06:58 - 001201305 _____ C:\Users\Mira\Downloads\me161798_ma_dok_bau_$sml_$aof_$v1.pdf
2019-10-24 05:08 - 2019-10-29 07:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DYNALOG
2019-10-24 05:08 - 2019-10-24 05:08 - 000001936 _____ C:\Users\Public\Desktop\DYNALOG.lnk
2019-10-24 05:08 - 2019-10-24 05:08 - 000001936 _____ C:\ProgramData\Desktop\DYNALOG.lnk
2019-10-24 05:07 - 2019-10-29 07:07 - 000000000 ____D C:\Program Files (x86)\Blum
2019-10-23 13:20 - 2019-10-23 13:25 - 443345478 _____ (Julius Blum Ges.m.b.H) C:\Users\Mira\Downloads\Blum_DYNALOG-v3643-01(1).exe
2019-10-18 09:56 - 2019-10-18 09:57 - 002470280 _____ (SPAMfighter ApS) C:\Users\Mira\Downloads\SPAMfighter_web.exe
2019-10-18 09:40 - 2019-10-21 06:04 - 000000000 ____D C:\Users\Mira\AppData\Roaming\SuperSpamKiller Pro
2019-10-18 09:39 - 2019-10-29 07:10 - 000000000 ____D C:\Users\Mira\Downloads\ssksw
2019-10-18 09:38 - 2019-10-18 09:38 - 015891457 _____ C:\Users\Mira\Downloads\ssksw.zip
2019-10-17 12:52 - 2019-10-17 12:52 - 000000000 ____D C:\Users\Mira\AppData\Local\mbam
2019-10-17 12:51 - 2019-10-17 12:51 - 000000000 ____D C:\Users\Mira\AppData\Local\mbamtray
2019-10-17 12:50 - 2019-10-29 07:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-10-17 12:50 - 2019-10-29 07:09 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-10-17 12:50 - 2019-10-29 07:09 - 000000000 ____D C:\Program Files\Malwarebytes
2019-10-17 12:50 - 2019-10-17 17:54 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-10-17 12:50 - 2019-10-17 12:50 - 000001871 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-10-17 12:50 - 2019-10-17 12:50 - 000001871 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2019-10-17 12:43 - 2019-10-17 12:44 - 066367928 _____ (Malwarebytes ) C:\Users\Mira\Downloads\mb3-setup-37469.37469-3.8.3.2965-1.0.627-1.0.12633.exe
2019-10-14 09:52 - 2019-10-14 09:57 - 372429653 _____ (Ecru Software ) C:\Users\Mira\Downloads\instal_ton2016.exe
2019-10-14 09:52 - 2019-10-14 09:54 - 139527544 _____ (Ecru Software ) C:\Users\Mira\Downloads\instal_krono-2018.exe
2019-10-14 05:10 - 2019-10-14 05:10 - 025441808 _____ (Piriform Software Ltd) C:\Users\Mira\Downloads\ccsetup562.exe
2019-10-11 13:45 - 2019-10-29 07:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2019-10-10 11:34 - 2009-07-14 02:15 - 001386496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvbvm60003.dll
2019-10-10 07:02 - 2019-10-10 07:02 - 000000000 ____D C:\Users\Mira\AppData\Roaming\TracheaOS
2019-10-10 07:01 - 2019-10-10 07:01 - 000000857 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TracheaOS.lnk
2019-10-10 07:01 - 2019-10-10 07:01 - 000000845 _____ C:\Users\Public\Desktop\TracheaOS.lnk
2019-10-10 07:01 - 2019-10-10 07:01 - 000000845 _____ C:\ProgramData\Desktop\TracheaOS.lnk
2019-10-10 07:01 - 2019-10-10 07:01 - 000000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2019-10-10 07:01 - 2019-10-10 07:01 - 000000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2019-10-10 07:01 - 2019-10-10 07:01 - 000000000 ____D C:\Program Files (x86)\TracheaOS
2019-10-10 07:00 - 2019-10-10 07:00 - 001703264 _____ C:\Users\Mira\Downloads\TracheaOS-demos-cz-4.7.147.exe
2019-10-08 08:01 - 2019-10-08 08:01 - 000000000 ____D C:\Users\Mira\Documents\2019_10_08
2019-10-04 11:45 - 2019-10-01 12:58 - 000342112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-10-04 11:45 - 2019-09-29 23:09 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-10-04 11:45 - 2019-09-29 22:57 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-10-04 11:45 - 2019-09-29 22:57 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-10-04 11:45 - 2019-09-29 22:54 - 020290560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-10-04 11:45 - 2019-09-29 22:50 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-10-04 11:45 - 2019-09-29 22:40 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-10-04 11:45 - 2019-09-29 22:40 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-10-04 11:45 - 2019-09-29 22:36 - 000496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-10-04 11:45 - 2019-09-29 22:29 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2019-10-04 11:45 - 2019-09-29 22:26 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2019-10-04 11:45 - 2019-09-29 22:21 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-10-04 11:45 - 2019-09-29 22:14 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-10-04 11:45 - 2019-09-29 22:13 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2019-10-04 11:45 - 2019-09-29 22:13 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2019-10-04 11:45 - 2019-09-29 22:10 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-10-04 11:45 - 2019-09-29 22:09 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-10-04 11:45 - 2019-09-29 22:00 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-10-04 11:45 - 2019-09-29 21:38 - 001331712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-10-04 11:44 - 2019-10-01 13:50 - 000390536 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-10-04 11:44 - 2019-09-30 00:50 - 025752064 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-10-04 11:44 - 2019-09-29 23:23 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-10-04 11:44 - 2019-09-29 23:23 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-10-04 11:44 - 2019-09-29 23:11 - 002909184 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-10-04 11:44 - 2019-09-29 23:09 - 000579072 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-10-04 11:44 - 2019-09-29 23:09 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-10-04 11:44 - 2019-09-29 23:09 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-10-04 11:44 - 2019-09-29 23:08 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-10-04 11:44 - 2019-09-29 23:02 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-10-04 11:44 - 2019-09-29 23:01 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-10-04 11:44 - 2019-09-29 22:59 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-10-04 11:44 - 2019-09-29 22:58 - 005500928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-10-04 11:44 - 2019-09-29 22:57 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-10-04 11:44 - 2019-09-29 22:57 - 000793600 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-10-04 11:44 - 2019-09-29 22:48 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2019-10-04 11:44 - 2019-09-29 22:47 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-10-04 11:44 - 2019-09-29 22:39 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-10-04 11:44 - 2019-09-29 22:36 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-10-04 11:44 - 2019-09-29 22:36 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-10-04 11:44 - 2019-09-29 22:36 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2019-10-04 11:44 - 2019-09-29 22:35 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2019-10-04 11:44 - 2019-09-29 22:35 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2019-10-04 11:44 - 2019-09-29 22:34 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-10-04 11:44 - 2019-09-29 22:34 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2019-10-04 11:44 - 2019-09-29 22:33 - 002301952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-10-04 11:44 - 2019-09-29 22:32 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-10-04 11:44 - 2019-09-29 22:30 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-10-04 11:44 - 2019-09-29 22:27 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-10-04 11:44 - 2019-09-29 22:26 - 000660480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-10-04 11:44 - 2019-09-29 22:26 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-10-04 11:44 - 2019-09-29 22:23 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-10-04 11:44 - 2019-09-29 22:21 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-10-04 11:44 - 2019-09-29 22:19 - 002132480 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-10-04 11:44 - 2019-09-29 22:19 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-10-04 11:44 - 2019-09-29 22:18 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2019-10-04 11:44 - 2019-09-29 22:17 - 015390208 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-10-04 11:44 - 2019-09-29 22:10 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2019-10-04 11:44 - 2019-09-29 22:07 - 004859392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-10-04 11:44 - 2019-09-29 22:07 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2019-10-04 11:44 - 2019-09-29 22:03 - 004112384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-10-04 11:44 - 2019-09-29 22:02 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-10-04 11:44 - 2019-09-29 22:00 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-10-04 11:44 - 2019-09-29 21:59 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2019-10-04 11:44 - 2019-09-29 21:57 - 001568256 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-10-04 11:44 - 2019-09-29 21:56 - 013791744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-10-04 11:44 - 2019-09-29 21:46 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-10-04 11:44 - 2019-09-29 21:42 - 004387840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-10-04 11:44 - 2019-09-29 21:37 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-10-04 11:44 - 2019-09-12 04:53 - 000442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2019-10-04 11:44 - 2019-09-12 04:52 - 000373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2019-10-04 11:44 - 2019-09-12 04:52 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2019-10-04 11:44 - 2019-09-12 04:44 - 000680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2019-10-04 11:44 - 2019-09-12 04:44 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2019-10-04 11:44 - 2019-09-12 04:44 - 000438784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2019-10-04 11:44 - 2019-09-12 04:44 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2019-10-04 11:44 - 2019-09-12 04:44 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2019-10-04 11:44 - 2019-09-12 04:24 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2019-10-02 11:43 - 2019-10-02 12:14 - 000377412 _____ C:\Users\Mira\Documents\Kuchyně_01-10-2019_v01.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-11-01 06:27 - 2019-01-10 09:32 - 000000000 ____D C:\Users\Mira\AppData\LocalLow\Mozilla
2019-11-01 05:01 - 2010-11-21 10:27 - 000679318 _____ C:\Windows\system32\perfh005.dat
2019-11-01 05:01 - 2010-11-21 10:27 - 000146154 _____ C:\Windows\system32\perfc005.dat
2019-11-01 05:01 - 2009-07-14 06:13 - 001613888 _____ C:\Windows\system32\PerfStringBackup.INI
2019-11-01 05:01 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2019-11-01 05:00 - 2009-07-14 05:45 - 000022080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-11-01 05:00 - 2009-07-14 05:45 - 000022080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-11-01 00:05 - 2019-07-25 05:54 - 000000000 ____D C:\ProgramData\Backuplogs
2019-10-31 09:50 - 2019-01-17 14:21 - 000000000 ____D C:\ProgramData\firebird
2019-10-31 07:41 - 2009-07-14 06:08 - 000032564 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-10-31 06:56 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-10-31 06:52 - 2019-01-16 13:34 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-10-31 06:52 - 2019-01-10 10:27 - 000030528 _____ C:\Windows\GVTDrv64.sys
2019-10-31 06:52 - 2019-01-10 10:27 - 000025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2019-10-31 06:22 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\Help
2019-10-30 18:43 - 2019-01-23 07:59 - 000000000 ____D C:\Users\Mira\AppData\Roaming\vlc
2019-10-30 14:34 - 2019-01-10 08:52 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-30 11:59 - 2019-04-09 12:24 - 000000000 ____D C:\Users\Mira\Documents\AutoCAD
2019-10-30 11:33 - 2019-01-10 10:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-10-30 09:14 - 2018-11-29 10:54 - 000149944 _____ (ESET) C:\Windows\system32\Drivers\eamonm.sys
2019-10-30 09:14 - 2018-11-29 10:54 - 000103264 _____ (ESET) C:\Windows\system32\Drivers\edevmon.sys
2019-10-30 09:14 - 2018-10-17 15:37 - 000189512 _____ (ESET) C:\Windows\system32\Drivers\ehdrv.sys
2019-10-30 09:14 - 2018-10-17 15:37 - 000114136 _____ (ESET) C:\Windows\system32\Drivers\epfwwfp.sys
2019-10-30 09:14 - 2018-10-17 15:37 - 000077184 _____ (ESET) C:\Windows\system32\Drivers\epfw.sys
2019-10-30 09:14 - 2018-10-17 15:37 - 000061640 _____ (ESET) C:\Windows\system32\Drivers\EpfwLWF.sys
2019-10-30 09:14 - 2018-10-17 15:37 - 000050712 _____ (ESET) C:\Windows\system32\Drivers\ekbdflt.sys
2019-10-30 09:02 - 2019-01-17 10:29 - 000000000 ____D C:\Users\Mira\AppData\Local\CrashDumps
2019-10-29 09:12 - 2019-01-23 13:08 - 000000000 _____ C:\Users\Mira\Documents\Print2PDF
2019-10-29 09:02 - 2019-02-01 11:56 - 000000000 ____D C:\Users\Mira\Documents\SCAN
2019-10-29 07:10 - 2019-01-18 13:00 - 000000000 ____D C:\Users\Mira\AppData\Roaming\ESET
2019-10-29 07:10 - 2019-01-18 11:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-10-29 07:10 - 2019-01-18 11:53 - 000000000 ____D C:\Program Files\CCleaner
2019-10-29 07:10 - 2019-01-18 10:28 - 000000000 ____D C:\Users\Mira\AppData\Roaming\Thunderbird
2019-10-29 07:10 - 2019-01-17 14:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RK Software
2019-10-29 07:10 - 2019-01-17 14:20 - 000000000 ____D C:\Program Files (x86)\Optimik
2019-10-29 07:10 - 2019-01-17 07:55 - 000000000 ____D C:\Users\Mira\AppData\Roaming\Autodesk
2019-10-29 07:10 - 2019-01-16 14:55 - 000000000 ____D C:\Program Files\Microsoft Office 15
2019-10-29 07:10 - 2019-01-16 10:42 - 000000000 ____D C:\Users\Mira\Documents\Optimik
2019-10-29 07:10 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\registration
2019-10-29 07:09 - 2019-06-04 11:38 - 000000000 ____D C:\ProgramData\Blum
2019-10-29 07:08 - 2019-01-16 14:55 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-10-29 06:20 - 2019-01-16 13:34 - 000000000 ____D C:\Users\Mira\AppData\Roaming\TeamViewer
2019-10-29 06:17 - 2019-01-10 08:52 - 000002188 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-29 06:17 - 2019-01-10 08:52 - 000002147 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-10-29 06:17 - 2019-01-10 08:52 - 000002147 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2019-10-29 06:14 - 2019-01-10 07:43 - 000000000 ____D C:\Users\Mira
2019-10-25 07:08 - 2019-01-16 15:07 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-22 05:50 - 2019-01-17 14:20 - 000001000 _____ C:\Users\Public\Desktop\Optimik.lnk
2019-10-22 05:50 - 2019-01-17 14:20 - 000001000 _____ C:\ProgramData\Desktop\Optimik.lnk
2019-10-17 12:45 - 2019-01-18 09:59 - 000000000 ____D C:\Users\Mira\AppData\Local\ElevatedDiagnostics
2019-10-14 05:11 - 2019-01-18 11:53 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2019-10-14 05:11 - 2019-01-18 11:53 - 000000826 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-10-14 05:11 - 2019-01-18 11:53 - 000000826 _____ C:\ProgramData\Desktop\CCleaner.lnk
2019-10-11 13:45 - 2019-01-22 10:24 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-10-11 13:45 - 2019-01-22 10:24 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-10-11 13:45 - 2019-01-22 10:24 - 000002417 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-10-11 13:45 - 2019-01-22 10:24 - 000002412 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-10-11 13:45 - 2019-01-22 10:24 - 000002405 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype pro firmy.lnk
2019-10-11 13:45 - 2019-01-22 10:24 - 000002373 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-10-11 13:45 - 2019-01-22 10:24 - 000002338 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-10-11 13:45 - 2019-01-22 10:24 - 000002334 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-10-10 11:34 - 2019-01-23 13:04 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software602 Print2PDF.lnk
2019-10-10 11:34 - 2019-01-23 13:04 - 000002081 _____ C:\Users\Public\Desktop\Software602 Print2PDF.lnk
2019-10-10 11:34 - 2019-01-23 13:04 - 000002081 _____ C:\ProgramData\Desktop\Software602 Print2PDF.lnk
2019-10-10 07:01 - 2019-01-14 13:06 - 000000000 ____D C:\Users\Mira\AppData\Roaming\Adobe
2019-10-10 07:01 - 2019-01-10 07:43 - 000000000 ____D C:\ProgramData\Adobe
2019-10-10 07:01 - 2019-01-10 07:43 - 000000000 ____D C:\Program Files (x86)\Adobe
2019-10-10 07:00 - 2019-01-14 13:06 - 000000000 ____D C:\Users\Mira\AppData\Local\Adobe
2019-10-10 06:18 - 2019-01-16 15:09 - 000003182 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1064124205-772266194-2725748559-1000
2019-10-10 06:18 - 2019-01-16 15:09 - 000002117 _____ C:\Users\Mira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2019-10-10 06:18 - 2019-01-16 15:09 - 000000000 ___RD C:\Users\Mira\OneDrive
2019-10-09 16:15 - 2019-03-22 14:35 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-10-09 16:15 - 2019-03-22 14:35 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-10-09 16:15 - 2019-03-22 14:35 - 000004408 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2019-10-09 16:15 - 2019-03-22 14:35 - 000000000 ____D C:\Windows\system32\Macromed
2019-10-09 16:15 - 2019-03-22 14:34 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-10-07 21:44 - 2019-01-10 08:52 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2019-10-07 21:44 - 2019-01-10 08:52 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2019-10-07 13:59 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2019-10-07 05:33 - 2019-01-10 15:06 - 000000000 ____D C:\Windows\system32\MRT
2019-10-07 05:30 - 2019-01-25 10:06 - 134272480 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== Files in the root of some directories ========

2019-01-10 09:35 - 2019-01-10 09:35 - 000000600 _____ () C:\Users\Mira\AppData\Roaming\winscp.rnd

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-10-21 08:00
==================== End of FRST.txt ========================



Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-11-2019
Ran by Mira (01-11-2019 06:28:56)
Running from C:\Users\Mira\Desktop
Windows 7 Professional Service Pack 1 (X64) (2019-01-10 06:43:02)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1064124205-772266194-2725748559-500 - Administrator - Disabled)
Guest (S-1-5-21-1064124205-772266194-2725748559-501 - Limited - Disabled)
Mira (S-1-5-21-1064124205-772266194-2725748559-1000 - Administrator - Enabled) => C:\Users\Mira

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Internet Security (Disabled - Up to date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AS: ESET Security (Enabled - Up to date) {333C65BB-8923-0EAA-C47E-C486E687BEFD}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Disabled - Up to date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security (Disabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.28 - GIGABYTE)
7-Zip 17.00 beta (x64) (HKLM\...\7-Zip) (Version: 17.00 beta - Igor Pavlov)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.125 - Adobe)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.270 - Adobe)
Adobe Reader 9.1 - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
AllToMP3 0.3.8 (HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\c7605133-1e88-50dc-a31b-c14ca85089b6) (Version: 0.3.8 - Basile Bruneau)
Alphacam 2011 R1 (HKLM-x32\...\{7F73B2EA-8C95-4B3D-8DDD-E895A93FD3A1}) (Version: 10.00.0000 - Planit Software Limited) Hidden
Alphacam 2011 R1 (HKLM-x32\...\InstallShield_{7F73B2EA-8C95-4B3D-8DDD-E895A93FD3A1}) (Version: 10.0.0.180 - Planit Software Limited)
Alphacam 2016 R2 (HKLM-x32\...\{8FA7BB05-6402-4E9C-865F-DC11BE830863}) (Version: 15.1.100 - Vero Software) Hidden
Alphacam 2016 R2 (HKLM-x32\...\InstallShield_{8FA7BB05-6402-4E9C-865F-DC11BE830863}) (Version: 15.5.2.136 - Vero Software)
Altap Salamander 3.08 (x64) (HKLM\...\Altap Salamander 3.08 (x64)) (Version: 3.08 - ALTAP)
ApowerREC V1.3.5.6 (HKLM-x32\...\{6F2998B2-21F7-4CEF-94B2-C3919D939CF9}_is1) (Version: 1.3.5.6 - Apowersoft LIMITED)
Apowersoft Online Launcher version 1.7.5 (HKLM-x32\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.7.5 - APOWERSOFT LIMITED)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Atheros Communications Inc.)
AutoCAD LT 2009 - český (HKLM\...\{5783F2D7-7009-0405-0102-0060B0CE6BBA}) (Version: 17.2.56.0 - Autodesk) Hidden
AutoCAD LT 2009 - český (HKLM\...\AutoCAD LT 2009 - český) (Version: 17.2.56.0 - Autodesk)
AutoCAD LT 2020 – Čeština (Czech) (HKLM\...\{28B89EEF-3009-0000-0102-CF3F3A09B77D}) (Version: 23.1.47.0 - Autodesk) Hidden
AutoCAD LT 2020 – Čeština (Czech) (HKLM\...\{28B89EEF-3009-0405-2102-CF3F3A09B77D}) (Version: 23.1.47.0 - Autodesk) Hidden
AutoCAD LT 2020 Language Pack – Čeština (Czech) (HKLM\...\{28B89EEF-3009-0405-1102-CF3F3A09B77D}) (Version: 23.1.47.0 - Autodesk) Hidden
Autodesk AutoCAD LT 2020 – Čeština (Czech) (HKLM\...\AutoCAD LT 2020 – Čeština (Czech)) (Version: 23.1.47.0 - Autodesk)
Autodesk CAD Manager Tools (HKLM\...\{28B89EEF-3111-0409-0110-CF3F3A09B77D}) (Version: 23.1.47.0 - Autodesk)
Autodesk Design Review 2009 (HKLM-x32\...\{450063AA-643B-417C-8CF5-405BA3F4EF40}) (Version: 9.0.96 - Autodesk, Inc.) Hidden
Autodesk Design Review 2009 (HKLM-x32\...\Autodesk Design Review 2009) (Version: 9.0.96 - Autodesk, Inc.)
Autodesk DWG TrueView 2019 - English (HKLM\...\DWG TrueView 2019 - English) (Version: 23.0.46.0 - Autodesk)
Autodesk Genuine Service (HKLM-x32\...\{317D67F2-9027-4E85-9ED1-ADF4D765AE02}) (Version: 3.0.11 - Autodesk)
Autodesk Material Library 2020 (HKLM-x32\...\{B9312A51-41B5-479D-9F72-E7448A2D89AF}) (Version: 18.11.1.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2020 (HKLM-x32\...\{0E976988-E753-4C81-BD96-434CE305B176}) (Version: 18.11.1.0 - Autodesk)
Autodesk Network License Manager (HKLM\...\{4BE91685-1632-47FC-B563-A8A542C6664C}) (Version: 11.16.2.0 - Autodesk, Inc.)
Autodesk Single Sign On Component (HKLM\...\{E3807FC8-DD0A-4D6D-89E9-EAADE00C845C}) (Version: 10.22.00.1800 - Autodesk)
AutoGreen B12.0206.1 (HKLM-x32\...\{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE) Hidden
AutoGreen B12.0206.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
Bing Bar (HKLM-x32\...\{B4089055-D468-45A4-A6BA-5A138DD715FC}) (Version: 7.0.850.0 - Microsoft Corporation)
Canon MF Scan Utility (HKLM-x32\...\Canon_MF_Scan_Utility) (Version: 1.8.0.0 - CANON INC.)
Canon MF633C/635C (HKLM\...\{7B95F8E4-3E24-4FAF-9CB0-5063F9E1202A}) (Version: 5.4.0.0 - CANON INC.)
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
Dassault Systemes Software VC11 Prerequisites x86-x64 (HKLM\...\{C857169D-3F1A-4530-99A0-CAE966CE267E}) (Version: 11.0.1 - Dassault Systemes)
DWG TrueView 2019 - English (HKLM\...\{28B89EEF-2028-0409-0100-CF3F3A09B77D}) (Version: 23.0.46.0 - Autodesk) Hidden
DYNALOG (HKLM-x32\...\DYNALOG) (Version: 3.6.43 DYA - Julius Blum Ges.m.b.H)
Easy Tune 6 B12.1121.1 (HKLM-x32\...\{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE) Hidden
Easy Tune 6 B12.1121.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
ESET Security (HKLM\...\{F1544F11-BFCC-43CC-9D0C-169A7E99369E}) (Version: 13.0.22.0 - ESET, spol. s r.o.)
Fast Reports Viewers (HKLM-x32\...\{1BA2BE28-E108-490B-9A14-823DC3034960}) (Version: 1.0 - Fast Reports) Hidden
Fast Reports Viewers (HKLM-x32\...\Fast Reports Viewers) (Version: 1.0 - My Company)
FORM studio (HKLM-x32\...\FSCZ_is1) (Version: - KASTNER software s.r.o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.70 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.99 - Google Inc.) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.1.0.309 - )
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2843 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)
Malwarebytes verze 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Access database engine 2010 (English) (HKLM-x32\...\{90140000-00D1-0409-0000-0000000FF1CE}) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office 365 Business - cs-cz (HKLM\...\O365BusinessRetail - cs-cz) (Version: 16.0.12026.20334 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\OneDriveSetup.exe) (Version: 19.152.0927.0012 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{B40EE88B-400A-4266-A17B-E3DE64E94431}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server 2012 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2012) (Version: - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{9AE22681-C27C-402A-A136-15854DFF693D}) (Version: 11.3.6020.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Setup (English) (HKLM\...\{BDF7F870-15E2-49A7-9123-65E8FF52ECAA}) (Version: 11.3.6020.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{076FF390-D283-4174-B602-B0B7B72BD024}) (Version: 11.3.6020.0 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\Teams) (Version: 1.2.00.19260 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40649 (HKLM-x32\...\{5d0723d3-cff7-4e07-8d0b-ada737deb5e6}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40649 (HKLM-x32\...\{35b83883-40fa-423c-ae73-2aff7e1ea820}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
MiniTool Partition Wizard Free 10.3 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Software Limited)
Mozilla Firefox 71.0 (x64 cs) (HKLM\...\Mozilla Firefox 71.0 (x64 cs)) (Version: 71.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0 - Mozilla)
Mozilla Thunderbird 60.9.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 60.9.0 (x86 cs)) (Version: 60.9.0 - Mozilla)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
NVIDIA Ovladač 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12026.20334 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12026.20334 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12026.20334 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.12026.20334 - Microsoft Corporation) Hidden
ON_OFF Charge B12.1025.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Optimik (HKLM-x32\...\Optimik_is1) (Version: - Rastislav Korytár - RK Software)
Ovládací panel NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.) Hidden
Počítačová aplikace Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.15.17 - Autodesk)
S2M Center 11 (HKLM-x32\...\{B7857928-955B-4554-89C3-C6FC4B2EBC21}) (Version: 11.00.0000 - ) Hidden
S2M Center 11 (HKLM-x32\...\InstallShield_{B7857928-955B-4554-89C3-C6FC4B2EBC21}) (Version: 11.2.0.168 - )
S2M Center 5.0 (HKLM-x32\...\{9E76AA34-D6B4-49E7-80DC-8DDC54722C5B}) (Version: 5.00.0000 - ) Hidden
S2M Center 5.0 (HKLM-x32\...\InstallShield_{9E76AA34-D6B4-49E7-80DC-8DDC54722C5B}) (Version: 5.0.3.142 - )
Sentinel Protection Installer 7.6.3 (HKLM-x32\...\{954D9E32-BE47-43F4-9BFF-6DB46F17EAF2}) (Version: 7.6.3 - SafeNet, Inc.)
Sentinel System Driver Installer 7.5.9 (HKLM-x32\...\{D19BF240-59D1-4645-B7C3-BF9D9E585A24}) (Version: 7.5.9 - SafeNet, Inc.)
Service Pack 3 for SQL Server 2012 (KB3072779) (64-bit) (HKLM\...\KB3072779) (Version: 11.3.6020.0 - Microsoft Corporation)
Software602 Print2PDF (HKLM-x32\...\{32C74893-0243-4235-A6F3-201F0E5D2C03}) (Version: 9.1.11.0421 - Software602 a.s.)
Solid 11 (HKLM-x32\...\{2F00150D-5C86-40E1-B473-5B34EDBBAC85}) (Version: 11.00.0000 - ) Hidden
Solid 11 (HKLM-x32\...\InstallShield_{2F00150D-5C86-40E1-B473-5B34EDBBAC85}) (Version: 11.2.0.168 - )
Solid 8.0 (HKLM-x32\...\{2F6E26DD-7C38-4E46-AFAF-1AD9EB76B9CA}) (Version: 8.00.0000 - ) Hidden
Solid 8.0 (HKLM-x32\...\InstallShield_{2F6E26DD-7C38-4E46-AFAF-1AD9EB76B9CA}) (Version: 8.0.3.142 - )
Solidlink 2016.30 (HKLM\...\{ AD236116-8BC1-42FD-8653-1A1D8845B2F9 }_is1) (Version: 2016.30 - Vero Software Limited)
Spotify (HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\Spotify) (Version: 1.1.7.13766.gf9dc3904 - Spotify AB)
SQL Server 2012 Common Files (HKLM\...\{1D411379-9CE0-4B13-A19B-72D3222DD620}) (Version: 11.3.6020.0 - Microsoft Corporation) Hidden
SQL Server 2012 Common Files (HKLM\...\{202AAF1F-69AA-442A-B59F-6B54B1AD07C6}) (Version: 11.3.6020.0 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Shared (HKLM\...\{54FF8FAB-DE27-4187-82F1-EBAE6AEE869A}) (Version: 11.3.6020.0 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Shared (HKLM\...\{6603C2CE-3C54-4F1D-92F9-8390CD4CCCA8}) (Version: 11.3.6020.0 - Microsoft Corporation) Hidden
T-Cloud Záloha (HKLM-x32\...\{9AB6B5AE-CEC2-4491-9322-FD0A16BC580F}) (Version: 4.0.0 - Xopero Software) Hidden
T-Cloud Záloha (HKLM-x32\...\T-Cloud Záloha 4.0.0) (Version: 4.0.0 - Xopero Software)
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.19260 - Microsoft Corporation)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.6.4835 - TeamViewer)
TomTom HOME (HKLM-x32\...\{FA238C73-1E78-45E1-8AA7-D1689040BB89}) (Version: 2.11.7 - Název společnosti:)
TomTom MyDrive Connect 4.2.5.3770 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.5.3770 - TomTom)
Trachea OS (HKLM-x32\...\{648FE12D-C32D-A07E-E81B-E53F1A8F715D}) (Version: 4.7.147 - SOFTconsult spol. s r.o.) Hidden
Trachea OS (HKLM-x32\...\TracheaOS) (Version: 4.7.147 - SOFTconsult spol. s r.o.)
TuneFab Spotify Music Converter version 2.5.5 (HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\{6C016F3A-9540-4513-9460-B5471166B3A8}_is1) (Version: 2.5.5 - TuneFab, Inc.)
Uložit do služby Autodesk Web and Mobile (HKLM\...\{26FB18F7-B553-430D-94F6-C2389A91235F}) (Version: 3.0.21 - Autodesk)
Vero Software CLS 2016.10 (HKLM-x32\...\{1CE6F900-3AEE-4096-A75E-26B20051485A}) (Version: 2016.10.7.7942 - Vero Software Limited)
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.7.1 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Wood Flash 2.9 (HKLM-x32\...\Wood Flash) (Version: 2.9 - T.P.A. S.p.A.)
Zoner Photo Studio 17 (HKLM\...\ZonerPhotoStudio17_CZ_is1) (Version: 17.0.1.12 - ZONER software)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1064124205-772266194-2725748559-1000_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Mira\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19163.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1064124205-772266194-2725748559-1000_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2019 - English\en-US\dwgviewrficn.dll (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1064124205-772266194-2725748559-1000_Classes\CLSID\{74D0CE91-F931-4FAC-BEA9-EE32E43EAD37}\localserver32 -> C:\Program Files\Autodesk\AutoCAD LT 2020\acadlt.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1064124205-772266194-2725748559-1000_Classes\CLSID\{74F5CC00-49A9-11CF-A2F9-444553540000}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD LT 2020\cs-CZ\acadltficn.dll (Autodesk Development Sarl -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1064124205-772266194-2725748559-1000_Classes\CLSID\{7AABBB95-79BE-4C0F-8024-EB6AF271231C}\localserver32 -> C:\Program Files\AutoCAD LT 2009\acadlt.exe (Autodesk, Inc -> Autodesk, Inc.) [File not signed]
CustomCLSID: HKU\S-1-5-21-1064124205-772266194-2725748559-1000_Classes\CLSID\{C78B6148-F3EA-11D2-94A1-00E0292A01E3}\InprocServer32 -> E:\Program Files (x86)\Altap Salamander\utils\salextx64.dll => No File
CustomCLSID: HKU\S-1-5-21-1064124205-772266194-2725748559-1000_Classes\CLSID\{C78B614E-F3EA-11D2-94A1-00E0292A01E3}\InprocServer32 -> C:\Program Files\Altap Salamander\utils\salextx64.dll (ALTAP) [File not signed]
CustomCLSID: HKU\S-1-5-21-1064124205-772266194-2725748559-1000_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Mira\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19163.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2019-01-30] (Autodesk, Inc. -> Autodesk, Inc.)
ShellIconOverlayIdentifiers: [Správa překryvné ikony digitálních podpisů AutoCADu ] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2019-01-30] (Autodesk, Inc. -> Autodesk, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2019-01-30] (Autodesk, Inc. -> Autodesk)
ContextMenuHandlers1-x32: [Autodesk.DWF.ContextMenu] -> {6C18531F-CA85-45F7-8278-FF33CF0A5964} => C:\Program Files (x86)\Common Files\Autodesk Shared\DWF Common\DWFShellExtension.dll [2008-01-21] (Autodesk, Inc. -> Autodesk, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-30] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [Print602] -> {D5F8CFC7-1A45-4517-A565-E42CDE7880CF} => C:\Program Files (x86)\Software602\Print2PDF\CtxMenu64.dll [2011-04-15] (Software602) [File not signed]
ContextMenuHandlers1: [ShellMenu] -> {048d8c8f-4c45-3f85-a6f3-c32a1dae2367} => C:\Program Files (x86)\T-Cloud Záloha\bin\Opero.Client.ShellMenu.DLL [2019-07-23] (Xopero Software S.A. -> Xopero Software S.A.)
ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Internet Security\Engine64\20.0.0.136\NavShExt.dll [2012-07-25] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-30] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Internet Security\Engine64\20.0.0.136\NavShExt.dll [2012-07-25] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [ShellMenu] -> {048d8c8f-4c45-3f85-a6f3-c32a1dae2367} => C:\Program Files (x86)\T-Cloud Záloha\bin\Opero.Client.ShellMenu.DLL [2019-07-23] (Xopero Software S.A. -> Xopero Software S.A.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2012-08-24] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-30] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Internet Security\Engine64\20.0.0.136\NavShExt.dll [2012-07-25] (Symantec Corporation -> Symantec Corporation)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) =============

2016-06-27 12:50 - 2016-06-27 12:50 - 000137728 _____ () [File not signed] C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\dpwin32v.dll
2010-06-10 15:52 - 2010-06-10 15:52 - 000110592 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\AMD8.dll
2008-05-07 15:22 - 2008-05-07 15:22 - 000102400 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\CIAMIB.dll
2012-05-08 15:01 - 2012-05-08 15:01 - 000069632 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\GPTT.dll
2012-11-09 16:51 - 2012-11-09 16:51 - 001429582 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\GVTunner.dll
2012-09-18 14:45 - 2012-09-18 14:45 - 001335362 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\HM.dll
2010-06-24 15:50 - 2010-06-24 15:50 - 000094208 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\IccLibDll.dll
2012-11-20 17:38 - 2012-11-20 17:38 - 000311296 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\MFCCPU.DLL
2012-11-14 14:44 - 2012-11-14 14:44 - 002875463 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\Normal.dll
2012-11-14 14:00 - 2012-11-14 14:00 - 001499204 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\OCK.dll
2012-09-17 16:25 - 2012-09-17 16:25 - 000106496 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\SF.dll
2003-02-14 14:11 - 2003-02-14 14:11 - 000102400 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\Sound.dll
2011-03-01 19:00 - 2011-03-01 19:00 - 000126976 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\StabilityLib.dll
2011-10-18 09:26 - 2011-10-18 09:26 - 000024576 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\STT.dll
2012-11-14 10:42 - 2012-11-14 10:42 - 000651331 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\work.dll
2011-09-14 17:12 - 2011-09-14 17:12 - 000102400 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\ycc.dll
2019-01-10 09:10 - 2012-02-01 16:25 - 000059904 _____ () [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2019-01-11 10:31 - 2016-12-27 16:15 - 000261120 _____ () [File not signed] C:\Program Files\Altap Salamander\lang\czech.slg
2019-01-22 13:49 - 2014-09-09 13:30 - 000603648 _____ () [File not signed] C:\Program Files\Zoner\Photo Studio 17\Program32\SpiderMonkey.dll
2019-05-17 06:00 - 2019-05-17 06:00 - 000172032 _____ () [File not signed] C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\7e8ccbb701913143cacb0b508cc071bc\IsdiInterop.ni.dll
2019-01-23 13:04 - 2010-12-02 02:13 - 000216576 _____ () [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\Software602.dll
2019-01-11 10:31 - 2016-12-27 11:42 - 000605184 _____ (ALTAP) [File not signed] C:\Program Files\Altap Salamander\SALRTL9.DLL
2019-01-11 10:31 - 2016-12-27 15:36 - 000013312 _____ (ALTAP) [File not signed] C:\Program Files\Altap Salamander\utils\salextx64.dll
2019-01-23 13:04 - 2011-03-30 20:00 - 000967168 _____ (AMYUNI Technologies hxxp://www.amyuni.com) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\acpdf450.dll
2019-01-23 13:04 - 2011-03-30 20:00 - 000508928 _____ (AMYUNI Technologies hxxp://www.amyuni.com) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\acpdfui450.dll
2019-01-17 07:47 - 2015-09-24 00:00 - 000005120 _____ (CANON INC.) [File not signed] C:\Program Files\Canon\Canon MF Network Scanner Selector\CMFNSS6.DLL
2019-01-17 07:46 - 2016-06-06 08:12 - 000153088 _____ (CANON INC.) [File not signed] C:\Windows\System32\CNCENPM6.dll
2019-01-10 10:45 - 2017-04-29 08:55 - 000075776 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2019-05-17 06:00 - 2019-05-17 06:00 - 000014336 _____ (Intel Corp.) [File not signed] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\831abe894483ee5e21bd7bd97dad76af\IAStorCommon.ni.dll
2019-01-10 09:10 - 2012-02-01 16:26 - 000007168 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\cs-CZ\IAStorDataMgr.resources.dll
2019-01-10 09:10 - 2012-02-01 16:26 - 000032768 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\cs-CZ\IAStorIcon.resources.dll
2019-01-10 09:10 - 2012-02-01 16:26 - 000004608 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\cs-CZ\IntelVisualDesign.resources.dll
2019-01-10 09:10 - 2012-02-01 16:25 - 000176128 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorUIHelper.dll
2019-01-10 09:10 - 2012-02-01 16:25 - 001319424 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IntelVisualDesign.dll
2019-01-10 09:10 - 2012-02-01 16:17 - 000278016 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\ISDI.dll
2019-01-10 09:11 - 2012-05-20 17:24 - 000073728 ____R (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2019-05-17 06:00 - 2019-05-17 06:00 - 000228864 _____ (Intel Corporation) [File not signed] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\cfe9891f7e3ce6be31ba6ef365bfc014\IAStorDataMgr.ni.dll
2019-05-17 06:00 - 2019-05-17 06:00 - 000488960 _____ (Intel Corporation) [File not signed] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\fffd832d9056ee796a810a4af197f40e\IAStorUtil.ni.dll
2019-03-27 22:34 - 2019-03-27 22:34 - 000130560 _____ (Microsoft Corporation) [File not signed] C:\Windows\Microsoft.Net\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2019-02-21 17:11 - 2019-02-21 17:11 - 000548864 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6229_none_d089f796442de10e\MSVCP80.dll
2019-02-21 17:11 - 2019-02-21 17:11 - 000626688 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6229_none_d089f796442de10e\MSVCR80.dll
2019-01-22 12:36 - 2019-01-22 12:36 - 000225280 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
2019-10-31 06:22 - 2017-10-27 17:06 - 000339256 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll
2016-06-27 12:52 - 2016-06-27 12:52 - 000118272 _____ (Rainbow Technologies, Inc.) [File not signed] C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\NSLMS324.DLL
2019-07-02 11:01 - 2019-07-02 11:01 - 001427968 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files (x86)\T-Cloud Záloha\bin\x64\SQLite.Interop.dll
2010-10-20 01:03 - 2010-10-20 01:03 - 000225400 _____ (SafeNet, Inc. -> SafeNet, Inc.) [File not signed] C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\MD5CHAP.dll
2016-06-27 12:52 - 2016-06-27 12:52 - 001081344 _____ (SafeNet, Inc.) [File not signed] C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\lsapiw32.dll
2014-05-21 09:55 - 2008-11-14 15:14 - 000126976 _____ (Sharp Corporation) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\SE4BGD.DLL
2014-05-29 12:45 - 2008-11-14 15:15 - 000088576 _____ (Sharp Corporation) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\SE4BU.DLL
2019-01-23 13:04 - 2011-04-21 17:08 - 003971584 _____ (Software602 a.s.) [File not signed] C:\Program Files (x86)\Software602\Print2PDF\Print602.dll
2019-01-23 13:04 - 2011-04-15 13:13 - 000145920 _____ (Software602) [File not signed] C:\Program Files (x86)\Software602\Print2PDF\CtxMenu64.dll
2019-01-23 13:04 - 2011-04-14 11:26 - 000131584 _____ (Software602) [File not signed] C:\Program Files (x86)\Software602\Print2PDF\Pdf602.dll
2012-07-05 13:28 - 2012-07-05 13:28 - 006080512 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\ET6\OCK_IV.dll
2016-06-27 12:54 - 2016-06-27 12:54 - 000440832 _____ (Vero Software Limited) [File not signed] C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\Utilities.dll
2019-02-21 17:27 - 2016-06-07 13:20 - 000030720 _____ (Vero Software Limited) [File not signed] C:\Program Files (x86)\Common Files\Vero Software\2016.10\Language\cs-CZ\CLS_res.dll
2019-02-21 17:27 - 2016-06-07 13:20 - 000056320 _____ (Vero Software Limited) [File not signed] C:\Program Files (x86)\Common Files\Vero Software\2016.10\Language\cs-CZ\lic_res.dll
2016-06-27 12:54 - 2016-06-27 12:54 - 001940992 _____ (Vero Software Ltd) [File not signed] C:\Program Files (x86)\Common Files\Vero Software\2016.10\CLS\EdgeLicExt.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Classes\.scr: AutoCADLTScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Microsoft SQL Server\110\Tools\Binn\;C:\Program Files\Microsoft SQL Server\110\Tools\Binn\;C:\Program Files\Microsoft SQL Server\110\DTS\Binn\;C:\Program Files (x86)\combit\LL19\Redistributable Files\;C:\Program Files (x86)\combit\LL21\Redistributable Files\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Mira\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.10.10.10 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [{7E7F061E-AF66-45D5-9837-DFE050EFAC13}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E4642A05-38E3-473F-B547-3FF8B2673FE3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{CA8C55BF-8962-44FD-9553-12F5B721D05E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5DE740C7-5FF7-4D9B-8D02-83890C7CA0EA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5ED1D95D-8925-4DB5-B2D2-85A75E1B514D}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe (SafeNet, Inc. -> SafeNet, Inc)
FirewallRules: [{51A9F7FE-D08E-48EC-AC4A-4363207A0BBF}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe (SafeNet, Inc. -> SafeNet, Inc)
FirewallRules: [{F9763840-1D10-49CB-84FE-A302036B3B24}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe (SafeNet, Inc. -> SafeNet, Inc.)
FirewallRules: [{76F69ECA-2494-405F-9C41-A50E72E5FC04}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe (SafeNet, Inc. -> SafeNet, Inc.)
FirewallRules: [{79683441-AF54-4C26-BF87-306DB448F2C9}] => (Allow) C:\Windows\system32\hasplms.exe (SafeNet, Inc. -> SafeNet Inc.)
FirewallRules: [TCP Query User{FC40E351-BB2A-4D9F-9CA7-4E02B3F42D2B}C:\wdflash\bin\wscf.exe] => (Allow) C:\wdflash\bin\wscf.exe (T.P.A. S.p.A.) [File not signed]
FirewallRules: [UDP Query User{A85CB22E-760C-4725-A777-ECF101B38E4A}C:\wdflash\bin\wscf.exe] => (Allow) C:\wdflash\bin\wscf.exe (T.P.A. S.p.A.) [File not signed]
FirewallRules: [{3E9E5CAB-21E2-4897-8EF2-AA1E98E5187B}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{3CCDB3F4-E6F0-4A82-9820-894B996B373D}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{477D3CBD-CF5A-433E-8877-0D05DAF6A1E2}] => (Allow) C:\Program Files (x86)\Planit\Alphacam 2011 R1\ACAM.EXE (Licom Systems Ltd) [File not signed]
FirewallRules: [{CB0C0FA1-430D-470D-9192-F0FB6375DE85}] => (Allow) C:\Program Files (x86)\Planit\Alphacam 2011 R1\ACAM.EXE (Licom Systems Ltd) [File not signed]
FirewallRules: [{BAEDBFB5-B3A2-4CBB-B7D3-E9AFB28C35FE}] => (Allow) C:\Program Files (x86)\Planit\Alphacam 2011 R1\AEDIT.EXE (Licom Systems Ltd) [File not signed]
FirewallRules: [{B21F4D42-A571-45B7-AA66-D000291284EC}] => (Allow) C:\Program Files (x86)\Planit\Alphacam 2011 R1\AEDIT.EXE (Licom Systems Ltd) [File not signed]
FirewallRules: [{740266A9-C357-4F4D-9974-B5F8BE261046}] => (Allow) C:\Program Files\Zoner\Photo Studio 17\Program32\MediaServer.exe (ZONER software, a.s. -> ZONER software)
FirewallRules: [{F5DA30F9-849F-447A-962A-F555812A5F5B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5A1B44FC-81E4-4B58-9287-BE3F1BEA55C3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{600444E0-7D97-4FEF-9B9B-4A901AF93040}C:\users\mira\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\mira\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{A3EBDDFC-E60E-4B52-A783-4647A45F0BB8}C:\users\mira\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\mira\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{922F55A4-6C41-444E-BC3F-08D8D5DC75EE}C:\users\mira\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\mira\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{F5A4292F-D77C-4242-88F1-D21C0A2C5D3B}C:\users\mira\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\mira\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{026EF84E-6671-4CB4-8D5B-E721D013962C}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International BV -> TomTom)
FirewallRules: [{3E7B5B99-2387-491A-9F81-8269C1F93804}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{6309C2AF-5310-48FD-AE94-4C07C897DA89}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{66F7C335-1A77-4BC7-B49C-412E1B2A63E3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{30634844-A9A0-4117-9BCF-9469ADE19EAB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{2881190A-421F-4D34-AB13-D371F6BAE283}] => (Allow) C:\Planit\Common\PKeyServerCLS.exe (Vero Software, Inc. -> Vero Software, Ltd.)
FirewallRules: [{ABDF01D5-B3F9-4884-8D30-EF8B46BF3279}] => (Allow) C:\Planit\Common\PKeyServerCLS.exe (Vero Software, Inc. -> Vero Software, Ltd.)
FirewallRules: [{14658E63-D386-45AA-A211-0E7D52C916FD}] => (Allow) C:\Planit\Common\PKeyServerCLS.exe (Vero Software, Inc. -> Vero Software, Ltd.)
FirewallRules: [{1EDC4826-08FC-4A96-AD17-735A3D380F84}] => (Allow) C:\Planit\Common\PKeyServerCLS.exe (Vero Software, Inc. -> Vero Software, Ltd.)
FirewallRules: [{FABE59AB-8F57-4E10-AB66-B587AC613107}] => (Allow) C:\Program Files (x86)\T-Cloud Záloha\Opero.Client.ClientApplication.exe (Xopero Software S.A. -> Xopero Software S.A.)
FirewallRules: [{7833A194-17F5-4083-B20D-90578507EAB6}] => (Allow) C:\Users\Mira\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{935383E4-8ABF-41D0-AE2C-80F1B6BC3C77}] => (Allow) C:\Users\Mira\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{59F76DBB-8930-4CEC-9E0E-965CEAEAC3D0}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{94CA93E1-FFFA-4EAA-9440-0A6FD592AD4F}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{09361297-3421-4D88-BC0F-2D9C973D6227}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{308D3B8C-0BAA-4A80-8E04-1CBD962C237C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{9AC10793-2F97-4812-A83E-324E4CEDF2DC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{D168B48E-7283-4D3B-BDF5-423E92B9250A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{F197AF4B-4F35-41B4-B95E-A51483084B99}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{F4386DCA-CF11-4FA6-B679-C6E14428255E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

13-10-2019 02:05:47 Windows Update
17-10-2019 04:23:47 Windows Update
24-10-2019 23:00:03 Naplánovaný kontrolní bod
29-10-2019 06:57:23 Operace obnovení

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (11/01/2019 04:55:24 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/01/2019 04:54:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 6.1.7600.16385, časové razítko: 0x4a5bc3c1
Název chybujícího modulu: ESENT.dll, verze: 6.1.7601.17577, časové razítko: 0x4d79bfba
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000001aa6e4
ID chybujícího procesu: 0x2258
Čas spuštění chybující aplikace: 0x01d590680b47c924
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\ESENT.dll
ID zprávy: 5aac55dc-fc5b-11e9-b555-74d4350a2635

Error: (11/01/2019 04:54:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 6.1.7600.16385, časové razítko: 0x4a5bc3c1
Název chybujícího modulu: ESENT.dll, verze: 6.1.7601.17577, časové razítko: 0x4d79bfba
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000001aa6e4
ID chybujícího procesu: 0x458
Čas spuštění chybující aplikace: 0x01d590680b0e8ed7
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\ESENT.dll
ID zprávy: 48c7725a-fc5b-11e9-b555-74d4350a2635

Error: (11/01/2019 04:53:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 6.1.7600.16385, časové razítko: 0x4a5bc3c1
Název chybujícího modulu: ESENT.dll, verze: 6.1.7601.17577, časové razítko: 0x4d79bfba
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000001aa6e4
ID chybujícího procesu: 0x1da8
Čas spuštění chybující aplikace: 0x01d59067f8c938b2
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\ESENT.dll
ID zprávy: 36e5fddc-fc5b-11e9-b555-74d4350a2635

Error: (11/01/2019 04:53:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 6.1.7600.16385, časové razítko: 0x4a5bc3c1
Název chybujícího modulu: ESENT.dll, verze: 6.1.7601.17577, časové razítko: 0x4d79bfba
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000001aa6e4
ID chybujícího procesu: 0xcec
Čas spuštění chybující aplikace: 0x01d59067e7489883
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\ESENT.dll
ID zprávy: 2501f139-fc5b-11e9-b555-74d4350a2635

Error: (11/01/2019 04:52:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 6.1.7600.16385, časové razítko: 0x4a5bc3c1
Název chybujícího modulu: ESENT.dll, verze: 6.1.7601.17577, časové razítko: 0x4d79bfba
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000001aa6e4
ID chybujícího procesu: 0x1ca0
Čas spuštění chybující aplikace: 0x01d59067c3c133d7
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\ESENT.dll
ID zprávy: 1322518b-fc5b-11e9-b555-74d4350a2635

Error: (11/01/2019 04:52:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 6.1.7600.16385, časové razítko: 0x4a5bc3c1
Název chybujícího modulu: ESENT.dll, verze: 6.1.7601.17577, časové razítko: 0x4d79bfba
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000001aa6e4
ID chybujícího procesu: 0x2340
Čas spuštění chybující aplikace: 0x01d59067c382a22e
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\ESENT.dll
ID zprávy: 013df6c5-fc5b-11e9-b555-74d4350a2635

Error: (11/01/2019 04:51:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 6.1.7600.16385, časové razítko: 0x4a5bc3c1
Název chybujícího modulu: ESENT.dll, verze: 6.1.7601.17577, časové razítko: 0x4d79bfba
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000001aa6e4
ID chybujícího procesu: 0x215c
Čas spuštění chybující aplikace: 0x01d59067b1202627
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\ESENT.dll
ID zprávy: ef56540c-fc5a-11e9-b555-74d4350a2635


System errors:
=============
Error: (11/01/2019 04:54:51 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Windows Update byla neočekávaně ukončena. Tento stav nastal již 17krát.

Error: (11/01/2019 04:54:51 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Funkčnost aplikací byla neočekávaně ukončena. Tento stav nastal již 7krát.

Error: (11/01/2019 04:54:21 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Windows Update byla neočekávaně ukončena. Tento stav nastal již 16krát.

Error: (11/01/2019 04:53:51 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Windows Update byla neočekávaně ukončena. Tento stav nastal již 15krát.

Error: (11/01/2019 04:53:51 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Server byla neočekávaně ukončena. Tento stav nastal již 7krát.

Error: (11/01/2019 04:53:51 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Prohledávání počítačů byla neočekávaně ukončena. Tento stav nastal již 4krát.

Error: (11/01/2019 04:53:21 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Windows Update byla neočekávaně ukončena. Tento stav nastal již 14krát.

Error: (11/01/2019 04:52:51 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Windows Update byla neočekávaně ukončena. Tento stav nastal již 13krát.


Windows Defender:
===================================
Date: 2019-07-03 13:10:19.724
Description:
Modul programu %1 byl ukončen v důsledku neočekávané chyby.
Typ chyby:%5
Kód výjimky:%6
Zdroj:%3

Date: 2019-06-15 04:23:12.303
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Zálohování
Kód chyby:0x8050a005
Popis chyby:V programu nelze najít soubory definic, které pomáhají rozpoznat nežádoucí software. Zkontrolujte aktualizace definičních souborů a opakujte akci. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Verze podpisu:1.295.409.0
Verze modulu:1.1.16000.6

Date: 2019-06-15 04:23:09.682
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x8050a004
Popis chyby:Balíček neobsahuje aktuální soubor definic pro tento program. Další informace naleznete v nápovědě a podpoře.
Verze podpisu:1.295.609.0
Verze modulu:1.1.16000.6

Date: 2019-06-15 04:22:04.269
Description:
Modul programu %1 byl ukončen v důsledku neočekávané chyby.
Typ chyby:%5
Kód výjimky:%6
Zdroj:%3

Date: 2019-02-17 06:22:42.344
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:1.287.156.0
Předchozí verze podpisu:
Zdroj aktualizace:Uživatel
Typ podpisu:Antispywarový program
Typ aktualizace:Úplné
Uživatel:NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:1.1.15700.8
Předchozí verze modulu:
Kód chyby:0x8050a005
Popis chyby:V programu nelze najít soubory definic, které pomáhají rozpoznat nežádoucí software. Zkontrolujte aktualizace definičních souborů a opakujte akci. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

CodeIntegrity:
===================================

Date: 2019-01-18 11:35:49.643
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Mira\AppData\Local\Temp\ardrv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-01-18 11:35:49.573
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Mira\AppData\Local\Temp\ardrv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: American Megatrends Inc. F11 07/31/2013
Motherboard: Gigabyte Technology Co., Ltd. H77M-D3H
Processor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz
Percentage of memory in use: 47%
Total physical RAM: 8082.19 MB
Available physical RAM: 4207.84 MB
Total Virtual: 16162.52 MB
Available Virtual: 12329.38 MB

==================== Drives ================================

Drive c: (Win7) (Fixed) (Total:628.01 GB) (Free:402.14 GB) NTFS
Drive f: (Mira) (Fixed) (Total:303.4 GB) (Free:259.61 GB) NTFS
Drive r: (Ruzne) (Network) (Total:172.69 GB) (Free:142.23 GB) NTFS
Drive s: (Sprint) (Network) (Total:195.31 GB) (Free:136.73 GB) NTFS
Drive v: () (Network) (Total:97.56 GB) (Free:8.24 GB) NTFS


==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 61E06984)
Partition 1: (Active) - (Size=100 MB) - (Type=17)
Partition 2: (Not Active) - (Size=628 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=303.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Odporucam odinstalovat Bing Bar

Otvor poznamkovy blok (Win+R -> notepad -> enter)

• Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

  Kód: Vybrat vše

  Start
  CloseProcesses:
  CreateRestorePoint:
  
  PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
  
  HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\Policies\Explorer: [] 
  HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {71edd97c-ca35-11e9-879a-74d4350a2635} - E:\HiSuiteDownLoader.exe
  HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {b7fb1081-1e3e-11e9-b678-74d4350a2635} - E:\HiSuiteDownLoader.exe
  HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {c1e88568-805f-11e9-840c-74d4350a2635} - E:\HiSuiteDownLoader.exe
  HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {d86387db-90c1-11e9-87cb-74d4350a2635} - E:\HiSuiteDownLoader.exe
  HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {ef75f075-5f6f-11e9-8303-74d4350a2635} - E:\HiSuiteDownLoader.exe
  HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {ef75f087-5f6f-11e9-8303-74d4350a2635} - E:\HiSuiteDownLoader.exe
  HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {f42689c7-14a0-11e9-a574-806e6f6e6963} - D:\Run.exe
  HKU\S-1-5-18\...\Run: [] => [X]
  Task: {26364DBA-13DA-41AF-AD59-BBDA4DEB6106} - System32\Tasks\{CDF594DB-727C-43A1-84EA-C7A4765F28C0} => C:\Windows\system32\pcalua.exe -a C:\Users\Mira\Downloads\ARM160-M161-M162-M165-M205-M206-M207-5220_DRV_PCL6-PS-WinXP64-Vista64-2k364-2k864-ver0911a_CZ.exe -d C:\Users\Mira\Downloads
  Task: {E6907BB7-6B02-4126-BB34-6F3BBF111D7F} - System32\Tasks\{7F5A5A82-8941-480B-8D71-794EA4B363CA} => C:\Windows\system32\pcalua.exe -a C:\Users\Mira\Downloads\Norton_Removal_Tool(1).exe -d C:\Users\Mira\Downloads
  HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
  HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://nmd.msn.com
  SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  SearchScopes: HKU\S-1-5-21-1064124205-772266194-2725748559-1000 -> DefaultScope {3061F580-B649-41A4-9307-CE3EB11D800E} URL = 
  SearchScopes: HKU\S-1-5-21-1064124205-772266194-2725748559-1000 -> {3061F580-B649-41A4-9307-CE3EB11D800E} URL = 
  BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation -> Microsoft Corporation.)
  Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation -> Microsoft Corporation.)
  Toolbar: HKU\S-1-5-21-1064124205-772266194-2725748559-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
  FF Extension: (No Name) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn [2019-01-11] [not signed]
  FF Extension: (No Name) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn [2019-01-11] [not signed]
  FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
  FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
  CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\Exts\Chrome.crx <not found>
  S3 ardrv; \??\C:\Users\Mira\AppData\Local\Temp\ardrv.sys [X] <==== ATTENTION
  2019-10-30 12:49 - 2019-10-30 12:55 - 000000000 ____D C:\Program Files\trend micro
  2019-10-30 12:49 - 2019-10-30 12:50 - 000000000 ____D C:\rsit
  2019-10-30 12:49 - 2019-10-30 12:49 - 001222144 _____ C:\Users\Mira\Downloads\RSITx64.exe
  
  Hosts:
  EmptyTemp:
  End

• Uloz na plochu s nazvom fixlist.txt
• Spusti znovu FRST a klikni na Fix
• Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
• Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj

zasílám txt


Fix result of Farbar Recovery Scan Tool (x64) Version: 01-11-2019
Ran by Mira (04-11-2019 06:34:23) Run:2
Running from C:\Users\Mira\Desktop
Loaded Profiles: Mira (Available Profiles: Mira)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum

HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\Policies\Explorer: []
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {71edd97c-ca35-11e9-879a-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {b7fb1081-1e3e-11e9-b678-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {c1e88568-805f-11e9-840c-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {d86387db-90c1-11e9-87cb-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {ef75f075-5f6f-11e9-8303-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {ef75f087-5f6f-11e9-8303-74d4350a2635} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\...\MountPoints2: {f42689c7-14a0-11e9-a574-806e6f6e6963} - D:\Run.exe
HKU\S-1-5-18\...\Run: [] => [X]
Task: {26364DBA-13DA-41AF-AD59-BBDA4DEB6106} - System32\Tasks\{CDF594DB-727C-43A1-84EA-C7A4765F28C0} => C:\Windows\system32\pcalua.exe -a C:\Users\Mira\Downloads\ARM160-M161-M162-M165-M205-M206-M207-5220_DRV_PCL6-PS-WinXP64-Vista64-2k364-2k864-ver0911a_CZ.exe -d C:\Users\Mira\Downloads
Task: {E6907BB7-6B02-4126-BB34-6F3BBF111D7F} - System32\Tasks\{7F5A5A82-8941-480B-8D71-794EA4B363CA} => C:\Windows\system32\pcalua.exe -a C:\Users\Mira\Downloads\Norton_Removal_Tool(1).exe -d C:\Users\Mira\Downloads
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://nmd.msn.com
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1064124205-772266194-2725748559-1000 -> DefaultScope {3061F580-B649-41A4-9307-CE3EB11D800E} URL =
SearchScopes: HKU\S-1-5-21-1064124205-772266194-2725748559-1000 -> {3061F580-B649-41A4-9307-CE3EB11D800E} URL =
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKU\S-1-5-21-1064124205-772266194-2725748559-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
FF Extension: (No Name) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn [2019-01-11] [not signed]
FF Extension: (No Name) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn [2019-01-11] [not signed]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\Exts\Chrome.crx <not found>
S3 ardrv; \??\C:\Users\Mira\AppData\Local\Temp\ardrv.sys [X] <==== ATTENTION
2019-10-30 12:49 - 2019-10-30 12:55 - 000000000 ____D C:\Program Files\trend micro
2019-10-30 12:49 - 2019-10-30 12:50 - 000000000 ____D C:\rsit
2019-10-30 12:49 - 2019-10-30 12:49 - 001222144 _____ C:\Users\Mira\Downloads\RSITx64.exe

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========



Count : 14
Average :
Sum : 11013850
Maximum :
Minimum :
Property : Length


========= End of Powershell: =========

"HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\" => not found
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{71edd97c-ca35-11e9-879a-74d4350a2635} => not found
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b7fb1081-1e3e-11e9-b678-74d4350a2635} => not found
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c1e88568-805f-11e9-840c-74d4350a2635} => not found
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d86387db-90c1-11e9-87cb-74d4350a2635} => not found
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ef75f075-5f6f-11e9-8303-74d4350a2635} => not found
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ef75f087-5f6f-11e9-8303-74d4350a2635} => not found
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f42689c7-14a0-11e9-a574-806e6f6e6963} => not found
"HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{26364DBA-13DA-41AF-AD59-BBDA4DEB6106}" => not found
"C:\Windows\System32\Tasks\{CDF594DB-727C-43A1-84EA-C7A4765F28C0}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{CDF594DB-727C-43A1-84EA-C7A4765F28C0}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E6907BB7-6B02-4126-BB34-6F3BBF111D7F}" => not found
"C:\Windows\System32\Tasks\{7F5A5A82-8941-480B-8D71-794EA4B363CA}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7F5A5A82-8941-480B-8D71-794EA4B363CA}" => not found
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
"HKU\S-1-5-21-1064124205-772266194-2725748559-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-1064124205-772266194-2725748559-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3061F580-B649-41A4-9307-CE3EB11D800E} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} => not found
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{8dcb7100-df86-4384-8842-8fa844297b3f}" => not found
"HKU\S-1-5-21-1064124205-772266194-2725748559-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => not found
"C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn" => not found
"C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn" => not found
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => not found
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk => not found
ardrv => service not found.
"C:\Program Files\trend micro" => not found
"C:\rsit" => not found
"C:\Users\Mira\Downloads\RSITx64.exe" => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8505686 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 382993 B
Edge => 0 B
Chrome => 0 B
Firefox => 14518335 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
systemprofile32 => 128 B
LocalService => 128 B
NetworkService => 128 B
Mira => 55925181 B

RecycleBin => 0 B
EmptyTemp: => 83.7 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 06:35:05 ====

Ako to vyzera s PC? Nastala nejaka zmena alabo su este nejake problemy?

stále stejné, ikonky někdy jsou, někdy ne

Ale všiml jsem si, že mám nastaveno motiv prostředí Aero a to nefunguje správně.
I když dám řešit problém, tak to na chvíli funguje, ale po té se motiv prostředí změní na základní Win.
Mám grafickou kartu integrovanou na základní desce. Zkusil jsem i přidat samostatnou, ale nepomohlo.

Vies poslat aj screenshot (snimku obrazovky) ako vyzeraju tie zmiznute ikony?

Aka je v PC graficka karta? Podla logu je v PC procesor Intel i5-3470 a ten obsahuje integrovanu GPU Intel HD Graphics 2500.

Byl jsem mimo PC nějaký čas, proto až teď.

Posílám screenshot.

Spusti kontrolu integrity systemovych suborov:

• Otvor Start, napis "cmd" (bez uvodzoviek), klikni pravym tlacitkom mysi na Prikazovy riadok a klikni na Spustit ako spravca
• Skopiruj a spusti prikaz:

  Kód: Vybrat vše

  sfc /scannow

• Po dokonceni skopiruj a spusti tento prikaz:

  Kód: Vybrat vše

  findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >> "%userprofile%\desktop\sfcdetails.txt"

• Na ploche sa vytvori subor sfcdetails.txt, zabal ho do archivu RAR alebo ZIP a posli ako prilohu k dalsiemu prispevku
• Restartuj PC a napis ako sa chova PC

Posílám soubor.

Po restartu vše fungovalo správně. Cca po minutě "problikla" obrazovka a nastavení Aero opět zmizelo, ale po cca dalších dvou minutách opět probliknutí a Aero nastavení se "vrátilo".

Tak uvidíme, co se bude dít během práce na PC.
Pozn:
Minulý týden jsem odpojil dočasnou novou grafickou kartu, teď PC jede se stávající GK integrovanou na základní desce.

m.

Motherboard: Gigabyte Technology Co., Ltd. H77M-D3H
Processor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz

Z pouziteho modelu dosky a procesoru (CPU) vyplyva, ze GPU je integrovana v CPU, nie na doske (dnes uz takmer ziadne bezne zakladne dosky nemaju integrovanu GPU).

V CPU Intel i5 3470 sa nachadza integrovana GPU Intel® HD Graphics 2500. Pokial chces nechat PC bezat iba na tejto grafike, odinstaluj vsetky ovladace k ostatnych grafickych kartam a ponechaj iba ovladace pre Intel grafiku. Ovladace odinstaluj aj cez Display Driver Uninstaller (DDU): https://www.guru3d.com/files-details/di ... nload.html

OK,

odinstaluji všechny ovladače a zkusím pozorovat, co se bude dít.

Díky.