Vir nebo defender
Napsal: 26 led 2020 10:16
Ahojky, muj problem je v pomalém načítaní samotného pc stránek i her ty které tedy jdou. Některé hry nefungují vůbec. Mám podezření na win defender neraději bych ho vyhodila ale nevím kde používam avast přijde mi to zbytečné mí dva antiviry. Chtěla jsem provest obnovu systemu a to se mi nepovedlo jsou tam asi 4 body ani jeden nešel.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-01-2020 01
Ran by LuciFafa (administrator) on LUCIFAFA-PC (25-01-2020 20:19:47)
Running from C:\Users\LuciFafa\Desktop
Loaded Profiles: LuciFafa (Available Profiles: LuciFafa)
Platform: Microsoft Windows 10 Home Version 1903 18362.592 (X86) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
(ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files\ASUS\AXSP\1.02.00\atkexComSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine VPN\VpnSvc.exe
(Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(Google Inc -> Google LLC) C:\Program Files\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Update\1.3.35.422\GoogleCrashHandler.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [7519960 2015-01-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [NUSB3MON] => C:\Program Files\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [97280 2012-04-11] (Advanced Micro Devices, Inc.) [File not signed]
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [232840 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [646160 2019-12-11] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1117677789-4214877554-3075564690-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [3576664 2015-06-18] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-1117677789-4214877554-3075564690-1000\...\Run: [AMDDVR] => C:\Program Files\AMD\CNext\CNext\amddvr.exe [1617800 2018-09-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1117677789-4214877554-3075564690-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-21] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {070A3EA9-8DA3-4559-899E-70484CD95521} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [405088 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0ACA8AED-E8A5-403C-A1FE-FD963AC6D50E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [405088 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0CA094BA-D37D-4BD1-9B8D-1F4C7EBF760B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {1341ABBB-78DB-4E4D-8A35-5DDA86AF973F} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {1770BB4B-35E9-40B1-A407-932BB5969459} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {1CF0C451-0775-4B00-AE47-7DFE8EDAB5AD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-12-09] (Adobe Inc. -> Adobe)
Task: {1F37C4D6-8AD0-4740-9FBE-A223A8F92C72} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe
Task: {24FA84A0-E087-48EC-BC51-2B9C4C815D78} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {2A5EB73E-0E29-4E90-8F07-424A175FF490} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {2D547F09-AB9B-458A-BE13-53287865A027} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {310EBAD5-3127-4767-84C7-ED217DDDA5EA} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [745480 2019-04-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {367F930A-A3DB-4112-B1F1-50E92A171C88} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {37EC1E74-6C44-4B30-A6F1-5AE69C4A7CFF} - System32\Tasks\StartCN => C:\Program Files\AMD\\CNext\CNext\cncmd.exe [43400 2018-09-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {37F687A7-A1EC-49D0-9C6C-FFF191B2D7E3} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {3A95B8C8-B1C9-402B-ADA9-0FC3D224F57C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3F983359-DF03-40CA-8C66-C8389544BBF5} - System32\Tasks\{002AE781-3C13-4988-9DD7-5C950841373F} => C:\Program Files\Nexon\Nexon Launcher\nexon_launcher.exe
Task: {4482917A-EDAE-4D7D-B621-4E21D0479CEE} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {52A6C2AC-44AE-46B7-87DF-2D58DF54A27F} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_32_0_0_293_Plugin.exe [1457720 2019-12-09] (Adobe Inc. -> Adobe)
Task: {53648477-B30C-44F6-9421-2F7FF80DCBE9} - System32\Tasks\StartDVR => C:\Program Files\AMD\\CNext\CNext\dvrcmd.exe [59272 2018-09-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {5F886570-6BD8-4254-8DC1-A38C78CEF3C5} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {62FAB98F-0165-438C-A61C-6C354214A580} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {640E7AD3-7A65-4CB7-9197-ED2BAAFD2945} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {67F8D0E7-E897-4E22-9258-AFC61361BB1C} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7099E0BC-E0DF-4B78-9C3F-03B1B646C041} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {70CB6F2E-9890-4DBA-9669-7B62A80B6BFE} - System32\Tasks\{2C168AB7-D565-42E8-9497-5F708AEBE37C} => C:\VALOFEEU\CA_Classic\CombatArmsClassic.exe [5496880 2019-12-23] (valofe Co.,Ltd. -> Valofe)
Task: {83482C26-D5B0-4999-8965-1E221E559312} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [155432 2019-10-23] (Google Inc -> Google LLC)
Task: {83CC6E3E-1B1E-46A5-9804-E32CB79B5FA5} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {896F7C2D-C4EA-4A9A-BC21-4E33EA8C2C98} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe
Task: {8D5C7F68-16C4-45B4-A8A5-F2E7382AB882} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8E5D4FB0-BC25-4160-9C8A-D8F458BE987F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {920D55A6-C75E-4757-87FD-A2A37D4B1079} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {935CFF16-E68D-466B-B047-C6B70A692112} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {97264EF2-3461-465C-9093-A98DFA9FF727} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9ED3DE3C-4F79-485B-9306-97AFE797BB4E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {A7B2DD51-B885-4014-9E5A-9392F4848566} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {AB4E247F-3307-4A04-A06F-34E942D8613D} - System32\Tasks\Java Updater => C:\Users\LuciFafa\AppData\Roaming\nircmd.exe <==== ATTENTION
Task: {AFE2589B-2234-43EF-B0C4-9E8EBF7F9996} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1542536 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {AFFE6A38-F468-4E0C-9AE5-79997B583DF5} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B81AD758-FF6E-4883-9DBE-20865B218B98} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B8B2386F-6E5B-4023-8FFB-FE6F7B837124} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {C00E2B0D-CA13-43CC-937D-F08FC12B4D85} - System32\Tasks\{09BE175D-9DCD-448D-AA34-F529E6EF28EF} => C:\Program Files\Pro Evolution Soccer 2015\PES2015.exe [39109936 2014-11-12] (Konami Digital Entertainment Co., Ltd. -> Konami Digital Entertainment Co., Ltd.)
Task: {D2918185-EB46-4389-A9C2-066839A2C5FE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D5710AD8-16D6-4457-84FA-882F80D8D906} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [155432 2019-10-23] (Google Inc -> Google LLC)
Task: {D81E909E-533E-4591-A6B2-BFF769F0E74C} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D88BBE2B-CA68-46BC-BEA7-2DCA2047C6BE} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E54424BD-C227-47D3-BDFE-BADFA377BE33} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E5A10CDF-C165-46D4-92E0-60FE090D47C5} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E79B2998-8F63-451A-A56D-26EDC0A5098A} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
Task: {EC244E0D-C77F-497E-A390-FF949660DBAA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [405088 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EC83EB21-36A3-4DB1-8A79-AB8089D77148} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\AVAST Software\SecureLine VPN\VpnUpdate.exe [1390472 2019-11-03] (AVAST Software s.r.o. -> AVAST Software)
Task: {F50BF105-4184-4DC3-BAE8-F8781FCAF8FB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [405088 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F742D008-A50D-4F4B-B68D-9357ECEAD1C2} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 35 => C:\Program Files\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {FB1390A3-48DC-4FFC-99FD-3A5B0B71774C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3250056 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {FD6432B4-732F-4165-A615-042B4A465273} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{4950ECBA-8D72-493B-A0EB-CA9249133316}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{cfc5e456-e14c-404d-ae3c-686d78c7fa82}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{f5521eba-7c81-4192-bb08-29bb54988594}: [NameServer] 100.120.166.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKU\S-1-5-21-1117677789-4214877554-3075564690-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
SearchScopes: HKU\S-1-5-21-1117677789-4214877554-3075564690-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE04
SearchScopes: HKU\S-1-5-21-1117677789-4214877554-3075564690-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE04
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_241\bin\ssv.dll [2020-01-20] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_241\bin\jp2ssv.dll [2020-01-20] (Oracle America, Inc. -> Oracle Corporation)
Edge:
======
DownloadDir: C:\Users\LuciFafa\Downloads
FireFox:
========
FF DefaultProfile: o4nlojpb.default-1540287753942
FF ProfilePath: C:\Users\LuciFafa\AppData\Roaming\Mozilla\Firefox\Profiles\o4nlojpb.default-1540287753942 [2020-01-25]
FF Homepage: Mozilla\Firefox\Profiles\o4nlojpb.default-1540287753942 -> hxxps://www.google.cz/
FF Notifications: Mozilla\Firefox\Profiles\o4nlojpb.default-1540287753942 -> hxxps://www.vitalitygames.com; hxxps://pacogames.os.tc
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\LuciFafa\AppData\Roaming\Mozilla\Firefox\Profiles\o4nlojpb.default-1540287753942\Extensions\sp@avast.com.xpi [2020-01-18]
FF Extension: (Avast Online Security) - C:\Users\LuciFafa\AppData\Roaming\Mozilla\Firefox\Profiles\o4nlojpb.default-1540287753942\Extensions\wrc@avast.com.xpi [2020-01-24]
FF Extension: (Google Analytics Opt-out Add-on (by Google)) - C:\Users\LuciFafa\AppData\Roaming\Mozilla\Firefox\Profiles\o4nlojpb.default-1540287753942\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2018-10-24] [UpdateUrl:hxxps://tools.google.com/service/update2/ff?guid=%ITEM_ID%&version=%ITEM_VERSION%&application=%APP_ID%&appversion=%APP_VERSION%]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_32_0_0_293.dll [2019-12-09] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.241.2 -> C:\Program Files\Java\jre1.8.0_241\bin\dtplugin\npDeployJava1.dll [2020-01-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.241.2 -> C:\Program Files\Java\jre1.8.0_241\bin\plugin2\npjp2.dll [2020-01-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameeu.dll [2018-01-04] (Nexon) [File not signed]
FF Plugin: @ogplanet.com/npOGPPlugin -> C:\Windows\system32\npOGPPlugin.dll [2009-11-19] (OGPlanet -> OGPlanet)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default [2020-01-22]
CHR Extension: (Prezentace) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-11-02]
CHR Extension: (Dokumenty) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-11-02]
CHR Extension: (Disk Google) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-11-02]
CHR Extension: (YouTube) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-11-02]
CHR Extension: (Tabulky) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-11-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-22]
CHR Extension: (Avast Online Security) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-12-31]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-02]
CHR Extension: (Gmail) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-11-02]
CHR Extension: (Chrome Media Router) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-31]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [383872 2017-05-16] (Advanced Micro Devices, Inc. -> AMD)
S2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [163328 2018-09-25] () [File not signed]
R2 asComSvc; C:\Program Files\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-07-23] (ASUSTeK Computer Inc. -> )
R2 AsSysCtrlService; C:\Program Files\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-07-23] (ASUSTeK Computer Inc. -> ) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5106064 2019-12-19] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [859096 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1034584 2015-06-18] (Disc Soft Ltd -> Disc Soft Ltd)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [5394136 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
S3 mracsvc; C:\Windows\System32\mracsvc.exe [7188752 2018-06-22] (Mail.Ru LLC -> LLC Mail.Ru)
S3 npggsvc; C:\Windows\system32\GameMon.des [7986848 2018-03-15] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2018-11-14] (Even Balance, Inc. -> )
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine VPN\VpnSvc.exe [6828424 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [2250992 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [85240 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\ct313676.inf_x86_4caaee15f1d03005\atikmdag.sys [32682368 2017-05-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\ct313676.inf_x86_4caaee15f1d03005\atikmpag.sys [415104 2017-05-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S0 amdkmpfd; C:\WINDOWS\System32\DRIVERS\amdkmpfd.sys [40136 2014-10-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [73928 2015-03-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [36040 2015-03-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R1 AsIO; C:\WINDOWS\System32\drivers\AsIO.sys [14720 2014-07-23] (ASUSTeK Computer Inc. -> )
S3 AsusVBus; C:\WINDOWS\System32\DRIVERS\AsusVBus.sys [33048 2017-01-09] (ASUSTeK Computer Inc. -> Windows (R) Win 7 DDK provider)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35512 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [174712 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [224008 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [169408 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [59368 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15792 2019-10-05] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [211088 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41200 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [136752 2019-11-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [95168 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [73312 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [691528 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [394856 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [176760 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [48152 2018-09-07] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [277408 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT3.sys [82432 2015-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 ATP; C:\WINDOWS\System32\DRIVERS\AsusTP.sys [66872 2017-01-09] (ASUSTeK Computer Inc. -> ASUS Corporation)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv.sys [252480 2019-10-21] (Bluestack Systems, Inc. -> Bluestack System Inc. )
S0 BtHidBus; C:\WINDOWS\System32\Drivers\BtHidBus.sys [19592 2009-09-24] (IVT SOFTWARE TECHNOLOGY Inc. -> IVT Corporation.)
S3 btnetBUs; C:\WINDOWS\System32\Drivers\btnetBus.sys [22528 2009-09-24] () [File not signed]
R1 ccSet_NST; C:\WINDOWS\system32\drivers\NST\7DE070B0.02A\ccSetx86.sys [127064 2013-09-27] (Symantec Corporation -> Symantec Corporation)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [25016 2015-10-14] (Disc Soft Ltd -> Disc Soft Ltd)
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] () [File not signed]
S3 IvtBtBUs; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [25480 2009-08-26] (IVT SOFTWARE TECHNOLOGY Inc. -> IVT Corporation.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [17352 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv.sys [6456416 2018-06-22] (Mail.Ru LLC -> LLC Mail.Ru)
S3 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [15688 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [10320 2013-09-30] (MiniTool Solution Ltd -> )
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [24184 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [5120 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 usbfilter; C:\WINDOWS\System32\DRIVERS\usbfilter.sys [48352 2014-02-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [15872 2019-09-06] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [37472 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [278456 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [39368 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [207360 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-01-25 20:19 - 2020-01-25 20:20 - 000030586 _____ C:\Users\LuciFafa\Desktop\FRST.txt
2020-01-25 20:19 - 2020-01-25 20:20 - 000000000 ____D C:\FRST
2020-01-25 20:18 - 2020-01-25 20:18 - 002311168 _____ (Farbar) C:\Users\LuciFafa\Desktop\FRST(1).exe
2020-01-25 20:17 - 2020-01-25 20:17 - 002580480 _____ (Farbar) C:\Users\LuciFafa\Desktop\FRST64.exe
2020-01-25 20:17 - 2020-01-25 20:17 - 000000000 _____ C:\Users\LuciFafa\Downloads\FRST.exe
2020-01-25 20:09 - 2020-01-25 20:11 - 000000000 ____D C:\AdwCleaner
2020-01-25 20:09 - 2020-01-25 20:09 - 008237744 _____ (Malwarebytes) C:\Users\LuciFafa\Desktop\adwcleaner_8.0.1.exe
2020-01-25 20:08 - 2020-01-25 20:08 - 000000000 ____D C:\Users\LuciFafa\Desktop\Nová složka (3)
2020-01-22 11:39 - 2020-01-22 12:10 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-01-20 17:41 - 2020-01-20 17:41 - 000000000 ____D C:\Program Files\Common Files\Oracle
2020-01-20 17:41 - 2020-01-20 17:41 - 000000000 ____D C:\Program Files\Common Files\Java
2020-01-20 11:38 - 2020-01-20 11:38 - 000001439 _____ C:\Users\LuciFafa\Desktop\Tajný život mazlíčků 2 CZ DABING 2019 – zástupce.lnk
2020-01-20 09:06 - 2020-01-20 10:30 - 1547217553 _____ C:\Users\LuciFafa\Downloads\Tajný život mazlíčků 2 CZ DABING 2019.mkv
2020-01-19 11:16 - 2008-08-18 18:18 - 000077824 _____ (Fox Magic Software) C:\WINDOWS\system32\fmcodec.DLL
2020-01-17 17:10 - 2020-01-17 17:10 - 000001259 _____ C:\Users\LuciFafa\Desktop\Velká šestka 2014 – zástupce.lnk
2020-01-16 13:52 - 2020-01-16 15:46 - 000000008 _____ C:\Users\LuciFafa\Desktop\Nový textový dokument (2).txt
2020-01-16 12:38 - 2020-01-16 12:38 - 003401208 _____ C:\Users\LuciFafa\Downloads\winrar-x64-580cz.exe
2020-01-16 12:38 - 2020-01-16 12:38 - 003175080 _____ C:\Users\LuciFafa\Downloads\wrar580cz.exe
2020-01-16 12:36 - 2020-01-16 12:36 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 002995712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-16 12:35 - 2020-01-16 12:35 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 002058752 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-16 12:35 - 2020-01-16 12:35 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 001539160 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 001298432 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000712704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-16 12:35 - 2020-01-16 12:35 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-01-16 12:35 - 2020-01-16 12:35 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-01-16 12:35 - 2020-01-16 12:35 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.th.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000277520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-16 12:35 - 2020-01-16 12:35 - 000261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-01-16 12:35 - 2020-01-16 12:35 - 000207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-16 12:35 - 2020-01-16 12:35 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000105384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-16 12:35 - 2020-01-16 12:35 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-01-16 12:28 - 2019-12-10 05:59 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-01-16 08:54 - 2020-01-16 09:39 - 831700580 _____ C:\Users\LuciFafa\Downloads\Velká šestka 2014.avi
2020-01-15 17:42 - 2020-01-15 17:42 - 000000000 ____D C:\Users\LuciFafa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Media Player Utilities 4.46
2020-01-15 17:42 - 2020-01-15 17:42 - 000000000 ____D C:\Program Files\Media Player Utilities 4.46
2020-01-15 17:02 - 2020-01-23 22:15 - 000000000 ____D C:\Users\LuciFafa\Downloads\5
2020-01-15 12:33 - 2020-01-15 12:33 - 000001326 _____ C:\Users\LuciFafa\Desktop\Animované-Raubíř-Ralf-cz – zástupce.lnk
2020-01-15 12:25 - 2020-01-15 12:25 - 000001488 _____ C:\Users\LuciFafa\Desktop\V hlavě-animovaný rodinný film USA 2015 cz – zástupce.lnk
2020-01-15 09:35 - 2020-01-15 11:00 - 1564232642 _____ C:\Users\LuciFafa\Downloads\Animované-Raubíř-Ralf-cz.avi
2020-01-15 08:35 - 2020-01-15 09:25 - 920561298 _____ C:\Users\LuciFafa\Downloads\V hlavě-animovaný rodinný film USA 2015 cz.avi
2020-01-15 08:26 - 2020-01-15 08:29 - 000000000 ____D C:\Users\LuciFafa\Downloads\Nová složka (6)
2020-01-07 11:25 - 2020-01-07 13:01 - 1058216200 _____ C:\Users\LuciFafa\Downloads\angry-birds-ve-filmu-2016-cz-dabing-top-kvalita-avi 1.bin
2020-01-06 19:43 - 2020-01-06 19:43 - 000001471 _____ C:\Users\LuciFafa\Downloads\Angry Birds ve filmu 2 2019 1080p CZ.SK 5.1 – zástupce.lnk
2020-01-06 19:43 - 2020-01-06 19:43 - 000001471 _____ C:\Users\LuciFafa\Desktop\Angry Birds ve filmu 2 2019 1080p CZ.SK 5.1 – zástupce.lnk
2020-01-06 12:07 - 2020-01-06 16:15 - 2745262544 _____ C:\Users\LuciFafa\Downloads\Angry Birds ve filmu 2 2019 1080p CZ.SK 5.1.mkv
2020-01-04 19:39 - 2020-01-04 19:39 - 055961627 _____ C:\Users\LuciFafa\Downloads\EpicInstaller-10.7.0-fortnite.dmg
2020-01-04 19:39 - 2020-01-04 19:39 - 043749376 _____ C:\Users\LuciFafa\Downloads\EpicInstaller-10.7.0-fortnite.msi
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-01-25 20:19 - 2019-09-06 19:41 - 001839106 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-01-25 20:19 - 2019-03-19 08:13 - 000764824 _____ C:\WINDOWS\system32\perfh005.dat
2020-01-25 20:19 - 2019-03-19 08:13 - 000169506 _____ C:\WINDOWS\system32\perfc005.dat
2020-01-25 20:19 - 2019-03-19 03:44 - 000000000 ____D C:\WINDOWS\INF
2020-01-25 20:19 - 2016-11-18 15:12 - 000000000 ____D C:\Users\LuciFafa\AppData\LocalLow\Mozilla
2020-01-25 20:13 - 2019-03-19 03:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-25 20:13 - 2018-10-23 10:17 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\CrashDumps
2020-01-25 20:13 - 2017-09-05 08:37 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\AVAST Software
2020-01-25 20:12 - 2019-09-06 19:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-01-25 20:11 - 2019-03-19 03:35 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-01-25 20:11 - 2015-09-25 11:42 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-01-25 19:21 - 2019-03-19 03:35 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-01-25 18:29 - 2015-09-26 07:21 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2020-01-25 18:09 - 2019-10-18 07:31 - 000002097 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-01-25 17:57 - 2019-09-06 19:48 - 000002312 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-01-25 17:57 - 2019-09-06 19:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-01-25 17:14 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-01-25 12:16 - 2017-11-22 14:44 - 000001725 _____ C:\Users\LuciFafa\Desktop\Assassin`s Creed III.lnk
2020-01-25 12:10 - 2017-11-24 21:24 - 000000000 ____D C:\Program Files\Assassins Creed IV Black Flag
2020-01-25 12:05 - 2015-10-15 14:59 - 000000000 ____D C:\Program Files\GRID 2
2020-01-25 12:04 - 2017-02-14 19:26 - 000000000 ____D C:\Program Files\GRID Autosport
2020-01-25 12:04 - 2015-12-10 12:44 - 000000000 ____D C:\Program Files\DiRT Rally
2020-01-25 12:04 - 2015-10-14 21:06 - 000000000 ____D C:\Users\LuciFafa\AppData\Roaming\DAEMON Tools Lite
2020-01-25 11:43 - 2019-09-06 19:48 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-01-23 23:35 - 2019-03-19 03:46 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-23 22:23 - 2015-12-26 20:36 - 000000000 ____D C:\Users\LuciFafa\AppData\Roaming\AIMP
2020-01-23 21:54 - 2015-09-29 18:05 - 000000000 ____D C:\Users\LuciFafa\AppData\Roaming\vlc
2020-01-22 12:10 - 2015-09-26 07:21 - 000001109 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-01-21 21:19 - 2019-11-02 18:19 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-21 21:19 - 2019-11-02 18:19 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-01-20 17:41 - 2019-10-18 07:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-01-20 17:41 - 2019-10-18 07:45 - 000000000 ____D C:\Program Files\Java
2020-01-20 17:40 - 2019-10-18 07:46 - 000112696 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2020-01-19 20:05 - 2015-10-25 18:51 - 000000000 ____D C:\Program Files\Steam
2020-01-19 11:16 - 2019-12-07 20:00 - 000002147 _____ C:\Users\Public\Desktop\Music Search MP3.lnk
2020-01-19 11:16 - 2019-12-07 20:00 - 000001221 _____ C:\Users\Public\Desktop\aTube Catcher.lnk
2020-01-19 11:16 - 2015-10-05 13:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
2020-01-16 18:21 - 2019-09-06 19:34 - 000274608 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-16 18:19 - 2019-03-19 03:46 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-16 18:19 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\SystemResources
2020-01-16 18:19 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-16 18:19 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-16 17:12 - 2019-09-06 19:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-01-16 12:48 - 2019-03-19 03:35 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-01-16 12:47 - 2015-09-29 15:22 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-16 12:45 - 2019-09-06 20:07 - 000000000 ____D C:\ProgramData\Packages
2020-01-16 12:45 - 2019-09-06 19:55 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\PlaceholderTileLogoFolder
2020-01-16 12:45 - 2019-09-06 19:49 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\Packages
2020-01-16 12:39 - 2015-09-29 15:22 - 117005720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-16 12:38 - 2015-10-05 13:40 - 000000000 ____D C:\Users\LuciFafa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-01-16 12:38 - 2015-10-05 13:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-01-16 12:38 - 2015-10-05 13:40 - 000000000 ____D C:\Program Files\WinRAR
2020-01-15 17:01 - 2019-09-13 18:17 - 000000000 ____D C:\Program Files\bookingDesktopApp
2020-01-15 09:23 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-01-13 17:45 - 2015-09-29 16:33 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\ElevatedDiagnostics
2020-01-12 18:03 - 2015-09-25 11:46 - 000000000 ____D C:\Program Files\SpeedFan
2020-01-12 17:27 - 2015-10-25 18:51 - 000000000 ____D C:\Program Files\Common Files\Steam
2020-01-08 18:52 - 2017-09-05 08:37 - 000000128 _____ C:\Users\LuciFafa\Desktop\HESLO VIRY.txt
2020-01-08 18:47 - 2019-01-15 11:21 - 000001038 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-12-30 16:53 - 2019-11-15 21:54 - 000002872 _____ C:\WINDOWS\system32\Tasks\Java Updater
2019-12-30 16:53 - 2019-10-29 18:43 - 000003026 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper
2019-12-30 16:53 - 2019-09-06 19:56 - 000002922 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1117677789-4214877554-3075564690-1000
2019-12-30 16:53 - 2019-09-06 19:48 - 000003450 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-12-30 16:53 - 2019-09-06 19:48 - 000003226 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
==================== Files in the root of some directories ========
2016-06-03 14:03 - 2016-06-03 14:03 - 000000603 _____ () C:\Program Files\Blacklight Retribution_enUpdaterLog.txt
2016-06-03 14:01 - 2017-10-17 18:38 - 000022328 _____ () C:\Users\LuciFafa\AppData\Roaming\PnkBstrK.sys
2019-11-02 17:41 - 2019-11-02 17:41 - 000000038 _____ () C:\Users\LuciFafa\AppData\Local\cloudready_installer_uuid
2015-09-28 09:38 - 2018-10-03 07:50 - 000007602 _____ () C:\Users\LuciFafa\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-01-2020 01
Ran by LuciFafa (administrator) on LUCIFAFA-PC (25-01-2020 20:19:47)
Running from C:\Users\LuciFafa\Desktop
Loaded Profiles: LuciFafa (Available Profiles: LuciFafa)
Platform: Microsoft Windows 10 Home Version 1903 18362.592 (X86) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
(ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files\ASUS\AXSP\1.02.00\atkexComSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine VPN\VpnSvc.exe
(Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(Google Inc -> Google LLC) C:\Program Files\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Update\1.3.35.422\GoogleCrashHandler.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [7519960 2015-01-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [NUSB3MON] => C:\Program Files\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [97280 2012-04-11] (Advanced Micro Devices, Inc.) [File not signed]
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [232840 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [646160 2019-12-11] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1117677789-4214877554-3075564690-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [3576664 2015-06-18] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-1117677789-4214877554-3075564690-1000\...\Run: [AMDDVR] => C:\Program Files\AMD\CNext\CNext\amddvr.exe [1617800 2018-09-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1117677789-4214877554-3075564690-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-21] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {070A3EA9-8DA3-4559-899E-70484CD95521} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [405088 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0ACA8AED-E8A5-403C-A1FE-FD963AC6D50E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [405088 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0CA094BA-D37D-4BD1-9B8D-1F4C7EBF760B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {1341ABBB-78DB-4E4D-8A35-5DDA86AF973F} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {1770BB4B-35E9-40B1-A407-932BB5969459} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {1CF0C451-0775-4B00-AE47-7DFE8EDAB5AD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-12-09] (Adobe Inc. -> Adobe)
Task: {1F37C4D6-8AD0-4740-9FBE-A223A8F92C72} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe
Task: {24FA84A0-E087-48EC-BC51-2B9C4C815D78} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {2A5EB73E-0E29-4E90-8F07-424A175FF490} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {2D547F09-AB9B-458A-BE13-53287865A027} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {310EBAD5-3127-4767-84C7-ED217DDDA5EA} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [745480 2019-04-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {367F930A-A3DB-4112-B1F1-50E92A171C88} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {37EC1E74-6C44-4B30-A6F1-5AE69C4A7CFF} - System32\Tasks\StartCN => C:\Program Files\AMD\\CNext\CNext\cncmd.exe [43400 2018-09-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {37F687A7-A1EC-49D0-9C6C-FFF191B2D7E3} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {3A95B8C8-B1C9-402B-ADA9-0FC3D224F57C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3F983359-DF03-40CA-8C66-C8389544BBF5} - System32\Tasks\{002AE781-3C13-4988-9DD7-5C950841373F} => C:\Program Files\Nexon\Nexon Launcher\nexon_launcher.exe
Task: {4482917A-EDAE-4D7D-B621-4E21D0479CEE} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {52A6C2AC-44AE-46B7-87DF-2D58DF54A27F} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_32_0_0_293_Plugin.exe [1457720 2019-12-09] (Adobe Inc. -> Adobe)
Task: {53648477-B30C-44F6-9421-2F7FF80DCBE9} - System32\Tasks\StartDVR => C:\Program Files\AMD\\CNext\CNext\dvrcmd.exe [59272 2018-09-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {5F886570-6BD8-4254-8DC1-A38C78CEF3C5} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {62FAB98F-0165-438C-A61C-6C354214A580} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {640E7AD3-7A65-4CB7-9197-ED2BAAFD2945} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {67F8D0E7-E897-4E22-9258-AFC61361BB1C} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7099E0BC-E0DF-4B78-9C3F-03B1B646C041} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {70CB6F2E-9890-4DBA-9669-7B62A80B6BFE} - System32\Tasks\{2C168AB7-D565-42E8-9497-5F708AEBE37C} => C:\VALOFEEU\CA_Classic\CombatArmsClassic.exe [5496880 2019-12-23] (valofe Co.,Ltd. -> Valofe)
Task: {83482C26-D5B0-4999-8965-1E221E559312} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [155432 2019-10-23] (Google Inc -> Google LLC)
Task: {83CC6E3E-1B1E-46A5-9804-E32CB79B5FA5} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {896F7C2D-C4EA-4A9A-BC21-4E33EA8C2C98} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe
Task: {8D5C7F68-16C4-45B4-A8A5-F2E7382AB882} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8E5D4FB0-BC25-4160-9C8A-D8F458BE987F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {920D55A6-C75E-4757-87FD-A2A37D4B1079} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {935CFF16-E68D-466B-B047-C6B70A692112} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {97264EF2-3461-465C-9093-A98DFA9FF727} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9ED3DE3C-4F79-485B-9306-97AFE797BB4E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {A7B2DD51-B885-4014-9E5A-9392F4848566} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {AB4E247F-3307-4A04-A06F-34E942D8613D} - System32\Tasks\Java Updater => C:\Users\LuciFafa\AppData\Roaming\nircmd.exe <==== ATTENTION
Task: {AFE2589B-2234-43EF-B0C4-9E8EBF7F9996} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1542536 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {AFFE6A38-F468-4E0C-9AE5-79997B583DF5} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B81AD758-FF6E-4883-9DBE-20865B218B98} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B8B2386F-6E5B-4023-8FFB-FE6F7B837124} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {C00E2B0D-CA13-43CC-937D-F08FC12B4D85} - System32\Tasks\{09BE175D-9DCD-448D-AA34-F529E6EF28EF} => C:\Program Files\Pro Evolution Soccer 2015\PES2015.exe [39109936 2014-11-12] (Konami Digital Entertainment Co., Ltd. -> Konami Digital Entertainment Co., Ltd.)
Task: {D2918185-EB46-4389-A9C2-066839A2C5FE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D5710AD8-16D6-4457-84FA-882F80D8D906} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [155432 2019-10-23] (Google Inc -> Google LLC)
Task: {D81E909E-533E-4591-A6B2-BFF769F0E74C} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D88BBE2B-CA68-46BC-BEA7-2DCA2047C6BE} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E54424BD-C227-47D3-BDFE-BADFA377BE33} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E5A10CDF-C165-46D4-92E0-60FE090D47C5} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E79B2998-8F63-451A-A56D-26EDC0A5098A} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
Task: {EC244E0D-C77F-497E-A390-FF949660DBAA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [405088 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EC83EB21-36A3-4DB1-8A79-AB8089D77148} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\AVAST Software\SecureLine VPN\VpnUpdate.exe [1390472 2019-11-03] (AVAST Software s.r.o. -> AVAST Software)
Task: {F50BF105-4184-4DC3-BAE8-F8781FCAF8FB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [405088 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F742D008-A50D-4F4B-B68D-9357ECEAD1C2} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 35 => C:\Program Files\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {FB1390A3-48DC-4FFC-99FD-3A5B0B71774C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3250056 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {FD6432B4-732F-4165-A615-042B4A465273} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{4950ECBA-8D72-493B-A0EB-CA9249133316}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{cfc5e456-e14c-404d-ae3c-686d78c7fa82}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{f5521eba-7c81-4192-bb08-29bb54988594}: [NameServer] 100.120.166.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKU\S-1-5-21-1117677789-4214877554-3075564690-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
SearchScopes: HKU\S-1-5-21-1117677789-4214877554-3075564690-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE04
SearchScopes: HKU\S-1-5-21-1117677789-4214877554-3075564690-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE04
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_241\bin\ssv.dll [2020-01-20] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_241\bin\jp2ssv.dll [2020-01-20] (Oracle America, Inc. -> Oracle Corporation)
Edge:
======
DownloadDir: C:\Users\LuciFafa\Downloads
FireFox:
========
FF DefaultProfile: o4nlojpb.default-1540287753942
FF ProfilePath: C:\Users\LuciFafa\AppData\Roaming\Mozilla\Firefox\Profiles\o4nlojpb.default-1540287753942 [2020-01-25]
FF Homepage: Mozilla\Firefox\Profiles\o4nlojpb.default-1540287753942 -> hxxps://www.google.cz/
FF Notifications: Mozilla\Firefox\Profiles\o4nlojpb.default-1540287753942 -> hxxps://www.vitalitygames.com; hxxps://pacogames.os.tc
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\LuciFafa\AppData\Roaming\Mozilla\Firefox\Profiles\o4nlojpb.default-1540287753942\Extensions\sp@avast.com.xpi [2020-01-18]
FF Extension: (Avast Online Security) - C:\Users\LuciFafa\AppData\Roaming\Mozilla\Firefox\Profiles\o4nlojpb.default-1540287753942\Extensions\wrc@avast.com.xpi [2020-01-24]
FF Extension: (Google Analytics Opt-out Add-on (by Google)) - C:\Users\LuciFafa\AppData\Roaming\Mozilla\Firefox\Profiles\o4nlojpb.default-1540287753942\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2018-10-24] [UpdateUrl:hxxps://tools.google.com/service/update2/ff?guid=%ITEM_ID%&version=%ITEM_VERSION%&application=%APP_ID%&appversion=%APP_VERSION%]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_32_0_0_293.dll [2019-12-09] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.241.2 -> C:\Program Files\Java\jre1.8.0_241\bin\dtplugin\npDeployJava1.dll [2020-01-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.241.2 -> C:\Program Files\Java\jre1.8.0_241\bin\plugin2\npjp2.dll [2020-01-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameeu.dll [2018-01-04] (Nexon) [File not signed]
FF Plugin: @ogplanet.com/npOGPPlugin -> C:\Windows\system32\npOGPPlugin.dll [2009-11-19] (OGPlanet -> OGPlanet)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default [2020-01-22]
CHR Extension: (Prezentace) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-11-02]
CHR Extension: (Dokumenty) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-11-02]
CHR Extension: (Disk Google) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-11-02]
CHR Extension: (YouTube) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-11-02]
CHR Extension: (Tabulky) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-11-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-22]
CHR Extension: (Avast Online Security) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-12-31]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-02]
CHR Extension: (Gmail) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-11-02]
CHR Extension: (Chrome Media Router) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-31]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [383872 2017-05-16] (Advanced Micro Devices, Inc. -> AMD)
S2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [163328 2018-09-25] () [File not signed]
R2 asComSvc; C:\Program Files\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-07-23] (ASUSTeK Computer Inc. -> )
R2 AsSysCtrlService; C:\Program Files\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-07-23] (ASUSTeK Computer Inc. -> ) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5106064 2019-12-19] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [859096 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1034584 2015-06-18] (Disc Soft Ltd -> Disc Soft Ltd)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [5394136 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
S3 mracsvc; C:\Windows\System32\mracsvc.exe [7188752 2018-06-22] (Mail.Ru LLC -> LLC Mail.Ru)
S3 npggsvc; C:\Windows\system32\GameMon.des [7986848 2018-03-15] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2018-11-14] (Even Balance, Inc. -> )
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine VPN\VpnSvc.exe [6828424 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [2250992 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [85240 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\ct313676.inf_x86_4caaee15f1d03005\atikmdag.sys [32682368 2017-05-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\ct313676.inf_x86_4caaee15f1d03005\atikmpag.sys [415104 2017-05-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S0 amdkmpfd; C:\WINDOWS\System32\DRIVERS\amdkmpfd.sys [40136 2014-10-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [73928 2015-03-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [36040 2015-03-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R1 AsIO; C:\WINDOWS\System32\drivers\AsIO.sys [14720 2014-07-23] (ASUSTeK Computer Inc. -> )
S3 AsusVBus; C:\WINDOWS\System32\DRIVERS\AsusVBus.sys [33048 2017-01-09] (ASUSTeK Computer Inc. -> Windows (R) Win 7 DDK provider)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35512 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [174712 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [224008 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [169408 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [59368 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15792 2019-10-05] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [211088 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41200 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [136752 2019-11-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [95168 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [73312 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [691528 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [394856 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [176760 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [48152 2018-09-07] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [277408 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT3.sys [82432 2015-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 ATP; C:\WINDOWS\System32\DRIVERS\AsusTP.sys [66872 2017-01-09] (ASUSTeK Computer Inc. -> ASUS Corporation)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv.sys [252480 2019-10-21] (Bluestack Systems, Inc. -> Bluestack System Inc. )
S0 BtHidBus; C:\WINDOWS\System32\Drivers\BtHidBus.sys [19592 2009-09-24] (IVT SOFTWARE TECHNOLOGY Inc. -> IVT Corporation.)
S3 btnetBUs; C:\WINDOWS\System32\Drivers\btnetBus.sys [22528 2009-09-24] () [File not signed]
R1 ccSet_NST; C:\WINDOWS\system32\drivers\NST\7DE070B0.02A\ccSetx86.sys [127064 2013-09-27] (Symantec Corporation -> Symantec Corporation)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [25016 2015-10-14] (Disc Soft Ltd -> Disc Soft Ltd)
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] () [File not signed]
S3 IvtBtBUs; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [25480 2009-08-26] (IVT SOFTWARE TECHNOLOGY Inc. -> IVT Corporation.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [17352 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv.sys [6456416 2018-06-22] (Mail.Ru LLC -> LLC Mail.Ru)
S3 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [15688 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [10320 2013-09-30] (MiniTool Solution Ltd -> )
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [24184 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [5120 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 usbfilter; C:\WINDOWS\System32\DRIVERS\usbfilter.sys [48352 2014-02-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [15872 2019-09-06] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [37472 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [278456 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [39368 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [207360 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-01-25 20:19 - 2020-01-25 20:20 - 000030586 _____ C:\Users\LuciFafa\Desktop\FRST.txt
2020-01-25 20:19 - 2020-01-25 20:20 - 000000000 ____D C:\FRST
2020-01-25 20:18 - 2020-01-25 20:18 - 002311168 _____ (Farbar) C:\Users\LuciFafa\Desktop\FRST(1).exe
2020-01-25 20:17 - 2020-01-25 20:17 - 002580480 _____ (Farbar) C:\Users\LuciFafa\Desktop\FRST64.exe
2020-01-25 20:17 - 2020-01-25 20:17 - 000000000 _____ C:\Users\LuciFafa\Downloads\FRST.exe
2020-01-25 20:09 - 2020-01-25 20:11 - 000000000 ____D C:\AdwCleaner
2020-01-25 20:09 - 2020-01-25 20:09 - 008237744 _____ (Malwarebytes) C:\Users\LuciFafa\Desktop\adwcleaner_8.0.1.exe
2020-01-25 20:08 - 2020-01-25 20:08 - 000000000 ____D C:\Users\LuciFafa\Desktop\Nová složka (3)
2020-01-22 11:39 - 2020-01-22 12:10 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-01-20 17:41 - 2020-01-20 17:41 - 000000000 ____D C:\Program Files\Common Files\Oracle
2020-01-20 17:41 - 2020-01-20 17:41 - 000000000 ____D C:\Program Files\Common Files\Java
2020-01-20 11:38 - 2020-01-20 11:38 - 000001439 _____ C:\Users\LuciFafa\Desktop\Tajný život mazlíčků 2 CZ DABING 2019 – zástupce.lnk
2020-01-20 09:06 - 2020-01-20 10:30 - 1547217553 _____ C:\Users\LuciFafa\Downloads\Tajný život mazlíčků 2 CZ DABING 2019.mkv
2020-01-19 11:16 - 2008-08-18 18:18 - 000077824 _____ (Fox Magic Software) C:\WINDOWS\system32\fmcodec.DLL
2020-01-17 17:10 - 2020-01-17 17:10 - 000001259 _____ C:\Users\LuciFafa\Desktop\Velká šestka 2014 – zástupce.lnk
2020-01-16 13:52 - 2020-01-16 15:46 - 000000008 _____ C:\Users\LuciFafa\Desktop\Nový textový dokument (2).txt
2020-01-16 12:38 - 2020-01-16 12:38 - 003401208 _____ C:\Users\LuciFafa\Downloads\winrar-x64-580cz.exe
2020-01-16 12:38 - 2020-01-16 12:38 - 003175080 _____ C:\Users\LuciFafa\Downloads\wrar580cz.exe
2020-01-16 12:36 - 2020-01-16 12:36 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 002995712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-16 12:35 - 2020-01-16 12:35 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 002058752 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-16 12:35 - 2020-01-16 12:35 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 001539160 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 001298432 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000712704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-16 12:35 - 2020-01-16 12:35 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-01-16 12:35 - 2020-01-16 12:35 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-01-16 12:35 - 2020-01-16 12:35 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.th.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000277520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-16 12:35 - 2020-01-16 12:35 - 000261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-01-16 12:35 - 2020-01-16 12:35 - 000207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-16 12:35 - 2020-01-16 12:35 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000105384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-16 12:35 - 2020-01-16 12:35 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-01-16 12:35 - 2020-01-16 12:35 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-01-16 12:28 - 2019-12-10 05:59 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-01-16 08:54 - 2020-01-16 09:39 - 831700580 _____ C:\Users\LuciFafa\Downloads\Velká šestka 2014.avi
2020-01-15 17:42 - 2020-01-15 17:42 - 000000000 ____D C:\Users\LuciFafa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Media Player Utilities 4.46
2020-01-15 17:42 - 2020-01-15 17:42 - 000000000 ____D C:\Program Files\Media Player Utilities 4.46
2020-01-15 17:02 - 2020-01-23 22:15 - 000000000 ____D C:\Users\LuciFafa\Downloads\5
2020-01-15 12:33 - 2020-01-15 12:33 - 000001326 _____ C:\Users\LuciFafa\Desktop\Animované-Raubíř-Ralf-cz – zástupce.lnk
2020-01-15 12:25 - 2020-01-15 12:25 - 000001488 _____ C:\Users\LuciFafa\Desktop\V hlavě-animovaný rodinný film USA 2015 cz – zástupce.lnk
2020-01-15 09:35 - 2020-01-15 11:00 - 1564232642 _____ C:\Users\LuciFafa\Downloads\Animované-Raubíř-Ralf-cz.avi
2020-01-15 08:35 - 2020-01-15 09:25 - 920561298 _____ C:\Users\LuciFafa\Downloads\V hlavě-animovaný rodinný film USA 2015 cz.avi
2020-01-15 08:26 - 2020-01-15 08:29 - 000000000 ____D C:\Users\LuciFafa\Downloads\Nová složka (6)
2020-01-07 11:25 - 2020-01-07 13:01 - 1058216200 _____ C:\Users\LuciFafa\Downloads\angry-birds-ve-filmu-2016-cz-dabing-top-kvalita-avi 1.bin
2020-01-06 19:43 - 2020-01-06 19:43 - 000001471 _____ C:\Users\LuciFafa\Downloads\Angry Birds ve filmu 2 2019 1080p CZ.SK 5.1 – zástupce.lnk
2020-01-06 19:43 - 2020-01-06 19:43 - 000001471 _____ C:\Users\LuciFafa\Desktop\Angry Birds ve filmu 2 2019 1080p CZ.SK 5.1 – zástupce.lnk
2020-01-06 12:07 - 2020-01-06 16:15 - 2745262544 _____ C:\Users\LuciFafa\Downloads\Angry Birds ve filmu 2 2019 1080p CZ.SK 5.1.mkv
2020-01-04 19:39 - 2020-01-04 19:39 - 055961627 _____ C:\Users\LuciFafa\Downloads\EpicInstaller-10.7.0-fortnite.dmg
2020-01-04 19:39 - 2020-01-04 19:39 - 043749376 _____ C:\Users\LuciFafa\Downloads\EpicInstaller-10.7.0-fortnite.msi
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-01-25 20:19 - 2019-09-06 19:41 - 001839106 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-01-25 20:19 - 2019-03-19 08:13 - 000764824 _____ C:\WINDOWS\system32\perfh005.dat
2020-01-25 20:19 - 2019-03-19 08:13 - 000169506 _____ C:\WINDOWS\system32\perfc005.dat
2020-01-25 20:19 - 2019-03-19 03:44 - 000000000 ____D C:\WINDOWS\INF
2020-01-25 20:19 - 2016-11-18 15:12 - 000000000 ____D C:\Users\LuciFafa\AppData\LocalLow\Mozilla
2020-01-25 20:13 - 2019-03-19 03:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-25 20:13 - 2018-10-23 10:17 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\CrashDumps
2020-01-25 20:13 - 2017-09-05 08:37 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\AVAST Software
2020-01-25 20:12 - 2019-09-06 19:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-01-25 20:11 - 2019-03-19 03:35 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-01-25 20:11 - 2015-09-25 11:42 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-01-25 19:21 - 2019-03-19 03:35 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-01-25 18:29 - 2015-09-26 07:21 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2020-01-25 18:09 - 2019-10-18 07:31 - 000002097 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-01-25 17:57 - 2019-09-06 19:48 - 000002312 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-01-25 17:57 - 2019-09-06 19:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-01-25 17:14 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-01-25 12:16 - 2017-11-22 14:44 - 000001725 _____ C:\Users\LuciFafa\Desktop\Assassin`s Creed III.lnk
2020-01-25 12:10 - 2017-11-24 21:24 - 000000000 ____D C:\Program Files\Assassins Creed IV Black Flag
2020-01-25 12:05 - 2015-10-15 14:59 - 000000000 ____D C:\Program Files\GRID 2
2020-01-25 12:04 - 2017-02-14 19:26 - 000000000 ____D C:\Program Files\GRID Autosport
2020-01-25 12:04 - 2015-12-10 12:44 - 000000000 ____D C:\Program Files\DiRT Rally
2020-01-25 12:04 - 2015-10-14 21:06 - 000000000 ____D C:\Users\LuciFafa\AppData\Roaming\DAEMON Tools Lite
2020-01-25 11:43 - 2019-09-06 19:48 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-01-23 23:35 - 2019-03-19 03:46 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-23 22:23 - 2015-12-26 20:36 - 000000000 ____D C:\Users\LuciFafa\AppData\Roaming\AIMP
2020-01-23 21:54 - 2015-09-29 18:05 - 000000000 ____D C:\Users\LuciFafa\AppData\Roaming\vlc
2020-01-22 12:10 - 2015-09-26 07:21 - 000001109 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-01-21 21:19 - 2019-11-02 18:19 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-21 21:19 - 2019-11-02 18:19 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-01-20 17:41 - 2019-10-18 07:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-01-20 17:41 - 2019-10-18 07:45 - 000000000 ____D C:\Program Files\Java
2020-01-20 17:40 - 2019-10-18 07:46 - 000112696 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2020-01-19 20:05 - 2015-10-25 18:51 - 000000000 ____D C:\Program Files\Steam
2020-01-19 11:16 - 2019-12-07 20:00 - 000002147 _____ C:\Users\Public\Desktop\Music Search MP3.lnk
2020-01-19 11:16 - 2019-12-07 20:00 - 000001221 _____ C:\Users\Public\Desktop\aTube Catcher.lnk
2020-01-19 11:16 - 2015-10-05 13:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
2020-01-16 18:21 - 2019-09-06 19:34 - 000274608 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-16 18:19 - 2019-03-19 03:46 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-16 18:19 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\SystemResources
2020-01-16 18:19 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-16 18:19 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-16 17:12 - 2019-09-06 19:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-01-16 12:48 - 2019-03-19 03:35 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-01-16 12:47 - 2015-09-29 15:22 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-16 12:45 - 2019-09-06 20:07 - 000000000 ____D C:\ProgramData\Packages
2020-01-16 12:45 - 2019-09-06 19:55 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\PlaceholderTileLogoFolder
2020-01-16 12:45 - 2019-09-06 19:49 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\Packages
2020-01-16 12:39 - 2015-09-29 15:22 - 117005720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-16 12:38 - 2015-10-05 13:40 - 000000000 ____D C:\Users\LuciFafa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-01-16 12:38 - 2015-10-05 13:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-01-16 12:38 - 2015-10-05 13:40 - 000000000 ____D C:\Program Files\WinRAR
2020-01-15 17:01 - 2019-09-13 18:17 - 000000000 ____D C:\Program Files\bookingDesktopApp
2020-01-15 09:23 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-01-13 17:45 - 2015-09-29 16:33 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\ElevatedDiagnostics
2020-01-12 18:03 - 2015-09-25 11:46 - 000000000 ____D C:\Program Files\SpeedFan
2020-01-12 17:27 - 2015-10-25 18:51 - 000000000 ____D C:\Program Files\Common Files\Steam
2020-01-08 18:52 - 2017-09-05 08:37 - 000000128 _____ C:\Users\LuciFafa\Desktop\HESLO VIRY.txt
2020-01-08 18:47 - 2019-01-15 11:21 - 000001038 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-12-30 16:53 - 2019-11-15 21:54 - 000002872 _____ C:\WINDOWS\system32\Tasks\Java Updater
2019-12-30 16:53 - 2019-10-29 18:43 - 000003026 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper
2019-12-30 16:53 - 2019-09-06 19:56 - 000002922 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1117677789-4214877554-3075564690-1000
2019-12-30 16:53 - 2019-09-06 19:48 - 000003450 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-12-30 16:53 - 2019-09-06 19:48 - 000003226 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
==================== Files in the root of some directories ========
2016-06-03 14:03 - 2016-06-03 14:03 - 000000603 _____ () C:\Program Files\Blacklight Retribution_enUpdaterLog.txt
2016-06-03 14:01 - 2017-10-17 18:38 - 000022328 _____ () C:\Users\LuciFafa\AppData\Roaming\PnkBstrK.sys
2019-11-02 17:41 - 2019-11-02 17:41 - 000000038 _____ () C:\Users\LuciFafa\AppData\Local\cloudready_installer_uuid
2015-09-28 09:38 - 2018-10-03 07:50 - 000007602 _____ () C:\Users\LuciFafa\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================