Zpomalený PC
Napsal: 05 pro 2020 11:20
Dobrý den,
v poslední době je PC zpomaleno, projel jsem antivirem (Avast - našel nějaké viry), ale stále mi čas o času vyskočí pop-up okno, které zablokuje windows defender. Rovněž se mi odstranil ESET, který jsem původně používal, nejde znovu nainstalovat a musel jsem tedy provést instal Avastu.
Log:
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18384352 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-27] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [824240 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
HKLM\...\Run: [LenovoUtility] => C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe [911272 2017-07-27] (LENOVO -> Lenovo(beijing) Limited)
HKLM\...\Run: [egui] => "C:\Program Files\ESET\ESET NOD32 Antivirus\ecmdS.exe" /run /hide /proxy
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [849928 2016-09-19] (Dolby Laboratories, Inc. -> )
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [117344 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5035416 2019-09-23] (Acronis International GmbH -> )
HKLM-x32\...\Run: [PDFPrint] => D:\Program Files (x86)\PDF24\pdf24.exe [483976 2020-08-13] (Geek Software GmbH -> Geek Software GmbH)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files (x86)\Opera\assistant\browser_assistant.exe [3154456 2020-11-25] (Opera Software AS -> Opera Software)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\Run: [] => [X]
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [638592 2017-07-14] (OpenVPN Technologies, Inc. -> )
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\Run: [DAEMON Tools Lite Automount] => D:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-17] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\Run: [uTorrent] => C:\Users\matej\AppData\Roaming\uTorrent\uTorrent.exe [2113240 2020-11-22] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [6113328 2019-08-21] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50010064 2020-11-03] (Google LLC -> )
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_453_pepper.exe [1498680 2020-11-11] (Adobe Inc. -> Adobe)
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\MountPoints2: {86a5f194-ec9b-11e7-af4f-54ee759de4a1} - "E:\Setup.exe"
HKLM\...\Windows x64\Print Processors\hpcpp103: C:\Windows\System32\spool\prtprocs\x64\hpcpp103.dll [323584 2010-10-13] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [65096 2019-08-21] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\SHARP SS0E PCL6 Language Monitor: C:\Windows\system32\SS0ELMON.DLL [82432 2008-10-29] (Microsoft Windows Hardware Compatibility Publisher -> SHARP CORPORATION)
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\Windows\system32\602localmon.dll [54864 2018-05-31] (Software602 a.s. -> Windows (R) Win 7 DDK provider)
HKLM\...\Print\Monitors\sxr3x Langmon: C:\Windows\system32\sxr3xlm.dll [34304 2011-08-05] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us008 Langmon: C:\Windows\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\ux003 Langmon: C:\Windows\system32\ux003lm.dll [22528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.198\Installer\chrmstp.exe [2020-11-13] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\86.1.6938.199\Installer\chrmstp.exe [2020-12-02] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0115A7F3-84FD-46C2-AA51-F5622B5111BC} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
Task: {02444058-B2A1-4F85-80CB-F52505BCFDB1} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2118392 2020-11-12] (Avast Software s.r.o. -> AVAST Software)
Task: {0454F649-6F6E-4F13-BC8D-E7D90D829E10} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe
Task: {0538A58E-5892-46A6-818E-ECDDC336E659} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10157392 2016-08-24] (LENOVO -> Lenovo)
Task: {072174BC-B3CA-4C26-A0E7-63699E9A34FB} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [816960 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {076DC02D-87D5-4A47-BE19-C71D8713C2D6} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [876912 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {09D14DEE-39D3-472F-B1FC-692D8572F04C} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-11-11] (Adobe Inc. -> Adobe)
Task: {0B09D1EC-C701-4367-804A-1A67DE82F998} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1149336 2020-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {0B4FBEDC-1389-4312-9CBE-E2B43D02982D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [781680 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {1474895F-67BF-4026-9915-4148FAB2890D} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-79153872-2729706706-3879174829-1001 => C:\Users\matej\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [87848 2020-10-29] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {15FC9C1A-1430-4386-ABA6-BBB56A8D46D3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4010416 2020-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {1A698F8F-86D5-4AAF-9813-E7E9313F1306} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4010416 2020-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {251191F1-BA81-4348-A73A-202ECAB4ADF8} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {292369E4-9636-4CE7-9D91-6C6A4182CF54} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {2C973E05-60B4-4D1E-8B8B-D354624C85B1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-04] (Google Inc -> Google Inc.)
Task: {2CC20575-04D1-4ED1-946F-AC11D09ADEFC} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [590704 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {30F8D24B-251F-403F-A9D6-A27915C55578} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {32F1696C-D960-4DC6-866C-27BCC62356CF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648048 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {34B68759-0AA0-4FDB-86D3-744E663EDEDD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23054216 2020-12-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {3B9CCC5B-AD24-4D28-B122-EBAE90038CFC} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2118392 2020-11-12] (Avast Software s.r.o. -> AVAST Software)
Task: {3D18372B-7DE9-436B-AF83-E607728AD3CE} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849264 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {40054AB4-0DDE-4C22-84CC-944E57CD00E6} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [62280 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {414DA997-C098-4C3D-90E7-10FC00B24C8F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849264 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {48BF9526-3E0B-4E83-804D-8DD89CA51BF8} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {51E6EE2D-7246-4884-83E5-3B3CAEA0A227} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3728752 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {527E05B5-5BD2-44BC-AC8C-D0002E56906D} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary <==== ATTENTION
Task: {573F66B2-83A2-402D-B976-083468927B85} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321296 2016-08-24] (LENOVO -> Lenovo)
Task: {57ABD3FC-6A70-4E2D-B997-81D005175735} - System32\Tasks\{40262EE6-33FA-4F65-A6A1-1E83A2F42CA6} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe" -c uplay://uninstall/895
Task: {6108255C-3DC6-453D-923F-27DB511B3299} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\6b26b29d-a59d-4fff-be6f-93b25d8850d6 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {645C308E-C9DC-4571-BC96-E3BF3305B6AB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2020-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {66FDA840-9DD1-4EE7-ADCD-AF8E110450C0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {68D44D6E-36A4-4FDB-97F3-5AD9E179B54A} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1741576 2016-03-17] (Intel(R) Software -> Intel Corporation)
Task: {6BB995B2-07EE-4636-935C-80C5E326EA06} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_453_pepper.exe [1498680 2020-11-11] (Adobe Inc. -> Adobe)
Task: {723E7302-2FBC-456D-B6F5-1004EE090E3E} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [876912 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {736DE262-07A8-472D-B8BD-357AD168C229} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\task.vbs"
Task: {81F79195-A05C-4B50-A495-617737515E4F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [781680 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {8415A8AC-9C9C-488E-96B3-4551FA3FED53} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [264016 2016-08-24] (LENOVO -> )
Task: {8B99B0CA-D0FE-4552-8D4D-99BE6158CE9E} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {8C1A309B-0440-4C80-9C39-AE8A97343E24} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {90872940-7373-4806-9812-E305E935FC18} - System32\Tasks\Nvbackend_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
Task: {909301A7-1698-4068-ACEE-2298392FCDB4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14554696 2018-11-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9C474C43-438C-45EA-BA11-E8D9D7303499} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\7cdf0a61-140b-4c6b-846b-27e0e6038982 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {9DDB179D-DB47-4110-A304-8CCDC0CF9B77} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {A6A3FBAE-4C28-4F9F-BC88-C4C406AB739F} - System32\Tasks\App Explorer => C:\Users\matej\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe <==== ATTENTION
Task: {A8C4487B-1697-44BF-9E53-33907100B7A8} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
Task: {AAC00DAB-E10E-4FAA-860C-C3A40DA09B1C} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10157392 2016-08-24] (LENOVO -> Lenovo)
Task: {ADF52FA0-1ACD-4542-B5B2-4911C856D2A8} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [876912 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B523922E-9D0D-4EC0-9FDB-A4FD24CB2EEB} - System32\Tasks\Nvbackend => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
Task: {BECE6F47-8835-4035-87D3-4E1D55B3CD9C} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.4.16.0\ScheduleEventAction.exe [24408 2020-11-05] (Lenovo -> Lenovo Group Ltd.)
Task: {BF9FEFA1-A72A-49EF-8AF8-98110C197649} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-12-02] (Avast Software s.r.o. -> Avast Software)
Task: {BFDCBA1E-03B1-45A4-8363-BC0134CA4328} - System32\Tasks\Sken => D:\Users\matej\Downloads\ScanAssistant_1.05.07.exe
Task: {C0CFAFBC-C848-4D8C-B83D-E4AD7CAD01AF} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\fd223c33-2d22-4300-93dc-d3cd98a26034 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {D502E810-99D0-46E1-BAF2-36F2302EB5B4} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [144312 2020-09-15] (Lenovo -> Lenovo Group Ltd.)
Task: {D8C501F9-E63A-4777-B72A-7C8BD71D6F3E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23054216 2020-12-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {DADDE2A8-D0DB-4169-8B0E-456885A84428} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {DC6EF314-7AAF-491F-B313-B761A6BED7DF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-04] (Google Inc -> Google Inc.)
Task: {DDC69D47-27C9-44EE-BAF5-C10488598447} - System32\Tasks\Opera scheduled assistant Autoupdate 1582740167 => C:\Program Files (x86)\Opera\launcher.exe [1721368 2020-11-25] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files (x86)\Opera\assistant" $(Arg0)
Task: {E3C07D20-2F82-4121-B349-CE68ED466BE7} - System32\Tasks\PPI Update => C:\WINDOWS\explorer.exe "http://windowsdefender.site/download/do ... hp?mn=9996" <==== ATTENTION
Task: {EB4BD5DA-43C9-472A-AC16-ABEA87B1935A} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4617832 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
Task: {EDCC8B55-B8DB-4A95-AC75-ACF6B830E33A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2020-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {F5B3EF9B-F167-4E4A-B921-497D8ABE4AFC} - System32\Tasks\Opera scheduled Autoupdate 1479922982 => C:\Program Files (x86)\Opera\launcher.exe [1721368 2020-11-25] (Opera Software AS -> Opera Software)
Task: {FC8FC676-1C52-4440-830F-6798DFA7C0D6} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\5290a031-d06a-41cd-bab7-7464da7b9ba2 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {FF33444C-5851-4EF5-8236-6240277E6F0B} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [876912 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 213.46.172.38 213.46.172.39
Tcpip\..\Interfaces\{1CD3DEDE-BAC9-440F-BAC1-C11D2722D93B}: [DhcpNameServer] 192.168.90.236
Tcpip\..\Interfaces\{663d150c-a514-40c5-bcd4-6a5309b15a02}: [DhcpNameServer] 213.46.172.38 213.46.172.39
Tcpip\..\Interfaces\{8F339DD8-9CCD-45A9-916D-99DC28D54A7A}: [DhcpNameServer] 192.168.90.236
Tcpip\..\Interfaces\{e2f0caf1-4a1e-483f-8c7e-f31244a52cef}: [DhcpNameServer] 172.168.137.2
Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\matej\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-04]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-08-21]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\Office16\NPSPWRAP.DLL [No File]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> D:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2018-01-08] (Software602 a.s. -> Software602 a.s.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-12-02] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-12-02] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2019-08-21] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR Profile: C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default [2020-12-01]
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com","hxxp://www.msn.com/?pc=AV01","hxxps://www.google.com/?trackid=sp-006"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-04]
CHR Extension: (DocHub - Edit and Sign PDF Documents) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\adgncicbhbjfpijkdmbijninnhnmiblj [2018-02-04]
CHR Extension: (Dokumenty) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-04]
CHR Extension: (Disk Google) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (Seznam doplněk - Email) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-04-27]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2019-12-24]
CHR Extension: (YouTube) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-02-04]
CHR Extension: (Adobe Acrobat) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-10-17]
CHR Extension: (Tabulky) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-04]
CHR Extension: (Video Downloader PLUS) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2020-08-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-26]
CHR Extension: (Hola Free VPN Proxy Unblocker - Best VPN) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2020-12-01]
CHR Extension: (Google Kalendář) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2020-06-15]
CHR Extension: (Google Keep – poznámky a seznamy) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2020-11-26]
CHR Extension: (Cisco Webex Extension) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2020-07-26]
CHR Extension: (Grammarly for Chrome) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2020-11-29]
CHR Extension: (DotVPN — a Better way to VPN) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpiecbcckbofpmkkkdibbllpinceiihk [2020-04-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-25]
CHR Extension: (Gmail) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24]
CHR Extension: (Chrome Media Router) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-23]
CHR Extension: (RSS Feed Reader) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2020-10-23]
CHR HKU\S-1-5-21-79153872-2729706706-3879174829-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
Opera:
=======
OPR Notifications: hxxps://calendar.google.com; hxxps://cs.aviarydecor.com; hxxps://cs.soringpcrepair.com; hxxps://www.agatinsvet.cz; hxxps://www.cestujlevne.com; hxxps://www.instagram.com; hxxps://www.mesec.cz; hxxps://www.similarweb.com; hxxps://www.slevomat.cz
OPR Extension: (Tipli do prohlížeče) - C:\Users\matej\AppData\Roaming\Opera Software\Opera Stable\Extensions\dbnfnbehhjknomdbfhcobpgpphnlnikp [2020-11-26]
OPR Extension: (SurfEasy VPN - Security, Privacy, Unblock) - C:\Users\matej\AppData\Roaming\Opera Software\Opera Stable\Extensions\ebpielhlnnpkiddeeacoephkilopgblc [2018-10-23]
OPR Extension: (Rich Hints Agent) - C:\Users\matej\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2020-10-23]
OPR Extension: (Install Chrome Extensions) - C:\Users\matej\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2020-02-23]
OPR Extension: (Smart RSS) - C:\Users\matej\AppData\Roaming\Opera Software\Opera Stable\Extensions\nncgmpcdlilgbepbfpeidpjlcdfhmcfp [2018-02-03]
OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\matej\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2020-11-18]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s. -> Software602 a.s.)
S4 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [10316304 2019-09-23] (Acronis International GmbH -> )
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1254784 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-11-11] (Adobe Inc. -> Adobe)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6399680 2020-04-28] (Acronis International GmbH -> )
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8454552 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [365648 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [3096160 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\86.1.6938.199\elevation_service.exe [1348304 2020-11-12] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [58048 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R2 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper 6.2.0\ABService.exe [898216 2020-11-17] (AOMEI International Network Limited -> AOMEI International Network Limited)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed]
S2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [688992 2017-02-27] (LENOVO -> Lenovo)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9105800 2020-11-23] (Microsoft Corporation -> Microsoft Corporation)
R2 connect2hotspot; C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe [100680 2017-02-08] (Lenovo -> Lenovo)
S3 Disc Soft Lite Bus Service; D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291392 2017-08-17] (Disc Soft Ltd -> Disc Soft Ltd)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [197120 2017-07-13] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1155512 2015-07-30] (LENOVO -> Lenovo)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 ktupdaterservice; C:\Program Files (x86)\Kerio\UpdaterService\ktupdaterservice.exe [1095624 2020-11-30] (GFI Software Development Ltd. -> Kerio Technologies Inc.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.4.16.0\LenovoVantageService.exe [29520 2020-11-05] (Lenovo -> Lenovo Group Ltd.)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-08-24] (LENOVO -> Lenovo)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4808088 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1912488 2019-09-23] (Acronis International GmbH -> )
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [File not signed]
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] () [File not signed]
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-07-14] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-07-14] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R2 PDF24; D:\Program Files (x86)\PDF24\pdf24.exe [483976 2020-08-13] (Geek Software GmbH -> Geek Software GmbH)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [File not signed]
S4 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7395256 2019-09-23] (Acronis International GmbH -> )
R2 TeamViewer; D:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12720144 2020-11-18] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 Tib Mounter Service; C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe [7095824 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 wuauserv; C:\WINDOWS\system32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 wuauserv; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S2 ekrn; "C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe" [X]
S3 ekrnEpfw; "C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe" [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [31248 2020-12-02] (AOMEI International Network Limited -> )
S3 AndNetDiag; C:\WINDOWS\system32\DRIVERS\lgandnetdiag64.sys [30720 2015-01-26] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 ANDNetModem; C:\WINDOWS\system32\DRIVERS\lgandnetmodem64.sys [37376 2015-01-26] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37152 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206408 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [332368 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [247888 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [97352 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16816 2020-12-02] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42784 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [176744 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [521752 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109280 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84856 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851608 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [469832 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217336 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326416 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-11] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-11-23] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-11-23] (Disc Soft Ltd -> Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [154336 2020-04-25] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [106840 2020-04-25] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-12-21] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [188872 2020-04-25] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [115960 2020-04-25] (ESET, spol. s r.o. -> ESET)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [687768 2020-04-28] (Acronis International GmbH -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [390592 2020-04-28] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [115704 2015-07-15] (GENESYS LOGIC, INC. -> GenesysLogic)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [883256 2020-04-28] (Acronis International GmbH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [171968 2020-04-28] (Acronis International GmbH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [693768 2020-04-28] (Acronis International GmbH -> Acronis International GmbH)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [330176 2020-04-28] (Acronis International GmbH -> Acronis International GmbH)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [243472 2020-04-28] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 WinDriver1411; C:\WINDOWS\system32\drivers\windrvr1411.sys [271184 2019-12-06] (Jungo Connectivity Ltd. -> Jungo Connectivity)
S3 WinDriver6; C:\WINDOWS\system32\drivers\windrvr6.sys [254464 2019-07-19] (Jungo) [File not signed]
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
Error(1) reading file: "C:\WINDOWS\system32\StartupCheckLibrary.dll"
2020-12-05 11:11 - 2020-12-05 11:12 - 000042739 ____C C:\Users\matej\Desktop\FRST.txt
2020-12-05 11:10 - 2020-12-05 11:12 - 000000000 ____D C:\FRST
2020-12-05 11:10 - 2020-12-05 11:10 - 002288640 ____C (Farbar) C:\Users\matej\Desktop\FRST64.exe
2020-12-05 10:54 - 2020-12-05 10:54 - 000000000 ___DC C:\Users\matej\AppData\LocalLow\uTorrent
2020-12-04 16:27 - 2020-12-04 16:27 - 000656636 ____C C:\Users\matej\Desktop\Czech_Republic_Labour_Code_2006_am2011_en.pdf
2020-12-04 09:53 - 2020-12-04 09:14 - 133570560 ____C C:\Users\matej\Desktop\matej.ricanek@legalite.cz (1)(2).ost
2020-12-03 21:54 - 2020-12-01 15:34 - 2843010048 ____C C:\Users\matej\Desktop\backup_nejnovejsiLEGALIT0.pst
2020-12-03 21:53 - 2020-12-03 21:53 - 000000000 ____D C:\Users\matej\AppData\Roaming\CDTPL
2020-12-03 21:52 - 2020-12-03 21:53 - 000000000 ____D C:\Program Files\SysTools Outlook Attachment Extractor
2020-12-03 21:52 - 2020-12-03 21:52 - 000001056 _____ C:\Users\Public\Desktop\SysTools Outlook Attachment Extractor.lnk
2020-12-03 21:52 - 2020-12-03 21:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SysTools Outlook Attachment Extractor
2020-12-03 21:51 - 2020-12-03 21:51 - 014886672 ____C (SysTools Software Pvt Ltd. ) C:\Users\matej\Desktop\outlook-attachment-extractor-64-bit.exe
2020-12-03 09:18 - 2020-12-03 09:14 - 000194712 ____C C:\Users\matej\Desktop\zadost o odroceni jednani.pdf
2020-12-03 09:18 - 2020-12-03 09:10 - 000122105 ____C C:\Users\matej\Desktop\Potvrzeni_Legalite_IT.pdf
2020-12-02 16:22 - 2020-12-05 10:53 - 000000208 _____ C:\WINDOWS\SysWOW64\AbBakConfig.dat
2020-12-02 16:22 - 2020-12-05 10:53 - 000000150 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2020-12-02 16:22 - 2020-12-02 16:36 - 000001024 ____H C:\SYSTAG.BIN
2020-12-02 16:22 - 2020-12-02 16:22 - 000001291 _____ C:\Users\Public\Desktop\AOMEI Backupper.lnk
2020-12-02 16:22 - 2020-12-02 16:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Backupper
2020-12-02 16:22 - 2020-12-02 16:22 - 000000000 ____D C:\ProgramData\Aomei
2020-12-02 16:21 - 2020-12-02 19:30 - 000000000 ____D C:\ProgramData\AomeiBR
2020-12-02 16:21 - 2020-12-02 16:22 - 000031248 _____ C:\WINDOWS\system32\amwrtdrv.sys
2020-12-02 16:21 - 2020-12-02 16:21 - 000000000 ____D C:\Program Files (x86)\AOMEI
2020-12-02 16:21 - 2016-12-21 22:54 - 000051120 _____ C:\WINDOWS\system32\ambakdrv.sys
2020-12-02 16:21 - 2016-12-21 22:52 - 000171952 _____ C:\WINDOWS\system32\ammntdrv.sys
2020-12-02 13:54 - 2020-12-02 13:54 - 000003856 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-12-02 13:54 - 2020-12-02 13:54 - 000003272 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-12-02 13:54 - 2020-12-02 13:54 - 000002577 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-12-02 13:54 - 2020-12-02 13:54 - 000002542 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-12-02 13:54 - 2020-12-02 13:54 - 000000000 ____D C:\Users\matej\AppData\Local\AVAST Software
2020-12-02 13:48 - 2020-12-02 13:48 - 000003510 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineUA
2020-12-02 13:48 - 2020-12-02 13:48 - 000003386 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineCore
2020-12-02 13:48 - 2020-12-02 13:48 - 000000000 ___HD C:\$AV_ASW
2020-12-02 13:48 - 2020-12-02 13:48 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2020-12-02 13:47 - 2020-12-02 13:47 - 000002167 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2020-12-02 13:47 - 2020-12-02 13:47 - 000002155 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-12-02 13:47 - 2020-12-02 13:47 - 000000000 ____D C:\Users\matej\AppData\Roaming\Avast Software
2020-12-02 13:46 - 2020-12-02 13:54 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-12-02 13:46 - 2020-12-02 13:46 - 000851608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000521752 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000469832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000339552 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-12-02 13:46 - 2020-12-02 13:46 - 000332368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000326416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000247888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000217336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000206408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000176744 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000109280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000097352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000084856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000042784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000037152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000016816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-12-02 13:46 - 2020-12-02 13:46 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-12-02 13:46 - 2020-12-02 13:46 - 000000000 ____D C:\Program Files\Avast Software
2020-12-02 13:45 - 2020-12-05 11:03 - 000000000 ____D C:\ProgramData\Avast Software
2020-12-02 09:06 - 2020-12-02 09:06 - 001317080 ____C (Google LLC) C:\Users\matej\Desktop\installbackupandsync.exe
2020-12-02 09:06 - 2020-12-02 09:06 - 000002080 _____ C:\Users\Public\Desktop\Google Slides.lnk
2020-12-02 09:06 - 2020-12-02 09:06 - 000002078 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2020-12-02 09:06 - 2020-12-02 09:06 - 000002068 _____ C:\Users\Public\Desktop\Google Docs.lnk
2020-12-02 09:06 - 2020-12-02 09:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-12-02 09:06 - 2020-12-02 09:06 - 000000000 ____D C:\Program Files\Google
2020-11-24 19:14 - 2020-11-24 19:14 - 000239157 ____C C:\Users\matej\Desktop\zadost o zapis.pdf
2020-11-24 16:32 - 2020-11-24 16:35 - 000000000 ___DC C:\Users\matej\Desktop\ÚKOL
2020-11-24 12:09 - 2020-11-24 12:09 - 013936128 ____C C:\Users\matej\Desktop\RE_ NonStop Consulting - Potential fraud case.msg
2020-11-24 12:08 - 2020-11-24 12:08 - 000071680 ____C C:\Users\matej\Desktop\NonStop Consulting - Potential fraud case.msg
2020-11-22 12:03 - 2020-11-22 12:03 - 000000000 ___DC C:\Users\matej\Desktop\Fota
2020-11-09 11:19 - 2020-11-09 11:19 - 000000000 ____D C:\Users\matej\AppData\Roaming\Teams
2020-11-08 14:37 - 2020-11-08 14:37 - 000000917 ____C C:\Users\matej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2020-11-05 16:57 - 2020-11-05 16:57 - 000000000 ___DC C:\Users\matej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-11-05 16:57 - 2020-11-05 16:57 - 000000000 ____D C:\Users\matej\AppData\Roaming\Zoom
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-05 11:13 - 2019-03-28 20:14 - 000000000 ___DC C:\Users\matej\AppData\Local\BitTorrentHelper
2020-12-05 11:12 - 2018-11-09 13:39 - 000000000 ___DC C:\Users\matej\AppData\Roaming\uTorrent
2020-12-05 11:09 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-12-05 11:07 - 2017-08-26 20:25 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-12-05 11:01 - 2020-09-19 09:44 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-12-05 11:01 - 2020-09-19 09:44 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-12-05 11:00 - 2019-08-29 18:18 - 001693850 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-05 11:00 - 2019-03-19 12:55 - 000718198 _____ C:\WINDOWS\system32\perfh005.dat
2020-12-05 11:00 - 2019-03-19 12:55 - 000145242 _____ C:\WINDOWS\system32\perfc005.dat
2020-12-05 11:00 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-12-05 10:55 - 2016-11-28 17:55 - 000000000 ___DC C:\ProgramData\NVIDIA
2020-12-05 10:54 - 2016-11-23 18:12 - 000000000 __RDC C:\Users\matej\OneDrive
2020-12-05 10:53 - 2019-08-29 18:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-05 10:53 - 2016-11-23 18:10 - 000000000 _SHDC C:\Users\matej\IntelGraphicsProfiles
2020-12-04 16:38 - 2019-08-29 18:12 - 000000000 ____D C:\Users\matej
2020-12-04 16:38 - 2019-03-19 05:37 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2020-12-04 16:38 - 2017-08-15 18:23 - 000000000 ___DC C:\ProgramData\firebird
2020-12-04 15:44 - 2017-12-16 14:32 - 000000000 ___DC C:\Users\matej\AppData\Local\Packages
2020-12-04 15:40 - 2019-08-30 18:42 - 000000000 ____D C:\Users\matej\AppData\Local\Deployment
2020-12-04 14:02 - 2016-11-23 18:59 - 000000000 ___DC C:\Users\matej\AppData\Roaming\TeamViewer
2020-12-04 13:28 - 2019-08-29 18:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-12-04 12:53 - 2019-08-29 18:20 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-04 12:53 - 2019-08-29 18:20 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-02 19:04 - 2020-05-11 18:22 - 000002368 ____C C:\Users\matej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-02 19:04 - 2019-08-29 18:20 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-79153872-2729706706-3879174829-1001
2020-12-02 13:46 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-12-02 12:03 - 2016-11-23 18:47 - 000000000 ___DC C:\Users\matej\AppData\Roaming\KeePass
2020-12-02 09:06 - 2018-02-04 08:41 - 000000000 ___DC C:\Users\matej\AppData\Local\Google
2020-12-02 08:27 - 2019-12-14 11:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kerio
2020-12-02 08:15 - 2020-10-18 10:30 - 000000024 _____ C:\WINDOWS\system32\perfdish001.dat
2020-12-01 17:28 - 2016-11-23 18:42 - 000000000 ____D C:\Program Files (x86)\Opera
2020-12-01 11:44 - 2019-08-29 18:20 - 000003970 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1479922982
2020-12-01 11:44 - 2017-07-03 16:42 - 000001162 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2020-11-30 19:06 - 2020-09-19 09:44 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-30 19:06 - 2020-09-19 09:44 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-11-25 17:17 - 2020-02-26 19:02 - 000004194 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1582740167
2020-11-24 19:50 - 2016-11-23 18:41 - 000000000 ___DC C:\Users\matej\AppData\Roaming\vlc
2020-11-24 10:44 - 2016-11-26 10:08 - 000689357 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2020-11-23 23:07 - 2019-08-29 18:20 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-11-22 12:03 - 2019-07-28 12:58 - 000000000 ___DC C:\Users\matej\Desktop\Nespor Kudy Do Pohody
2020-11-22 10:02 - 2018-08-12 19:12 - 000000000 ___DC C:\Users\matej\AppData\Local\D3DSCache
2020-11-21 22:17 - 2020-10-04 19:41 - 000000000 ____D C:\Users\matej\AppData\Roaming\WeMod
2020-11-21 16:32 - 2017-12-04 08:31 - 000000000 ___DC C:\Users\matej\AppData\Local\TogglDesktop
2020-11-18 16:22 - 2016-11-23 18:41 - 000000834 _____ C:\Users\Public\Desktop\VLC media player.lnk
2020-11-18 14:20 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-11-13 07:55 - 2018-02-04 08:41 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-11 12:38 - 2019-08-29 18:20 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-11-11 08:02 - 2019-08-29 18:20 - 000004618 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-11-11 08:02 - 2019-08-29 18:20 - 000004470 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2020-11-11 08:02 - 2019-03-19 05:56 - 000842296 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-11-11 08:02 - 2019-03-19 05:56 - 000175160 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-11-11 08:02 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-11-11 08:02 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-11-09 11:19 - 2020-05-15 10:17 - 000002371 ____C C:\Users\matej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2020-11-09 11:19 - 2020-03-25 11:43 - 000002363 ____C C:\Users\matej\Desktop\Microsoft Teams.lnk
2020-11-08 15:05 - 2018-01-28 15:26 - 000000000 ___DC C:\Users\matej\AppData\LocalLow\Mozilla
2020-11-08 14:37 - 2017-02-25 22:31 - 000000869 ____C C:\Users\matej\Desktop\Start Tor Browser.lnk
2020-11-06 21:30 - 2020-10-04 19:41 - 000002162 ____C C:\Users\matej\Desktop\WeMod.lnk
2020-11-06 21:30 - 2020-10-04 19:41 - 000000000 ___DC C:\Users\matej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WeMod
2020-11-06 21:30 - 2020-10-04 19:41 - 000000000 ____D C:\Users\matej\AppData\Local\WeMod
2020-11-06 21:30 - 2016-11-27 09:56 - 000000000 ___DC C:\Users\matej\AppData\Local\SquirrelTemp
2020-11-06 18:58 - 2016-12-06 19:58 - 000000000 ___DC C:\Users\matej\AppData\Local\Intel
2020-11-05 14:45 - 2020-04-07 13:28 - 000000000 ____D C:\Users\matej\AppData\Roaming\WhatsApp
2020-11-05 08:04 - 2019-09-13 10:02 - 000000000 ____D C:\Users\matej\AppData\Local\LenovoServiceBridge
==================== Files in the root of some directories ========
2018-09-29 08:39 - 2020-02-02 20:18 - 000001435 ____C () C:\Users\matej\AppData\Local\oobelibMkey.log
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
v poslední době je PC zpomaleno, projel jsem antivirem (Avast - našel nějaké viry), ale stále mi čas o času vyskočí pop-up okno, které zablokuje windows defender. Rovněž se mi odstranil ESET, který jsem původně používal, nejde znovu nainstalovat a musel jsem tedy provést instal Avastu.
Log:
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18384352 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-27] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [824240 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
HKLM\...\Run: [LenovoUtility] => C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe [911272 2017-07-27] (LENOVO -> Lenovo(beijing) Limited)
HKLM\...\Run: [egui] => "C:\Program Files\ESET\ESET NOD32 Antivirus\ecmdS.exe" /run /hide /proxy
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [849928 2016-09-19] (Dolby Laboratories, Inc. -> )
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [117344 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5035416 2019-09-23] (Acronis International GmbH -> )
HKLM-x32\...\Run: [PDFPrint] => D:\Program Files (x86)\PDF24\pdf24.exe [483976 2020-08-13] (Geek Software GmbH -> Geek Software GmbH)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files (x86)\Opera\assistant\browser_assistant.exe [3154456 2020-11-25] (Opera Software AS -> Opera Software)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\Run: [] => [X]
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [638592 2017-07-14] (OpenVPN Technologies, Inc. -> )
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\Run: [DAEMON Tools Lite Automount] => D:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-17] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\Run: [uTorrent] => C:\Users\matej\AppData\Roaming\uTorrent\uTorrent.exe [2113240 2020-11-22] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [6113328 2019-08-21] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50010064 2020-11-03] (Google LLC -> )
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_453_pepper.exe [1498680 2020-11-11] (Adobe Inc. -> Adobe)
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\MountPoints2: {86a5f194-ec9b-11e7-af4f-54ee759de4a1} - "E:\Setup.exe"
HKLM\...\Windows x64\Print Processors\hpcpp103: C:\Windows\System32\spool\prtprocs\x64\hpcpp103.dll [323584 2010-10-13] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [65096 2019-08-21] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\SHARP SS0E PCL6 Language Monitor: C:\Windows\system32\SS0ELMON.DLL [82432 2008-10-29] (Microsoft Windows Hardware Compatibility Publisher -> SHARP CORPORATION)
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\Windows\system32\602localmon.dll [54864 2018-05-31] (Software602 a.s. -> Windows (R) Win 7 DDK provider)
HKLM\...\Print\Monitors\sxr3x Langmon: C:\Windows\system32\sxr3xlm.dll [34304 2011-08-05] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us008 Langmon: C:\Windows\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\ux003 Langmon: C:\Windows\system32\ux003lm.dll [22528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.198\Installer\chrmstp.exe [2020-11-13] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\86.1.6938.199\Installer\chrmstp.exe [2020-12-02] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0115A7F3-84FD-46C2-AA51-F5622B5111BC} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
Task: {02444058-B2A1-4F85-80CB-F52505BCFDB1} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2118392 2020-11-12] (Avast Software s.r.o. -> AVAST Software)
Task: {0454F649-6F6E-4F13-BC8D-E7D90D829E10} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe
Task: {0538A58E-5892-46A6-818E-ECDDC336E659} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10157392 2016-08-24] (LENOVO -> Lenovo)
Task: {072174BC-B3CA-4C26-A0E7-63699E9A34FB} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [816960 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {076DC02D-87D5-4A47-BE19-C71D8713C2D6} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [876912 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {09D14DEE-39D3-472F-B1FC-692D8572F04C} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-11-11] (Adobe Inc. -> Adobe)
Task: {0B09D1EC-C701-4367-804A-1A67DE82F998} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1149336 2020-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {0B4FBEDC-1389-4312-9CBE-E2B43D02982D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [781680 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {1474895F-67BF-4026-9915-4148FAB2890D} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-79153872-2729706706-3879174829-1001 => C:\Users\matej\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [87848 2020-10-29] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {15FC9C1A-1430-4386-ABA6-BBB56A8D46D3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4010416 2020-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {1A698F8F-86D5-4AAF-9813-E7E9313F1306} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4010416 2020-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {251191F1-BA81-4348-A73A-202ECAB4ADF8} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {292369E4-9636-4CE7-9D91-6C6A4182CF54} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {2C973E05-60B4-4D1E-8B8B-D354624C85B1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-04] (Google Inc -> Google Inc.)
Task: {2CC20575-04D1-4ED1-946F-AC11D09ADEFC} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [590704 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {30F8D24B-251F-403F-A9D6-A27915C55578} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {32F1696C-D960-4DC6-866C-27BCC62356CF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648048 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {34B68759-0AA0-4FDB-86D3-744E663EDEDD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23054216 2020-12-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {3B9CCC5B-AD24-4D28-B122-EBAE90038CFC} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2118392 2020-11-12] (Avast Software s.r.o. -> AVAST Software)
Task: {3D18372B-7DE9-436B-AF83-E607728AD3CE} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849264 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {40054AB4-0DDE-4C22-84CC-944E57CD00E6} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [62280 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {414DA997-C098-4C3D-90E7-10FC00B24C8F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849264 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {48BF9526-3E0B-4E83-804D-8DD89CA51BF8} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {51E6EE2D-7246-4884-83E5-3B3CAEA0A227} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3728752 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {527E05B5-5BD2-44BC-AC8C-D0002E56906D} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary <==== ATTENTION
Task: {573F66B2-83A2-402D-B976-083468927B85} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321296 2016-08-24] (LENOVO -> Lenovo)
Task: {57ABD3FC-6A70-4E2D-B997-81D005175735} - System32\Tasks\{40262EE6-33FA-4F65-A6A1-1E83A2F42CA6} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe" -c uplay://uninstall/895
Task: {6108255C-3DC6-453D-923F-27DB511B3299} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\6b26b29d-a59d-4fff-be6f-93b25d8850d6 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {645C308E-C9DC-4571-BC96-E3BF3305B6AB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2020-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {66FDA840-9DD1-4EE7-ADCD-AF8E110450C0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {68D44D6E-36A4-4FDB-97F3-5AD9E179B54A} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1741576 2016-03-17] (Intel(R) Software -> Intel Corporation)
Task: {6BB995B2-07EE-4636-935C-80C5E326EA06} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_453_pepper.exe [1498680 2020-11-11] (Adobe Inc. -> Adobe)
Task: {723E7302-2FBC-456D-B6F5-1004EE090E3E} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [876912 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {736DE262-07A8-472D-B8BD-357AD168C229} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\task.vbs"
Task: {81F79195-A05C-4B50-A495-617737515E4F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [781680 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {8415A8AC-9C9C-488E-96B3-4551FA3FED53} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [264016 2016-08-24] (LENOVO -> )
Task: {8B99B0CA-D0FE-4552-8D4D-99BE6158CE9E} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {8C1A309B-0440-4C80-9C39-AE8A97343E24} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {90872940-7373-4806-9812-E305E935FC18} - System32\Tasks\Nvbackend_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
Task: {909301A7-1698-4068-ACEE-2298392FCDB4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14554696 2018-11-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9C474C43-438C-45EA-BA11-E8D9D7303499} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\7cdf0a61-140b-4c6b-846b-27e0e6038982 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {9DDB179D-DB47-4110-A304-8CCDC0CF9B77} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {A6A3FBAE-4C28-4F9F-BC88-C4C406AB739F} - System32\Tasks\App Explorer => C:\Users\matej\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe <==== ATTENTION
Task: {A8C4487B-1697-44BF-9E53-33907100B7A8} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
Task: {AAC00DAB-E10E-4FAA-860C-C3A40DA09B1C} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10157392 2016-08-24] (LENOVO -> Lenovo)
Task: {ADF52FA0-1ACD-4542-B5B2-4911C856D2A8} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [876912 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B523922E-9D0D-4EC0-9FDB-A4FD24CB2EEB} - System32\Tasks\Nvbackend => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
Task: {BECE6F47-8835-4035-87D3-4E1D55B3CD9C} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.4.16.0\ScheduleEventAction.exe [24408 2020-11-05] (Lenovo -> Lenovo Group Ltd.)
Task: {BF9FEFA1-A72A-49EF-8AF8-98110C197649} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-12-02] (Avast Software s.r.o. -> Avast Software)
Task: {BFDCBA1E-03B1-45A4-8363-BC0134CA4328} - System32\Tasks\Sken => D:\Users\matej\Downloads\ScanAssistant_1.05.07.exe
Task: {C0CFAFBC-C848-4D8C-B83D-E4AD7CAD01AF} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\fd223c33-2d22-4300-93dc-d3cd98a26034 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {D502E810-99D0-46E1-BAF2-36F2302EB5B4} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [144312 2020-09-15] (Lenovo -> Lenovo Group Ltd.)
Task: {D8C501F9-E63A-4777-B72A-7C8BD71D6F3E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23054216 2020-12-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {DADDE2A8-D0DB-4169-8B0E-456885A84428} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {DC6EF314-7AAF-491F-B313-B761A6BED7DF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-04] (Google Inc -> Google Inc.)
Task: {DDC69D47-27C9-44EE-BAF5-C10488598447} - System32\Tasks\Opera scheduled assistant Autoupdate 1582740167 => C:\Program Files (x86)\Opera\launcher.exe [1721368 2020-11-25] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files (x86)\Opera\assistant" $(Arg0)
Task: {E3C07D20-2F82-4121-B349-CE68ED466BE7} - System32\Tasks\PPI Update => C:\WINDOWS\explorer.exe "http://windowsdefender.site/download/do ... hp?mn=9996" <==== ATTENTION
Task: {EB4BD5DA-43C9-472A-AC16-ABEA87B1935A} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4617832 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
Task: {EDCC8B55-B8DB-4A95-AC75-ACF6B830E33A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2020-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {F5B3EF9B-F167-4E4A-B921-497D8ABE4AFC} - System32\Tasks\Opera scheduled Autoupdate 1479922982 => C:\Program Files (x86)\Opera\launcher.exe [1721368 2020-11-25] (Opera Software AS -> Opera Software)
Task: {FC8FC676-1C52-4440-830F-6798DFA7C0D6} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\5290a031-d06a-41cd-bab7-7464da7b9ba2 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {FF33444C-5851-4EF5-8236-6240277E6F0B} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [876912 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 213.46.172.38 213.46.172.39
Tcpip\..\Interfaces\{1CD3DEDE-BAC9-440F-BAC1-C11D2722D93B}: [DhcpNameServer] 192.168.90.236
Tcpip\..\Interfaces\{663d150c-a514-40c5-bcd4-6a5309b15a02}: [DhcpNameServer] 213.46.172.38 213.46.172.39
Tcpip\..\Interfaces\{8F339DD8-9CCD-45A9-916D-99DC28D54A7A}: [DhcpNameServer] 192.168.90.236
Tcpip\..\Interfaces\{e2f0caf1-4a1e-483f-8c7e-f31244a52cef}: [DhcpNameServer] 172.168.137.2
Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\matej\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-04]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-08-21]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\Office16\NPSPWRAP.DLL [No File]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> D:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2018-01-08] (Software602 a.s. -> Software602 a.s.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-12-02] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-12-02] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2019-08-21] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR Profile: C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default [2020-12-01]
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com","hxxp://www.msn.com/?pc=AV01","hxxps://www.google.com/?trackid=sp-006"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-04]
CHR Extension: (DocHub - Edit and Sign PDF Documents) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\adgncicbhbjfpijkdmbijninnhnmiblj [2018-02-04]
CHR Extension: (Dokumenty) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-04]
CHR Extension: (Disk Google) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (Seznam doplněk - Email) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-04-27]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2019-12-24]
CHR Extension: (YouTube) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-02-04]
CHR Extension: (Adobe Acrobat) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-10-17]
CHR Extension: (Tabulky) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-04]
CHR Extension: (Video Downloader PLUS) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2020-08-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-26]
CHR Extension: (Hola Free VPN Proxy Unblocker - Best VPN) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2020-12-01]
CHR Extension: (Google Kalendář) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2020-06-15]
CHR Extension: (Google Keep – poznámky a seznamy) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2020-11-26]
CHR Extension: (Cisco Webex Extension) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2020-07-26]
CHR Extension: (Grammarly for Chrome) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2020-11-29]
CHR Extension: (DotVPN — a Better way to VPN) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpiecbcckbofpmkkkdibbllpinceiihk [2020-04-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-25]
CHR Extension: (Gmail) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24]
CHR Extension: (Chrome Media Router) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-23]
CHR Extension: (RSS Feed Reader) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2020-10-23]
CHR HKU\S-1-5-21-79153872-2729706706-3879174829-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
Opera:
=======
OPR Notifications: hxxps://calendar.google.com; hxxps://cs.aviarydecor.com; hxxps://cs.soringpcrepair.com; hxxps://www.agatinsvet.cz; hxxps://www.cestujlevne.com; hxxps://www.instagram.com; hxxps://www.mesec.cz; hxxps://www.similarweb.com; hxxps://www.slevomat.cz
OPR Extension: (Tipli do prohlížeče) - C:\Users\matej\AppData\Roaming\Opera Software\Opera Stable\Extensions\dbnfnbehhjknomdbfhcobpgpphnlnikp [2020-11-26]
OPR Extension: (SurfEasy VPN - Security, Privacy, Unblock) - C:\Users\matej\AppData\Roaming\Opera Software\Opera Stable\Extensions\ebpielhlnnpkiddeeacoephkilopgblc [2018-10-23]
OPR Extension: (Rich Hints Agent) - C:\Users\matej\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2020-10-23]
OPR Extension: (Install Chrome Extensions) - C:\Users\matej\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2020-02-23]
OPR Extension: (Smart RSS) - C:\Users\matej\AppData\Roaming\Opera Software\Opera Stable\Extensions\nncgmpcdlilgbepbfpeidpjlcdfhmcfp [2018-02-03]
OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\matej\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2020-11-18]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s. -> Software602 a.s.)
S4 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [10316304 2019-09-23] (Acronis International GmbH -> )
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1254784 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-11-11] (Adobe Inc. -> Adobe)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6399680 2020-04-28] (Acronis International GmbH -> )
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8454552 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [365648 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [3096160 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\86.1.6938.199\elevation_service.exe [1348304 2020-11-12] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [58048 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R2 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper 6.2.0\ABService.exe [898216 2020-11-17] (AOMEI International Network Limited -> AOMEI International Network Limited)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed]
S2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [688992 2017-02-27] (LENOVO -> Lenovo)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9105800 2020-11-23] (Microsoft Corporation -> Microsoft Corporation)
R2 connect2hotspot; C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe [100680 2017-02-08] (Lenovo -> Lenovo)
S3 Disc Soft Lite Bus Service; D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291392 2017-08-17] (Disc Soft Ltd -> Disc Soft Ltd)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [197120 2017-07-13] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1155512 2015-07-30] (LENOVO -> Lenovo)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 ktupdaterservice; C:\Program Files (x86)\Kerio\UpdaterService\ktupdaterservice.exe [1095624 2020-11-30] (GFI Software Development Ltd. -> Kerio Technologies Inc.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.4.16.0\LenovoVantageService.exe [29520 2020-11-05] (Lenovo -> Lenovo Group Ltd.)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-08-24] (LENOVO -> Lenovo)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4808088 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1912488 2019-09-23] (Acronis International GmbH -> )
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [File not signed]
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] () [File not signed]
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-07-14] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-07-14] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R2 PDF24; D:\Program Files (x86)\PDF24\pdf24.exe [483976 2020-08-13] (Geek Software GmbH -> Geek Software GmbH)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [File not signed]
S4 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7395256 2019-09-23] (Acronis International GmbH -> )
R2 TeamViewer; D:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12720144 2020-11-18] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 Tib Mounter Service; C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe [7095824 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 wuauserv; C:\WINDOWS\system32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 wuauserv; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S2 ekrn; "C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe" [X]
S3 ekrnEpfw; "C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe" [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [31248 2020-12-02] (AOMEI International Network Limited -> )
S3 AndNetDiag; C:\WINDOWS\system32\DRIVERS\lgandnetdiag64.sys [30720 2015-01-26] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 ANDNetModem; C:\WINDOWS\system32\DRIVERS\lgandnetmodem64.sys [37376 2015-01-26] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37152 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206408 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [332368 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [247888 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [97352 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16816 2020-12-02] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42784 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [176744 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [521752 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109280 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84856 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851608 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [469832 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217336 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326416 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-11] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-11-23] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-11-23] (Disc Soft Ltd -> Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [154336 2020-04-25] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [106840 2020-04-25] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-12-21] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [188872 2020-04-25] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [115960 2020-04-25] (ESET, spol. s r.o. -> ESET)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [687768 2020-04-28] (Acronis International GmbH -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [390592 2020-04-28] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [115704 2015-07-15] (GENESYS LOGIC, INC. -> GenesysLogic)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [883256 2020-04-28] (Acronis International GmbH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [171968 2020-04-28] (Acronis International GmbH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [693768 2020-04-28] (Acronis International GmbH -> Acronis International GmbH)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [330176 2020-04-28] (Acronis International GmbH -> Acronis International GmbH)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [243472 2020-04-28] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 WinDriver1411; C:\WINDOWS\system32\drivers\windrvr1411.sys [271184 2019-12-06] (Jungo Connectivity Ltd. -> Jungo Connectivity)
S3 WinDriver6; C:\WINDOWS\system32\drivers\windrvr6.sys [254464 2019-07-19] (Jungo) [File not signed]
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
Error(1) reading file: "C:\WINDOWS\system32\StartupCheckLibrary.dll"
2020-12-05 11:11 - 2020-12-05 11:12 - 000042739 ____C C:\Users\matej\Desktop\FRST.txt
2020-12-05 11:10 - 2020-12-05 11:12 - 000000000 ____D C:\FRST
2020-12-05 11:10 - 2020-12-05 11:10 - 002288640 ____C (Farbar) C:\Users\matej\Desktop\FRST64.exe
2020-12-05 10:54 - 2020-12-05 10:54 - 000000000 ___DC C:\Users\matej\AppData\LocalLow\uTorrent
2020-12-04 16:27 - 2020-12-04 16:27 - 000656636 ____C C:\Users\matej\Desktop\Czech_Republic_Labour_Code_2006_am2011_en.pdf
2020-12-04 09:53 - 2020-12-04 09:14 - 133570560 ____C C:\Users\matej\Desktop\matej.ricanek@legalite.cz (1)(2).ost
2020-12-03 21:54 - 2020-12-01 15:34 - 2843010048 ____C C:\Users\matej\Desktop\backup_nejnovejsiLEGALIT0.pst
2020-12-03 21:53 - 2020-12-03 21:53 - 000000000 ____D C:\Users\matej\AppData\Roaming\CDTPL
2020-12-03 21:52 - 2020-12-03 21:53 - 000000000 ____D C:\Program Files\SysTools Outlook Attachment Extractor
2020-12-03 21:52 - 2020-12-03 21:52 - 000001056 _____ C:\Users\Public\Desktop\SysTools Outlook Attachment Extractor.lnk
2020-12-03 21:52 - 2020-12-03 21:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SysTools Outlook Attachment Extractor
2020-12-03 21:51 - 2020-12-03 21:51 - 014886672 ____C (SysTools Software Pvt Ltd. ) C:\Users\matej\Desktop\outlook-attachment-extractor-64-bit.exe
2020-12-03 09:18 - 2020-12-03 09:14 - 000194712 ____C C:\Users\matej\Desktop\zadost o odroceni jednani.pdf
2020-12-03 09:18 - 2020-12-03 09:10 - 000122105 ____C C:\Users\matej\Desktop\Potvrzeni_Legalite_IT.pdf
2020-12-02 16:22 - 2020-12-05 10:53 - 000000208 _____ C:\WINDOWS\SysWOW64\AbBakConfig.dat
2020-12-02 16:22 - 2020-12-05 10:53 - 000000150 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2020-12-02 16:22 - 2020-12-02 16:36 - 000001024 ____H C:\SYSTAG.BIN
2020-12-02 16:22 - 2020-12-02 16:22 - 000001291 _____ C:\Users\Public\Desktop\AOMEI Backupper.lnk
2020-12-02 16:22 - 2020-12-02 16:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Backupper
2020-12-02 16:22 - 2020-12-02 16:22 - 000000000 ____D C:\ProgramData\Aomei
2020-12-02 16:21 - 2020-12-02 19:30 - 000000000 ____D C:\ProgramData\AomeiBR
2020-12-02 16:21 - 2020-12-02 16:22 - 000031248 _____ C:\WINDOWS\system32\amwrtdrv.sys
2020-12-02 16:21 - 2020-12-02 16:21 - 000000000 ____D C:\Program Files (x86)\AOMEI
2020-12-02 16:21 - 2016-12-21 22:54 - 000051120 _____ C:\WINDOWS\system32\ambakdrv.sys
2020-12-02 16:21 - 2016-12-21 22:52 - 000171952 _____ C:\WINDOWS\system32\ammntdrv.sys
2020-12-02 13:54 - 2020-12-02 13:54 - 000003856 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-12-02 13:54 - 2020-12-02 13:54 - 000003272 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-12-02 13:54 - 2020-12-02 13:54 - 000002577 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-12-02 13:54 - 2020-12-02 13:54 - 000002542 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-12-02 13:54 - 2020-12-02 13:54 - 000000000 ____D C:\Users\matej\AppData\Local\AVAST Software
2020-12-02 13:48 - 2020-12-02 13:48 - 000003510 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineUA
2020-12-02 13:48 - 2020-12-02 13:48 - 000003386 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineCore
2020-12-02 13:48 - 2020-12-02 13:48 - 000000000 ___HD C:\$AV_ASW
2020-12-02 13:48 - 2020-12-02 13:48 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2020-12-02 13:47 - 2020-12-02 13:47 - 000002167 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2020-12-02 13:47 - 2020-12-02 13:47 - 000002155 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-12-02 13:47 - 2020-12-02 13:47 - 000000000 ____D C:\Users\matej\AppData\Roaming\Avast Software
2020-12-02 13:46 - 2020-12-02 13:54 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-12-02 13:46 - 2020-12-02 13:46 - 000851608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000521752 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000469832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000339552 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-12-02 13:46 - 2020-12-02 13:46 - 000332368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000326416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000247888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000217336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000206408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000176744 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000109280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000097352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000084856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000042784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000037152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000016816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-12-02 13:46 - 2020-12-02 13:46 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-12-02 13:46 - 2020-12-02 13:46 - 000000000 ____D C:\Program Files\Avast Software
2020-12-02 13:45 - 2020-12-05 11:03 - 000000000 ____D C:\ProgramData\Avast Software
2020-12-02 09:06 - 2020-12-02 09:06 - 001317080 ____C (Google LLC) C:\Users\matej\Desktop\installbackupandsync.exe
2020-12-02 09:06 - 2020-12-02 09:06 - 000002080 _____ C:\Users\Public\Desktop\Google Slides.lnk
2020-12-02 09:06 - 2020-12-02 09:06 - 000002078 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2020-12-02 09:06 - 2020-12-02 09:06 - 000002068 _____ C:\Users\Public\Desktop\Google Docs.lnk
2020-12-02 09:06 - 2020-12-02 09:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-12-02 09:06 - 2020-12-02 09:06 - 000000000 ____D C:\Program Files\Google
2020-11-24 19:14 - 2020-11-24 19:14 - 000239157 ____C C:\Users\matej\Desktop\zadost o zapis.pdf
2020-11-24 16:32 - 2020-11-24 16:35 - 000000000 ___DC C:\Users\matej\Desktop\ÚKOL
2020-11-24 12:09 - 2020-11-24 12:09 - 013936128 ____C C:\Users\matej\Desktop\RE_ NonStop Consulting - Potential fraud case.msg
2020-11-24 12:08 - 2020-11-24 12:08 - 000071680 ____C C:\Users\matej\Desktop\NonStop Consulting - Potential fraud case.msg
2020-11-22 12:03 - 2020-11-22 12:03 - 000000000 ___DC C:\Users\matej\Desktop\Fota
2020-11-09 11:19 - 2020-11-09 11:19 - 000000000 ____D C:\Users\matej\AppData\Roaming\Teams
2020-11-08 14:37 - 2020-11-08 14:37 - 000000917 ____C C:\Users\matej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2020-11-05 16:57 - 2020-11-05 16:57 - 000000000 ___DC C:\Users\matej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-11-05 16:57 - 2020-11-05 16:57 - 000000000 ____D C:\Users\matej\AppData\Roaming\Zoom
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-05 11:13 - 2019-03-28 20:14 - 000000000 ___DC C:\Users\matej\AppData\Local\BitTorrentHelper
2020-12-05 11:12 - 2018-11-09 13:39 - 000000000 ___DC C:\Users\matej\AppData\Roaming\uTorrent
2020-12-05 11:09 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-12-05 11:07 - 2017-08-26 20:25 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-12-05 11:01 - 2020-09-19 09:44 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-12-05 11:01 - 2020-09-19 09:44 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-12-05 11:00 - 2019-08-29 18:18 - 001693850 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-05 11:00 - 2019-03-19 12:55 - 000718198 _____ C:\WINDOWS\system32\perfh005.dat
2020-12-05 11:00 - 2019-03-19 12:55 - 000145242 _____ C:\WINDOWS\system32\perfc005.dat
2020-12-05 11:00 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-12-05 10:55 - 2016-11-28 17:55 - 000000000 ___DC C:\ProgramData\NVIDIA
2020-12-05 10:54 - 2016-11-23 18:12 - 000000000 __RDC C:\Users\matej\OneDrive
2020-12-05 10:53 - 2019-08-29 18:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-05 10:53 - 2016-11-23 18:10 - 000000000 _SHDC C:\Users\matej\IntelGraphicsProfiles
2020-12-04 16:38 - 2019-08-29 18:12 - 000000000 ____D C:\Users\matej
2020-12-04 16:38 - 2019-03-19 05:37 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2020-12-04 16:38 - 2017-08-15 18:23 - 000000000 ___DC C:\ProgramData\firebird
2020-12-04 15:44 - 2017-12-16 14:32 - 000000000 ___DC C:\Users\matej\AppData\Local\Packages
2020-12-04 15:40 - 2019-08-30 18:42 - 000000000 ____D C:\Users\matej\AppData\Local\Deployment
2020-12-04 14:02 - 2016-11-23 18:59 - 000000000 ___DC C:\Users\matej\AppData\Roaming\TeamViewer
2020-12-04 13:28 - 2019-08-29 18:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-12-04 12:53 - 2019-08-29 18:20 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-04 12:53 - 2019-08-29 18:20 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-02 19:04 - 2020-05-11 18:22 - 000002368 ____C C:\Users\matej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-02 19:04 - 2019-08-29 18:20 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-79153872-2729706706-3879174829-1001
2020-12-02 13:46 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-12-02 12:03 - 2016-11-23 18:47 - 000000000 ___DC C:\Users\matej\AppData\Roaming\KeePass
2020-12-02 09:06 - 2018-02-04 08:41 - 000000000 ___DC C:\Users\matej\AppData\Local\Google
2020-12-02 08:27 - 2019-12-14 11:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kerio
2020-12-02 08:15 - 2020-10-18 10:30 - 000000024 _____ C:\WINDOWS\system32\perfdish001.dat
2020-12-01 17:28 - 2016-11-23 18:42 - 000000000 ____D C:\Program Files (x86)\Opera
2020-12-01 11:44 - 2019-08-29 18:20 - 000003970 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1479922982
2020-12-01 11:44 - 2017-07-03 16:42 - 000001162 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2020-11-30 19:06 - 2020-09-19 09:44 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-30 19:06 - 2020-09-19 09:44 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-11-25 17:17 - 2020-02-26 19:02 - 000004194 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1582740167
2020-11-24 19:50 - 2016-11-23 18:41 - 000000000 ___DC C:\Users\matej\AppData\Roaming\vlc
2020-11-24 10:44 - 2016-11-26 10:08 - 000689357 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2020-11-23 23:07 - 2019-08-29 18:20 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-11-22 12:03 - 2019-07-28 12:58 - 000000000 ___DC C:\Users\matej\Desktop\Nespor Kudy Do Pohody
2020-11-22 10:02 - 2018-08-12 19:12 - 000000000 ___DC C:\Users\matej\AppData\Local\D3DSCache
2020-11-21 22:17 - 2020-10-04 19:41 - 000000000 ____D C:\Users\matej\AppData\Roaming\WeMod
2020-11-21 16:32 - 2017-12-04 08:31 - 000000000 ___DC C:\Users\matej\AppData\Local\TogglDesktop
2020-11-18 16:22 - 2016-11-23 18:41 - 000000834 _____ C:\Users\Public\Desktop\VLC media player.lnk
2020-11-18 14:20 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-11-13 07:55 - 2018-02-04 08:41 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-11 12:38 - 2019-08-29 18:20 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-11-11 08:02 - 2019-08-29 18:20 - 000004618 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-11-11 08:02 - 2019-08-29 18:20 - 000004470 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2020-11-11 08:02 - 2019-03-19 05:56 - 000842296 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-11-11 08:02 - 2019-03-19 05:56 - 000175160 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-11-11 08:02 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-11-11 08:02 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-11-09 11:19 - 2020-05-15 10:17 - 000002371 ____C C:\Users\matej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2020-11-09 11:19 - 2020-03-25 11:43 - 000002363 ____C C:\Users\matej\Desktop\Microsoft Teams.lnk
2020-11-08 15:05 - 2018-01-28 15:26 - 000000000 ___DC C:\Users\matej\AppData\LocalLow\Mozilla
2020-11-08 14:37 - 2017-02-25 22:31 - 000000869 ____C C:\Users\matej\Desktop\Start Tor Browser.lnk
2020-11-06 21:30 - 2020-10-04 19:41 - 000002162 ____C C:\Users\matej\Desktop\WeMod.lnk
2020-11-06 21:30 - 2020-10-04 19:41 - 000000000 ___DC C:\Users\matej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WeMod
2020-11-06 21:30 - 2020-10-04 19:41 - 000000000 ____D C:\Users\matej\AppData\Local\WeMod
2020-11-06 21:30 - 2016-11-27 09:56 - 000000000 ___DC C:\Users\matej\AppData\Local\SquirrelTemp
2020-11-06 18:58 - 2016-12-06 19:58 - 000000000 ___DC C:\Users\matej\AppData\Local\Intel
2020-11-05 14:45 - 2020-04-07 13:28 - 000000000 ____D C:\Users\matej\AppData\Roaming\WhatsApp
2020-11-05 08:04 - 2019-09-13 10:02 - 000000000 ____D C:\Users\matej\AppData\Local\LenovoServiceBridge
==================== Files in the root of some directories ========
2018-09-29 08:39 - 2020-02-02 20:18 - 000001435 ____C () C:\Users\matej\AppData\Local\oobelibMkey.log
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================