Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-01-2021
Ran by Lidka (administrator) on LIDKA-PC (Hewlett-Packard HP ProBook 6560b) (17-01-2021 00:23:28)
Running from C:\Users\Lidka\Downloads
Loaded Profiles: Lidka
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Andrea Electronics Corporation) [File not signed] C:\Program Files\IDT\WDM\AESTSr64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <3>
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Broadcom Corporation) [File not signed] C:\Program Files\Broadcom\Broadcom 802.11\BCMWLTRY.EXE
(Broadcom Corporation) [File not signed] C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.EXE
(Broadcom Corporation) [File not signed] C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
(Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe
(Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe
(Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
(Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\stacsv64.exe
(IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\sttray64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Temp\OfficeClickToRun.exe.bak
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <8>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
(PDF Complete -> PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Samsung Electronics CO., LTD. -> ) C:\Windows\SysWOW64\spdsvc.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe [7032320 2016-03-02] (Broadcom Corporation) [File not signed]
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2000-01-01] (IDT, Inc.) [File not signed]
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2833504 2017-08-26] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [117352 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [NUSB3MON] => c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [729704 2018-08-10] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2481016 2020-12-02] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {1f05a039-2abb-11e7-bf1c-cc52afeb871e} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {9dffb4e6-5319-11eb-8f11-cc52afeb871e} - G:\autorun.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {bc645c11-4158-11e6-a9c7-ac81127a3ef3} - H:\Setup.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {c130a406-a503-11e8-88ef-e4115bf6b0fe} - H:\setup.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {fef1731c-d03e-11e6-b7bd-e4115bf6b0fe} - H:\HiSuiteDownLoader.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {fef17365-d03e-11e6-b7bd-e4115bf6b0fe} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-18\...\Run: [EEDSpeedLauncher] => C:\Windows\system32\eed_ec.dll [1857048 2016-09-28] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Windows x64\Print Processors\ssm4mPC: C:\Windows\System32\spool\prtprocs\x64\ssm4mpc.dll [52248 2016-09-28] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\HCR Client Port Monitor: C:\Windows\SYSTEM32\csrportmon.dll [73416 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
HKLM\...\Print\Monitors\PDFC: C:\Windows\SYSTEM32\pdfc_port.dll [20968 2011-05-06] (PDF Complete -> PDF Complete, Inc.)
HKLM\...\Print\Monitors\ssm4m Langmon: C:\Windows\SYSTEM32\ssm4mlm.dll [31248 2016-09-28] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-07] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\87.0.7480.89\Installer\chrmstp.exe [2021-01-14] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2020-06-29] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{5355DA8C-FE32-49b4-A567-A67535C86592}] -> C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BLEtokenCredentialProvider.dll [2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {01CCE1E8-64EC-4C05-889D-AB87BE6EB6C9} - System32\Tasks\{08E2DB35-1575-465E-978F-6A5475427A99} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {023AC150-6621-4E2E-BE60-FD00C78B962A} - System32\Tasks\{3B5BE5EE-48C4-4C14-A911-625C4FDA8FE1} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {02CA40F3-ADE9-4FCA-AADF-92180D9EB065} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6158768 2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {039CE4DB-DB58-41D1-8375-1BA2BED447D3} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
Task: {0578017F-EF8E-4CE4-81D4-82D94162375C} - System32\Tasks\{CA3AF45C-D39B-4D07-8C8E-C6C417F9BB08} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {07D895C7-3E70-434E-A4F9-0DF776DF3F71} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4621920 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
Task: {0BE820D4-A596-4D15-A191-9C34C2D91DBC} - System32\Tasks\{7D875000-4162-43DC-ACA3-79BB57676532} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {1489D830-2972-4CB1-B30B-CB1BED46D4C1} - System32\Tasks\{B7E809B5-13E8-4506-A5D0-664BF4DD9CE4} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\Emergency 4\ModInstaller.exe" -d "C:\Program Files\Emergency 4"
Task: {19B48AA6-88D9-40BF-9970-3BE5C980378B} - System32\Tasks\{EC0AA2AA-4A16-40AE-802B-34C1C36832FC} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {19B49F9E-FC8C-4B0B-BB5E-A0F65957E30B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612232 2021-01-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {1B297EB7-5A83-46DA-8C12-CA4546AB80A7} - System32\Tasks\{9160F722-0D1F-45ED-A5D1-8D13FF85B3D5} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {1BF90836-80CE-4136-B198-ABC7FFACCECA} - System32\Tasks\{C6591B17-64C3-425A-90C1-233043D18302} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {2003EF0D-BFBF-4DF2-A7D9-D582329A32B3} - System32\Tasks\{6B27291E-9679-4302-9388-E701110699F4} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {268BBE35-8DF4-4691-81B2-E06B6BC344CB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612232 2021-01-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {26BA8D28-56F8-4C0B-B695-ABCB82593827} - System32\Tasks\{CC3D14AA-7D8C-4276-A890-694AE308D49D} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {2E189F6F-D736-4376-830F-7F04220D2431} - System32\Tasks\{45F7A97D-F26E-4585-8BFC-C48DFFCC04A8} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {381D390A-0F21-4B16-9105-1DF214CC2F59} - System32\Tasks\{0948A692-5C95-4789-A9BE-B7D965AB7B97} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {3B979D04-D711-40FD-9BDA-6C68B1AA1D87} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [1338664 2017-02-24] (Samsung Electronics CO., LTD. -> )
Task: {3F31F837-D014-4973-9E84-346177486544} - System32\Tasks\{5213A586-AA3B-4D66-AA16-49FC6276EA68} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {43ECE3A0-5A07-4E33-A821-848844135F4C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {450137B1-FCA5-4FCC-9094-4C054D4EAA2F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {45C974BC-3F1E-41FA-8532-800049369DE0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-29] (Google Inc -> Google Inc.)
Task: {46059FA5-C096-463F-89B4-E99E24278D4A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2021-01-10] (Avast Software s.r.o. -> Avast Software)
Task: {5047C7D8-8017-4E95-BD20-806035C8B443} - System32\Tasks\{45456ACB-1DF6-4EFE-BFAE-330169182258} => C:\Windows\system32\pcalua.exe -a C:\Users\Lidka\Desktop\irfanview_lang_czech.exe -d C:\Users\Lidka\Desktop
Task: {53F8533A-9CE0-4171-9544-188BD3E4C732} - System32\Tasks\{2172B480-E77F-4682-949C-E32E022861A5} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {545BF6B9-0DEF-451E-81F1-F253E149995D} - System32\Tasks\{F47DEC21-A11C-4FAF-A32F-C444CEB8F930} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {57902410-F9D6-42FD-A79B-D493EDEE5C63} - System32\Tasks\{971BB844-CE74-4DFD-8454-2A53687CCF28} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {60243139-2739-4D4D-937D-D78475C7B455} - System32\Tasks\GoogleUpdateTaskMachineUA1d6a3092b23dd6c => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-29] (Google Inc -> Google Inc.)
Task: {65E5787A-333D-4A4E-A928-04099C298633} - System32\Tasks\{198AE8F3-2ED0-4808-9E9C-28D7929E7A21} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {68A7D876-F089-488B-8E01-BA3FF65014D0} - System32\Tasks\{891B5445-8F19-4C14-9592-C0F002974879} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {6C27EB2C-5FF5-4786-B443-9F782F28E0B5} - System32\Tasks\{E29C1DDA-3EC9-4821-8EA9-F2E6310875DE} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {70445CF7-9767-41AE-8538-1291E79099A2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {7A4C74BE-C321-4F51-A502-B364C0840BD2} - System32\Tasks\{EF54A693-5CDF-4A7C-89D3-8FA865CD1B5A} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {7EFC21C5-712C-45F0-A63F-0382D3C01896} - System32\Tasks\{54AF4C10-152D-491A-98F3-B88E33461AB6} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {81BC1EF2-D449-4BDA-ADB0-1B588C054C23} - System32\Tasks\Driver Booster SkipUAC (Lidka) => C:\Program Files (x86)\IObit\Driver Booster\5.2.0\DriverBooster.exe
Task: {81F2CD7F-FEF5-4223-8616-1D019C2AB75A} - System32\Tasks\{231D30C3-E7F9-4767-AF29-32EC8BB38816} => C:\Windows\system32\pcalua.exe -a C:\Users\Lidka\Desktop\setup.exe -d C:\Users\Lidka\Desktop
Task: {857ADB4C-6FBA-46E7-BB03-40256304A4B5} - System32\Tasks\{76AD06B1-43A8-4683-B9B1-338ADA4145CF} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {85B4D72D-9F8C-4B91-8C3D-D322B57B5C24} - System32\Tasks\{B6E8B7E6-93C0-4F05-9E04-008FF32DF248} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {85E618CA-5CC4-4B02-9C60-0DB0C95C3CE5} - System32\Tasks\{C02E121F-5B68-4DA9-8F2C-8C466E1BBF9A} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {86BE2032-0C1A-49AA-ACBA-079E096B12F9} - System32\Tasks\{89243F10-0F70-49C4-BD9C-EEBE75FB0EF2} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {8DC95AF6-D56A-4BE0-9DF6-ED2F4906E66D} - System32\Tasks\{7C512077-F09A-4134-88E3-47329269B550} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2871344 2020-12-07] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {948F12BC-14A5-47A3-AD28-6A75DABCD027} - System32\Tasks\{3DF9F667-8B0B-4FFD-8ED5-C2877B281066} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {95AC99AD-ECE6-4A4B-BDE3-CE296F7A8DD9} - System32\Tasks\{8D57D230-4E84-48D4-BAD9-77C2D49E312F} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2871344 2020-12-07] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {9873E8E3-F18F-4EF9-8543-92462DCD3A89} - System32\Tasks\{E4E33D5F-8F14-49CD-A1B2-48F137DC825A} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9A4C37BA-4E93-40C6-84CA-1269FCA8C88C} - System32\Tasks\{DD240587-A966-479C-B89D-354347209E81} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {A016A725-2306-4C1E-A2AD-A0BFAF956C06} - System32\Tasks\{440A4EC1-775D-4EC2-A96A-C6E63239C5D9} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {A14AB979-0E03-4C07-8B1F-0A1CB1E1965E} - System32\Tasks\{B2806B3A-3944-47F6-94C5-A48A24E35412} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {A310A4F9-E489-44E8-9C17-D896316DC142} - System32\Tasks\{DCA60458-AEBF-4156-A835-490E413DD838} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A6156C3B-7353-4748-B18D-B2DE2B09FA4B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {AD378446-0815-4A8B-8521-8AE37ECE332D} - System32\Tasks\{8306DA0A-3EF4-4F1E-822A-0494C991D1B2} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Acrobat Update Task" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\EPM Preload" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA1d6a3092b23dd6c" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-697796565-71972214-219725024-1000" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\{00F0EDE8-FEA5-42DC-8563-A93C2EF34D97}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\{08E2DB35-1575-465E-978F-6A5475427A99}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\{0948A692-5C95-4789-A9BE-B7D965AB7B97}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\{2C2B698E-7C58-4E5F-BDEC-EED681A0B052}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\{45F7A97D-F26E-4585-8BFC-C48DFFCC04A8}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\{5213A586-AA3B-4D66-AA16-49FC6276EA68}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\{54AF4C10-152D-491A-98F3-B88E33461AB6}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\{6B27291E-9679-4302-9388-E701110699F4}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(16): schtasks.exe -> /Change /TN "\{7C512077-F09A-4134-88E3-47329269B550}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(17): schtasks.exe -> /Change /TN "\{8D57D230-4E84-48D4-BAD9-77C2D49E312F}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(18): schtasks.exe -> /Change /TN "\{90CE91E2-A2F0-4575-B1A4-64B32B9D0E72}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(19): schtasks.exe -> /Change /TN "\{A8466D5F-2209-40C4-8FC8-5FDD69A0D724}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(20): schtasks.exe -> /Change /TN "\{C22BDC46-FBF3-4B19-AE19-71A5CAE0D3BA}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(21): schtasks.exe -> /Change /TN "\{CA3AF45C-D39B-4D07-8C8E-C6C417F9BB08}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(22): schtasks.exe -> /Change /TN "\{D8644986-5423-4474-973B-8E3CBF59BBBD}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(23): schtasks.exe -> /Change /TN "\{DCA60458-AEBF-4156-A835-490E413DD838}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(24): schtasks.exe -> /Change /TN "\{E29C1DDA-3EC9-4821-8EA9-F2E6310875DE}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(25): schtasks.exe -> /Change /TN "\{E4E33D5F-8F14-49CD-A1B2-48F137DC825A}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(26): schtasks.exe -> /Change /TN "\{E576414B-2ACA-4269-BD52-07DC7BDE5328}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(27): schtasks.exe -> /Change /TN "\{EDF091B3-E320-4C00-AC8F-72C98D51ACEC}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(28): schtasks.exe -> /Change /TN "\{F47DEC21-A11C-4FAF-A32F-C444CEB8F930}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(29): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {B782152E-113C-493A-8507-E57CAE359874} - System32\Tasks\{93FB9C59-42F5-47B3-8292-66F9358C5F81} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {B9892D1A-079E-4A1F-AC04-2992DA042DF8} - System32\Tasks\{F8C56C7F-F855-47C7-99CA-8953FE2F7EAF} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {BB760C54-FA43-4270-96C2-2CABE97D0609} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-13] (Adobe Inc. -> Adobe)
Task: {BD44B243-6A5A-454C-8A42-86059FFC27A4} - System32\Tasks\{E6F0D19E-4FD2-4131-8FED-DE718203CB17} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {BD656BA8-89AF-4925-8AD8-1323923E6C1A} - System32\Tasks\{B57FC8AF-5548-4878-9E76-B2920500AA02} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {C6D0B2F9-6064-43E7-8D81-88635878DCA5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6158768 2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {C7469FB8-484E-41E2-B1DD-CAFED2AA3305} - System32\Tasks\{613C3113-02D8-4887-9F6E-322084E2CA65} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {C85792B0-75BE-4175-9D31-A9DC08700DFD} - System32\Tasks\{90CE91E2-A2F0-4575-B1A4-64B32B9D0E72} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CA65FCDF-7B5F-4A98-A1DD-FB1FD312443B} - System32\Tasks\{D8644986-5423-4474-973B-8E3CBF59BBBD} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CCD661BA-1F13-43FB-A025-395134F2A1FC} - System32\Tasks\{EA83C162-F6BE-44D8-A27F-23B9F6F8A31B} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {D63E08C1-1D8E-432E-8738-5737673F772A} - System32\Tasks\{F2F4AF62-5825-4ED9-A53D-8C214EDEB728} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {DB2C4D17-09AC-4D56-88D3-3DAB9C3755DD} - System32\Tasks\{249B6BC6-7B88-4B39-A781-BEF1F0C9AF9C} => C:\Windows\system32\pcalua.exe -a C:\Users\Lidka\Desktop\iview451_plugins_setup.exe -d C:\Users\Lidka\Desktop
Task: {DCD69730-3D93-4FEF-857D-17371935A652} - System32\Tasks\{E576414B-2ACA-4269-BD52-07DC7BDE5328} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2871344 2020-12-07] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {DEB560BC-03A4-4F9E-B8D9-7120A8CCDFBE} - System32\Tasks\{00F0EDE8-FEA5-42DC-8563-A93C2EF34D97} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {DF7D47C8-E79A-49B2-9683-06FD935402C4} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2175216 2020-12-15] (Avast Software s.r.o. -> AVAST Software)
Task: {E1C90753-D242-4571-8841-ACE0DC28210F} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
Task: {E2041282-6E6A-48C1-8774-7130FDE00D12} - System32\Tasks\{2ADAFDBE-3D20-4631-A19A-B37F4172614A} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {E25C2015-74CF-4ADC-AE87-B51A7398CF7F} - System32\Tasks\{A8466D5F-2209-40C4-8FC8-5FDD69A0D724} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E2F03566-5553-4574-A749-7D069C2D67A9} - System32\Tasks\{EDF091B3-E320-4C00-AC8F-72C98D51ACEC} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E32D2C1D-AAA6-4B72-8CF3-CCCA33A27B4C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {E56B2611-AFEB-48C3-B010-A9617B931D42} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-13] (Adobe Inc. -> Adobe)
Task: {E57497A0-3126-4E43-8255-EAB1C75016DF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-29] (Google Inc -> Google Inc.)
Task: {E5D1824F-CA2F-49BE-9082-D7DAA700F3F0} - System32\Tasks\{FEE23EE2-CC68-42D7-86C4-2ED3CFEAA162} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {E8ED2C34-998E-4867-BE77-E69DDFA22EB1} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_130_pepper.exe [1286144 2017-09-13] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {E90A3F44-C6E6-40C8-A38C-339B0B1B8B6F} - System32\Tasks\{B7354949-1E23-4723-B4BB-0DF5237079A5} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {EAE411BE-9D4E-479B-80A7-FB6B13FBA2B1} - System32\Tasks\{FF4B0794-C7D5-4B9B-B13D-BD4551C3104B} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {EBE5B270-E08A-432E-89BE-35A86BDC9D1B} - System32\Tasks\{156F829F-7358-4324-B93A-02F460D65CEC} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {ECDFF97E-9680-4473-92B8-AB21888AE228} - System32\Tasks\{2C2B698E-7C58-4E5F-BDEC-EED681A0B052} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {EFF18D55-B0B3-42F0-BB9A-E013FAD84486} - System32\Tasks\{87DABCD7-FF80-4439-8E47-EF868143208D} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {F5EB69F5-453F-4574-8FF0-7E990C6300B1} - System32\Tasks\{FD93BDAC-BF2F-467A-B121-8EAC51A8B541} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {FA0B8A8F-F4E8-48DC-B5AE-A1FD9A4A5476} - System32\Tasks\{338BC1D6-715A-4245-AD5B-6CE9C7F28DDE} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {FD2254B5-B042-4809-B287-6A3E2AF4C6D4} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2175216 2020-12-15] (Avast Software s.r.o. -> AVAST Software)
Task: {FF6B7EB9-F36C-4AF9-925E-EDB7DFDB217F} - System32\Tasks\{C22BDC46-FBF3-4B19-AE19-71A5CAE0D3BA} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{256B2EB5-4318-4F07-A5C0-65D3302650C6}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{56EA4774-6B7A-47C6-8E0C-B08DF749C1A5}: [NameServer] 10.255.255.10,10.255.255.20
HKLM\System\...\Parameters\PersistentRoutes: [0.0.0.0,0.0.0.0,10.4.140.149,-1]
FireFox:
========
FF DefaultProfile: vncrck8y.default-1467548706931-1556435501334
FF ProfilePath: C:\Users\Lidka\AppData\Roaming\Mozilla\Firefox\Profiles\vncrck8y.default-1467548706931-1556435501334 [2021-01-17]
FF user.js: detected! => C:\Users\Lidka\AppData\Roaming\Mozilla\Firefox\Profiles\vncrck8y.default-1467548706931-1556435501334\user.js [2019-09-15]
FF Homepage: Mozilla\Firefox\Profiles\vncrck8y.default-1467548706931-1556435501334 ->
www.seznam.cz
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-13] (Adobe Inc. -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-12-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-13] (Adobe Inc. -> )
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-11-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-12-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-01-10] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-01-10] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default [2021-01-16]
CHR HomePage: Default -> hxxp://
www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://
www.seznam.cz/"
CHR Extension: (Prezentace) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Just Black) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2020-08-02]
CHR Extension: (Dokumenty) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-27]
CHR Extension: (YouTube) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-03]
CHR Extension: (Avast Passwords) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2020-02-11]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-11-09]
CHR Extension: (Tabulky) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2020-04-10]
CHR Extension: (Gmail) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24]
CHR Extension: (Chrome Media Router) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-18]
CHR Profile: C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\System Profile [2021-01-16]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-13] (Adobe Inc. -> Adobe)
R2 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2000-01-01] (Andrea Electronics Corporation) [File not signed]
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8477080 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [621728 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [351848 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\87.0.7480.89\elevation_service.exe [1409224 2020-12-15] (Avast Software s.r.o. -> AVAST Software)
R2 BtSwitcherService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe [64216 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11137416 2021-01-07] (Microsoft Corporation -> Microsoft Corporation)
R2 CSRBtAudioService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe [465624 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R2 CsrBtOBEXService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe [1041616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R2 CsrBtService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe [825032 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3570792 2018-08-10] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 HFGService; C:\Windows\System32\HFGService.dll [535552 2009-12-21] (Microsoft Windows Hardware Compatibility Publisher -> CSR, plc)
S3 hpqwmiex; C:\Users\Lidka\AppData\Roaming\Hewlett-Packard\hpqwmiex.exe [793088 2016-03-02] (Hewlett-Packard Company) [File not signed]
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1128952 2011-05-06] (PDF Complete -> PDF Complete Inc)
R2 Samsung Printer Dianostics Service; C:\Windows\SysWOW64\\spdsvc.exe [499000 2016-07-17] (Samsung Electronics CO., LTD. -> )
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [327680 2000-01-01] (IDT, Inc.) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2014-06-08] (Microsoft Windows -> Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe [5878272 2016-03-02] (Broadcom Corporation) [File not signed]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [36792 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [208672 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [332880 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [247888 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [97360 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42424 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [176384 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [522480 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2021-01-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [108928 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84496 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851256 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [468888 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [214808 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [44640 2016-03-03] (AVAST Software a.s. -> The OpenVPN Project)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [324904 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
S3 BthAudioHF; C:\Windows\System32\DRIVERS\BthAudioHF.sys [52224 2009-12-21] (Microsoft Windows Hardware Compatibility Publisher -> CSR, plc)
S3 csravrcp; C:\Windows\System32\DRIVERS\csravrcp.sys [26304 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 CsrBtPort; C:\Windows\System32\DRIVERS\CsrBtPort.sys [2784968 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrhfgcc; C:\Windows\System32\DRIVERS\csrhfgcc.sys [38080 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrpan; C:\Windows\System32\DRIVERS\csrpan.sys [39616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrserial; C:\Windows\System32\DRIVERS\csrserial.sys [61128 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrusb; C:\Windows\System32\Drivers\csrusb.sys [47296 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrusbfilter; C:\Windows\System32\Drivers\csrusbfilter.sys [23752 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csr_bthav; C:\Windows\System32\drivers\csrbthav.sys [99520 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-07-03] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-07-03] (Disc Soft Ltd -> Disc Soft Ltd)
S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [30424 2016-03-31] (Sony Mobile Communications AB -> Sony Mobile Communications)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-02-02] (Martin Malik - REALiX -> REALiX(tm))
S3 johci; C:\Windows\System32\DRIVERS\johci.sys [26208 2012-07-16] (JMicron Technology Corp. -> JMicron Technology Corp.)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [2595648 2018-02-02] (Sonix Technology CO., LTD -> Sonix Tech. Co., Ltd.)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [543744 2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [25608 2019-01-28] (AVG Technologies CZ, s.r.o. -> SlimWare Utilities, Inc.)
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB)
S3 btwampfl; \??\C:\Windows\system32\drivers\btwampfl.sys [X]
S3 btwaudio; system32\drivers\btwaudio.sys [X]
S3 btwavdt; system32\DRIVERS\btwavdt.sys [X]
S3 btwl2cap; system32\DRIVERS\btwl2cap.sys [X]
S3 btwrchid; system32\DRIVERS\btwrchid.sys [X]
S3 cpuz143; \??\C:\Windows\temp\cpuz143\cpuz143_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-01-16 23:20 - 2021-01-16 23:23 - 000072552 _____ C:\Users\Lidka\Downloads\Addition.txt
2021-01-16 23:15 - 2021-01-17 00:25 - 000046702 _____ C:\Users\Lidka\Downloads\FRST.txt
2021-01-16 23:13 - 2021-01-17 00:24 - 000000000 ____D C:\FRST
2021-01-16 23:11 - 2021-01-16 23:11 - 002294784 _____ (Farbar) C:\Users\Lidka\Downloads\FRST64.exe
2021-01-16 19:51 - 2021-01-16 19:51 - 000269459 _____ C:\Users\Lidka\Desktop\operacní system.pdf
2021-01-16 15:11 - 2021-01-16 15:11 - 000025054 _____ C:\Users\Lidka\Desktop\info.txt
2021-01-16 15:03 - 2021-01-16 15:04 - 000000000 ____D C:\rsit
2021-01-16 15:03 - 2021-01-16 15:04 - 000000000 ____D C:\Program Files\trend micro
2021-01-16 15:03 - 2021-01-16 15:03 - 001222144 _____ C:\Users\Lidka\Desktop\RSITx64.exe
2021-01-11 22:40 - 2021-01-13 00:25 - 000000000 ____D C:\Users\Lidka\AppData\Roaming\Wargaming.net
2021-01-11 22:40 - 2021-01-11 22:40 - 000001847 _____ C:\Users\Lidka\Desktop\Game Center.lnk
2021-01-11 22:40 - 2021-01-11 22:40 - 000001616 _____ C:\Users\Lidka\Desktop\World of Tanks EU.lnk
2021-01-11 22:40 - 2021-01-11 22:40 - 000000000 ____D C:\Users\Lidka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2021-01-11 22:40 - 2021-01-11 22:40 - 000000000 ____D C:\Games
2021-01-11 22:39 - 2021-01-11 22:39 - 000000000 ____D C:\ProgramData\Wargaming.net
2021-01-10 22:26 - 2021-01-10 22:26 - 004261376 _____ C:\Users\Lidka\Downloads\Kopie - ceník2019-1.xls
2021-01-10 19:46 - 2021-01-10 19:46 - 000000000 ____D C:\Windows\pss
2021-01-10 11:00 - 2021-01-10 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Codemasters
2021-01-10 11:00 - 2021-01-10 11:00 - 000000000 ____D C:\Program Files (x86)\Codemasters
2021-01-10 09:08 - 2021-01-14 22:18 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2021-01-10 09:08 - 2021-01-14 22:18 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-01-10 09:08 - 2021-01-14 22:18 - 000002386 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2021-01-10 09:08 - 2021-01-14 22:18 - 000002386 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2021-01-10 09:08 - 2021-01-10 09:08 - 000003150 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2021-01-10 09:07 - 2021-01-10 09:07 - 000003426 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineUA
2021-01-10 09:07 - 2021-01-10 09:07 - 000003298 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineCore
2021-01-10 09:07 - 2021-01-10 09:07 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2021-01-10 09:05 - 2021-01-10 09:05 - 000002031 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2021-01-10 09:05 - 2021-01-10 09:05 - 000002031 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2021-01-10 09:05 - 2021-01-10 09:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2021-01-10 09:04 - 2021-01-16 17:25 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2021-01-10 09:04 - 2021-01-10 19:36 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-01-10 09:03 - 2021-01-10 09:04 - 000468888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-01-10 09:03 - 2021-01-10 09:04 - 000324904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-01-10 09:03 - 2021-01-10 09:04 - 000214808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000851256 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000522480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000340576 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-01-10 09:03 - 2021-01-10 09:03 - 000332880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000247888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000208672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000176384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000108928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000097360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000084496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000042424 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000038152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000036792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2021-01-10 09:02 - 2021-01-10 09:02 - 000000000 ____D C:\Program Files\Avast Software
2020-12-24 18:48 - 2020-12-24 18:48 - 000001124 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Simt Simulator.lnk
2020-12-24 18:48 - 2020-12-24 18:48 - 000001112 _____ C:\Users\Public\Desktop\Simt Simulator.lnk
2020-12-24 18:48 - 2020-12-24 18:48 - 000001112 _____ C:\ProgramData\Desktop\Simt Simulator.lnk
2020-12-24 18:40 - 2020-12-26 21:20 - 000000000 ____D C:\Program Files (x86)\SimtSimulator_1-5-92
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-01-16 23:30 - 2017-10-25 23:14 - 000000000 ____D C:\Program Files\CCleaner
2021-01-16 21:52 - 2016-12-19 01:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-16 21:52 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2021-01-16 21:51 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2021-01-16 21:49 - 2016-12-19 00:27 - 000000000 ____D C:\Program Files\Microsoft Office
2021-01-16 18:05 - 2009-07-14 05:45 - 000034832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-01-16 18:05 - 2009-07-14 05:45 - 000034832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-01-16 17:25 - 2020-10-15 16:38 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA1d6a3092b23dd6c
2021-01-16 17:25 - 2019-04-09 10:26 - 000003000 _____ C:\Windows\system32\Tasks\{E576414B-2ACA-4269-BD52-07DC7BDE5328}
2021-01-16 17:25 - 2019-04-09 10:25 - 000003000 _____ C:\Windows\system32\Tasks\{8D57D230-4E84-48D4-BAD9-77C2D49E312F}
2021-01-16 17:25 - 2019-04-09 10:24 - 000003000 _____ C:\Windows\system32\Tasks\{7C512077-F09A-4134-88E3-47329269B550}
2021-01-16 17:25 - 2017-10-25 23:14 - 000003872 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-01-16 17:25 - 2017-10-25 23:14 - 000002792 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2021-01-16 17:25 - 2017-10-25 23:11 - 000002948 _____ C:\Windows\system32\Tasks\{54AF4C10-152D-491A-98F3-B88E33461AB6}
2021-01-16 17:25 - 2017-10-25 23:10 - 000002948 _____ C:\Windows\system32\Tasks\{F47DEC21-A11C-4FAF-A32F-C444CEB8F930}
2021-01-16 17:25 - 2017-10-25 23:10 - 000002948 _____ C:\Windows\system32\Tasks\{08E2DB35-1575-465E-978F-6A5475427A99}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{EDF091B3-E320-4C00-AC8F-72C98D51ACEC}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{E4E33D5F-8F14-49CD-A1B2-48F137DC825A}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{E29C1DDA-3EC9-4821-8EA9-F2E6310875DE}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{DCA60458-AEBF-4156-A835-490E413DD838}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{D8644986-5423-4474-973B-8E3CBF59BBBD}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{CA3AF45C-D39B-4D07-8C8E-C6C417F9BB08}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{C22BDC46-FBF3-4B19-AE19-71A5CAE0D3BA}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{A8466D5F-2209-40C4-8FC8-5FDD69A0D724}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{90CE91E2-A2F0-4575-B1A4-64B32B9D0E72}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{6B27291E-9679-4302-9388-E701110699F4}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{5213A586-AA3B-4D66-AA16-49FC6276EA68}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{45F7A97D-F26E-4585-8BFC-C48DFFCC04A8}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{2C2B698E-7C58-4E5F-BDEC-EED681A0B052}
2021-01-16 17:25 - 2017-09-20 16:20 - 000003438 _____ C:\Windows\system32\Tasks\EPM Preload
2021-01-16 17:25 - 2017-07-19 15:34 - 000002940 _____ C:\Windows\system32\Tasks\{0948A692-5C95-4789-A9BE-B7D965AB7B97}
2021-01-16 17:25 - 2017-06-30 11:30 - 000003176 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-697796565-71972214-219725024-1000
2021-01-16 17:25 - 2017-06-29 10:59 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-16 17:25 - 2016-08-31 22:11 - 000004478 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-01-16 17:25 - 2016-07-05 20:01 - 000002940 _____ C:\Windows\system32\Tasks\{00F0EDE8-FEA5-42DC-8563-A93C2EF34D97}
2021-01-16 14:53 - 2019-02-09 22:40 - 000000000 ____D C:\ProgramData\Mozilla
2021-01-16 14:52 - 2016-11-30 23:09 - 000000000 ____D C:\Users\Lidka\AppData\LocalLow\Mozilla
2021-01-16 10:31 - 2016-03-03 12:36 - 000000000 ____D C:\ProgramData\AVAST Software
2021-01-16 10:28 - 2016-03-02 23:32 - 000000000 ____D C:\ProgramData\PDFC
2021-01-16 10:28 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-01-13 13:15 - 2009-07-14 06:08 - 000032638 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2021-01-13 01:18 - 2016-08-23 09:41 - 000000000 ____D C:\Windows\system32\MRT
2021-01-13 00:55 - 2016-08-23 09:40 - 135062968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-01-11 22:41 - 2017-11-07 23:18 - 000000000 ____D C:\Users\Lidka\Desktop\Futsal Rudolfov a Teplice
2021-01-11 22:39 - 2016-11-29 22:46 - 000000000 ____D C:\Users\Lidka\Desktop\Filmy
2021-01-10 22:54 - 2019-09-01 16:11 - 004264448 _____ C:\Users\Lidka\Desktop\Kopie - ceník2019-1.xls
2021-01-10 19:58 - 2017-01-05 22:20 - 000000000 ____D C:\Users\Lidka\AppData\Local\ElevatedDiagnostics
2021-01-10 19:41 - 2019-02-26 09:15 - 000000000 ____D C:\Users\Lidka\AppData\Local\BitTorrentHelper
2021-01-10 19:40 - 2016-03-02 23:04 - 000000000 ____D C:\Users\Lidka
2021-01-10 19:38 - 2016-12-19 00:30 - 000000000 ____D C:\Windows\system32\Tasks\OfficeSoftwareProtectionPlatform
2021-01-10 19:38 - 2016-07-03 15:57 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite
2021-01-10 19:38 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\registration
2021-01-10 09:22 - 2017-10-22 22:09 - 000000000 ____D C:\Users\Lidka\AppData\Local\AVAST Software
2021-01-10 09:05 - 2016-03-03 12:38 - 000000000 ____D C:\Users\Lidka\AppData\Roaming\AVAST Software
2021-01-10 08:04 - 2018-06-29 18:44 - 000001088 _____ C:\Users\Public\Desktop\WinRAR.lnk
2021-01-10 08:04 - 2018-06-29 18:44 - 000001088 _____ C:\ProgramData\Desktop\WinRAR.lnk
2021-01-10 08:04 - 2016-07-09 18:22 - 000000000 ____D C:\Users\Lidka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-01-10 08:04 - 2016-07-09 18:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-01-10 08:04 - 2016-07-09 18:22 - 000000000 ____D C:\Program Files\WinRAR
2021-01-08 23:15 - 2016-12-30 21:04 - 000000000 ____D C:\Users\Lidka\Desktop\počítač 2.foto video
2021-01-08 17:00 - 2017-12-30 18:21 - 000000000 ____D C:\Program Files (x86)\Steam
2021-01-08 17:00 - 2016-07-05 17:18 - 000000000 ____D C:\Users\Lidka\AppData\Roaming\MPC-HC
2021-01-07 18:01 - 2017-06-29 11:00 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-07 17:39 - 2016-11-20 13:49 - 000000000 ____D C:\Program Files\Emergency 4
2021-01-07 17:33 - 2019-11-14 12:29 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-12-24 19:09 - 2019-10-19 13:26 - 000000000 ____D C:\Users\Lidka\AppData\Roaming\msihmdt
2020-12-24 18:49 - 2018-07-25 19:32 - 000000782 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-12-24 18:49 - 2018-07-25 19:32 - 000000782 _____ C:\ProgramData\Desktop\CCleaner.lnk
==================== Files in the root of some directories ========
2020-08-06 08:49 - 2020-08-06 08:49 - 000003584 _____ () C:\Users\Lidka\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-09-23 21:16 - 2019-01-18 17:49 - 000007597 _____ () C:\Users\Lidka\AppData\Local\Resmon.ResmonCfg
2017-01-27 23:25 - 2017-01-27 23:25 - 000000000 _____ () C:\Users\Lidka\AppData\Local\{F08CFAF0-8991-4314-ABD9-2534CE67257F}
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2021-01-12 23:05
==================== End of FRST.txt ========================