VIRY.CZ

Dobrý den, prosím o kontrolu, posledních 14 dní mám extrémně pomalý ntb..moc děkuji.

Logfile of random's system information tool 1.16 (written by random/random)
Run by michal.sir at 2018-03-30 19:53:45
Microsoft Windows 10 Home
System drive C: has 208 GB (30%) free of 697 GB
Total RAM: 3976 MB (16% free)
X64


====== Enumerating Processes ======

C:\WINDOWS\system32\lsass.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
C:\WINDOWS\system32\fontdrvhost.exe
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
c:\windows\system32\svchost.exe -k localservice -p -s bthserv
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
"C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\atiesrxx.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\igfxCUIService.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
c:\windows\system32\svchost.exe -k localservicenonetwork -p
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
"C:\Program Files (x86)\HDD Health\HDDHealthService.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe"
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
C:\Windows\system32\vcsFPService.exe
"C:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k networkservice -p -s TapiSrv
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s BITS
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_00000f64
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
"C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SEMgrSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DsSvc
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s FDResPub
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s HomeGroupProvider
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Browser
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
C:\WINDOWS\System32\dwm.exe
C:\WINDOWS\System32\fontdrvhost.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
c:\windows\system32\sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
"C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe" /Task
c:\windows\system32\taskhostw.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
C:\WINDOWS\system32\igfxTray.exe
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\ctfmon.exe
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Users\michal.sir\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
C:\Program Files\Intel\ConnectCenter\bin\CCFManager.exe
"C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe"
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
"C:\Program Files (x86)\HDD Health\hddhealth.exe"
"C:\Program Files (x86)\HP HD Webcam Driver\Monitor.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" /start
"C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /systemstart /autostart
"C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFTips.exe" /starttips
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1811.248.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\IObit\Driver Booster\5.2.0\Pub\PubMonitor.exe" /DB
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe" /SkipUac
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /showMiniGui
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\dashost.exe
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
c:\windows\system32\taskhostw.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18022.15110.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1803.711.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files\WindowsApps\Microsoft.BingSports_4.23.10792.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Sports.exe" -ServerName:AppexSports.AppXzwtj2v64xjxdpghj64che1ytdqzk7mqd.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s XblAuthManager
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\michal.sir\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\michal.sir\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\michal.sir\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=65.0.3325.181 --initial-client-data=0x1d4,0x1d8,0x1dc,0x1d0,0x1e0,0x7ffc3c76f1e8,0x7ffc3c76f1f8,0x7ffc3c76f208
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=115200 --on-initialized-event-handle=656 --parent-handle=660 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1560,9912447656669727669,13684522529241265472,131072 --gpu-preferences=KAAAAAAAAAAABwAAAQAAAAAAAAAAAGAAAQAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --gpu-vendor-id=0x1002 --gpu-device-id=0x6841 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=15.201.1301.0 --gpu-driver-date=8-19-2015 --gpu-secondary-vendor-ids=0x8086 --gpu-secondary-device-ids=0x0166 --amd-switchable --service-request-channel-token=8FAD5136392158F55514ADF0859C8187 --mojo-platform-channel-handle=1572 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9912447656669727669,13684522529241265472,131072 --service-pipe-token=E271E03CB4041CB80F665E8D22B6FD2E --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=E271E03CB4041CB80F665E8D22B6FD2E --renderer-client-id=3 --mojo-platform-channel-handle=3132 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9912447656669727669,13684522529241265472,131072 --service-pipe-token=96CDD49FB99121450200F5EAFD2F3105 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=96CDD49FB99121450200F5EAFD2F3105 --renderer-client-id=8 --mojo-platform-channel-handle=4976 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe241_ Global\UsGthrCtrlFltPipeMssGthrPipe241 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 756 760 768 8192 764
C:\WINDOWS\system32\AUDIODG.EXE 0x560
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s tiledatamodelsvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"C:\Users\michal.sir\Desktop\RSITx64 (1).exe"
"c:\program files (x86)\avira\antivirus\avscan.exe" /CFG="C:\ProgramData\Avira\Antivirus\TEMP\AVGUARD_5aa92f81\guard_slideup.avp"

====== Scheduled tasks folder ======

C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\tasks\Adobe Flash Player PPAPI Notifier - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_113_pepper.exe -check pepperplugin
C:\WINDOWS\system32\tasks\Adobe Flash Player Updater - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\system32\tasks\ASC11_PerformanceMonitor - C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe /Task
C:\WINDOWS\system32\tasks\ASC11_SkipUac_michal.sir - "C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe" /SkipUac
C:\WINDOWS\system32\tasks\ASC9_PerformanceMonitor - C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe /Task
C:\WINDOWS\system32\tasks\ASC9_SkipUac_michal.sir - "C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe" /SkipUac
C:\WINDOWS\system32\tasks\Avira_Antivirus_Systray - "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
C:\WINDOWS\system32\tasks\CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\Driver Booster Scheduler - C:\Program Files (x86)\IObit\Driver Booster\5.2.0\Scheduler.exe /scheduler
C:\WINDOWS\system32\tasks\Driver Booster SkipUAC (michal.sir) - C:\Program Files (x86)\IObit\Driver Booster\5.2.0\DriverBooster.exe /skipuac
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\IntelBootstrapCCDashExe - C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe /tasktrayonly
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task-S-1-5-21-2211805086-445478240-3207990257-1002 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\Synaptics TouchPad Enhancements - "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\system32\tasks\Uninstaller_SkipUac_michal.sir - "C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe" /UninstallExplorer
C:\WINDOWS\system32\tasks\{76504136-9524-4529-9925-A034EBAD2AC1} - C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Maxis\SimCity 4 Deluxe\EAUninstall.exe"
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\WwanSvc\NotificationTask - %SystemRoot%\System32\WiFiTask.exe wwan
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join - %SystemRoot%\System32\AutoWorkplace.exe join
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Recovery-Check - %SystemRoot%\System32\dsregcmd.exe /checkrecovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WaaSMedic\PerformRemediation - %systemroot%\System32\WaaSMedic.exe None
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr - %windir%\System32\UNP\UpdateNotificationMgr.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe -e
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\LicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\SMB\UninstallSMB1ClientTask - %windir%\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& %windir%\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Client"
C:\WINDOWS\system32\tasks\Microsoft\Windows\SMB\UninstallSMB1ServerTask - %windir%\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& %windir%\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Server"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemovalTools\MRT_HB - C:\WINDOWS\system32\MRT.exe /EHB /Q
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\PushToInstall\LoginCheck - %windir%\system32\sc.exe start pushtoinstall login
C:\WINDOWS\system32\tasks\Microsoft\Windows\PushToInstall\Registration - %windir%\system32\sc.exe start pushtoinstall registration
C:\WINDOWS\system32\tasks\Microsoft\Windows\Printing\EduPrintProv - %windir%\system32\eduprintprov.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Cellular - %windir%\system32\ProvTool.exe /turn 7 /source CellStateChangeTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5 /source LogonIdleTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Chkdsk\SyspartRepair - %windir%\system32\bcdboot.exe %windir% /sysrepair
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Automatic Updates - C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe /update SCHEDULEDTASK displaylevel=False
C:\WINDOWS\system32\tasks\Microsoft\Office\Office ClickToRun Service Monitor - C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe /WatchService
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /u
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\Product Configurator - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -task -source HPSA

=========Google Chrome=========

C:\Users\michal.sir\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod 0.2
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 1 Adobe Acrobat 15.1.0.6
Extension ennkphjdgehloodpbhlhldgbnhmacadg Settings 0.2
Extension flliilndjeohchalpbbcdekjklbdgfkk 2 Avira Browser Safety 1.7.0
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.73
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.7
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.3
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh Google Now 1.2.0.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 6518.129.0.1
Homepage: http://www.seznam.cz/
default_search_provider.search_url:
C:\Users\michal.sir\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk]
"Path"=


======Registry dump ======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2018-01-25 2478864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2018-02-13 229040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2018-02-13 2353944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-29 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-29 172968]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21 416320]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 630168]
"IntelConnectCenter"=C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [2015-03-16 90112]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2015-04-14 1703424]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 9"=C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [2018-01-16 3580176]
"Advanced SystemCare 11"=C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [2018-01-16 3580176]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HP HD Webcam Driver_Monitor"=C:\Program Files (x86)\HP HD Webcam Driver\monitor.exe [2012-07-26 303480]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2015-06-22 338000]
"IObit Malware Fighter"=C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [2018-01-22 5866768]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HDDHealth.lnk - C:\Program Files (x86)\HDD Health\hddhealth.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableFullTrustStartupTasks"=2
"EnableUIADesktopToggle"=0
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath" = "C:\Program Files (x86)\Google\Chrome\Application\65.0.3325.181\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

====== File associations ======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

====== List of files/folders created in the last 1 month ======

2018-03-30 19:52:52 ----D---- C:\rsit
2018-03-24 23:46:49 ----D---- C:\WINDOWS\LastGood
2018-03-24 15:52:08 ----HD---- C:\OneDriveTemp
2018-03-13 20:31:21 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-03-13 20:31:21 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2018-03-13 20:31:21 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-03-13 20:31:20 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2018-03-13 20:31:20 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2018-03-13 20:31:20 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-03-13 20:31:19 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-03-13 20:31:19 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-03-13 20:31:19 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2018-03-13 20:31:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-03-13 20:31:18 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2018-03-13 20:31:16 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-03-13 20:31:14 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-03-13 20:31:14 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-03-13 20:31:14 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-03-13 20:31:14 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2018-03-13 20:31:13 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-03-13 20:31:13 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-03-13 20:31:13 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2018-03-13 20:31:11 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-03-13 20:31:11 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-03-13 20:31:10 ----A---- C:\WINDOWS\system32\rdpudd.dll
2018-03-13 20:31:10 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2018-03-13 20:31:10 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2018-03-13 20:31:10 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2018-03-13 20:31:10 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2018-03-13 20:31:09 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2018-03-13 20:31:09 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2018-03-13 20:31:09 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-03-13 20:31:08 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2018-03-13 20:31:08 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2018-03-13 20:31:08 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2018-03-13 20:31:08 ----A---- C:\WINDOWS\system32\drivers\BasicRender.sys
2018-03-13 20:31:07 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-03-13 20:31:07 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-03-13 20:31:06 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-03-13 20:31:06 ----A---- C:\WINDOWS\system32\vbscript.dll
2018-03-13 20:31:05 ----A---- C:\WINDOWS\system32\samsrv.dll
2018-03-13 20:31:05 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2018-03-13 20:31:05 ----A---- C:\WINDOWS\system32\DbgModel.dll
2018-03-13 20:31:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-03-13 20:31:04 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2018-03-13 20:31:02 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2018-03-13 20:31:01 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-03-13 20:31:01 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-03-13 20:31:01 ----A---- C:\WINDOWS\system32\StorSvc.dll
2018-03-13 20:31:01 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-03-13 20:31:01 ----A---- C:\WINDOWS\system32\drivers\UcmUcsi.sys
2018-03-13 20:31:01 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2018-03-13 20:31:00 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-03-13 20:30:59 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-03-13 20:30:59 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-03-13 20:30:58 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-03-13 20:30:56 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-03-13 20:30:55 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-03-13 20:30:55 ----A---- C:\WINDOWS\system32\jscript.dll
2018-03-13 20:30:55 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-03-13 20:30:54 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2018-03-13 20:30:54 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-03-13 20:30:54 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-03-13 20:30:54 ----A---- C:\WINDOWS\system32\drivers\vmbus.sys
2018-03-13 20:30:54 ----A---- C:\WINDOWS\system32\drivers\netvsc.sys
2018-03-13 20:30:54 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2018-03-13 20:30:53 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2018-03-13 20:30:53 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2018-03-13 20:30:53 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2018-03-13 20:30:53 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2018-03-13 20:30:52 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-03-13 20:30:52 ----A---- C:\WINDOWS\system32\dbgeng.dll
2018-03-13 20:30:50 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-03-13 20:30:50 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2018-03-13 20:30:48 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-03-13 20:30:48 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2018-03-13 20:30:48 ----A---- C:\WINDOWS\system32\AcSpecfc.dll
2018-03-13 20:30:47 ----A---- C:\WINDOWS\system32\wininet.dll
2018-03-13 20:30:47 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-03-13 20:30:44 ----A---- C:\WINDOWS\system32\msIso.dll
2018-03-13 20:30:44 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2018-03-13 20:30:44 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2018-03-13 20:30:42 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-03-13 20:30:41 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-03-13 20:30:41 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2018-03-13 20:30:40 ----A---- C:\WINDOWS\system32\winmde.dll
2018-03-13 20:30:40 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-03-13 20:30:39 ----A---- C:\WINDOWS\system32\mfplat.dll
2018-03-13 20:30:39 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-03-13 20:30:32 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2018-03-13 20:30:30 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2018-03-13 20:30:30 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2018-03-13 20:30:30 ----A---- C:\WINDOWS\system32\pcalua.exe
2018-03-13 20:30:29 ----A---- C:\WINDOWS\system32\wintrust.dll
2018-03-13 20:30:29 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-03-13 20:30:28 ----A---- C:\WINDOWS\system32\winsrv.dll
2018-03-13 20:30:28 ----A---- C:\WINDOWS\system32\aitstatic.exe
2018-03-13 20:30:27 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2018-03-13 20:30:27 ----A---- C:\WINDOWS\system32\zipfldr.dll
2018-03-13 20:30:27 ----A---- C:\WINDOWS\system32\shell32.dll
2018-03-13 20:30:27 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2018-03-13 20:30:25 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-03-13 20:30:24 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-03-13 20:30:23 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2018-03-13 20:30:13 ----A---- C:\WINDOWS\system32\usoapi.dll
2018-03-13 20:30:13 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-03-13 20:30:13 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-03-13 20:30:13 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2018-03-13 20:30:13 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-03-13 20:30:13 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2018-03-13 20:30:12 ----A---- C:\WINDOWS\system32\usocore.dll
2018-03-13 20:29:51 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2018-03-13 20:29:51 ----A---- C:\WINDOWS\system32\winresume.exe
2018-03-13 20:29:51 ----A---- C:\WINDOWS\system32\winload.exe
2018-03-13 20:29:51 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2018-03-13 20:29:51 ----A---- C:\WINDOWS\system32\invagent.dll
2018-03-13 20:29:51 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-03-13 20:29:50 ----A---- C:\WINDOWS\system32\pcasvc.dll
2018-03-13 20:29:50 ----A---- C:\WINDOWS\system32\generaltel.dll
2018-03-13 20:29:50 ----A---- C:\WINDOWS\system32\devinv.dll
2018-03-13 20:29:50 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2018-03-13 20:29:50 ----A---- C:\WINDOWS\system32\dcntel.dll
2018-03-13 20:29:50 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2018-03-13 20:29:50 ----A---- C:\WINDOWS\system32\appraiser.dll
2018-03-13 20:29:50 ----A---- C:\WINDOWS\system32\aepic.dll
2018-03-13 20:29:50 ----A---- C:\WINDOWS\system32\aeinv.dll
2018-03-13 20:29:50 ----A---- C:\WINDOWS\system32\acmigration.dll
2018-03-13 20:29:47 ----A---- C:\WINDOWS\system32\Spectrum.exe
2018-03-13 20:29:46 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2018-03-13 20:29:46 ----A---- C:\WINDOWS\system32\cldapi.dll
2018-03-13 20:29:46 ----A---- C:\WINDOWS\system32\cdp.dll
2018-03-13 20:29:45 ----A---- C:\WINDOWS\system32\daxexec.dll
2018-03-13 20:29:44 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-03-13 20:29:44 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2018-03-13 20:29:44 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-03-13 20:29:43 ----A---- C:\WINDOWS\system32\Windows.Payments.dll
2018-03-13 20:29:42 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2018-03-13 20:29:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Payments.dll
2018-03-13 20:29:38 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2018-03-13 20:29:38 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-03-13 20:29:37 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2018-03-13 20:29:37 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2018-03-13 20:29:35 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2018-03-13 20:29:35 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2018-03-13 20:29:32 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2018-03-13 20:29:31 ----A---- C:\WINDOWS\system32\msi.dll
2018-03-13 20:29:30 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2018-03-13 20:29:29 ----A---- C:\WINDOWS\SYSWOW64\AuthFWSnapin.dll
2018-03-13 20:29:29 ----A---- C:\WINDOWS\system32\drivers\RfxVmt.sys
2018-03-13 20:29:29 ----A---- C:\WINDOWS\system32\AuthFWSnapin.dll
2018-03-13 20:29:28 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2018-03-13 20:29:27 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2018-03-13 20:29:27 ----A---- C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2018-03-13 20:29:26 ----A---- C:\WINDOWS\system32\TSpkg.dll
2018-03-13 20:29:26 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2018-03-13 20:29:25 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2018-03-13 20:29:23 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2018-03-13 20:29:23 ----A---- C:\WINDOWS\system32\msra.exe
2018-03-13 20:29:22 ----A---- C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll
2018-03-13 20:29:21 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountWAMExtension.dll
2018-03-13 20:29:21 ----A---- C:\WINDOWS\system32\updatecsp.dll
2018-03-13 20:29:21 ----A---- C:\WINDOWS\system32\offlinesam.dll
2018-03-13 20:29:21 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2018-03-13 20:29:20 ----A---- C:\WINDOWS\SYSWOW64\offlinesam.dll
2018-03-13 20:29:20 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2018-03-13 20:29:20 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2018-03-13 20:29:20 ----A---- C:\WINDOWS\system32\svf.dll
2018-03-13 20:29:20 ----A---- C:\WINDOWS\system32\HoloShellRuntime.dll
2018-03-13 20:29:20 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2018-03-13 20:29:20 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2018-03-13 20:29:20 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-03-13 20:29:20 ----A---- C:\WINDOWS\system32\drivers\isapnp.sys
2018-03-13 20:29:20 ----A---- C:\WINDOWS\system32\drivers\ataport.sys
2018-03-13 20:29:19 ----A---- C:\WINDOWS\system32\SpectrumSyncClient.dll
2018-03-13 20:29:19 ----A---- C:\WINDOWS\system32\HeadTrackerStorage.dll
2018-03-13 20:29:19 ----A---- C:\WINDOWS\system32\drivers\wcnfs.sys
2018-03-13 20:29:18 ----A---- C:\WINDOWS\SYSWOW64\msisip.dll
2018-03-13 20:29:18 ----A---- C:\WINDOWS\SYSWOW64\HoloShellRuntime.dll
2018-03-13 20:29:18 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2018-03-13 20:29:18 ----A---- C:\WINDOWS\system32\UsoClient.exe
2018-03-13 20:29:18 ----A---- C:\WINDOWS\system32\racpldlg.dll
2018-03-13 20:29:18 ----A---- C:\WINDOWS\system32\msisip.dll
2018-03-13 20:29:18 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2018-03-13 20:29:18 ----A---- C:\WINDOWS\system32\credssp.dll
2018-03-13 19:22:38 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerInstaller.exe

====== List of files/folders modified in the last 1 month ======

2018-03-30 19:54:10 ----D---- C:\WINDOWS\Temp
2018-03-30 19:53:57 ----D---- C:\WINDOWS\Prefetch
2018-03-30 19:53:46 ----D---- C:\Program Files\trend micro
2018-03-30 19:37:39 ----D---- C:\WINDOWS\system32\SleepStudy
2018-03-30 19:00:15 ----D---- C:\WINDOWS\system32\sru
2018-03-30 18:14:51 ----SHD---- C:\System Volume Information
2018-03-30 17:43:04 ----D---- C:\WINDOWS\system32\catroot2
2018-03-30 12:26:16 ----D---- C:\WINDOWS\INF
2018-03-30 12:26:16 ----D---- C:\WINDOWS\debug
2018-03-30 12:23:46 ----D---- C:\WINDOWS\system32\Tasks
2018-03-30 12:18:34 ----D---- C:\WINDOWS\AppReadiness
2018-03-30 12:17:52 ----D---- C:\WINDOWS\DeliveryOptimization
2018-03-30 12:17:43 ----HD---- C:\Program Files\WindowsApps
2018-03-30 11:56:08 ----D---- C:\WINDOWS\system32\LogFiles
2018-03-28 18:09:35 ----D---- C:\WINDOWS\system32\config
2018-03-27 21:47:33 ----D---- C:\ProgramData\ProductData
2018-03-27 21:31:04 ----RD---- C:\WINDOWS\Microsoft.NET
2018-03-25 19:10:18 ----D---- C:\WINDOWS\System32
2018-03-25 19:10:16 ----D---- C:\WINDOWS\SysWOW64
2018-03-25 19:09:38 ----D---- C:\WINDOWS\system32\drivers
2018-03-25 15:21:17 ----D---- C:\Windows
2018-03-21 22:20:27 ----D---- C:\WINDOWS\Logs
2018-03-20 23:43:46 ----D---- C:\Users\michal.sir\AppData\Roaming\vlc
2018-03-18 15:49:52 ----D---- C:\WINDOWS\system32\DriverStore
2018-03-18 15:49:47 ----D---- C:\WINDOWS\WinSxS
2018-03-18 15:45:49 ----D---- C:\WINDOWS\rescache
2018-03-17 11:53:23 ----SHDC---- C:\WINDOWS\Installer
2018-03-17 11:53:06 ----RD---- C:\WINDOWS\assembly
2018-03-17 11:52:58 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-03-17 11:51:15 ----AD---- C:\Program Files\Microsoft Office 15
2018-03-14 16:29:07 ----D---- C:\ProgramData\Microsoft Help
2018-03-14 16:23:09 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-03-14 16:21:12 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2018-03-14 16:17:36 ----D---- C:\ProgramData\PDFC
2018-03-14 16:14:07 ----D---- C:\WINDOWS\TextInput
2018-03-14 16:13:44 ----D---- C:\WINDOWS\system32\cs-CZ
2018-03-14 16:13:44 ----D---- C:\WINDOWS\system32\appraiser
2018-03-14 16:13:29 ----D---- C:\WINDOWS\ShellExperiences
2018-03-14 16:13:27 ----D---- C:\WINDOWS\apppatch
2018-03-14 16:13:17 ----D---- C:\WINDOWS\system32\Boot
2018-03-14 16:12:56 ----D---- C:\WINDOWS\system32\drivers\UMDF
2018-03-13 23:47:05 ----D---- C:\WINDOWS\CbsTemp
2018-03-13 21:11:03 ----D---- C:\WINDOWS\system32\MRT
2018-03-13 21:01:20 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2018-03-13 21:01:09 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-03-13 20:41:06 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2018-03-13 20:40:58 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-03-13 19:22:46 ----D---- C:\WINDOWS\system32\Macromed
2018-03-13 19:22:41 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2018-03-05 22:08:37 ----D---- C:\WINDOWS\SoftwareDistribution
2018-03-02 23:09:11 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe

File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed

====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R0 amdkmpfd;@oem2.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2013-12-13 36096]
R0 avdevprot;avdevprot; C:\WINDOWS\system32\DRIVERS\avdevprot.sys [2017-06-13 60920]
R0 hpdskflt;@oem44.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2017-12-10 40624]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-31 645952]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-09-29 56728]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2018-02-05 169864]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2017-03-02 44488]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-01-01 59800]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2013-03-05 91712]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [2015-04-14 26528]
R1 IMFCameraProtect;IMFCameraProtect; \??\C:\WINDOWS\system32\drivers\IMFCameraProtect.sys [2017-03-17 44096]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2017-12-15 178840]
R2 avnetflt;avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [2017-03-02 88488]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-02-10 385536]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-10-08 21654032]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-10-08 685064]
R3 athr;@oem16.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athw10x.sys [2018-02-25 4320176]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2016-12-29 608664]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2017-09-29 105472]
R3 bthl2cap;@bthl2cap.inf,%bthl2cap_desc%;Ovladač podpory protokolu Microsoft Bluetooth; C:\WINDOWS\system32\DRIVERS\bthl2cap.sys [2017-09-29 83968]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2017-09-29 78848]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2017-09-29 129536]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2017-09-29 85504]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-09-29 60312]
R3 cpuz143;cpuz143; \??\C:\WINDOWS\temp\cpuz143\cpuz143_x64.sys [2018-03-14 48960]
R3 HpqKbFiltr;@oem22.inf,%HpqKbFiltr.SvcDesc%;HpqKbFilter Driver; C:\WINDOWS\System32\drivers\HpqKbFiltr64.sys [2015-06-17 37112]
R3 IMFDownProtect;IMFDownProtect; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFDownProtect.sys [2017-03-08 39288]
R3 IMFFilter;IMFFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win10_amd64\IMFFilter.sys [2017-02-17 40440]
R3 IMFForceDelete;IMFForceDelete; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFForceDelete.sys [2017-06-23 34080]
R3 iobit_monitor_server;iobit_monitor_server; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [2017-07-19 24056]
R3 IUFileFilter;IUFileFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [2017-06-06 39904]
R3 IURegProcessFilter;IURegProcessFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegProcessFilter.sys [2018-01-10 40328]
R3 iwdbus;@oem25.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 JMCR;JMCR; C:\WINDOWS\System32\drivers\jmcr.sys [2013-11-04 176880]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2015-06-18 25816]
R3 RegFilter;RegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\regfilter.sys [2017-02-17 52792]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2017-09-29 189440]
R3 rt640x64;@oem47.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2017-12-10 1010648]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2017-09-29 37784]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-09-29 357272]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-09-29 63520]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2017-09-29 39832]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-09-29 118168]
S3 Accelerometer;@oem44.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2017-12-10 53424]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-09-29 20480]
S3 AndNetDiag;LGE AndroidNet USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgandnetdiag64.sys [2013-04-18 29184]
S3 ANDNetModem;LGE AndroidNet USB Modem; C:\WINDOWS\system32\DRIVERS\lgandnetmodem64.sys [2013-06-28 36352]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-09-29 18432]
S3 AsusVBus;AsusVBus; C:\WINDOWS\System32\drivers\AsusVBus.sys [2015-10-07 39704]
S3 ATP;ASUS Touchpad; C:\WINDOWS\System32\drivers\AsusTP.sys [2015-10-07 84472]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2018-02-22 1015296]
S3 dtlitescsibus;@oem32.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-05-18 30352]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-09-29 73112]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2017-09-29 27136]
S3 HyperVideo;HyperVideo; C:\WINDOWS\System32\drivers\HyperVideo.sys [2017-09-29 28160]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-09-29 1723288]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-09-29 36864]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-09-29 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-09-29 88576]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-09-29 174592]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-09-29 39424]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys []
S3 invdimm;@invdimm.inf,%invdimm.SvcDesc%;Microsoft iNVDIMM device driver; C:\WINDOWS\System32\drivers\invdimm.sys [2017-09-29 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2017-09-29 26112]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2017-09-29 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-09-29 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-09-29 55840]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\WINDOWS\system32\drivers\mwac.sys [2015-06-18 64216]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-09-29 132608]
S3 netvsc;netvsc; C:\WINDOWS\System32\drivers\netvsc.sys [2018-02-22 192512]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-09-29 88576]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-09-29 100352]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2017-09-29 16896]
S3 ReFS;ReFS; C:\WINDOWS\system32\drivers\ReFS.sys [2017-09-29 1849752]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2017-09-29 103936]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-09-29 33176]

====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R2 AdvancedSystemCareService11;Advanced SystemCare Service 11; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [2018-01-30 1056016]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-10-08 264224]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2018-03-02 492560]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2018-03-02 492560]
R2 CDPUserSvc_17c015e6;Uživatelská služba platformy připojených zařízení_17c015e6; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2017-12-12 3058392]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\dusmsvc.dll
R2 HDDHealth;HDDHealth; C:\Program Files (x86)\HDD Health\HDDHealthService.exe [2013-03-08 17760]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2015-06-22 684624]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-11-21 332144]
R2 HPTouchpointAnalyticsService;HP Touchpoint Analytics; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [2017-11-22 332216]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-05-03 337888]
R2 IMFservice;IMF Service; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2018-01-08 1770784]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-12-10 732160]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-11-04 131032]
R2 IObitUnSvr;IObit Uninstaller Service; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [2018-01-25 206096]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-11-04 165336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-11-04 279000]
R2 OneSyncSvc_17c015e6;Hostitel synchronizace_17c015e6; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2013-06-05 1143432]
R2 ScsiAccess;ScsiAccess; C:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe [2013-07-09 186760]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-03-01 519152]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-12-05 43648]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2015-05-15 1102472]
R3 PimIndexMaintenanceSvc_17c015e6;Data kontaktů_17c015e6; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalService -p;"ServiceDll" = %SystemRoot%\system32\SEMgrSvc.dll
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2018-03-02 1136744]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2018-03-02 1533608]
S2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2017-11-06 434248]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S2 hpsrv;@oem44.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2017-12-10 54448]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-09-29 52856]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; %SystemRoot%\system32\svchost.exe -k appmodel -p;"ServiceDll" = %SystemRoot%\system32\CapabilityAccessManager.dll
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; %SystemRoot%\system32\svchost.exe -k DevicesFlow;"ServiceDll" = %SystemRoot%\System32\DevicesFlowBroker.dll
S3 DevicesFlowUserSvc_17c015e6;Tok zařízení_17c015e6; C:\WINDOWS\system32\svchost.exe -k DevicesFlow;"ServiceDll" =
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; %SystemRoot%\System32\svchost.exe -k diagnostics;"ServiceDll" = %systemroot%\system32\DiagSvc.dll
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; %SystemRoot%\System32\svchost.exe -k GraphicsPerfSvcGroup;"ServiceDll" = %SystemRoot%\System32\GraphicsPerfSvc.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; %SystemRoot%\System32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\system32\InstallService.dll
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2012-12-10 803872]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\IpxlatCfg.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 MessagingService_17c015e6;Služba zasílání zpráv_17c015e6; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\System32\NaturalAuth.dll
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-10-03 159960]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; %SystemRoot%\system32\svchost.exe -k PrintWorkflow;"ServiceDll" = %SystemRoot%\System32\PrintWorkflowService.dll
S3 PrintWorkflowUserSvc_17c015e6;PrintWorkflow_17c015e6; C:\WINDOWS\system32\svchost.exe -k PrintWorkflow;"ServiceDll" =
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; %SystemRoot%\System32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\system32\PushToInstall.dll
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalService -p;"ServiceDll" = %SystemRoot%\System32\SharedRealitySvc.dll
S3 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs -p;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll

-----------------EOF-----------------

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

# -------------------------------
# Malwarebytes AdwCleaner 7.1.0.0
# -------------------------------
# Build: 04-12-2018
# Database: 2018-04-19.1
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 04-22-2018
# Duration: 00:00:10
# OS: Windows 10 Home
# Cleaned: 31
# Failed: 1


***** [ Services ] *****

Deleted IMFservice
Deleted AdvancedSystemCareService11

***** [ Folders ] *****

Deleted C:\ProgramData\IObit\Advanced SystemCare
Not Deleted C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted C:\Users\michal.sir\AppData\LocalLow\IObit\Advanced SystemCare
Deleted C:\Users\michal.sir\AppData\Roaming\IObit\Advanced SystemCare
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
Deleted C:\ProgramData\IObit\ASCDownloader

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted C:\Windows\System32\Tasks\ASC9_PerformanceMonitor
Deleted C:\Windows\System32\Tasks\ASC11_PerformanceMonitor
Deleted C:\Windows\System32\Tasks\Driver Booster Scheduler

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Advanced SystemCare 9
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Advanced SystemCare 9
Deleted HKLM\Software\Wow6432Node\IObit\RealTimeProtector
Deleted HKLM\Software\Wow6432Node\IObit\Advanced SystemCare
Deleted HKLM\Software\Wow6432Node\IOBIT\ASC
Deleted HKLM\SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted HKLM\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted HKLM\SOFTWARE\CLASSES\DRIVE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted HKLM\SOFTWARE\CLASSES\DIRECTORY\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{60AD0991-ECD4-49DC-B170-8B7E7C60F51B}
Deleted HKLM\Software\Classes\TypeLib\{60AD0991-ECD4-49DC-B170-8B7E7C60F51B}
Deleted HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted HKLM\Software\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC9_PerformanceMonitor
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC11_PerformanceMonitor
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Advanced SystemCare_is1
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scheduler

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************


########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Dejte nový log FRST.